{"id":13110,"name":"seroval","ecosystem":"npm","repository_url":"https://github.com/lxsmnsyc/seroval","issues_count":143,"created_at":"2025-06-06T23:24:52.285Z","updated_at":"2025-06-06T23:24:52.285Z","purl":"pkg:npm/seroval","metadata":{"id":6267064,"name":"seroval","ecosystem":"npm","description":"Stringify JS values","homepage":"https://github.com/lxsmnsyc/seroval/tree/main/packages/seroval","licenses":"MIT","normalized_licenses":["MIT"],"repository_url":"https://github.com/lxsmnsyc/seroval","keywords_array":["pridepack"],"namespace":null,"versions_count":69,"first_release_published_at":"2023-02-06T06:30:13.111Z","latest_release_published_at":"2025-05-24T01:50:53.419Z","latest_release_number":"1.3.2","last_synced_at":"2025-05-28T08:50:31.973Z","created_at":"2023-02-06T07:03:28.594Z","updated_at":"2025-05-28T08:53:19.599Z","registry_url":"https://www.npmjs.com/package/seroval","install_command":"npm install seroval","documentation_url":null,"metadata":{"funding":null,"dist-tags":{"latest":"1.3.2"}},"repo_metadata":{"id":65713260,"uuid":"597809972","full_name":"lxsmnsyc/seroval","owner":"lxsmnsyc","description":"Stringify JS values","archived":false,"fork":false,"pushed_at":"2025-05-11T07:29:45.000Z","size":2559,"stargazers_count":576,"open_issues_count":6,"forks_count":6,"subscribers_count":5,"default_branch":"main","last_synced_at":"2025-05-21T08:04:56.191Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://seroval.vercel.app","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/lxsmnsyc.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null},"funding":{"github":"lxsmnsyc"}},"created_at":"2023-02-05T17:52:28.000Z","updated_at":"2025-05-20T06:52:12.000Z","dependencies_parsed_at":"2023-10-16T03:36:28.317Z","dependency_job_id":"54d9b2bf-5769-4834-ae01-978dab2c7c89","html_url":"https://github.com/lxsmnsyc/seroval","commit_stats":{"total_commits":803,"total_committers":3,"mean_commits":267.6666666666667,"dds":0.00249066002490661,"last_synced_commit":"93790004344730f0b413b069182a65727d890bf9"},"previous_names":[],"tags_count":70,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/lxsmnsyc","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":256780781,"owners_count":22441934,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"lxsmnsyc","name":"Alexis H. Munsayac","uuid":"4783372","kind":"user","description":"I do everything for fun","email":"","website":"lxsmnsyc.now.sh","location":"Philippines","twitter":"lxsmnsyc","company":"@solidjs","icon_url":"https://avatars.githubusercontent.com/u/4783372?u=d2703898b986d28943660920e134c8df47e676da\u0026v=4","repositories_count":258,"last_synced_at":"2025-05-19T00:41:11.553Z","metadata":{"has_sponsors_listing":true,"funding":{"github":"lxsmnsyc"}},"html_url":"https://github.com/lxsmnsyc","funding_links":["https://github.com/sponsors/lxsmnsyc"],"total_stars":4147,"followers":558,"following":202,"created_at":"2022-11-05T15:29:40.085Z","updated_at":"2025-05-19T00:41:11.553Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/lxsmnsyc","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/lxsmnsyc/repositories"},"tags":[{"name":"v1.3.1","sha":"cc1352acbff42b3e9078d7007ce2e0ada9392dc0","kind":"tag","published_at":"2025-05-11T07:29:43.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.3.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.3.1/manifests"},{"name":"v1.3.0","sha":"d068e79701dd00e5e0fc969adc9f1be36df95c33","kind":"tag","published_at":"2025-05-06T16:02:11.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.3.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.3.0/manifests"},{"name":"v1.2.1","sha":"c90be6d96271c63791fd4627672813f3d74fe2eb","kind":"tag","published_at":"2025-02-01T07:39:17.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.2.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.2.1/manifests"},{"name":"v1.2.0","sha":"8554d153be3359ef6fc0b6179d0d702c17f50c77","kind":"tag","published_at":"2025-01-07T12:09:40.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.2.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.2.0/manifests"},{"name":"v1.1.1","sha":"3769b41ff1bc1ef0c58d06b8f8dd0ccf012083e2","kind":"tag","published_at":"2024-07-30T16:07:14.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.1.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.1.1/manifests"},{"name":"v1.1.0","sha":"1746c7b2d937d7b1a89e4ead83befd79087dc167","kind":"tag","published_at":"2024-07-14T06:10:48.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.1.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.1.0/manifests"},{"name":"v1.0.8","sha":"e091f1e559a44bdd8dab715753a1c15c073d59e5","kind":"tag","published_at":"2024-07-14T06:07:40.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.0.8","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.0.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.8/manifests"},{"name":"v1.0.7","sha":"da4887ed6acb7c0c6589d35da162a51fed2c6532","kind":"tag","published_at":"2024-05-16T03:34:59.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.0.7","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.0.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.7/manifests"},{"name":"v1.0.6","sha":"06f7397926055d9b74f88ad708bfe7009a097a22","kind":"tag","published_at":"2024-05-16T03:23:12.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.0.6","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.0.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.6/manifests"},{"name":"v1.0.5","sha":"63003d77889b06b73bab0365d296bcdd029219fb","kind":"tag","published_at":"2024-03-10T16:56:16.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.0.5","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.0.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.5/manifests"},{"name":"v1.0.4","sha":"cf01159c7c1cb1c527604236d5a2e0120cf3bd88","kind":"tag","published_at":"2024-01-11T08:28:04.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.0.4","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.0.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.4/manifests"},{"name":"v1.0.3","sha":"08e62b976bedcb016b64907c366410aa165968fc","kind":"tag","published_at":"2024-01-06T07:26:03.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.0.3","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.0.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.3/manifests"},{"name":"v1.0.2","sha":"50a746cdc005fa54b79a9e1658587b493c5704d3","kind":"tag","published_at":"2023-12-27T16:32:06.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.0.2","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.2/manifests"},{"name":"v1.0.1","sha":"e6f5e33790a537a6ee60e57a7e1daf5eb6079516","kind":"tag","published_at":"2023-12-12T04:27:03.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.0.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.1/manifests"},{"name":"v1.0.0","sha":"db187214170c2bf94312e28717031ec9dec3b999","kind":"tag","published_at":"2023-12-12T04:06:12.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v1.0.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v1.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v1.0.0/manifests"},{"name":"v0.15.1","sha":"4c597a39c75fc9918508dc7ceeaeaad51f84ac21","kind":"tag","published_at":"2023-11-29T12:52:45.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.15.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.15.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.15.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.15.1/manifests"},{"name":"v0.15.0","sha":"0f5b9e1e9fef04bf9a9e6f142950f1167e17a424","kind":"tag","published_at":"2023-11-29T12:39:08.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.15.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.15.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.15.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.15.0/manifests"},{"name":"v0.14.1","sha":"6c22472b58ec0dc367bf91bde033da0e9d8706fa","kind":"tag","published_at":"2023-11-22T08:24:34.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.14.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.14.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.14.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.14.1/manifests"},{"name":"v0.14.0","sha":"0fb114d1b7cd06d9fb33e895c5bb143a73d9f457","kind":"tag","published_at":"2023-11-22T08:06:02.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.14.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.14.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.14.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.14.0/manifests"},{"name":"v0.13.2","sha":"3a74cd6a4fe3fd9f0af3c337a0e19032235a9740","kind":"tag","published_at":"2023-11-21T09:54:26.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.13.2","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.13.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.13.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.13.2/manifests"},{"name":"v0.13.1","sha":"d977f4e777e01d1c449558c2d1b13d9e04db077c","kind":"tag","published_at":"2023-11-21T06:50:45.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.13.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.13.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.13.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.13.1/manifests"},{"name":"v0.13.0","sha":"7585fad45f057f4481647247ca617cb94768c5d9","kind":"tag","published_at":"2023-11-18T14:55:13.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.13.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.13.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.13.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.13.0/manifests"},{"name":"v0.12.4","sha":"4040423d3d896c86679f5f129f8a3309752c9c7a","kind":"tag","published_at":"2023-11-15T08:26:47.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.12.4","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.12.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.12.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.12.4/manifests"},{"name":"v0.12.3","sha":"d808e3d6798faca42fde0ae4c9f0e4e067f7e945","kind":"tag","published_at":"2023-11-02T17:18:42.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.12.3","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.12.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.12.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.12.3/manifests"},{"name":"v0.12.2","sha":"41c5dc532b6c4cc1c2ced46ea31879545cc67ec6","kind":"tag","published_at":"2023-11-02T17:12:36.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.12.2","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.12.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.12.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.12.2/manifests"},{"name":"v0.12.1","sha":"497e434530bf4368ec569fdb617c3549b4df6256","kind":"tag","published_at":"2023-11-02T05:05:33.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.12.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.12.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.12.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.12.1/manifests"},{"name":"v0.12.0","sha":"48c2471aa7c00af0409a9bf7313a6d135055cab6","kind":"tag","published_at":"2023-10-19T06:10:33.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.12.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.12.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.12.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.12.0/manifests"},{"name":"v0.11.6","sha":"5eacc5d6364759e592c72e1e49ab0f2a84375eea","kind":"tag","published_at":"2023-10-18T05:12:07.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.11.6","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.11.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.6/manifests"},{"name":"v0.11.5","sha":"342abd2cfe1889f1e6dc8cbdd44b36def8aeaaef","kind":"tag","published_at":"2023-10-18T04:57:22.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.11.5","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.11.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.5/manifests"},{"name":"v0.11.4","sha":"ebab96e090474e9add7167f648d4b6f0708acb42","kind":"tag","published_at":"2023-10-18T04:14:11.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.11.4","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.11.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.4/manifests"},{"name":"v0.11.3","sha":"9cd59c8ba0b787341b8e7fe4f3fe44a03f608324","kind":"tag","published_at":"2023-10-13T11:43:38.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.11.3","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.11.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.3/manifests"},{"name":"v0.11.2","sha":"173cf11aa7ed25209055e127bc3831b9fef52e95","kind":"tag","published_at":"2023-10-13T11:28:28.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.11.2","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.11.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.2/manifests"},{"name":"v0.11.1","sha":"745467fa453ee90169f50bf543f5a8649699982e","kind":"tag","published_at":"2023-10-12T03:49:09.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.11.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.11.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.1/manifests"},{"name":"v0.11.0","sha":"1104f3349a30b4bcd51cf67f6dff49d3e7e52dce","kind":"tag","published_at":"2023-10-11T08:35:55.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.11.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.11.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.11.0/manifests"},{"name":"v0.10.4","sha":"62d11e2cac667d2fd13d4ac1fb55d9e448b9ba0f","kind":"tag","published_at":"2023-09-28T09:21:43.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.10.4","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.10.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.10.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.10.4/manifests"},{"name":"v0.10.3","sha":"97e6e1efd223ad1fb56c3105c42f1259654041b6","kind":"tag","published_at":"2023-09-28T08:53:58.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.10.3","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.10.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.10.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.10.3/manifests"},{"name":"v0.10.2","sha":"a093a32769a5653f1598d409b404ecae95d2b2f5","kind":"tag","published_at":"2023-09-26T16:38:59.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.10.2","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.10.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.10.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.10.2/manifests"},{"name":"v0.10.1","sha":"aa589c20369bfbeb28d7a3d9ab0e86ed92205195","kind":"tag","published_at":"2023-09-18T02:29:23.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.10.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.10.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.10.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.10.1/manifests"},{"name":"v0.10.0","sha":"2b0ce43b98b92a264ea5bf3bd2b47ba3628a2c3f","kind":"tag","published_at":"2023-09-18T02:24:47.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.10.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.10.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.10.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.10.0/manifests"},{"name":"v0.9.0","sha":"a3bfdc3ac2246b5b067f67af1f10d7a416bfed5f","kind":"tag","published_at":"2023-07-07T09:12:25.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.9.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.9.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.9.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.9.0/manifests"},{"name":"v0.8.0","sha":"f7fe3305e0295499989d9f675ff54f9305db23b0","kind":"tag","published_at":"2023-05-03T09:48:37.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.8.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.8.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.8.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.8.0/manifests"},{"name":"v0.7.0","sha":"187cbd91a44f5e88c6a87288d9ea440ddbaf5be0","kind":"tag","published_at":"2023-04-09T14:24:12.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.7.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.7.0/manifests"},{"name":"v0.6.0","sha":"1d6e69079251612c6fc486e8517e225690363442","kind":"tag","published_at":"2023-04-08T13:24:30.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.6.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.6.0/manifests"},{"name":"v0.5.1","sha":"2154c039056b24f706dbb1c2006acd99383e9305","kind":"tag","published_at":"2023-03-22T03:01:38.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.5.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.5.1/manifests"},{"name":"v0.5.0","sha":"7c2e32b409df6bc01b5d5b38fdd3f9980a8b4984","kind":"tag","published_at":"2023-03-17T06:04:34.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.5.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.5.0/manifests"},{"name":"v0.4.1","sha":"a3cfb8eae6e1f9a2d2939b03c5ae88fa24c738f8","kind":"tag","published_at":"2023-03-16T13:49:38.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.1/manifests"},{"name":"v0.4.0","sha":"4767da3b4b6397d6830978b6f4d0f014d2115479","kind":"tag","published_at":"2023-03-16T13:07:24.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0/manifests"},{"name":"v0.4.0-alpha.18","sha":"e4f5b83541b7fa184ec20852de3b98bd5bc72d68","kind":"tag","published_at":"2023-03-16T12:31:56.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.18","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.18","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.18","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.18/manifests"},{"name":"v0.4.0-alpha.17","sha":"8996bd95e93cfc4d099aa040117916b326faacad","kind":"tag","published_at":"2023-03-16T06:27:10.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.17","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.17","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.17","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.17/manifests"},{"name":"v0.4.0-alpha.16","sha":"ebed12239c5985c00e66f984da6b4a48d7519706","kind":"tag","published_at":"2023-03-16T06:10:53.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.16","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.16","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.16","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.16/manifests"},{"name":"v0.4.0-alpha.15","sha":"a9751ea8b416dc40622219d6d0fc4fba508fec7d","kind":"tag","published_at":"2023-03-16T04:15:28.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.15","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.15","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.15","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.15/manifests"},{"name":"v0.4.0-alpha.14","sha":"7a287f3985c45ba331913f7633ca1ebf31c502ac","kind":"tag","published_at":"2023-03-15T16:57:33.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.14","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.14","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.14","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.14/manifests"},{"name":"v0.4.0-alpha.13","sha":"3f71e898ce27170bade38120eddc9afe96390498","kind":"tag","published_at":"2023-03-15T16:03:11.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.13","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.13","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.13","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.13/manifests"},{"name":"v0.4.0-alpha.12","sha":"1154b39e7437e0f6bf9e1c3e814917bd308a2154","kind":"tag","published_at":"2023-03-15T15:05:00.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.12","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.12","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.12/manifests"},{"name":"v0.4.0-alpha.11","sha":"743b4f2421f9c15c39b89a7dc9983f32aff3aa52","kind":"tag","published_at":"2023-03-15T13:24:24.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.11","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.11/manifests"},{"name":"v0.4.0-alpha.10","sha":"8b6be3d5d8a6860e0e5d0717b973fee5c94e07fb","kind":"tag","published_at":"2023-03-15T09:41:44.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.10","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.10/manifests"},{"name":"v0.4.0-alpha.9","sha":"27ff8d23e589e5968ebe968b14d050cd468ca49f","kind":"tag","published_at":"2023-03-15T07:27:16.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.9","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.9/manifests"},{"name":"v0.4.0-alpha.8","sha":"e965d1992af3e9a86a8919de6204fe4edb7b21a2","kind":"tag","published_at":"2023-03-15T05:16:23.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.8","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.8/manifests"},{"name":"v0.4.0-alpha.7","sha":"30e67c013299a4e75136a9a2b41945ee54d8b6b8","kind":"tag","published_at":"2023-03-15T04:55:53.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.7","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.7/manifests"},{"name":"v0.4.0-alpha.6","sha":"91199038f92d170421d2cfe02b928fb24202d9a8","kind":"tag","published_at":"2023-03-15T04:43:20.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.6","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.6/manifests"},{"name":"v0.4.0-alpha.5","sha":"b6e4a61b67d1ba6e6e209dd5ba81cd94fb33d021","kind":"tag","published_at":"2023-03-15T04:26:25.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.5","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.5/manifests"},{"name":"v0.4.0-alpha.4","sha":"1e96ac1ab8304fb09ac7a1bc451b7768f12b7f6b","kind":"tag","published_at":"2023-03-15T02:54:09.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.4","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.4/manifests"},{"name":"v0.4.0-alpha.3","sha":"22da3fb0f57fdb4a935cac70d1b9a7e5fdc02816","kind":"tag","published_at":"2023-03-14T23:33:54.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.3","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.3/manifests"},{"name":"v0.4.0-alpha.2","sha":"cb379745d112d53472da3765b20fe5d28323cb47","kind":"tag","published_at":"2023-03-14T17:07:37.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.2","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.2/manifests"},{"name":"v0.4.0-alpha.1","sha":"53fa15bce900bc299752e07b106a1a84f4432f35","kind":"tag","published_at":"2023-03-14T16:03:30.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.1/manifests"},{"name":"v0.4.0-alpha.0","sha":"4b01f180e0a2548360ec618fe8b6cd4d36fccaff","kind":"tag","published_at":"2023-03-14T15:38:31.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.4.0-alpha.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.4.0-alpha.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.4.0-alpha.0/manifests"},{"name":"v0.3.0","sha":"3be59fefb6ffb73b1bad693d956d1fd9d8d6d720","kind":"tag","published_at":"2023-03-13T12:36:36.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.3.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.3.0/manifests"},{"name":"v0.2.1","sha":"7888af9f6e1d875159dc676d59b59ba4b2e03d7e","kind":"tag","published_at":"2023-03-07T02:47:14.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.2.1","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.2.1/manifests"},{"name":"v0.2.0","sha":"d19fddd70b020ebbb61ddaaeef563929d0bfd121","kind":"tag","published_at":"2023-03-06T08:57:24.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.2.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.2.0/manifests"},{"name":"v0.1.0","sha":"c7db9d01e7f66662e4f890ded4533be0b0cb0ea1","kind":"tag","published_at":"2023-02-06T06:29:42.000Z","download_url":"https://codeload.github.com/lxsmnsyc/seroval/tar.gz/v0.1.0","html_url":"https://github.com/lxsmnsyc/seroval/releases/tag/v0.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lxsmnsyc%2Fseroval/tags/v0.1.0/manifests"}]},"repo_metadata_updated_at":"2025-05-28T08:53:19.599Z","dependent_packages_count":8,"downloads":1997309,"downloads_period":"last-month","dependent_repos_count":1628,"rankings":{"downloads":0.3849166789424341,"dependent_repos_count":0.5288286405643884,"dependent_packages_count":4.382790751717701,"stargazers_count":4.497788885544629,"forks_count":11.95254849296672,"docker_downloads_count":1.372960463490526,"average":3.8533056522043996},"purl":"pkg:npm/seroval","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/npm/seroval","docker_dependents_count":29,"docker_downloads_count":653416,"usage_url":"https://repos.ecosyste.ms/usage/npm/seroval","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/npm/seroval/dependencies","status":null,"funding_links":["https://github.com/sponsors/lxsmnsyc"],"critical":null,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/seroval/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/seroval/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/seroval/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/seroval/related_packages","maintainers":[{"uuid":"lxsmnsyc","login":"lxsmnsyc","name":null,"email":"alexis.munsayac@gmail.com","url":null,"packages_count":154,"html_url":"https://www.npmjs.com/~lxsmnsyc","role":null,"created_at":"2023-02-06T07:33:14.288Z","updated_at":"2023-02-06T07:33:14.288Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/lxsmnsyc/packages"}],"registry":{"name":"npmjs.org","url":"https://registry.npmjs.org","ecosystem":"npm","default":true,"packages_count":5008191,"maintainers_count":1013077,"namespaces_count":295677,"keywords_count":700469,"github":"npm","metadata":{"funded_packages_count":150263},"icon_url":"https://github.com/npm.png","created_at":"2022-04-04T15:19:23.081Z","updated_at":"2025-06-07T05:25:21.688Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/namespaces"}},"unique_repositories_count":114,"unique_repositories_count_past_30_days":2,"recent_issues":[{"uuid":"4467400611","node_id":"PR_kwDON5Pjus7cj-D_","number":767,"state":"closed","title":"Bump the npm_and_yarn group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-18T08:33:22.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-18T08:11:15.000Z","updated_at":"2026-05-18T08:33:24.000Z","time_to_close":1327,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":6,"packages":[{"name":"@babel/plugin-transform-modules-systemjs","old_version":"7.29.0","new_version":"7.29.4","repository_url":"https://github.com/babel/babel"},{"name":"basic-ftp","old_version":"5.3.0","new_version":"5.3.1","repository_url":"https://github.com/patrickjuchli/basic-ftp"},{"name":"fast-uri","old_version":"3.1.0","new_version":"3.1.2","repository_url":"https://github.com/fastify/fast-uri"},{"name":"fast-xml-builder","old_version":"1.1.5","new_version":"1.2.0","repository_url":"https://github.com/NaturalIntelligence/fast-xml-builder"},{"name":"seroval","old_version":"1.3.2","new_version":"1.5.4","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"uuid","old_version":"8.3.2","new_version":"11.1.1","repository_url":"https://github.com/uuidjs/uuid"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@babel/plugin-transform-modules-systemjs](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs) | `7.29.0` | `7.29.4` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.3.0` | `5.3.1` |\n| [fast-uri](https://github.com/fastify/fast-uri) | `3.1.0` | `3.1.2` |\n| [fast-xml-builder](https://github.com/NaturalIntelligence/fast-xml-builder) | `1.1.5` | `1.2.0` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.3.2` | `1.5.4` |\n| [uuid](https://github.com/uuidjs/uuid) | `8.3.2` | `11.1.1` |\n\n\nUpdates `@babel/plugin-transform-modules-systemjs` from 7.29.0 to 7.29.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e@​babel/plugin-transform-modules-systemjs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.4 (2026-05-05)\u003c/h2\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-modules-systemjs\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17974\"\u003e#17974\u003c/a\u003e [7.x backport]fix(systemjs): improve module string name support (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 1\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.3 (2026-04-30)\u003c/h2\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17923\"\u003e#17923\u003c/a\u003e Support flow extends bound (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-create-class-features-plugin\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17931\"\u003e#17931\u003c/a\u003e fix(decorators): replace super within all removed static elements (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-register\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17915\"\u003e#17915\u003c/a\u003e Fix thread synchronization issues in \u003ccode\u003e@babel/register\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-compat-data\u003c/code\u003e, \u003ccode\u003ebabel-plugin-bugfix-safari-rest-destructuring-rhs-array\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17788\"\u003e#17788\u003c/a\u003e Add bugfix plugin for Safari array rest destructuring bug (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17782\"\u003e#17782\u003c/a\u003e Improve trailing comma comment handling (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:memo: Documentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17847\"\u003e#17847\u003c/a\u003e Replace npmjs.com links with npmx.dev (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-import-to-platform-api\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-modules\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17818\"\u003e#17818\u003c/a\u003e Load async Wasm and JSON imports in parallel (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 4\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.2 (2026-03-16)\u003c/h2\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17840\"\u003e#17840\u003c/a\u003e [7.x backport] async x =\u0026gt; {} must be in leading pos (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helpers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17805\"\u003e#17805\u003c/a\u003e [7.x backport] fix: Properly handle await in finally (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-preset-env\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a458f66074b97d54773db8159af673d23b26079b\"\u003e\u003ccode\u003ea458f66\u003c/code\u003e\u003c/a\u003e v7.29.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/32ebd5aaf2526ddd176fd6a3d1e3dc594abdc8d9\"\u003e\u003ccode\u003e32ebd5a\u003c/code\u003e\u003c/a\u003e [7.x backport]fix(systemjs): improve module string name support (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17974\"\u003e#17974\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.4/packages/babel-plugin-transform-modules-systemjs\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `basic-ftp` from 5.3.0 to 5.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/releases\"\u003ebasic-ftp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed: Protect against unbounded control response, fixes \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-rpmf-866q-6p89\"\u003ehttps://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-rpmf-866q-6p89\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/blob/master/CHANGELOG.md\"\u003ebasic-ftp's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed: Protect against unbounded control response, fixes \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-rpmf-866q-6p89\"\u003ehttps://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-rpmf-866q-6p89\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/980371bb6057d78d479b5cfc18683392abd2c45f\"\u003e\u003ccode\u003e980371b\u003c/code\u003e\u003c/a\u003e Guard against unbounded control response\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/50827c73ca6c1d786c97276e47be8a33d0f2277d\"\u003e\u003ccode\u003e50827c7\u003c/code\u003e\u003c/a\u003e Adjust changelog to match release notes\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/compare/v5.3.0...v5.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-uri` from 3.1.0 to 3.1.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fast-uri/releases\"\u003efast-uri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.2\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\"\u003ehttps://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle malformed fragment decoding as a parse error by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/171\"\u003efastify/fast-uri#171\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.1...v3.1.2\"\u003ehttps://github.com/fastify/fast-uri/compare/v3.1.1...v3.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6\"\u003ehttps://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps-dev): bump tsd from 0.32.0 to 0.33.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/148\"\u003efastify/fast-uri#148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/149\"\u003efastify/fast-uri#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(.npmrc): ignore scripts by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/150\"\u003efastify/fast-uri#150\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): remove \u003ccode\u003e@​fastify/pre-commit\u003c/code\u003e by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/151\"\u003efastify/fast-uri#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/152\"\u003efastify/fast-uri#152\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(ci): add concurrency config by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/153\"\u003efastify/fast-uri#153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/154\"\u003efastify/fast-uri#154\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/156\"\u003efastify/fast-uri#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(license): standardise license notice by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/159\"\u003efastify/fast-uri#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estyle: remove trailing whitespace by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/161\"\u003efastify/fast-uri#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove unused github files by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/162\"\u003efastify/fast-uri#162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update readme by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/164\"\u003efastify/fast-uri#164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-manager.yml from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/165\"\u003efastify/fast-uri#165\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/166\"\u003efastify/fast-uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump neostandard from 0.12.2 to 0.13.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/167\"\u003efastify/fast-uri#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add lock-threads workflow by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/169\"\u003efastify/fast-uri#169\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/162\"\u003efastify/fast-uri#162\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.1\"\u003ehttps://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/919dd8ea7689fcc220d0d9b71307f5095e723ef9\"\u003e\u003ccode\u003e919dd8e\u003c/code\u003e\u003c/a\u003e Bumped v3.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/c65ba573714af6b8e19e481d9444c27bc4355d07\"\u003e\u003ccode\u003ec65ba57\u003c/code\u003e\u003c/a\u003e fixup: linting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/6c86c17c3d76fb93aa3700ec6c0fa00faeb97293\"\u003e\u003ccode\u003e6c86c17\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/a95158ad308df4d92bbde4eba699ce5165e9f796\"\u003e\u003ccode\u003ea95158a\u003c/code\u003e\u003c/a\u003e Handle malformed fragment decoding without throwing (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/171\"\u003e#171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/cea547c91c6aae610041b17b75792ca4aa035a6d\"\u003e\u003ccode\u003ecea547c\u003c/code\u003e\u003c/a\u003e Bumped v3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/876ce79b662c3e5015e4e7dffe6f37752ad34f35\"\u003e\u003ccode\u003e876ce79\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/dcdf690b71a7bb3a19887ada65a9ab160d83bcc0\"\u003e\u003ccode\u003edcdf690\u003c/code\u003e\u003c/a\u003e ci: add lock-threads workflow (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/169\"\u003e#169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/c860e6589b1ac346f66e114b4eadb9613768108c\"\u003e\u003ccode\u003ec860e65\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump neostandard from 0.12.2 to 0.13.0 (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/167\"\u003e#167\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/9b4c6dc82fde0ca44e674403ece9185d85bb6d5f\"\u003e\u003ccode\u003e9b4c6dc\u003c/code\u003e\u003c/a\u003e build(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/166\"\u003e#166\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/85d09a9f7aa76b32c2bb005a90a71e144c361d24\"\u003e\u003ccode\u003e85d09a9\u003c/code\u003e\u003c/a\u003e build(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-mana...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-xml-builder` from 1.1.5 to 1.2.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/blob/main/CHANGELOG.md\"\u003efast-xml-builder's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e1.2.0\u003c/strong\u003e (2026-05-08)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for \u003ccode\u003esanitizeName\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eSupport xml-naming for validating and sanitizing tag and attribute names\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.9\u003c/strong\u003e (2026-05-06)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: format output for preserve order when indent by is set to empty string\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.8\u003c/strong\u003e (2026-05-05)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: skip text property for PI tags\u003c/li\u003e\n\u003cli\u003eimprove typings\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.7\u003c/strong\u003e (2026--05-04)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix security issues when attribute value contains quotes\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.6\u003c/strong\u003e (2026--05-04)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix security issues related to comment\u003c/li\u003e\n\u003cli\u003eskip comment with null value\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.5\u003c/strong\u003e (2026-04-17)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix security issues related to comment and cdata\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.4\u003c/strong\u003e (2026-03-16)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003esupport maxNestedTags option\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.3\u003c/strong\u003e (2026-03-13)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003edeclare Matcher \u0026amp; Expression as unknown so user is not forced to install path-expression-matcher\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.2\u003c/strong\u003e (2026-03-11)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix typings\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.1\u003c/strong\u003e (2026-03-11)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eupgrade path-expression-matcher to 1.1.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.0\u003c/strong\u003e (2026-03-10)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntegrate \u003ca href=\"https://github.com/NaturalIntelligence/path-expression-matcher\"\u003epath-expression-matcher\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/a9a905b316176ef9a97bdf5450e60efbf0341f25\"\u003e\u003ccode\u003ea9a905b\u003c/code\u003e\u003c/a\u003e for release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/42680e8d730c48082268823fd285e10127ddba21\"\u003e\u003ccode\u003e42680e8\u003c/code\u003e\u003c/a\u003e support name sanitization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/8b00185bf6be67981ffc40e06c18acbbbe908779\"\u003e\u003ccode\u003e8b00185\u003c/code\u003e\u003c/a\u003e release info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/8a08f173d7b9c9a82599fe7de279ca7e12c3ad6b\"\u003e\u003ccode\u003e8a08f17\u003c/code\u003e\u003c/a\u003e allow indentation to be empty string\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/7fc5decb9613afbd5d03747b1a0f11e0916e34ef\"\u003e\u003ccode\u003e7fc5dec\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/c241b6a8ed1863e5f518490ec1fcc38b13f2c370\"\u003e\u003ccode\u003ec241b6a\u003c/code\u003e\u003c/a\u003e improve documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/15d5668b53777400c8d80b6e21029c1a70888c78\"\u003e\u003ccode\u003e15d5668\u003c/code\u003e\u003c/a\u003e update for release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/98774853a696a1aee4dca830dd3eee2759676bd2\"\u003e\u003ccode\u003e9877485\u003c/code\u003e\u003c/a\u003e fix: skip text property for PI tags\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/311a2213a817cf31558bea7c0e0807b0d4441814\"\u003e\u003ccode\u003e311a221\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-builder/issues/5\"\u003e#5\u003c/a\u003e typing import issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/e8fc5b15d9d54b559781961f066de82a55aabcdd\"\u003e\u003ccode\u003ee8fc5b1\u003c/code\u003e\u003c/a\u003e update for releast\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/compare/v1.1.5...v1.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `seroval` from 1.3.2 to 1.5.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lxsmnsyc/seroval/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uuid` from 8.3.2 to 11.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v11.1.1\"\u003e11.1.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport GHSA-w5hq-g745-h8pq fix (\u003ca href=\"https://github.com/uuidjs/uuid/commit/32389c887c9e75f90442ee4cc95bbab0c4e8346e\"\u003e32389c8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev11.1.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate TS types to allow\u003ccode\u003eUint8Array\u003c/code\u003e subtypes for \u003ccode\u003ebuffer\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/865\"\u003e#865\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/a5231e7e1b98c20b23c35402a232167f476b39a2\"\u003ea5231e7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev11.0.5\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.4...v11.0.5\"\u003e11.0.5\u003c/a\u003e (2025-01-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd TS unit test, pin to typescript@5.0.4 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/860\"\u003e#860\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/24ac2fd067e5bab97a5ccea3f6f365a64c01d140\"\u003e24ac2fd\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev11.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.3...v11.0.4\"\u003e11.0.4\u003c/a\u003e (2025-01-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e insure -\u0026gt; ensure (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/843\"\u003e#843\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/d2a61e154d861e58549466e753bb9e4d5bfffb68\"\u003ed2a61e1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eexclude tests from published package (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/840\"\u003e#840\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f992ff4780937089b0134195fa22e76e2e1cb3a7\"\u003ef992ff4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTest for invalid byte array sizes and ranges in \u003ccode\u003ev1()\u003c/code\u003e, \u003ccode\u003ev4()\u003c/code\u003e, and \u003ccode\u003ev7()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/845\"\u003e#845\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e0ee90051ebd13475bbcff4d371330aa4f9bd1dd\"\u003ee0ee900\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev11.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.2...v11.0.3\"\u003e11.0.3\u003c/a\u003e (2024-11-04)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapply stricter typing to the v* signatures (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/831\"\u003e#831\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c2d3fed22cfd47c22c8f22f6154abb5060648ce5\"\u003ec2d3fed\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eexport internal uuid types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/833\"\u003e#833\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/341edf444ced63708ba336285dbec29443523939\"\u003e341edf4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove sourcemaps (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/827\"\u003e#827\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/b93ea101af7382053032d4fb61cc85599d6c7216\"\u003eb93ea10\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erevert \u0026quot;simplify type for v3 and v5\u0026quot; (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/835\"\u003e#835\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2dee691e95aba854a892d2507d8cd9f009bf61d\"\u003ee2dee69\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev11.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.1...v11.0.2\"\u003e11.0.2\u003c/a\u003e (2024-10-28)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/v11.1.1/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v11.1.1\"\u003e11.1.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport GHSA-w5hq-g745-h8pq fix (\u003ca href=\"https://github.com/uuidjs/uuid/commit/32389c887c9e75f90442ee4cc95bbab0c4e8346e\"\u003e32389c8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate TS types to allow\u003ccode\u003eUint8Array\u003c/code\u003e subtypes for \u003ccode\u003ebuffer\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/865\"\u003e#865\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/a5231e7e1b98c20b23c35402a232167f476b39a2\"\u003ea5231e7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.4...v11.0.5\"\u003e11.0.5\u003c/a\u003e (2025-01-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd TS unit test, pin to typescript@5.0.4 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/860\"\u003e#860\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/24ac2fd067e5bab97a5ccea3f6f365a64c01d140\"\u003e24ac2fd\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.3...v11.0.4\"\u003e11.0.4\u003c/a\u003e (2025-01-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e insure -\u0026gt; ensure (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/843\"\u003e#843\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/d2a61e154d861e58549466e753bb9e4d5bfffb68\"\u003ed2a61e1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eexclude tests from published package (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/840\"\u003e#840\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f992ff4780937089b0134195fa22e76e2e1cb3a7\"\u003ef992ff4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTest for invalid byte array sizes and ranges in \u003ccode\u003ev1()\u003c/code\u003e, \u003ccode\u003ev4()\u003c/code\u003e, and \u003ccode\u003ev7()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/845\"\u003e#845\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e0ee90051ebd13475bbcff4d371330aa4f9bd1dd\"\u003ee0ee900\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.2...v11.0.3\"\u003e11.0.3\u003c/a\u003e (2024-11-04)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapply stricter typing to the v* signatures (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/831\"\u003e#831\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c2d3fed22cfd47c22c8f22f6154abb5060648ce5\"\u003ec2d3fed\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eexport internal uuid types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/833\"\u003e#833\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/341edf444ced63708ba336285dbec29443523939\"\u003e341edf4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove sourcemaps (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/827\"\u003e#827\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/b93ea101af7382053032d4fb61cc85599d6c7216\"\u003eb93ea10\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erevert \u0026quot;simplify type for v3 and v5\u0026quot; (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/835\"\u003e#835\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2dee691e95aba854a892d2507d8cd9f009bf61d\"\u003ee2dee69\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.1...v11.0.2\"\u003e11.0.2\u003c/a\u003e (2024-10-28)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove wrapper.mjs (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/822\"\u003e#822\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/6683ad38b048375b451eac1194960f24ba20e0ca\"\u003e6683ad3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.0...v11.0.1\"\u003e11.0.1\u003c/a\u003e (2024-10-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7269a96c12a55a745bd4a7812c01cfd385ec6c46\"\u003e\u003ccode\u003e7269a96\u003c/code\u003e\u003c/a\u003e chore(11.x): release 11.1.1 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/949\"\u003e#949\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/32389c887c9e75f90442ee4cc95bbab0c4e8346e\"\u003e\u003ccode\u003e32389c8\u003c/code\u003e\u003c/a\u003e fix: backport GHSA-w5hq-g745-h8pq fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/2799f71d0065ddc3c056f5b0812d1d941eaab2f5\"\u003e\u003ccode\u003e2799f71\u003c/code\u003e\u003c/a\u003e chore: update workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d1eba06be81fb3a02e16d06ef6fe959c9bb5c5c\"\u003e\u003ccode\u003e3d1eba0\u003c/code\u003e\u003c/a\u003e chore(main): release 11.1.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/866\"\u003e#866\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/a5231e7e1b98c20b23c35402a232167f476b39a2\"\u003e\u003ccode\u003ea5231e7\u003c/code\u003e\u003c/a\u003e feat: update TS types to allow\u003ccode\u003eUint8Array\u003c/code\u003e subtypes for \u003ccode\u003ebuffer\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/865\"\u003e#865\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/aeabb600a991e0c009c5a6659cf1baef62e62779\"\u003e\u003ccode\u003eaeabb60\u003c/code\u003e\u003c/a\u003e docs: docs housecleaning (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/864\"\u003e#864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/46ada3cbc4acdc907dd6924eaedcc2c53dc6095a\"\u003e\u003ccode\u003e46ada3c\u003c/code\u003e\u003c/a\u003e chore(main): release 11.0.5 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/861\"\u003e#861\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/24ac2fd067e5bab97a5ccea3f6f365a64c01d140\"\u003e\u003ccode\u003e24ac2fd\u003c/code\u003e\u003c/a\u003e fix: add TS unit test, pin to typescript@5.0.4 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/860\"\u003e#860\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e426aaa97527a41e9a033ce70d57995c437a9e06\"\u003e\u003ccode\u003ee426aaa\u003c/code\u003e\u003c/a\u003e build: use \u003ccode\u003enpm pack\u003c/code\u003e tarball for local examples and testing instead of .loca...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/050cd5b9df5aa73097a1677b9e7c3482eb4367fc\"\u003e\u003ccode\u003e050cd5b\u003c/code\u003e\u003c/a\u003e chore(main): release 11.0.4 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/842\"\u003e#842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v8.3.2...v11.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/rubenvitt/bluelight-hub/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/rubenvitt/bluelight-hub/pull/767","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/rubenvitt%2Fbluelight-hub/issues/767","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/767/packages"},{"uuid":"4467175114","node_id":"PR_kwDOGjojcc7cjPhx","number":759,"state":"open","title":"build(deps): bump the npm_and_yarn group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-18T07:36:28.000Z","updated_at":"2026-05-18T07:38:50.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":6,"packages":[{"name":"defu","old_version":"6.1.4","new_version":"6.1.7","repository_url":"https://github.com/unjs/defu"},{"name":"diff","old_version":"8.0.2","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"flatted","old_version":"3.3.3","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"h3","old_version":"2.0.1-rc.7","new_version":"2.0.1-rc.22","repository_url":"https://github.com/h3js/h3"},{"name":"seroval","old_version":"1.3.2","new_version":"1.5.4","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"undici","old_version":"7.16.0","new_version":"7.25.0","repository_url":"https://github.com/nodejs/undici"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [defu](https://github.com/unjs/defu) | `6.1.4` | `6.1.7` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.2` | `8.0.4` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |\n| [h3](https://github.com/h3js/h3) | `2.0.1-rc.7` | `2.0.1-rc.22` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.3.2` | `1.5.4` |\n| [undici](https://github.com/nodejs/undici) | `7.16.0` | `7.25.0` |\n\n\nUpdates `defu` from 6.1.4 to 6.1.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/unjs/defu/releases\"\u003edefu's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.7\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/unjs/defu/compare/v6.1.6...v6.1.7\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e📦 Build\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCorrect the \u003ccode\u003etypes\u003c/code\u003e export entry (\u003ca href=\"https://redirect.github.com/unjs/defu/pull/160\"\u003e#160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eExport Defu types (\u003ca href=\"https://redirect.github.com/unjs/defu/pull/157\"\u003e#157\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eJakub Michálek (\u003ca href=\"https://github.com/J-Michalek\"\u003e\u003ccode\u003e@​J-Michalek\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKricsleo (\u003ca href=\"https://github.com/kricsleo\"\u003e\u003ccode\u003e@​kricsleo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.6\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/unjs/defu/compare/v6.1.5...v6.1.6\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e📦 Build\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix mixed types (\u003ca href=\"https://github.com/unjs/defu/commit/407b516\"\u003e407b516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.5\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/unjs/defu/compare/v6.1.4...v6.1.5\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent prototype pollution via \u003ccode\u003e__proto__\u003c/code\u003e in defaults (\u003ca href=\"https://redirect.github.com/unjs/defu/pull/156\"\u003e#156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore inherited enumerable properties (\u003ca href=\"https://github.com/unjs/defu/commit/11ba022\"\u003e11ba022\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e✅ Tests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd more tests for plain objects (\u003ca href=\"https://github.com/unjs/defu/commit/b65f603\"\u003eb65f603\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePooya Parsa (\u003ca href=\"https://github.com/pi0\"\u003e\u003ccode\u003e@​pi0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKricsleo (\u003ca href=\"https://github.com/kricsleo\"\u003e\u003ccode\u003e@​kricsleo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/unjs/defu/blob/main/CHANGELOG.md\"\u003edefu's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.7\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/unjs/defu/compare/v6.1.6...v6.1.7\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edefu.d.cts:\u003c/strong\u003e Export Defu types (\u003ca href=\"https://redirect.github.com/unjs/defu/pull/157\"\u003e#157\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📦 Build\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCorrect the \u003ccode\u003etypes\u003c/code\u003e export entry (\u003ca href=\"https://redirect.github.com/unjs/defu/pull/160\"\u003e#160\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eJakub Michálek (\u003ca href=\"https://github.com/J-Michalek\"\u003e\u003ccode\u003e@​J-Michalek\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKricsleo (\u003ca href=\"https://github.com/kricsleo\"\u003e\u003ccode\u003e@​kricsleo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.6\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/unjs/defu/compare/v6.1.5...v6.1.6\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e📦 Build\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix mixed types (\u003ca href=\"https://github.com/unjs/defu/commit/407b516\"\u003e407b516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePooya Parsa (\u003ca href=\"https://github.com/pi0\"\u003e\u003ccode\u003e@​pi0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.5\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/unjs/defu/compare/v6.1.4...v6.1.5\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent prototype pollution via \u003ccode\u003e__proto__\u003c/code\u003e in defaults (\u003ca href=\"https://redirect.github.com/unjs/defu/pull/156\"\u003e#156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore inherited enumerable properties (\u003ca href=\"https://github.com/unjs/defu/commit/11ba022\"\u003e11ba022\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🏡 Chore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd tea.yaml (\u003ca href=\"https://github.com/unjs/defu/commit/70cffe5\"\u003e70cffe5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate repo (\u003ca href=\"https://github.com/unjs/defu/commit/23cc432\"\u003e23cc432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix typecheck (\u003ca href=\"https://github.com/unjs/defu/commit/89df6bb\"\u003e89df6bb\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e✅ Tests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd more tests for plain objects (\u003ca href=\"https://github.com/unjs/defu/commit/b65f603\"\u003eb65f603\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🤖 CI\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/80c0146afb11ebd86183a579ec469f3abd976695\"\u003e\u003ccode\u003e80c0146\u003c/code\u003e\u003c/a\u003e chore(release): v6.1.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/40d7ef42d30db975bf80c340e7856c1ad3568321\"\u003e\u003ccode\u003e40d7ef4\u003c/code\u003e\u003c/a\u003e fix(defu.d.cts): export Defu types (\u003ca href=\"https://redirect.github.com/unjs/defu/issues/157\"\u003e#157\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/3d3a7c89ca78f3fa43ec7194b12e44e4b0568697\"\u003e\u003ccode\u003e3d3a7c8\u003c/code\u003e\u003c/a\u003e build: correct the \u003ccode\u003etypes\u003c/code\u003e export entry (\u003ca href=\"https://redirect.github.com/unjs/defu/issues/160\"\u003e#160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/001c2906010eb65c1bb13ccd1f4abea09e10405b\"\u003e\u003ccode\u003e001c290\u003c/code\u003e\u003c/a\u003e chore(release): v6.1.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/407b51645c41a57da6efac5b40967f2c60ce4f12\"\u003e\u003ccode\u003e407b516\u003c/code\u003e\u003c/a\u003e build: fix mixed types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/23e59e684cb6a432aad13f308d142247e31b6315\"\u003e\u003ccode\u003e23e59e6\u003c/code\u003e\u003c/a\u003e chore(release): v6.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/11ba02213d4b1c6b02dd686041f75edc479c98e9\"\u003e\u003ccode\u003e11ba022\u003c/code\u003e\u003c/a\u003e fix: ignore inherited enumerable properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/3942bfbbcaa72084bd4284846c83bd61ed7c8b29\"\u003e\u003ccode\u003e3942bfb\u003c/code\u003e\u003c/a\u003e fix: prevent prototype pollution via \u003ccode\u003e__proto__\u003c/code\u003e in defaults (\u003ca href=\"https://redirect.github.com/unjs/defu/issues/156\"\u003e#156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/d3ef16dabe861713192ba8679c5db8e0ac143f9b\"\u003e\u003ccode\u003ed3ef16d\u003c/code\u003e\u003c/a\u003e chore(deps): update actions/checkout action to v6 (\u003ca href=\"https://redirect.github.com/unjs/defu/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/869a053effb7b1bf49a1635e1bb211840daa589e\"\u003e\u003ccode\u003e869a053\u003c/code\u003e\u003c/a\u003e chore(deps): update actions/setup-node action to v6 (\u003ca href=\"https://redirect.github.com/unjs/defu/issues/149\"\u003e#149\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/unjs/defu/compare/v6.1.4...v6.1.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diff` from 8.0.2 to 8.0.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/667\"\u003e#667\u003c/a\u003e - \u003cstrong\u003efix another bug in \u003ccode\u003ediffWords\u003c/code\u003e when used with an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e\u003c/strong\u003e. If the text to be diffed included a combining mark after a whitespace character (i.e. roughly speaking, an accented space), \u003ccode\u003ediffWords\u003c/code\u003e would previously crash. Now this case is handled correctly.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/631\"\u003e#631\u003c/a\u003e - \u003cstrong\u003efix support for using an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e with \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e. This has been almost completely broken since the feature was added in v6.0.0, since it would outright crash on any text that featured two consecutive newlines between a pair of words (a very common case).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/635\"\u003e#635\u003c/a\u003e - \u003cstrong\u003esmall tweaks to tokenization behaviour of \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e when used \u003cem\u003ewithout\u003c/em\u003e an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e. Specifically, the soft hyphen (U+00AD) is no longer considered to be a word break, and the multiplication and division signs (\u003ccode\u003e×\u003c/code\u003e and \u003ccode\u003e÷\u003c/code\u003e) are now treated as punctuation instead of as letters / word characters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/641\"\u003e#641\u003c/a\u003e - \u003cstrong\u003ethe format of file headers in \u003ccode\u003ecreatePatch\u003c/code\u003e etc. patches can now be customised somewhat\u003c/strong\u003e. It now takes a \u003ccode\u003eheaderOptions\u003c/code\u003e option that can be used to disable the file headers entirely, or omit the \u003ccode\u003eIndex:\u003c/code\u003e line and/or the underline. In particular, this was motivated by a request to make jsdiff patches compatible with react-diff-view, which they now are if produced with \u003ccode\u003eheaderOptions: FILE_HEADERS_ONLY\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003e#647\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003e#649\u003c/a\u003e - \u003cstrong\u003efix denial-of-service vulnerabilities in \u003ccode\u003eparsePatch\u003c/code\u003e whereby adversarial input could cause a memory-leaking infinite loop, typically crashing the calling process\u003c/strong\u003e. Also fixed ReDOS vulnerabilities whereby adversarially-crafted patch headers could take cubic time to parse. Now, \u003ccode\u003eparsePatch\u003c/code\u003e should reliably take linear time. (Handling of headers that include the line break characters \u003ccode\u003e\\r\u003c/code\u003e, \u003ccode\u003e\\u2028\u003c/code\u003e, or \u003ccode\u003e\\u2029\u003c/code\u003e in non-trailing positions is also now more reasonable as side effect of the fix.)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/dd2f99497703a1540b2ae406b51c49b74b5fc1a1\"\u003e\u003ccode\u003edd2f994\u003c/code\u003e\u003c/a\u003e 8.0.4 release (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/3cc438434db53c5d1c40412b727ea7650f6f145a\"\u003e\u003ccode\u003e3cc4384\u003c/code\u003e\u003c/a\u003e Update docs on releasing to reflect migration to yarn berry (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/6fc2aa6b7672af08774b50aae00d97b99c5b5715\"\u003e\u003ccode\u003e6fc2aa6\u003c/code\u003e\u003c/a\u003e yarn up '*' \u0026amp;\u0026amp; yarn up -R '**' (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/676\"\u003e#676\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/af7393ac3404565dc8da655c2e7aeeed28c01ff7\"\u003e\u003ccode\u003eaf7393a\u003c/code\u003e\u003c/a\u003e yarn up '*' \u0026amp;\u0026amp; yarn up -R '**' (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/670\"\u003e#670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/4b5d1800370bf29b61a3378fb8086aeb231d3ef7\"\u003e\u003ccode\u003e4b5d180\u003c/code\u003e\u003c/a\u003e Fix another bug in diffWords's \u0026quot;intlSegmenter\u0026quot; mode (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/667\"\u003e#667\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/10da50c466709e7bd4b192dac96af0af46f8b7bd\"\u003e\u003ccode\u003e10da50c\u003c/code\u003e\u003c/a\u003e yarn up '*' \u0026amp;\u0026amp; yarn up -R '**' (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/666\"\u003e#666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/8dc164b5d133b8114738927aa90ed6dfcf49d497\"\u003e\u003ccode\u003e8dc164b\u003c/code\u003e\u003c/a\u003e Migrate from Yarn Classic to Yarn Berry (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/662\"\u003e#662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/750fbd6472fcdda02d90f8c7d04afa7119953447\"\u003e\u003ccode\u003e750fbd6\u003c/code\u003e\u003c/a\u003e yarn upgrade --latest (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/661\"\u003e#661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/abe2bde240f9fb65d29ebf275fb8fec7d39b1d63\"\u003e\u003ccode\u003eabe2bde\u003c/code\u003e\u003c/a\u003e Add release notes for undocumented releases (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/658\"\u003e#658\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/13576bfbcc444ce48f71cfd1e08529bd13962411\"\u003e\u003ccode\u003e13576bf\u003c/code\u003e\u003c/a\u003e 8.0.3 release (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/652\"\u003e#652\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v8.0.2...8.0.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flatted` from 3.3.3 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7\"\u003e\u003ccode\u003e3bf0909\u003c/code\u003e\u003c/a\u003e 3.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802\"\u003e\u003ccode\u003e885ddcc\u003c/code\u003e\u003c/a\u003e fix CWE-1321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3\"\u003e\u003ccode\u003e0bdba70\u003c/code\u003e\u003c/a\u003e added flatted-view to the benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20\"\u003e\u003ccode\u003e2a02dce\u003c/code\u003e\u003c/a\u003e 3.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416\"\u003e\u003ccode\u003efba4e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/WebReflection/flatted/issues/89\"\u003e#89\u003c/a\u003e from WebReflection/python-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7\"\u003e\u003ccode\u003e5fe8648\u003c/code\u003e\u003c/a\u003e added \u0026quot;when in Rome\u0026quot; also a test for PHP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0\"\u003e\u003ccode\u003e53517ad\u003c/code\u003e\u003c/a\u003e some minor improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f\"\u003e\u003ccode\u003eb3e2a0c\u003c/code\u003e\u003c/a\u003e Fixing recursion issue in Python too\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad\"\u003e\u003ccode\u003ec4b46db\u003c/code\u003e\u003c/a\u003e Add SECURITY.md for security policy and reporting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988\"\u003e\u003ccode\u003ef86d071\u003c/code\u003e\u003c/a\u003e Create dependabot.yml for version updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/WebReflection/flatted/compare/v3.3.3...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `h3` from 2.0.1-rc.7 to 2.0.1-rc.22\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/h3js/h3/releases\"\u003eh3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.1-rc.22\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/h3js/h3/compare/v2.0.1-rc.21...v2.0.1-rc.22\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🚀 Enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003etracing:\u003c/strong\u003e Export \u003ccode\u003ewrapHandlerWithTracing\u003c/code\u003e for manual handler wrapping (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1369\"\u003e#1369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003etoEventHandler:\u003c/strong\u003e Validate h3 subapp instance to pick \u003ccode\u003e.handler\u003c/code\u003e (\u003ca href=\"https://github.com/h3js/h3/commit/a94b7fb\"\u003ea94b7fb\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e💅 Refactors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSplit plugin definition (\u003ca href=\"https://github.com/h3js/h3/commit/40bddff\"\u003e40bddff\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📦 Build\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSimplify chunk names (\u003ca href=\"https://github.com/h3js/h3/commit/07c118d\"\u003e07c118d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePooya Parsa (\u003ca href=\"https://github.com/pi0\"\u003e\u003ccode\u003e@​pi0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAbdelrahman Awad (\u003ca href=\"https://github.com/logaretm\"\u003e\u003ccode\u003e@​logaretm\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.0.1-rc.21\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/h3js/h3/compare/v2.0.1-rc.20...v2.0.1-rc.21\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🚀 Enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCoerce thrown number/string to HTTPError (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1372\"\u003e#1372\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esetCookie:\u003c/strong\u003e Handle \u003ccode\u003eencode\u003c/code\u003e and \u003ccode\u003estringify\u003c/code\u003e serialize options (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1377\"\u003e#1377\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eevent-stream:\u003c/strong\u003e Do not emit unhandled rejection when readable side is canceled (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1376\"\u003e#1376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewithoutBase:\u003c/strong\u003e Collapse leading slashes (\u003ca href=\"https://github.com/h3js/h3/commit/64acfe6\"\u003e64acfe6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📖 Documentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix typo in error handling (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1364\"\u003e#1364\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePooya Parsa (\u003ca href=\"https://github.com/pi0\"\u003e\u003ccode\u003e@​pi0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMax (\u003ca href=\"https://github.com/onmax\"\u003e\u003ccode\u003e@​onmax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDrackin Best (\u003ca href=\"https://github.com/Drackin\"\u003e\u003ccode\u003e@​Drackin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKevin Dyes (\u003ca href=\"https://github.com/dyeske61283\"\u003e\u003ccode\u003e@​dyeske61283\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDaniel Roe (\u003ca href=\"https://github.com/danielroe\"\u003e\u003ccode\u003e@​danielroe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.0.1-rc.20\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/h3js/h3/blob/main/CHANGELOG.md\"\u003eh3's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.1-rc.22\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/h3js/h3/compare/v2.0.1-rc.21...v2.0.1-rc.22\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🚀 Enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003etracing:\u003c/strong\u003e Export \u003ccode\u003ewrapHandlerWithTracing\u003c/code\u003e for manual handler wrapping (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1369\"\u003e#1369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003etoEventHandler:\u003c/strong\u003e Validate h3 subapp instance to pick \u003ccode\u003e.handler\u003c/code\u003e (\u003ca href=\"https://github.com/h3js/h3/commit/a94b7fb\"\u003ea94b7fb\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e💅 Refactors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSplit plugin definition (\u003ca href=\"https://github.com/h3js/h3/commit/40bddff\"\u003e40bddff\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📦 Build\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSimplify chunk names (\u003ca href=\"https://github.com/h3js/h3/commit/07c118d\"\u003e07c118d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🏡 Chore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate deps (\u003ca href=\"https://github.com/h3js/h3/commit/a7a0460\"\u003ea7a0460\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePooya Parsa (\u003ca href=\"https://github.com/pi0\"\u003e\u003ccode\u003e@​pi0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAbdelrahman Awad \u003ca href=\"mailto:abdelrahman.awad@sentry.io\"\u003eabdelrahman.awad@sentry.io\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.0.1-rc.21\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/h3js/h3/compare/v2.0.1-rc.20...v2.0.1-rc.21\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🚀 Enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCoerce thrown number/string to HTTPError (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1372\"\u003e#1372\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esetCookie:\u003c/strong\u003e Handle \u003ccode\u003eencode\u003c/code\u003e and \u003ccode\u003estringify\u003c/code\u003e serialize options (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1377\"\u003e#1377\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eevent-stream:\u003c/strong\u003e Do not emit unhandled rejection when readable side is canceled (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1376\"\u003e#1376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewithoutBase:\u003c/strong\u003e Collapse leading slashes (\u003ca href=\"https://github.com/h3js/h3/commit/64acfe6\"\u003e64acfe6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📖 Documentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix typo in error handling (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1364\"\u003e#1364\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🏡 Chore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate deps (\u003ca href=\"https://github.com/h3js/h3/commit/e2f8cbd\"\u003ee2f8cbd\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/84244b49b84e6ce6260d6b3a3590409e0d525fab\"\u003e\u003ccode\u003e84244b4\u003c/code\u003e\u003c/a\u003e chore(release): v2.0.1-rc.22\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/a7a04604afce8e41088b05956632a00bc2e8a08b\"\u003e\u003ccode\u003ea7a0460\u003c/code\u003e\u003c/a\u003e chore: update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/07c118d2aebc3bf7fe06f0ccb66c874f8334c646\"\u003e\u003ccode\u003e07c118d\u003c/code\u003e\u003c/a\u003e build: simplify chunk names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/40bddfffeee1c52312454118520a90d7cb7a5519\"\u003e\u003ccode\u003e40bddff\u003c/code\u003e\u003c/a\u003e refactor: split plugin definition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/a94b7fbc2feffd983b04a3c9d0b7202c149fab91\"\u003e\u003ccode\u003ea94b7fb\u003c/code\u003e\u003c/a\u003e fix(toEventHandler): validate h3 subapp instance to pick \u003ccode\u003e.handler\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/db7ef498f62f5da9092ddc4b56e1403ef68d95cb\"\u003e\u003ccode\u003edb7ef49\u003c/code\u003e\u003c/a\u003e feat(tracing): export \u003ccode\u003ewrapHandlerWithTracing\u003c/code\u003e for manual handler wrapping (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/906e89d1713a8a4a624498770d3ad08aa11a7316\"\u003e\u003ccode\u003e906e89d\u003c/code\u003e\u003c/a\u003e chore(release): v2.0.1-rc.21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/4e38f49a0bfbd9510588386538f4246313395cdd\"\u003e\u003ccode\u003e4e38f49\u003c/code\u003e\u003c/a\u003e chore: update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/351b2aa15229f10be7c04e583c1a1759f059f76c\"\u003e\u003ccode\u003e351b2aa\u003c/code\u003e\u003c/a\u003e feat: coerce thrown number/string to HTTPError (\u003ca href=\"https://redirect.github.com/h3js/h3/issues/1372\"\u003e#1372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/10128d11a499ab866033de2bf6f9f8a278fc46fb\"\u003e\u003ccode\u003e10128d1\u003c/code\u003e\u003c/a\u003e docs: fix typo in error handling (\u003ca href=\"https://redirect.github.com/h3js/h3/issues/1364\"\u003e#1364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/h3js/h3/compare/v2.0.1-rc.7...v2.0.1-rc.22\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `seroval` from 1.3.2 to 1.5.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lxsmnsyc/seroval/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `undici` from 7.16.0 to 7.25.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodejs/undici/releases\"\u003eundici's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.25.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nodejs/undici/compare/v7.24.8...v7.25.0\"\u003ehttps://github.com/nodejs/undici/compare/v7.24.8...v7.25.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.24.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: backport 401 stream-backed body fix to v7.x by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5006\"\u003enodejs/undici#5006\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nodejs/undici/compare/v7.24.7...v7.24.8\"\u003ehttps://github.com/nodejs/undici/compare/v7.24.7...v7.24.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.24.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update broken links in file \u0026quot;Dispatcher.md\u0026quot; by \u003ca href=\"https://github.com/samuel871211\"\u003e\u003ccode\u003e@​samuel871211\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4924\"\u003enodejs/undici#4924\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edoc: remove unused parameter \u003ccode\u003eredirectionLimitReached\u003c/code\u003e by \u003ca href=\"https://github.com/samuel871211\"\u003e\u003ccode\u003e@​samuel871211\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4933\"\u003enodejs/undici#4933\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: skip flaky macOS Node 20 cookie fetch cases by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4932\"\u003enodejs/undici#4932\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(types): align Response with DOM fetch types by \u003ca href=\"https://github.com/theamodhshetty\"\u003e\u003ccode\u003e@​theamodhshetty\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4867\"\u003enodejs/undici#4867\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(types): Fix clone method type declaration to be an instance method rather than instance property by \u003ca href=\"https://github.com/mistval\"\u003e\u003ccode\u003e@​mistval\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4925\"\u003enodejs/undici#4925\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: skip IPv6 tests when IPv6 is not available by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4939\"\u003enodejs/undici#4939\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: correctly handle multi-value rawHeaders in fetch by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4938\"\u003enodejs/undici#4938\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eignore AGENTS.md by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4942\"\u003enodejs/undici#4942\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samuel871211\"\u003e\u003ccode\u003e@​samuel871211\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4924\"\u003enodejs/undici#4924\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mistval\"\u003e\u003ccode\u003e@​mistval\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4925\"\u003enodejs/undici#4925\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nodejs/undici/compare/v7.24.6...v7.24.7\"\u003ehttps://github.com/nodejs/undici/compare/v7.24.6...v7.24.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.24.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(test): client wasm compatible with clang 22 by \u003ca href=\"https://github.com/rozzilla\"\u003e\u003ccode\u003e@​rozzilla\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4909\"\u003enodejs/undici#4909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mock): improve error message when intercepts are exhausted by \u003ca href=\"https://github.com/travisbreaks\"\u003e\u003ccode\u003e@​travisbreaks\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4912\"\u003enodejs/undici#4912\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(websocket): support open diagnostics over h2 by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4921\"\u003enodejs/undici#4921\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: assume http/https scheme for scheme-less proxy env vars by \u003ca href=\"https://github.com/travisbreaks\"\u003e\u003ccode\u003e@​travisbreaks\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4914\"\u003enodejs/undici#4914\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(cache): check Authorization on request headers per RFC 9111 §3.5 by \u003ca href=\"https://github.com/metalix2\"\u003e\u003ccode\u003e@​metalix2\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4911\"\u003enodejs/undici#4911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: wrap kConnector call in try/catch to prevent client hang by \u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4834\"\u003enodejs/undici#4834\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: clarify fetch and FormData pairing by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4922\"\u003enodejs/undici#4922\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: support Connection header with connection-specific header names per RFC 7230 by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4775\"\u003enodejs/undici#4775\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: avoid prototype collisions in parseHeaders by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4923\"\u003enodejs/undici#4923\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump typescript from 5.9.3 to 6.0.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4926\"\u003enodejs/undici#4926\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: auto-init WPT submodule by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4930\"\u003enodejs/undici#4930\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rozzilla\"\u003e\u003ccode\u003e@​rozzilla\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4909\"\u003enodejs/undici#4909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4834\"\u003enodejs/undici#4834\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nodejs/undici/compare/v7.24.5...v7.24.6\"\u003ehttps://github.com/nodejs/undici/compare/v7.24.5...v7.24.6\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/12d9045923b7caebb1ae6975ef34c29dbcfd95d0\"\u003e\u003ccode\u003e12d9045\u003c/code\u003e\u003c/a\u003e Bumped v7.25.0 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5025\"\u003e#5025\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/7a6f7febb30a30748a04f38c21e3641c77d21b0e\"\u003e\u003ccode\u003e7a6f7fe\u003c/code\u003e\u003c/a\u003e Bumped v7.24.8 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5020\"\u003e#5020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/1f85ae4b27ed6401e7ccc35eb546ad2e5976121f\"\u003e\u003ccode\u003e1f85ae4\u003c/code\u003e\u003c/a\u003e fix: avoid 401 failures for stream-backed request bodies (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4941\"\u003e#4941\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5006\"\u003e#5006\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/c6610674dfad7c205ddf0f27831133973ad7894e\"\u003e\u003ccode\u003ec661067\u003c/code\u003e\u003c/a\u003e chore: update v7.x maintenance release flow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/84f23e2a19cd0f585579c4257d801e4ec2d65dbd\"\u003e\u003ccode\u003e84f23e2\u003c/code\u003e\u003c/a\u003e Bumped v7.24.7 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4947\"\u003e#4947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/a770b1033201984b9e8082a9bf955414bff5dc2e\"\u003e\u003ccode\u003ea770b10\u003c/code\u003e\u003c/a\u003e ignore AGENTS.md (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4942\"\u003e#4942\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/6acd19beaf67c1a2d07bcd38f40d0b751a81e7cc\"\u003e\u003ccode\u003e6acd19b\u003c/code\u003e\u003c/a\u003e fix: correctly handle multi-value rawHeaders in fetch (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4938\"\u003e#4938\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/1da1c747c7d6e01b93ab295e0efb86623f3c8e06\"\u003e\u003ccode\u003e1da1c74\u003c/code\u003e\u003c/a\u003e test: skip IPv6 tests when IPv6 is not available (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4939\"\u003e#4939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/04cb77327f7ada95c2e5b67424cddcb22d7bf882\"\u003e\u003ccode\u003e04cb773\u003c/code\u003e\u003c/a\u003e fix(types): Fix clone method type declaration to be an instance method rather...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/5145a7c47080d1715b2723591def3a75b0c3ba63\"\u003e\u003ccode\u003e5145a7c\u003c/code\u003e\u003c/a\u003e fix(types): align Response with DOM fetch types (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4867\"\u003e#4867\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nodejs/undici/compare/v7.16.0...v7.25.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/softmaple/softmaple/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/softmaple/softmaple/pull/759","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/softmaple%2Fsoftmaple/issues/759","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/759/packages"},{"uuid":"4410875470","node_id":"PR_kwDOQ3ffIc7Zw6kx","number":23,"state":"open","title":"chore(deps): bump the npm_and_yarn group across 2 directories with 19 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-09T03:17:40.000Z","updated_at":"2026-05-09T03:18:42.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":19,"packages":[{"name":"electron","old_version":"39.2.7","new_version":"39.8.5","repository_url":"https://github.com/electron/electron"},{"name":"vite","old_version":"7.3.0","new_version":"7.3.3","repository_url":"https://github.com/vitejs/vite"},{"name":"fast-xml-parser","old_version":"5.3.3","new_version":"5.7.3","repository_url":"https://github.com/NaturalIntelligence/fast-xml-parser"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"@hono/node-server","old_version":"1.19.9","new_version":"1.19.14","repository_url":"https://github.com/honojs/node-server"},{"name":"ajv","old_version":"6.12.6","new_version":"6.15.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"@tootallnate/once","old_version":"2.0.0","new_version":"2.0.1","repository_url":"https://github.com/TooTallNate/once"},{"name":"@xmldom/xmldom","old_version":"0.8.11","new_version":"0.8.13","repository_url":"https://github.com/xmldom/xmldom"},{"name":"express-rate-limit","old_version":"8.2.1","new_version":"8.5.1","repository_url":"https://github.com/express-rate-limit/express-rate-limit"},{"name":"fast-uri","old_version":"3.1.0","new_version":"3.1.2","repository_url":"https://github.com/fastify/fast-uri"},{"name":"flatted","old_version":"3.3.3","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"hono","old_version":"4.11.9","new_version":"4.12.18","repository_url":"https://github.com/honojs/hono"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"path-to-regexp","old_version":"8.3.0","new_version":"8.4.2","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"qs","old_version":"6.14.1","new_version":"6.15.1","repository_url":"https://github.com/ljharb/qs"},{"name":"rollup","old_version":"4.53.5","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"seroval","old_version":"1.4.0","new_version":"1.5.4","repository_url":"https://github.com/lxsmnsyc/seroval"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 18 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [electron](https://github.com/electron/electron) | `39.2.7` | `39.8.5` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.0` | `7.3.3` |\n| [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) | `5.3.3` | `5.7.3` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [@hono/node-server](https://github.com/honojs/node-server) | `1.19.9` | `1.19.14` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.15.0` |\n| [@tootallnate/once](https://github.com/TooTallNate/once) | `2.0.0` | `2.0.1` |\n| [@xmldom/xmldom](https://github.com/xmldom/xmldom) | `0.8.11` | `0.8.13` |\n| [express-rate-limit](https://github.com/express-rate-limit/express-rate-limit) | `8.2.1` | `8.5.1` |\n| [fast-uri](https://github.com/fastify/fast-uri) | `3.1.0` | `3.1.2` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |\n| [hono](https://github.com/honojs/hono) | `4.11.9` | `4.12.18` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `8.3.0` | `8.4.2` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [qs](https://github.com/ljharb/qs) | `6.14.1` | `6.15.1` |\n| [rollup](https://github.com/rollup/rollup) | `4.53.5` | `4.60.3` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.4.0` | `1.5.4` |\n\nBumps the npm_and_yarn group with 2 updates in the /apps/ui directory: [electron](https://github.com/electron/electron) and [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\n\nUpdates `electron` from 39.2.7 to 39.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/electron/electron/releases\"\u003eelectron's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eelectron v39.8.5\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.5\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a crash in \u003ccode\u003eclipboard.readImage()\u003c/code\u003e when the clipboard contains malformed image data. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50493\"\u003e#50493\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50491\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50492\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50494\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed a crash when calling an offscreen shared texture's \u003ccode\u003erelease()\u003c/code\u003e after the texture object was garbage collected. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50499\"\u003e#50499\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50500\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50501\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50502\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.4\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.4\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003enodeIntegrationInWorker\u003c/code\u003e overrides in \u003ccode\u003esetWindowOpenHandler\u003c/code\u003e were not honored for child windows sharing a renderer process with their opener. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50468\"\u003e#50468\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50163\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50467\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50134\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed crash when handling JavaScript dialogs from windows opened with invalid or empty URLs. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50400\"\u003e#50400\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50401\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50399\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50398\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed improper focus tracking in BaseWindow on MacOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50338\"\u003e#50338\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50337\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50340\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50339\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed window freeze when failing to enter/exit fullscreen on macOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50341\"\u003e#50341\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50344\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50343\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50342\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for using a proxy during yarn install. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50349\"\u003e#50349\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50352\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50350\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50351\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 485935305. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50440\"\u003e#50440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 489381399. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50443\"\u003e#50443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for chromium:475877320. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50436\"\u003e#50436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fixes for 484751092, 487117772. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50461\"\u003e#50461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.3\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.3\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded additional ASAR support to additional \u003ccode\u003efs\u003c/code\u003e copy methods. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50284\"\u003e#50284\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50287\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50286\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50285\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed user resizing of transparent windows on win32 platform. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50300\"\u003e#50300\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50301\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50298\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50299\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.2\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.2\u003c/h1\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackported fix for b/491421267. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50230\"\u003e#50230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.1\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.1\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded validation to protocol client methods to reject protocol names that do not conform to the RFC 3986 URI scheme grammar. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50156\"\u003e#50156\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50157\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50158\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50155\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue on macOS where calling \u003ccode\u003eautoUpdater.quitAndInstall()\u003c/code\u003e could fail if \u003ccode\u003echeckForUpdates()\u003c/code\u003e was called again after an update was already downloaded. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50215\"\u003e#50215\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50216\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50217\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where Chrome Devtools menus may not appear in certain embedded windows. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50136\"\u003e#50136\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50138\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50137\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003eadditionalData\u003c/code\u003e passed to \u003ccode\u003eapp.requestSingleInstanceLock\u003c/code\u003e on Windows could be truncated or fail to deserialize in the primary instance's \u003ccode\u003esecond-instance\u003c/code\u003e event. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50174\"\u003e#50174\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50177\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50162\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50154\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003escreen.getCursorScreenPoint()\u003c/code\u003e crashed on Wayland when it was called before a \u003ccode\u003eBrowserWindow\u003c/code\u003e had been created. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50106\"\u003e#50106\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50104\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50105\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/9d2f8cb4da0d35e2daf7e7f60e35313b508cb224\"\u003e\u003ccode\u003e9d2f8cb\u003c/code\u003e\u003c/a\u003e refactor: remove dead named-window lookup from guest-window-manager (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50498\"\u003e#50498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/11730047394233e70743c52567e17f4c3b2dc9fc\"\u003e\u003ccode\u003e1173004\u003c/code\u003e\u003c/a\u003e fix: crash calling OSR shared texture release() after texture GC'd (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50499\"\u003e#50499\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/be37adefd08f882e3f1fb8403d2d9e92c3009d56\"\u003e\u003ccode\u003ebe37ade\u003c/code\u003e\u003c/a\u003e fix: crash in clipboard.readImage() on malformed image data (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50493\"\u003e#50493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/7007907df08d02da98f513dcbdb430ab51be59c7\"\u003e\u003ccode\u003e7007907\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 3 changes from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50461\"\u003e#50461\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/2c8b6ee0c0a7c26871dc0b320982afd8ed29df6c\"\u003e\u003ccode\u003e2c8b6ee\u003c/code\u003e\u003c/a\u003e chore: cherry-pick fbfb27470bf6 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50436\"\u003e#50436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/4c64377ead6b53bc565d7793a2712e49882e5354\"\u003e\u003ccode\u003e4c64377\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 50b057660b4d from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50440\"\u003e#50440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/0ef056130cde0c19c81ccfbc2932df6911765849\"\u003e\u003ccode\u003e0ef0561\u003c/code\u003e\u003c/a\u003e fix: read nodeIntegrationInWorker from per-frame WebPreferences (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50122\"\u003e#50122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50\"\u003e#50\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/64373df3ca697bc6fe6e3ab1f463ba05beaf64cf\"\u003e\u003ccode\u003e64373df\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 074d472db745 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50443\"\u003e#50443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/13e44072be367f516cfad36f95d183765174f4bf\"\u003e\u003ccode\u003e13e4407\u003c/code\u003e\u003c/a\u003e fix: don't re-parse URL unnecessarily when handling dialogs (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50400\"\u003e#50400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/16a038502a4ea0c79976be60bcc8f28a49f1ab99\"\u003e\u003ccode\u003e16a0385\u003c/code\u003e\u003c/a\u003e ci: output build cache hit rate as GHA annotation (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50369\"\u003e#50369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/electron/electron/compare/v39.2.7...v39.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 7.3.0 to 7.3.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.3.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.3/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.3/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.2...v7.3.3\"\u003e7.3.3\u003c/a\u003e (2026-05-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid destructure lowering for newer safari (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22346\"\u003e#22346\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/5ab51c0f76f0896175e02ad797c1f5fe116d02f4\"\u003e5ab51c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.1...v7.3.2\"\u003e7.3.2\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e09d8c90\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebackport \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22162\"\u003e#22162\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e19db0f2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echeck \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22160\"\u003e#22160\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003ef8103cc\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.0...v7.3.1\"\u003e7.3.1\u003c/a\u003e (2026-01-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21364\"\u003e#21364\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e9d39d37\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/ca31424cccb075c88131132b929a63527d0e2b69\"\u003e\u003ccode\u003eca31424\u003c/code\u003e\u003c/a\u003e release: v7.3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/5ab51c0f76f0896175e02ad797c1f5fe116d02f4\"\u003e\u003ccode\u003e5ab51c0\u003c/code\u003e\u003c/a\u003e fix: avoid destructure lowering for newer safari (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22346\"\u003e#22346\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/cc383e07b66d4c5a9768fcb570e0af812cb8d999\"\u003e\u003ccode\u003ecc383e0\u003c/code\u003e\u003c/a\u003e release: v7.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e\u003ccode\u003e09d8c90\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003e\u003ccode\u003ef8103cc\u003c/code\u003e\u003c/a\u003e fix: check \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160\"\u003e#22160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e\u003ccode\u003e19db0f2\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22162\"\u003e#22162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/95e8923f35d0252c9f6eb2d5e358c084542706f1\"\u003e\u003ccode\u003e95e8923\u003c/code\u003e\u003c/a\u003e release: v7.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e\u003ccode\u003e9d39d37\u003c/code\u003e\u003c/a\u003e feat: add \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/21364\"\u003e#21364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/vitejs/vite/commits/v7.3.3/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-xml-parser` from 5.3.3 to 5.7.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/releases\"\u003efast-xml-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003efix minor old bugs and update builder\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: alwaysCreateTextNode should create text node when attributes are present for self closing node\u003c/li\u003e\n\u003cli\u003efix stop node expression when ns prefix is removed (found by \u003ca href=\"https://github.com/iruizsalinas\"\u003eiruizsalinas\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XML Builder to 1.1.7\u003c/li\u003e\n\u003cli\u003emark addEntity deprecated\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ebackward compatibility for numerical external entity, fix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eallow numerical external entity for backward compatibility\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: attributesGroupName working with preserveOrder\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e: stackoverflow when tag expression is very long\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eupgrade \u003ccode\u003e@​nodable/entities\u003c/code\u003e and FXB\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003e@nodable/entities\u003c/code\u003e v2.1.0\n\u003cul\u003e\n\u003cli\u003ebreaking changes\n\u003cul\u003e\n\u003cli\u003esingle entity scan. You're not allowed to use entity value to form another entity name.\u003c/li\u003e\n\u003cli\u003eyou cant add numeric external entity\u003c/li\u003e\n\u003cli\u003eentity error message when expantion limit is crossed might change\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etypings are updated for new options related to process entity\u003c/li\u003e\n\u003cli\u003eplease follow documentation of \u003ccode\u003e@nodable/entities\u003c/code\u003e for more detail.\u003c/li\u003e\n\u003cli\u003eperformance\n\u003cul\u003e\n\u003cli\u003eif processEntities is false, then there should not be impact on performance.\u003c/li\u003e\n\u003cli\u003eif processEntities is true, but you dont pass entity decoder separately then performance may degrade by approx 8-10%\u003c/li\u003e\n\u003cli\u003eif processEntities is true, and you pass entity decoder separately\n\u003cul\u003e\n\u003cli\u003eif no entity then performance should be same as before\u003c/li\u003e\n\u003cli\u003eif there are entities then performance should be increased from past versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eignoreAttributes is not required to be set to set xml version for NCR entity value\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate 'fast-xml-builder' to sanitize malicious CDATA and comment's content\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003euse \u003ccode\u003e@​nodable/entities\u003c/code\u003e to replace entities\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo API change\u003c/li\u003e\n\u003cli\u003eNo change in performance for basic usage\u003c/li\u003e\n\u003cli\u003eNo typing change\u003c/li\u003e\n\u003cli\u003eNo config change\u003c/li\u003e\n\u003cli\u003enew dependency\u003c/li\u003e\n\u003cli\u003ebreaking: error messages for entities might have been changed.\u003c/li\u003e\n\u003cli\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.12...v5.6.0\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.12...v5.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eperformance improvment, increase entity expansion default limit\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eincrease default entity explansion limit as many projects demand for that\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003emaxEntitySize: 10000,\r\nmaxExpansionDepth: 10000,\r\nmaxTotalExpansions: Infinity,\r\nmaxExpandedLength: 100000,\r\nmaxEntityCount: 1000,\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eperformance improvement\n\u003cul\u003e\n\u003cli\u003ereduce calls to toString\u003c/li\u003e\n\u003cli\u003eearly return when entities are not present\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md\"\u003efast-xml-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003eNote: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eNote: Due to some last quick changes on v4, detail of v4.5.3 \u0026amp; v4.5.4 are not updated here. v4.5.4x is the last tag of v4 in github repository. I'm extremely sorry for the confusion\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.3 / 2006-05-05\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: alwaysCreateTextNode should create text node when attributes are present for self closing node\u003c/li\u003e\n\u003cli\u003efix stop node expression when ns prefix is removed (found by \u003ca href=\"https://github.com/iruizsalinas\"\u003eiruizsalinas\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XML Builder to 1.1.7\u003c/li\u003e\n\u003cli\u003emark addEntity deprecated\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.2 / 2026-04-25\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eallow numerical external entity for backward compatibility\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: attributesGroupName working with preserveOrder\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e: stackoverflow when tag expression is very long\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.1 / 2026-04-20\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix typo in CJS typing file\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.0 / 2026-04-17\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003e@nodable/entities\u003c/code\u003e v2.1.0\n\u003cul\u003e\n\u003cli\u003ebreaking changes\n\u003cul\u003e\n\u003cli\u003esingle entity scan. You're not allowed to user entity value to form another entity name.\u003c/li\u003e\n\u003cli\u003eyou cant add numeric external entity\u003c/li\u003e\n\u003cli\u003eentity error message when expantion limit is crossed might change\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etypings are updated for new options related to process entity\u003c/li\u003e\n\u003cli\u003eplease follow documentation of \u003ccode\u003e@nodable/entities\u003c/code\u003e for more detail.\u003c/li\u003e\n\u003cli\u003eperformance\n\u003cul\u003e\n\u003cli\u003eif processEntities is false, then there should not be impact on performance.\u003c/li\u003e\n\u003cli\u003eif processEntities is true, but you dont pass entity decoder separately then performance may degrade by approx 8-10%\u003c/li\u003e\n\u003cli\u003eif processEntities is true, and you pass entity decoder separately\n\u003cul\u003e\n\u003cli\u003eif no entity then performance should be same as before\u003c/li\u003e\n\u003cli\u003eif there are entities then performance should be increased from past versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eignoreAttributes is not required to be set to set xml version for NCR entity value\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate 'fast-xml-builder' to sanitize malicious CDATA and comment's content\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.6.0 / 2026-04-15\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: entity replacement for numeric entities\u003c/li\u003e\n\u003cli\u003euse \u003ccode\u003e@​nodable/entities\u003c/code\u003e to replace entities\n\u003cul\u003e\n\u003cli\u003ethis may change some error messages related to entities expansion limit or inavlid use\u003c/li\u003e\n\u003cli\u003epost check would be exposed in future version\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.12 / 2026-04-13\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePerformance Improvement: update path-expression-matcher\n\u003cul\u003e\n\u003cli\u003euse proxy pattern than Proxy class\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.11 / 2026-04-08\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePerformance Improvement\n\u003cul\u003e\n\u003cli\u003eintegrate ExpressionSet for stopNodes\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/d6d80429b1d1f1420902e1cebac6fe7831ba0839\"\u003e\u003ccode\u003ed6d8042\u003c/code\u003e\u003c/a\u003e update to release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/d2633709699520c514208ea70e31adb6d71ab0e8\"\u003e\u003ccode\u003ed263370\u003c/code\u003e\u003c/a\u003e remove dev dependency 'he'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/f9c9a2c19f819ab6fe0856ef4e94d6aa28fe1eec\"\u003e\u003ccode\u003ef9c9a2c\u003c/code\u003e\u003c/a\u003e update builder to 1.1.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/b65da87028f943abf5698b96385eef21e39f983e\"\u003e\u003ccode\u003eb65da87\u003c/code\u003e\u003c/a\u003e update changelog and mark addEntity deprecated\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/c2ca631f99d4d7f66e0d48001741bc8784cfe966\"\u003e\u003ccode\u003ec2ca631\u003c/code\u003e\u003c/a\u003e update fxb\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/da7519163bfdc257e90be781a05af83840b330a8\"\u003e\u003ccode\u003eda75191\u003c/code\u003e\u003c/a\u003e fix stop node expression when ns prefix is removed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/31bbc99adedcada7d52bc4745273e7d8b9824b31\"\u003e\u003ccode\u003e31bbc99\u003c/code\u003e\u003c/a\u003e fix: alwaysCreateTextNode should create text node when attributes are present...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/dab327a05acd4f62bba277fb924e2e751079eca0\"\u003e\u003ccode\u003edab327a\u003c/code\u003e\u003c/a\u003e remove unnecessary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/ab04eeb91d3013d56c6a949cf45c17deaa3a0fc8\"\u003e\u003ccode\u003eab04eeb\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/383cb3feee7f8181379f41836359e6b53379db5d\"\u003e\u003ccode\u003e383cb3f\u003c/code\u003e\u003c/a\u003e Revise security information for v6 release\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.3...v5.7.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@hono/node-server` from 1.19.9 to 1.19.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/node-server/releases\"\u003e@​hono/node-server's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.14\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: add custom inspect to lightweight Request/Response to prevent TypeError on console.log by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/340\"\u003ehonojs/node-server#340\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.13\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an issue in Serve Static Middleware where inconsistent handling of repeated slashes (\u003ccode\u003e//\u003c/code\u003e) between the router and static file resolution could allow middleware to be bypassed. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-92pp-h63x-v22m for details.\u003c/p\u003e\n\u003ch2\u003ev1.19.12\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: ignore claude setting by \u003ca href=\"https://github.com/yusukebe\"\u003e\u003ccode\u003e@​yusukebe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/314\"\u003ehonojs/node-server#314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: request draining for early 413 responses by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/329\"\u003ehonojs/node-server#329\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: do not overwrite Content-Length in the fast path pattern if Content-Length already exists. by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/309\"\u003ehonojs/node-server#309\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.10\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an authorization bypass in Serve Static Middleware caused by inconsistent URL decoding (\u003ccode\u003e%2F\u003c/code\u003e handling) between the router and static file resolution. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-wc8c-qw6v-h7f6 for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/b5e63a366d9b0ef62ac65fcafd7f69b383b03ff5\"\u003e\u003ccode\u003eb5e63a3\u003c/code\u003e\u003c/a\u003e 1.19.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c02d7770a2d29ea473403211bef0a60639885a28\"\u003e\u003ccode\u003ec02d777\u003c/code\u003e\u003c/a\u003e fix: add custom inspect to lightweight Request/Response to prevent TypeError ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/fd64e659a34ec661fd9ccda00d1b9dff88dfaf90\"\u003e\u003ccode\u003efd64e65\u003c/code\u003e\u003c/a\u003e 1.19.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/025c30f55d589ddbe6048b151d77e904f67a8cc2\"\u003e\u003ccode\u003e025c30f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/6cdb5a724952f3df5748e435637792068ebea6d9\"\u003e\u003ccode\u003e6cdb5a7\u003c/code\u003e\u003c/a\u003e 1.19.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/70250f780ec99d2ddc0dd8275a42f8e091e06e94\"\u003e\u003ccode\u003e70250f7\u003c/code\u003e\u003c/a\u003e fix: request draining for early 413 responses (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/329\"\u003e#329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/cfc08b330a1f2e0a2d8cc7797cde389465b5f4fb\"\u003e\u003ccode\u003ecfc08b3\u003c/code\u003e\u003c/a\u003e chore: ignore claude setting (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/314\"\u003e#314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/ecd4d6be55117005acfd60a22d90c4818618507b\"\u003e\u003ccode\u003eecd4d6b\u003c/code\u003e\u003c/a\u003e 1.19.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c94489955ebd855630b703022837f7fe5f925111\"\u003e\u003ccode\u003ec944899\u003c/code\u003e\u003c/a\u003e fix: do not overwrite Content-Length in the fast path pattern if Content-Leng...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/2f8ca3665f5257305603783ec9999bd1a9bec0f2\"\u003e\u003ccode\u003e2f8ca36\u003c/code\u003e\u003c/a\u003e 1.19.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.9...v1.19.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/184bc32745d9d33b2322949b9f3cb5f7609bf5ec\"\u003e\u003ccode\u003e184bc32\u003c/code\u003e\u003c/a\u003e 6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/fea46afd1a76b12ff89493f6dc1bc46730c6d379\"\u003e\u003ccode\u003efea46af\u003c/code\u003e\u003c/a\u003e test/fix prototype pollution via $data ref with format keyword (\u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/2606\"\u003e#2606\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tootallnate/once` from 2.0.0 to 2.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TooTallNate/once/releases\"\u003e@​tootallnate/once's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea1e5e2d: Fix promise hang when AbortSignal is aborted\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TooTallNate/once/blob/v2.0.1/CHANGELOG.md\"\u003e@​tootallnate/once's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.0.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea1e5e2d: Fix promise hang when AbortSignal is aborted\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/bcbb21d387e5fb2d0bf8ec2fd8d0ac97d4553241\"\u003e\u003ccode\u003ebcbb21d\u003c/code\u003e\u003c/a\u003e ci: fix OIDC publishing — Node 24, npm latest, provenance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/dc24387be8e3405f1e7c911caf76c87b72a0e145\"\u003e\u003ccode\u003edc24387\u003c/code\u003e\u003c/a\u003e Version Packages (2.x) (\u003ca href=\"https://redirect.github.com/TooTallNate/once/issues/12\"\u003e#12\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/b8a6f80afcfd2482b4bdb1e29d784340a05e0ce3\"\u003e\u003ccode\u003eb8a6f80\u003c/code\u003e\u003c/a\u003e CI: test all Node versions on Linux only\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/dabcc0fb6202663cd83994f0a21ea1c710395327\"\u003e\u003ccode\u003edabcc0f\u003c/code\u003e\u003c/a\u003e ci: drop EOL Node.js 14.x/16.x, add 22.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/b464efcf4238d92590245b4d211d2fc05a94d28a\"\u003e\u003ccode\u003eb464efc\u003c/code\u003e\u003c/a\u003e Update CI: modern Node versions, fix macOS ARM64 compat\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/a1e5e2d784bcd1c65e49fac1524c6c94fe81f871\"\u003e\u003ccode\u003ea1e5e2d\u003c/code\u003e\u003c/a\u003e Fix promise hang when AbortSignal is aborted\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/TooTallNate/once/compare/2.0.0...v2.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​tootallnate/once\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@xmldom/xmldom` from 0.8.11 to 0.8.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/releases\"\u003e@​xmldom/xmldom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.13\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e0.8.12\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/discussions/357\"\u003ehttps://github.com/xmldom/xmldom/discussions/357\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md\"\u003e@​xmldom/xmldom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003e0.8.13\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.9.8...0.9.9\"\u003e0.9.9\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eParentNode.children\u003c/code\u003e getter \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/960\"\u003e\u003ccode\u003e[#960](https://github.com/xmldom/xmldom/issues/960)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/410\"\u003e\u003ccode\u003e[#410](https://github.com/xmldom/xmldom/issues/410)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecorrectly traverse ancestor chain in \u003ccode\u003eNode.contains\u003c/code\u003e \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/931\"\u003e\u003ccode\u003e[#931](https://github.com/xmldom/xmldom/issues/931)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdated dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/yoshi389111\"\u003e\u003ccode\u003e@​yoshi389111\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003e0.8.12\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e5c14802592685bb872c042c54c3f73758875c85\"\u003e\u003ccode\u003ee5c1480\u003c/code\u003e\u003c/a\u003e 0.8.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/9611e20d75f059dc377f806a8f7ee7d1eaeaeb7c\"\u003e\u003ccode\u003e9611e20\u003c/code\u003e\u003c/a\u003e style: drop unused import in test file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/dc4dff3d1d0b5a6b97c52fcc1823a735b8821e62\"\u003e\u003ccode\u003edc4dff3\u003c/code\u003e\u003c/a\u003e docs: add 0.8.13 changelog entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/842fa38deedd2d9a9c90d0ad54aa1be75d2a41bc\"\u003e\u003ccode\u003e842fa38\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow in normalize (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/aeff69f5a32e8c1bd540683da9e10718f84f595c\"\u003e\u003ccode\u003eaeff69f\u003c/code\u003e\u003c/a\u003e test: add normalize behavioral coverage to node.test.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/cbdb0d7db8ae70760bd4cc181cb8f30bb0cd9d88\"\u003e\u003ccode\u003ecbdb0d7\u003c/code\u003e\u003c/a\u003e fix: make walkDOM iterative to prevent stack overflow (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/0b543d31794dc198c86a0358574cb5dec29674c5\"\u003e\u003ccode\u003e0b543d3\u003c/code\u003e\u003c/a\u003e test: assert namespace declarations are isolated between siblings in serializ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/c007c51909587990c962cf3d5c2acadf4c897b87\"\u003e\u003ccode\u003ec007c51\u003c/code\u003e\u003c/a\u003e refactor: migrate serializeToString to walkDOM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/2bb3899074820089d9e76ce28a5edfdacf425025\"\u003e\u003ccode\u003e2bb3899\u003c/code\u003e\u003c/a\u003e test: add serializeToString coverage for uncovered branches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e69f38d0a58731152d300e8c8eb29506f5f488fe\"\u003e\u003ccode\u003ee69f38d\u003c/code\u003e\u003c/a\u003e refactor: migrate importNode to walkDOM\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~karfau\"\u003ekarfau\u003c/a\u003e, a new releaser for \u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `express-rate-limit` from 8.2.1 to 8.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/releases\"\u003eexpress-rate-limit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.5.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.5.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.4.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.2\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/50cc3f6345f603ac2fe4eb646edd7338b9a31fbb\"\u003e\u003ccode\u003e50cc3f6\u003c/code\u003e\u003c/a\u003e 8.5.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/92c8e3efd87b9b9f89092b1f9c8c17ac134c1293\"\u003e\u003ccode\u003e92c8e3e\u003c/code\u003e\u003c/a\u003e chore: bump ip-address library to latest (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/626\"\u003e#626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/807e383875e93be940493464ea397381fc93942b\"\u003e\u003ccode\u003e807e383\u003c/code\u003e\u003c/a\u003e 8.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/b84413793127a1c392738ef26d10ec7a899d9d2d\"\u003e\u003ccode\u003eb844137\u003c/code\u003e\u003c/a\u003e v8.5.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/ceaffabad1ee435549434b6b933097a938b27abe\"\u003e\u003ccode\u003eceaffab\u003c/code\u003e\u003c/a\u003e feat: async store init (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/621\"\u003e#621\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/69568d4ea794905df4ff2e872f04e1daa1f89050\"\u003e\u003ccode\u003e69568d4\u003c/code\u003e\u003c/a\u003e 8.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/c686acd0bac3058dca4b7f116f240e694878b517\"\u003e\u003ccode\u003ec686acd\u003c/code\u003e\u003c/a\u003e v8.4.1 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/ba71353abbd8a6a5ee891faea755026cf960ead2\"\u003e\u003ccode\u003eba71353\u003c/code\u003e\u003c/a\u003e test: bump timeout in flakey skipFailedRequests test (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/dd4c8944d4a739e819306c8dde57852eac8540e0\"\u003e\u003ccode\u003edd4c894\u003c/code\u003e\u003c/a\u003e feat: allow usage of custom logger (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/616\"\u003e#616\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/2bb343cd078c311e8bc7f48b31b9047cf17f3ece\"\u003e\u003ccode\u003e2bb343c\u003c/code\u003e\u003c/a\u003e resolve Jest timeout for server-based tests (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/compare/v8.2.1...v8.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for express-rate-limit since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ip-address` from 10.0.1 to 10.2.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/beaugunderson/ip-address/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-uri` from 3.1.0 to 3.1.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fast-uri/releases\"\u003efast-uri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.2\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\"\u003ehttps://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle malformed fragment decoding as a parse error by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/171\"\u003efastify/fast-uri#171\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.1...v3.1.2\"\u003ehttps://github.com/fastify/fast-uri/compare/v3.1.1...v3.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6\"\u003ehttps://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps-dev): bump tsd from 0.32.0 to 0.33.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/148\"\u003efastify/fast-uri#148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/149\"\u003efastify/fast-uri#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(.npmrc): ignore scripts by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/150\"\u003efastify/fast-uri#150\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): remove \u003ccode\u003e@​fastify/pre-commit\u003c/code\u003e by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/151\"\u003efastify/fast-uri#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/152\"\u003efastify/fast-uri#152\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(ci): add concurrency config by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/153\"\u003efastify/fast-uri#153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/154\"\u003efastify/fast-uri#154\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/156\"\u003efastify/fast-uri#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(license): standardise license notice by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/159\"\u003efastify/fast-uri#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estyle: remove trailing whitespace by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/161\"\u003efastify/fast-uri#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove unused github files by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/162\"\u003efastify/fast-uri#162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update readme by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/164\"\u003efastify/fast-uri#164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-manager.yml from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/165\"\u003efastify/fast-uri#165\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/166\"\u003efastify/fast-uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump neostandard from 0.12.2 to 0.13.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/167\"\u003efastify/fast-uri#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add lock-threads workflow by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/169\"\u003efastify/fast-uri#169\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/162\"\u003efastify/fast-uri#162\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.1\"\u003ehttps://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/919dd8ea7689fcc220d0d9b71307f5095e723ef9\"\u003e\u003ccode\u003e919dd8e\u003c/code\u003e\u003c/a\u003e Bumped v3.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/c65ba573714af6b8e19e481d9444c27bc4355d07\"\u003e\u003ccode\u003ec65ba57\u003c/code\u003e\u003c/a\u003e fixup: linting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/6c86c17c3d76fb93aa3700ec6c0fa00faeb97293\"\u003e\u003ccode\u003e6c86c17\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/a95158ad308df4d92bbde4eba699ce5165e9f796\"\u003e\u003ccode\u003ea95158a\u003c/code\u003e\u003c/a\u003e Handle malformed fragment decoding without throwing (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/171\"\u003e#171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/cea547c91c6aae610041b17b75792ca4aa035a6d\"\u003e\u003ccode\u003ecea547c\u003c/code\u003e\u003c/a\u003e Bumped v3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/876ce79b662c3e5015e4e7dffe6f37752ad34f35\"\u003e\u003ccode\u003e876ce79\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/dcdf690b71a7bb3a19887ada65a9ab160d83bcc0\"\u003e\u003ccode\u003edcdf690\u003c/code\u003e\u003c/a\u003e ci: add lock-threads workflow (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/169\"\u003e#169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/c860e6589b1ac346f66e114b4eadb9613768108c\"\u003e\u003ccode\u003ec860e65\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump neostandard from 0.12.2 to 0.13.0 (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/167\"\u003e#167\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/9b4c6dc82fde0ca44e674403ece9185d85bb6d5f\"\u003e\u003ccode\u003e9b4c6dc\u003c/code\u003e\u003c/a\u003e build(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/166\"\u003e#166\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/85d09a9f7aa76b32c2bb005a90a71e144c361d24\"\u003e\u003ccode\u003e85d09a9\u003c/code\u003e\u003c/a\u003e build(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-mana...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flatted` from 3.3.3 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7\"\u003e\u003ccode\u003e3bf0909\u003c/code\u003e\u003c/a\u003e 3.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802\"\u003e\u003ccode\u003e885ddcc\u003c/code\u003e\u003c/a\u003e fix CWE-1321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3\"\u003e\u003ccode\u003e0bdba70\u003c/code\u003e\u003c/a\u003e added flatted-view to the benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20\"\u003e\u003ccode\u003e2a02dce\u003c/code\u003e\u003c/a\u003e 3.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416\"\u003e\u003ccode\u003efba4e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/WebReflection/flatted/issues/89\"\u003e#89\u003c/a\u003e from WebReflection/python-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7\"\u003e\u003ccode\u003e5fe8648\u003c/code\u003e\u003c/a\u003e added \u0026quot;when in Rome\u0026quot; also a test for PHP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0\"\u003e\u003ccode\u003e53517ad\u003c/code\u003e\u003c/a\u003e some minor improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f\"\u003e\u003ccode\u003eb3e2a0c\u003c/code\u003e\u003c/a\u003e Fixing recursion issue in Python too\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad\"\u003e\u003ccode\u003ec4b46db\u003c/code\u003e\u003c/a\u003e Add SECURITY.md for security policy and reporting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988\"\u003e\u003ccode\u003ef86d071\u003c/code\u003e\u003c/a\u003e Create dependabot.yml for version updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/WebReflection/flatted/compare/v3.3.3...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hono` from 4.11.9 to 4.12.18\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/hono/releases\"\u003ehono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.12.18\u003c/h2\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cp\u003eThis release includes fixes for the following security issues:\u003c/p\u003e\n\u003ch3\u003eCache Middleware ignores Vary: Authorization / Vary: Cookie leading to cross-user cache leakage\u003c/h3\u003e\n\u003cp\u003eAffects: Cache Middleware. Fixes missing cache-skip handling for \u003ccode\u003eVary: Authorization\u003c/code\u003e and \u003ccode\u003eVary: Cookie\u003c/code\u003e, where a response cached for one authenticated user could be served to other users. GHSA-p77w-8qqv-26rm\u003c/p\u003e\n\u003ch3\u003eCSS Declaration Injection via Style Object Values in JSX SSR\u003c/h3\u003e\n\u003cp\u003eAffects: hono/jsx. Fixes a missing CSS-context escape for \u003ccode\u003estyle\u003c/code\u003e object values and property names, where untrusted input could inject additional CSS declarations. The impact is limited to CSS and does not allow JavaScript execution. GHSA-qp7p-654g-cw7p\u003c/p\u003e\n\u003ch3\u003eImproper validation of NumericDate claims (exp, nbf, iat) in JWT verify()\u003c/h3\u003e\n\u003cp\u003eAffects: \u003ccode\u003ehono/utils/jwt\u003c/code\u003e. Fixes improper validation of \u003ccode\u003eexp\u003c/code\u003e, \u003ccode\u003enbf\u003c/code\u003e, and \u003ccode\u003eiat\u003c/code\u003e claims, where falsy, non-finite, or non-numeric values could silently bypass time-based checks instead of being rejected per RFC 7519. GHSA-hm8q-7f3q-5f36\u003c/p\u003e\n\u003chr /\u003e\n\u003cp\u003eUsers who use the JWT helper, hono/jsx, or the Cache middleware are strongly encouraged to upgrade to this version.\u003c/p\u003e\n\u003ch2\u003ev4.12.17\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(jsx): normalize SVG attributes on the \u003c!-- raw HTML omitted --\u003e root element by \u003ca href=\"https://github.com/kfly8\"\u003e\u003ccode\u003e@​kfly8\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4893\"\u003ehonojs/hono#4893\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(ssg): add \u003ccode\u003eatom+xml\u003c/code\u003e and \u003ccode\u003erss+xml\u003c/code\u003e to \u003ccode\u003edefaultExtensionMap\u003c/code\u003e by \u003ca href=\"https://github.com/yuintei\"\u003e\u003ccode\u003e@​yuintei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4899\"\u003ehonojs/hono#4899\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(cors): make origin optional in CORSOptions by \u003ca href=\"https://github.com/truffle-dev\"\u003e\u003ccode\u003e@​truffle-dev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4905\"\u003ehonojs/hono#4905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(types): propagate middleware response types to app.on overloads by \u003ca href=\"https://github.com/T4ko0522\"\u003e\u003ccode\u003e@​T4ko0522\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4906\"\u003ehonojs/hono#4906\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kfly8\"\u003e\u003ccode\u003e@​kfly8\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4893\"\u003ehonojs/hono#4893\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truffle-dev\"\u003e\u003ccode\u003e@​truffle-dev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4905\"\u003ehonojs/hono#4905\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/hono/compare/v4.12.16...v4.12.17\"\u003ehttps://github.com/honojs/hono/compare/v4.12.16...v4.12.17\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.12.16\u003c/h2\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cp\u003eThis release includes fixes for the following security issues:\u003c/p\u003e\n\u003ch3\u003eUnvalidated JSX Tag Names in hono/jsx May Allow HTML Injection\u003c/h3\u003e\n\u003cp\u003eAffects: hono/jsx. Fixes missing validation of JSX tag names when u...\n\n_Description has been truncated_","html_url":"https://github.com/helton-godoy/automaker/pull/23","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/helton-godoy%2Fautomaker/issues/23","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/23/packages"},{"uuid":"4410359350","node_id":"PR_kwDOQDqWxs7ZvMqa","number":32,"state":"open","title":"Bump the npm_and_yarn group across 8 directories with 17 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":6,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-09T00:50:27.000Z","updated_at":"2026-05-09T00:58:42.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":17,"packages":[{"name":"drizzle-orm","old_version":"0.41.0","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"electron","old_version":"38.2.2","new_version":"39.8.5","repository_url":"https://github.com/electron/electron"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.3","repository_url":"https://github.com/vitejs/vite"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"@hono/node-server","old_version":"1.19.9","new_version":"1.19.14","repository_url":"https://github.com/honojs/node-server"},{"name":"ajv","old_version":"6.12.6","new_version":"6.15.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"@xmldom/xmldom","old_version":"0.8.11","new_version":"0.8.13","repository_url":"https://github.com/xmldom/xmldom"},{"name":"axios","old_version":"1.13.4","new_version":"1.16.0","repository_url":"https://github.com/axios/axios"},{"name":"express-rate-limit","old_version":"8.2.1","new_version":"8.5.1","repository_url":"https://github.com/express-rate-limit/express-rate-limit"},{"name":"fast-uri","old_version":"3.1.0","new_version":"3.1.2","repository_url":"https://github.com/fastify/fast-uri"},{"name":"hono","old_version":"4.11.8","new_version":"4.12.18","repository_url":"https://github.com/honojs/hono"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"next","old_version":"16.1.6","new_version":"16.2.6","repository_url":"https://github.com/vercel/next.js"},{"name":"seroval","old_version":"1.3.2","new_version":"1.5.4","repository_url":"https://github.com/lxsmnsyc/seroval"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 15 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.41.0` | `0.45.2` |\n| [electron](https://github.com/electron/electron) | `38.2.2` | `39.8.5` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.3` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.14` |\n| [@hono/node-server](https://github.com/honojs/node-server) | `1.19.9` | `1.19.14` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.15.0` |\n| [@xmldom/xmldom](https://github.com/xmldom/xmldom) | `0.8.11` | `0.8.13` |\n| [axios](https://github.com/axios/axios) | `1.13.4` | `1.16.0` |\n| [express-rate-limit](https://github.com/express-rate-limit/express-rate-limit) | `8.2.1` | `8.5.1` |\n| [fast-uri](https://github.com/fastify/fast-uri) | `3.1.0` | `3.1.2` |\n| [hono](https://github.com/honojs/hono) | `4.11.8` | `4.12.18` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [next](https://github.com/vercel/next.js) | `16.1.6` | `16.2.6` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.3.2` | `1.5.4` |\n\nBumps the npm_and_yarn group with 1 update in the /e2e-tests/fixtures/import-app/astro directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /e2e-tests/fixtures/import-app/minimal directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /e2e-tests/fixtures/import-app/minimal-with-ai-rules directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /e2e-tests/fixtures/import-app/select-component directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 4 updates in the /packages/@dyad-sh/nextjs-webpack-component-tagger directory: [brace-expansion](https://github.com/juliangruber/brace-expansion), [ajv](https://github.com/ajv-validator/ajv), [fast-uri](https://github.com/fastify/fast-uri) and [picomatch](https://github.com/micromatch/picomatch).\nBumps the npm_and_yarn group with 4 updates in the /packages/@dyad-sh/react-vite-component-tagger directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite), [brace-expansion](https://github.com/juliangruber/brace-expansion), [ajv](https://github.com/ajv-validator/ajv) and [picomatch](https://github.com/micromatch/picomatch).\nBumps the npm_and_yarn group with 4 updates in the /scaffold directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite), [brace-expansion](https://github.com/juliangruber/brace-expansion), [ajv](https://github.com/ajv-validator/ajv) and [lodash](https://github.com/lodash/lodash).\n\nUpdates `drizzle-orm` from 0.41.0 to 0.45.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/releases\"\u003edrizzle-orm's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.45.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esql.identifier()\u003c/code\u003e, \u003ccode\u003esql.as()\u003c/code\u003e escaping issues. Previously all the values passed to this functions were not properly escaped\ncausing a possible SQL Injection (CWE-89) vulnerability\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/EthanKim88\"\u003e\u003ccode\u003e@​EthanKim88\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/0x90sh\"\u003e\u003ccode\u003e@​0x90sh\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/wgoodall01\"\u003e\u003ccode\u003e@​wgoodall01\u003c/code\u003e\u003c/a\u003e for reaching out to us with a reproduction and suggested fix\u003c/p\u003e\n\u003ch2\u003e0.45.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed pg-native Pool detection in node-postgres transactions breaking in environments with forbidden \u003ccode\u003erequire()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5107\"\u003e#5107\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.45.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed pg-native Pool detection in node-postgres transactions\u003c/li\u003e\n\u003cli\u003eAllowed subqueries in select fields\u003c/li\u003e\n\u003cli\u003eUpdated typo algorythm =\u0026gt; algorithm\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003e$onUpdate\u003c/code\u003e not handling \u003ccode\u003eSQL\u003c/code\u003e values (fixes \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/2388\"\u003e#2388\u003c/a\u003e, tests implemented by \u003ca href=\"https://github.com/L-Mario564\"\u003eL-Mario564\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/pull/2911\"\u003e#2911\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003epg\u003c/code\u003e mappers not handling \u003ccode\u003eDate\u003c/code\u003e instances in \u003ccode\u003ebun-sql:postgresql\u003c/code\u003e driver responses for \u003ccode\u003edate\u003c/code\u003e, \u003ccode\u003etimestamp\u003c/code\u003e types (fixes \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/4493\"\u003e#4493\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix durable sqlite transaction return value \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/3746\"\u003e#3746\u003c/a\u003e - thanks \u003ca href=\"https://github.com/joaocstro\"\u003e\u003ccode\u003e@​joaocstro\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add $replicas reference \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/4874\"\u003e#4874\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed invalid usage of \u003ccode\u003e.one()\u003c/code\u003e in \u003ccode\u003edurable-sqlite\u003c/code\u003e session\u003c/li\u003e\n\u003cli\u003eFixed spread operator related crash in sqlite \u003ccode\u003eblob\u003c/code\u003e columns\u003c/li\u003e\n\u003cli\u003eBetter browser support for sqlite \u003ccode\u003eblob\u003c/code\u003e columns\u003c/li\u003e\n\u003cli\u003eImproved sqlite \u003ccode\u003eblob\u003c/code\u003e mapping\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix wrong DrizzleQueryError export. thanks \u003ca href=\"https://github.com/nathankleyn\"\u003e\u003ccode\u003e@​nathankleyn\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed types of \u003ccode\u003e$client\u003c/code\u003e for clients created by drizzle function\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"ts\"\u003e\u003ccode\u003eawait db.$client.[...]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eAdded the \u003ccode\u003eupdated_at\u003c/code\u003e column to the \u003ccode\u003eneon_auth.users_sync\u003c/code\u003e table definition.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[BUG]: Fixed type issues with joins with certain variations of \u003ccode\u003etsconfig\u003c/code\u003e: \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/4535\"\u003e#4535\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/4457\"\u003e#4457\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/4586\"\u003e[BUG]: Drizzle can no longer run on Durable Objects\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.0\u003c/h2\u003e\n\u003ch2\u003eError handling\u003c/h2\u003e\n\u003cp\u003eStarting from this version, we’ve introduced a new \u003ccode\u003eDrizzleQueryError\u003c/code\u003e that wraps all errors from database drivers and provides a set of useful information:\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/273c78071d4841b497f5144734b38294df7ec64b\"\u003e\u003ccode\u003e273c780\u003c/code\u003e\u003c/a\u003e + 0.45.2 (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5534\"\u003e#5534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/4aa6ecfee4b4728dadf6f77f071a149878a3c6c0\"\u003e\u003ccode\u003e4aa6ecf\u003c/code\u003e\u003c/a\u003e Kit updates (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5490\"\u003e#5490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/e8e6edfef5ca69c6188d320388ad440265911057\"\u003e\u003ccode\u003ee8e6edf\u003c/code\u003e\u003c/a\u003e feat(drizzle-kit): support d1 via binding (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5302\"\u003e#5302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/a086f59fba7f46f3a077893ba912c99e91eaa760\"\u003e\u003ccode\u003ea086f59\u003c/code\u003e\u003c/a\u003e Fixed pg-native Pool detection in node-postgres transactions breaking in envi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/c445637df39366bcf47b12601896ce851771c1c2\"\u003e\u003ccode\u003ec445637\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5095\"\u003e#5095\u003c/a\u003e from drizzle-team/main-workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/e7b3aaa26456b88cd23a7843ebc95b3bddde1ba4\"\u003e\u003ccode\u003ee7b3aaa\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into main-workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/0d885a54ddafd8717f8610cf3d2899f3eef61e65\"\u003e\u003ccode\u003e0d885a5\u003c/code\u003e\u003c/a\u003e refactor: Update condition for run-feature job to improve clarity and functio...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/45a1ffbcbfdd96772d0aba7d9e43744db2dce471\"\u003e\u003ccode\u003e45a1ffb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5087\"\u003e#5087\u003c/a\u003e from drizzle-team/main-workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/6357645bd33b1f444e1d081769dd4b71c3de31f8\"\u003e\u003ccode\u003e6357645\u003c/code\u003e\u003c/a\u003e chore: Comment out NEON_HTTP_CONNECTION_STRING requirement in release workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/53dec98a936f549d0cc2e668f19db3a2df842f51\"\u003e\u003ccode\u003e53dec98\u003c/code\u003e\u003c/a\u003e refactor: Simplify release router workflow by removing unnecessary switch job...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/compare/0.41.0...0.45.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for drizzle-orm since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `electron` from 38.2.2 to 39.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/electron/electron/releases\"\u003eelectron's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eelectron v39.8.5\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.5\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a crash in \u003ccode\u003eclipboard.readImage()\u003c/code\u003e when the clipboard contains malformed image data. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50493\"\u003e#50493\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50491\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50492\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50494\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed a crash when calling an offscreen shared texture's \u003ccode\u003erelease()\u003c/code\u003e after the texture object was garbage collected. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50499\"\u003e#50499\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50500\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50501\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50502\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.4\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.4\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003enodeIntegrationInWorker\u003c/code\u003e overrides in \u003ccode\u003esetWindowOpenHandler\u003c/code\u003e were not honored for child windows sharing a renderer process with their opener. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50468\"\u003e#50468\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50163\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50467\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50134\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed crash when handling JavaScript dialogs from windows opened with invalid or empty URLs. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50400\"\u003e#50400\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50401\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50399\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50398\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed improper focus tracking in BaseWindow on MacOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50338\"\u003e#50338\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50337\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50340\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50339\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed window freeze when failing to enter/exit fullscreen on macOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50341\"\u003e#50341\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50344\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50343\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50342\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for using a proxy during yarn install. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50349\"\u003e#50349\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50352\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50350\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50351\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 485935305. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50440\"\u003e#50440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 489381399. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50443\"\u003e#50443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for chromium:475877320. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50436\"\u003e#50436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fixes for 484751092, 487117772. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50461\"\u003e#50461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.3\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.3\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded additional ASAR support to additional \u003ccode\u003efs\u003c/code\u003e copy methods. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50284\"\u003e#50284\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50287\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50286\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50285\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed user resizing of transparent windows on win32 platform. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50300\"\u003e#50300\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50301\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50298\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50299\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.2\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.2\u003c/h1\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackported fix for b/491421267. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50230\"\u003e#50230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.1\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.1\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded validation to protocol client methods to reject protocol names that do not conform to the RFC 3986 URI scheme grammar. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50156\"\u003e#50156\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50157\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50158\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50155\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue on macOS where calling \u003ccode\u003eautoUpdater.quitAndInstall()\u003c/code\u003e could fail if \u003ccode\u003echeckForUpdates()\u003c/code\u003e was called again after an update was already downloaded. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50215\"\u003e#50215\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50216\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50217\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where Chrome Devtools menus may not appear in certain embedded windows. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50136\"\u003e#50136\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50138\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50137\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003eadditionalData\u003c/code\u003e passed to \u003ccode\u003eapp.requestSingleInstanceLock\u003c/code\u003e on Windows could be truncated or fail to deserialize in the primary instance's \u003ccode\u003esecond-instance\u003c/code\u003e event. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50174\"\u003e#50174\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50177\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50162\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50154\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003escreen.getCursorScreenPoint()\u003c/code\u003e crashed on Wayland when it was called before a \u003ccode\u003eBrowserWindow\u003c/code\u003e had been created. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50106\"\u003e#50106\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50104\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50105\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/9d2f8cb4da0d35e2daf7e7f60e35313b508cb224\"\u003e\u003ccode\u003e9d2f8cb\u003c/code\u003e\u003c/a\u003e refactor: remove dead named-window lookup from guest-window-manager (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50498\"\u003e#50498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/11730047394233e70743c52567e17f4c3b2dc9fc\"\u003e\u003ccode\u003e1173004\u003c/code\u003e\u003c/a\u003e fix: crash calling OSR shared texture release() after texture GC'd (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50499\"\u003e#50499\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/be37adefd08f882e3f1fb8403d2d9e92c3009d56\"\u003e\u003ccode\u003ebe37ade\u003c/code\u003e\u003c/a\u003e fix: crash in clipboard.readImage() on malformed image data (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50493\"\u003e#50493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/7007907df08d02da98f513dcbdb430ab51be59c7\"\u003e\u003ccode\u003e7007907\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 3 changes from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50461\"\u003e#50461\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/2c8b6ee0c0a7c26871dc0b320982afd8ed29df6c\"\u003e\u003ccode\u003e2c8b6ee\u003c/code\u003e\u003c/a\u003e chore: cherry-pick fbfb27470bf6 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50436\"\u003e#50436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/4c64377ead6b53bc565d7793a2712e49882e5354\"\u003e\u003ccode\u003e4c64377\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 50b057660b4d from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50440\"\u003e#50440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/0ef056130cde0c19c81ccfbc2932df6911765849\"\u003e\u003ccode\u003e0ef0561\u003c/code\u003e\u003c/a\u003e fix: read nodeIntegrationInWorker from per-frame WebPreferences (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50122\"\u003e#50122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50\"\u003e#50\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/64373df3ca697bc6fe6e3ab1f463ba05beaf64cf\"\u003e\u003ccode\u003e64373df\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 074d472db745 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50443\"\u003e#50443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/13e44072be367f516cfad36f95d183765174f4bf\"\u003e\u003ccode\u003e13e4407\u003c/code\u003e\u003c/a\u003e fix: don't re-parse URL unnecessarily when handling dialogs (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50400\"\u003e#50400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/16a038502a4ea0c79976be60bcc8f28a49f1ab99\"\u003e\u003ccode\u003e16a0385\u003c/code\u003e\u003c/a\u003e ci: output build cache hit rate as GHA annotation (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50369\"\u003e#50369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/electron/electron/compare/v38.2.2...v39.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 7.3.1 to 7.3.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.3.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.3/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.3/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.2...v7.3.3\"\u003e7.3.3\u003c/a\u003e (2026-05-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid destructure lowering for newer safari (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22346\"\u003e#22346\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/5ab51c0f76f0896175e02ad797c1f5fe116d02f4\"\u003e5ab51c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.1...v7.3.2\"\u003e7.3.2\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e09d8c90\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebackport \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22162\"\u003e#22162\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e19db0f2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echeck \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22160\"\u003e#22160\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003ef8103cc\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/ca31424cccb075c88131132b929a63527d0e2b69\"\u003e\u003ccode\u003eca31424\u003c/code\u003e\u003c/a\u003e release: v7.3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/5ab51c0f76f0896175e02ad797c1f5fe116d02f4\"\u003e\u003ccode\u003e5ab51c0\u003c/code\u003e\u003c/a\u003e fix: avoid destructure lowering for newer safari (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22346\"\u003e#22346\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/cc383e07b66d4c5a9768fcb570e0af812cb8d999\"\u003e\u003ccode\u003ecc383e0\u003c/code\u003e\u003c/a\u003e release: v7.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e\u003ccode\u003e09d8c90\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003e\u003ccode\u003ef8103cc\u003c/code\u003e\u003c/a\u003e fix: check \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160\"\u003e#22160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e\u003ccode\u003e19db0f2\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22162\"\u003e#22162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/vitejs/vite/commits/v7.3.3/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.12 to 1.1.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/10c05fcf3699b1a29ef5e611c011af3d3c97e6e3\"\u003e\u003ccode\u003e10c05fc\u003c/code\u003e\u003c/a\u003e 1.1.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/1afa1b22ead12f6a7a02f25bf0f7d64c2439b007\"\u003e\u003ccode\u003e1afa1b2\u003c/code\u003e\u003c/a\u003e Add opt-in { max } mitigation to v1 legacy line (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/103\"\u003e#103\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/2fbb6a2aa0f984bb2fb5f60252ca6cba3e1368ec\"\u003e\u003ccode\u003e2fbb6a2\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Backport fix for GHSA-7h2j-956f-4vf2 to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/101\"\u003e#101\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/102\"\u003e#102\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/0d7652e3093d3273151729812f9b0b79a17ecba6\"\u003e\u003ccode\u003e0d7652e\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-7h2j-956f-4vf2 to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/101\"\u003e#101\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/6c353caf23beb9644f858eb3fe38d43a68b82898\"\u003e\u003ccode\u003e6c353ca\u003c/code\u003e\u003c/a\u003e 1.1.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2\"\u003e\u003ccode\u003e7fd684f\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-f886-m6hf-6m8v (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/95\"\u003e#95\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.12...v1.1.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@hono/node-server` from 1.19.9 to 1.19.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/node-server/releases\"\u003e@​hono/node-server's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.14\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: add custom inspect to lightweight Request/Response to prevent TypeError on console.log by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/340\"\u003ehonojs/node-server#340\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.13\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an issue in Serve Static Middleware where inconsistent handling of repeated slashes (\u003ccode\u003e//\u003c/code\u003e) between the router and static file resolution could allow middleware to be bypassed. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-92pp-h63x-v22m for details.\u003c/p\u003e\n\u003ch2\u003ev1.19.12\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: ignore claude setting by \u003ca href=\"https://github.com/yusukebe\"\u003e\u003ccode\u003e@​yusukebe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/314\"\u003ehonojs/node-server#314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: request draining for early 413 responses by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/329\"\u003ehonojs/node-server#329\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: do not overwrite Content-Length in the fast path pattern if Content-Length already exists. by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/309\"\u003ehonojs/node-server#309\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.10\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an authorization bypass in Serve Static Middleware caused by inconsistent URL decoding (\u003ccode\u003e%2F\u003c/code\u003e handling) between the router and static file resolution. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-wc8c-qw6v-h7f6 for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/b5e63a366d9b0ef62ac65fcafd7f69b383b03ff5\"\u003e\u003ccode\u003eb5e63a3\u003c/code\u003e\u003c/a\u003e 1.19.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c02d7770a2d29ea473403211bef0a60639885a28\"\u003e\u003ccode\u003ec02d777\u003c/code\u003e\u003c/a\u003e fix: add custom inspect to lightweight Request/Response to prevent TypeError ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/fd64e659a34ec661fd9ccda00d1b9dff88dfaf90\"\u003e\u003ccode\u003efd64e65\u003c/code\u003e\u003c/a\u003e 1.19.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/025c30f55d589ddbe6048b151d77e904f67a8cc2\"\u003e\u003ccode\u003e025c30f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/6cdb5a724952f3df5748e435637792068ebea6d9\"\u003e\u003ccode\u003e6cdb5a7\u003c/code\u003e\u003c/a\u003e 1.19.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/70250f780ec99d2ddc0dd8275a42f8e091e06e94\"\u003e\u003ccode\u003e70250f7\u003c/code\u003e\u003c/a\u003e fix: request draining for early 413 responses (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/329\"\u003e#329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/cfc08b330a1f2e0a2d8cc7797cde389465b5f4fb\"\u003e\u003ccode\u003ecfc08b3\u003c/code\u003e\u003c/a\u003e chore: ignore claude setting (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/314\"\u003e#314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/ecd4d6be55117005acfd60a22d90c4818618507b\"\u003e\u003ccode\u003eecd4d6b\u003c/code\u003e\u003c/a\u003e 1.19.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c94489955ebd855630b703022837f7fe5f925111\"\u003e\u003ccode\u003ec944899\u003c/code\u003e\u003c/a\u003e fix: do not overwrite Content-Length in the fast path pattern if Content-Leng...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/2f8ca3665f5257305603783ec9999bd1a9bec0f2\"\u003e\u003ccode\u003e2f8ca36\u003c/code\u003e\u003c/a\u003e 1.19.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.9...v1.19.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/184bc32745d9d33b2322949b9f3cb5f7609bf5ec\"\u003e\u003ccode\u003e184bc32\u003c/code\u003e\u003c/a\u003e 6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/fea46afd1a76b12ff89493f6dc1bc46730c6d379\"\u003e\u003ccode\u003efea46af\u003c/code\u003e\u003c/a\u003e test/fix prototype pollution via $data ref with format keyword (\u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/2606\"\u003e#2606\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@xmldom/xmldom` from 0.8.11 to 0.8.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/releases\"\u003e@​xmldom/xmldom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.13\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e0.8.12\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/discussions/357\"\u003ehttps://github.com/xmldom/xmldom/discussions/357\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md\"\u003e@​xmldom/xmldom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003e0.8.13\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.9.8...0.9.9\"\u003e0.9.9\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eParentNode.children\u003c/code\u003e getter \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/960\"\u003e\u003ccode\u003e[#960](https://github.com/xmldom/xmldom/issues/960)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/410\"\u003e\u003ccode\u003e[#410](https://github.com/xmldom/xmldom/issues/410)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecorrectly traverse ancestor chain in \u003ccode\u003eNode.contains\u003c/code\u003e \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/931\"\u003e\u003ccode\u003e[#931](https://github.com/xmldom/xmldom/issues/931)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdated dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/yoshi389111\"\u003e\u003ccode\u003e@​yoshi389111\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003e0.8.12\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e5c14802592685bb872c042c54c3f73758875c85\"\u003e\u003ccode\u003ee5c1480\u003c/code\u003e\u003c/a\u003e 0.8.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/9611e20d75f059dc377f806a8f7ee7d1eaeaeb7c\"\u003e\u003ccode\u003e9611e20\u003c/code\u003e\u003c/a\u003e style: drop unused import in test file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/dc4dff3d1d0b5a6b97c52fcc1823a735b8821e62\"\u003e\u003ccode\u003edc4dff3\u003c/code\u003e\u003c/a\u003e docs: add 0.8.13 changelog entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/842fa38deedd2d9a9c90d0ad54aa1be75d2a41bc\"\u003e\u003ccode\u003e842fa38\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow in normalize (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/aeff69f5a32e8c1bd540683da9e10718f84f595c\"\u003e\u003ccode\u003eaeff69f\u003c/code\u003e\u003c/a\u003e test: add normalize behavioral coverage to node.test.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/cbdb0d7db8ae70760bd4cc181cb8f30bb0cd9d88\"\u003e\u003ccode\u003ecbdb0d7\u003c/code\u003e\u003c/a\u003e fix: make walkDOM iterative to prevent stack overflow (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/0b543d31794dc198c86a0358574cb5dec29674c5\"\u003e\u003ccode\u003e0b543d3\u003c/code\u003e\u003c/a\u003e test: assert namespace declarations are isolated between siblings in serializ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/c007c51909587990c962cf3d5c2acadf4c897b87\"\u003e\u003ccode\u003ec007c51\u003c/code\u003e\u003c/a\u003e refactor: migrate serializeToString to walkDOM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/2bb3899074820089d9e76ce28a5edfdacf425025\"\u003e\u003ccode\u003e2bb3899\u003c/code\u003e\u003c/a\u003e test: add serializeToString coverage for uncovered branches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e69f38d0a58731152d300e8c8eb29506f5f488fe\"\u003e\u003ccode\u003ee69f38d\u003c/code\u003e\u003c/a\u003e refactor: migrate importNode to walkDOM\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~karfau\"\u003ekarfau\u003c/a\u003e, a new releaser for \u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.4 to 1.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFetch adapter now enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e and \u003ccode\u003emaxContentLength\u003c/code\u003e.\u003c/strong\u003e These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy requests now preserve user-supplied \u003ccode\u003eHost\u003c/code\u003e headers.\u003c/strong\u003e Previously, the proxy path could overwrite a custom \u003ccode\u003eHost\u003c/code\u003e. Virtual-host-style routing through a proxy will now behave correctly. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBasic auth credentials embedded in URLs are now URL-decoded.\u003c/strong\u003e If you have percent-encoded credentials in a URL (e.g. \u003ccode\u003ehttps://user:p%40ss@host\u003c/code\u003e), the decoded value is what now goes on the wire. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eparseProtocol\u003c/code\u003e now strictly requires a colon in the protocol separator.\u003c/strong\u003e Strings that loosely parsed as protocols before may no longer match. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecated \u003ccode\u003eunescape()\u003c/code\u003e replaced with modern UTF-8 encoding.\u003c/strong\u003e Non-ASCII URL handling is now spec-correct; consumers depending on legacy \u003ccode\u003eunescape()\u003c/code\u003e quirks may see different output bytes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003etransformRequest\u003c/code\u003e input typing change was reverted.\u003c/strong\u003e The typing change introduced in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e was reverted in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e after follow-up review — net behavior is unchanged from 1.15.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eQUERY HTTP Method:\u003c/strong\u003e Added support for the QUERY HTTP method across adapters and type definitions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10802\"\u003e#10802\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eECONNREFUSED Error Constant:\u003c/strong\u003e Exposed \u003ccode\u003eECONNREFUSED\u003c/code\u003e as a constant on \u003ccode\u003eAxiosError\u003c/code\u003e so callers can match connection-refused failures without comparing string literals (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/6485\"\u003e#6485\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEncode Helper Export:\u003c/strong\u003e Exported the internal \u003ccode\u003eencode\u003c/code\u003e helper from \u003ccode\u003ebuildURL\u003c/code\u003e so userland param serializers can reuse the same encoding logic that axios uses internally. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6897\"\u003e#6897\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Redirects \u0026amp; Headers:\u003c/strong\u003e Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing \u003ccode\u003erequestDetails\u003c/code\u003e argument on \u003ccode\u003ebeforeRedirect\u003c/code\u003e, preserved user-supplied \u003ccode\u003eHost\u003c/code\u003e headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10794\"\u003e#10794\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10800\"\u003e#10800\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6241\"\u003e#6241\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Streams \u0026amp; Timeouts:\u003c/strong\u003e Preserved the partial response object on \u003ccode\u003eAxiosError\u003c/code\u003e when a stream is aborted after headers arrive, honoured the \u003ccode\u003etimeout\u003c/code\u003e option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and \u003ccode\u003emaxRedirects: 0\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10708\"\u003e#10708\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7149\"\u003e#7149\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Enforced \u003ccode\u003emaxBodyLength\u003c/code\u003e / \u003ccode\u003emaxContentLength\u003c/code\u003e in the fetch adapter, set the \u003ccode\u003eUser-Agent\u003c/code\u003e header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a \u003ccode\u003eTypeError\u003c/code\u003e in restricted environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10772\"\u003e#10772\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10806\"\u003e#10806\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Adapter:\u003c/strong\u003e Unsubscribed the \u003ccode\u003ecancelToken\u003c/code\u003e and \u003ccode\u003eAbortSignal\u003c/code\u003e listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e Attached the parsed response to \u003ccode\u003eAxiosError\u003c/code\u003e when \u003ccode\u003eJSON.parse\u003c/code\u003e fails inside \u003ccode\u003edispatchRequest\u003c/code\u003e, prevented \u003ccode\u003esettle\u003c/code\u003e from emitting \u003ccode\u003eundefined\u003c/code\u003e error codes, and tightened the \u003ccode\u003eparseProtocol\u003c/code\u003e regex to require a colon in the protocol separator. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10724\"\u003e#10724\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes \u0026amp; Exports:\u003c/strong\u003e Aligned the CommonJS \u003ccode\u003eCancelToken\u003c/code\u003e typings with the ESM build, fixed a compiler error caused by \u003ccode\u003eRawAxiosHeaders\u003c/code\u003e, and re-exported \u003ccode\u003ecreate\u003c/code\u003e from the package index. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7414\"\u003e#7414\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6389\"\u003e#6389\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6460\"\u003e#6460\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUTF-8 Encoding:\u003c/strong\u003e Replaced the deprecated \u003ccode\u003eunescape()\u003c/code\u003e call with a modern UTF-8 encoding implementation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMisc Cleanup:\u003c/strong\u003e Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRefactor — ES6 Modernisation:\u003c/strong\u003e Modernised the \u003ccode\u003eutils\u003c/code\u003e module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Hardened the HTTP test server lifecycle to fix flaky \u003ccode\u003eFormData\u003c/code\u003e EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10820\"\u003e#10820\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10791\"\u003e#10791\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10796\"\u003e#10796\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Documented \u003ccode\u003eparamsSerializer.encode\u003c/code\u003e for strict RFC 3986 query encoding, updated the \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10821\"\u003e#10821\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10782\"\u003e#10782\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10759\"\u003e#10759\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10804\"\u003e#10804\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReverted:\u003c/strong\u003e Reverted the \u003ccode\u003etransformRequest\u003c/code\u003e input typing change from \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e after follow-up review. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eactions/setup-node\u003c/code\u003e, the \u003ccode\u003egithub-actions\u003c/code\u003e group, and \u003ccode\u003epostcss\u003c/code\u003e (in \u003ccode\u003e/docs\u003c/code\u003e) to their latest versions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10785\"\u003e#10785\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10813\"\u003e#10813\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10814\"\u003e#10814\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRelease:\u003c/strong\u003e Updated changelog and packages, and prepared the 1.16.0 release. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10790\"\u003e#10790\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/singhankit001\"\u003e\u003ccode\u003e@​singhankit001\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/iruizsalinas\"\u003e\u003ccode\u003e@​iruizsalinas\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/MarcosNocetti\"\u003e\u003ccode\u003e@​MarcosNocetti\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/deepview-autofix\"\u003e\u003ccode\u003e@​deepview-autofix\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFetch adapter now enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e and \u003ccode\u003emaxContentLength\u003c/code\u003e.\u003c/strong\u003e These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy requests now preserve user-supplied \u003ccode\u003eHost\u003c/code\u003e headers.\u003c/strong\u003e Previously, the proxy path could overwrite a custom \u003ccode\u003eHost\u003c/code\u003e. Virtual-host-style routing through a proxy will now behave correctly. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBasic auth credentials embedded in URLs are now URL-decoded.\u003c/strong\u003e If you have percent-encoded credentials in a URL (e.g. \u003ccode\u003ehttps://user:p%40ss@host\u003c/code\u003e), the decoded value is what now goes on the wire. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eparseProtocol\u003c/code\u003e now strictly requires a colon in the protocol separator.\u003c/strong\u003e Strings that loosely parsed as protocols before may no longer match. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecated \u003ccode\u003eunescape()\u003c/code\u003e replaced with modern UTF-8 encoding.\u003c/strong\u003e Non-ASCII URL handling is now spec-correct; consumers depending on legacy \u003ccode\u003eunescape()\u003c/code\u003e quirks may see different output bytes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003etransformRequest\u003c/code\u003e input typing change was reverted.\u003c/strong\u003e The typing change introduced in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e was reverted in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e after follow-up review — net behavior is unchanged from 1.15.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eQUERY HTTP Method:\u003c/strong\u003e Added support for the QUERY HTTP method across adapters and type definitions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10802\"\u003e#10802\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eECONNREFUSED Error Constant:\u003c/strong\u003e Exposed \u003ccode\u003eECONNREFUSED\u003c/code\u003e as a constant on \u003ccode\u003eAxiosError\u003c/code\u003e so callers can match connection-refused failures without comparing string literals (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/6485\"\u003e#6485\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEncode Helper Export:\u003c/strong\u003e Exported the internal \u003ccode\u003eencode\u003c/code\u003e helper from \u003ccode\u003ebuildURL\u003c/code\u003e so userland param serializers can reuse the same encoding logic that axios uses internally. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6897\"\u003e#6897\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Redirects \u0026amp; Headers:\u003c/strong\u003e Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing \u003ccode\u003erequestDetails\u003c/code\u003e argument on \u003ccode\u003ebeforeRedirect\u003c/code\u003e, preserved user-supplied \u003ccode\u003eHost\u003c/code\u003e headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10794\"\u003e#10794\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10800\"\u003e#10800\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6241\"\u003e#6241\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Streams \u0026amp; Timeouts:\u003c/strong\u003e Preserved the partial response object on \u003ccode\u003eAxiosError\u003c/code\u003e when a stream is aborted after headers arrive, honoured the \u003ccode\u003etimeout\u003c/code\u003e option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and \u003ccode\u003emaxRedirects: 0\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10708\"\u003e#10708\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7149\"\u003e#7149\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Enforced \u003ccode\u003emaxBodyLength\u003c/code\u003e / \u003ccode\u003emaxContentLength\u003c/code\u003e in the fetch adapter, set the \u003ccode\u003eUser-Agent\u003c/code\u003e header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a \u003ccode\u003eTypeError\u003c/code\u003e in restricted environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10772\"\u003e#10772\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10806\"\u003e#10806\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Adapter:\u003c/strong\u003e Unsubscribed the \u003ccode\u003ecancelToken\u003c/code\u003e and \u003ccode\u003eAbortSignal\u003c/code\u003e listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e Attached the parsed response to \u003ccode\u003eAxiosError\u003c/code\u003e when \u003ccode\u003eJSON.parse\u003c/code\u003e fails inside \u003ccode\u003edispatchRequest\u003c/code\u003e, prevented \u003ccode\u003esettle\u003c/code\u003e from emitting \u003ccode\u003eundefined\u003c/code\u003e error codes, and tightened the \u003ccode\u003eparseProtocol\u003c/code\u003e regex to require a colon in the protocol separator. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10724\"\u003e#10724\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes \u0026amp; Exports:\u003c/strong\u003e Aligned the CommonJS \u003ccode\u003eCancelToken\u003c/code\u003e typings with the ESM build, fixed a compiler error caused by \u003ccode\u003eRawAxiosHeaders\u003c/code\u003e, and re-exported \u003ccode\u003ecreate\u003c/code\u003e from the package index. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7414\"\u003e#7414\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6389\"\u003e#6389\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6460\"\u003e#6460\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUTF-8 Encoding:\u003c/strong\u003e Replaced the deprecated \u003ccode\u003eunescape()\u003c/code\u003e call with a modern UTF-8 encoding implementation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMisc Cleanup:\u003c/strong\u003e Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRefactor — ES6 Modernisation:\u003c/strong\u003e Modernised the \u003ccode\u003eutils\u003c/code\u003e module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Hardened the HTTP test server lifecycle to fix flaky \u003ccode\u003eFormData\u003c/code\u003e EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10820\"\u003e#10820\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10791\"\u003e#10791\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10796\"\u003e#10796\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Documented \u003ccode\u003eparamsSerializer.encode\u003c/code\u003e for strict RFC 3986 query encoding, updated the \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (\u003cstrong\u003e\u003ca...\n\n_Description has been truncated_\n\n\u003c!-- This is an auto-generated description by cubic. --\u003e\n---\n## Summary by cubic\nUpgrade core dependencies across the repo to patch security issues and improve build/runtime stability. Key bumps include `drizzle-orm`, `electron`, `vite`, `axios`, `@xmldom/xmldom`, and `@hono/node-server`.\n\n- **Dependencies**\n  - `drizzle-orm` 0.41.0 → 0.45.2 — fixes escaping in `sql.identifier()`/`sql.as()` (SQL injection), better error handling.\n  - `electron` 38.2.2 → 39.8.5 — stability fixes for dialogs, focus/fullscreen, clipboard, and window behavior.\n  - `vite` root 7.3.1 → 7.3.3; fixtures/scaffold 6.4.1 → 6.4.2 — security hardening and Safari/runtime fixes.\n  - `axios` 1.13.4 → 1.16.0 — enforces `maxBodyLength`/`maxContentLength` in fetch adapter, QUERY method, proxy/redirect/header fixes.\n  - `@xmldom/xmldom` 0.8.11 → 0.8.13 — XML injection mitigations and deep DOM traversal safeguards.\n  - `@hono/node-server` 1.19.9 → 1.19.14 — static file middleware security fixes and header handling improvements.\n  - Also bumped: `lodash` 4.18.1, `express-rate-limit` 8.5.1, `hono` 4.12.18, `picomatch` 2.3.2, `brace-expansion` 1.1.14, `fast-uri` 3.1.2, `next` 16.2.6, `seroval` 1.5.4.\n\n- **Migration**\n  - If using the `axios` fetch adapter, verify `maxBodyLength`/`maxContentLength`, proxy headers, and timeouts in your config.\n  - If you use `drizzle-orm` with `sql.identifier()` or `sql.as()`, confirm inputs are as expected after the escaping fix.\n  - Test Electron flows (window open, dialogs, fullscreen) on your platforms.\n  - Run a clean install and build to refresh lockfiles and generated artifacts.\n\n\u003csup\u003eWritten for commit 128d2b602e05bb949ac9f78162ca332a7c80f268. Summary will update on new commits.\u003c/sup\u003e\n\n\u003c!-- End of auto-generated description by cubic. --\u003e\n\n","html_url":"https://github.com/billlzzz10/dyad-bl1nk/pull/32","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/billlzzz10%2Fdyad-bl1nk/issues/32","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/32/packages"},{"uuid":"4395527977","node_id":"PR_kwDOQ3ffIc7Y-m2l","number":21,"state":"open","title":"chore(deps): bump the npm_and_yarn group across 2 directories with 18 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-07T01:36:17.000Z","updated_at":"2026-05-07T01:37:14.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":18,"packages":[{"name":"electron","old_version":"39.2.7","new_version":"39.8.5","repository_url":"https://github.com/electron/electron"},{"name":"vite","old_version":"7.3.0","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"fast-xml-parser","old_version":"5.3.3","new_version":"5.7.3","repository_url":"https://github.com/NaturalIntelligence/fast-xml-parser"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"@hono/node-server","old_version":"1.19.9","new_version":"1.19.14","repository_url":"https://github.com/honojs/node-server"},{"name":"ajv","old_version":"6.12.6","new_version":"6.15.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"@tootallnate/once","old_version":"2.0.0","new_version":"2.0.1","repository_url":"https://github.com/TooTallNate/once"},{"name":"@xmldom/xmldom","old_version":"0.8.11","new_version":"0.8.13","repository_url":"https://github.com/xmldom/xmldom"},{"name":"express-rate-limit","old_version":"8.2.1","new_version":"8.5.1","repository_url":"https://github.com/express-rate-limit/express-rate-limit"},{"name":"flatted","old_version":"3.3.3","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"hono","old_version":"4.11.9","new_version":"4.12.18","repository_url":"https://github.com/honojs/hono"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"path-to-regexp","old_version":"8.3.0","new_version":"8.4.2","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"qs","old_version":"6.14.1","new_version":"6.15.1","repository_url":"https://github.com/ljharb/qs"},{"name":"rollup","old_version":"4.53.5","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"seroval","old_version":"1.4.0","new_version":"1.5.4","repository_url":"https://github.com/lxsmnsyc/seroval"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 17 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [electron](https://github.com/electron/electron) | `39.2.7` | `39.8.5` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.0` | `7.3.2` |\n| [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) | `5.3.3` | `5.7.3` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [@hono/node-server](https://github.com/honojs/node-server) | `1.19.9` | `1.19.14` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.15.0` |\n| [@tootallnate/once](https://github.com/TooTallNate/once) | `2.0.0` | `2.0.1` |\n| [@xmldom/xmldom](https://github.com/xmldom/xmldom) | `0.8.11` | `0.8.13` |\n| [express-rate-limit](https://github.com/express-rate-limit/express-rate-limit) | `8.2.1` | `8.5.1` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |\n| [hono](https://github.com/honojs/hono) | `4.11.9` | `4.12.18` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `8.3.0` | `8.4.2` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [qs](https://github.com/ljharb/qs) | `6.14.1` | `6.15.1` |\n| [rollup](https://github.com/rollup/rollup) | `4.53.5` | `4.60.3` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.4.0` | `1.5.4` |\n\nBumps the npm_and_yarn group with 2 updates in the /apps/ui directory: [electron](https://github.com/electron/electron) and [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\n\nUpdates `electron` from 39.2.7 to 39.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/electron/electron/releases\"\u003eelectron's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eelectron v39.8.5\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.5\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a crash in \u003ccode\u003eclipboard.readImage()\u003c/code\u003e when the clipboard contains malformed image data. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50493\"\u003e#50493\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50491\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50492\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50494\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed a crash when calling an offscreen shared texture's \u003ccode\u003erelease()\u003c/code\u003e after the texture object was garbage collected. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50499\"\u003e#50499\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50500\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50501\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50502\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.4\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.4\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003enodeIntegrationInWorker\u003c/code\u003e overrides in \u003ccode\u003esetWindowOpenHandler\u003c/code\u003e were not honored for child windows sharing a renderer process with their opener. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50468\"\u003e#50468\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50163\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50467\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50134\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed crash when handling JavaScript dialogs from windows opened with invalid or empty URLs. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50400\"\u003e#50400\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50401\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50399\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50398\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed improper focus tracking in BaseWindow on MacOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50338\"\u003e#50338\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50337\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50340\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50339\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed window freeze when failing to enter/exit fullscreen on macOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50341\"\u003e#50341\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50344\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50343\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50342\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for using a proxy during yarn install. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50349\"\u003e#50349\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50352\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50350\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50351\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 485935305. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50440\"\u003e#50440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 489381399. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50443\"\u003e#50443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for chromium:475877320. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50436\"\u003e#50436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fixes for 484751092, 487117772. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50461\"\u003e#50461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.3\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.3\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded additional ASAR support to additional \u003ccode\u003efs\u003c/code\u003e copy methods. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50284\"\u003e#50284\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50287\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50286\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50285\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed user resizing of transparent windows on win32 platform. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50300\"\u003e#50300\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50301\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50298\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50299\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.2\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.2\u003c/h1\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackported fix for b/491421267. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50230\"\u003e#50230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.1\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.1\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded validation to protocol client methods to reject protocol names that do not conform to the RFC 3986 URI scheme grammar. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50156\"\u003e#50156\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50157\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50158\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50155\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue on macOS where calling \u003ccode\u003eautoUpdater.quitAndInstall()\u003c/code\u003e could fail if \u003ccode\u003echeckForUpdates()\u003c/code\u003e was called again after an update was already downloaded. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50215\"\u003e#50215\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50216\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50217\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where Chrome Devtools menus may not appear in certain embedded windows. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50136\"\u003e#50136\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50138\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50137\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003eadditionalData\u003c/code\u003e passed to \u003ccode\u003eapp.requestSingleInstanceLock\u003c/code\u003e on Windows could be truncated or fail to deserialize in the primary instance's \u003ccode\u003esecond-instance\u003c/code\u003e event. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50174\"\u003e#50174\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50177\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50162\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50154\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003escreen.getCursorScreenPoint()\u003c/code\u003e crashed on Wayland when it was called before a \u003ccode\u003eBrowserWindow\u003c/code\u003e had been created. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50106\"\u003e#50106\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50104\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50105\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/9d2f8cb4da0d35e2daf7e7f60e35313b508cb224\"\u003e\u003ccode\u003e9d2f8cb\u003c/code\u003e\u003c/a\u003e refactor: remove dead named-window lookup from guest-window-manager (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50498\"\u003e#50498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/11730047394233e70743c52567e17f4c3b2dc9fc\"\u003e\u003ccode\u003e1173004\u003c/code\u003e\u003c/a\u003e fix: crash calling OSR shared texture release() after texture GC'd (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50499\"\u003e#50499\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/be37adefd08f882e3f1fb8403d2d9e92c3009d56\"\u003e\u003ccode\u003ebe37ade\u003c/code\u003e\u003c/a\u003e fix: crash in clipboard.readImage() on malformed image data (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50493\"\u003e#50493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/7007907df08d02da98f513dcbdb430ab51be59c7\"\u003e\u003ccode\u003e7007907\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 3 changes from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50461\"\u003e#50461\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/2c8b6ee0c0a7c26871dc0b320982afd8ed29df6c\"\u003e\u003ccode\u003e2c8b6ee\u003c/code\u003e\u003c/a\u003e chore: cherry-pick fbfb27470bf6 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50436\"\u003e#50436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/4c64377ead6b53bc565d7793a2712e49882e5354\"\u003e\u003ccode\u003e4c64377\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 50b057660b4d from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50440\"\u003e#50440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/0ef056130cde0c19c81ccfbc2932df6911765849\"\u003e\u003ccode\u003e0ef0561\u003c/code\u003e\u003c/a\u003e fix: read nodeIntegrationInWorker from per-frame WebPreferences (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50122\"\u003e#50122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50\"\u003e#50\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/64373df3ca697bc6fe6e3ab1f463ba05beaf64cf\"\u003e\u003ccode\u003e64373df\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 074d472db745 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50443\"\u003e#50443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/13e44072be367f516cfad36f95d183765174f4bf\"\u003e\u003ccode\u003e13e4407\u003c/code\u003e\u003c/a\u003e fix: don't re-parse URL unnecessarily when handling dialogs (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50400\"\u003e#50400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/16a038502a4ea0c79976be60bcc8f28a49f1ab99\"\u003e\u003ccode\u003e16a0385\u003c/code\u003e\u003c/a\u003e ci: output build cache hit rate as GHA annotation (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50369\"\u003e#50369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/electron/electron/compare/v39.2.7...v39.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 7.3.0 to 7.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.3.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.1...v7.3.2\"\u003e7.3.2\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e09d8c90\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebackport \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22162\"\u003e#22162\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e19db0f2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echeck \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22160\"\u003e#22160\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003ef8103cc\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.0...v7.3.1\"\u003e7.3.1\u003c/a\u003e (2026-01-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21364\"\u003e#21364\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e9d39d37\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/cc383e07b66d4c5a9768fcb570e0af812cb8d999\"\u003e\u003ccode\u003ecc383e0\u003c/code\u003e\u003c/a\u003e release: v7.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e\u003ccode\u003e09d8c90\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003e\u003ccode\u003ef8103cc\u003c/code\u003e\u003c/a\u003e fix: check \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160\"\u003e#22160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e\u003ccode\u003e19db0f2\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22162\"\u003e#22162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/95e8923f35d0252c9f6eb2d5e358c084542706f1\"\u003e\u003ccode\u003e95e8923\u003c/code\u003e\u003c/a\u003e release: v7.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e\u003ccode\u003e9d39d37\u003c/code\u003e\u003c/a\u003e feat: add \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/21364\"\u003e#21364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/vitejs/vite/commits/v7.3.2/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-xml-parser` from 5.3.3 to 5.7.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/releases\"\u003efast-xml-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003efix minor old bugs and update builder\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: alwaysCreateTextNode should create text node when attributes are present for self closing node\u003c/li\u003e\n\u003cli\u003efix stop node expression when ns prefix is removed (found by \u003ca href=\"https://github.com/iruizsalinas\"\u003eiruizsalinas\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XML Builder to 1.1.7\u003c/li\u003e\n\u003cli\u003emark addEntity deprecated\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ebackward compatibility for numerical external entity, fix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eallow numerical external entity for backward compatibility\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: attributesGroupName working with preserveOrder\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e: stackoverflow when tag expression is very long\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eupgrade \u003ccode\u003e@​nodable/entities\u003c/code\u003e and FXB\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003e@nodable/entities\u003c/code\u003e v2.1.0\n\u003cul\u003e\n\u003cli\u003ebreaking changes\n\u003cul\u003e\n\u003cli\u003esingle entity scan. You're not allowed to use entity value to form another entity name.\u003c/li\u003e\n\u003cli\u003eyou cant add numeric external entity\u003c/li\u003e\n\u003cli\u003eentity error message when expantion limit is crossed might change\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etypings are updated for new options related to process entity\u003c/li\u003e\n\u003cli\u003eplease follow documentation of \u003ccode\u003e@nodable/entities\u003c/code\u003e for more detail.\u003c/li\u003e\n\u003cli\u003eperformance\n\u003cul\u003e\n\u003cli\u003eif processEntities is false, then there should not be impact on performance.\u003c/li\u003e\n\u003cli\u003eif processEntities is true, but you dont pass entity decoder separately then performance may degrade by approx 8-10%\u003c/li\u003e\n\u003cli\u003eif processEntities is true, and you pass entity decoder separately\n\u003cul\u003e\n\u003cli\u003eif no entity then performance should be same as before\u003c/li\u003e\n\u003cli\u003eif there are entities then performance should be increased from past versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eignoreAttributes is not required to be set to set xml version for NCR entity value\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate 'fast-xml-builder' to sanitize malicious CDATA and comment's content\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003euse \u003ccode\u003e@​nodable/entities\u003c/code\u003e to replace entities\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo API change\u003c/li\u003e\n\u003cli\u003eNo change in performance for basic usage\u003c/li\u003e\n\u003cli\u003eNo typing change\u003c/li\u003e\n\u003cli\u003eNo config change\u003c/li\u003e\n\u003cli\u003enew dependency\u003c/li\u003e\n\u003cli\u003ebreaking: error messages for entities might have been changed.\u003c/li\u003e\n\u003cli\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.12...v5.6.0\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.12...v5.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eperformance improvment, increase entity expansion default limit\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eincrease default entity explansion limit as many projects demand for that\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003emaxEntitySize: 10000,\r\nmaxExpansionDepth: 10000,\r\nmaxTotalExpansions: Infinity,\r\nmaxExpandedLength: 100000,\r\nmaxEntityCount: 1000,\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eperformance improvement\n\u003cul\u003e\n\u003cli\u003ereduce calls to toString\u003c/li\u003e\n\u003cli\u003eearly return when entities are not present\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md\"\u003efast-xml-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003eNote: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eNote: Due to some last quick changes on v4, detail of v4.5.3 \u0026amp; v4.5.4 are not updated here. v4.5.4x is the last tag of v4 in github repository. I'm extremely sorry for the confusion\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.3 / 2006-05-05\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: alwaysCreateTextNode should create text node when attributes are present for self closing node\u003c/li\u003e\n\u003cli\u003efix stop node expression when ns prefix is removed (found by \u003ca href=\"https://github.com/iruizsalinas\"\u003eiruizsalinas\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XML Builder to 1.1.7\u003c/li\u003e\n\u003cli\u003emark addEntity deprecated\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.2 / 2026-04-25\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eallow numerical external entity for backward compatibility\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: attributesGroupName working with preserveOrder\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e: stackoverflow when tag expression is very long\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.1 / 2026-04-20\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix typo in CJS typing file\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.0 / 2026-04-17\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003e@nodable/entities\u003c/code\u003e v2.1.0\n\u003cul\u003e\n\u003cli\u003ebreaking changes\n\u003cul\u003e\n\u003cli\u003esingle entity scan. You're not allowed to user entity value to form another entity name.\u003c/li\u003e\n\u003cli\u003eyou cant add numeric external entity\u003c/li\u003e\n\u003cli\u003eentity error message when expantion limit is crossed might change\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etypings are updated for new options related to process entity\u003c/li\u003e\n\u003cli\u003eplease follow documentation of \u003ccode\u003e@nodable/entities\u003c/code\u003e for more detail.\u003c/li\u003e\n\u003cli\u003eperformance\n\u003cul\u003e\n\u003cli\u003eif processEntities is false, then there should not be impact on performance.\u003c/li\u003e\n\u003cli\u003eif processEntities is true, but you dont pass entity decoder separately then performance may degrade by approx 8-10%\u003c/li\u003e\n\u003cli\u003eif processEntities is true, and you pass entity decoder separately\n\u003cul\u003e\n\u003cli\u003eif no entity then performance should be same as before\u003c/li\u003e\n\u003cli\u003eif there are entities then performance should be increased from past versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eignoreAttributes is not required to be set to set xml version for NCR entity value\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate 'fast-xml-builder' to sanitize malicious CDATA and comment's content\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.6.0 / 2026-04-15\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: entity replacement for numeric entities\u003c/li\u003e\n\u003cli\u003euse \u003ccode\u003e@​nodable/entities\u003c/code\u003e to replace entities\n\u003cul\u003e\n\u003cli\u003ethis may change some error messages related to entities expansion limit or inavlid use\u003c/li\u003e\n\u003cli\u003epost check would be exposed in future version\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.12 / 2026-04-13\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePerformance Improvement: update path-expression-matcher\n\u003cul\u003e\n\u003cli\u003euse proxy pattern than Proxy class\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.11 / 2026-04-08\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePerformance Improvement\n\u003cul\u003e\n\u003cli\u003eintegrate ExpressionSet for stopNodes\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/d6d80429b1d1f1420902e1cebac6fe7831ba0839\"\u003e\u003ccode\u003ed6d8042\u003c/code\u003e\u003c/a\u003e update to release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/d2633709699520c514208ea70e31adb6d71ab0e8\"\u003e\u003ccode\u003ed263370\u003c/code\u003e\u003c/a\u003e remove dev dependency 'he'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/f9c9a2c19f819ab6fe0856ef4e94d6aa28fe1eec\"\u003e\u003ccode\u003ef9c9a2c\u003c/code\u003e\u003c/a\u003e update builder to 1.1.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/b65da87028f943abf5698b96385eef21e39f983e\"\u003e\u003ccode\u003eb65da87\u003c/code\u003e\u003c/a\u003e update changelog and mark addEntity deprecated\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/c2ca631f99d4d7f66e0d48001741bc8784cfe966\"\u003e\u003ccode\u003ec2ca631\u003c/code\u003e\u003c/a\u003e update fxb\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/da7519163bfdc257e90be781a05af83840b330a8\"\u003e\u003ccode\u003eda75191\u003c/code\u003e\u003c/a\u003e fix stop node expression when ns prefix is removed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/31bbc99adedcada7d52bc4745273e7d8b9824b31\"\u003e\u003ccode\u003e31bbc99\u003c/code\u003e\u003c/a\u003e fix: alwaysCreateTextNode should create text node when attributes are present...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/dab327a05acd4f62bba277fb924e2e751079eca0\"\u003e\u003ccode\u003edab327a\u003c/code\u003e\u003c/a\u003e remove unnecessary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/ab04eeb91d3013d56c6a949cf45c17deaa3a0fc8\"\u003e\u003ccode\u003eab04eeb\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/383cb3feee7f8181379f41836359e6b53379db5d\"\u003e\u003ccode\u003e383cb3f\u003c/code\u003e\u003c/a\u003e Revise security information for v6 release\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.3...v5.7.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@hono/node-server` from 1.19.9 to 1.19.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/node-server/releases\"\u003e@​hono/node-server's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.14\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: add custom inspect to lightweight Request/Response to prevent TypeError on console.log by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/340\"\u003ehonojs/node-server#340\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.13\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an issue in Serve Static Middleware where inconsistent handling of repeated slashes (\u003ccode\u003e//\u003c/code\u003e) between the router and static file resolution could allow middleware to be bypassed. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-92pp-h63x-v22m for details.\u003c/p\u003e\n\u003ch2\u003ev1.19.12\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: ignore claude setting by \u003ca href=\"https://github.com/yusukebe\"\u003e\u003ccode\u003e@​yusukebe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/314\"\u003ehonojs/node-server#314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: request draining for early 413 responses by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/329\"\u003ehonojs/node-server#329\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: do not overwrite Content-Length in the fast path pattern if Content-Length already exists. by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/309\"\u003ehonojs/node-server#309\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.10\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an authorization bypass in Serve Static Middleware caused by inconsistent URL decoding (\u003ccode\u003e%2F\u003c/code\u003e handling) between the router and static file resolution. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-wc8c-qw6v-h7f6 for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/b5e63a366d9b0ef62ac65fcafd7f69b383b03ff5\"\u003e\u003ccode\u003eb5e63a3\u003c/code\u003e\u003c/a\u003e 1.19.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c02d7770a2d29ea473403211bef0a60639885a28\"\u003e\u003ccode\u003ec02d777\u003c/code\u003e\u003c/a\u003e fix: add custom inspect to lightweight Request/Response to prevent TypeError ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/fd64e659a34ec661fd9ccda00d1b9dff88dfaf90\"\u003e\u003ccode\u003efd64e65\u003c/code\u003e\u003c/a\u003e 1.19.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/025c30f55d589ddbe6048b151d77e904f67a8cc2\"\u003e\u003ccode\u003e025c30f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/6cdb5a724952f3df5748e435637792068ebea6d9\"\u003e\u003ccode\u003e6cdb5a7\u003c/code\u003e\u003c/a\u003e 1.19.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/70250f780ec99d2ddc0dd8275a42f8e091e06e94\"\u003e\u003ccode\u003e70250f7\u003c/code\u003e\u003c/a\u003e fix: request draining for early 413 responses (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/329\"\u003e#329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/cfc08b330a1f2e0a2d8cc7797cde389465b5f4fb\"\u003e\u003ccode\u003ecfc08b3\u003c/code\u003e\u003c/a\u003e chore: ignore claude setting (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/314\"\u003e#314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/ecd4d6be55117005acfd60a22d90c4818618507b\"\u003e\u003ccode\u003eecd4d6b\u003c/code\u003e\u003c/a\u003e 1.19.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c94489955ebd855630b703022837f7fe5f925111\"\u003e\u003ccode\u003ec944899\u003c/code\u003e\u003c/a\u003e fix: do not overwrite Content-Length in the fast path pattern if Content-Leng...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/2f8ca3665f5257305603783ec9999bd1a9bec0f2\"\u003e\u003ccode\u003e2f8ca36\u003c/code\u003e\u003c/a\u003e 1.19.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.9...v1.19.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/184bc32745d9d33b2322949b9f3cb5f7609bf5ec\"\u003e\u003ccode\u003e184bc32\u003c/code\u003e\u003c/a\u003e 6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/fea46afd1a76b12ff89493f6dc1bc46730c6d379\"\u003e\u003ccode\u003efea46af\u003c/code\u003e\u003c/a\u003e test/fix prototype pollution via $data ref with format keyword (\u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/2606\"\u003e#2606\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tootallnate/once` from 2.0.0 to 2.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TooTallNate/once/releases\"\u003e@​tootallnate/once's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea1e5e2d: Fix promise hang when AbortSignal is aborted\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TooTallNate/once/blob/v2.0.1/CHANGELOG.md\"\u003e@​tootallnate/once's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.0.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea1e5e2d: Fix promise hang when AbortSignal is aborted\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/bcbb21d387e5fb2d0bf8ec2fd8d0ac97d4553241\"\u003e\u003ccode\u003ebcbb21d\u003c/code\u003e\u003c/a\u003e ci: fix OIDC publishing — Node 24, npm latest, provenance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/dc24387be8e3405f1e7c911caf76c87b72a0e145\"\u003e\u003ccode\u003edc24387\u003c/code\u003e\u003c/a\u003e Version Packages (2.x) (\u003ca href=\"https://redirect.github.com/TooTallNate/once/issues/12\"\u003e#12\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/b8a6f80afcfd2482b4bdb1e29d784340a05e0ce3\"\u003e\u003ccode\u003eb8a6f80\u003c/code\u003e\u003c/a\u003e CI: test all Node versions on Linux only\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/dabcc0fb6202663cd83994f0a21ea1c710395327\"\u003e\u003ccode\u003edabcc0f\u003c/code\u003e\u003c/a\u003e ci: drop EOL Node.js 14.x/16.x, add 22.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/b464efcf4238d92590245b4d211d2fc05a94d28a\"\u003e\u003ccode\u003eb464efc\u003c/code\u003e\u003c/a\u003e Update CI: modern Node versions, fix macOS ARM64 compat\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/a1e5e2d784bcd1c65e49fac1524c6c94fe81f871\"\u003e\u003ccode\u003ea1e5e2d\u003c/code\u003e\u003c/a\u003e Fix promise hang when AbortSignal is aborted\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/TooTallNate/once/compare/2.0.0...v2.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​tootallnate/once\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@xmldom/xmldom` from 0.8.11 to 0.8.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/releases\"\u003e@​xmldom/xmldom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.13\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e0.8.12\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/discussions/357\"\u003ehttps://github.com/xmldom/xmldom/discussions/357\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md\"\u003e@​xmldom/xmldom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003e0.8.13\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.9.8...0.9.9\"\u003e0.9.9\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eParentNode.children\u003c/code\u003e getter \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/960\"\u003e\u003ccode\u003e[#960](https://github.com/xmldom/xmldom/issues/960)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/410\"\u003e\u003ccode\u003e[#410](https://github.com/xmldom/xmldom/issues/410)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecorrectly traverse ancestor chain in \u003ccode\u003eNode.contains\u003c/code\u003e \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/931\"\u003e\u003ccode\u003e[#931](https://github.com/xmldom/xmldom/issues/931)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdated dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/yoshi389111\"\u003e\u003ccode\u003e@​yoshi389111\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003e0.8.12\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e5c14802592685bb872c042c54c3f73758875c85\"\u003e\u003ccode\u003ee5c1480\u003c/code\u003e\u003c/a\u003e 0.8.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/9611e20d75f059dc377f806a8f7ee7d1eaeaeb7c\"\u003e\u003ccode\u003e9611e20\u003c/code\u003e\u003c/a\u003e style: drop unused import in test file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/dc4dff3d1d0b5a6b97c52fcc1823a735b8821e62\"\u003e\u003ccode\u003edc4dff3\u003c/code\u003e\u003c/a\u003e docs: add 0.8.13 changelog entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/842fa38deedd2d9a9c90d0ad54aa1be75d2a41bc\"\u003e\u003ccode\u003e842fa38\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow in normalize (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/aeff69f5a32e8c1bd540683da9e10718f84f595c\"\u003e\u003ccode\u003eaeff69f\u003c/code\u003e\u003c/a\u003e test: add normalize behavioral coverage to node.test.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/cbdb0d7db8ae70760bd4cc181cb8f30bb0cd9d88\"\u003e\u003ccode\u003ecbdb0d7\u003c/code\u003e\u003c/a\u003e fix: make walkDOM iterative to prevent stack overflow (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/0b543d31794dc198c86a0358574cb5dec29674c5\"\u003e\u003ccode\u003e0b543d3\u003c/code\u003e\u003c/a\u003e test: assert namespace declarations are isolated between siblings in serializ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/c007c51909587990c962cf3d5c2acadf4c897b87\"\u003e\u003ccode\u003ec007c51\u003c/code\u003e\u003c/a\u003e refactor: migrate serializeToString to walkDOM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/2bb3899074820089d9e76ce28a5edfdacf425025\"\u003e\u003ccode\u003e2bb3899\u003c/code\u003e\u003c/a\u003e test: add serializeToString coverage for uncovered branches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e69f38d0a58731152d300e8c8eb29506f5f488fe\"\u003e\u003ccode\u003ee69f38d\u003c/code\u003e\u003c/a\u003e refactor: migrate importNode to walkDOM\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~karfau\"\u003ekarfau\u003c/a\u003e, a new releaser for \u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `express-rate-limit` from 8.2.1 to 8.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/releases\"\u003eexpress-rate-limit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.5.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.5.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.4.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.2\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/50cc3f6345f603ac2fe4eb646edd7338b9a31fbb\"\u003e\u003ccode\u003e50cc3f6\u003c/code\u003e\u003c/a\u003e 8.5.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/92c8e3efd87b9b9f89092b1f9c8c17ac134c1293\"\u003e\u003ccode\u003e92c8e3e\u003c/code\u003e\u003c/a\u003e chore: bump ip-address library to latest (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/626\"\u003e#626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/807e383875e93be940493464ea397381fc93942b\"\u003e\u003ccode\u003e807e383\u003c/code\u003e\u003c/a\u003e 8.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/b84413793127a1c392738ef26d10ec7a899d9d2d\"\u003e\u003ccode\u003eb844137\u003c/code\u003e\u003c/a\u003e v8.5.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/ceaffabad1ee435549434b6b933097a938b27abe\"\u003e\u003ccode\u003eceaffab\u003c/code\u003e\u003c/a\u003e feat: async store init (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/621\"\u003e#621\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/69568d4ea794905df4ff2e872f04e1daa1f89050\"\u003e\u003ccode\u003e69568d4\u003c/code\u003e\u003c/a\u003e 8.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/c686acd0bac3058dca4b7f116f240e694878b517\"\u003e\u003ccode\u003ec686acd\u003c/code\u003e\u003c/a\u003e v8.4.1 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/ba71353abbd8a6a5ee891faea755026cf960ead2\"\u003e\u003ccode\u003eba71353\u003c/code\u003e\u003c/a\u003e test: bump timeout in flakey skipFailedRequests test (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/dd4c8944d4a739e819306c8dde57852eac8540e0\"\u003e\u003ccode\u003edd4c894\u003c/code\u003e\u003c/a\u003e feat: allow usage of custom logger (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/616\"\u003e#616\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/2bb343cd078c311e8bc7f48b31b9047cf17f3ece\"\u003e\u003ccode\u003e2bb343c\u003c/code\u003e\u003c/a\u003e resolve Jest timeout for server-based tests (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/compare/v8.2.1...v8.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for express-rate-limit since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ip-address` from 10.0.1 to 10.2.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/beaugunderson/ip-address/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flatted` from 3.3.3 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7\"\u003e\u003ccode\u003e3bf0909\u003c/code\u003e\u003c/a\u003e 3.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802\"\u003e\u003ccode\u003e885ddcc\u003c/code\u003e\u003c/a\u003e fix CWE-1321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3\"\u003e\u003ccode\u003e0bdba70\u003c/code\u003e\u003c/a\u003e added flatted-view to the benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20\"\u003e\u003ccode\u003e2a02dce\u003c/code\u003e\u003c/a\u003e 3.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416\"\u003e\u003ccode\u003efba4e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/WebReflection/flatted/issues/89\"\u003e#89\u003c/a\u003e from WebReflection/python-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7\"\u003e\u003ccode\u003e5fe8648\u003c/code\u003e\u003c/a\u003e added \u0026quot;when in Rome\u0026quot; also a test for PHP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0\"\u003e\u003ccode\u003e53517ad\u003c/code\u003e\u003c/a\u003e some minor improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f\"\u003e\u003ccode\u003eb3e2a0c\u003c/code\u003e\u003c/a\u003e Fixing recursion issue in Python too\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad\"\u003e\u003ccode\u003ec4b46db\u003c/code\u003e\u003c/a\u003e Add SECURITY.md for security policy and reporting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988\"\u003e\u003ccode\u003ef86d071\u003c/code\u003e\u003c/a\u003e Create dependabot.yml for version updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/WebReflection/flatted/compare/v3.3.3...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hono` from 4.11.9 to 4.12.18\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/hono/releases\"\u003ehono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.12.18\u003c/h2\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cp\u003eThis release includes fixes for the following security issues:\u003c/p\u003e\n\u003ch3\u003eCache Middleware ignores Vary: Authorization / Vary: Cookie leading to cross-user cache leakage\u003c/h3\u003e\n\u003cp\u003eAffects: Cache Middleware. Fixes missing cache-skip handling for \u003ccode\u003eVary: Authorization\u003c/code\u003e and \u003ccode\u003eVary: Cookie\u003c/code\u003e, where a response cached for one authenticated user could be served to other users. GHSA-p77w-8qqv-26rm\u003c/p\u003e\n\u003ch3\u003eCSS Declaration Injection via Style Object Values in JSX SSR\u003c/h3\u003e\n\u003cp\u003eAffects: hono/jsx. Fixes a missing CSS-context escape for \u003ccode\u003estyle\u003c/code\u003e object values and property names, where untrusted input could inject additional CSS declarations. The impact is limited to CSS and does not allow JavaScript execution. GHSA-qp7p-654g-cw7p\u003c/p\u003e\n\u003ch3\u003eImproper validation of NumericDate claims (exp, nbf, iat) in JWT verify()\u003c/h3\u003e\n\u003cp\u003eAffects: \u003ccode\u003ehono/utils/jwt\u003c/code\u003e. Fixes improper validation of \u003ccode\u003eexp\u003c/code\u003e, \u003ccode\u003enbf\u003c/code\u003e, and \u003ccode\u003eiat\u003c/code\u003e claims, where falsy, non-finite, or non-numeric values could silently bypass time-based checks instead of being rejected per RFC 7519. GHSA-hm8q-7f3q-5f36\u003c/p\u003e\n\u003chr /\u003e\n\u003cp\u003eUsers who use the JWT helper, hono/jsx, or the Cache middleware are strongly encouraged to upgrade to this version.\u003c/p\u003e\n\u003ch2\u003ev4.12.17\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(jsx): normalize SVG attributes on the \u003c!-- raw HTML omitted --\u003e root element by \u003ca href=\"https://github.com/kfly8\"\u003e\u003ccode\u003e@​kfly8\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4893\"\u003ehonojs/hono#4893\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(ssg): add \u003ccode\u003eatom+xml\u003c/code\u003e and \u003ccode\u003erss+xml\u003c/code\u003e to \u003ccode\u003edefaultExtensionMap\u003c/code\u003e by \u003ca href=\"https://github.com/yuintei\"\u003e\u003ccode\u003e@​yuintei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4899\"\u003ehonojs/hono#4899\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(cors): make origin optional in CORSOptions by \u003ca href=\"https://github.com/truffle-dev\"\u003e\u003ccode\u003e@​truffle-dev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4905\"\u003ehonojs/hono#4905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(types): propagate middleware response types to app.on overloads by \u003ca href=\"https://github.com/T4ko0522\"\u003e\u003ccode\u003e@​T4ko0522\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4906\"\u003ehonojs/hono#4906\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kfly8\"\u003e\u003ccode\u003e@​kfly8\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4893\"\u003ehonojs/hono#4893\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truffle-dev\"\u003e\u003ccode\u003e@​truffle-dev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4905\"\u003ehonojs/hono#4905\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/hono/compare/v4.12.16...v4.12.17\"\u003ehttps://github.com/honojs/hono/compare/v4.12.16...v4.12.17\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.12.16\u003c/h2\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cp\u003eThis release includes fixes for the following security issues:\u003c/p\u003e\n\u003ch3\u003eUnvalidated JSX Tag Names in hono/jsx May Allow HTML Injection\u003c/h3\u003e\n\u003cp\u003eAffects: hono/jsx. Fixes missing validation of JSX tag names when using \u003ccode\u003ejsx()\u003c/code\u003e or \u003ccode\u003ecreateElement()\u003c/code\u003e, which could allow HTML injection if untrusted input is used as the tag name. GHSA-69xw-7hcm-h432\u003c/p\u003e\n\u003ch3\u003ebodyLimit() can be bypassed for chunked / unknown-length requests\u003c/h3\u003e\n\u003cp\u003eAffects: Body Limit Middleware. Fixes late enforcement for request bodies without a reliable Content-Length (e.g. chunked requests), where oversized requests could reach handlers and return successful responses before being rejected. GHSA-9vqf-7f2p-gf9v\u003c/p\u003e\n\u003ch2\u003ev4.12.15\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(jwt): support single-line PEM keys by \u003ca href=\"https://github.com/hiendv\"\u003e\u003ccode\u003e@​hiendv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4889\"\u003ehonojs/hono#4889\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/f10dee89ced5956b73c1cdc416d6bc0fd54d63b7\"\u003e\u003ccode\u003ef10dee8\u003c/code\u003e\u003c/a\u003e 4.12.18\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/a5bd9ebead279ed9d0239ecbd854f629edfc0e57\"\u003e\u003ccode\u003ea5bd9eb\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/58d3d3ad5656e007ed99da1b73865975952de5e9\"\u003e\u003ccode\u003e58d3d3a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/568c2ecc1dd556894fad4dfa4a7ba499db6dba9c\"\u003e\u003ccode\u003e568c2ec\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/ff2b3d31df1be35f7d597a95dd3369402b6e87f2\"\u003e\u003ccode\u003eff2b3d3\u003c/code\u003e\u003c/a\u003e 4.12.17\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/52aaaf9714b06303ce5caa655b1d80675be687e9\"\u003e\u003ccode\u003e52aaaf9\u003c/code\u003e\u003c/a\u003e fix(types): propagate middleware response types to app.on overloads (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4906\"\u003e#4906\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/76d5589e9b0569f4e74ec37e8dd6979455f70dfa\"\u003e\u003ccode\u003e76d5589\u003c/code\u003e\u003c/a\u003e fix(cors): make origin optional in CORSOptions (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4905\"\u003e#4905\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/8f027e5574e91e3c7f263a728656e3888559e51a\"\u003e\u003ccode\u003e8f027e5\u003c/code\u003e\u003c/a\u003e fix(ssg): add \u003ccode\u003eatom+xml\u003c/code\u003e and \u003ccode\u003erss+xml\u003c/code\u003e to \u003ccode\u003edefaultExtensionMap\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4899\"\u003e#4899\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/bfba97ca7ea3d4541a3419f1749e5a1a3e8f1727\"\u003e\u003ccode\u003ebfba97c\u003c/code\u003e\u003c/a\u003e fix(jsx): normalize SVG attributes on the \u0026lt;svg\u0026gt; root element (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4893\"\u003e#4893\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/90d4182aabd328e2ec6af3f25ec62ddc574ad8cb\"\u003e\u003ccode\u003e90d4182\u003c/code\u003e\u003c/a\u003e 4.12.16\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/honojs/hono/compare/v4.11.9...v4.12.18\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/packag...\n\n_Description has been truncated_","html_url":"https://github.com/helton-godoy/automaker/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/helton-godoy%2Fautomaker/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"},{"uuid":"4388264081","node_id":"PR_kwDORI6nbc7YmzCv","number":69,"state":"closed","title":"Bump the npm_and_yarn group across 16 directories with 7 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-06T05:11:59.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-06T02:11:37.000Z","updated_at":"2026-05-06T05:12:01.000Z","time_to_close":10822,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":7,"packages":[{"name":"dompurify","old_version":"3.3.0","new_version":"3.4.2","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"uuid","old_version":"11.1.0","new_version":"11.1.1","repository_url":"https://github.com/uuidjs/uuid"},{"name":"postcss","old_version":"8.4.38","new_version":"8.5.10","repository_url":"https://github.com/postcss/postcss"},{"name":"postcss","old_version":"8.5.6","new_version":"8.5.10","repository_url":"https://github.com/postcss/postcss"},{"name":"postcss","old_version":"8.4.21","new_version":"8.5.10","repository_url":"https://github.com/postcss/postcss"},{"name":"vm2","old_version":"3.9.19","new_version":"3.11.2","repository_url":"https://github.com/patriksimek/vm2"},{"name":"postcss","old_version":"8.4.47","new_version":"8.5.14","repository_url":"https://github.com/postcss/postcss"},{"name":"seroval","old_version":"1.1.1","new_version":"1.5.4","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"dompurify","old_version":"3.3.0","new_version":"3.4.2","repository_url":"https://github.com/cure53/DOMPurify"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 2 updates in the /apps/vibe-coding-platform directory: [dompurify](https://github.com/cure53/DOMPurify) and [uuid](https://github.com/uuidjs/uuid).\nBumps the npm_and_yarn group with 1 update in the /edge-middleware/feature-flag-hypertune directory: [postcss](https://github.com/postcss/postcss).\nBumps the npm_and_yarn group with 1 update in the /framework-boilerplates/hydrogen directory: [postcss](https://github.com/postcss/postcss).\nBumps the npm_and_yarn group with 2 updates in the /framework-boilerplates/hydrogen-2 directory: [postcss](https://github.com/postcss/postcss) and [vm2](https://github.com/patriksimek/vm2).\nBumps the npm_and_yarn group with 2 updates in the /framework-boilerplates/solidstart-1 directory: [postcss](https://github.com/postcss/postcss) and [seroval](https://github.com/lxsmnsyc/seroval).\nBumps the npm_and_yarn group with 3 updates in the /python/vibe-coding-ide/frontend directory: [dompurify](https://github.com/cure53/DOMPurify), [postcss](https://github.com/postcss/postcss) and [uuid](https://github.com/uuidjs/uuid).\nBumps the npm_and_yarn group with 2 updates in the /solutions/auth-with-ory directory: [postcss](https://github.com/postcss/postcss) and [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /solutions/aws-dynamodb directory: [uuid](https://github.com/uuidjs/uuid).\nBumps the npm_and_yarn group with 1 update in the /solutions/aws-neptune-analytics directory: [postcss](https://github.com/postcss/postcss).\nBumps the npm_and_yarn group with 2 updates in the /solutions/aws-s3-image-upload directory: [uuid](https://github.com/uuidjs/uuid) and [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /solutions/slackbot directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /solutions/testing directory: [postcss](https://github.com/postcss/postcss).\nBumps the npm_and_yarn group with 1 update in the /solutions/web3-authentication directory: [postcss](https://github.com/postcss/postcss).\nBumps the npm_and_yarn group with 1 update in the /starter/cms-payload directory: [i18next-http-middleware](https://github.com/i18next/i18next-http-middleware).\nBumps the npm_and_yarn group with 1 update in the /starter/cms-sanity-graphql-fragments directory: [dompurify](https://github.com/cure53/DOMPurify).\nBumps the npm_and_yarn group with 2 updates in the /starter/personalization-builder-io directory: [postcss](https://github.com/postcss/postcss) and [vm2](https://github.com/patriksimek/vm2).\n\nUpdates `dompurify` from 3.3.0 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cure53/DOMPurify/releases\"\u003edompurify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDOMPurify 3.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with URI validation on attributes allowed via \u003ccode\u003eADD_ATTR\u003c/code\u003e callback, thanks \u003ca href=\"https://github.com/nelstrom\"\u003e\u003ccode\u003e@​nelstrom\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with source maps referring to non-existing files, thanks \u003ca href=\"https://github.com/cmdcolin\"\u003e\u003ccode\u003e@​cmdcolin\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, release signing, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with on-handler stripping for HTML-spec-reserved custom element names (\u003ccode\u003efont-face\u003c/code\u003e, \u003ccode\u003ecolor-profile\u003c/code\u003e, \u003ccode\u003emissing-glyph\u003c/code\u003e, \u003ccode\u003efont-face-src\u003c/code\u003e, \u003ccode\u003efont-face-uri\u003c/code\u003e, \u003ccode\u003efont-face-format\u003c/code\u003e, \u003ccode\u003efont-face-name\u003c/code\u003e) under permissive \u003ccode\u003eCUSTOM_ELEMENT_HANDLING\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFixed a case-sensitivity gap in the \u003ccode\u003eannotation-xml\u003c/code\u003e check that allowed mixed-case variants to bypass the basic-custom-element exclusion in XHTML mode\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003eSANITIZE_NAMED_PROPS\u003c/code\u003e repeatedly prefixing already-prefixed \u003ccode\u003eid\u003c/code\u003e and \u003ccode\u003ename\u003c/code\u003e values on subsequent sanitization\u003c/li\u003e\n\u003cli\u003eFixed the \u003ccode\u003eIN_PLACE\u003c/code\u003e root-node check to explicitly guard against non-string \u003ccode\u003enodeName\u003c/code\u003e (DOM-clobbering robustness)\u003c/li\u003e\n\u003cli\u003eRemoved a duplicate \u003ccode\u003eslot\u003c/code\u003e entry from the default HTML attribute allow-list\u003c/li\u003e\n\u003cli\u003eStrengthened the fast-check fuzz harness with explicit XSS invariants, an expanded seed-payload corpus, an additional idempotence property for \u003ccode\u003eSANITIZE_NAMED_PROPS\u003c/code\u003e, and a negative-control assertion ensuring the invariants actually fire\u003c/li\u003e\n\u003cli\u003eAdded regression and pinning tests covering the above fixes and two accepted-behavior contracts (\u003ccode\u003eSAFE_FOR_TEMPLATES\u003c/code\u003e greedy scrub, hook-added attribute handling)\u003c/li\u003e\n\u003cli\u003eExtended CodeQL analysis to run on \u003ccode\u003e3.x\u003c/code\u003e and \u003ccode\u003e2.x\u003c/code\u003e maintenance branches\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eMost relevant changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a problem with \u003ccode\u003eFORBID_TAGS\u003c/code\u003e not winning over \u003ccode\u003eADD_TAGS\u003c/code\u003e, thanks \u003ca href=\"https://github.com/kodareef5\"\u003e\u003ccode\u003e@​kodareef5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed several minor problems and typos regarding MathML attributes, thanks \u003ca href=\"https://github.com/DavidOliver\"\u003e\u003ccode\u003e@​DavidOliver\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003eADD_ATTR\u003c/code\u003e/\u003ccode\u003eADD_TAGS\u003c/code\u003e function leaking into subsequent array-based calls, thanks \u003ca href=\"https://github.com/1Jesper1\"\u003e\u003ccode\u003e@​1Jesper1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a missing \u003ccode\u003eSAFE_FOR_TEMPLATES\u003c/code\u003e scrub in \u003ccode\u003eRETURN_DOM\u003c/code\u003e path, thanks \u003ca href=\"https://github.com/bencalif\"\u003e\u003ccode\u003e@​bencalif\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a prototype pollution via \u003ccode\u003eCUSTOM_ELEMENT_HANDLING\u003c/code\u003e, thanks \u003ca href=\"https://github.com/trace37labs\"\u003e\u003ccode\u003e@​trace37labs\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eADD_TAGS\u003c/code\u003e function form bypassing \u003ccode\u003eFORBID_TAGS\u003c/code\u003e, thanks \u003ca href=\"https://github.com/eddieran\"\u003e\u003ccode\u003e@​eddieran\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eADD_ATTR\u003c/code\u003e predicates skipping URI validation, thanks \u003ca href=\"https://github.com/christos-eth\"\u003e\u003ccode\u003e@​christos-eth\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eUSE_PROFILES\u003c/code\u003e prototype pollution, thanks \u003ca href=\"https://github.com/christos-eth\"\u003e\u003ccode\u003e@​christos-eth\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue leading to possible mXSS via Re-Contextualization, thanks \u003ca href=\"https://github.com/researchatfluidattacks\"\u003e\u003ccode\u003e@​researchatfluidattacks\u003c/code\u003e\u003c/a\u003e and others\u003c/li\u003e\n\u003cli\u003eFixed an issue with closing tags leading to possible mXSS, thanks \u003ca href=\"https://github.com/frevadiscor\"\u003e\u003ccode\u003e@​frevadiscor\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a problem with the type dentition patcher after Node version bump\u003c/li\u003e\n\u003cli\u003eFixed freezing BS runs by reducing the tested browsers array\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003cli\u003eAdded needed files for OpenSSF scorecard checks\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003ePublished Advisories are here:\u003c/strong\u003e\n\u003ca href=\"https://github.com/cure53/DOMPurify/security/advisories?state=published\"\u003ehttps://github.com/cure53/DOMPurify/security/advisories?state=published\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eDOMPurify 3.3.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an engine requirement for Node 20 which caused hiccups, thanks \u003ca href=\"https://github.com/Rotzbua\"\u003e\u003ccode\u003e@​Rotzbua\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.3.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a possible bypass caused by jsdom's faulty raw-text tag parsing, thanks multiple reporters\u003c/li\u003e\n\u003cli\u003eFixed a prototype pollution issue when working with custom elements, thanks \u003ca href=\"https://github.com/christos-eth\"\u003e\u003ccode\u003e@​christos-eth\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a lenient config parsing in \u003ccode\u003e_isValidAttribute\u003c/code\u003e, thanks \u003ca href=\"https://github.com/christos-eth\"\u003e\u003ccode\u003e@​christos-eth\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped and removed several dependencies, thanks \u003ca href=\"https://github.com/Rotzbua\"\u003e\u003ccode\u003e@​Rotzbua\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the test suite after bumping dependencies, thanks \u003ca href=\"https://github.com/Rotzbua\"\u003e\u003ccode\u003e@​Rotzbua\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated \u003ccode\u003eADD_FORBID_CONTENTS\u003c/code\u003e setting to extend default list, thanks \u003ca href=\"https://github.com/MariusRumpf\"\u003e\u003ccode\u003e@​MariusRumpf\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated the ESM import syntax to be more correct, thanks \u003ca href=\"https://github.com/binhpv\"\u003e\u003ccode\u003e@​binhpv\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/6f67fd396a7b8c64294343999fe607ca1f5299c0\"\u003e\u003ccode\u003e6f67fd3\u003c/code\u003e\u003c/a\u003e Sync/3.4.2 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1322\"\u003e#1322\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5b0cdbbf52331e854c0a2de875b1a3790ecec2b8\"\u003e\u003ccode\u003e5b0cdbb\u003c/code\u003e\u003c/a\u003e chore: merge main into 3.x for 3.4.1 release (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1301\"\u003e#1301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/09f59115a311469de5b625225760593e551f080a\"\u003e\u003ccode\u003e09f5911\u003c/code\u003e\u003c/a\u003e test: added three more browsers to test setup (OSX, mobile)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5b16e0b892e82b1779d62b9928b43c4c4ff290b9\"\u003e\u003ccode\u003e5b16e0b\u003c/code\u003e\u003c/a\u003e Getting 3.x branch ready for 3.4.0 release (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1250\"\u003e#1250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/8bcbf73ae7eb56e7b4f1300b66cf543342c7ee27\"\u003e\u003ccode\u003e8bcbf73\u003c/code\u003e\u003c/a\u003e chore: Preparing 3.3.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5faddd60af7b4d612f32a0c6b44432b77c8c490c\"\u003e\u003ccode\u003e5faddd6\u003c/code\u003e\u003c/a\u003e fix: engine requirement (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1210\"\u003e#1210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/0f91e3add5c028bc4110c513b0c2571b284c35af\"\u003e\u003ccode\u003e0f91e3a\u003c/code\u003e\u003c/a\u003e Update README.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/d5ff1a8c605df1df998c2e7df2c4c8ac762b0dea\"\u003e\u003ccode\u003ed5ff1a8\u003c/code\u003e\u003c/a\u003e Merge branch 'main' of github.com:cure53/DOMPurify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/c3efd489010366e755de9d65fd741888fd8b7462\"\u003e\u003ccode\u003ec3efd48\u003c/code\u003e\u003c/a\u003e fix: moved back from jsdom 28 to jsdom 20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/988b888108c8df911ef37e68d0e26c85ad90e885\"\u003e\u003ccode\u003e988b888\u003c/code\u003e\u003c/a\u003e fix: moved back from jsdom 28 to jsdom 20\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cure53/DOMPurify/compare/3.3.0...3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uuid` from 11.1.0 to 11.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v11.1.1\"\u003e11.1.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport GHSA-w5hq-g745-h8pq fix (\u003ca href=\"https://github.com/uuidjs/uuid/commit/32389c887c9e75f90442ee4cc95bbab0c4e8346e\"\u003e32389c8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/v11.1.1/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v11.1.1\"\u003e11.1.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport GHSA-w5hq-g745-h8pq fix (\u003ca href=\"https://github.com/uuidjs/uuid/commit/32389c887c9e75f90442ee4cc95bbab0c4e8346e\"\u003e32389c8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7269a96c12a55a745bd4a7812c01cfd385ec6c46\"\u003e\u003ccode\u003e7269a96\u003c/code\u003e\u003c/a\u003e chore(11.x): release 11.1.1 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/949\"\u003e#949\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/32389c887c9e75f90442ee4cc95bbab0c4e8346e\"\u003e\u003ccode\u003e32389c8\u003c/code\u003e\u003c/a\u003e fix: backport GHSA-w5hq-g745-h8pq fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/2799f71d0065ddc3c056f5b0812d1d941eaab2f5\"\u003e\u003ccode\u003e2799f71\u003c/code\u003e\u003c/a\u003e chore: update workflow\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v11.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postcss` from 8.4.38 to 8.5.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/releases\"\u003epostcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003ePostCSS 8.5 brought API to work better with non-CSS sources like HTML, Vue.js/Svelte sources or CSS-in-JS.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e during \u003ca href=\"https://redirect.github.com/postcss/postcss/issues/1995\"\u003ehis work\u003c/a\u003e on \u003ca href=\"https://stylelint.io\"\u003eStylelint\u003c/a\u003e added \u003ccode\u003eInput#document\u003c/code\u003e in additional to \u003ccode\u003eInput#css\u003c/code\u003e.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eroot.source.input.document //=\u0026gt; \u0026quot;\u0026lt;p\u0026gt;Hello\u0026lt;/p\u0026gt;\r\n                           //    \u0026lt;style\u0026gt;\r\n                           //    p {\r\n                           //      color: green;\r\n                           //    }\r\n                           //    \u0026lt;/style\u0026gt;\u0026quot;\r\nroot.source.input.css      //=\u0026gt; \u0026quot;p {\r\n                           //      color: green;\r\n                           //    }\u0026quot;\r\n\u003cp\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/blob/main/CHANGELOG.md\"\u003epostcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eInput#document\u003c/code\u003e for sources like CSS-in-JS or HTML (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.4.49\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed custom syntax without \u003ccode\u003esource.offset\u003c/code\u003e (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/33b9790263dc1562a46ce45d9532bd63e95b7986\"\u003e\u003ccode\u003e33b9790\u003c/code\u003e\u003c/a\u003e Release 8.5.10 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/536c79e4b01e58a3a56b09c3c0cf2323f4b9a28b\"\u003e\u003ccode\u003e536c79e\u003c/code\u003e\u003c/a\u003e Escape \u0026lt;/style\u0026gt; in CSS output (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2074\"\u003e#2074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/afa96b2a139ce625c4d27973313479c7c85f39d4\"\u003e\u003ccode\u003eafa96b2\u003c/code\u003e\u003c/a\u003e Update dependencies (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2073\"\u003e#2073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/effe88bb87cabdc1876e02adbdd30f392f19f40d\"\u003e\u003ccode\u003eeffe88b\u003c/code\u003e\u003c/a\u003e Typo (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/3ee79a2c4a11e41d52db50b444eebe38299495ad\"\u003e\u003ccode\u003e3ee79a2\u003c/code\u003e\u003c/a\u003e Thread model (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2071\"\u003e#2071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/2e0683daca4dc2919211b03774f6b2d137136c01\"\u003e\u003ccode\u003e2e0683d\u003c/code\u003e\u003c/a\u003e Create incident response docs (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/fe88ac29c06b7b218be32994cdc6ca1525bdf2c9\"\u003e\u003ccode\u003efe88ac2\u003c/code\u003e\u003c/a\u003e Release 8.5.9 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/c551632496b87ab3f1965bfda5dc386b6c71963e\"\u003e\u003ccode\u003ec551632\u003c/code\u003e\u003c/a\u003e Avoid RegExp when we can use simple JS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/89a6b744060eb8dee743351c785a9fbe37d4525a\"\u003e\u003ccode\u003e89a6b74\u003c/code\u003e\u003c/a\u003e Move SECURITY.txt for docs folder to keep GitHub page cleaner\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/6ceb8a46af9f9de821faee98f861bdf84617347b\"\u003e\u003ccode\u003e6ceb8a4\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/postcss/postcss/compare/8.4.38...8.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postcss` from 8.5.6 to 8.5.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/releases\"\u003epostcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003ePostCSS 8.5 brought API to work better with non-CSS sources like HTML, Vue.js/Svelte sources or CSS-in-JS.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e during \u003ca href=\"https://redirect.github.com/postcss/postcss/issues/1995\"\u003ehis work\u003c/a\u003e on \u003ca href=\"https://stylelint.io\"\u003eStylelint\u003c/a\u003e added \u003ccode\u003eInput#document\u003c/code\u003e in additional to \u003ccode\u003eInput#css\u003c/code\u003e.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eroot.source.input.document //=\u0026gt; \u0026quot;\u0026lt;p\u0026gt;Hello\u0026lt;/p\u0026gt;\r\n                           //    \u0026lt;style\u0026gt;\r\n                           //    p {\r\n                           //      color: green;\r\n                           //    }\r\n                           //    \u0026lt;/style\u0026gt;\u0026quot;\r\nroot.source.input.css      //=\u0026gt; \u0026quot;p {\r\n                           //      color: green;\r\n                           //    }\u0026quot;\r\n\u003cp\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/blob/main/CHANGELOG.md\"\u003epostcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eInput#document\u003c/code\u003e for sources like CSS-in-JS or HTML (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.4.49\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed custom syntax without \u003ccode\u003esource.offset\u003c/code\u003e (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/33b9790263dc1562a46ce45d9532bd63e95b7986\"\u003e\u003ccode\u003e33b9790\u003c/code\u003e\u003c/a\u003e Release 8.5.10 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/536c79e4b01e58a3a56b09c3c0cf2323f4b9a28b\"\u003e\u003ccode\u003e536c79e\u003c/code\u003e\u003c/a\u003e Escape \u0026lt;/style\u0026gt; in CSS output (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2074\"\u003e#2074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/afa96b2a139ce625c4d27973313479c7c85f39d4\"\u003e\u003ccode\u003eafa96b2\u003c/code\u003e\u003c/a\u003e Update dependencies (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2073\"\u003e#2073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/effe88bb87cabdc1876e02adbdd30f392f19f40d\"\u003e\u003ccode\u003eeffe88b\u003c/code\u003e\u003c/a\u003e Typo (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/3ee79a2c4a11e41d52db50b444eebe38299495ad\"\u003e\u003ccode\u003e3ee79a2\u003c/code\u003e\u003c/a\u003e Thread model (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2071\"\u003e#2071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/2e0683daca4dc2919211b03774f6b2d137136c01\"\u003e\u003ccode\u003e2e0683d\u003c/code\u003e\u003c/a\u003e Create incident response docs (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/fe88ac29c06b7b218be32994cdc6ca1525bdf2c9\"\u003e\u003ccode\u003efe88ac2\u003c/code\u003e\u003c/a\u003e Release 8.5.9 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/c551632496b87ab3f1965bfda5dc386b6c71963e\"\u003e\u003ccode\u003ec551632\u003c/code\u003e\u003c/a\u003e Avoid RegExp when we can use simple JS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/89a6b744060eb8dee743351c785a9fbe37d4525a\"\u003e\u003ccode\u003e89a6b74\u003c/code\u003e\u003c/a\u003e Move SECURITY.txt for docs folder to keep GitHub page cleaner\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/6ceb8a46af9f9de821faee98f861bdf84617347b\"\u003e\u003ccode\u003e6ceb8a4\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/postcss/postcss/compare/8.4.38...8.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postcss` from 8.4.21 to 8.5.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/releases\"\u003epostcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003ePostCSS 8.5 brought API to work better with non-CSS sources like HTML, Vue.js/Svelte sources or CSS-in-JS.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e during \u003ca href=\"https://redirect.github.com/postcss/postcss/issues/1995\"\u003ehis work\u003c/a\u003e on \u003ca href=\"https://stylelint.io\"\u003eStylelint\u003c/a\u003e added \u003ccode\u003eInput#document\u003c/code\u003e in additional to \u003ccode\u003eInput#css\u003c/code\u003e.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eroot.source.input.document //=\u0026gt; \u0026quot;\u0026lt;p\u0026gt;Hello\u0026lt;/p\u0026gt;\r\n                           //    \u0026lt;style\u0026gt;\r\n                           //    p {\r\n                           //      color: green;\r\n                           //    }\r\n                           //    \u0026lt;/style\u0026gt;\u0026quot;\r\nroot.source.input.css      //=\u0026gt; \u0026quot;p {\r\n                           //      color: green;\r\n                           //    }\u0026quot;\r\n\u003cp\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/blob/main/CHANGELOG.md\"\u003epostcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eInput#document\u003c/code\u003e for sources like CSS-in-JS or HTML (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.4.49\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed custom syntax without \u003ccode\u003esource.offset\u003c/code\u003e (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/33b9790263dc1562a46ce45d9532bd63e95b7986\"\u003e\u003ccode\u003e33b9790\u003c/code\u003e\u003c/a\u003e Release 8.5.10 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/536c79e4b01e58a3a56b09c3c0cf2323f4b9a28b\"\u003e\u003ccode\u003e536c79e\u003c/code\u003e\u003c/a\u003e Escape \u0026lt;/style\u0026gt; in CSS output (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2074\"\u003e#2074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/afa96b2a139ce625c4d27973313479c7c85f39d4\"\u003e\u003ccode\u003eafa96b2\u003c/code\u003e\u003c/a\u003e Update dependencies (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2073\"\u003e#2073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/effe88bb87cabdc1876e02adbdd30f392f19f40d\"\u003e\u003ccode\u003eeffe88b\u003c/code\u003e\u003c/a\u003e Typo (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/3ee79a2c4a11e41d52db50b444eebe38299495ad\"\u003e\u003ccode\u003e3ee79a2\u003c/code\u003e\u003c/a\u003e Thread model (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2071\"\u003e#2071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/2e0683daca4dc2919211b03774f6b2d137136c01\"\u003e\u003ccode\u003e2e0683d\u003c/code\u003e\u003c/a\u003e Create incident response docs (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/fe88ac29c06b7b218be32994cdc6ca1525bdf2c9\"\u003e\u003ccode\u003efe88ac2\u003c/code\u003e\u003c/a\u003e Release 8.5.9 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/c551632496b87ab3f1965bfda5dc386b6c71963e\"\u003e\u003ccode\u003ec551632\u003c/code\u003e\u003c/a\u003e Avoid RegExp when we can use simple JS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/89a6b744060eb8dee743351c785a9fbe37d4525a\"\u003e\u003ccode\u003e89a6b74\u003c/code\u003e\u003c/a\u003e Move SECURITY.txt for docs folder to keep GitHub page cleaner\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/6ceb8a46af9f9de821faee98f861bdf84617347b\"\u003e\u003ccode\u003e6ceb8a4\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/postcss/postcss/compare/8.4.38...8.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vm2` from 3.9.19 to 3.11.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/patriksimek/vm2/releases\"\u003evm2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.11.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eSecurity fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-9vg3-4rfj-wgcm\u003c/strong\u003e — Sandbox-realm null-proto write-through via \u003ccode\u003ebridge.from()\u003c/code\u003e set trap (RCE)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-2cm2-m3w5-gp2f\u003c/strong\u003e — Internal state reachable via computed-key access on \u003ccode\u003eglobalThis\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-9qj6-qjgg-37qq\u003c/strong\u003e — Bridge saved-state leak via sandbox-installed \u003ccode\u003eArray.prototype[N]\u003c/code\u003e setter (RCE)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/blob/main/docs/ATTACKS.md\"\u003e\u003ccode\u003edocs/ATTACKS.md\u003c/code\u003e\u003c/a\u003e updated through Category 28, plus a new Defense Invariant\u003cbr /\u003e\n(\u0026quot;Bridge-internal containers must not invoke sandbox code\u0026quot;).\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/patriksimek/vm2/compare/v3.11.1...v3.11.2\"\u003ehttps://github.com/patriksimek/vm2/compare/v3.11.1...v3.11.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.11.1\u003c/h2\u003e\n\u003cp\u003eSingle advisory closed plus prominent documentation of an existing escape hatch. Patch release — no API changes for valid configurations.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eEmbedders running untrusted code with \u003ccode\u003enesting: true\u003c/code\u003e should read the new README section.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eSecurity fix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-8hg8-63c5-gwmx\u003c/strong\u003e — \u003ccode\u003enesting: true\u003c/code\u003e bypassed \u003ccode\u003erequire: false\u003c/code\u003e, allowing sandbox-to-host RCE via inner NodeVM construction. The contradictory option pair \u003ccode\u003e{ nesting: true, require: false }\u003c/code\u003e now throws \u003ccode\u003eVMError\u003c/code\u003e at \u003ccode\u003enew NodeVM(...)\u003c/code\u003e time citing the advisory. Same shape as the GHSA-cp6g eager FileSystem-contract probe — surface contradictory configuration at the API surface, not silently produce an unsandboxed sandbox.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNew README section \u003cstrong\u003e\u003ca href=\"https://github.com/patriksimek/vm2#5-nesting-true-is-an-escape-hatch\"\u003e\u0026quot;\u003ccode\u003enesting: true\u003c/code\u003e is an escape hatch\u0026quot;\u003c/a\u003e\u003c/strong\u003e under Hardening recommendations. Spells out the inner-VM independence: a nested VM's \u003ccode\u003erequire\u003c/code\u003e config is chosen by the sandbox code that constructs it, not constrained by the outer VM. \u003cstrong\u003eDo not enable \u003ccode\u003enesting: true\u003c/code\u003e for untrusted code.\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eJSDoc on the \u003ccode\u003enesting\u003c/code\u003e option (\u003ccode\u003elib/nodevm.js\u003c/code\u003e) upgraded to match.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/blob/main/docs/ATTACKS.md\"\u003e\u003ccode\u003edocs/ATTACKS.md\u003c/code\u003e\u003c/a\u003e gains \u003ca href=\"https://github.com/patriksimek/vm2/blob/main/docs/ATTACKS.md#attack-category-25-nodevm-nesting-true--require-false-configuration-trap\"\u003eCategory 25\u003c/a\u003e documenting the configuration trap, plus a matching row in the \u0026quot;How The Bridge Defends\u0026quot; table.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eUpgrade Notes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eIf you set \u003ccode\u003e{ nesting: true, require: false }\u003c/code\u003e\u003c/strong\u003e anywhere in your codebase, \u003ccode\u003enew NodeVM(...)\u003c/code\u003e now throws. Either drop \u003ccode\u003enesting: true\u003c/code\u003e (if you wanted deny-all), or replace \u003ccode\u003erequire: false\u003c/code\u003e with an explicit \u003ccode\u003erequire\u003c/code\u003e config (e.g. \u003ccode\u003erequire: { builtin: [] }\u003c/code\u003e) to acknowledge that vm2 will be requireable. The error message is actionable and links to the README section.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNo other configurations are affected.\u003c/strong\u003e Bare \u003ccode\u003enew NodeVM({ nesting: true })\u003c/code\u003e continues to work as documented; this is the documented escape hatch and is not closed by this patch (out of scope — would change \u003ccode\u003enesting: true\u003c/code\u003e semantics substantially).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat This Fix Does NOT Close\u003c/h2\u003e\n\u003cp\u003e\u003ccode\u003enesting: true\u003c/code\u003e itself remains an escape hatch for any non-trivial \u003ccode\u003erequire\u003c/code\u003e config. The fix closes the \u003cstrong\u003especific contradictory pair\u003c/strong\u003e flagged by the advisory; the broader recommendation is in the new README section: do not enable \u003ccode\u003enesting: true\u003c/code\u003e when running untrusted code. Constraint propagation from outer to inner NodeVM (where the outer's \u003ccode\u003erequire\u003c/code\u003e config would constrain inner construction) was considered and deferred — it would change the documented semantics of \u003ccode\u003enesting: true\u003c/code\u003e and is a major-version-shaped change.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/patriksimek/vm2/compare/v3.11.0...v3.11.1\"\u003ehttps://github.com/patriksimek/vm2/compare/v3.11.0...v3.11.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.11.0\u003c/h2\u003e\n\u003cp\u003eCoordinated security release closing 13 advisories, plus a new \u003ccode\u003ebufferAllocLimit\u003c/code\u003e option and a \u003ccode\u003erealpath()\u003c/code\u003e method on the FileSystem adapter contract. Minor version bump because of the new public option and the FileSystem contract addition; no incompatible changes to the existing public API surface.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eEmbedders running untrusted code should upgrade.\u003c/strong\u003e Several of the advisories close full sandbox-escape RCE primitives.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/patriksimek/vm2/blob/main/CHANGELOG.md\"\u003evm2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.11.2]\u003c/h2\u003e\n\u003cp\u003eThree advisories closed. Patch release — no API changes.\u003c/p\u003e\n\u003ch3\u003eSecurity fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-2cm2-m3w5-gp2f\u003c/strong\u003e — Internal state reachable via computed property access on \u003ccode\u003eglobalThis\u003c/code\u003e. The previous fix (GHSA-wp5r-2gw5-m7q7) tightened the transformer's identifier-rejection but left \u003ccode\u003eglobalThis['VM2_INTERNAL_STATE_DO_NOT_USE_OR_PROGRAM_WILL_FAIL']\u003c/code\u003e and every reflective probe of the global object (bracket access, \u003ccode\u003eReflect.get\u003c/code\u003e, \u003ccode\u003eObject.getOwnPropertyDescriptor\u003c/code\u003e, \u003ccode\u003eObject.getOwnPropertyNames\u003c/code\u003e enumeration) returning the live state object — the transformer is a syntactic gate and cannot see through dynamic property keys. Structural fix: the bootstrap script (\u003ccode\u003evm.js\u003c/code\u003e's setupSandboxScript source) now declares \u003ccode\u003elet VM2_INTERNAL_STATE_DO_NOT_USE_OR_PROGRAM_WILL_FAIL\u003c/code\u003e at the script's top level, which lands the binding in the context's \u003ccode\u003e[[GlobalLexicalEnvironment]]\u003c/code\u003e — reachable as a bare identifier from every script (so transformer-emitted catch handlers still resolve), but absent from \u003ccode\u003eglobalThis\u003c/code\u003e's own-property table (so every computed-key probe returns \u003ccode\u003eundefined\u003c/code\u003e). The \u003ccode\u003edefineProperty\u003c/code\u003e install in \u003ccode\u003esetup-sandbox.js\u003c/code\u003e is removed entirely; the bootstrap IIFE assigns into the outer \u003ccode\u003elet\u003c/code\u003e instead. Supersedes GHSA-wp5r-2gw5-m7q7's identifier-only mitigation by closing the entire computed-key class. ATTACKS.md Category 27.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-9vg3-4rfj-wgcm\u003c/strong\u003e — Sandbox breakout via null-proto throw / \u003ccode\u003ehandleException\u003c/code\u003e. The post-GHSA-mpf8 hardening switched \u003ccode\u003ehandleException\u003c/code\u003e and \u003ccode\u003eglobalPromise.prototype.then\u003c/code\u003e onFulfilled to wrap caught/resolved values with \u003ccode\u003ebridge.from()\u003c/code\u003e for \u0026quot;symmetry\u0026quot;. \u003ccode\u003efrom()\u003c/code\u003e builds a sandbox-side proxy whose target the bridge treats as host-realm; calling it on a sandbox-realm null-proto value (\u003ccode\u003e{__proto__: null}\u003c/code\u003e thrown or \u003ccode\u003ePromise.resolve\u003c/code\u003e-d by sandbox JS) produced a proxy whose \u003ccode\u003eset\u003c/code\u003e trap unwrapped sandbox proxies of host references (e.g. \u003ccode\u003eBuffer.prototype.inspect\u003c/code\u003e) back to their raw host originals and stored them on the underlying sandbox object — readable via the original sandbox reference and pivot to host \u003ccode\u003eFunction\u003c/code\u003e constructor → RCE. Three callsites in \u003ccode\u003elib/setup-sandbox.js\u003c/code\u003e reverted to \u003ccode\u003eensureThis()\u003c/code\u003e semantics; the host-Promise rejection sanitizer composes \u003ccode\u003efrom()\u003c/code\u003e outside \u003ccode\u003ehandleException\u003c/code\u003e so the GHSA-mpf8 invariant (host null-proto rejection values must reach sandbox callbacks bridge-wrapped) is preserved. ATTACKS.md Category 26.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-9qj6-qjgg-37qq\u003c/strong\u003e — sandbox breakout via the species-defense helper \u003ccode\u003eneutralizeArraySpeciesBatch\u003c/code\u003e. The helper appended saved-state records to a fresh \u003ccode\u003e[]\u003c/code\u003e literal that — being allocated by the sandbox-side bridge closure — inherited sandbox \u003ccode\u003eArray.prototype\u003c/code\u003e. A sandbox-installed setter on \u003ccode\u003eArray.prototype[N]\u003c/code\u003e therefore captured the next \u003ccode\u003esaved[saved.length] = c\u003c/code\u003e write and exposed \u003ccode\u003ec.arr\u003c/code\u003e (a host-realm proxy) directly to attacker code, leading to host \u003ccode\u003eFunction\u003c/code\u003e extraction and RCE. Fixed in \u003ccode\u003elib/bridge.js\u003c/code\u003e by writing every saved-state entry through \u003ccode\u003ethisReflectDefineProperty\u003c/code\u003e so the appended slot is an own data property and no \u003ccode\u003eArray.prototype[N]\u003c/code\u003e setter is ever invoked while the bridge holds raw saved state. ATTACKS.md gains a new Defense Invariant (\u0026quot;Bridge-internal containers must not invoke sandbox code\u0026quot;) codifying the cross-cutting principle.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.11.1]\u003c/h2\u003e\n\u003cp\u003eSingle advisory closed plus prominent documentation of an existing escape hatch. Patch release — no API changes for valid configurations.\u003c/p\u003e\n\u003ch3\u003eSecurity fix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-8hg8-63c5-gwmx\u003c/strong\u003e — \u003ccode\u003enesting: true\u003c/code\u003e bypassed \u003ccode\u003erequire: false\u003c/code\u003e, allowing sandbox-to-host RCE via inner NodeVM construction. The contradictory option pair \u003ccode\u003e{ nesting: true, require: false }\u003c/code\u003e now throws \u003ccode\u003eVMError\u003c/code\u003e at \u003ccode\u003enew NodeVM(...)\u003c/code\u003e time citing the advisory. Same shape as the GHSA-cp6g eager FileSystem-contract probe — surface contradictory configuration at the API surface, not silently produce an unsandboxed sandbox. ATTACKS.md Category 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNew README section \u003cstrong\u003e\u0026quot;\u003ccode\u003enesting: true\u003c/code\u003e is an escape hatch\u0026quot;\u003c/strong\u003e under Hardening recommendations. Explains that \u003ccode\u003enesting: true\u003c/code\u003e lets sandbox code \u003ccode\u003erequire('vm2')\u003c/code\u003e and construct nested NodeVMs whose \u003ccode\u003erequire\u003c/code\u003e config is chosen by the sandbox (not constrained by the outer config — by design of nesting). \u003cstrong\u003eDo not enable \u003ccode\u003enesting: true\u003c/code\u003e for untrusted code.\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eJSDoc on the \u003ccode\u003enesting\u003c/code\u003e option (\u003ccode\u003elib/nodevm.js\u003c/code\u003e) upgraded to spell out the escape-hatch semantics and the GHSA-8hg8 contradictory-pair rejection.\u003c/li\u003e\n\u003cli\u003eATTACKS.md gains Category 25 documenting the configuration trap and a matching row in the \u0026quot;How The Bridge Defends\u0026quot; table.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eUpgrade notes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eIf you set \u003ccode\u003e{ nesting: true, require: false }\u003c/code\u003e\u003c/strong\u003e anywhere in your codebase, \u003ccode\u003enew NodeVM(...)\u003c/code\u003e now throws. Either drop \u003ccode\u003enesting: true\u003c/code\u003e (if you wanted deny-all), or replace \u003ccode\u003erequire: false\u003c/code\u003e with an explicit \u003ccode\u003erequire\u003c/code\u003e config (e.g. \u003ccode\u003erequire: { builtin: [] }\u003c/code\u003e) to acknowledge that vm2 will be requireable. The error message is actionable and links to the README section.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNo other configurations are affected.\u003c/strong\u003e Bare \u003ccode\u003enew NodeVM({ nesting: true })\u003c/code\u003e continues to work as documented; this is the documented escape hatch and is not closed by this patch (out of scope — would change \u003ccode\u003enesting: true\u003c/code\u003e semantics substantially).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eWhat this fix does NOT close\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003enesting: true\u003c/code\u003e itself remains an escape hatch for any non-trivial \u003ccode\u003erequire\u003c/code\u003e config. The fix closes the \u003cstrong\u003especific contradictory pair\u003c/strong\u003e flagged by the advisory; the broader recommendation is in the new README section: do not enable \u003ccode\u003enesting: true\u003c/code\u003e when running untrusted code. Constraint propagation from outer to inner NodeVM (where the outer's \u003ccode\u003erequire\u003c/code\u003e config would constrain inner construction) was considered and deferred — it would change the documented semantics of \u003ccode\u003enesting: true\u003c/code\u003e and is a major-version-shaped change.\u003c/p\u003e\n\u003ch2\u003e[3.11.0]\u003c/h2\u003e\n\u003cp\u003eCoordinated security release closing 13 advisories, plus a new \u003ccode\u003ebufferAllocLimit\u003c/code\u003e option and a \u003ccode\u003erealpath()\u003c/code\u003e method on the FileSystem adapter contract. Minor version bump because of the new public option and the FileSystem contract addition; no incompatible changes to the existing public API surface. Embedders running untrusted code in memory-constrained environments should review the new \u003ccode\u003ebufferAllocLimit\u003c/code\u003e option and the README's \u003ca href=\"https://github.com/patriksimek/vm2/blob/main/README.md#hardening-recommendations\"\u003eHardening recommendations\u003c/a\u003e section.\u003c/p\u003e\n\u003ch3\u003eUpgrade notes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCustom \u003ccode\u003efs\u003c/code\u003e adapters with \u003ccode\u003erequire.root\u003c/code\u003e\u003c/strong\u003e must implement \u003ccode\u003erealpathSync\u003c/code\u003e (or \u003ccode\u003erealpath()\u003c/code\u003e on a fully custom \u003ccode\u003eFileSystem\u003c/code\u003e class). Without it, \u003ccode\u003enew NodeVM({require: {root, fs: customAdapter}})\u003c/code\u003e now throws a \u003ccode\u003eVMError\u003c/code\u003e at construction, citing GHSA-cp6g-6699-wx9c. The eager probe converts what was previously silent deny-by-default at every later \u003ccode\u003erequire()\u003c/code\u003e into a single, clearly-labelled construction-time error. Default \u003ccode\u003efs\u003c/code\u003e users are unaffected — \u003ccode\u003eDefaultFileSystem\u003c/code\u003e and \u003ccode\u003eVMFileSystem\u003c/code\u003e ship \u003ccode\u003erealpath()\u003c/code\u003e out of the box.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEmbedders running untrusted async code\u003c/strong\u003e should install a host-side \u003ccode\u003eunhandledRejection\u003c/code\u003e handler. The GHSA-hw58 fix closes synchronous executor throws but cannot reach async-function / async-generator / \u003ccode\u003eawait using\u003c/code\u003e rejection paths (V8 creates rejection promises via the realm's intrinsic \u003ccode\u003ePromise\u003c/code\u003e). See README's Hardening recommendations and ATTACKS.md Category 22.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEmbedders running untrusted code in memory-constrained environments\u003c/strong\u003e should opt into a finite \u003ccode\u003ebufferAllocLimit\u003c/code\u003e (e.g. \u003ccode\u003e32 * 1024 * 1024\u003c/code\u003e) as part of layered DoS defense. Default remains \u003ccode\u003eInfinity\u003c/code\u003e for backwards compatibility.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSecurity fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-grj5-jjm8-h35p\u003c/strong\u003e — Array species self-return sandbox escape. Bridge \u003ccode\u003eapply\u003c/code\u003e and \u003ccode\u003econstruct\u003c/code\u003e traps now neutralise host-array \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eSymbol.species\u003c/code\u003e before every host call (and restore in a \u003ccode\u003efinally\u003c/code\u003e block). Direct write, \u003ccode\u003eObject.assign\u003c/code\u003e, non-configurable defineProperty, and prototype-level constructor variants all blocked.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-v37h-5mfm-c47c\u003c/strong\u003e — Handler reconstruction via \u003ccode\u003eutil.inspect\u003c/code\u003e leak. Three-layer defense: closure-scoped construction token, \u003ccode\u003egetHandlerObject\u003c/code\u003e WeakMap guard, and \u003ccode\u003e.constructor\u003c/code\u003e sentinel rebind on every handler-class prototype (including \u003ccode\u003eBufferHandler\u003c/code\u003e).\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-qcp4-v2jj-fjx8\u003c/strong\u003e — Trap method on leaked handler with forged target. New \u003ccode\u003ehandlerToTarget\u003c/code\u003e WeakMap pairs every handler with its canonical proxy target at construction; \u003ccode\u003evalidateHandlerTarget(this, target)\u003c/code\u003e at the entry of every trap method rejects forged-\u003ccode\u003ethis\u003c/code\u003e and forged-\u003ccode\u003etarget\u003c/code\u003e invocations with \u003ccode\u003eVMError(OPNA)\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-47x8-96vw-5wg6\u003c/strong\u003e — Cross-realm symbol extraction from host objects. Two-layer defense: dangerous cross-realm symbols (\u003ccode\u003enodejs.util.inspect.custom\u003c/code\u003e, \u003ccode\u003enodejs.rejection\u003c/code\u003e, \u003ccode\u003enodejs.util.promisify.custom\u003c/code\u003e) are filtered at the bridge boundary; structural identity collapse pre-populates the bridge identity caches for every built-in intrinsic prototype + constructor pair so prototype walks land on sandbox primordials.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-55hx-c926-fr95\u003c/strong\u003e — Promise structural-leak / SuppressedError / AggregateError sanitisation. \u003ccode\u003ehandleException\u003c/code\u003e now recurses into \u003ccode\u003eAggregateError.errors[]\u003c/code\u003e (in addition to \u003ccode\u003eSuppressedError.error\u003c/code\u003e/\u003ccode\u003e.suppressed\u003c/code\u003e); the bridge-level \u003ccode\u003eapply\u003c/code\u003e-trap recognises calls to host \u003ccode\u003ePromise.prototype.{then,catch,finally}\u003c/code\u003e by cached identity and pipes every sandbox callback through the same sanitiser.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/7a552e89e88bf34e0c3a33916aa7900efd9fd2f4\"\u003e\u003ccode\u003e7a552e8\u003c/code\u003e\u003c/a\u003e chore: bump to 3.11.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/ca195f0178989d6f59eafb7af965806f829e20f7\"\u003e\u003ccode\u003eca195f0\u003c/code\u003e\u003c/a\u003e fix(GHSA-9qj6-qjgg-37qq): bridge saved-state leak via Array.prototype[N] setter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/99d410bb7e0d607c56e68b420720a586dc0dd300\"\u003e\u003ccode\u003e99d410b\u003c/code\u003e\u003c/a\u003e fix(GHSA-2cm2-m3w5-gp2f): bind internal state in GlobalLexicalEnvironment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/c33c2bb19a822847f4e01d8d87b28dd5b2c86b3e\"\u003e\u003ccode\u003ec33c2bb\u003c/code\u003e\u003c/a\u003e fix(GHSA-9vg3-4rfj-wgcm): null-proto throw write-through via bridge from()\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/46cbbdde4e19b743974c942278080231004146ca\"\u003e\u003ccode\u003e46cbbdd\u003c/code\u003e\u003c/a\u003e fix(GHSA-8hg8-63c5-gwmx): reject contradictory { nesting: true, require: fals...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/fc0da548e63e96944b62f9b489d272d77a9d7f32\"\u003e\u003ccode\u003efc0da54\u003c/code\u003e\u003c/a\u003e fix: enhance CallSite path leak tests for Node 14+ and Node 16+ compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/fca270df73b64a88e2f9ce71ac17663b6eaf814e\"\u003e\u003ccode\u003efca270d\u003c/code\u003e\u003c/a\u003e fix: ensure compatibility with Node 8 by replacing recursive mkdir with expli...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/5cc3037848f9ebd693c53c02cb136ce25c31abb7\"\u003e\u003ccode\u003e5cc3037\u003c/code\u003e\u003c/a\u003e fix: update test pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/4e9fa062edd597ed9cd82c0cd96d7f9c78552d01\"\u003e\u003ccode\u003e4e9fa06\u003c/code\u003e\u003c/a\u003e chore: update mocha\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/865439d257f550ccf6ac8d153862944d66d026cf\"\u003e\u003ccode\u003e865439d\u003c/code\u003e\u003c/a\u003e chore: bump to 3.11.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/patriksimek/vm2/compare/3.9.19...v3.11.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for vm2 since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postcss` from 8.4.47 to 8.5.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/releases\"\u003epostcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003ePostCSS 8.5 brought API to work better with non-CSS sources like HTML, Vue.js/Svelte sources or CSS-in-JS.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e during \u003ca href=\"https://redirect.github.com/postcss/postcss/issues/1995\"\u003ehis work\u003c/a\u003e on \u003ca href=\"https://stylelint.io\"\u003eStylelint\u003c/a\u003e added \u003ccode\u003eInput#document\u003c/code\u003e in additional to \u003ccode\u003eInput#css\u003c/code\u003e.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eroot.source.input.document //=\u0026gt; \u0026quot;\u0026lt;p\u0026gt;Hello\u0026lt;/p\u0026gt;\r\n                           //    \u0026lt;style\u0026gt;\r\n                           //    p {\r\n                           //      color: green;\r\n                           //    }\r\n                           //    \u0026lt;/style\u0026gt;\u0026quot;\r\nroot.source.input.css      //=\u0026gt; \u0026quot;p {\r\n                           //      color: green;\r\n                           //    }\u0026quot;\r\n\u003cp\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/blob/main/CHANGELOG.md\"\u003epostcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eInput#document\u003c/code\u003e for sources like CSS-in-JS or HTML (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.4.49\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed custom syntax without \u003ccode\u003esource.offset\u003c/code\u003e (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/33b9790263dc1562a46ce45d9532bd63e95b7986\"\u003e\u003ccode\u003e33b9790\u003c/code\u003e\u003c/a\u003e Release 8.5.10 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/536c79e4b01e58a3a56b09c3c0cf2323f4b9a28b\"\u003e\u003ccode\u003e536c79e\u003c/code\u003e\u003c/a\u003e Escape \u0026lt;/style\u0026gt; in CSS output (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2074\"\u003e#2074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/afa96b2a139ce625c4d27973313479c7c85f39d4\"\u003e\u003ccode\u003eafa96b2\u003c/code\u003e\u003c/a\u003e Update dependencies (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2073\"\u003e#2073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/effe88bb87cabdc1876e02adbdd30f392f19f40d\"\u003e\u003ccode\u003eeffe88b\u003c/code\u003e\u003c/a\u003e Typo (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/3ee79a2c4a11e41d52db50b444eebe38299495ad\"\u003e\u003ccode\u003e3ee79a2\u003c/code\u003e\u003c/a\u003e Thread model (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2071\"\u003e#2071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/2e0683daca4dc2919211b03774f6b2d137136c01\"\u003e\u003ccode\u003e2e0683d\u003c/code\u003e\u003c/a\u003e Create incident response docs (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/fe88ac29c06b7b218be32994cdc6ca1525bdf2c9\"\u003e\u003ccode\u003efe88ac2\u003c/code\u003e\u003c/a\u003e Release 8.5.9 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/c551632496b87ab3f1965bfda5dc386b6c71963e\"\u003e\u003ccode\u003ec551632\u003c/code\u003e\u003c/a\u003e Avoid RegExp when we can use simple JS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/89a6b744060eb8dee743351c785a9fbe37d4525a\"\u003e\u003ccode\u003e89a6b74\u003c/code\u003e\u003c/a\u003e Move SECURITY.txt for docs folder to keep GitHub page cleaner\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/6ceb8a46af9f9de821faee98f861bdf84617347b\"\u003e\u003ccode\u003e6ceb8a4\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/postcss/postcss/compare/8.4.38...8.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `seroval` from 1.1.1 to 1.5.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lxsmnsyc/seroval/releases\"\u003eseroval's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove \u003ccode\u003eAbortSignal\u003c/code\u003e to \u003ccode\u003eseroval-plugins/web\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003eThis was an implementation mistake in 1.2.0, \u003ccode\u003eAbortSignal\u003c/code\u003e is a web standard.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexpose \u003ccode\u003eonParse\u003c/code\u003e, \u003ccode\u003epushPendingState\u003c/code\u003e, \u003ccode\u003epopPendingState\u003c/code\u003e and \u003ccode\u003eparseWithError\u003c/code\u003e in Plugin API.\u003c/li\u003e\n\u003cli\u003eRework serialized Promise format\n\u003cul\u003e\n\u003cli\u003eInstead of assigning resolver methods to a Promise, seroval will now keep track of an object that contains those methods and instead will reference that object when resolving in a streaming format.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003estatus\u003c/code\u003e and \u003ccode\u003evalue\u003c/code\u003e is now replaced with \u003ccode\u003es\u003c/code\u003e (0, 1, 2 as pending, success, failure) and \u003ccode\u003ev\u003c/code\u003e respectively.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eFix support for invalid Dates.\n\u003cul\u003e\n\u003cli\u003eTurns out, \u003ccode\u003enew Date(NaN)\u003c/code\u003e is a thing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAbortSignal\u003c/code\u003e to serializable values\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lxsmnsyc/seroval/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dompurify` from 3.3.0 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cure53/DOMPurify/releases\"\u003edompurify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDOMPurify 3.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with URI validation on attributes allowed via \u003ccode\u003eADD_ATTR\u003c/code\u003e callback, thanks \u003ca href=\"https://github.com/nelstrom\"\u003e\u003ccode\u003e@​nelstrom\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with source maps referring to non-existing files, thanks \u003ca href=\"https://github.com/cmdcolin\"\u003e\u003ccode\u003e@​cmdcolin\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, release signing, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with on-handler stripping for HTML-spec-reserved custom element names (\u003ccode\u003efont-face\u003c/code\u003e, \u003ccode\u003ecolor-profile\u003c/code\u003e, \u003ccode\u003emissing-glyph\u003c/code\u003e, \u003ccode\u003efont-face-src\u003c/code\u003e, \u003ccode\u003efont-face-uri\u003c/code\u003e, \u003ccode\u003efont-face-format\u003c/code\u003e, \u003ccode\u003efont-face-name\u003c/code\u003e) under permissive \u003ccode\u003eCUSTOM_ELEMENT_HANDLING\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFixed a case-sensitivity gap in the \u003ccode\u003eannotation-xml\u003c/code\u003e check that allowed mixed-case variants to bypass the basic-custom-element exclusion in XHTML mode\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003eSANITIZE_NAMED_PROPS\u003c/code\u003e repeatedly prefixing already-prefixed \u003ccode\u003eid\u003c/code\u003e and \u003ccode\u003ename\u003c/code\u003e values on subsequent sanitization\u003c/li\u003e\n\u003cli\u003eFixed the \u003ccode\u003eIN_PLACE\u003c/code\u003e root-node check to explicitly guard against non-string \u003ccode\u003enodeName\u003c/code\u003e (DOM-clobbering robustness)\u003c/li\u003e\n\u003cli\u003eRemoved a duplicate \u003ccode\u003eslot\u003c/code\u003e entry from the default HTML attribute allow-list\u003c/li\u003e\n\u003cli\u003eStrengthened the fast-check fuzz harness with explicit XSS invariants, an expanded seed-payload corpus, an additional idempotence property for \u003ccode\u003eSANITIZE_NAMED_PROPS\u003c/code\u003e, and a negative-control assertion ensuring the invariants actually fire\u003c/li\u003e\n\u003cli\u003eAdded regression and pinning tests covering the above fixes and two accepted-behavior contracts (\u003ccode\u003eSAFE_FOR_TEMPLATES\u003c/code\u003e greedy scrub, hook-added attribute handling)\u003c/li\u003e\n\u003cli\u003eExtended CodeQL analysis to run on \u003ccode\u003e3.x\u003c/code\u003e and \u003ccode\u003e2.x\u003c/code\u003e maintenance branches\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eMost relevant changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a problem with \u003ccode\u003eFORBID_TAGS\u003c/code\u003e not winning over \u003ccode\u003eADD_TAGS\u003c/code\u003e, thanks \u003ca href=\"https://github.com/kodareef5\"\u003e\u003ccode\u003e@​kodareef5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed several minor problems and typos regarding MathML attributes, thanks \u003ca href=\"https://github.com/DavidOliver\"\u003e\u003ccode\u003e@​DavidOliver\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003eADD_ATTR\u003c/code\u003e/\u003ccode\u003eADD_TAGS\u003c/code\u003e function leaking into subsequent array-based calls, thanks \u003ca href=\"https://github.com/1Jesper1\"\u003e\u003ccode\u003e@​1Jesper1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a missing \u003ccode\u003eSAFE_FOR_TEMPLATES\u003c/code\u003e scrub in \u003ccode\u003eRETURN_DOM\u003c/code\u003e path, thanks \u003ca href=\"https://github.com/bencalif\"\u003e\u003ccode\u003e@​bencalif\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a prototype pollution via \u003ccode\u003eCUSTOM_ELEMENT_HANDLING\u003c/code\u003e, thanks \u003ca href=\"https://github.com/trace37labs\"\u003e\u003ccode\u003e@​trace37labs\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eADD_TAGS\u003c/code\u003e function form bypassing \u003ccode\u003eFORBID_TAGS\u003c/code\u003e, thanks \u003ca href=\"https://github.com/eddieran\"\u003e\u003ccode\u003e@​eddieran\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eADD_ATTR\u003c/code\u003e predicates skipping URI validation, thanks \u003ca href=\"https://github.com/christos-eth\"\u003e\u003ccode\u003e@​christos-eth\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eUSE_PROFILES\u003c/code\u003e prototype pollution, thanks \u003ca href=\"https://github.com/christos-eth\"\u003e\u003ccode\u003e@​christos-eth\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue leading to possible mXSS via Re-Contextualization, thanks \u003ca href=\"https://github.com/researchatfluidattacks\"\u003e\u003ccode\u003e@​researchatfluidattacks\u003c/code\u003e\u003c/a\u003e and others\u003c/li\u003e\n\u003cli\u003eFixed an issue with closing tags leading to possible mXSS, thanks \u003ca href=\"https://github.com/frevadiscor\"\u003e\u003ccode\u003e@​frevadiscor\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a problem with the type dentition patcher after Node version bump\u003c/li\u003e\n\u003cli\u003eFixed freezing BS runs by reducing the tested browsers array\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003cli\u003eAdded needed files for OpenSSF scorecard checks\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003ePubli...\n\n_Description has been truncated_","html_url":"https://github.com/Asper-Beauty-Shop/examples/pull/69","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Asper-Beauty-Shop%2Fexamples/issues/69","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/69/packages"},{"uuid":"4377885872","node_id":"PR_kwDOKSIIAM7YE1wa","number":328,"state":"open","title":"Bump the npm group with 33 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-04T15:53:16.000Z","updated_at":"2026-05-05T04:19:59.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm","update_count":33,"packages":[{"name":"astro","old_version":"6.2.1","new_version":"6.2.2","repository_url":"https://github.com/withastro/astro"},{"name":"eslint","old_version":"10.2.1","new_version":"10.3.0","repository_url":"https://github.com/eslint/eslint"},{"name":"@rollup/rollup-android-arm-eabi","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-android-arm64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-darwin-arm64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-darwin-x64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-freebsd-arm64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-freebsd-x64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm-gnueabihf","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm-musleabihf","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm64-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm64-musl","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-loong64-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-loong64-musl","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-ppc64-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-ppc64-musl","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-riscv64-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-riscv64-musl","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-s390x-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-x64-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-x64-musl","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-openbsd-x64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-openharmony-arm64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-arm64-msvc","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-ia32-msvc","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-x64-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-x64-msvc","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"baseline-browser-mapping","old_version":"2.10.24","new_version":"2.10.27","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"electron-to-chromium","old_version":"1.5.348","new_version":"1.5.349","repository_url":"https://github.com/Kilian/electron-to-chromium"},{"name":"rollup","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"seroval-plugins","old_version":"1.5.2","new_version":"1.5.3","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"seroval","old_version":"1.5.2","new_version":"1.5.3","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"zod","old_version":"4.4.1","new_version":"4.4.3","repository_url":"https://github.com/colinhacks/zod"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm group with 33 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [astro](https://github.com/withastro/astro/tree/HEAD/packages/astro) | `6.2.1` | `6.2.2` |\n| [eslint](https://github.com/eslint/eslint) | `10.2.1` | `10.3.0` |\n| [@rollup/rollup-android-arm-eabi](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-android-arm64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-darwin-x64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-freebsd-arm64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-freebsd-x64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-arm-gnueabihf](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-arm-musleabihf](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-arm64-musl](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-loong64-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-loong64-musl](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-ppc64-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-ppc64-musl](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-riscv64-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-riscv64-musl](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-s390x-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-x64-musl](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-openbsd-x64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-openharmony-arm64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-win32-arm64-msvc](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-win32-ia32-msvc](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-win32-x64-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-win32-x64-msvc](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.10.24` | `2.10.27` |\n| [electron-to-chromium](https://github.com/Kilian/electron-to-chromium) | `1.5.348` | `1.5.349` |\n| [rollup](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [seroval-plugins](https://github.com/lxsmnsyc/seroval) | `1.5.2` | `1.5.3` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.2` | `1.5.3` |\n| [zod](https://github.com/colinhacks/zod) | `4.4.1` | `4.4.3` |\n\nUpdates `astro` from 6.2.1 to 6.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/withastro/astro/releases\"\u003eastro's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eastro@6.2.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16292\"\u003e#16292\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/00f48ee25fdc072df93210fa2d6d24ea649d4ab1\"\u003e\u003ccode\u003e00f48ee\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/p-linnane\"\u003e\u003ccode\u003e@​p-linnane\u003c/code\u003e\u003c/a\u003e! - Fixes head metadata propagation in dev for adapters that load modules in the \u003ccode\u003eprerender\u003c/code\u003e Vite environment, such as \u003ccode\u003e@astrojs/cloudflare\u003c/code\u003e. The \u003ccode\u003eastro:head-metadata\u003c/code\u003e plugin previously only tracked the \u003ccode\u003essr\u003c/code\u003e environment, so \u003ccode\u003emaybeRenderHead()\u003c/code\u003e could fire inside an unrelated component's \u003ccode\u003e\\\u0026lt;template\u0026gt;\u003c/code\u003e element, trapping subsequent hoisted \u003ccode\u003e\u0026lt;style\u0026gt;\u003c/code\u003e blocks.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16451\"\u003e#16451\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/778865f4abe29f7dfa4009624f39e350b7735acd\"\u003e\u003ccode\u003e778865f\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/maximslo\"\u003e\u003ccode\u003e@​maximslo\u003c/code\u003e\u003c/a\u003e! - Fixes build crash when processing animated AVIF images. Sharp now gracefully passes through unsupported image formats instead of crashing during the build.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16548\"\u003e#16548\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/7214d3e134766c7324e76a0ec4c91050cf4a2a18\"\u003e\u003ccode\u003e7214d3e\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/senutpal\"\u003e\u003ccode\u003e@​senutpal\u003c/code\u003e\u003c/a\u003e! - Fixes scoped styles applying to the wrong element when \u003ccode\u003evite.css.transformer\u003c/code\u003e is set to \u003ccode\u003e'lightningcss'\u003c/code\u003e and a selector uses a nested \u003ccode\u003e\u0026amp;\u003c/code\u003e inside \u003ccode\u003e:where(...)\u003c/code\u003e, such as Tailwind v4's \u003ccode\u003espace-x-*\u003c/code\u003e, \u003ccode\u003espace-y-*\u003c/code\u003e, and \u003ccode\u003edivide-*\u003c/code\u003e utilities.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16566\"\u003e#16566\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/9ac96b406653d2993d35cd83dc5fa538b7417545\"\u003e\u003ccode\u003e9ac96b4\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/web-dev0521\"\u003e\u003ccode\u003e@​web-dev0521\u003c/code\u003e\u003c/a\u003e! - Fixes \u003ccode\u003edata-astro-prefetch=\u0026quot;tap\u0026quot;\u003c/code\u003e not triggering when clicking nested elements (e.g. \u003ccode\u003e\u0026lt;span\u0026gt;\u003c/code\u003e, \u003ccode\u003e\u0026lt;img\u0026gt;\u003c/code\u003e, \u003ccode\u003e\u0026lt;svg\u0026gt;\u003c/code\u003e) inside an anchor tag.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/15994\"\u003e#15994\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/1e70d18febca2319487c9acbd9c2e18cb961aef0\"\u003e\u003ccode\u003e1e70d18\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/ossaidqadri\"\u003e\u003ccode\u003e@​ossaidqadri\u003c/code\u003e\u003c/a\u003e! - Fix \u003ccode\u003e\u0026lt;style\u0026gt;\u003c/code\u003e compilation failure when importing Astro components via tsconfig path aliases\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16144\"\u003e#16144\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/1cd66504a63055dcbe54b5d3ec52cc220d3a82e1\"\u003e\u003ccode\u003e1cd6650\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/fkatsuhiro\"\u003e\u003ccode\u003e@​fkatsuhiro\u003c/code\u003e\u003c/a\u003e! - Fixed a regression where \u003ccode\u003e.html\u003c/code\u003e was unexpectedly stripped from dynamic route parameters on non-page routes (\u003ccode\u003e.ts\u003c/code\u003e endpoints and redirects). This caused endpoints like \u003ccode\u003e/some/[...id].ts\u003c/code\u003e returning \u003ccode\u003eid: 'file.html'\u003c/code\u003e on \u003ccode\u003egetStaticPaths\u003c/code\u003e to not serve that file because the generated route (\u003ccode\u003e/some/file.html\u003c/code\u003e) would get matched as \u003ccode\u003eid: file\u003c/code\u003e that is not part of the list returned by \u003ccode\u003egetStaticPaths\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16415\"\u003e#16415\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/559c0fd63ac8c051ee3bb634e06aadf48e8d8495\"\u003e\u003ccode\u003e559c0fd\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/0xbejaxer\"\u003e\u003ccode\u003e@​0xbejaxer\u003c/code\u003e\u003c/a\u003e! - Fix CSS traversal boundaries so pages with \u003ccode\u003eexport const partial = true\u003c/code\u003e still contribute styles when imported as components by other pages.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16516\"\u003e#16516\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/17f1867c177d99bc5fff31aa12f6c9ab35ef4581\"\u003e\u003ccode\u003e17f1867\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/fkatsuhiro\"\u003e\u003ccode\u003e@​fkatsuhiro\u003c/code\u003e\u003c/a\u003e! - Fixes an issue where the index route would return a 404 error when using a custom \u003ccode\u003ebase\u003c/code\u003e path combined with \u003ccode\u003etrailingSlash: 'never'\u003c/code\u003e. This ensures that the home page and internal rewrites are correctly matched under these configurations.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16515\"\u003e#16515\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/280ec88c0d9c75755b7616263ce516ff2122fb81\"\u003e\u003ccode\u003e280ec88\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/jp-knj\"\u003e\u003ccode\u003e@​jp-knj\u003c/code\u003e\u003c/a\u003e! - Fixes an issue where \u003ccode\u003ei18n.fallback\u003c/code\u003e pages with \u003ccode\u003efallbackType: 'rewrite'\u003c/code\u003e were emitted with empty bodies during \u003ccode\u003eastro build\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16565\"\u003e#16565\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/7959798c33c8c5e70183e1af3ab5d9b9d663e494\"\u003e\u003ccode\u003e7959798\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/enjoyandlove\"\u003e\u003ccode\u003e@​enjoyandlove\u003c/code\u003e\u003c/a\u003e! - Fixes session persistence when \u003ccode\u003esession.delete()\u003c/code\u003e is the first mutation in a request (no prior \u003ccode\u003eget\u003c/code\u003e, \u003ccode\u003eset\u003c/code\u003e, \u003ccode\u003ehas\u003c/code\u003e, or \u003ccode\u003ekeys\u003c/code\u003e). The session was marked dirty in memory, but persistence skipped the save because \u003ccode\u003e#data\u003c/code\u003e stayed \u003ccode\u003eundefined\u003c/code\u003e, so the backing store could still return the deleted key on the next request.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16527\"\u003e#16527\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/86fd80dd17cf896e5eaa185b70576d839d789978\"\u003e\u003ccode\u003e86fd80d\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/enjoyandlove\"\u003e\u003ccode\u003e@​enjoyandlove\u003c/code\u003e\u003c/a\u003e! - Prevents script deduplication state from being consumed while rendering inert \u003ccode\u003e\\\u0026lt;template\u0026gt;\u003c/code\u003e contexts.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16540\"\u003e#16540\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/e59c637fb6c589fff5b56b737bab57d7513b0559\"\u003e\u003ccode\u003ee59c637\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/ascorbic\"\u003e\u003ccode\u003e@​ascorbic\u003c/code\u003e\u003c/a\u003e! - Skips session storage reads when no session cookie is present. Previously, calling \u003ccode\u003esession.get()\u003c/code\u003e on a request without a session cookie would initialize the storage driver and make a read that was guaranteed to miss. On network-backed drivers this added latency and resource usage to every anonymous request.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16517\"\u003e#16517\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/6ab0b3c0266fe9c13638e22d40d46f2603e6031d\"\u003e\u003ccode\u003e6ab0b3c\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/adamchal\"\u003e\u003ccode\u003e@​adamchal\u003c/code\u003e\u003c/a\u003e! - Removes inline CSS for prerendered routes from the SSR manifest. The static HTML on disk already inlines those styles, and the SSR worker never renders prerendered routes, so the data was dead weight. Builds with many prerendered routes and \u003ccode\u003ebuild.inlineStylesheets: \u0026quot;always\u0026quot;\u003c/code\u003e (or \u003ccode\u003e\u0026quot;auto\u0026quot;\u003c/code\u003e with small stylesheets) will see a smaller SSR entry chunk, which reduces cold-start parse time on platforms like Cloudflare Workers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16509\"\u003e#16509\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/d3d3557c77decc59fca6f0bfbdc36ba65e420564\"\u003e\u003ccode\u003ed3d3557\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/cyphercodes\"\u003e\u003ccode\u003e@​cyphercodes\u003c/code\u003e\u003c/a\u003e! - Fix conditional named slot callbacks receiving arguments from \u003ccode\u003eAstro.slots.render()\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16236\"\u003e#16236\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/c6b068e905a1a7b6e6a0b813c2368586b70a2214\"\u003e\u003ccode\u003ec6b068e\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/fkatsuhiro\"\u003e\u003ccode\u003e@​fkatsuhiro\u003c/code\u003e\u003c/a\u003e! - Fixes the \u003ccode\u003eposition\u003c/code\u003e prop on \u003ccode\u003e\u0026lt;Image /\u0026gt;\u003c/code\u003e and \u003ccode\u003e\u0026lt;Picture /\u0026gt;\u003c/code\u003e components to correctly apply \u003ccode\u003eobject-position\u003c/code\u003e styles\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16018\"\u003e#16018\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/d14f47c46da2f50f79e9b8cfb87eaca9db8e898b\"\u003e\u003ccode\u003ed14f47c\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/felmonon\"\u003e\u003ccode\u003e@​felmonon\u003c/code\u003e\u003c/a\u003e! - Fix \u003ccode\u003edefineLiveCollection()\u003c/code\u003e so \u003ccode\u003eLiveLoader\u003c/code\u003e data types declared as interfaces are accepted.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/withastro/astro/blob/main/packages/astro/CHANGELOG.md\"\u003eastro's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e6.2.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16292\"\u003e#16292\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/00f48ee25fdc072df93210fa2d6d24ea649d4ab1\"\u003e\u003ccode\u003e00f48ee\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/p-linnane\"\u003e\u003ccode\u003e@​p-linnane\u003c/code\u003e\u003c/a\u003e! - Fixes head metadata propagation in dev for adapters that load modules in the \u003ccode\u003eprerender\u003c/code\u003e Vite environment, such as \u003ccode\u003e@astrojs/cloudflare\u003c/code\u003e. The \u003ccode\u003eastro:head-metadata\u003c/code\u003e plugin previously only tracked the \u003ccode\u003essr\u003c/code\u003e environment, so \u003ccode\u003emaybeRenderHead()\u003c/code\u003e could fire inside an unrelated component's \u003ccode\u003e\\\u0026lt;template\u0026gt;\u003c/code\u003e element, trapping subsequent hoisted \u003ccode\u003e\u0026lt;style\u0026gt;\u003c/code\u003e blocks.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16451\"\u003e#16451\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/778865f4abe29f7dfa4009624f39e350b7735acd\"\u003e\u003ccode\u003e778865f\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/maximslo\"\u003e\u003ccode\u003e@​maximslo\u003c/code\u003e\u003c/a\u003e! - Fixes build crash when processing animated AVIF images. Sharp now gracefully passes through unsupported image formats instead of crashing during the build.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16548\"\u003e#16548\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/7214d3e134766c7324e76a0ec4c91050cf4a2a18\"\u003e\u003ccode\u003e7214d3e\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/senutpal\"\u003e\u003ccode\u003e@​senutpal\u003c/code\u003e\u003c/a\u003e! - Fixes scoped styles applying to the wrong element when \u003ccode\u003evite.css.transformer\u003c/code\u003e is set to \u003ccode\u003e'lightningcss'\u003c/code\u003e and a selector uses a nested \u003ccode\u003e\u0026amp;\u003c/code\u003e inside \u003ccode\u003e:where(...)\u003c/code\u003e, such as Tailwind v4's \u003ccode\u003espace-x-*\u003c/code\u003e, \u003ccode\u003espace-y-*\u003c/code\u003e, and \u003ccode\u003edivide-*\u003c/code\u003e utilities.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16566\"\u003e#16566\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/9ac96b406653d2993d35cd83dc5fa538b7417545\"\u003e\u003ccode\u003e9ac96b4\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/web-dev0521\"\u003e\u003ccode\u003e@​web-dev0521\u003c/code\u003e\u003c/a\u003e! - Fixes \u003ccode\u003edata-astro-prefetch=\u0026quot;tap\u0026quot;\u003c/code\u003e not triggering when clicking nested elements (e.g. \u003ccode\u003e\u0026lt;span\u0026gt;\u003c/code\u003e, \u003ccode\u003e\u0026lt;img\u0026gt;\u003c/code\u003e, \u003ccode\u003e\u0026lt;svg\u0026gt;\u003c/code\u003e) inside an anchor tag.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/15994\"\u003e#15994\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/1e70d18febca2319487c9acbd9c2e18cb961aef0\"\u003e\u003ccode\u003e1e70d18\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/ossaidqadri\"\u003e\u003ccode\u003e@​ossaidqadri\u003c/code\u003e\u003c/a\u003e! - Fix \u003ccode\u003e\u0026lt;style\u0026gt;\u003c/code\u003e compilation failure when importing Astro components via tsconfig path aliases\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16144\"\u003e#16144\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/1cd66504a63055dcbe54b5d3ec52cc220d3a82e1\"\u003e\u003ccode\u003e1cd6650\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/fkatsuhiro\"\u003e\u003ccode\u003e@​fkatsuhiro\u003c/code\u003e\u003c/a\u003e! - Fixed a regression where \u003ccode\u003e.html\u003c/code\u003e was unexpectedly stripped from dynamic route parameters on non-page routes (\u003ccode\u003e.ts\u003c/code\u003e endpoints and redirects). This caused endpoints like \u003ccode\u003e/some/[...id].ts\u003c/code\u003e returning \u003ccode\u003eid: 'file.html'\u003c/code\u003e on \u003ccode\u003egetStaticPaths\u003c/code\u003e to not serve that file because the generated route (\u003ccode\u003e/some/file.html\u003c/code\u003e) would get matched as \u003ccode\u003eid: file\u003c/code\u003e that is not part of the list returned by \u003ccode\u003egetStaticPaths\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16415\"\u003e#16415\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/559c0fd63ac8c051ee3bb634e06aadf48e8d8495\"\u003e\u003ccode\u003e559c0fd\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/0xbejaxer\"\u003e\u003ccode\u003e@​0xbejaxer\u003c/code\u003e\u003c/a\u003e! - Fix CSS traversal boundaries so pages with \u003ccode\u003eexport const partial = true\u003c/code\u003e still contribute styles when imported as components by other pages.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16516\"\u003e#16516\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/17f1867c177d99bc5fff31aa12f6c9ab35ef4581\"\u003e\u003ccode\u003e17f1867\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/fkatsuhiro\"\u003e\u003ccode\u003e@​fkatsuhiro\u003c/code\u003e\u003c/a\u003e! - Fixes an issue where the index route would return a 404 error when using a custom \u003ccode\u003ebase\u003c/code\u003e path combined with \u003ccode\u003etrailingSlash: 'never'\u003c/code\u003e. This ensures that the home page and internal rewrites are correctly matched under these configurations.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16515\"\u003e#16515\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/280ec88c0d9c75755b7616263ce516ff2122fb81\"\u003e\u003ccode\u003e280ec88\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/jp-knj\"\u003e\u003ccode\u003e@​jp-knj\u003c/code\u003e\u003c/a\u003e! - Fixes an issue where \u003ccode\u003ei18n.fallback\u003c/code\u003e pages with \u003ccode\u003efallbackType: 'rewrite'\u003c/code\u003e were emitted with empty bodies during \u003ccode\u003eastro build\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16565\"\u003e#16565\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/7959798c33c8c5e70183e1af3ab5d9b9d663e494\"\u003e\u003ccode\u003e7959798\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/enjoyandlove\"\u003e\u003ccode\u003e@​enjoyandlove\u003c/code\u003e\u003c/a\u003e! - Fixes session persistence when \u003ccode\u003esession.delete()\u003c/code\u003e is the first mutation in a request (no prior \u003ccode\u003eget\u003c/code\u003e, \u003ccode\u003eset\u003c/code\u003e, \u003ccode\u003ehas\u003c/code\u003e, or \u003ccode\u003ekeys\u003c/code\u003e). The session was marked dirty in memory, but persistence skipped the save because \u003ccode\u003e#data\u003c/code\u003e stayed \u003ccode\u003eundefined\u003c/code\u003e, so the backing store could still return the deleted key on the next request.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16527\"\u003e#16527\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/86fd80dd17cf896e5eaa185b70576d839d789978\"\u003e\u003ccode\u003e86fd80d\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/enjoyandlove\"\u003e\u003ccode\u003e@​enjoyandlove\u003c/code\u003e\u003c/a\u003e! - Prevents script deduplication state from being consumed while rendering inert \u003ccode\u003e\\\u0026lt;template\u0026gt;\u003c/code\u003e contexts.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16540\"\u003e#16540\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/e59c637fb6c589fff5b56b737bab57d7513b0559\"\u003e\u003ccode\u003ee59c637\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/ascorbic\"\u003e\u003ccode\u003e@​ascorbic\u003c/code\u003e\u003c/a\u003e! - Skips session storage reads when no session cookie is present. Previously, calling \u003ccode\u003esession.get()\u003c/code\u003e on a request without a session cookie would initialize the storage driver and make a read that was guaranteed to miss. On network-backed drivers this added latency and resource usage to every anonymous request.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16517\"\u003e#16517\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/6ab0b3c0266fe9c13638e22d40d46f2603e6031d\"\u003e\u003ccode\u003e6ab0b3c\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/adamchal\"\u003e\u003ccode\u003e@​adamchal\u003c/code\u003e\u003c/a\u003e! - Removes inline CSS for prerendered routes from the SSR manifest. The static HTML on disk already inlines those styles, and the SSR worker never renders prerendered routes, so the data was dead weight. Builds with many prerendered routes and \u003ccode\u003ebuild.inlineStylesheets: \u0026quot;always\u0026quot;\u003c/code\u003e (or \u003ccode\u003e\u0026quot;auto\u0026quot;\u003c/code\u003e with small stylesheets) will see a smaller SSR entry chunk, which reduces cold-start parse time on platforms like Cloudflare Workers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16509\"\u003e#16509\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/d3d3557c77decc59fca6f0bfbdc36ba65e420564\"\u003e\u003ccode\u003ed3d3557\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/cyphercodes\"\u003e\u003ccode\u003e@​cyphercodes\u003c/code\u003e\u003c/a\u003e! - Fix conditional named slot callbacks receiving arguments from \u003ccode\u003eAstro.slots.render()\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16236\"\u003e#16236\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/c6b068e905a1a7b6e6a0b813c2368586b70a2214\"\u003e\u003ccode\u003ec6b068e\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/fkatsuhiro\"\u003e\u003ccode\u003e@​fkatsuhiro\u003c/code\u003e\u003c/a\u003e! - Fixes the \u003ccode\u003eposition\u003c/code\u003e prop on \u003ccode\u003e\u0026lt;Image /\u0026gt;\u003c/code\u003e and \u003ccode\u003e\u0026lt;Picture /\u0026gt;\u003c/code\u003e components to correctly apply \u003ccode\u003eobject-position\u003c/code\u003e styles\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16018\"\u003e#16018\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/d14f47c46da2f50f79e9b8cfb87eaca9db8e898b\"\u003e\u003ccode\u003ed14f47c\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/felmonon\"\u003e\u003ccode\u003e@​felmonon\u003c/code\u003e\u003c/a\u003e! - Fix \u003ccode\u003edefineLiveCollection()\u003c/code\u003e so \u003ccode\u003eLiveLoader\u003c/code\u003e data types declared as interfaces are accepted.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/3f67b84bcfd232574a4832d4d32fcc724fdd3be5\"\u003e\u003ccode\u003e3f67b84\u003c/code\u003e\u003c/a\u003e [ci] release (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16545\"\u003e#16545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/7711e471ab8950d00f38ae1dd1acba451705dd51\"\u003e\u003ccode\u003e7711e47\u003c/code\u003e\u003c/a\u003e [ci] format\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/17f1867c177d99bc5fff31aa12f6c9ab35ef4581\"\u003e\u003ccode\u003e17f1867\u003c/code\u003e\u003c/a\u003e fix: route mismatch using trail slash never (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16516\"\u003e#16516\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/7959798c33c8c5e70183e1af3ab5d9b9d663e494\"\u003e\u003ccode\u003e7959798\u003c/code\u003e\u003c/a\u003e fix(astro): persist session delete without prior get/set (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16565\"\u003e#16565\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/9ac96b406653d2993d35cd83dc5fa538b7417545\"\u003e\u003ccode\u003e9ac96b4\u003c/code\u003e\u003c/a\u003e fix(prefetch): trigger tap strategy when clicking nested child elements (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16566\"\u003e#16566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/6ab0b3c0266fe9c13638e22d40d46f2603e6031d\"\u003e\u003ccode\u003e6ab0b3c\u003c/code\u003e\u003c/a\u003e fix(build): exclude prerendered route styles from SSR manifest (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16517\"\u003e#16517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/a595623e01a2895ab69683d89b3eeeab89981d29\"\u003e\u003ccode\u003ea595623\u003c/code\u003e\u003c/a\u003e [ci] format\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/c6b068e905a1a7b6e6a0b813c2368586b70a2214\"\u003e\u003ccode\u003ec6b068e\u003c/code\u003e\u003c/a\u003e fix : astro image position prop bug (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16236\"\u003e#16236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/9f4eee0d44cac4b9d858a063ee2a4b94a9c335f9\"\u003e\u003ccode\u003e9f4eee0\u003c/code\u003e\u003c/a\u003e Fixes @_@ not being stripped from CSS file names (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16264\"\u003e#16264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/7214d3e134766c7324e76a0ec4c91050cf4a2a18\"\u003e\u003ccode\u003e7214d3e\u003c/code\u003e\u003c/a\u003e fix(css): preserve scope on nested \u0026amp; with lightningcss transformer (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16548\"\u003e#16548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/withastro/astro/commits/astro@6.2.2/packages/astro\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `eslint` from 10.2.1 to 10.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/eslint/eslint/releases\"\u003eeslint's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev10.3.0\u003c/h2\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/379571a975f2b24d88037b9de2e72ec61d004130\"\u003e\u003ccode\u003e379571a\u003c/code\u003e\u003c/a\u003e feat: add suggestions for no-unused-private-class-members (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20773\"\u003e#20773\u003c/a\u003e) (sethamus)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/b6ae5cf07b9b51802367539cb24b245b61eaa37c\"\u003e\u003ccode\u003eb6ae5cf\u003c/code\u003e\u003c/a\u003e fix: handle unavailable require cache (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20812\"\u003e#20812\u003c/a\u003e) (Simon Podlipsky)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/6fb3685bcbe9a6f72fd7dfb9129686b6fb96b0bd\"\u003e\u003ccode\u003e6fb3685\u003c/code\u003e\u003c/a\u003e fix: rule suggestions cause continuation in class body (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20787\"\u003e#20787\u003c/a\u003e) (Milos Djermanovic)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/32cc7ab4ec653ce89da92deb5c40a9f4fc707fe5\"\u003e\u003ccode\u003e32cc7ab\u003c/code\u003e\u003c/a\u003e docs: fix typos in docs and comments (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20809\"\u003e#20809\u003c/a\u003e) (Tanuj Kanti)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/7f479376a2fa463d823ab762db6bb37ce8d2ee8f\"\u003e\u003ccode\u003e7f47937\u003c/code\u003e\u003c/a\u003e docs: Update README (GitHub Actions Bot)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/d32235ec19ceea211fa86452afa383ca05f5c2f9\"\u003e\u003ccode\u003ed32235e\u003c/code\u003e\u003c/a\u003e ci: use pnpm in \u003ccode\u003eeslint-flat-config-utils\u003c/code\u003e type integration test (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20826\"\u003e#20826\u003c/a\u003e) (Francesco Trotta)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/3ffb14ea517de750ed1181579ef844af342e4096\"\u003e\u003ccode\u003e3ffb14e\u003c/code\u003e\u003c/a\u003e chore: clean up typos in comments and JSDoc (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20821\"\u003e#20821\u003c/a\u003e) (Pixel998)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/22eb58a21cbde2fbd53a1fae99453d408672de50\"\u003e\u003ccode\u003e22eb58a\u003c/code\u003e\u003c/a\u003e chore: add missing continue-on-error to ecosystem-tests.yml (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20818\"\u003e#20818\u003c/a\u003e) (Josh Goldberg ✨)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/88bf0024cb36caebf2880516d9a1f81aa75dafe2\"\u003e\u003ccode\u003e88bf002\u003c/code\u003e\u003c/a\u003e ci: bump pnpm/action-setup from 6.0.1 to 6.0.3 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20815\"\u003e#20815\u003c/a\u003e) (dependabot[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/97c8c330beae9557ad24e19f94eebc8d08d1a722\"\u003e\u003ccode\u003e97c8c33\u003c/code\u003e\u003c/a\u003e chore: update ilshidur/action-discord action to v0.4.0 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20811\"\u003e#20811\u003c/a\u003e) (renovate[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/2f58136dd47364a4cae7054a64f7bf1e79693813\"\u003e\u003ccode\u003e2f58136\u003c/code\u003e\u003c/a\u003e chore: pin peter-evans/create-pull-request action to 5f6978f (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20810\"\u003e#20810\u003c/a\u003e) (renovate[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/77add7f1bc91ed17bba3be3289928a9146c5f5a1\"\u003e\u003ccode\u003e77add7f\u003c/code\u003e\u003c/a\u003e chore: add initial ecosystem plugin tests workflow (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/19643\"\u003e#19643\u003c/a\u003e) (Josh Goldberg ✨)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/4023b55490fae55e464fe35530ef038cdf5d79a5\"\u003e\u003ccode\u003e4023b55\u003c/code\u003e\u003c/a\u003e test: Add unit tests for SuppressionsService.prune() (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20797\"\u003e#20797\u003c/a\u003e) (kuldeep kumar)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/54080dad4f77bb39a1a843933d4ff3a2b7c175e2\"\u003e\u003ccode\u003e54080da\u003c/code\u003e\u003c/a\u003e test: add unit tests for ForkContext (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20778\"\u003e#20778\u003c/a\u003e) (kuldeep kumar)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/f0e2bcc4bf19253aaebfbd7df87824b0ca4a151f\"\u003e\u003ccode\u003ef0e2bcc\u003c/code\u003e\u003c/a\u003e test: add unit tests for SuppressionsService.suppress() method (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20765\"\u003e#20765\u003c/a\u003e) (kuldeep kumar)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/a7f0b94743a99bcdf8d07cff15ffbfa6a6c5f927\"\u003e\u003ccode\u003ea7f0b94\u003c/code\u003e\u003c/a\u003e chore: update dependency prettier to v3.8.3 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20782\"\u003e#20782\u003c/a\u003e) (renovate[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/7bf93d9e79f6dbf77242cbb9a9b8be834730fccd\"\u003e\u003ccode\u003e7bf93d9\u003c/code\u003e\u003c/a\u003e chore: update TypeScript to v6 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20677\"\u003e#20677\u003c/a\u003e) (sethamus)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/b42dd72e76e7f90e7f0be9458288d93353052adc\"\u003e\u003ccode\u003eb42dd72\u003c/code\u003e\u003c/a\u003e ci: bump pnpm/action-setup from 6.0.0 to 6.0.1 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20781\"\u003e#20781\u003c/a\u003e) (dependabot[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/2b252be80f362cca7be3326a6dbe958680fdfe9a\"\u003e\u003ccode\u003e2b252be\u003c/code\u003e\u003c/a\u003e test: add unit tests for IdGenerator (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20775\"\u003e#20775\u003c/a\u003e) (kuldeep kumar)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/78892043a36da4aa7640b59c99344b00c181048a\"\u003e\u003ccode\u003e7889204\u003c/code\u003e\u003c/a\u003e 10.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/5b69b4fce4dc407c8e960eba638b5a3409c4f1fd\"\u003e\u003ccode\u003e5b69b4f\u003c/code\u003e\u003c/a\u003e Build: changelog update for 10.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/d32235ec19ceea211fa86452afa383ca05f5c2f9\"\u003e\u003ccode\u003ed32235e\u003c/code\u003e\u003c/a\u003e ci: use pnpm in \u003ccode\u003eeslint-flat-config-utils\u003c/code\u003e type integration test (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20826\"\u003e#20826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/b6ae5cf07b9b51802367539cb24b245b61eaa37c\"\u003e\u003ccode\u003eb6ae5cf\u003c/code\u003e\u003c/a\u003e fix: handle unavailable require cache (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20812\"\u003e#20812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/3ffb14ea517de750ed1181579ef844af342e4096\"\u003e\u003ccode\u003e3ffb14e\u003c/code\u003e\u003c/a\u003e chore: clean up typos in comments and JSDoc (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20821\"\u003e#20821\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/6fb3685bcbe9a6f72fd7dfb9129686b6fb96b0bd\"\u003e\u003ccode\u003e6fb3685\u003c/code\u003e\u003c/a\u003e fix: rule suggestions cause continuation in class body (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20787\"\u003e#20787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/22eb58a21cbde2fbd53a1fae99453d408672de50\"\u003e\u003ccode\u003e22eb58a\u003c/code\u003e\u003c/a\u003e chore: add missing continue-on-error to ecosystem-tests.yml (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20818\"\u003e#20818\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/88bf0024cb36caebf2880516d9a1f81aa75dafe2\"\u003e\u003ccode\u003e88bf002\u003c/code\u003e\u003c/a\u003e ci: bump pnpm/action-setup from 6.0.1 to 6.0.3 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20815\"\u003e#20815\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/379571a975f2b24d88037b9de2e72ec61d004130\"\u003e\u003ccode\u003e379571a\u003c/code\u003e\u003c/a\u003e feat: add suggestions for no-unused-private-class-members (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20773\"\u003e#20773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/97c8c330beae9557ad24e19f94eebc8d08d1a722\"\u003e\u003ccode\u003e97c8c33\u003c/code\u003e\u003c/a\u003e chore: update ilshidur/action-discord action to v0.4.0 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20811\"\u003e#20811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/eslint/eslint/compare/v10.2.1...v10.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-android-arm-eabi` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-android-arm-eabi's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-android-arm64` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-android-arm64's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-darwin-arm64` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-darwin-arm64's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-darwin-x64` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-darwin-x64's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-freebsd-arm64` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-freebsd-arm64's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-freebsd-x64` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-freebsd-x64's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-linux-arm-gnueabihf` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-linux-arm-gnueabihf's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-linux-arm-musleabihf` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-linux-arm-musleabihf's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-linux-arm64-gnu` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-linux-arm64-gnu's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not...\n\n_Description has been truncated_","html_url":"https://github.com/poad/astro-solid-example/pull/328","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/poad%2Fastro-solid-example/issues/328","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/328/packages"},{"uuid":"4375124388","node_id":"PR_kwDOROVcZ87X7rvE","number":177,"state":"open","title":"Bump seroval from 1.3.2 to 1.5.3","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-04T08:38:22.000Z","updated_at":"2026-05-04T08:38:29.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"seroval","old_version":"1.3.2","new_version":"1.5.3","repository_url":"https://github.com/lxsmnsyc/seroval"}],"path":null,"ecosystem":"npm"},"body":"Bumps [seroval](https://github.com/lxsmnsyc/seroval) from 1.3.2 to 1.5.3.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lxsmnsyc/seroval/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=seroval\u0026package-manager=npm_and_yarn\u0026previous-version=1.3.2\u0026new-version=1.5.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Subhan-Haider/Codiner-Softwar/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Subhan-Haider/Codiner-Softwar/pull/177","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Subhan-Haider%2FCodiner-Softwar/issues/177","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/177/packages"},{"uuid":"4373645519","node_id":"PR_kwDORhEIoc7X24Wm","number":18,"state":"closed","title":"Bump the all group with 220 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-11T01:54:02.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-04T02:11:20.000Z","updated_at":"2026-05-11T01:54:04.000Z","time_to_close":603762,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all","update_count":220,"packages":[{"name":"@hey-api/openapi-ts","old_version":"0.94.0","new_version":"0.97.1","repository_url":"https://github.com/hey-api/openapi-ts"},{"name":"@libsql/client","old_version":"0.17.0","new_version":"0.17.3","repository_url":"https://github.com/tursodatabase/libsql-client-ts"},{"name":"@lingui/core","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"@lingui/react","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"@supabase/supabase-js","old_version":"2.99.1","new_version":"2.105.1","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@tailwindcss/vite","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tanstack/react-query","old_version":"5.95.2","new_version":"5.100.9","repository_url":"https://github.com/TanStack/query"},{"name":"@tanstack/react-router","old_version":"1.166.7","new_version":"1.169.1","repository_url":"https://github.com/TanStack/router"},{"name":"@tanstack/react-virtual","old_version":"3.13.23","new_version":"3.13.24","repository_url":"https://github.com/TanStack/virtual"},{"name":"@tanstack/router-plugin","old_version":"1.166.7","new_version":"1.167.32","repository_url":"https://github.com/TanStack/router"},{"name":"@trpc/client","old_version":"11.12.0","new_version":"11.17.0","repository_url":"https://github.com/trpc/trpc"},{"name":"@trpc/react-query","old_version":"11.12.0","new_version":"11.17.0","repository_url":"https://github.com/trpc/trpc"},{"name":"@trpc/server","old_version":"11.12.0","new_version":"11.17.0","repository_url":"https://github.com/trpc/trpc"},{"name":"framer-motion","old_version":"12.35.2","new_version":"12.38.0","repository_url":"https://github.com/motiondivision/motion"},{"name":"megajs","old_version":"1.3.9","new_version":"1.3.10","repository_url":"https://github.com/qgustavor/mega"},{"name":"pixi.js","old_version":"8.17.0","new_version":"8.18.1","repository_url":"https://github.com/pixijs/pixijs"},{"name":"react","old_version":"19.2.4","new_version":"19.2.5","repository_url":"https://github.com/facebook/react"},{"name":"react-dom","old_version":"19.2.4","new_version":"19.2.5","repository_url":"https://github.com/facebook/react"},{"name":"systeminformation","old_version":"5.31.4","new_version":"5.31.5","repository_url":"https://github.com/sebhildebrandt/systeminformation"},{"name":"tailwindcss","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"yauzl","old_version":"3.2.1","new_version":"3.3.0","repository_url":"https://github.com/thejoshwolfe/yauzl"},{"name":"zod","old_version":"4.3.6","new_version":"4.4.2","repository_url":"https://github.com/colinhacks/zod"},{"name":"@eslint/js","old_version":"9.39.4","new_version":"10.0.1","repository_url":"https://github.com/eslint/eslint"},{"name":"@lingui/cli","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"@types/node","old_version":"25.4.0","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/parser","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@vitejs/plugin-react","old_version":"5.1.4","new_version":"6.0.1","repository_url":"https://github.com/vitejs/vite-plugin-react"},{"name":"dotenv","old_version":"17.3.1","new_version":"17.4.2","repository_url":"https://github.com/motdotla/dotenv"},{"name":"electron","old_version":"41.1.1","new_version":"41.5.0","repository_url":"https://github.com/electron/electron"},{"name":"eslint","old_version":"9.39.4","new_version":"10.3.0","repository_url":"https://github.com/eslint/eslint"},{"name":"eslint-plugin-react-hooks","old_version":"7.0.1","new_version":"7.1.1","repository_url":"https://github.com/facebook/react"},{"name":"globals","old_version":"17.4.0","new_version":"17.6.0","repository_url":"https://github.com/sindresorhus/globals"},{"name":"javascript-obfuscator","old_version":"5.3.0","new_version":"5.4.2","repository_url":"https://github.com/javascript-obfuscator/javascript-obfuscator"},{"name":"jsdom","old_version":"28.1.0","new_version":"29.1.1","repository_url":"https://github.com/jsdom/jsdom"},{"name":"lint-staged","old_version":"16.3.3","new_version":"16.4.0","repository_url":"https://github.com/lint-staged/lint-staged"},{"name":"prettier","old_version":"3.8.1","new_version":"3.8.3","repository_url":"https://github.com/prettier/prettier"},{"name":"terser","old_version":"5.46.0","new_version":"5.46.2","repository_url":"https://github.com/terser/terser"},{"name":"typescript","old_version":"5.9.3","new_version":"6.0.3","repository_url":"https://github.com/microsoft/TypeScript"},{"name":"typescript-eslint","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"vite","old_version":"7.3.2","new_version":"8.0.10","repository_url":"https://github.com/vitejs/vite"},{"name":"vite-plugin-electron","old_version":"0.29.0","new_version":"0.29.1","repository_url":"https://github.com/electron-vite/vite-plugin-electron"},{"name":"vitest","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@asamuzakjp/css-color","old_version":"5.0.1","new_version":"5.1.11","repository_url":"https://github.com/asamuzaK/cssColor"},{"name":"@asamuzakjp/dom-selector","old_version":"6.8.1","new_version":"7.1.1","repository_url":"https://github.com/asamuzaK/domSelector"},{"name":"@babel/compat-data","old_version":"7.29.0","new_version":"7.29.3","repository_url":"https://github.com/babel/babel"},{"name":"@babel/helpers","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/parser","old_version":"7.29.0","new_version":"7.29.3","repository_url":"https://github.com/babel/babel"},{"name":"@babel/runtime","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@csstools/css-calc","old_version":"3.1.1","new_version":"3.2.0","repository_url":"https://github.com/csstools/postcss-plugins"},{"name":"@csstools/css-color-parser","old_version":"4.0.2","new_version":"4.1.0","repository_url":"https://github.com/csstools/postcss-plugins"},{"name":"@csstools/css-syntax-patches-for-csstree","old_version":"1.0.28","new_version":"1.1.3","repository_url":"https://github.com/csstools/postcss-plugins"},{"name":"@electron/rebuild","old_version":"4.0.3","new_version":"4.0.4","repository_url":"https://github.com/electron/rebuild"},{"name":"brace-expansion","old_version":"1.1.13","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"@eslint/config-array","old_version":"0.21.2","new_version":"0.23.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"@eslint/config-helpers","old_version":"0.4.2","new_version":"0.5.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"@eslint/core","old_version":"0.17.0","new_version":"1.2.1","repository_url":"https://github.com/eslint/rewrite"},{"name":"@eslint/object-schema","old_version":"2.1.7","new_version":"3.0.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"@eslint/plugin-kit","old_version":"0.4.1","new_version":"0.7.1","repository_url":"https://github.com/eslint/rewrite"},{"name":"@exodus/bytes","old_version":"1.14.1","new_version":"1.15.0","repository_url":"https://github.com/ExodusOSS/bytes"},{"name":"@hey-api/codegen-core","old_version":"0.7.1","new_version":"0.8.1","repository_url":"https://github.com/hey-api/openapi-ts"},{"name":"@hey-api/json-schema-ref-parser","old_version":"1.3.1","new_version":"1.4.2","repository_url":"https://github.com/hey-api/openapi-ts"},{"name":"@hey-api/shared","old_version":"0.2.2","new_version":"0.4.3","repository_url":"https://github.com/hey-api/openapi-ts"},{"name":"@hey-api/types","old_version":"0.1.3","new_version":"0.1.4","repository_url":"https://github.com/hey-api/openapi-ts"},{"name":"@humanfs/core","old_version":"0.19.1","new_version":"0.19.2","repository_url":"https://github.com/humanwhocodes/humanfs"},{"name":"@humanfs/node","old_version":"0.16.7","new_version":"0.16.8","repository_url":"https://github.com/humanwhocodes/humanfs"},{"name":"@javascript-obfuscator/escodegen","old_version":"2.3.1","new_version":"2.4.1","repository_url":"https://github.com/estools/escodegen"},{"name":"@libsql/core","old_version":"0.17.0","new_version":"0.17.3","repository_url":"https://github.com/tursodatabase/libsql-client-ts"},{"name":"@libsql/darwin-arm64","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/darwin-x64","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/hrana-client","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/libsql/hrana-client-ts"},{"name":"@libsql/linux-arm-gnueabihf","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/linux-arm-musleabihf","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/linux-arm64-gnu","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/linux-arm64-musl","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/linux-x64-gnu","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/linux-x64-musl","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/win32-x64-msvc","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@lingui/babel-plugin-extract-messages","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"@lingui/babel-plugin-lingui-macro","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"chokidar","old_version":"3.5.1","new_version":"3.6.0","repository_url":"https://github.com/paulmillr/chokidar"},{"name":"readdirp","old_version":"3.5.0","new_version":"3.6.0","repository_url":"https://github.com/paulmillr/readdirp"},{"name":"@lingui/conf","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"@lingui/format-po","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"@noble/hashes","old_version":"2.0.1","new_version":"2.2.0","repository_url":"https://github.com/paulmillr/noble-hashes"},{"name":"@rolldown/pluginutils","old_version":"1.0.0-rc.3","new_version":"1.0.0-rc.7","repository_url":"https://github.com/rolldown/rolldown"},{"name":"@supabase/auth-js","old_version":"2.99.1","new_version":"2.105.1","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@supabase/functions-js","old_version":"2.99.1","new_version":"2.105.1","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@supabase/postgrest-js","old_version":"2.99.1","new_version":"2.105.1","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@supabase/realtime-js","old_version":"2.99.1","new_version":"2.105.1","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@supabase/storage-js","old_version":"2.99.1","new_version":"2.105.1","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@tailwindcss/node","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-android-arm64","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-darwin-arm64","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-darwin-x64","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-freebsd-x64","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-linux-arm-gnueabihf","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-linux-arm64-gnu","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-linux-arm64-musl","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-linux-x64-gnu","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-linux-x64-musl","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-wasm32-wasi","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-win32-arm64-msvc","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-win32-x64-msvc","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tanstack/history","old_version":"1.161.4","new_version":"1.161.6","repository_url":"https://github.com/TanStack/router"},{"name":"@tanstack/query-core","old_version":"5.95.2","new_version":"5.100.9","repository_url":"https://github.com/TanStack/query"},{"name":"@tanstack/react-store","old_version":"0.9.1","new_version":"0.9.3","repository_url":"https://github.com/TanStack/store"},{"name":"@tanstack/router-core","old_version":"1.166.7","new_version":"1.169.1","repository_url":"https://github.com/TanStack/router"},{"name":"@tanstack/router-generator","old_version":"1.166.7","new_version":"1.166.39","repository_url":"https://github.com/TanStack/router"},{"name":"@tanstack/router-utils","old_version":"1.161.4","new_version":"1.161.7","repository_url":"https://github.com/TanStack/router"},{"name":"@tanstack/store","old_version":"0.9.1","new_version":"0.9.3","repository_url":"https://github.com/TanStack/store"},{"name":"@tanstack/virtual-core","old_version":"3.13.23","new_version":"3.14.0","repository_url":"https://github.com/TanStack/virtual"},{"name":"@tanstack/virtual-file-routes","old_version":"1.161.4","new_version":"1.161.7","repository_url":"https://github.com/TanStack/router"},{"name":"@types/debug","old_version":"4.1.12","new_version":"4.1.13","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/project-service","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/scope-manager","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/tsconfig-utils","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/type-utils","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/types","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/typescript-estree","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/utils","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/visitor-keys","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@vercel/blob","old_version":"2.3.1","new_version":"2.3.3","repository_url":"https://github.com/vercel/storage"},{"name":"undici","old_version":"6.24.1","new_version":"6.25.0","repository_url":"https://github.com/nodejs/undici"},{"name":"@vitest/expect","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@vitest/mocker","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@vitest/pretty-format","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@vitest/runner","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@vitest/snapshot","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@vitest/spy","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@vitest/utils","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@xmldom/xmldom","old_version":"0.8.12","new_version":"0.8.13","repository_url":"https://github.com/xmldom/xmldom"},{"name":"abbrev","old_version":"3.0.1","new_version":"4.0.0","repository_url":"https://github.com/npm/abbrev-js"},{"name":"ajv","old_version":"6.14.0","new_version":"6.15.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"axe-core","old_version":"4.11.1","new_version":"4.11.4","repository_url":"https://github.com/dequelabs/axe-core"},{"name":"b4a","old_version":"1.8.0","new_version":"1.8.1","repository_url":"https://github.com/holepunchto/b4a"},{"name":"bare-fs","old_version":"4.5.6","new_version":"4.7.1","repository_url":"https://github.com/holepunchto/bare-fs"},{"name":"bare-os","old_version":"3.8.6","new_version":"3.9.1","repository_url":"https://github.com/holepunchto/bare-os"},{"name":"bare-stream","old_version":"2.11.0","new_version":"2.13.1","repository_url":"https://github.com/holepunchto/bare-stream"},{"name":"bare-url","old_version":"2.4.0","new_version":"2.4.2","repository_url":"https://github.com/holepunchto/bare-url"},{"name":"baseline-browser-mapping","old_version":"2.10.0","new_version":"2.10.27","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"call-bind","old_version":"1.0.8","new_version":"1.0.9","repository_url":"https://github.com/ljharb/call-bind"},{"name":"caniuse-lite","old_version":"1.0.30001775","new_version":"1.0.30001791","repository_url":"https://github.com/browserslist/caniuse-lite"},{"name":"cli-cursor","old_version":"3.1.0","new_version":"5.0.0","repository_url":"https://github.com/sindresorhus/cli-cursor"},{"name":"cli-spinners","old_version":"2.9.2","new_version":"3.4.0","repository_url":"https://github.com/sindresorhus/cli-spinners"},{"name":"conf","old_version":"15.0.2","new_version":"15.1.0","repository_url":"https://github.com/sindresorhus/conf"},{"name":"cookie-es","old_version":"2.0.0","new_version":"3.1.1","repository_url":"https://github.com/unjs/cookie-es"},{"name":"whatwg-url","old_version":"5.0.0","new_version":"16.0.1","repository_url":"https://github.com/jsdom/whatwg-url"},{"name":"tr46","old_version":"0.0.3","new_version":"6.0.0","repository_url":"https://github.com/jsdom/tr46"},{"name":"webidl-conversions","old_version":"3.0.1","new_version":"8.0.1","repository_url":"https://github.com/jsdom/webidl-conversions"},{"name":"css-tree","old_version":"3.1.0","new_version":"3.2.1","repository_url":"https://github.com/csstree/csstree"},{"name":"diff","old_version":"8.0.3","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"electron-to-chromium","old_version":"1.5.302","new_version":"1.5.349","repository_url":"https://github.com/Kilian/electron-to-chromium"},{"name":"enhanced-resolve","old_version":"5.20.0","new_version":"5.21.0","repository_url":"https://github.com/webpack/enhanced-resolve"},{"name":"entities","old_version":"6.0.1","new_version":"8.0.0","repository_url":"https://github.com/fb55/entities"},{"name":"es-abstract","old_version":"1.24.1","new_version":"1.24.2","repository_url":"https://github.com/ljharb/es-abstract"},{"name":"es-iterator-helpers","old_version":"1.2.2","new_version":"1.3.2","repository_url":"https://github.com/es-shims/iterator-helpers"},{"name":"es-module-lexer","old_version":"1.7.0","new_version":"2.1.0","repository_url":"https://github.com/guybedford/es-module-lexer"},{"name":"espree","old_version":"10.4.0","new_version":"11.2.0","repository_url":"https://github.com/eslint/js"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.14.0","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"giget","old_version":"2.0.0","new_version":"3.2.0","repository_url":"https://github.com/unjs/giget"},{"name":"hasown","old_version":"2.0.2","new_version":"2.0.3","repository_url":"https://github.com/inspect-js/hasOwn"},{"name":"is-interactive","old_version":"1.0.0","new_version":"2.0.0","repository_url":"https://github.com/sindresorhus/is-interactive"},{"name":"is-unicode-supported","old_version":"0.1.0","new_version":"2.1.0","repository_url":"https://github.com/sindresorhus/is-unicode-supported"},{"name":"isbot","old_version":"5.1.35","new_version":"5.1.39","repository_url":"https://github.com/omrilotan/isbot"},{"name":"libphonenumber-js","old_version":"1.12.38","new_version":"1.12.42"},{"name":"libsql","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"lightningcss","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-android-arm64","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-darwin-arm64","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-darwin-x64","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-freebsd-x64","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-linux-arm-gnueabihf","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-linux-arm64-gnu","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-linux-arm64-musl","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-linux-x64-gnu","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-linux-x64-musl","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-win32-arm64-msvc","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-win32-x64-msvc","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"log-symbols","old_version":"4.1.0","new_version":"7.0.1","repository_url":"https://github.com/sindresorhus/log-symbols"},{"name":"mdn-data","old_version":"2.12.2","new_version":"2.27.1","repository_url":"https://github.com/mdn/data"},{"name":"minipass","old_version":"3.3.6","new_version":"7.1.3","repository_url":"https://github.com/isaacs/minipass"},{"name":"motion-dom","old_version":"12.35.2","new_version":"12.38.0","repository_url":"https://github.com/motiondivision/motion"},{"name":"motion-utils","old_version":"12.29.2","new_version":"12.36.0","repository_url":"https://github.com/motiondivision/motion"},{"name":"nanoid","old_version":"3.3.11","new_version":"3.3.12","repository_url":"https://github.com/ai/nanoid"},{"name":"node-abi","old_version":"4.26.0","new_version":"4.29.0","repository_url":"https://github.com/electron/node-abi"},{"name":"node-gyp","old_version":"11.5.0","new_version":"12.3.0","repository_url":"https://github.com/nodejs/node-gyp"},{"name":"node-releases","old_version":"2.0.27","new_version":"2.0.38","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"nopt","old_version":"8.1.0","new_version":"9.0.0","repository_url":"https://github.com/npm/nopt"},{"name":"onetime","old_version":"5.1.2","new_version":"7.0.0","repository_url":"https://github.com/sindresorhus/onetime"},{"name":"ora","old_version":"5.4.1","new_version":"9.4.0","repository_url":"https://github.com/sindresorhus/ora"},{"name":"restore-cursor","old_version":"3.1.0","new_version":"5.1.0","repository_url":"https://github.com/sindresorhus/restore-cursor"},{"name":"parse5","old_version":"8.0.0","new_version":"8.0.1","repository_url":"https://github.com/inikulin/parse5"},{"name":"pkg-types","old_version":"2.3.0","new_version":"2.3.1","repository_url":"https://github.com/unjs/pkg-types"},{"name":"postcss","old_version":"8.5.6","new_version":"8.5.13","repository_url":"https://github.com/postcss/postcss"},{"name":"proc-log","old_version":"5.0.0","new_version":"6.1.0","repository_url":"https://github.com/npm/proc-log"},{"name":"rc9","old_version":"2.1.2","new_version":"3.0.1","repository_url":"https://github.com/unjs/rc9"},{"name":"safe-array-concat","old_version":"1.1.3","new_version":"1.1.4","repository_url":"https://github.com/ljharb/safe-array-concat"},{"name":"sanitize-filename","old_version":"1.6.3","new_version":"1.6.4","repository_url":"https://github.com/parshap/node-sanitize-filename"},{"name":"sax","old_version":"1.4.4","new_version":"1.6.0","repository_url":"https://github.com/isaacs/sax-js"},{"name":"seroval","old_version":"1.5.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"seroval-plugins","old_version":"1.5.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"std-env","old_version":"3.10.0","new_version":"4.1.0","repository_url":"https://github.com/unjs/std-env"},{"name":"tapable","old_version":"2.3.0","new_version":"2.3.3","repository_url":"https://github.com/webpack/tapable"},{"name":"tar-stream","old_version":"3.1.8","new_version":"3.2.0","repository_url":"https://github.com/mafintosh/tar-stream"},{"name":"tinyexec","old_version":"1.0.2","new_version":"1.1.2","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"tinyrainbow","old_version":"3.0.3","new_version":"3.1.0","repository_url":"https://github.com/tinylibs/tinyrainbow"},{"name":"tldts","old_version":"7.0.23","new_version":"7.0.30","repository_url":"https://github.com/remusao/tldts"},{"name":"tldts-core","old_version":"7.0.23","new_version":"7.0.30","repository_url":"https://github.com/remusao/tldts"},{"name":"tough-cookie","old_version":"6.0.0","new_version":"6.0.1","repository_url":"https://github.com/salesforce/tough-cookie"},{"name":"ts-api-utils","old_version":"2.4.0","new_version":"2.5.0","repository_url":"https://github.com/JoshuaKGoldberg/ts-api-utils"},{"name":"unplugin","old_version":"2.3.11","new_version":"3.0.0","repository_url":"https://github.com/unjs/unplugin"},{"name":"validator","old_version":"13.15.26","new_version":"13.15.35","repository_url":"https://github.com/validatorjs/validator.js"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.3","new_version":"2.8.4","repository_url":"https://github.com/eemeli/yaml"}],"path":null,"ecosystem":"npm"},"body":"Bumps the all group with 220 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@hey-api/openapi-ts](https://github.com/hey-api/openapi-ts) | `0.94.0` | `0.97.1` |\n| [@libsql/client](https://github.com/tursodatabase/libsql-client-ts/tree/HEAD/packages/libsql-client) | `0.17.0` | `0.17.3` |\n| [@lingui/core](https://github.com/lingui/js-lingui/tree/HEAD/packages/core) | `5.9.5` | `6.0.1` |\n| [@lingui/react](https://github.com/lingui/js-lingui/tree/HEAD/packages/react) | `5.9.5` | `6.0.1` |\n| [@supabase/supabase-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js) | `2.99.1` | `2.105.1` |\n| [@tailwindcss/vite](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite) | `4.2.1` | `4.2.4` |\n| [@tanstack/react-query](https://github.com/TanStack/query/tree/HEAD/packages/react-query) | `5.95.2` | `5.100.9` |\n| [@tanstack/react-router](https://github.com/TanStack/router/tree/HEAD/packages/react-router) | `1.166.7` | `1.169.1` |\n| [@tanstack/react-virtual](https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual) | `3.13.23` | `3.13.24` |\n| [@tanstack/router-plugin](https://github.com/TanStack/router/tree/HEAD/packages/router-plugin) | `1.166.7` | `1.167.32` |\n| [@trpc/client](https://github.com/trpc/trpc/tree/HEAD/packages/client) | `11.12.0` | `11.17.0` |\n| [@trpc/react-query](https://github.com/trpc/trpc/tree/HEAD/packages/react) | `11.12.0` | `11.17.0` |\n| [@trpc/server](https://github.com/trpc/trpc/tree/HEAD/packages/server) | `11.12.0` | `11.17.0` |\n| [framer-motion](https://github.com/motiondivision/motion) | `12.35.2` | `12.38.0` |\n| [megajs](https://github.com/qgustavor/mega) | `1.3.9` | `1.3.10` |\n| [pixi.js](https://github.com/pixijs/pixijs) | `8.17.0` | `8.18.1` |\n| [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.4` | `19.2.5` |\n| [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.4` | `19.2.5` |\n| [systeminformation](https://github.com/sebhildebrandt/systeminformation) | `5.31.4` | `5.31.5` |\n| [tailwindcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss) | `4.2.1` | `4.2.4` |\n| [yauzl](https://github.com/thejoshwolfe/yauzl) | `3.2.1` | `3.3.0` |\n| [zod](https://github.com/colinhacks/zod) | `4.3.6` | `4.4.2` |\n| [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js) | `9.39.4` | `10.0.1` |\n| [@lingui/cli](https://github.com/lingui/js-lingui/tree/HEAD/packages/cli) | `5.9.5` | `6.0.1` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.4.0` | `25.6.0` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.57.0` | `8.59.1` |\n| [@vitejs/plugin-react](https://github.com/vitejs/vite-plugin-react/tree/HEAD/packages/plugin-react) | `5.1.4` | `6.0.1` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.3.1` | `17.4.2` |\n| [electron](https://github.com/electron/electron) | `41.1.1` | `41.5.0` |\n| [eslint](https://github.com/eslint/eslint) | `9.39.4` | `10.3.0` |\n| [eslint-plugin-react-hooks](https://github.com/facebook/react/tree/HEAD/packages/eslint-plugin-react-hooks) | `7.0.1` | `7.1.1` |\n| [globals](https://github.com/sindresorhus/globals) | `17.4.0` | `17.6.0` |\n| [javascript-obfuscator](https://github.com/javascript-obfuscator/javascript-obfuscator) | `5.3.0` | `5.4.2` |\n| [jsdom](https://github.com/jsdom/jsdom) | `28.1.0` | `29.1.1` |\n| [lint-staged](https://github.com/lint-staged/lint-staged) | `16.3.3` | `16.4.0` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.3` |\n| [terser](https://github.com/terser/terser) | `5.46.0` | `5.46.2` |\n| [typescript](https://github.com/microsoft/TypeScript) | `5.9.3` | `6.0.3` |\n| [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) | `8.57.0` | `8.59.1` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.2` | `8.0.10` |\n| [vite-plugin-electron](https://github.com/electron-vite/vite-plugin-electron) | `0.29.0` | `0.29.1` |\n| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `4.0.18` | `4.1.5` |\n| [@asamuzakjp/css-color](https://github.com/asamuzaK/cssColor) | `5.0.1` | `5.1.11` |\n| [@asamuzakjp/dom-selector](https://github.com/asamuzaK/domSelector) | `6.8.1` | `7.1.1` |\n| [@babel/compat-data](https://github.com/babel/babel/tree/HEAD/packages/babel-compat-data) | `7.29.0` | `7.29.3` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.28.6` | `7.29.2` |\n| [@babel/parser](https://github.com/babel/babel/tree/HEAD/packages/babel-parser) | `7.29.0` | `7.29.3` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.28.6` | `7.29.2` |\n| [@csstools/css-calc](https://github.com/csstools/postcss-plugins/tree/HEAD/packages/css-calc) | `3.1.1` | `3.2.0` |\n| [@csstools/css-color-parser](https://github.com/csstools/postcss-plugins/tree/HEAD/packages/css-color-parser) | `4.0.2` | `4.1.0` |\n| [@csstools/css-syntax-patches-for-csstree](https://github.com/csstools/postcss-plugins/tree/HEAD/packages/css-syntax-patches-for-csstree) | `1.0.28` | `1.1.3` |\n| [@electron/rebuild](https://github.com/electron/rebuild) | `4.0.3` | `4.0.4` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.13` | `1.1.14` |\n| [@eslint/config-array](https://github.com/eslint/rewrite/tree/HEAD/packages/config-array) | `0.21.2` | `0.23.5` |\n| [@eslint/config-helpers](https://github.com/eslint/rewrite/tree/HEAD/packages/config-helpers) | `0.4.2` | `0.5.5` |\n| [@eslint/core](https://github.com/eslint/rewrite/tree/HEAD/packages/core) | `0.17.0` | `1.2.1` |\n| [@eslint/object-schema](https://github.com/eslint/rewrite/tree/HEAD/packages/object-schema) | `2.1.7` | `3.0.5` |\n| [@eslint/plugin-kit](https://github.com/eslint/rewrite/tree/HEAD/packages/plugin-kit) | `0.4.1` | `0.7.1` |\n| [@exodus/bytes](https://github.com/ExodusOSS/bytes) | `1.14.1` | `1.15.0` |\n| [@hey-api/codegen-core](https://github.com/hey-api/openapi-ts) | `0.7.1` | `0.8.1` |\n| [@hey-api/json-schema-ref-parser](https://github.com/hey-api/openapi-ts) | `1.3.1` | `1.4.2` |\n| [@hey-api/shared](https://github.com/hey-api/openapi-ts) | `0.2.2` | `0.4.3` |\n| [@hey-api/types](https://github.com/hey-api/openapi-ts) | `0.1.3` | `0.1.4` |\n| [@humanfs/core](https://github.com/humanwhocodes/humanfs) | `0.19.1` | `0.19.2` |\n| [@humanfs/node](https://github.com/humanwhocodes/humanfs/tree/HEAD/packages/node) | `0.16.7` | `0.16.8` |\n| [@javascript-obfuscator/escodegen](https://github.com/estools/escodegen) | `2.3.1` | `2.4.1` |\n| [@libsql/core](https://github.com/tursodatabase/libsql-client-ts/tree/HEAD/packages/libsql-core) | `0.17.0` | `0.17.3` |\n| [@libsql/darwin-arm64](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/darwin-x64](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/hrana-client](https://github.com/libsql/hrana-client-ts) | `0.9.0` | `0.10.0` |\n| [@libsql/linux-arm-gnueabihf](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/linux-arm-musleabihf](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/linux-arm64-gnu](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/linux-arm64-musl](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/linux-x64-gnu](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/linux-x64-musl](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/win32-x64-msvc](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@lingui/babel-plugin-extract-messages](https://github.com/lingui/js-lingui/tree/HEAD/packages/babel-plugin-extract-messages) | `5.9.5` | `6.0.1` |\n| [@lingui/babel-plugin-lingui-macro](https://github.com/lingui/js-lingui/tree/HEAD/packages/babel-plugin-lingui-macro) | `5.9.5` | `6.0.1` |\n| [chokidar](https://github.com/paulmillr/chokidar) | `3.5.1` | `3.6.0` |\n| [readdirp](https://github.com/paulmillr/readdirp) | `3.5.0` | `3.6.0` |\n| [@lingui/conf](https://github.com/lingui/js-lingui/tree/HEAD/packages/conf) | `5.9.5` | `6.0.1` |\n| [@lingui/format-po](https://github.com/lingui/js-lingui/tree/HEAD/packages/format-po) | `5.9.5` | `6.0.1` |\n| [@noble/hashes](https://github.com/paulmillr/noble-hashes) | `2.0.1` | `2.2.0` |\n| [@rolldown/pluginutils](https://github.com/rolldown/rolldown/tree/HEAD/packages/pluginutils) | `1.0.0-rc.3` | `1.0.0-rc.7` |\n| [@supabase/auth-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/auth-js) | `2.99.1` | `2.105.1` |\n| [@supabase/functions-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/functions-js) | `2.99.1` | `2.105.1` |\n| [@supabase/postgrest-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/postgrest-js) | `2.99.1` | `2.105.1` |\n| [@supabase/realtime-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/realtime-js) | `2.99.1` | `2.105.1` |\n| [@supabase/storage-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/storage-js) | `2.99.1` | `2.105.1` |\n| [@tailwindcss/node](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-node) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-android-arm64](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/android-arm64) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-darwin-arm64](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/darwin-arm64) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-darwin-x64](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/darwin-x64) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-freebsd-x64](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/freebsd-x64) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-linux-arm-gnueabihf](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/linux-arm-gnueabihf) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-linux-arm64-gnu](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/linux-arm64-gnu) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-linux-arm64-musl](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/linux-arm64-musl) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-linux-x64-gnu](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/linux-x64-gnu) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-linux-x64-musl](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/linux-x64-musl) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-wasm32-wasi](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-win32-arm64-msvc](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/win32-arm64-msvc) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-win32-x64-msvc](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/win32-x64-msvc) | `4.2.1` | `4.2.4` |\n| [@tanstack/history](https://github.com/TanStack/router/tree/HEAD/packages/history) | `1.161.4` | `1.161.6` |\n| [@tanstack/query-core](https://github.com/TanStack/query/tree/HEAD/packages/query-core) | `5.95.2` | `5.100.9` |\n| [@tanstack/react-store](https://github.com/TanStack/store/tree/HEAD/packages/react-store) | `0.9.1` | `0.9.3` |\n| [@tanstack/router-core](https://github.com/TanStack/router/tree/HEAD/packages/router-core) | `1.166.7` | `1.169.1` |\n| [@tanstack/router-generator](https://github.com/TanStack/router/tree/HEAD/packages/router-generator) | `1.166.7` | `1.166.39` |\n| [@tanstack/router-utils](https://github.com/TanStack/router/tree/HEAD/packages/router-utils) | `1.161.4` | `1.161.7` |\n| [@tanstack/store](https://github.com/TanStack/store/tree/HEAD/packages/store) | `0.9.1` | `0.9.3` |\n| [@tanstack/virtual-core](https://github.com/TanStack/virtual/tree/HEAD/packages/virtual-core) | `3.13.23` | `3.14.0` |\n| [@tanstack/virtual-file-routes](https://github.com/TanStack/router/tree/HEAD/packages/virtual-file-routes) | `1.161.4` | `1.161.7` |\n| [@types/debug](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/debug) | `4.1.12` | `4.1.13` |\n| [@typescript-eslint/project-service](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/project-service) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/scope-manager](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/scope-manager) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/tsconfig-utils](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/tsconfig-utils) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/type-utils](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/type-utils) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/types](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/types) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/typescript-estree](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-estree) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/utils](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/utils) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/visitor-keys](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/visitor-keys) | `8.57.0` | `8.59.1` |\n| [@vercel/blob](https://github.com/vercel/storage/tree/HEAD/packages/blob) | `2.3.1` | `2.3.3` |\n| [undici](https://github.com/nodejs/undici) | `6.24.1` | `6.25.0` |\n| [@vitest/expect](https://github.com/vitest-dev/vitest/tree/HEAD/packages/expect) | `4.0.18` | `4.1.5` |\n| [@vitest/mocker](https://github.com/vitest-dev/vitest/tree/HEAD/packages/mocker) | `4.0.18` | `4.1.5` |\n| [@vitest/pretty-format](https://github.com/vitest-dev/vitest/tree/HEAD/packages/pretty-format) | `4.0.18` | `4.1.5` |\n| [@vitest/runner](https://github.com/vitest-dev/vitest/tree/HEAD/packages/runner) | `4.0.18` | `4.1.5` |\n| [@vitest/snapshot](https://github.com/vitest-dev/vitest/tree/HEAD/packages/snapshot) | `4.0.18` | `4.1.5` |\n| [@vitest/spy](https://github.com/vitest-dev/vitest/tree/HEAD/packages/spy) | `4.0.18` | `4.1.5` |\n| [@vitest/utils](https://github.com/vitest-dev/vitest/tree/HEAD/packages/utils) | `4.0.18` | `4.1.5` |\n| [@xmldom/xmldom](https://github.com/xmldom/xmldom) | `0.8.12` | `0.8.13` |\n| [abbrev](https://github.com/npm/abbrev-js) | `3.0.1` | `4.0.0` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.14.0` | `6.15.0` |\n| [axe-core](https://github.com/dequelabs/axe-core) | `4.11.1` | `4.11.4` |\n| [b4a](https://github.com/holepunchto/b4a) | `1.8.0` | `1.8.1` |\n| [bare-fs](https://github.com/holepunchto/bare-fs) | `4.5.6` | `4.7.1` |\n| [bare-os](https://github.com/holepunchto/bare-os) | `3.8.6` | `3.9.1` |\n| [bare-stream](https://github.com/holepunchto/bare-stream) | `2.11.0` | `2.13.1` |\n| [bare-url](https://github.com/holepunchto/bare-url) | `2.4.0` | `2.4.2` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.10.0` | `2.10.27` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [call-bind](https://github.com/ljharb/call-bind) | `1.0.8` | `1.0.9` |\n| [caniuse-lite](https://github.com/browserslist/caniuse-lite) | `1.0.30001775` | `1.0.30001791` |\n| [cli-cursor](https://github.com/sindresorhus/cli-cursor) | `3.1.0` | `5.0.0` |\n| [cli-spinners](https://github.com/sindresorhus/cli-spinners) | `2.9.2` | `3.4.0` |\n| [conf](https://github.com/sindresorhus/conf) | `15.0.2` | `15.1.0` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `2.0.0` | `3.1.1` |\n| [whatwg-url](https://github.com/jsdom/whatwg-url) | `5.0.0` | `16.0.1` |\n| [tr46](https://github.com/jsdom/tr46) | `0.0.3` | `6.0.0` |\n| [webidl-conversions](https://github.com/jsdom/webidl-conversions) | `3.0.1` | `8.0.1` |\n| [css-tree](https://github.com/csstree/csstree) | `3.1.0` | `3.2.1` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.3` | `8.0.4` |\n| [electron-to-chromium](https://github.com/Kilian/electron-to-chromium) | `1.5.302` | `1.5.349` |\n| [enhanced-resolve](https://github.com/webpack/enhanced-resolve) | `5.20.0` | `5.21.0` |\n| [entities](https://github.com/fb55/entities) | `6.0.1` | `8.0.0` |\n| [es-abstract](https://github.com/ljharb/es-abstract) | `1.24.1` | `1.24.2` |\n| [es-iterator-helpers](https://github.com/es-shims/iterator-helpers) | `1.2.2` | `1.3.2` |\n| [es-module-lexer](https://github.com/guybedford/es-module-lexer) | `1.7.0` | `2.1.0` |\n| [espree](https://github.com/eslint/js/tree/HEAD/packages/espree) | `10.4.0` | `11.2.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.14.0` |\n| [giget](https://github.com/unjs/giget) | `2.0.0` | `3.2.0` |\n| [hasown](https://github.com/inspect-js/hasOwn) | `2.0.2` | `2.0.3` |\n| [is-interactive](https://github.com/sindresorhus/is-interactive) | `1.0.0` | `2.0.0` |\n| [is-unicode-supported](https://github.com/sindresorhus/is-unicode-supported) | `0.1.0` | `2.1.0` |\n| [isbot](https://github.com/omrilotan/isbot) | `5.1.35` | `5.1.39` |\n| [libphonenumber-js](https://gitlab.com/catamphetamine/libphonenumber-js) | `1.12.38` | `1.12.42` |\n| [libsql](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [lightningcss](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-android-arm64](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-darwin-arm64](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-darwin-x64](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-freebsd-x64](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-linux-arm-gnueabihf](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-linux-arm64-gnu](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-linux-arm64-musl](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-linux-x64-gnu](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-linux-x64-musl](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-win32-arm64-msvc](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-win32-x64-msvc](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [log-symbols](https://github.com/sindresorhus/log-symbols) | `4.1.0` | `7.0.1` |\n| [mdn-data](https://github.com/mdn/data) | `2.12.2` | `2.27.1` |\n| [minipass](https://github.com/isaacs/minipass) | `3.3.6` | `7.1.3` |\n| [motion-dom](https://github.com/motiondivision/motion) | `12.35.2` | `12.38.0` |\n| [motion-utils](https://github.com/motiondivision/motion) | `12.29.2` | `12.36.0` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.11` | `3.3.12` |\n| [node-abi](https://github.com/electron/node-abi) | `4.26.0` | `4.29.0` |\n| [node-gyp](https://github.com/nodejs/node-gyp) | `11.5.0` | `12.3.0` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.27` | `2.0.38` |\n| [nopt](https://github.com/npm/nopt) | `8.1.0` | `9.0.0` |\n| [onetime](https://github.com/sindresorhus/onetime) | `5.1.2` | `7.0.0` |\n| [ora](https://github.com/sindresorhus/ora) | `5.4.1` | `9.4.0` |\n| [restore-cursor](https://github.com/sindresorhus/restore-cursor) | `3.1.0` | `5.1.0` |\n| [parse5](https://github.com/inikulin/parse5) | `8.0.0` | `8.0.1` |\n| [pkg-types](https://github.com/unjs/pkg-types) | `2.3.0` | `2.3.1` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.6` | `8.5.13` |\n| [proc-log](https://github.com/npm/proc-log) | `5.0.0` | `6.1.0` |\n| [rc9](https://github.com/unjs/rc9) | `2.1.2` | `3.0.1` |\n| [safe-array-concat](https://github.com/ljharb/safe-array-concat) | `1.1.3` | `1.1.4` |\n| [sanitize-filename](https://github.com/parshap/node-sanitize-filename) | `1.6.3` | `1.6.4` |\n| [sax](https://github.com/isaacs/sax-js) | `1.4.4` | `1.6.0` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.0` | `1.5.2` |\n| [seroval-plugins](https://github.com/lxsmnsyc/seroval) | `1.5.0` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [std-env](https://github.com/unjs/std-env) | `3.10.0` | `4.1.0` |\n| [tapable](https://github.com/webpack/tapable) | `2.3.0` | `2.3.3` |\n| [tar-stream](https://github.com/mafintosh/tar-stream) | `3.1.8` | `3.2.0` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.2` | `1.1.2` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [tinyrainbow](https://github.com/tinylibs/tinyrainbow) | `3.0.3` | `3.1.0` |\n| [tldts](https://github.com/remusao/tldts) | `7.0.23` | `7.0.30` |\n| [tldts-core](https://github.com/remusao/tldts) | `7.0.23` | `7.0.30` |\n| [tough-cookie](https://github.com/salesforce/tough-cookie) | `6.0.0` | `6.0.1` |\n| [ts-api-utils](https://github.com/JoshuaKGoldberg/ts-api-utils) | `2.4.0` | `2.5.0` |\n| [unplugin](https://github.com/unjs/unplugin) | `2.3.11` | `3.0.0` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.15.26` | `13.15.35` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.3` | `2.8.4` |\n\nUpdates `@hey-api/openapi-ts` from 0.94.0 to 0.97.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hey-api/openapi-ts/releases\"\u003e@​hey-api/openapi-ts's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​hey-api/openapi-ts\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.95.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eplugin(valibot)\u003c/strong\u003e: remove request data schema (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3671\"\u003e#3671\u003c/a\u003e) (\u003ca href=\"https://github.com/hey-api/openapi-ts/commit/96f60adb6af144e39133884e97e74a6693b6c059\"\u003e\u003ccode\u003e96f60ad\u003c/code\u003e\u003c/a\u003e) by \u003ca href=\"https://github.com/mrlubos\"\u003e\u003ccode\u003e@​mrlubos\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eValidator request schemas\u003c/h3\u003e\n\u003cp\u003eValibot plugin no longer exports composite request \u003ccode\u003eData\u003c/code\u003e schemas. Instead, each layer is exported as a separate schema. If you're using validators with SDKs, you can preserve the composite schema with \u003ccode\u003eshouldExtract\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eexport default {\n  input: \u0026quot;hey-api/backend\u0026quot;, // sign up at app.heyapi.dev\n  output: \u0026quot;src/client\u0026quot;,\n  plugins: [\n    // ...other plugins\n    {\n      name: \u0026quot;sdk\u0026quot;,\n      validator: \u0026quot;valibot\u0026quot;,\n    },\n    {\n      name: \u0026quot;valibot\u0026quot;,\n      requests: {\n        shouldExtract: true,\n      },\n    },\n  ],\n};\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003einternal\u003c/strong\u003e: remove \u003ccode\u003eplugin.getSymbol()\u003c/code\u003e function (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3671\"\u003e#3671\u003c/a\u003e) (\u003ca href=\"https://github.com/hey-api/openapi-ts/commit/96f60adb6af144e39133884e97e74a6693b6c059\"\u003e\u003ccode\u003e96f60ad\u003c/code\u003e\u003c/a\u003e) by \u003ca href=\"https://github.com/mrlubos\"\u003e\u003ccode\u003e@​mrlubos\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved \u003ccode\u003eplugin.getSymbol()\u003c/code\u003e function\u003c/h3\u003e\n\u003cp\u003eThis function has been removed. You can use \u003ccode\u003eplugin.querySymbol()\u003c/code\u003e instead. It accepts the same arguments and returns the same result.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eplugin(zod)\u003c/strong\u003e: remove request data schema (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3671\"\u003e#3671\u003c/a\u003e) (\u003ca href=\"https://github.com/hey-api/openapi-ts/commit/96f60adb6af144e39133884e97e74a6693b6c059\"\u003e\u003ccode\u003e96f60ad\u003c/code\u003e\u003c/a\u003e) by \u003ca href=\"https://github.com/mrlubos\"\u003e\u003ccode\u003e@​mrlubos\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eValidator request schemas\u003c/h3\u003e\n\u003cp\u003eZod plugin no longer exports composite request \u003ccode\u003eData\u003c/code\u003e schemas. Instead, each layer is exported as a separate schema. If you're using validators with SDKs, you can preserve the composite schema with \u003ccode\u003eshouldExtract\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eexport default {\n  input: \u0026quot;hey-api/backend\u0026quot;, // sign up at app.heyapi.dev\n  output: \u0026quot;src/client\u0026quot;,\n  plugins: [\n    // ...other plugins\n    {\n      name: \u0026quot;sdk\u0026quot;,\n      validator: \u0026quot;zod\u0026quot;,\n\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt; \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hey-api/openapi-ts/blob/main/CHANGELOG.md\"\u003e@​hey-api/openapi-ts's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch1\u003e2026-04-28\u003c/h1\u003e\n\u003ch2\u003e\u003ccode\u003e@​hey-api/openapi-ts\u003c/code\u003e 0.97.0\u003c/h2\u003e\n\u003ch3\u003e⚠️ Breaking\u003c/h3\u003e\n\u003cp\u003eThis release has 15 breaking changes. Please review the release notes carefully before upgrading.\u003c/p\u003e\n\u003ch3\u003eUpdates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecli: print file count and generator speed (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3828\"\u003e#3828\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e client: resolve \u003ccode\u003eruntimeConfigPath\u003c/code\u003e relative to the output folder (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3770\"\u003e#3770\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged \u003ccode\u003eruntimeConfigPath\u003c/code\u003e behavior\u003c/h3\u003e\n\u003cp\u003eThis was a known, long-standing issue confusing first-time users. Before, defining client \u003ccode\u003eruntimeConfigPath\u003c/code\u003e value would paste it verbatim to the generated output. This release changes the behavior to resolve relative to the current working directory the same way output path works.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003econfig: remove \u003ccode\u003e--apply\u003c/code\u003e flag from Biome post-processor commands (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3812\"\u003e#3812\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePlugins\u003c/h3\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-angular\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e \u003ccode\u003erequest\u003c/code\u003e and \u003ccode\u003eresponse\u003c/code\u003e objects might be undefined (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e respect \u003ccode\u003ethrowOnError\u003c/code\u003e when request validation fails (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-fetch\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e pass previous result to error interceptors (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e \u003ccode\u003erequest\u003c/code\u003e and \u003ccode\u003eresponse\u003c/code\u003e objects might be undefined (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e respect \u003ccode\u003ethrowOnError\u003c/code\u003e when request validation fails (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-ky\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e pass previous result to error interceptors (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e \u003ccode\u003erequest\u003c/code\u003e and \u003ccode\u003eresponse\u003c/code\u003e objects might be undefined (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e respect \u003ccode\u003ethrowOnError\u003c/code\u003e when request validation fails (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e respect ky instance defaults (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3806\"\u003e#3806\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged Ky client behavior\u003c/h3\u003e\n\u003cp\u003eThe Ky client was updated to be more intuitive. Some Ky options now need to be passed via the \u003ccode\u003ekyOptions\u003c/code\u003e field and you need to pass \u003ccode\u003eundefined\u003c/code\u003e to unset an option.\u003c/p\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-next\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e \u003ccode\u003erequest\u003c/code\u003e and \u003ccode\u003eresponse\u003c/code\u003e objects might be undefined (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e pass previous result to error interceptors (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e respect \u003ccode\u003ethrowOnError\u003c/code\u003e when request validation fails (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/hey-api/openapi-ts/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@libsql/client` from 0.17.0 to 0.17.3\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/9d158a718ab655024e175d47a36565bd0178810b\"\u003e\u003ccode\u003e9d158a7\u003c/code\u003e\u003c/a\u003e 0.17.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/db7212640402f15e04b9fe7c16ca6cfa2b00ff07\"\u003e\u003ccode\u003edb72126\u003c/code\u003e\u003c/a\u003e 0.17.3-pre.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/e5d58414c671aabc88dfadf75fc1f3fd731da43d\"\u003e\u003ccode\u003ee5d5841\u003c/code\u003e\u003c/a\u003e Drop removed hrana-client re-exports from client test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/82b63c0466efc4435dfb05681988cb4656c86ed5\"\u003e\u003ccode\u003e82b63c0\u003c/code\u003e\u003c/a\u003e 0.17.3-pre.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/d377872e0ac42c7022d27b637815269fff8be6d1\"\u003e\u003ccode\u003ed377872\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003e@​libsql/hrana-client\u003c/code\u003e to 0.10.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/697ae59038dc61224c1b3cf57b0d5a71b315ca5a\"\u003e\u003ccode\u003e697ae59\u003c/code\u003e\u003c/a\u003e 0.17.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/b15a87226612dad953f56d2dee10f811137ead92\"\u003e\u003ccode\u003eb15a872\u003c/code\u003e\u003c/a\u003e Bump libsql dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/1fede76c2ffa109a67a20e8a73d366a9fba538c2\"\u003e\u003ccode\u003e1fede76\u003c/code\u003e\u003c/a\u003e 0.17.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/8f1e8d386e95f98891af56283a731261224c43ca\"\u003e\u003ccode\u003e8f1e8d3\u003c/code\u003e\u003c/a\u003e Bump libsql dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/138f4a3c334f6031d372e46f29409c8384c6f4e6\"\u003e\u003ccode\u003e138f4a3\u003c/code\u003e\u003c/a\u003e Mention Turso serverless package\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commits/v0.17.3/packages/libsql-client\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@lingui/core` from 5.9.5 to 6.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lingui/js-lingui/releases\"\u003e@​lingui/core's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v6.0.0...v6.0.1\"\u003e6.0.1\u003c/a\u003e (2026-04-30)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid throwing on object spreads in extractFromObjectExpression (\u003ca href=\"https://redirect.github.com/lingui/js-lingui/issues/2538\"\u003e#2538\u003c/a\u003e) (\u003ca href=\"https://github.com/lingui/js-lingui/commit/7cbc0a8638e1cc2f5ea702922b46156c0555fe29\"\u003e7cbc0a8\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecli:\u003c/strong\u003e declare files arguments (\u003ca href=\"https://redirect.github.com/lingui/js-lingui/issues/2532\"\u003e#2532\u003c/a\u003e) (\u003ca href=\"https://github.com/lingui/js-lingui/commit/4a55abe7b3d046b972cb26a3c5a11acf397f1d7a\"\u003e4a55abe\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v5.9.5...v6.0.0\"\u003ev6.0.0\u003c/a\u003e\u003c/h1\u003e\n\u003cp\u003eWe are pleased to announce the release of \u003cstrong\u003eLingui 6.0\u003c/strong\u003e ✨\u003c/p\u003e\n\u003cp\u003eThis release marks a \u003cstrong\u003emajor milestone\u003c/strong\u003e for the project. It includes a transition to ESM-only distribution, reduced dependency graph, the removal of deprecated APIs, and improved TypeScript support. A few new features have also been introduced.\u003c/p\u003e\n\u003cp\u003eCheck out the links below for more details:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://lingui.dev/blog/2026/04/22/announcing-lingui-6.0\"\u003eBlog Post: Announcing Lingui 6.0\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://lingui.dev/releases/migration-6\"\u003eMigration Guide from 5.x to 6.x\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v5.9.5...v6.0.0\"\u003eFull Changelog\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDiscussion\u003c/h2\u003e\n\u003cp\u003eIf you have any questions or suggestions regarding this release, please visit the \u003ca href=\"https://github.com/lingui/js-lingui/discussions/2455\"\u003eRelated Discussion\u003c/a\u003e or our \u003ca href=\"https://discord.gg/tBZqKpeF\"\u003eDiscord Server\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev6.0.0-next.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v6.0.0-next.3...v6.0.0-next.4\"\u003ev6.0.0-next.4\u003c/a\u003e (2026-04-17)\u003c/h2\u003e\n\u003cp\u003eVisit the \u003ca href=\"https://js-lingui-git-next-crowdin.vercel.app\"\u003ev6 website deployment\u003c/a\u003e to see the relevant docs, including the \u003ca href=\"https://js-lingui-git-next-crowdin.vercel.app/releases/migration-6\"\u003emigration guide from 5.x to 6.x\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003econsolidate metadata transformation options into \u003ccode\u003edescriptorFields\u003c/code\u003e (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2513\"\u003e#2513\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003emacro:\u003c/strong\u003e add optional configurable JSX placeholder naming (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2505\"\u003e#2505\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eloader:\u003c/strong\u003e make webpack peer dependency optional and update Rspack example (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2475\"\u003e#2475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epo-format:\u003c/strong\u003e remove duplicated references when \u003ccode\u003elineNumbers\u003c/code\u003e is false (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2509\"\u003e#2509\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecli:\u003c/strong\u003e support braces in catalog pathname (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2495\"\u003e#2495\u003c/a\u003e) \u003cem\u003e(backported from v5.x)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDiscussion\u003c/h2\u003e\n\u003cp\u003eVisit the \u003ca href=\"https://github.com/lingui/js-lingui/discussions/2455\"\u003erelated discussion\u003c/a\u003e if you have any questions about this release or feedback. We'd love to hear from you!\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lingui/js-lingui/blob/main/packages/core/CHANGELOG.md\"\u003e@​lingui/core's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v6.0.0...v6.0.1\"\u003e6.0.1\u003c/a\u003e (2026-04-30)\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​lingui/core\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v5.9.5...v6.0.0\"\u003e6.0.0\u003c/a\u003e (2026-04-22)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://lingui.dev/blog/2026/04/22/announcing-lingui-6.0\"\u003eAnnouncing Lingui 6.0\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/a710fd3c6dca7406a5b0ee219e99474586e93e59\"\u003e\u003ccode\u003ea710fd3\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.1 [skip ci] (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2541\"\u003e#2541\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/b91bb94b6fc59c85d460a4d403be41e70d11b717\"\u003e\u003ccode\u003eb91bb94\u003c/code\u003e\u003c/a\u003e chore: update tooling: Yarn, Vitest (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2539\"\u003e#2539\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/a194ab486dd979c42b39d90c80e5c3e2283bf8c7\"\u003e\u003ccode\u003ea194ab4\u003c/code\u003e\u003c/a\u003e chore: official v6 release (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2500\"\u003e#2500\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/9216f052768abd987bae67451eef512cf047c152\"\u003e\u003ccode\u003e9216f05\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.0-next.4 (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2521\"\u003e#2521\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/1597e3a3321f02a668285bec3f5e9b24c1ef2765\"\u003e\u003ccode\u003e1597e3a\u003c/code\u003e\u003c/a\u003e chore: improve public package descriptions and keywords (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2493\"\u003e#2493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/ebcb6dc8e8d327ae5775cadee931942ef309480f\"\u003e\u003ccode\u003eebcb6dc\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.0-next.3 (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2491\"\u003e#2491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/4b244312eb16e94451a33f6dac60ecdbb55d6f74\"\u003e\u003ccode\u003e4b24431\u003c/code\u003e\u003c/a\u003e feat(vite-plugin): Vite 8 compatibility + linguiTransformerBabelPreset (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2487\"\u003e#2487\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/f4bcdd555ceef0bed58b2f3075096efd4daaeec2\"\u003e\u003ccode\u003ef4bcdd5\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.0-next.2 (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2485\"\u003e#2485\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/2848e873f73b76c12b8aec6e672712d236c85b27\"\u003e\u003ccode\u003e2848e87\u003c/code\u003e\u003c/a\u003e fix(macro): add shims for macro executed in nodejs without transpilation (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2471\"\u003e#2471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/c3247d657e6010b4da3c53e83079902a2e83abb8\"\u003e\u003ccode\u003ec3247d6\u003c/code\u003e\u003c/a\u003e chore: fix eslint config for react (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2449\"\u003e#2449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lingui/js-lingui/commits/v6.0.1/packages/core\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@lingui/react` from 5.9.5 to 6.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lingui/js-lingui/releases\"\u003e@​lingui/react's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v6.0.0...v6.0.1\"\u003e6.0.1\u003c/a\u003e (2026-04-30)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid throwing on object spreads in extractFromObjectExpression (\u003ca href=\"https://redirect.github.com/lingui/js-lingui/issues/2538\"\u003e#2538\u003c/a\u003e) (\u003ca href=\"https://github.com/lingui/js-lingui/commit/7cbc0a8638e1cc2f5ea702922b46156c0555fe29\"\u003e7cbc0a8\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecli:\u003c/strong\u003e declare files arguments (\u003ca href=\"https://redirect.github.com/lingui/js-lingui/issues/2532\"\u003e#2532\u003c/a\u003e) (\u003ca href=\"https://github.com/lingui/js-lingui/commit/4a55abe7b3d046b972cb26a3c5a11acf397f1d7a\"\u003e4a55abe\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v5.9.5...v6.0.0\"\u003ev6.0.0\u003c/a\u003e\u003c/h1\u003e\n\u003cp\u003eWe are pleased to announce the release of \u003cstrong\u003eLingui 6.0\u003c/strong\u003e ✨\u003c/p\u003e\n\u003cp\u003eThis release marks a \u003cstrong\u003emajor milestone\u003c/strong\u003e for the project. It includes a transition to ESM-only distribution, reduced dependency graph, the removal of deprecated APIs, and improved TypeScript support. A few new features have also been introduced.\u003c/p\u003e\n\u003cp\u003eCheck out the links below for more details:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://lingui.dev/blog/2026/04/22/announcing-lingui-6.0\"\u003eBlog Post: Announcing Lingui 6.0\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://lingui.dev/releases/migration-6\"\u003eMigration Guide from 5.x to 6.x\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v5.9.5...v6.0.0\"\u003eFull Changelog\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDiscussion\u003c/h2\u003e\n\u003cp\u003eIf you have any questions or suggestions regarding this release, please visit the \u003ca href=\"https://github.com/lingui/js-lingui/discussions/2455\"\u003eRelated Discussion\u003c/a\u003e or our \u003ca href=\"https://discord.gg/tBZqKpeF\"\u003eDiscord Server\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev6.0.0-next.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v6.0.0-next.3...v6.0.0-next.4\"\u003ev6.0.0-next.4\u003c/a\u003e (2026-04-17)\u003c/h2\u003e\n\u003cp\u003eVisit the \u003ca href=\"https://js-lingui-git-next-crowdin.vercel.app\"\u003ev6 website deployment\u003c/a\u003e to see the relevant docs, including the \u003ca href=\"https://js-lingui-git-next-crowdin.vercel.app/releases/migration-6\"\u003emigration guide from 5.x to 6.x\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003econsolidate metadata transformation options into \u003ccode\u003edescriptorFields\u003c/code\u003e (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2513\"\u003e#2513\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003emacro:\u003c/strong\u003e add optional configurable JSX placeholder naming (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2505\"\u003e#2505\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eloader:\u003c/strong\u003e make webpack peer dependency optional and update Rspack example (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2475\"\u003e#2475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epo-format:\u003c/strong\u003e remove duplicated references when \u003ccode\u003elineNumbers\u003c/code\u003e is false (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2509\"\u003e#2509\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecli:\u003c/strong\u003e support braces in catalog pathname (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2495\"\u003e#2495\u003c/a\u003e) \u003cem\u003e(backported from v5.x)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDiscussion\u003c/h2\u003e\n\u003cp\u003eVisit the \u003ca href=\"https://github.com/lingui/js-lingui/discussions/2455\"\u003erelated discussion\u003c/a\u003e if you have any questions about this release or feedback. We'd love to hear from you!\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lingui/js-lingui/blob/main/packages/react/CHANGELOG.md\"\u003e@​lingui/react's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v6.0.0...v6.0.1\"\u003e6.0.1\u003c/a\u003e (2026-04-30)\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​lingui/react\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v5.9.5...v6.0.0\"\u003e6.0.0\u003c/a\u003e (2026-04-22)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://lingui.dev/blog/2026/04/22/announcing-lingui-6.0\"\u003eAnnouncing Lingui 6.0\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/a710fd3c6dca7406a5b0ee219e99474586e93e59\"\u003e\u003ccode\u003ea710fd3\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.1 [skip ci] (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2541\"\u003e#2541\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/b91bb94b6fc59c85d460a4d403be41e70d11b717\"\u003e\u003ccode\u003eb91bb94\u003c/code\u003e\u003c/a\u003e chore: update tooling: Yarn, Vitest (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2539\"\u003e#2539\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/a194ab486dd979c42b39d90c80e5c3e2283bf8c7\"\u003e\u003ccode\u003ea194ab4\u003c/code\u003e\u003c/a\u003e chore: official v6 release (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2500\"\u003e#2500\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/9216f052768abd987bae67451eef512cf047c152\"\u003e\u003ccode\u003e9216f05\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.0-next.4 (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2521\"\u003e#2521\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/1597e3a3321f02a668285bec3f5e9b24c1ef2765\"\u003e\u003ccode\u003e1597e3a\u003c/code\u003e\u003c/a\u003e chore: improve public package descriptions and keywords (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2493\"\u003e#2493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/ebcb6dc8e8d327ae5775cadee931942ef309480f\"\u003e\u003ccode\u003eebcb6dc\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.0-next.3 (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2491\"\u003e#2491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/4b244312eb16e94451a33f6dac60ecdbb55d6f74\"\u003e\u003ccode\u003e4b24431\u003c/code\u003e\u003c/a\u003e feat(vite-plugin): Vite 8 compatibility + linguiTransformerBabelPreset (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2487\"\u003e#2487\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/f4bcdd555ceef0bed58b2f3075096efd4daaeec2\"\u003e\u003ccode\u003ef4bcdd5\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.0-next.2 (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2485\"\u003e#2485\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/2848e873f73b76c12b8aec6e672712d236c85b27\"\u003e\u003ccode\u003e2848e87\u003c/code\u003e\u003c/a\u003e fix(macro): add shims for macro executed in nodejs without transpilation (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2471\"\u003e#2471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/c3247d657e6010b4da3c53e83079902a2e83abb8\"\u003e\u003ccode\u003ec3247d6\u003c/code\u003e\u003c/a\u003e chore: fix eslint config for react (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2449\"\u003e#2449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lingui/js-lingui/commits/v6.0.1/packages/react\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@supabase/supabase-js` from 2.99.1 to 2.105.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/supabase/supabase-js/releases\"\u003e@​supabase/supabase-js's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.105.1\u003c/h2\u003e\n\u003ch2\u003e2.105.1 (2026-04-28)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e query reassignment regression (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2292\"\u003e#2292\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e surface real Error on transport-level CHANNEL_ERROR (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2299\"\u003e#2299\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eVaibhav \u003ca href=\"https://github.com/7ttp\"\u003e\u003ccode\u003e@​7ttp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.105.1-canary.2\u003c/h2\u003e\n\u003ch2\u003e2.105.1-canary.2 (2026-04-28)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e surface real Error on transport-level CHANNEL_ERROR (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2299\"\u003e#2299\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.105.1-canary.1\u003c/h2\u003e\n\u003ch2\u003e2.105.1-canary.1 (2026-04-28)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only, there were no code changes.\u003c/p\u003e\n\u003ch2\u003ev2.105.1-canary.0\u003c/h2\u003e\n\u003ch2\u003e2.105.1-canary.0 (2026-04-28)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e query reassignment regression (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2292\"\u003e#2292\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eVaibhav \u003ca href=\"https://github.com/7ttp\"\u003e\u003ccode\u003e@​7ttp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.105.0\u003c/h2\u003e\n\u003ch2\u003e2.105.0 (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eauth:\u003c/strong\u003e add passkey support with WebAuthn registration, authentication, and management (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2283\"\u003e#2283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e Realtime deferred disconnect (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2282\"\u003e#2282\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e narrow column types after not(column, is, null) (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2264\"\u003e#2264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e annotate Timer/Vsn getters to avoid deep phoenix imports (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2284\"\u003e#2284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e apply metadata, headers, and cacheControl dedupe to uploadToSignedUrl (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2275\"\u003e#2275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e forward duplex option for stream uploads via uploadToSignedUrl (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2289\"\u003e#2289\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/supabase/supabase-js/blob/develop/packages/core/supabase-js/CHANGELOG.md\"\u003e@​supabase/supabase-js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.105.1 (2026-04-28)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.105.0 (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eauth:\u003c/strong\u003e add passkey support with WebAuthn registration, authentication, and management (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2283\"\u003e#2283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e Realtime deferred disconnect (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2282\"\u003e#2282\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.104.1 (2026-04-23)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esupabase:\u003c/strong\u003e propagate custom fetch to realtime client (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2267\"\u003e#2267\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKaterina Skroumpelou \u003ca href=\"https://github.com/mandarini\"\u003e\u003ccode\u003e@​mandarini\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.104.0 (2026-04-20)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.3 (2026-04-16)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.2 (2026-04-15)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.1 (2026-04-15)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.0 (2026-04-09)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.102.1 (2026-04-07)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.102.0 (2026-04-07)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esupabase:\u003c/strong\u003e export PostgrestFilterBuilder and StorageApiError from supabase-js (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2222\"\u003e#2222\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/ca8c418dbe912a72d6c6434c319d432d31867943\"\u003e\u003ccode\u003eca8c418\u003c/code\u003e\u003c/a\u003e chore(release): version 2.105.0 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2290\"\u003e#2290\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/d19e6d3f8f7344205175034146ce61548d415837\"\u003e\u003ccode\u003ed19e6d3\u003c/code\u003e\u003c/a\u003e [patchback] docs(misc): rename anon key → publishable key and service role ke...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/c420456290b0eccf34a2eb5625294752b52e26d4\"\u003e\u003ccode\u003ec420456\u003c/code\u003e\u003c/a\u003e [patchback] feat(auth): add passkey support with WebAuthn registration, authe...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/bfb18bc82f452bf6987886ffbbe6a974496bf88d\"\u003e\u003ccode\u003ebfb18bc\u003c/code\u003e\u003c/a\u003e [patchback] feat(realtime): Realtime deferred disconnect (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2282\"\u003e#2282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/ed49eed13592a7c874ec799d6aa8ff7b675aa929\"\u003e\u003ccode\u003eed49eed\u003c/code\u003e\u003c/a\u003e chore(release): version 2.104.1 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2273\"\u003e#2273\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/122d3a94cce7b4a4b7e340779c8f82bac99ff1b3\"\u003e\u003ccode\u003e122d3a9\u003c/code\u003e\u003c/a\u003e fix(supabase): propagate custom fetch to realtime client (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2267\"\u003e#2267\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/9360d4ae2797d25d6b53d5c6c99981d2a814f26b\"\u003e\u003ccode\u003e9360d4a\u003c/code\u003e\u003c/a\u003e chore(release): version 2.104.0 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2261\"\u003e#2261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/897fb8e9d288e74dd47e765b5d6ec647e765a3cb\"\u003e\u003ccode\u003e897fb8e\u003c/code\u003e\u003c/a\u003e docs(repo): show createClient as primary example in all client constructors (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/7a9b2e15031253b542dc3c2294e41c818b61509d\"\u003e\u003ccode\u003e7a9b2e1\u003c/code\u003e\u003c/a\u003e chore(release): version 2.103.3 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2258\"\u003e#2258\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/a2f94144fae2a4a5dc713cb71dbcce46ad3e92f0\"\u003e\u003ccode\u003ea2f9414\u003c/code\u003e\u003c/a\u003e chore(release): version 2.103.2 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2253\"\u003e#2253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/supabase/supabase-js/commits/v2.105.1/packages/core/supabase-js\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tailwindcss/vite` from 4.2.1 to 4.2.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/releases\"\u003e@​tailwindcss/vite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.2.4\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure imports in \u003ccode\u003e@import\u003c/code\u003e and \u003ccode\u003e@plugin\u003c/code\u003e still resolve correctly when using Vite aliases in \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19947\"\u003e#19947\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.3\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCanonicalization: improve canonicalizations for \u003ccode\u003etracking-*\u003c/code\u003e utilities by preferring non-negative utilities (e.g. \u003ccode\u003e-tracking-tighter\u003c/code\u003e → \u003ccode\u003etracking-wider\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19827\"\u003e#19827\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix crash due to invalid characters in candidate (exceeding valid unicode code point range) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19829\"\u003e#19829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure query params in imports are considered unique resources when using \u003ccode\u003e@tailwindcss/webpack\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19723\"\u003e#19723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse arbitrary values into shorthand utilities (e.g. \u003ccode\u003epx-[1.2rem] py-[1.2rem]\u003c/code\u003e → \u003ccode\u003ep-[1.2rem]\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19837\"\u003e#19837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003eborder-{t,b}-*\u003c/code\u003e into \u003ccode\u003eborder-y-*\u003c/code\u003e, \u003ccode\u003eborder-{l,r}-*\u003c/code\u003e into \u003ccode\u003eborder-x-*\u003c/code\u003e, and \u003ccode\u003eborder-{t,r,b,l}-*\u003c/code\u003e into \u003ccode\u003eborder-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003escroll-m{t,b}-*\u003c/code\u003e into \u003ccode\u003escroll-my-*\u003c/code\u003e, \u003ccode\u003escroll-m{l,r}-*\u003c/code\u003e into \u003ccode\u003escroll-mx-*\u003c/code\u003e, and \u003ccode\u003escroll-m{t,r,b,l}-*\u003c/code\u003e into \u003ccode\u003escroll-m-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003escroll-p{t,b}-*\u003c/code\u003e into \u003ccode\u003escroll-py-*\u003c/code\u003e, \u003ccode\u003escroll-p{l,r}-*\u003c/code\u003e into \u003ccode\u003escroll-px-*\u003c/code\u003e, and \u003ccode\u003escroll-p{t,r,b,l}-*\u003c/code\u003e into \u003ccode\u003escroll-p-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003eoverflow-{x,y}-*\u003c/code\u003e into \u003ccode\u003eoverflow-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003eoverscroll-{x,y}-*\u003c/code\u003e into \u003ccode\u003eoverscroll-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRead from \u003ccode\u003e--placeholder-color\u003c/code\u003e instead of \u003ccode\u003e--background-color\u003c/code\u003e for \u003ccode\u003eplaceholder-*\u003c/code\u003e utilities (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19843\"\u003e#19843\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: ensure files are not emptied out when killing the upgrade process while it's running (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: use \u003ccode\u003econfig.content\u003c/code\u003e when migrating from Tailwind CSS v3 to Tailwind CSS v4 (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: never migrate files that are ignored by git (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e.env\u003c/code\u003e and \u003ccode\u003e.env.*\u003c/code\u003e to default ignored content files (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: migrate \u003ccode\u003eoverflow-ellipsis\u003c/code\u003e into \u003ccode\u003etext-ellipsis\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19849\"\u003e#19849\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: migrate \u003ccode\u003estart-full\u003c/code\u003e → \u003ccode\u003einset-s-full\u003c/code\u003e, \u003ccode\u003estart-auto\u003c/code\u003e → \u003ccode\u003einset-s-auto\u003c/code\u003e, \u003ccode\u003estart-px\u003c/code\u003e → \u003ccode\u003einset-s-px\u003c/code\u003e, and \u003ccode\u003estart-\u0026lt;number\u0026gt;\u003c/code\u003e → \u003ccode\u003einset-s-\u0026lt;number\u0026gt;\u003c/code\u003e as well as negative versions (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19849\"\u003e#19849\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: migrate \u003ccode\u003eend-full\u003c/code\u003e → \u003ccode\u003einset-e-full\u003c/code\u003e, \u003ccode\u003eend-auto\u003c/code\u003e → \u003ccode\u003einset-e-auto\u003c/code\u003e, \u003ccode\u003eend-px\u003c/code\u003e → \u003ccode\u003einset-e-px\u003c/code\u003e, and \u003ccode\u003eend-\u0026lt;number\u0026gt;\u003c/code\u003e → \u003ccode\u003einset-e-\u0026lt;number\u0026gt;\u003c/code\u003e as well as negative versions (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19849\"\u003e#19849\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: move the \u003ccode\u003e-\u003c/code\u003e sign inside the arbitrary value \u003ccode\u003e-left-[9rem]\u003c/code\u003e → \u003ccode\u003eleft-[-9rem]\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19858\"\u003e#19858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: move the \u003ccode\u003e-\u003c/code\u003e sign outside the arbitrary value \u003ccode\u003eml-[calc(-1*var(--width))]\u003c/code\u003e → \u003ccode\u003e-ml-(--width)\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19858\"\u003e#19858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance when scanning JSONL / NDJSON files (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19862\"\u003e#19862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eNODE_PATH\u003c/code\u003e environment variable in standalone CLI (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19617\"\u003e#19617\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Vite 8 in \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19790\"\u003e#19790\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDon't crash when candidates contain prototype properties like \u003ccode\u003erow-constructor\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19725\"\u003e#19725\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalize \u003ccode\u003ecalc(var(--spacing)*…)\u003c/code\u003e expressions into \u003ccode\u003e--spacing(…)\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19769\"\u003e#19769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix crash in canonicalization step when handling utilities containing \u003ccode\u003e@property\u003c/code\u003e at-rules (e.g. \u003ccode\u003eshadow-sm border\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19727\"\u003e#19727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSkip full reload for server only modules scanned by client CSS when using \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19745\"\u003e#19745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove canonicalization for bare values exceeding default spacing scale suggestions (e.g. \u003ccode\u003ew-1234 h-1234\u003c/code\u003e → \u003ccode\u003esize-1234\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19809\"\u003e#19809\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix canonicalization resulting in empty list (e.g. \u003ccode\u003ew-5 h-5 size-5\u003c/code\u003e → \u003ccode\u003e''\u003c/code\u003e instead of \u003ccode\u003esize-5\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19812\"\u003e#19812\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md\"\u003e@​tailwindcss/vite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.2.4] - 2026-04-21\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure imports in \u003ccode\u003e@import\u003c/code\u003e and \u003ccode\u003e@plugin\u003c/code\u003e still resolve correctly when using Vite aliases in \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19947\"\u003e#19947\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.2.3] - 2026-04-20\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCanonicalization: improve canonicalization for \u003ccode\u003etracking-*\u003c/code\u003e utilities by preferring non-negative utilities (e.g. \u003ccode\u003e-tracking-tighter\u003c/code\u003e → \u003ccode\u003etracking-wider\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19827\"\u003e#19827\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix crash due to invalid characters in candidate (exceeding valid unicode code point range) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19829\"\u003e#19829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure query params in imports are considered unique resources when using \u003ccode\u003e@tailwindcss/webpack\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19723\"\u003e#19723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse arbitrary values into shorthand utilities (e.g. \u003ccode\u003epx-[1.2rem] py-[1.2rem]\u003c/code\u003e → \u003ccode\u003ep-[1.2rem]\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19837\"\u003e#19837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003eborder-{t,b}-*\u003c/code\u003e into \u003ccode\u003eborder-y-*\u003c/code\u003e, \u003ccode\u003eborder-{l,r}-*\u003c/code\u003e into \u003ccode\u003eborder-x-*\u003c/code\u003e, and \u003ccode\u003eborder-{t,r,b,l}-*\u003c/code\u003e into \u003ccode\u003eborder-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003escroll-m{t,b}-*\u003c/code\u003e into \u003ccode\u003escroll-my-*\u003c/code\u003e, \u003ccode\u003escroll-m{l,r}-*\u003c/code\u003e into \u003ccode\u003escroll-mx-*\u003c/code\u003e, and \u003ccode\u003escroll-m{t,r,b,l}-*\u003c/code\u003e into \u003ccode\u003escroll-m-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003escroll-p{t,b}-*\u003c/code\u003e into \u003ccode\u003escroll-py-*\u003c/code\u003e, \u003ccode\u003escroll-p{l,r}-*\u003c/code\u003e into \u003ccode\u003escroll-px-*\u003c/code\u003e, and \u003ccode\u003escroll-p{t,r,b,l}-*\u003c/code\u003e into \u003ccode\u003escroll-p-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003eoverflow-{x,y}-*\u003c/code\u003e into \u003ccode\u003eoverflow-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003eoverscroll-{x,y}-*\u003c/code\u003e into \u003ccode\u003eoverscroll-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRead from \u003ccode\u003e--placeholder-color\u003c/code\u003e instead of \u003ccode\u003e--background-color\u003c/code\u003e for \u003ccode\u003eplaceholder-*\u003c/code\u003e utilities (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19843\"\u003e#19843\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: ensure files are not emptied out when killing the upgrade process while it's running (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: use \u003ccode\u003econfig.content\u003c/code\u003e when migrating from Tailwind CSS v3 to Tailwind CSS v4 (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: never migrate files that are ignored by git (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e.env\u003c/code\u003e and \u003ccode\u003e.env.*\u003c/code\u003e to default ignored content files (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: migrate \u003ccode\u003eoverflow-ellipsis\u003c/code\u003e into \u003ccode\u003etext-ellipsis\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19849\"\u003e#19849\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: migrate \u003ccode\u003estart-full\u003c/code\u003e → \u003ccode\u003einset-s-full\u003c/code\u003e, \u003ccode\u003estart-auto\u003c/code\u003e → \u003ccode\u003einset-s-auto\u003c/code\u003e, \u003ccode\u003estart-px\u003c/code\u003e → \u003ccode\u003einset-s-px\u003c/code\u003e, and \u003ccode\u003estart-\u0026lt;number\u0026gt;\u003c/code\u003e → \u003ccode\u003einset-s-\u0026lt;number\u0026gt;\u003c/code\u003e as well as negative versions (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19849\"\u003e#19849\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: migrate \u003ccode\u003eend-full\u003c/code\u003e → \u003ccode\u003einset-e-full\u003c/code\u003e, \u003ccode\u003eend-auto\u003c/code\u003e → \u003ccode\u003einset-e-auto\u003c/code\u003e, \u003ccode\u003eend-px\u003c/code\u003e → \u003ccode\u003einset-e-px\u003c/code\u003e, and \u003ccode\u003eend-\u0026lt;number\u0026gt;\u003c/code\u003e → \u003ccode\u003einset-e-\u0026lt;number\u0026gt;\u003c/code\u003e as well as negative versions (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19849\"\u003e#19849\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: move the \u003ccode\u003e-\u003c/code\u003e sign inside the arbitrary value \u003ccode\u003e-left-[9rem]\u003c/code\u003e → \u003ccode\u003eleft-[-9rem]\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19858\"\u003e#19858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: move the \u003ccode\u003e-\u003c/code\u003e sign outside the arbitrary value \u003ccode\u003eml-[calc(-1*var(--width))]\u003c/code\u003e → \u003ccode\u003e-ml-(--width)\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19858\"\u003e#19858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance when scanning JSONL / NDJSON files (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19862\"\u003e#19862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eNODE_PATH\u003c/code\u003e environment variable in standalone CLI (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19617\"\u003e#19617\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.2.2] - 2026-03-18\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3...\n\n_Description has been truncated_","html_url":"https://github.com/FapLandPartyDev/FapLand-Party-Edition/pull/18","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FapLandPartyDev%2FFapLand-Party-Edition/issues/18","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/18/packages"},{"uuid":"4367885343","node_id":"PR_kwDOROhQZs7Xl5_6","number":13,"state":"open","title":"chore(deps): bump the npm-minor-patch group with 276 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-02T04:21:22.000Z","updated_at":"2026-05-02T04:21:23.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm-minor-patch","update_count":276,"packages":[{"name":"@applemusic-like-lyrics/core","old_version":"0.2.0","new_version":"0.4.2","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/lyric","old_version":"0.3.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/vue","old_version":"0.2.0","new_version":"0.4.2","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@types/pg","old_version":"8.16.0","new_version":"8.20.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"axios","old_version":"1.13.5","new_version":"1.15.2","repository_url":"https://github.com/axios/axios"},{"name":"dayjs","old_version":"1.11.19","new_version":"1.11.20","repository_url":"https://github.com/iamkun/dayjs"},{"name":"dotenv","old_version":"17.2.4","new_version":"17.4.2","repository_url":"https://github.com/motdotla/dotenv"},{"name":"drizzle-kit","old_version":"0.31.9","new_version":"0.31.10","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"drizzle-orm","old_version":"0.45.1","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"lucide-vue-next","old_version":"0.563.0","new_version":"0.577.0","repository_url":"https://github.com/lucide-icons/lucide"},{"name":"multer","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/expressjs/multer"},{"name":"@types/multer","old_version":"2.0.0","new_version":"2.1.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"nuxt","old_version":"4.3.1","new_version":"4.4.4","repository_url":"https://github.com/nuxt/nuxt"},{"name":"postgres","old_version":"3.4.8","new_version":"3.4.9","repository_url":"https://github.com/porsager/postgres"},{"name":"redis","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"vite-plugin-wasm","old_version":"3.5.0","new_version":"3.6.0","repository_url":"https://github.com/Menci/vite-plugin-wasm"},{"name":"vue","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"zod","old_version":"4.3.6","new_version":"4.4.2","repository_url":"https://github.com/colinhacks/zod"},{"name":"@babel/compat-data","old_version":"7.29.0","new_version":"7.29.3","repository_url":"https://github.com/babel/babel"},{"name":"@babel/helper-create-class-features-plugin","old_version":"7.28.6","new_version":"7.29.3","repository_url":"https://github.com/babel/babel"},{"name":"@babel/helpers","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/parser","old_version":"7.29.0","new_version":"7.29.3","repository_url":"https://github.com/babel/babel"},{"name":"@babel/runtime","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@bomb.sh/tab","old_version":"0.0.12","new_version":"0.0.14","repository_url":"https://github.com/bombshell-dev/tab"},{"name":"@clack/core","old_version":"1.0.0","new_version":"1.3.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@clack/prompts","old_version":"1.0.0","new_version":"1.3.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@dxup/nuxt","old_version":"0.3.2","new_version":"0.4.1","repository_url":"https://github.com/KazariEX/dxup"},{"name":"@nuxt/kit","old_version":"3.21.1","new_version":"3.21.4","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@emnapi/core","old_version":"1.8.1","new_version":"1.10.0","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/runtime","old_version":"1.8.1","new_version":"1.10.0","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/wasi-threads","old_version":"1.1.0","new_version":"1.2.1","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@ioredis/commands","old_version":"1.5.0","new_version":"1.5.1","repository_url":"https://github.com/ioredis/commands"},{"name":"@napi-rs/wasm-runtime","old_version":"1.1.1","new_version":"1.1.4","repository_url":"https://github.com/napi-rs/napi-rs"},{"name":"@nuxt/cli","old_version":"3.33.1","new_version":"3.35.1","repository_url":"https://github.com/nuxt/cli"},{"name":"giget","old_version":"2.0.0","new_version":"3.2.0","repository_url":"https://github.com/unjs/giget"},{"name":"@nuxt/devtools","old_version":"3.1.1","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/devtools-kit","old_version":"3.1.1","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/devtools-wizard","old_version":"3.1.1","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/nitro-server","old_version":"4.3.1","new_version":"4.4.4","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@nuxt/schema","old_version":"4.3.1","new_version":"4.4.4","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@nuxt/telemetry","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nuxt/telemetry"},{"name":"@nuxt/vite-builder","old_version":"4.3.1","new_version":"4.4.4","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@oxc-minify/binding-android-arm-eabi","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-android-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-darwin-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-darwin-x64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-freebsd-x64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm-gnueabihf","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm-musleabihf","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-ppc64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-riscv64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-riscv64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-s390x-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-x64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-x64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-openharmony-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-wasm32-wasi","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-win32-arm64-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-win32-ia32-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-win32-x64-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-android-arm-eabi","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-android-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-darwin-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-darwin-x64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-freebsd-x64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm-gnueabihf","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm-musleabihf","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-ppc64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-riscv64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-riscv64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-s390x-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-x64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-x64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-openharmony-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-wasm32-wasi","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-win32-arm64-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-win32-ia32-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-win32-x64-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-project/types","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-android-arm-eabi","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-android-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-darwin-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-darwin-x64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-freebsd-x64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm-gnueabihf","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm-musleabihf","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-ppc64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-riscv64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-riscv64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-s390x-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-x64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-x64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-openharmony-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-wasm32-wasi","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-win32-arm64-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-win32-ia32-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-win32-x64-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@poppinss/dumper","old_version":"0.6.5","new_version":"0.7.0","repository_url":"https://github.com/poppinss/dumper"},{"name":"@redis/bloom","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/client","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/json","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/search","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/time-series","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@rolldown/pluginutils","old_version":"1.0.0-rc.2","new_version":"1.0.0-rc.13","repository_url":"https://github.com/rolldown/rolldown"},{"name":"@rollup/plugin-commonjs","old_version":"29.0.0","new_version":"29.0.2","repository_url":"https://github.com/rollup/plugins"},{"name":"@rollup/plugin-terser","old_version":"0.4.4","new_version":"1.0.0","repository_url":"https://github.com/rollup/plugins"},{"name":"@rollup/rollup-android-arm-eabi","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-android-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-darwin-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-darwin-x64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-freebsd-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-freebsd-x64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm-gnueabihf","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm-musleabihf","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-loong64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-loong64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-ppc64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-ppc64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-riscv64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-riscv64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-s390x-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-x64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-x64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-openbsd-x64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-openharmony-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-arm64-msvc","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-ia32-msvc","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-x64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-x64-msvc","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@speed-highlight/core","old_version":"1.2.14","new_version":"1.2.15","repository_url":"https://github.com/speed-highlight/core"},{"name":"@types/node","old_version":"25.2.2","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@types/qs","old_version":"6.14.0","new_version":"6.15.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@unhead/vue","old_version":"2.1.4","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"@vercel/nft","old_version":"1.3.0","new_version":"1.5.0","repository_url":"https://github.com/vercel/nft"},{"name":"@vitejs/plugin-vue","old_version":"6.0.4","new_version":"6.0.6","repository_url":"https://github.com/vitejs/vite-plugin-vue"},{"name":"@vitejs/plugin-vue-jsx","old_version":"5.1.4","new_version":"5.1.5","repository_url":"https://github.com/vitejs/vite-plugin-vue"},{"name":"unplugin-utils","old_version":"0.2.5","new_version":"0.3.1","repository_url":"https://github.com/sxzz/unplugin-utils"},{"name":"@vue/compiler-core","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/compiler-dom","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/compiler-sfc","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/compiler-ssr","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/devtools-core","old_version":"8.0.6","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"@vue/devtools-kit","old_version":"8.0.6","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"@vue/devtools-shared","old_version":"8.0.6","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"@vue/reactivity","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/runtime-core","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/runtime-dom","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/server-renderer","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/shared","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"acorn","old_version":"8.15.0","new_version":"8.16.0","repository_url":"https://github.com/acornjs/acorn"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"autoprefixer","old_version":"10.4.24","new_version":"10.5.0","repository_url":"https://github.com/postcss/autoprefixer"},{"name":"b4a","old_version":"1.7.3","new_version":"1.8.1","repository_url":"https://github.com/holepunchto/b4a"},{"name":"baseline-browser-mapping","old_version":"2.9.19","new_version":"2.10.25","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"bezier-easing","old_version":"2.1.0","new_version":"3.0.0","repository_url":"https://github.com/gre/bezier-easing"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"rc9","old_version":"2.1.2","new_version":"3.0.1","repository_url":"https://github.com/unjs/rc9"},{"name":"caniuse-lite","old_version":"1.0.30001769","new_version":"1.0.30001791","repository_url":"https://github.com/browserslist/caniuse-lite"},{"name":"cookie-es","old_version":"1.2.2","new_version":"1.2.3","repository_url":"https://github.com/unjs/cookie-es"},{"name":"core-js","old_version":"3.48.0","new_version":"3.49.0","repository_url":"https://github.com/zloirock/core-js"},{"name":"croner","old_version":"9.1.0","new_version":"10.0.1","repository_url":"https://github.com/hexagon/croner"},{"name":"css-declaration-sorter","old_version":"7.3.1","new_version":"7.4.0","repository_url":"https://github.com/Siilwyn/css-declaration-sorter"},{"name":"cssnano","old_version":"7.1.2","new_version":"7.1.7","repository_url":"https://github.com/cssnano/cssnano"},{"name":"cssnano-preset-default","old_version":"7.0.10","new_version":"7.0.15","repository_url":"https://github.com/cssnano/cssnano"},{"name":"cssnano-utils","old_version":"5.0.1","new_version":"5.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"define-lazy-prop","old_version":"2.0.0","new_version":"3.0.0","repository_url":"https://github.com/sindresorhus/define-lazy-prop"},{"name":"defu","old_version":"6.1.4","new_version":"6.1.7","repository_url":"https://github.com/unjs/defu"},{"name":"devalue","old_version":"5.6.2","new_version":"5.8.0","repository_url":"https://github.com/sveltejs/devalue"},{"name":"diff","old_version":"8.0.3","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"dompurify","old_version":"3.3.1","new_version":"3.4.2","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"electron-to-chromium","old_version":"1.5.286","new_version":"1.5.349","repository_url":"https://github.com/Kilian/electron-to-chromium"},{"name":"es-module-lexer","old_version":"2.0.0","new_version":"2.1.0","repository_url":"https://github.com/guybedford/es-module-lexer"},{"name":"fast-npm-meta","old_version":"0.4.8","new_version":"1.5.1","repository_url":"https://github.com/antfu/fast-npm-meta"},{"name":"follow-redirects","old_version":"1.15.11","new_version":"1.16.0","repository_url":"https://github.com/follow-redirects/follow-redirects"},{"name":"fuse.js","old_version":"7.1.0","new_version":"7.3.0","repository_url":"https://github.com/krisk/Fuse"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.14.0","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"globby","old_version":"16.1.0","new_version":"16.2.0","repository_url":"https://github.com/sindresorhus/globby"},{"name":"h3","old_version":"1.15.5","new_version":"1.15.11","repository_url":"https://github.com/h3js/h3"},{"name":"hasown","old_version":"2.0.2","new_version":"2.0.3","repository_url":"https://github.com/inspect-js/hasOwn"},{"name":"httpxy","old_version":"0.1.7","new_version":"0.5.1","repository_url":"https://github.com/unjs/httpxy"},{"name":"impound","old_version":"1.0.0","new_version":"1.1.5","repository_url":"https://github.com/unjs/impound"},{"name":"ioredis","old_version":"5.9.2","new_version":"5.10.1","repository_url":"https://github.com/luin/ioredis"},{"name":"jsonfile","old_version":"6.2.0","new_version":"6.2.1","repository_url":"https://github.com/jprichardson/node-jsonfile"},{"name":"koa","old_version":"2.16.3","new_version":"2.16.4","repository_url":"https://github.com/koajs/koa"},{"name":"launch-editor","old_version":"2.12.0","new_version":"2.13.2","repository_url":"https://github.com/yyx990803/launch-editor"},{"name":"listhen","old_version":"1.9.0","new_version":"1.10.0","repository_url":"https://github.com/unjs/listhen"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"minipass","old_version":"7.1.2","new_version":"7.1.3","repository_url":"https://github.com/isaacs/minipass"},{"name":"mlly","old_version":"1.8.0","new_version":"1.8.2","repository_url":"https://github.com/unjs/mlly"},{"name":"nanoid","old_version":"3.3.11","new_version":"3.3.12","repository_url":"https://github.com/ai/nanoid"},{"name":"nanotar","old_version":"0.2.0","new_version":"0.3.0","repository_url":"https://github.com/unjs/nanotar"},{"name":"nitropack","old_version":"2.13.1","new_version":"2.13.4","repository_url":"https://github.com/nitrojs/nitro"},{"name":"node-forge","old_version":"1.3.3","new_version":"1.4.0","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"node-releases","old_version":"2.0.27","new_version":"2.0.38","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"nypm","old_version":"0.6.5","new_version":"0.6.6","repository_url":"https://github.com/unjs/nypm"},{"name":"oxc-minify","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"oxc-parser","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"oxc-transform","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"pg-protocol","old_version":"1.11.0","new_version":"1.13.0","repository_url":"https://github.com/brianc/node-postgres"},{"name":"postcss","old_version":"8.5.6","new_version":"8.5.13","repository_url":"https://github.com/postcss/postcss"},{"name":"postcss-colormin","old_version":"7.0.5","new_version":"7.0.9","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-convert-values","old_version":"7.0.8","new_version":"7.0.11","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-comments","old_version":"7.0.5","new_version":"7.0.7","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-duplicates","old_version":"7.0.2","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-empty","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-overridden","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-merge-longhand","old_version":"7.0.5","new_version":"7.0.6","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-merge-rules","old_version":"7.0.7","new_version":"7.0.10","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-font-values","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-gradients","old_version":"7.0.1","new_version":"7.0.4","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-params","old_version":"7.0.5","new_version":"7.0.8","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-selectors","old_version":"7.0.5","new_version":"7.1.0","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-charset","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-display-values","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-positions","old_version":"7.0.1","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-repeat-style","old_version":"7.0.1","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-string","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-timing-functions","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-unicode","old_version":"7.0.5","new_version":"7.0.8","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-url","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-whitespace","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-ordered-values","old_version":"7.0.2","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-reduce-initial","old_version":"7.0.5","new_version":"7.0.8","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-reduce-transforms","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-svgo","old_version":"7.1.0","new_version":"7.1.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-unique-selectors","old_version":"7.0.4","new_version":"7.0.6","repository_url":"https://github.com/cssnano/cssnano"},{"name":"proxy-from-env","old_version":"1.1.0","new_version":"2.1.0","repository_url":"https://github.com/Rob--W/proxy-from-env"},{"name":"qs","old_version":"6.14.1","new_version":"6.15.1","repository_url":"https://github.com/ljharb/qs"},{"name":"resolve","old_version":"1.22.11","new_version":"1.22.12","repository_url":"https://github.com/browserify/resolve"},{"name":"rollup","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"rollup-plugin-visualizer","old_version":"6.0.5","new_version":"7.0.1","repository_url":"https://github.com/btd/rollup-plugin-visualizer"},{"name":"rou3","old_version":"0.7.12","new_version":"0.8.1","repository_url":"https://github.com/h3js/rou3"},{"name":"sax","old_version":"1.4.4","new_version":"1.6.0","repository_url":"https://github.com/isaacs/sax-js"},{"name":"serialize-javascript","old_version":"6.0.2","new_version":"7.0.5","repository_url":"https://github.com/yahoo/serialize-javascript"},{"name":"seroval","old_version":"1.5.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"signal-exit","old_version":"4.1.0","new_version":"3.0.7","repository_url":"https://github.com/tapjs/signal-exit"},{"name":"simple-git","old_version":"3.30.0","new_version":"3.36.0","repository_url":"https://github.com/steveukx/git-js"},{"name":"smob","old_version":"1.5.0","new_version":"1.6.1","repository_url":"https://github.com/Tada5hi/smob"},{"name":"srvx","old_version":"0.11.2","new_version":"0.11.15","repository_url":"https://github.com/h3js/srvx"},{"name":"std-env","old_version":"3.10.0","new_version":"4.1.0","repository_url":"https://github.com/unjs/std-env"},{"name":"streamx","old_version":"2.23.0","new_version":"2.25.0","repository_url":"https://github.com/mafintosh/streamx"},{"name":"structured-clone-es","old_version":"1.0.0","new_version":"2.0.0","repository_url":"https://github.com/antfu-collective/structured-clone-es"},{"name":"stylehacks","old_version":"7.0.7","new_version":"7.0.10","repository_url":"https://github.com/cssnano/cssnano"},{"name":"svgo","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/svg/svgo"},{"name":"tar","old_version":"7.5.7","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"tar-stream","old_version":"3.1.7","new_version":"3.2.0","repository_url":"https://github.com/mafintosh/tar-stream"},{"name":"terser","old_version":"5.46.0","new_version":"5.46.2","repository_url":"https://github.com/terser/terser"},{"name":"text-decoder","old_version":"1.2.3","new_version":"1.2.7","repository_url":"https://github.com/holepunchto/text-decoder"},{"name":"tinyexec","old_version":"1.0.2","new_version":"1.1.2","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"type-fest","old_version":"5.4.4","new_version":"5.6.0","repository_url":"https://github.com/sindresorhus/type-fest"},{"name":"ufo","old_version":"1.6.3","new_version":"1.6.4","repository_url":"https://github.com/unjs/ufo"},{"name":"undici-types","old_version":"7.16.0","new_version":"7.19.2","repository_url":"https://github.com/nodejs/undici"},{"name":"unhead","old_version":"2.1.4","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"unimport","old_version":"5.6.0","new_version":"6.2.0","repository_url":"https://github.com/unjs/unimport"},{"name":"unstorage","old_version":"1.17.4","new_version":"1.17.5","repository_url":"https://github.com/unjs/unstorage"},{"name":"uqr","old_version":"0.1.2","new_version":"0.1.3","repository_url":"https://github.com/unjs/uqr"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"vite-hot-client","old_version":"2.1.0","new_version":"2.2.0","repository_url":"https://github.com/antfu/vite-hot-client"},{"name":"vite-plugin-checker","old_version":"0.12.0","new_version":"0.13.0","repository_url":"https://github.com/fi3ework/vite-plugin-checker"},{"name":"vite-plugin-vue-tracer","old_version":"1.2.0","new_version":"1.3.0","repository_url":"https://github.com/antfu/vite-plugin-vue-tracer"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.2","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"},{"name":"youch","old_version":"4.1.0-beta.13","new_version":"4.1.1","repository_url":"https://github.com/poppinss/youch"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-minor-patch group with 276 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@applemusic-like-lyrics/core](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core) | `0.2.0` | `0.4.2` |\n| [@applemusic-like-lyrics/lyric](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/lyric) | `0.3.0` | `0.4.1` |\n| [@applemusic-like-lyrics/vue](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue) | `0.2.0` | `0.4.2` |\n| [@types/pg](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/pg) | `8.16.0` | `8.20.0` |\n| [axios](https://github.com/axios/axios) | `1.13.5` | `1.15.2` |\n| [dayjs](https://github.com/iamkun/dayjs) | `1.11.19` | `1.11.20` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.2.4` | `17.4.2` |\n| [drizzle-kit](https://github.com/drizzle-team/drizzle-orm) | `0.31.9` | `0.31.10` |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.45.1` | `0.45.2` |\n| [lucide-vue-next](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-vue-next) | `0.563.0` | `0.577.0` |\n| [multer](https://github.com/expressjs/multer) | `2.0.2` | `2.1.1` |\n| [@types/multer](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/multer) | `2.0.0` | `2.1.0` |\n| [nuxt](https://github.com/nuxt/nuxt/tree/HEAD/packages/nuxt) | `4.3.1` | `4.4.4` |\n| [postgres](https://github.com/porsager/postgres) | `3.4.8` | `3.4.9` |\n| [redis](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [vite-plugin-wasm](https://github.com/Menci/vite-plugin-wasm) | `3.5.0` | `3.6.0` |\n| [vue](https://github.com/vuejs/core) | `3.5.28` | `3.5.33` |\n| [zod](https://github.com/colinhacks/zod) | `4.3.6` | `4.4.2` |\n| [@babel/compat-data](https://github.com/babel/babel/tree/HEAD/packages/babel-compat-data) | `7.29.0` | `7.29.3` |\n| [@babel/helper-create-class-features-plugin](https://github.com/babel/babel/tree/HEAD/packages/babel-helper-create-class-features-plugin) | `7.28.6` | `7.29.3` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.28.6` | `7.29.2` |\n| [@babel/parser](https://github.com/babel/babel/tree/HEAD/packages/babel-parser) | `7.29.0` | `7.29.3` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.28.6` | `7.29.2` |\n| [@bomb.sh/tab](https://github.com/bombshell-dev/tab) | `0.0.12` | `0.0.14` |\n| [@clack/core](https://github.com/bombshell-dev/clack/tree/HEAD/packages/core) | `1.0.0` | `1.3.0` |\n| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.0.0` | `1.3.0` |\n| [@dxup/nuxt](https://github.com/KazariEX/dxup) | `0.3.2` | `0.4.1` |\n| [@nuxt/kit](https://github.com/nuxt/nuxt/tree/HEAD/packages/kit) | `3.21.1` | `3.21.4` |\n| [@emnapi/core](https://github.com/toyobayashi/emnapi) | `1.8.1` | `1.10.0` |\n| [@emnapi/runtime](https://github.com/toyobayashi/emnapi) | `1.8.1` | `1.10.0` |\n| [@emnapi/wasi-threads](https://github.com/toyobayashi/emnapi) | `1.1.0` | `1.2.1` |\n| [@ioredis/commands](https://github.com/ioredis/commands) | `1.5.0` | `1.5.1` |\n| [@napi-rs/wasm-runtime](https://github.com/napi-rs/napi-rs/tree/HEAD/wasm-runtime) | `1.1.1` | `1.1.4` |\n| [@nuxt/cli](https://github.com/nuxt/cli/tree/HEAD/packages/nuxt-cli) | `3.33.1` | `3.35.1` |\n| [giget](https://github.com/unjs/giget) | `2.0.0` | `3.2.0` |\n| [@nuxt/devtools](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools) | `3.1.1` | `3.2.4` |\n| [@nuxt/devtools-kit](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools-kit) | `3.1.1` | `3.2.4` |\n| [@nuxt/devtools-wizard](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools-wizard) | `3.1.1` | `3.2.4` |\n| [@nuxt/nitro-server](https://github.com/nuxt/nuxt/tree/HEAD/packages/nitro-server) | `4.3.1` | `4.4.4` |\n| [@nuxt/schema](https://github.com/nuxt/nuxt/tree/HEAD/packages/schema) | `4.3.1` | `4.4.4` |\n| [@nuxt/telemetry](https://github.com/nuxt/telemetry) | `2.7.0` | `2.8.0` |\n| [@nuxt/vite-builder](https://github.com/nuxt/nuxt/tree/HEAD/packages/vite) | `4.3.1` | `4.4.4` |\n| [@oxc-minify/binding-android-arm-eabi](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-android-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-darwin-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-darwin-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-freebsd-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-arm-gnueabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-arm-musleabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-arm64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-arm64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-ppc64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-riscv64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-riscv64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-s390x-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-x64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-x64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-openharmony-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-wasm32-wasi](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-win32-arm64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-win32-ia32-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-win32-x64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-android-arm-eabi](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-android-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-darwin-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-darwin-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-freebsd-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-arm-gnueabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-arm-musleabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-arm64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-arm64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-ppc64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-riscv64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-riscv64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-s390x-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-x64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-x64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-openharmony-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-wasm32-wasi](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-win32-arm64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-win32-ia32-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-win32-x64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-project/types](https://github.com/oxc-project/oxc/tree/HEAD/npm/oxc-types) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-android-arm-eabi](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-android-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-darwin-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-darwin-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-freebsd-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-arm-gnueabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-arm-musleabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-arm64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-arm64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-ppc64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-riscv64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-riscv64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-s390x-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-x64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-x64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-openharmony-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-wasm32-wasi](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-win32-arm64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-win32-ia32-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-win32-x64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@poppinss/dumper](https://github.com/poppinss/dumper) | `0.6.5` | `0.7.0` |\n| [@redis/bloom](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/client](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/json](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/search](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/time-series](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@rolldown/pluginutils](https://github.com/rolldown/rolldown/tree/HEAD/packages/pluginutils) | `1.0.0-rc.2` | `1.0.0-rc.13` |\n| [@rollup/plugin-commonjs](https://github.com/rollup/plugins/tree/HEAD/packages/commonjs) | `29.0.0` | `29.0.2` |\n| [@rollup/plugin-terser](https://github.com/rollup/plugins/tree/HEAD/packages/terser) | `0.4.4` | `1.0.0` |\n| [@rollup/rollup-android-arm-eabi](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-android-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-darwin-x64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-freebsd-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-freebsd-x64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm-gnueabihf](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm-musleabihf](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-loong64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-loong64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-ppc64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-ppc64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-riscv64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-riscv64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-s390x-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-x64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-openbsd-x64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-openharmony-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-arm64-msvc](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-ia32-msvc](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-x64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-x64-msvc](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@speed-highlight/core](https://github.com/speed-highlight/core) | `1.2.14` | `1.2.15` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.2.2` | `25.6.0` |\n| [@types/qs](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/qs) | `6.14.0` | `6.15.0` |\n| [@unhead/vue](https://github.com/unjs/unhead/tree/HEAD/packages/vue) | `2.1.4` | `2.1.13` |\n| [@vercel/nft](https://github.com/vercel/nft) | `1.3.0` | `1.5.0` |\n| [@vitejs/plugin-vue](https://github.com/vitejs/vite-plugin-vue/tree/HEAD/packages/plugin-vue) | `6.0.4` | `6.0.6` |\n| [@vitejs/plugin-vue-jsx](https://github.com/vitejs/vite-plugin-vue/tree/HEAD/packages/plugin-vue-jsx) | `5.1.4` | `5.1.5` |\n| [unplugin-utils](https://github.com/sxzz/unplugin-utils) | `0.2.5` | `0.3.1` |\n| [@vue/compiler-core](https://github.com/vuejs/core/tree/HEAD/packages/compiler-core) | `3.5.28` | `3.5.33` |\n| [@vue/compiler-dom](https://github.com/vuejs/core/tree/HEAD/packages/compiler-dom) | `3.5.28` | `3.5.33` |\n| [@vue/compiler-sfc](https://github.com/vuejs/core/tree/HEAD/packages/compiler-sfc) | `3.5.28` | `3.5.33` |\n| [@vue/compiler-ssr](https://github.com/vuejs/core/tree/HEAD/packages/compiler-ssr) | `3.5.28` | `3.5.33` |\n| [@vue/devtools-core](https://github.com/vuejs/devtools/tree/HEAD/packages/core) | `8.0.6` | `8.1.1` |\n| [@vue/devtools-kit](https://github.com/vuejs/devtools/tree/HEAD/packages/devtools-kit) | `8.0.6` | `8.1.1` |\n| [@vue/devtools-shared](https://github.com/vuejs/devtools/tree/HEAD/packages/shared) | `8.0.6` | `8.1.1` |\n| [@vue/reactivity](https://github.com/vuejs/core/tree/HEAD/packages/reactivity) | `3.5.28` | `3.5.33` |\n| [@vue/runtime-core](https://github.com/vuejs/core/tree/HEAD/packages/runtime-core) | `3.5.28` | `3.5.33` |\n| [@vue/runtime-dom](https://github.com/vuejs/core/tree/HEAD/packages/runtime-dom) | `3.5.28` | `3.5.33` |\n| [@vue/server-renderer](https://github.com/vuejs/core/tree/HEAD/packages/server-renderer) | `3.5.28` | `3.5.33` |\n| [@vue/shared](https://github.com/vuejs/core/tree/HEAD/packages/shared) | `3.5.28` | `3.5.33` |\n| [acorn](https://github.com/acornjs/acorn) | `8.15.0` | `8.16.0` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [autoprefixer](https://github.com/postcss/autoprefixer) | `10.4.24` | `10.5.0` |\n| [b4a](https://github.com/holepunchto/b4a) | `1.7.3` | `1.8.1` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.9.19` | `2.10.25` |\n| [bezier-easing](https://github.com/gre/bezier-easing) | `2.1.0` | `3.0.0` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.14` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [rc9](https://github.com/unjs/rc9) | `2.1.2` | `3.0.1` |\n| [caniuse-lite](https://github.com/browserslist/caniuse-lite) | `1.0.30001769` | `1.0.30001791` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `1.2.2` | `1.2.3` |\n| [core-js](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js) | `3.48.0` | `3.49.0` |\n| [croner](https://github.com/hexagon/croner) | `9.1.0` | `10.0.1` |\n| [css-declaration-sorter](https://github.com/Siilwyn/css-declaration-sorter) | `7.3.1` | `7.4.0` |\n| [cssnano](https://github.com/cssnano/cssnano) | `7.1.2` | `7.1.7` |\n| [cssnano-preset-default](https://github.com/cssnano/cssnano) | `7.0.10` | `7.0.15` |\n| [cssnano-utils](https://github.com/cssnano/cssnano) | `5.0.1` | `5.0.2` |\n| [define-lazy-prop](https://github.com/sindresorhus/define-lazy-prop) | `2.0.0` | `3.0.0` |\n| [defu](https://github.com/unjs/defu) | `6.1.4` | `6.1.7` |\n| [devalue](https://github.com/sveltejs/devalue) | `5.6.2` | `5.8.0` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.3` | `8.0.4` |\n| [dompurify](https://github.com/cure53/DOMPurify) | `3.3.1` | `3.4.2` |\n| [electron-to-chromium](https://github.com/Kilian/electron-to-chromium) | `1.5.286` | `1.5.349` |\n| [es-module-lexer](https://github.com/guybedford/es-module-lexer) | `2.0.0` | `2.1.0` |\n| [fast-npm-meta](https://github.com/antfu/fast-npm-meta) | `0.4.8` | `1.5.1` |\n| [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.15.11` | `1.16.0` |\n| [fuse.js](https://github.com/krisk/Fuse) | `7.1.0` | `7.3.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.14.0` |\n| [globby](https://github.com/sindresorhus/globby) | `16.1.0` | `16.2.0` |\n| [h3](https://github.com/h3js/h3) | `1.15.5` | `1.15.11` |\n| [hasown](https://github.com/inspect-js/hasOwn) | `2.0.2` | `2.0.3` |\n| [httpxy](https://github.com/unjs/httpxy) | `0.1.7` | `0.5.1` |\n| [impound](https://github.com/unjs/impound) | `1.0.0` | `1.1.5` |\n| [ioredis](https://github.com/luin/ioredis) | `5.9.2` | `5.10.1` |\n| [jsonfile](https://github.com/jprichardson/node-jsonfile) | `6.2.0` | `6.2.1` |\n| [koa](https://github.com/koajs/koa) | `2.16.3` | `2.16.4` |\n| [launch-editor](https://github.com/yyx990803/launch-editor) | `2.12.0` | `2.13.2` |\n| [listhen](https://github.com/unjs/listhen) | `1.9.0` | `1.10.0` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [minipass](https://github.com/isaacs/minipass) | `7.1.2` | `7.1.3` |\n| [mlly](https://github.com/unjs/mlly) | `1.8.0` | `1.8.2` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.11` | `3.3.12` |\n| [nanotar](https://github.com/unjs/nanotar) | `0.2.0` | `0.3.0` |\n| [nitropack](https://github.com/nitrojs/nitro) | `2.13.1` | `2.13.4` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.3` | `1.4.0` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.27` | `2.0.38` |\n| [nypm](https://github.com/unjs/nypm) | `0.6.5` | `0.6.6` |\n| [oxc-minify](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [oxc-parser](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [oxc-transform](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [pg-protocol](https://github.com/brianc/node-postgres/tree/HEAD/packages/pg-protocol) | `1.11.0` | `1.13.0` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.6` | `8.5.13` |\n| [postcss-colormin](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.9` |\n| [postcss-convert-values](https://github.com/cssnano/cssnano) | `7.0.8` | `7.0.11` |\n| [postcss-discard-comments](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.7` |\n| [postcss-discard-duplicates](https://github.com/cssnano/cssnano) | `7.0.2` | `7.0.3` |\n| [postcss-discard-empty](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-discard-overridden](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-merge-longhand](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.6` |\n| [postcss-merge-rules](https://github.com/cssnano/cssnano) | `7.0.7` | `7.0.10` |\n| [postcss-minify-font-values](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-minify-gradients](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.4` |\n| [postcss-minify-params](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.8` |\n| [postcss-minify-selectors](https://github.com/cssnano/cssnano) | `7.0.5` | `7.1.0` |\n| [postcss-normalize-charset](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-display-values](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-positions](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.3` |\n| [postcss-normalize-repeat-style](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.3` |\n| [postcss-normalize-string](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-timing-functions](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-unicode](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.8` |\n| [postcss-normalize-url](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-whitespace](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-ordered-values](https://github.com/cssnano/cssnano) | `7.0.2` | `7.0.3` |\n| [postcss-reduce-initial](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.8` |\n| [postcss-reduce-transforms](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-svgo](https://github.com/cssnano/cssnano) | `7.1.0` | `7.1.2` |\n| [postcss-unique-selectors](https://github.com/cssnano/cssnano) | `7.0.4` | `7.0.6` |\n| [proxy-from-env](https://github.com/Rob--W/proxy-from-env) | `1.1.0` | `2.1.0` |\n| [qs](https://github.com/ljharb/qs) | `6.14.1` | `6.15.1` |\n| [resolve](https://github.com/browserify/resolve) | `1.22.11` | `1.22.12` |\n| [rollup](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [rollup-plugin-visualizer](https://github.com/btd/rollup-plugin-visualizer) | `6.0.5` | `7.0.1` |\n| [rou3](https://github.com/h3js/rou3) | `0.7.12` | `0.8.1` |\n| [sax](https://github.com/isaacs/sax-js) | `1.4.4` | `1.6.0` |\n| [serialize-javascript](https://github.com/yahoo/serialize-javascript) | `6.0.2` | `7.0.5` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.0` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [signal-exit](https://github.com/tapjs/signal-exit) | `4.1.0` | `3.0.7` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.30.0` | `3.36.0` |\n| [smob](https://github.com/Tada5hi/smob) | `1.5.0` | `1.6.1` |\n| [srvx](https://github.com/h3js/srvx) | `0.11.2` | `0.11.15` |\n| [std-env](https://github.com/unjs/std-env) | `3.10.0` | `4.1.0` |\n| [streamx](https://github.com/mafintosh/streamx) | `2.23.0` | `2.25.0` |\n| [structured-clone-es](https://github.com/antfu-collective/structured-clone-es) | `1.0.0` | `2.0.0` |\n| [stylehacks](https://github.com/cssnano/cssnano) | `7.0.7` | `7.0.10` |\n| [svgo](https://github.com/svg/svgo) | `4.0.0` | `4.0.1` |\n| [tar](https://github.com/isaacs/node-tar) | `7.5.7` | `7.5.13` |\n| [tar-stream](https://github.com/mafintosh/tar-stream) | `3.1.7` | `3.2.0` |\n| [terser](https://github.com/terser/terser) | `5.46.0` | `5.46.2` |\n| [text-decoder](https://github.com/holepunchto/text-decoder) | `1.2.3` | `1.2.7` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.2` | `1.1.2` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [type-fest](https://github.com/sindresorhus/type-fest) | `5.4.4` | `5.6.0` |\n| [ufo](https://github.com/unjs/ufo) | `1.6.3` | `1.6.4` |\n| [undici-types](https://github.com/nodejs/undici) | `7.16.0` | `7.19.2` |\n| [unhead](https://github.com/unjs/unhead/tree/HEAD/packages/unhead) | `2.1.4` | `2.1.13` |\n| [unimport](https://github.com/unjs/unimport) | `5.6.0` | `6.2.0` |\n| [unstorage](https://github.com/unjs/unstorage) | `1.17.4` | `1.17.5` |\n| [uqr](https://github.com/unjs/uqr) | `0.1.2` | `0.1.3` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.2` |\n| [vite-hot-client](https://github.com/antfu/vite-hot-client) | `2.1.0` | `2.2.0` |\n| [vite-plugin-checker](https://github.com/fi3ework/vite-plugin-checker) | `0.12.0` | `0.13.0` |\n| [vite-plugin-vue-tracer](https://github.com/antfu/vite-plugin-vue-tracer) | `1.2.0` | `1.3.0` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |\n| [youch](https://github.com/poppinss/youch) | `4.1.0-beta.13` | `4.1.1` |\n\nUpdates `@applemusic-like-lyrics/core` from 0.2.0 to 0.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e@​applemusic-like-lyrics/core's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/blob/main/packages/core/CHANGELOG.md\"\u003e@​applemusic-like-lyrics/core's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.2 (2026-05-01)\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efeat(core):\u003c/strong\u003e 平衡行长度时优先在标点处换行 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/503\"\u003e#503\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix:\u003c/strong\u003e 修复背景行注音高度错误 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/497\"\u003e#497\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix(core):\u003c/strong\u003e 修正平衡行长度时的行宽度计算 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/502\"\u003e#502\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.1 (2026-04-23)\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix:\u003c/strong\u003e 在各绑定中暴露歌词优化选项 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix(vue):\u003c/strong\u003e 修复掩码模式错误的类型 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/496\"\u003e#496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erefactor(core):\u003c/strong\u003e 重构平均行长度实现 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/494\"\u003e#494\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.0 (2026-04-14)\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 移除 canvas 歌词渲染器 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erefactor:\u003c/strong\u003e 重构核心库测试组织模式 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/3db83c93\"\u003e3db83c93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e 修正 optimize-lyric.ts 和 OptimizeLyricOptions 里 cleanUnintentionalOverlaps 的文档和注释 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/75a8c0bb\"\u003e75a8c0bb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 更换工具链 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho \u003ca href=\"https://github.com/Linho1219\"\u003e\u003ccode\u003e@​Linho1219\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMoYingJi \u003ca href=\"https://github.com/MoYingJi\"\u003e\u003ccode\u003e@​MoYingJi\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ab07d7205dd43bf3a0523eaeed9bd8ce589b9199\"\u003e\u003ccode\u003eab07d72\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5c5b2335329d53b326eb842373926ac4011b2029\"\u003e\u003ccode\u003e5c5b233\u003c/code\u003e\u003c/a\u003e feat(core): 平衡行长度时优先在标点处换行 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/503\"\u003e#503\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/b422aeb0093bde58f9ae4947e77ceb683354184b\"\u003e\u003ccode\u003eb422aeb\u003c/code\u003e\u003c/a\u003e fix(core): 修正平衡行长度时的行宽度计算 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/502\"\u003e#502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/c847a6ced40e386bc706bd374913b28877ba3f7d\"\u003e\u003ccode\u003ec847a6c\u003c/code\u003e\u003c/a\u003e fix: 修复背景行注音高度错误 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/497\"\u003e#497\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/48ec944509271f9eebf5a45433645f5296c41584\"\u003e\u003ccode\u003e48ec944\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/b04ada8c5d5d44b8a6c0a063a9b795c3a62e11ea\"\u003e\u003ccode\u003eb04ada8\u003c/code\u003e\u003c/a\u003e refactor(core): 重构平均行长度实现 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/494\"\u003e#494\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5453754f327eab8a285af4a9a3b44fd808ea19ae\"\u003e\u003ccode\u003e5453754\u003c/code\u003e\u003c/a\u003e ci: 调整 changelog 格式与若干 CI 行为 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/491\"\u003e#491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/802d7ec3e38551cbdbf18a778e88f36604a83387\"\u003e\u003ccode\u003e802d7ec\u003c/code\u003e\u003c/a\u003e chore: 移除各包目录下残留的 typedoc 并更新 Nx 配置 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/486\"\u003e#486\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ef837385e99b16d46e4fddadd26aa756ba10231c\"\u003e\u003ccode\u003eef83738\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/aa845765f3fbc15df6d3ede5129a2a0e303da910\"\u003e\u003ccode\u003eaa84576\u003c/code\u003e\u003c/a\u003e chore: 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.4.2/packages/core\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/core\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/lyric` from 0.3.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e@​applemusic-like-lyrics/lyric's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/2fc5d2e19d7a2ce70501a347dec4f5f4f90fbfe2\"\u003e\u003ccode\u003e2fc5d2e\u003c/code\u003e\u003c/a\u003e fix: lyric 包 rust 侧适配 romanWord 可选\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/d862271aa1396b19b9a8bb4d8cd484a0df366270\"\u003e\u003ccode\u003ed862271\u003c/code\u003e\u003c/a\u003e fix: 修复 lyric 包 romanWord 类型\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/@applemusic-like-lyrics/lyric@0.4.1/packages/lyric\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/vue` from 0.2.0 to 0.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e@​applemusic-like-lyrics/vue's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/blob/main/packages/vue/CHANGELOG.md\"\u003e@​applemusic-like-lyrics/vue's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.2 (2026-05-01)\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efeat(core):\u003c/strong\u003e 平衡行长度时优先在标点处换行 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/503\"\u003e#503\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix:\u003c/strong\u003e 修复背景行注音高度错误 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/497\"\u003e#497\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix(core):\u003c/strong\u003e 修正平衡行长度时的行宽度计算 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/502\"\u003e#502\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.1 (2026-04-23)\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix:\u003c/strong\u003e 在各绑定中暴露歌词优化选项 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix(vue):\u003c/strong\u003e 修复掩码模式错误的类型 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/496\"\u003e#496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erefactor(core):\u003c/strong\u003e 重构平均行长度实现 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/494\"\u003e#494\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.0 (2026-04-14)\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 移除 canvas 歌词渲染器 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erefactor:\u003c/strong\u003e 重构核心库测试组织模式 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/3db83c93\"\u003e3db83c93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e 修正 optimize-lyric.ts 和 OptimizeLyricOptions 里 cleanUnintentionalOverlaps 的文档和注释 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/75a8c0bb\"\u003e75a8c0bb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 更换工具链 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho \u003ca href=\"https://github.com/Linho1219\"\u003e\u003ccode\u003e@​Linho1219\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMoYingJi \u003ca href=\"https://github.com/MoYingJi\"\u003e\u003ccode\u003e@​MoYingJi\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ab07d7205dd43bf3a0523eaeed9bd8ce589b9199\"\u003e\u003ccode\u003eab07d72\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/48ec944509271f9eebf5a45433645f5296c41584\"\u003e\u003ccode\u003e48ec944\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/de5c5705666f6d2ebeafb987372564155ba9e036\"\u003e\u003ccode\u003ede5c570\u003c/code\u003e\u003c/a\u003e fix(vue): 修复掩码模式错误的类型 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/496\"\u003e#496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/f1c8309d314640893a3141c2a9eb6b04e428e874\"\u003e\u003ccode\u003ef1c8309\u003c/code\u003e\u003c/a\u003e build: 内联 CSS 中的 url (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/493\"\u003e#493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5cee8f65599cf87dab868602112939b4b6bfc903\"\u003e\u003ccode\u003e5cee8f6\u003c/code\u003e\u003c/a\u003e fix: 在各绑定中暴露歌词优化选项 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5453754f327eab8a285af4a9a3b44fd808ea19ae\"\u003e\u003ccode\u003e5453754\u003c/code\u003e\u003c/a\u003e ci: 调整 changelog 格式与若干 CI 行为 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/491\"\u003e#491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ef837385e99b16d46e4fddadd26aa756ba10231c\"\u003e\u003ccode\u003eef83738\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/aa845765f3fbc15df6d3ede5129a2a0e303da910\"\u003e\u003ccode\u003eaa84576\u003c/code\u003e\u003c/a\u003e chore: 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/bf4e41b4f8bac3610e17aa03fbfde7c11b1f730b\"\u003e\u003ccode\u003ebf4e41b\u003c/code\u003e\u003c/a\u003e 更换各个工具链 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/98b80b2b3a32dc09dfaf24cc9ba7f4797b2d3a1f\"\u003e\u003ccode\u003e98b80b2\u003c/code\u003e\u003c/a\u003e chore: 统一 TS 配置\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.4.2/packages/vue\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@types/pg` from 8.16.0 to 8.20.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/pg\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.5 to 1.15.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.2\u003c/h2\u003e\n\u003cp\u003eThis release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Hardening (HTTP Adapter):\u003c/strong\u003e Hardened the Node HTTP adapter and \u003ccode\u003eresolveConfig\u003c/code\u003e/\u003ccode\u003emergeConfig\u003c/code\u003e/validator paths to read only own properties and use null-prototype config objects, preventing polluted \u003ccode\u003eauth\u003c/code\u003e, \u003ccode\u003ebaseURL\u003c/code\u003e, \u003ccode\u003esocketPath\u003c/code\u003e, \u003ccode\u003ebeforeRedirect\u003c/code\u003e, and \u003ccode\u003einsecureHTTPParser\u003c/code\u003e from influencing requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSSRF via \u003ccode\u003esocketPath\u003c/code\u003e:\u003c/strong\u003e Rejects non-string \u003ccode\u003esocketPath\u003c/code\u003e values and adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e config option to restrict permitted Unix domain socket paths, returning \u003ccode\u003eAxiosError\u003c/code\u003e \u003ccode\u003eERR_BAD_OPTION_VALUE\u003c/code\u003e on mismatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSupply-chain Hardening:\u003c/strong\u003e Added \u003ccode\u003e.npmrc\u003c/code\u003e with \u003ccode\u003eignore-scripts=true\u003c/code\u003e, lockfile lint CI, non-blocking reproducible build diff, scoped CODEOWNERS, expanded \u003ccode\u003eSECURITY.md\u003c/code\u003e/\u003ccode\u003eTHREATMODEL.md\u003c/code\u003e with provenance verification (\u003ccode\u003enpm audit signatures\u003c/code\u003e), 60-day resolution policy, and maintainer incident-response runbook. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eallowedSocketPaths\u003c/code\u003e Config Option:\u003c/strong\u003e New request config option (and TypeScript types) to allowlist Unix domain socket paths used by the Node http adapter; backwards compatible when unset. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eKeep-alive Socket Memory Leak:\u003c/strong\u003e Installs a single per-socket \u003ccode\u003eerror\u003c/code\u003e listener tracking the active request via \u003ccode\u003ekAxiosSocketListener\u003c/code\u003e/\u003ccode\u003ekAxiosCurrentReq\u003c/code\u003e, eliminating per-request listener accumulation, \u003ccode\u003eMaxListenersExceededWarning\u003c/code\u003e, and linear heap growth under concurrent or long-running keep-alive workloads (fixes \u003ca href=\"https://redirect.github.com/axios/axios/issues/10780\"\u003e#10780\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eChangelog:\u003c/strong\u003e Updated \u003ccode\u003eCHANGELOG.md\u003c/code\u003e with v1.15.1 release notes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.15.1...v1.15.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.15.1\u003c/h2\u003e\n\u003cp\u003eThis release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeader Injection Hardening:\u003c/strong\u003e Tightened validation and sanitisation across request header construction to close the header-injection attack surface. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10749\"\u003e#10749\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCRLF Stripping in Multipart Headers:\u003c/strong\u003e Correctly strips CR/LF from multipart header values to prevent injection via field names and filenames. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10758\"\u003e#10758\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution / Auth Bypass:\u003c/strong\u003e Replaced unsafe \u003ccode\u003ein\u003c/code\u003e checks with \u003ccode\u003ehasOwnProperty\u003c/code\u003e to prevent authentication bypass via prototype pollution on config objects, with additional regression tests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10761\"\u003e#10761\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10760\"\u003e#10760\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003ewithXSRFToken\u003c/code\u003e Truthy Bypass:\u003c/strong\u003e Short-circuits on any truthy non-boolean value, so an ambiguous config no longer silently leaks the XSRF token cross-origin. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003emaxBodyLength\u003c/code\u003e With Zero Redirects:\u003c/strong\u003e Enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e even when \u003ccode\u003emaxRedirects\u003c/code\u003e is set to \u003ccode\u003e0\u003c/code\u003e, closing a bypass path for oversized request bodies. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10753\"\u003e#10753\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eStreamed Response \u003ccode\u003emaxContentLength\u003c/code\u003e Bypass:\u003c/strong\u003e Applies \u003ccode\u003emaxContentLength\u003c/code\u003e to streamed responses that previously bypassed the cap. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10754\"\u003e#10754\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFollow-up CVE Completion:\u003c/strong\u003e Completes an earlier incomplete CVE fix to fully close the regression window. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10755\"\u003e#10755\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAI-Based Docs Translations:\u003c/strong\u003e Initial scaffold for AI-assisted translations of the documentation site. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10705\"\u003e#10705\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eLocation\u003c/code\u003e Request Header Type:\u003c/strong\u003e Adds \u003ccode\u003eLocation\u003c/code\u003e to \u003ccode\u003eCommonRequestHeadersList\u003c/code\u003e for accurate typing of redirect-aware requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7528\"\u003e#7528\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFormData Handling:\u003c/strong\u003e Removes \u003ccode\u003eContent-Type\u003c/code\u003e when no boundary is present on \u003ccode\u003eFormData\u003c/code\u003e fetch requests, supports multi-select fields, cancels \u003ccode\u003erequest.body\u003c/code\u003e instead of the source stream on fetch abort, and fixes a recursion bug in form-data serialisation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7314\"\u003e#7314\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10676\"\u003e#10676\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10702\"\u003e#10702\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10726\"\u003e#10726\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter:\u003c/strong\u003e Handles socket-only request errors without leaking keep-alive listeners. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10576\"\u003e#10576\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProgress Events:\u003c/strong\u003e Clamps \u003ccode\u003eloaded\u003c/code\u003e to \u003ccode\u003etotal\u003c/code\u003e for computable upload/download progress events. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7458\"\u003e#7458\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes:\u003c/strong\u003e Aligns \u003ccode\u003erunWhen\u003c/code\u003e type with the runtime behaviour in \u003ccode\u003eInterceptorManager\u003c/code\u003e and makes response header keys case-insensitive. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7529\"\u003e#7529\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10677\"\u003e#10677\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003ebuildFullPath\u003c/code\u003e:\u003c/strong\u003e Uses strict equality in the base/relative URL check. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7252\"\u003e#7252\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eAxiosURLSearchParams\u003c/code\u003e Regex:\u003c/strong\u003e Improves the regex used for param serialisation to avoid edge-case mismatches. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10736\"\u003e#10736\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eResilient Value Parsing:\u003c/strong\u003e Parses out header/config values instead of throwing on malformed input. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10687\"\u003e#10687\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.2 - April 21, 2026\u003c/h2\u003e\n\u003cp\u003eThis release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Hardening (HTTP Adapter):\u003c/strong\u003e Hardened the Node HTTP adapter and \u003ccode\u003eresolveConfig\u003c/code\u003e/\u003ccode\u003emergeConfig\u003c/code\u003e/validator paths to read only own properties and use null-prototype config objects, preventing polluted \u003ccode\u003eauth\u003c/code\u003e, \u003ccode\u003ebaseURL\u003c/code\u003e, \u003ccode\u003esocketPath\u003c/code\u003e, \u003ccode\u003ebeforeRedirect\u003c/code\u003e, and \u003ccode\u003einsecureHTTPParser\u003c/code\u003e from influencing requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSSRF via \u003ccode\u003esocketPath\u003c/code\u003e:\u003c/strong\u003e Rejects non-string \u003ccode\u003esocketPath\u003c/code\u003e values and adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e config option to restrict permitted Unix domain socket paths, returning \u003ccode\u003eAxiosError\u003c/code\u003e \u003ccode\u003eERR_BAD_OPTION_VALUE\u003c/code\u003e on mismatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSupply-chain Hardening:\u003c/strong\u003e Added \u003ccode\u003e.npmrc\u003c/code\u003e with \u003ccode\u003eignore-scripts=true\u003c/code\u003e, lockfile lint CI, non-blocking reproducible build diff, scoped CODEOWNERS, expanded \u003ccode\u003eSECURITY.md\u003c/code\u003e/\u003ccode\u003eTHREATMODEL.md\u003c/code\u003e with provenance verification (\u003ccode\u003enpm audit signatures\u003c/code\u003e), 60-day resolution policy, and maintainer incident-response runbook. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eallowedSocketPaths\u003c/code\u003e Config Option:\u003c/strong\u003e New request config option (and TypeScript types) to allowlist Unix domain socket paths used by the Node http adapter; backwards compatible when unset. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eKeep-alive Socket Memory Leak:\u003c/strong\u003e Installs a single per-socket \u003ccode\u003eerror\u003c/code\u003e listener tracking the active request via \u003ccode\u003ekAxiosSocketListener\u003c/code\u003e/\u003ccode\u003ekAxiosCurrentReq\u003c/code\u003e, eliminating per-request listener accumulation, \u003ccode\u003eMaxListenersExceededWarning\u003c/code\u003e, and linear heap growth under concurrent or long-running keep-alive workloads (fixes \u003ca href=\"https://redirect.github.com/axios/axios/issues/10780\"\u003e#10780\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eChangelog:\u003c/strong\u003e Updated \u003ccode\u003eCHANGELOG.md\u003c/code\u003e with v1.15.1 release notes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.15.1...v1.15.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003chr /\u003e\n\u003ch2\u003ev1.15.1 - April 19, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eHeader Injection Hardening:\u003c/strong\u003e Tightened validation and sanitisation across request header construction to close the header-injection attack surface. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10749\"\u003e#10749\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eCRLF Stripping in Multipart Headers:\u003c/strong\u003e Correctly strips CR/LF from multipart header values to prevent injection via field names and filenames. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10758\"\u003e#10758\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ePrototype Pollution / Auth Bypass:\u003c/strong\u003e Replaced unsafe \u003ccode\u003ein\u003c/code\u003e checks with \u003ccode\u003ehasOwnProperty\u003c/code\u003e to prevent authentication bypass via prototype pollution on config objects, with additional regression tests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10761\"\u003e#10761\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10760\"\u003e#10760\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ewithXSRFToken\u003c/code\u003e Truthy Bypass:\u003c/strong\u003e Short-circuits on any truthy non-boolean value, so an ambiguous config no longer silently leaks the XSRF token cross-origin. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003emaxBodyLength\u003c/code\u003e With Zero Redirects:\u003c/strong\u003e Enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e even when \u003ccode\u003emaxRedirects\u003c/code\u003e is set to \u003ccode\u003e0\u003c/code\u003e, closing a bypass path for oversized request bodies. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10753\"\u003e#10753\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eStreamed Response \u003ccode\u003emaxContentLength\u003c/code\u003e Bypass:\u003c/strong\u003e Applies \u003ccode\u003emaxContentLength\u003c/code\u003e to streamed responses that previously bypassed the cap. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10754\"\u003e#10754\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eFollow-up CVE Completion:\u003c/strong\u003e Completes an earlier incomplete CVE fix to fully close the regression window. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10755\"\u003e#10755\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAI-Based Docs Translations:\u003c/strong\u003e Initial scaffold for AI-assisted translations of the documentation site. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10705\"\u003e#10705\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/582934382e4e0e0bcb679c628071a4203e93cf57\"\u003e\u003ccode\u003e5829343\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.2 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10789\"\u003e#10789\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4709a48fa2717ba97f43f5432d48ca4e26c2d326\"\u003e\u003ccode\u003e4709a48\u003c/code\u003e\u003c/a\u003e fix: added fix for memory leak in sockets (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/be3336014e01f9a4fc1f8aef15303cf7daaf58db\"\u003e\u003ccode\u003ebe33360\u003c/code\u003e\u003c/a\u003e chore: update changelog (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa\"\u003e\u003ccode\u003e4791514\u003c/code\u003e\u003c/a\u003e fix: more header pollutions (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/6feafcff6c2dbafe206161c5d09e38e1d36af66f\"\u003e\u003ccode\u003e6feafcf\u003c/code\u003e\u003c/a\u003e fix: socket issue (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/302e2739c602f00e323d4f3f5c79500647633a73\"\u003e\u003ccode\u003e302e273\u003c/code\u003e\u003c/a\u003e docs: update docs, add a couple actions etc (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ac42446be51300fe214ba3c6e40cc95f34fd6871\"\u003e\u003ccode\u003eac42446\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.1 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10767\"\u003e#10767\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/908f2206b6bfeff67236784abce85935698ac1d9\"\u003e\u003ccode\u003e908f220\u003c/code\u003e\u003c/a\u003e docs: update threatmodel (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10765\"\u003e#10765\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f93f8155250c2e066205521eda05ae22983a1f6d\"\u003e\u003ccode\u003ef93f815\u003c/code\u003e\u003c/a\u003e docs: added docs around potential decompressions bomb (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10763\"\u003e#10763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/1728aa1b15b8857f970611fd8983c06b423fc486\"\u003e\u003ccode\u003e1728aa1\u003c/code\u003e\u003c/a\u003e fix: short-circuits on any truthy non-boolean in withXSRFToken (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.5...v1.15.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eTh...\n\n_Description has been truncated_","html_url":"https://github.com/weiyb852/VoiceHub-93b43/pull/13","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/weiyb852%2FVoiceHub-93b43/issues/13","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13/packages"},{"uuid":"4326652390","node_id":"PR_kwDOROmGHM7Vhg6o","number":12,"state":"open","title":"chore(deps): bump the npm-minor-patch group with 266 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-25T01:57:32.000Z","updated_at":"2026-04-25T01:57:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm-minor-patch","update_count":266,"packages":[{"name":"@applemusic-like-lyrics/core","old_version":"0.2.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/lyric","old_version":"0.3.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/vue","old_version":"0.2.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@types/pg","old_version":"8.16.0","new_version":"8.20.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"axios","old_version":"1.13.5","new_version":"1.15.2","repository_url":"https://github.com/axios/axios"},{"name":"dayjs","old_version":"1.11.19","new_version":"1.11.20","repository_url":"https://github.com/iamkun/dayjs"},{"name":"dotenv","old_version":"17.2.4","new_version":"17.4.2","repository_url":"https://github.com/motdotla/dotenv"},{"name":"drizzle-kit","old_version":"0.31.9","new_version":"0.31.10","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"drizzle-orm","old_version":"0.45.1","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"lucide-vue-next","old_version":"0.563.0","new_version":"0.577.0","repository_url":"https://github.com/lucide-icons/lucide"},{"name":"multer","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/expressjs/multer"},{"name":"@types/multer","old_version":"2.0.0","new_version":"2.1.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"nuxt","old_version":"4.3.1","new_version":"4.4.2","repository_url":"https://github.com/nuxt/nuxt"},{"name":"postgres","old_version":"3.4.8","new_version":"3.4.9","repository_url":"https://github.com/porsager/postgres"},{"name":"redis","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"vite-plugin-wasm","old_version":"3.5.0","new_version":"3.6.0","repository_url":"https://github.com/Menci/vite-plugin-wasm"},{"name":"vue","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@babel/helpers","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/parser","old_version":"7.29.0","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/runtime","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@bomb.sh/tab","old_version":"0.0.12","new_version":"0.0.14","repository_url":"https://github.com/bombshell-dev/tab"},{"name":"@clack/core","old_version":"1.0.0","new_version":"1.2.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@clack/prompts","old_version":"1.0.0","new_version":"1.2.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@dxup/nuxt","old_version":"0.3.2","new_version":"0.4.1","repository_url":"https://github.com/KazariEX/dxup"},{"name":"@nuxt/kit","old_version":"3.21.1","new_version":"3.21.2","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@emnapi/core","old_version":"1.8.1","new_version":"1.10.0","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/runtime","old_version":"1.8.1","new_version":"1.10.0","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/wasi-threads","old_version":"1.1.0","new_version":"1.2.1","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@ioredis/commands","old_version":"1.5.0","new_version":"1.5.1","repository_url":"https://github.com/ioredis/commands"},{"name":"@napi-rs/wasm-runtime","old_version":"1.1.1","new_version":"1.1.4","repository_url":"https://github.com/napi-rs/napi-rs"},{"name":"@nuxt/cli","old_version":"3.33.1","new_version":"3.34.0","repository_url":"https://github.com/nuxt/cli"},{"name":"giget","old_version":"2.0.0","new_version":"3.2.0","repository_url":"https://github.com/unjs/giget"},{"name":"@nuxt/devtools","old_version":"3.1.1","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/devtools-kit","old_version":"3.1.1","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/devtools-wizard","old_version":"3.1.1","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/nitro-server","old_version":"4.3.1","new_version":"4.4.2","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@nuxt/schema","old_version":"4.3.1","new_version":"4.4.2","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@nuxt/telemetry","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nuxt/telemetry"},{"name":"@nuxt/vite-builder","old_version":"4.3.1","new_version":"4.4.2","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@oxc-minify/binding-android-arm-eabi","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-android-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-darwin-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-darwin-x64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-freebsd-x64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm-gnueabihf","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm-musleabihf","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-ppc64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-riscv64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-riscv64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-s390x-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-x64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-x64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-openharmony-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-wasm32-wasi","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-win32-arm64-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-win32-ia32-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-win32-x64-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-android-arm-eabi","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-android-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-darwin-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-darwin-x64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-freebsd-x64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm-gnueabihf","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm-musleabihf","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-ppc64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-riscv64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-riscv64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-s390x-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-x64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-x64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-openharmony-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-wasm32-wasi","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-win32-arm64-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-win32-ia32-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-win32-x64-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-project/types","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-android-arm-eabi","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-android-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-darwin-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-darwin-x64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-freebsd-x64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm-gnueabihf","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm-musleabihf","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-ppc64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-riscv64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-riscv64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-s390x-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-x64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-x64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-openharmony-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-wasm32-wasi","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-win32-arm64-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-win32-ia32-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-win32-x64-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@poppinss/dumper","old_version":"0.6.5","new_version":"0.7.0","repository_url":"https://github.com/poppinss/dumper"},{"name":"@redis/bloom","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/client","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/json","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/search","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/time-series","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@rolldown/pluginutils","old_version":"1.0.0-rc.2","new_version":"1.0.0-rc.13","repository_url":"https://github.com/rolldown/rolldown"},{"name":"@rollup/plugin-commonjs","old_version":"29.0.0","new_version":"29.0.2","repository_url":"https://github.com/rollup/plugins"},{"name":"@rollup/plugin-terser","old_version":"0.4.4","new_version":"1.0.0","repository_url":"https://github.com/rollup/plugins"},{"name":"@rollup/rollup-android-arm-eabi","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-android-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-darwin-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-darwin-x64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-freebsd-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-freebsd-x64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm-gnueabihf","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm-musleabihf","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-loong64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-loong64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-ppc64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-ppc64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-riscv64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-riscv64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-s390x-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-x64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-x64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-openbsd-x64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-openharmony-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-arm64-msvc","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-ia32-msvc","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-x64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-x64-msvc","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@speed-highlight/core","old_version":"1.2.14","new_version":"1.2.15","repository_url":"https://github.com/speed-highlight/core"},{"name":"@types/node","old_version":"25.2.2","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@types/qs","old_version":"6.14.0","new_version":"6.15.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@unhead/vue","old_version":"2.1.4","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"@vercel/nft","old_version":"1.3.0","new_version":"1.5.0","repository_url":"https://github.com/vercel/nft"},{"name":"@vitejs/plugin-vue","old_version":"6.0.4","new_version":"6.0.6","repository_url":"https://github.com/vitejs/vite-plugin-vue"},{"name":"@vitejs/plugin-vue-jsx","old_version":"5.1.4","new_version":"5.1.5","repository_url":"https://github.com/vitejs/vite-plugin-vue"},{"name":"unplugin-utils","old_version":"0.2.5","new_version":"0.3.1","repository_url":"https://github.com/sxzz/unplugin-utils"},{"name":"@vue/compiler-core","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/compiler-dom","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/compiler-sfc","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/compiler-ssr","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/devtools-core","old_version":"8.0.6","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"@vue/devtools-kit","old_version":"8.0.6","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"@vue/devtools-shared","old_version":"8.0.6","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"@vue/reactivity","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/runtime-core","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/runtime-dom","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/server-renderer","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/shared","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"acorn","old_version":"8.15.0","new_version":"8.16.0","repository_url":"https://github.com/acornjs/acorn"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"autoprefixer","old_version":"10.4.24","new_version":"10.5.0","repository_url":"https://github.com/postcss/autoprefixer"},{"name":"b4a","old_version":"1.7.3","new_version":"1.8.0","repository_url":"https://github.com/holepunchto/b4a"},{"name":"baseline-browser-mapping","old_version":"2.9.19","new_version":"2.10.21","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"bezier-easing","old_version":"2.1.0","new_version":"3.0.0","repository_url":"https://github.com/gre/bezier-easing"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"rc9","old_version":"2.1.2","new_version":"3.0.1","repository_url":"https://github.com/unjs/rc9"},{"name":"caniuse-lite","old_version":"1.0.30001769","new_version":"1.0.30001790","repository_url":"https://github.com/browserslist/caniuse-lite"},{"name":"cookie-es","old_version":"1.2.2","new_version":"1.2.3","repository_url":"https://github.com/unjs/cookie-es"},{"name":"core-js","old_version":"3.48.0","new_version":"3.49.0","repository_url":"https://github.com/zloirock/core-js"},{"name":"croner","old_version":"9.1.0","new_version":"10.0.1","repository_url":"https://github.com/hexagon/croner"},{"name":"css-declaration-sorter","old_version":"7.3.1","new_version":"7.4.0","repository_url":"https://github.com/Siilwyn/css-declaration-sorter"},{"name":"cssnano","old_version":"7.1.2","new_version":"7.1.7","repository_url":"https://github.com/cssnano/cssnano"},{"name":"cssnano-preset-default","old_version":"7.0.10","new_version":"7.0.15","repository_url":"https://github.com/cssnano/cssnano"},{"name":"cssnano-utils","old_version":"5.0.1","new_version":"5.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"define-lazy-prop","old_version":"2.0.0","new_version":"3.0.0","repository_url":"https://github.com/sindresorhus/define-lazy-prop"},{"name":"defu","old_version":"6.1.4","new_version":"6.1.7","repository_url":"https://github.com/unjs/defu"},{"name":"devalue","old_version":"5.6.2","new_version":"5.7.1","repository_url":"https://github.com/sveltejs/devalue"},{"name":"diff","old_version":"8.0.3","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"dompurify","old_version":"3.3.1","new_version":"3.4.1","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"electron-to-chromium","old_version":"1.5.286","new_version":"1.5.344","repository_url":"https://github.com/Kilian/electron-to-chromium"},{"name":"fast-npm-meta","old_version":"0.4.8","new_version":"1.5.0","repository_url":"https://github.com/antfu/fast-npm-meta"},{"name":"follow-redirects","old_version":"1.15.11","new_version":"1.16.0","repository_url":"https://github.com/follow-redirects/follow-redirects"},{"name":"fuse.js","old_version":"7.1.0","new_version":"7.3.0","repository_url":"https://github.com/krisk/Fuse"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.14.0","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"globby","old_version":"16.1.0","new_version":"16.2.0","repository_url":"https://github.com/sindresorhus/globby"},{"name":"h3","old_version":"1.15.5","new_version":"1.15.11","repository_url":"https://github.com/h3js/h3"},{"name":"hasown","old_version":"2.0.2","new_version":"2.0.3","repository_url":"https://github.com/inspect-js/hasOwn"},{"name":"httpxy","old_version":"0.1.7","new_version":"0.5.1","repository_url":"https://github.com/unjs/httpxy"},{"name":"impound","old_version":"1.0.0","new_version":"1.1.5","repository_url":"https://github.com/unjs/impound"},{"name":"ioredis","old_version":"5.9.2","new_version":"5.10.1","repository_url":"https://github.com/luin/ioredis"},{"name":"jsonfile","old_version":"6.2.0","new_version":"6.2.1","repository_url":"https://github.com/jprichardson/node-jsonfile"},{"name":"koa","old_version":"2.16.3","new_version":"2.16.4","repository_url":"https://github.com/koajs/koa"},{"name":"launch-editor","old_version":"2.12.0","new_version":"2.13.2","repository_url":"https://github.com/yyx990803/launch-editor"},{"name":"listhen","old_version":"1.9.0","new_version":"1.9.1","repository_url":"https://github.com/unjs/listhen"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"minipass","old_version":"7.1.2","new_version":"7.1.3","repository_url":"https://github.com/isaacs/minipass"},{"name":"mlly","old_version":"1.8.0","new_version":"1.8.2","repository_url":"https://github.com/unjs/mlly"},{"name":"nanotar","old_version":"0.2.0","new_version":"0.3.0","repository_url":"https://github.com/unjs/nanotar"},{"name":"nitropack","old_version":"2.13.1","new_version":"2.13.3","repository_url":"https://github.com/nitrojs/nitro"},{"name":"node-forge","old_version":"1.3.3","new_version":"1.4.0","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"node-releases","old_version":"2.0.27","new_version":"2.0.38","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"nypm","old_version":"0.6.5","new_version":"0.6.6","repository_url":"https://github.com/unjs/nypm"},{"name":"oxc-minify","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"oxc-parser","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"oxc-transform","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"pg-protocol","old_version":"1.11.0","new_version":"1.13.0","repository_url":"https://github.com/brianc/node-postgres"},{"name":"postcss","old_version":"8.5.6","new_version":"8.5.10","repository_url":"https://github.com/postcss/postcss"},{"name":"postcss-colormin","old_version":"7.0.5","new_version":"7.0.9","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-convert-values","old_version":"7.0.8","new_version":"7.0.11","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-comments","old_version":"7.0.5","new_version":"7.0.7","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-duplicates","old_version":"7.0.2","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-empty","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-overridden","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-merge-longhand","old_version":"7.0.5","new_version":"7.0.6","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-merge-rules","old_version":"7.0.7","new_version":"7.0.10","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-font-values","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-gradients","old_version":"7.0.1","new_version":"7.0.4","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-params","old_version":"7.0.5","new_version":"7.0.8","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-selectors","old_version":"7.0.5","new_version":"7.1.0","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-charset","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-display-values","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-positions","old_version":"7.0.1","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-repeat-style","old_version":"7.0.1","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-string","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-timing-functions","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-unicode","old_version":"7.0.5","new_version":"7.0.8","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-url","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-whitespace","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-ordered-values","old_version":"7.0.2","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-reduce-initial","old_version":"7.0.5","new_version":"7.0.8","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-reduce-transforms","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-svgo","old_version":"7.1.0","new_version":"7.1.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-unique-selectors","old_version":"7.0.4","new_version":"7.0.6","repository_url":"https://github.com/cssnano/cssnano"},{"name":"proxy-from-env","old_version":"1.1.0","new_version":"2.1.0","repository_url":"https://github.com/Rob--W/proxy-from-env"},{"name":"qs","old_version":"6.14.1","new_version":"6.15.1","repository_url":"https://github.com/ljharb/qs"},{"name":"resolve","old_version":"1.22.11","new_version":"1.22.12","repository_url":"https://github.com/browserify/resolve"},{"name":"rollup","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"rollup-plugin-visualizer","old_version":"6.0.5","new_version":"7.0.1","repository_url":"https://github.com/btd/rollup-plugin-visualizer"},{"name":"rou3","old_version":"0.7.12","new_version":"0.8.1","repository_url":"https://github.com/h3js/rou3"},{"name":"sax","old_version":"1.4.4","new_version":"1.6.0","repository_url":"https://github.com/isaacs/sax-js"},{"name":"serialize-javascript","old_version":"6.0.2","new_version":"7.0.5","repository_url":"https://github.com/yahoo/serialize-javascript"},{"name":"seroval","old_version":"1.5.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"simple-git","old_version":"3.30.0","new_version":"3.36.0","repository_url":"https://github.com/steveukx/git-js"},{"name":"smob","old_version":"1.5.0","new_version":"1.6.1","repository_url":"https://github.com/Tada5hi/smob"},{"name":"srvx","old_version":"0.11.2","new_version":"0.11.15","repository_url":"https://github.com/h3js/srvx"},{"name":"streamx","old_version":"2.23.0","new_version":"2.25.0","repository_url":"https://github.com/mafintosh/streamx"},{"name":"structured-clone-es","old_version":"1.0.0","new_version":"2.0.0","repository_url":"https://github.com/antfu-collective/structured-clone-es"},{"name":"stylehacks","old_version":"7.0.7","new_version":"7.0.10","repository_url":"https://github.com/cssnano/cssnano"},{"name":"svgo","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/svg/svgo"},{"name":"tar","old_version":"7.5.7","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"tar-stream","old_version":"3.1.7","new_version":"3.1.8","repository_url":"https://github.com/mafintosh/tar-stream"},{"name":"terser","old_version":"5.46.0","new_version":"5.46.2","repository_url":"https://github.com/terser/terser"},{"name":"text-decoder","old_version":"1.2.3","new_version":"1.2.7","repository_url":"https://github.com/holepunchto/text-decoder"},{"name":"tinyexec","old_version":"1.0.2","new_version":"1.1.1","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"type-fest","old_version":"5.4.4","new_version":"5.6.0","repository_url":"https://github.com/sindresorhus/type-fest"},{"name":"undici-types","old_version":"7.16.0","new_version":"7.19.2","repository_url":"https://github.com/nodejs/undici"},{"name":"unhead","old_version":"2.1.4","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"unimport","old_version":"5.6.0","new_version":"6.1.1","repository_url":"https://github.com/unjs/unimport"},{"name":"unstorage","old_version":"1.17.4","new_version":"1.17.5","repository_url":"https://github.com/unjs/unstorage"},{"name":"uqr","old_version":"0.1.2","new_version":"0.1.3","repository_url":"https://github.com/unjs/uqr"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"vite-plugin-vue-tracer","old_version":"1.2.0","new_version":"1.3.0","repository_url":"https://github.com/antfu/vite-plugin-vue-tracer"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.2","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"},{"name":"youch","old_version":"4.1.0-beta.13","new_version":"4.1.1","repository_url":"https://github.com/poppinss/youch"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-minor-patch group with 266 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@applemusic-like-lyrics/core](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core) | `0.2.0` | `0.4.1` |\n| [@applemusic-like-lyrics/lyric](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/lyric) | `0.3.0` | `0.4.1` |\n| [@applemusic-like-lyrics/vue](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue) | `0.2.0` | `0.4.1` |\n| [@types/pg](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/pg) | `8.16.0` | `8.20.0` |\n| [axios](https://github.com/axios/axios) | `1.13.5` | `1.15.2` |\n| [dayjs](https://github.com/iamkun/dayjs) | `1.11.19` | `1.11.20` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.2.4` | `17.4.2` |\n| [drizzle-kit](https://github.com/drizzle-team/drizzle-orm) | `0.31.9` | `0.31.10` |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.45.1` | `0.45.2` |\n| [lucide-vue-next](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-vue-next) | `0.563.0` | `0.577.0` |\n| [multer](https://github.com/expressjs/multer) | `2.0.2` | `2.1.1` |\n| [@types/multer](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/multer) | `2.0.0` | `2.1.0` |\n| [nuxt](https://github.com/nuxt/nuxt/tree/HEAD/packages/nuxt) | `4.3.1` | `4.4.2` |\n| [postgres](https://github.com/porsager/postgres) | `3.4.8` | `3.4.9` |\n| [redis](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [vite-plugin-wasm](https://github.com/Menci/vite-plugin-wasm) | `3.5.0` | `3.6.0` |\n| [vue](https://github.com/vuejs/core) | `3.5.28` | `3.5.33` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.28.6` | `7.29.2` |\n| [@babel/parser](https://github.com/babel/babel/tree/HEAD/packages/babel-parser) | `7.29.0` | `7.29.2` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.28.6` | `7.29.2` |\n| [@bomb.sh/tab](https://github.com/bombshell-dev/tab) | `0.0.12` | `0.0.14` |\n| [@clack/core](https://github.com/bombshell-dev/clack/tree/HEAD/packages/core) | `1.0.0` | `1.2.0` |\n| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.0.0` | `1.2.0` |\n| [@dxup/nuxt](https://github.com/KazariEX/dxup) | `0.3.2` | `0.4.1` |\n| [@nuxt/kit](https://github.com/nuxt/nuxt/tree/HEAD/packages/kit) | `3.21.1` | `3.21.2` |\n| [@emnapi/core](https://github.com/toyobayashi/emnapi) | `1.8.1` | `1.10.0` |\n| [@emnapi/runtime](https://github.com/toyobayashi/emnapi) | `1.8.1` | `1.10.0` |\n| [@emnapi/wasi-threads](https://github.com/toyobayashi/emnapi) | `1.1.0` | `1.2.1` |\n| [@ioredis/commands](https://github.com/ioredis/commands) | `1.5.0` | `1.5.1` |\n| [@napi-rs/wasm-runtime](https://github.com/napi-rs/napi-rs/tree/HEAD/wasm-runtime) | `1.1.1` | `1.1.4` |\n| [@nuxt/cli](https://github.com/nuxt/cli/tree/HEAD/packages/nuxt-cli) | `3.33.1` | `3.34.0` |\n| [giget](https://github.com/unjs/giget) | `2.0.0` | `3.2.0` |\n| [@nuxt/devtools](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools) | `3.1.1` | `3.2.4` |\n| [@nuxt/devtools-kit](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools-kit) | `3.1.1` | `3.2.4` |\n| [@nuxt/devtools-wizard](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools-wizard) | `3.1.1` | `3.2.4` |\n| [@nuxt/nitro-server](https://github.com/nuxt/nuxt/tree/HEAD/packages/nitro-server) | `4.3.1` | `4.4.2` |\n| [@nuxt/schema](https://github.com/nuxt/nuxt/tree/HEAD/packages/schema) | `4.3.1` | `4.4.2` |\n| [@nuxt/telemetry](https://github.com/nuxt/telemetry) | `2.7.0` | `2.8.0` |\n| [@nuxt/vite-builder](https://github.com/nuxt/nuxt/tree/HEAD/packages/vite) | `4.3.1` | `4.4.2` |\n| [@oxc-minify/binding-android-arm-eabi](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-android-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-darwin-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-darwin-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-freebsd-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-arm-gnueabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-arm-musleabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-arm64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-arm64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-ppc64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-riscv64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-riscv64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-s390x-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-x64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-x64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-openharmony-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-wasm32-wasi](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-win32-arm64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-win32-ia32-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-win32-x64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-android-arm-eabi](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-android-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-darwin-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-darwin-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-freebsd-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-arm-gnueabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-arm-musleabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-arm64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-arm64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-ppc64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-riscv64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-riscv64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-s390x-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-x64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-x64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-openharmony-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-wasm32-wasi](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-win32-arm64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-win32-ia32-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-win32-x64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-project/types](https://github.com/oxc-project/oxc/tree/HEAD/npm/oxc-types) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-android-arm-eabi](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-android-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-darwin-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-darwin-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-freebsd-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-arm-gnueabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-arm-musleabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-arm64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-arm64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-ppc64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-riscv64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-riscv64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-s390x-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-x64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-x64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-openharmony-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-wasm32-wasi](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-win32-arm64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-win32-ia32-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-win32-x64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@poppinss/dumper](https://github.com/poppinss/dumper) | `0.6.5` | `0.7.0` |\n| [@redis/bloom](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/client](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/json](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/search](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/time-series](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@rolldown/pluginutils](https://github.com/rolldown/rolldown/tree/HEAD/packages/pluginutils) | `1.0.0-rc.2` | `1.0.0-rc.13` |\n| [@rollup/plugin-commonjs](https://github.com/rollup/plugins/tree/HEAD/packages/commonjs) | `29.0.0` | `29.0.2` |\n| [@rollup/plugin-terser](https://github.com/rollup/plugins/tree/HEAD/packages/terser) | `0.4.4` | `1.0.0` |\n| [@rollup/rollup-android-arm-eabi](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-android-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-darwin-x64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-freebsd-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-freebsd-x64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm-gnueabihf](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm-musleabihf](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-loong64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-loong64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-ppc64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-ppc64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-riscv64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-riscv64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-s390x-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-x64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-openbsd-x64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-openharmony-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-arm64-msvc](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-ia32-msvc](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-x64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-x64-msvc](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@speed-highlight/core](https://github.com/speed-highlight/core) | `1.2.14` | `1.2.15` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.2.2` | `25.6.0` |\n| [@types/qs](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/qs) | `6.14.0` | `6.15.0` |\n| [@unhead/vue](https://github.com/unjs/unhead/tree/HEAD/packages/vue) | `2.1.4` | `2.1.13` |\n| [@vercel/nft](https://github.com/vercel/nft) | `1.3.0` | `1.5.0` |\n| [@vitejs/plugin-vue](https://github.com/vitejs/vite-plugin-vue/tree/HEAD/packages/plugin-vue) | `6.0.4` | `6.0.6` |\n| [@vitejs/plugin-vue-jsx](https://github.com/vitejs/vite-plugin-vue/tree/HEAD/packages/plugin-vue-jsx) | `5.1.4` | `5.1.5` |\n| [unplugin-utils](https://github.com/sxzz/unplugin-utils) | `0.2.5` | `0.3.1` |\n| [@vue/compiler-core](https://github.com/vuejs/core/tree/HEAD/packages/compiler-core) | `3.5.28` | `3.5.33` |\n| [@vue/compiler-dom](https://github.com/vuejs/core/tree/HEAD/packages/compiler-dom) | `3.5.28` | `3.5.33` |\n| [@vue/compiler-sfc](https://github.com/vuejs/core/tree/HEAD/packages/compiler-sfc) | `3.5.28` | `3.5.33` |\n| [@vue/compiler-ssr](https://github.com/vuejs/core/tree/HEAD/packages/compiler-ssr) | `3.5.28` | `3.5.33` |\n| [@vue/devtools-core](https://github.com/vuejs/devtools/tree/HEAD/packages/core) | `8.0.6` | `8.1.1` |\n| [@vue/devtools-kit](https://github.com/vuejs/devtools/tree/HEAD/packages/devtools-kit) | `8.0.6` | `8.1.1` |\n| [@vue/devtools-shared](https://github.com/vuejs/devtools/tree/HEAD/packages/shared) | `8.0.6` | `8.1.1` |\n| [@vue/reactivity](https://github.com/vuejs/core/tree/HEAD/packages/reactivity) | `3.5.28` | `3.5.33` |\n| [@vue/runtime-core](https://github.com/vuejs/core/tree/HEAD/packages/runtime-core) | `3.5.28` | `3.5.33` |\n| [@vue/runtime-dom](https://github.com/vuejs/core/tree/HEAD/packages/runtime-dom) | `3.5.28` | `3.5.33` |\n| [@vue/server-renderer](https://github.com/vuejs/core/tree/HEAD/packages/server-renderer) | `3.5.28` | `3.5.33` |\n| [@vue/shared](https://github.com/vuejs/core/tree/HEAD/packages/shared) | `3.5.28` | `3.5.33` |\n| [acorn](https://github.com/acornjs/acorn) | `8.15.0` | `8.16.0` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [autoprefixer](https://github.com/postcss/autoprefixer) | `10.4.24` | `10.5.0` |\n| [b4a](https://github.com/holepunchto/b4a) | `1.7.3` | `1.8.0` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.9.19` | `2.10.21` |\n| [bezier-easing](https://github.com/gre/bezier-easing) | `2.1.0` | `3.0.0` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.14` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [rc9](https://github.com/unjs/rc9) | `2.1.2` | `3.0.1` |\n| [caniuse-lite](https://github.com/browserslist/caniuse-lite) | `1.0.30001769` | `1.0.30001790` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `1.2.2` | `1.2.3` |\n| [core-js](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js) | `3.48.0` | `3.49.0` |\n| [croner](https://github.com/hexagon/croner) | `9.1.0` | `10.0.1` |\n| [css-declaration-sorter](https://github.com/Siilwyn/css-declaration-sorter) | `7.3.1` | `7.4.0` |\n| [cssnano](https://github.com/cssnano/cssnano) | `7.1.2` | `7.1.7` |\n| [cssnano-preset-default](https://github.com/cssnano/cssnano) | `7.0.10` | `7.0.15` |\n| [cssnano-utils](https://github.com/cssnano/cssnano) | `5.0.1` | `5.0.2` |\n| [define-lazy-prop](https://github.com/sindresorhus/define-lazy-prop) | `2.0.0` | `3.0.0` |\n| [defu](https://github.com/unjs/defu) | `6.1.4` | `6.1.7` |\n| [devalue](https://github.com/sveltejs/devalue) | `5.6.2` | `5.7.1` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.3` | `8.0.4` |\n| [dompurify](https://github.com/cure53/DOMPurify) | `3.3.1` | `3.4.1` |\n| [electron-to-chromium](https://github.com/Kilian/electron-to-chromium) | `1.5.286` | `1.5.344` |\n| [fast-npm-meta](https://github.com/antfu/fast-npm-meta) | `0.4.8` | `1.5.0` |\n| [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.15.11` | `1.16.0` |\n| [fuse.js](https://github.com/krisk/Fuse) | `7.1.0` | `7.3.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.14.0` |\n| [globby](https://github.com/sindresorhus/globby) | `16.1.0` | `16.2.0` |\n| [h3](https://github.com/h3js/h3) | `1.15.5` | `1.15.11` |\n| [hasown](https://github.com/inspect-js/hasOwn) | `2.0.2` | `2.0.3` |\n| [httpxy](https://github.com/unjs/httpxy) | `0.1.7` | `0.5.1` |\n| [impound](https://github.com/unjs/impound) | `1.0.0` | `1.1.5` |\n| [ioredis](https://github.com/luin/ioredis) | `5.9.2` | `5.10.1` |\n| [jsonfile](https://github.com/jprichardson/node-jsonfile) | `6.2.0` | `6.2.1` |\n| [koa](https://github.com/koajs/koa) | `2.16.3` | `2.16.4` |\n| [launch-editor](https://github.com/yyx990803/launch-editor) | `2.12.0` | `2.13.2` |\n| [listhen](https://github.com/unjs/listhen) | `1.9.0` | `1.9.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [minipass](https://github.com/isaacs/minipass) | `7.1.2` | `7.1.3` |\n| [mlly](https://github.com/unjs/mlly) | `1.8.0` | `1.8.2` |\n| [nanotar](https://github.com/unjs/nanotar) | `0.2.0` | `0.3.0` |\n| [nitropack](https://github.com/nitrojs/nitro) | `2.13.1` | `2.13.3` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.3` | `1.4.0` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.27` | `2.0.38` |\n| [nypm](https://github.com/unjs/nypm) | `0.6.5` | `0.6.6` |\n| [oxc-minify](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [oxc-parser](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [oxc-transform](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [pg-protocol](https://github.com/brianc/node-postgres/tree/HEAD/packages/pg-protocol) | `1.11.0` | `1.13.0` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.6` | `8.5.10` |\n| [postcss-colormin](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.9` |\n| [postcss-convert-values](https://github.com/cssnano/cssnano) | `7.0.8` | `7.0.11` |\n| [postcss-discard-comments](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.7` |\n| [postcss-discard-duplicates](https://github.com/cssnano/cssnano) | `7.0.2` | `7.0.3` |\n| [postcss-discard-empty](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-discard-overridden](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-merge-longhand](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.6` |\n| [postcss-merge-rules](https://github.com/cssnano/cssnano) | `7.0.7` | `7.0.10` |\n| [postcss-minify-font-values](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-minify-gradients](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.4` |\n| [postcss-minify-params](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.8` |\n| [postcss-minify-selectors](https://github.com/cssnano/cssnano) | `7.0.5` | `7.1.0` |\n| [postcss-normalize-charset](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-display-values](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-positions](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.3` |\n| [postcss-normalize-repeat-style](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.3` |\n| [postcss-normalize-string](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-timing-functions](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-unicode](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.8` |\n| [postcss-normalize-url](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-whitespace](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-ordered-values](https://github.com/cssnano/cssnano) | `7.0.2` | `7.0.3` |\n| [postcss-reduce-initial](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.8` |\n| [postcss-reduce-transforms](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-svgo](https://github.com/cssnano/cssnano) | `7.1.0` | `7.1.2` |\n| [postcss-unique-selectors](https://github.com/cssnano/cssnano) | `7.0.4` | `7.0.6` |\n| [proxy-from-env](https://github.com/Rob--W/proxy-from-env) | `1.1.0` | `2.1.0` |\n| [qs](https://github.com/ljharb/qs) | `6.14.1` | `6.15.1` |\n| [resolve](https://github.com/browserify/resolve) | `1.22.11` | `1.22.12` |\n| [rollup](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [rollup-plugin-visualizer](https://github.com/btd/rollup-plugin-visualizer) | `6.0.5` | `7.0.1` |\n| [rou3](https://github.com/h3js/rou3) | `0.7.12` | `0.8.1` |\n| [sax](https://github.com/isaacs/sax-js) | `1.4.4` | `1.6.0` |\n| [serialize-javascript](https://github.com/yahoo/serialize-javascript) | `6.0.2` | `7.0.5` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.0` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.30.0` | `3.36.0` |\n| [smob](https://github.com/Tada5hi/smob) | `1.5.0` | `1.6.1` |\n| [srvx](https://github.com/h3js/srvx) | `0.11.2` | `0.11.15` |\n| [streamx](https://github.com/mafintosh/streamx) | `2.23.0` | `2.25.0` |\n| [structured-clone-es](https://github.com/antfu-collective/structured-clone-es) | `1.0.0` | `2.0.0` |\n| [stylehacks](https://github.com/cssnano/cssnano) | `7.0.7` | `7.0.10` |\n| [svgo](https://github.com/svg/svgo) | `4.0.0` | `4.0.1` |\n| [tar](https://github.com/isaacs/node-tar) | `7.5.7` | `7.5.13` |\n| [tar-stream](https://github.com/mafintosh/tar-stream) | `3.1.7` | `3.1.8` |\n| [terser](https://github.com/terser/terser) | `5.46.0` | `5.46.2` |\n| [text-decoder](https://github.com/holepunchto/text-decoder) | `1.2.3` | `1.2.7` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.2` | `1.1.1` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [type-fest](https://github.com/sindresorhus/type-fest) | `5.4.4` | `5.6.0` |\n| [undici-types](https://github.com/nodejs/undici) | `7.16.0` | `7.19.2` |\n| [unhead](https://github.com/unjs/unhead/tree/HEAD/packages/unhead) | `2.1.4` | `2.1.13` |\n| [unimport](https://github.com/unjs/unimport) | `5.6.0` | `6.1.1` |\n| [unstorage](https://github.com/unjs/unstorage) | `1.17.4` | `1.17.5` |\n| [uqr](https://github.com/unjs/uqr) | `0.1.2` | `0.1.3` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.2` |\n| [vite-plugin-vue-tracer](https://github.com/antfu/vite-plugin-vue-tracer) | `1.2.0` | `1.3.0` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |\n| [youch](https://github.com/poppinss/youch) | `4.1.0-beta.13` | `4.1.1` |\n\nUpdates `@applemusic-like-lyrics/core` from 0.2.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/core\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/blob/main/packages/core/CHANGELOG.md\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/core\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.1 (2026-04-23)\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix:\u003c/strong\u003e 在各绑定中暴露歌词优化选项 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix(vue):\u003c/strong\u003e 修复掩码模式错误的类型 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/496\"\u003e#496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erefactor(core):\u003c/strong\u003e 重构平均行长度实现 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/494\"\u003e#494\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.0 (2026-04-14)\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 移除 canvas 歌词渲染器 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erefactor:\u003c/strong\u003e 重构核心库测试组织模式 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/3db83c93\"\u003e3db83c93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e 修正 optimize-lyric.ts 和 OptimizeLyricOptions 里 cleanUnintentionalOverlaps 的文档和注释 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/75a8c0bb\"\u003e75a8c0bb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 更换工具链 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho \u003ca href=\"https://github.com/Linho1219\"\u003e\u003ccode\u003e@​Linho1219\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMoYingJi \u003ca href=\"https://github.com/MoYingJi\"\u003e\u003ccode\u003e@​MoYingJi\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/48ec944509271f9eebf5a45433645f5296c41584\"\u003e\u003ccode\u003e48ec944\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/b04ada8c5d5d44b8a6c0a063a9b795c3a62e11ea\"\u003e\u003ccode\u003eb04ada8\u003c/code\u003e\u003c/a\u003e refactor(core): 重构平均行长度实现 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/494\"\u003e#494\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5453754f327eab8a285af4a9a3b44fd808ea19ae\"\u003e\u003ccode\u003e5453754\u003c/code\u003e\u003c/a\u003e ci: 调整 changelog 格式与若干 CI 行为 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/491\"\u003e#491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/802d7ec3e38551cbdbf18a778e88f36604a83387\"\u003e\u003ccode\u003e802d7ec\u003c/code\u003e\u003c/a\u003e chore: 移除各包目录下残留的 typedoc 并更新 Nx 配置 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/486\"\u003e#486\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ef837385e99b16d46e4fddadd26aa756ba10231c\"\u003e\u003ccode\u003eef83738\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/aa845765f3fbc15df6d3ede5129a2a0e303da910\"\u003e\u003ccode\u003eaa84576\u003c/code\u003e\u003c/a\u003e chore: 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/bf4e41b4f8bac3610e17aa03fbfde7c11b1f730b\"\u003e\u003ccode\u003ebf4e41b\u003c/code\u003e\u003c/a\u003e 更换各个工具链 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/98b80b2b3a32dc09dfaf24cc9ba7f4797b2d3a1f\"\u003e\u003ccode\u003e98b80b2\u003c/code\u003e\u003c/a\u003e chore: 统一 TS 配置\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/69d7bef0f1f109a0626aadf564b3e50d3385c165\"\u003e\u003ccode\u003e69d7bef\u003c/code\u003e\u003c/a\u003e chore: 强制在构建时执行类型检查\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cc913d240f95541ef20816becffeb700eb2fa131\"\u003e\u003ccode\u003ecc913d2\u003c/code\u003e\u003c/a\u003e refactor: 抽离 core playground\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.4.1/packages/core\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/core\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/lyric` from 0.3.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/2fc5d2e19d7a2ce70501a347dec4f5f4f90fbfe2\"\u003e\u003ccode\u003e2fc5d2e\u003c/code\u003e\u003c/a\u003e fix: lyric 包 rust 侧适配 romanWord 可选\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/d862271aa1396b19b9a8bb4d8cd484a0df366270\"\u003e\u003ccode\u003ed862271\u003c/code\u003e\u003c/a\u003e fix: 修复 lyric 包 romanWord 类型\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/@applemusic-like-lyrics/lyric@0.4.1/packages/lyric\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/vue` from 0.2.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/blob/main/packages/vue/CHANGELOG.md\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.1 (2026-04-23)\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix:\u003c/strong\u003e 在各绑定中暴露歌词优化选项 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix(vue):\u003c/strong\u003e 修复掩码模式错误的类型 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/496\"\u003e#496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erefactor(core):\u003c/strong\u003e 重构平均行长度实现 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/494\"\u003e#494\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.0 (2026-04-14)\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 移除 canvas 歌词渲染器 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erefactor:\u003c/strong\u003e 重构核心库测试组织模式 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/3db83c93\"\u003e3db83c93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e 修正 optimize-lyric.ts 和 OptimizeLyricOptions 里 cleanUnintentionalOverlaps 的文档和注释 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/75a8c0bb\"\u003e75a8c0bb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 更换工具链 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho \u003ca href=\"https://github.com/Linho1219\"\u003e\u003ccode\u003e@​Linho1219\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMoYingJi \u003ca href=\"https://github.com/MoYingJi\"\u003e\u003ccode\u003e@​MoYingJi\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/48ec944509271f9eebf5a45433645f5296c41584\"\u003e\u003ccode\u003e48ec944\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/de5c5705666f6d2ebeafb987372564155ba9e036\"\u003e\u003ccode\u003ede5c570\u003c/code\u003e\u003c/a\u003e fix(vue): 修复掩码模式错误的类型 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/496\"\u003e#496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/f1c8309d314640893a3141c2a9eb6b04e428e874\"\u003e\u003ccode\u003ef1c8309\u003c/code\u003e\u003c/a\u003e build: 内联 CSS 中的 url (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/493\"\u003e#493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5cee8f65599cf87dab868602112939b4b6bfc903\"\u003e\u003ccode\u003e5cee8f6\u003c/code\u003e\u003c/a\u003e fix: 在各绑定中暴露歌词优化选项 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5453754f327eab8a285af4a9a3b44fd808ea19ae\"\u003e\u003ccode\u003e5453754\u003c/code\u003e\u003c/a\u003e ci: 调整 changelog 格式与若干 CI 行为 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/491\"\u003e#491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ef837385e99b16d46e4fddadd26aa756ba10231c\"\u003e\u003ccode\u003eef83738\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/aa845765f3fbc15df6d3ede5129a2a0e303da910\"\u003e\u003ccode\u003eaa84576\u003c/code\u003e\u003c/a\u003e chore: 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/bf4e41b4f8bac3610e17aa03fbfde7c11b1f730b\"\u003e\u003ccode\u003ebf4e41b\u003c/code\u003e\u003c/a\u003e 更换各个工具链 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/98b80b2b3a32dc09dfaf24cc9ba7f4797b2d3a1f\"\u003e\u003ccode\u003e98b80b2\u003c/code\u003e\u003c/a\u003e chore: 统一 TS 配置\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/69d7bef0f1f109a0626aadf564b3e50d3385c165\"\u003e\u003ccode\u003e69d7bef\u003c/code\u003e\u003c/a\u003e chore: 强制在构建时执行类型检查\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.4.1/packages/vue\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@types/pg` from 8.16.0 to 8.20.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/pg\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.5 to 1.15.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.2\u003c/h2\u003e\n\u003cp\u003eThis release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Hardening (HTTP Adapter):\u003c/strong\u003e Hardened the Node HTTP adapter and \u003ccode\u003eresolveConfig\u003c/code\u003e/\u003ccode\u003emergeConfig\u003c/code\u003e/validator paths to read only own properties and use null-prototype config objects, preventing polluted \u003ccode\u003eauth\u003c/code\u003e, \u003ccode\u003ebaseURL\u003c/code\u003e, \u003ccode\u003esocketPath\u003c/code\u003e, \u003ccode\u003ebeforeRedirect\u003c/code\u003e, and \u003ccode\u003einsecureHTTPParser\u003c/code\u003e from influencing requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSSRF via \u003ccode\u003esocketPath\u003c/code\u003e:\u003c/strong\u003e Rejects non-string \u003ccode\u003esocketPath\u003c/code\u003e values and adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e config option to restrict permitted Unix domain socket paths, returning \u003ccode\u003eAxiosError\u003c/code\u003e \u003ccode\u003eERR_BAD_OPTION_VALUE\u003c/code\u003e on mismatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSupply-chain Hardening:\u003c/strong\u003e Added \u003ccode\u003e.npmrc\u003c/code\u003e with \u003ccode\u003eignore-scripts=true\u003c/code\u003e, lockfile lint CI, non-blocking reproducible build diff, scoped CODEOWNERS, expanded \u003ccode\u003eSECURITY.md\u003c/code\u003e/\u003ccode\u003eTHREATMODEL.md\u003c/code\u003e with provenance verification (\u003ccode\u003enpm audit signatures\u003c/code\u003e), 60-day resolution policy, and maintainer incident-response runbook. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eallowedSocketPaths\u003c/code\u003e Config Option:\u003c/strong\u003e New request config option (and TypeScript types) to allowlist Unix domain socket paths used by the Node http adapter; backwards compatible when unset. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eKeep-alive Socket Memory Leak:\u003c/strong\u003e Installs a single per-socket \u003ccode\u003eerror\u003c/code\u003e listener tracking the active request via \u003ccode\u003ekAxiosSocketListener\u003c/code\u003e/\u003ccode\u003ekAxiosCurrentReq\u003c/code\u003e, eliminating per-request listener accumulation, \u003ccode\u003eMaxListenersExceededWarning\u003c/code\u003e, and linear heap growth under concurrent or long-running keep-alive workloads (fixes \u003ca href=\"https://redirect.github.com/axios/axios/issues/10780\"\u003e#10780\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eChangelog:\u003c/strong\u003e Updated \u003ccode\u003eCHANGELOG.md\u003c/code\u003e with v1.15.1 release notes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.15.1...v1.15.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.15.1\u003c/h2\u003e\n\u003cp\u003eThis release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeader Injection Hardening:\u003c/strong\u003e Tightened validation and sanitisation across request header construction to close the header-injection attack surface. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10749\"\u003e#10749\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCRLF Stripping in Multipart Headers:\u003c/strong\u003e Correctly strips CR/LF from multipart header values to prevent injection via field names and filenames. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10758\"\u003e#10758\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution / Auth Bypass:\u003c/strong\u003e Replaced unsafe \u003ccode\u003ein\u003c/code\u003e checks with \u003ccode\u003ehasOwnProperty\u003c/code\u003e to prevent authentication bypass via prototype pollution on config objects, with additional regression tests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10761\"\u003e#10761\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10760\"\u003e#10760\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003ewithXSRFToken\u003c/code\u003e Truthy Bypass:\u003c/strong\u003e Short-circuits on any truthy non-boolean value, so an ambiguous config no longer silently leaks the XSRF token cross-origin. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003emaxBodyLength\u003c/code\u003e With Zero Redirects:\u003c/strong\u003e Enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e even when \u003ccode\u003emaxRedirects\u003c/code\u003e is set to \u003ccode\u003e0\u003c/code\u003e, closing a bypass path for oversized request bodies. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10753\"\u003e#10753\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eStreamed Response \u003ccode\u003emaxContentLength\u003c/code\u003e Bypass:\u003c/strong\u003e Applies \u003ccode\u003emaxContentLength\u003c/code\u003e to streamed responses that previously bypassed the cap. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10754\"\u003e#10754\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFollow-up CVE Completion:\u003c/strong\u003e Completes an earlier incomplete CVE fix to fully close the regression window. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10755\"\u003e#10755\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAI-Based Docs Translations:\u003c/strong\u003e Initial scaffold for AI-assisted translations of the documentation site. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10705\"\u003e#10705\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eLocation\u003c/code\u003e Request Header Type:\u003c/strong\u003e Adds \u003ccode\u003eLocation\u003c/code\u003e to \u003ccode\u003eCommonRequestHeadersList\u003c/code\u003e for accurate typing of redirect-aware requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7528\"\u003e#7528\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFormData Handling:\u003c/strong\u003e Removes \u003ccode\u003eContent-Type\u003c/code\u003e when no boundary is present on \u003ccode\u003eFormData\u003c/code\u003e fetch requests, supports multi-select fields, cancels \u003ccode\u003erequest.body\u003c/code\u003e instead of the source stream on fetch abort, and fixes a recursion bug in form-data serialisation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7314\"\u003e#7314\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10676\"\u003e#10676\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10702\"\u003e#10702\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10726\"\u003e#10726\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter:\u003c/strong\u003e Handles socket-only request errors without leaking keep-alive listeners. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10576\"\u003e#10576\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProgress Events:\u003c/strong\u003e Clamps \u003ccode\u003eloaded\u003c/code\u003e to \u003ccode\u003etotal\u003c/code\u003e for computable upload/download progress events. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7458\"\u003e#7458\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes:\u003c/strong\u003e Aligns \u003ccode\u003erunWhen\u003c/code\u003e type with the runtime behaviour in \u003ccode\u003eInterceptorManager\u003c/code\u003e and makes response header keys case-insensitive. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7529\"\u003e#7529\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10677\"\u003e#10677\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003ebuildFullPath\u003c/code\u003e:\u003c/strong\u003e Uses strict equality in the base/relative URL check. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7252\"\u003e#7252\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eAxiosURLSearchParams\u003c/code\u003e Regex:\u003c/strong\u003e Improves the regex used for param serialisation to avoid edge-case mismatches. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10736\"\u003e#10736\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eResilient Value Parsing:\u003c/strong\u003e Parses out header/config values instead of throwing on malformed input. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10687\"\u003e#10687\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.2 - April 21, 2026\u003c/h2\u003e\n\u003cp\u003eThis release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Hardening (HTTP Adapter):\u003c/strong\u003e Hardened the Node HTTP adapter and \u003ccode\u003eresolveConfig\u003c/code\u003e/\u003ccode\u003emergeConfig\u003c/code\u003e/validator paths to read only own properties and use null-prototype config objects, preventing polluted \u003ccode\u003eauth\u003c/code\u003e, \u003ccode\u003ebaseURL\u003c/code\u003e, \u003ccode\u003esocketPath\u003c/code\u003e, \u003ccode\u003ebeforeRedirect\u003c/code\u003e, and \u003ccode\u003einsecureHTTPParser\u003c/code\u003e from influencing requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSSRF via \u003ccode\u003esocketPath\u003c/code\u003e:\u003c/strong\u003e Rejects non-string \u003ccode\u003esocketPath\u003c/code\u003e values and adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e config option to restrict permitted Unix domain socket paths, returning \u003ccode\u003eAxiosError\u003c/code\u003e \u003ccode\u003eERR_BAD_OPTION_VALUE\u003c/code\u003e on mismatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSupply-chain Hardening:\u003c/strong\u003e Added \u003ccode\u003e.npmrc\u003c/code\u003e with \u003ccode\u003eignore-scripts=true\u003c/code\u003e, lockfile lint CI, non-blocking reproducible build diff, scoped CODEOWNERS, expanded \u003ccode\u003eSECURITY.md\u003c/code\u003e/\u003ccode\u003eTHREATMODEL.md\u003c/code\u003e with provenance verification (\u003ccode\u003enpm audit signatures\u003c/code\u003e), 60-day resolution policy, and maintainer incident-response runbook. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eallowedSocketPaths\u003c/code\u003e Config Option:\u003c/strong\u003e New request config option (and TypeScript types) to allowlist Unix domain socket paths used by the Node http adapter; backwards compatible when unset. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eKeep-alive Socket Memory Leak:\u003c/strong\u003e Installs a single per-socket \u003ccode\u003eerror\u003c/code\u003e listener tracking the active request via \u003ccode\u003ekAxiosSocketListener\u003c/code\u003e/\u003ccode\u003ekAxiosCurrentReq\u003c/code\u003e, eliminating per-request listener accumulation, \u003ccode\u003eMaxListenersExceededWarning\u003c/code\u003e, and linear heap growth under concurrent or long-running keep-alive workloads (fixes \u003ca href=\"https://redirect.github.com/axios/axios/issues/10780\"\u003e#10780\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eChangelog:\u003c/strong\u003e Updated \u003ccode\u003eCHANGELOG.md\u003c/code\u003e with v1.15.1 release notes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.15.1...v1.15.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003chr /\u003e\n\u003ch2\u003ev1.15.1 - April 19, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eHeader Injection Hardening:\u003c/strong\u003e Tightened validation and sanitisation across request header construction to close the header-injection attack surface. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10749\"\u003e#10749\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eCRLF Stripping in Multipart Headers:\u003c/strong\u003e Correctly strips CR/LF from multipart header values to prevent injection via field names and filenames. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10758\"\u003e#10758\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ePrototype Pollution / Auth Bypass:\u003c/strong\u003e Replaced unsafe \u003ccode\u003ein\u003c/code\u003e checks with \u003ccode\u003ehasOwnProperty\u003c/code\u003e to prevent authentication bypass via prototype pollution on config objects, with additional regression tests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10761\"\u003e#10761\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10760\"\u003e#10760\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ewithXSRFToken\u003c/code\u003e Truthy Bypass:\u003c/strong\u003e Short-circuits on any truthy non-boolean value, so an ambiguous config no longer silently leaks the XSRF token cross-origin. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003emaxBodyLength\u003c/code\u003e With Zero Redirects:\u003c/strong\u003e Enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e even when \u003ccode\u003emaxRedirects\u003c/code\u003e is set to \u003ccode\u003e0\u003c/code\u003e, closing a bypass path for oversized request bodies. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10753\"\u003e#10753\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eStreamed Response \u003ccode\u003emaxContentLength\u003c/code\u003e Bypass:\u003c/strong\u003e Applies \u003ccode\u003emaxContentLength\u003c/code\u003e to streamed responses that previously bypassed the cap. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10754\"\u003e#10754\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eFollow-up CVE Completion:\u003c/strong\u003e Completes an earlier incomplete CVE fix to fully close the regression window. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10755\"\u003e#10755\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAI-Based Docs Translations:\u003c/strong\u003e Initial scaffold for AI-assisted translations of the documentation site. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10705\"\u003e#10705\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/582934382e4e0e0bcb679c628071a4203e93cf57\"\u003e\u003ccode\u003e5829343\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.2 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10789\"\u003e#10789\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4709a48fa2717ba97f43f5432d48ca4e26c2d326\"\u003e\u003ccode\u003e4709a48\u003c/code\u003e\u003c/a\u003e fix: added fix for memory leak in sockets (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/be3336014e01f9a4fc1f8aef15303cf7daaf58db\"\u003e\u003ccode\u003ebe33360\u003c/code\u003e\u003c/a\u003e chore: update changelog (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa\"\u003e\u003ccode\u003e4791514\u003c/code\u003e\u003c/a\u003e fix: more header pollutions (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/6feafcff6c2dbafe206161c5d09e38e1d36af66f\"\u003e\u003ccode\u003e6feafcf\u003c/code\u003e\u003c/a\u003e fix: socket issue (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/302e2739c602f00e323d4f3f5c79500647633a73\"\u003e\u003ccode\u003e302e273\u003c/code\u003e\u003c/a\u003e docs: update docs, add a couple actions etc (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ac42446be51300fe214ba3c6e40cc95f34fd6871\"\u003e\u003ccode\u003eac42446\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.1 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10767\"\u003e#10767\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/908f2206b6bfeff67236784abce85935698ac1d9\"\u003e\u003ccode\u003e908f220\u003c/code\u003e\u003c/a\u003e docs: update threatmodel (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10765\"\u003e#10765\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f93f8155250c2e066205521eda05ae22983a1f6d\"\u003e\u003ccode\u003ef93f815\u003c/code\u003e\u003c/a\u003e docs: added docs around potential decompressions bomb (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10763\"\u003e#10763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/1728aa1b15b8857f970611fd8983c06b423fc486\"\u003e\u003ccode\u003e1728aa1\u003c/code\u003e\u003c/a\u003e fix: short-circuits on any truthy non-boolean in withXSRFToken (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.5...v1.15.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dayjs` from 1.11.19 to 1.11.20\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/iamkun/dayjs/releases\"\u003edayjs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.11.20\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/iamkun/dayjs/compare/v1.11.19...v1.11.20\"\u003e1.11.20\u003c/a\u003e (2026-03-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate locale km.js to support meridiem (\u003ca href=\"https://redirect.github.com/iamkun/dayjs/issues/3017\"\u003e#3017\u003c/a\u003e) (\u003ca href=\"https://github.com/iamkun/dayjs/commit/9d2b6a1ec744ad5db13afd4d701f93349135dfec\"\u003e9d2b6a1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate updateLocale plugin to merge nested object properties instead of replacing (\u003ca href=\"https://redirect.github.com/iamkun/dayjs/issues/3012\"\u003e#3012\u003c/a\u003e) (\u003ca href=\"https://github.com/iamkun/dayjs/commit/99691c5f3bd1371d3b763d5f9dfaed9a1945a477\"\u003e99691c5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/iamkun/dayjs/issues/1118\"\u003e#1118\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/iamkun/dayjs/blob/dev/CHANGELOG.md\"\u003edayjs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/iamkun/dayjs/compare/v1.11.19...v1.11.20\"\u003e1.11.20\u003c/a\u003e (2026-03-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate locale km.js to support meridiem (\u003ca href=\"https://redirect.github.com/iamkun/dayjs/issues/3017\"\u003e#3017\u003c/a\u003e) (\u003ca href=\"https://github.com/iamkun/dayjs/commit/9d2b6a1ec744ad5db13afd4d701f93349135dfec\"\u003e9d2b6a1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate updateLocale plugin to merge nested object properties instead of replacing (\u003ca href=\"https://redirect.github.com/iamkun/dayjs/issues/3012\"\u003e#3012\u003c/a\u003e) (\u003ca href=\"https://github.com/iamkun/dayjs/commit/99691c5f3bd1371d3b763d5f9dfaed9a1945a477\"\u003e99691c5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/iamkun/dayjs/issues/1118\"\u003e#1118\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iamkun/dayjs/commit/af6e1f85c10fa8596e79471eadad25ab2da56f0f\"\u003e\u003ccode\u003eaf6e1f8\u003c/code\u003e\u003c/a\u003e chore(release): 1.11.20 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iamkun/dayjs/commit/82babd6688d7238fe1585895816fb...\n\n_Description has been truncated_","html_url":"https://github.com/weiyb852/VoiceHub-e7cc6/pull/12","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/weiyb852%2FVoiceHub-e7cc6/issues/12","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/12/packages"},{"uuid":"4326459428","node_id":"PR_kwDOQ3ffIc7Vg4M2","number":20,"state":"open","title":"chore(deps): bump the npm_and_yarn group across 2 directories with 18 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-25T00:51:40.000Z","updated_at":"2026-04-25T00:53:07.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":18,"packages":[{"name":"electron","old_version":"39.2.7","new_version":"39.8.5","repository_url":"https://github.com/electron/electron"},{"name":"vite","old_version":"7.3.0","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"fast-xml-parser","old_version":"5.3.3","new_version":"5.7.2","repository_url":"https://github.com/NaturalIntelligence/fast-xml-parser"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"@hono/node-server","old_version":"1.19.9","new_version":"1.19.14","repository_url":"https://github.com/honojs/node-server"},{"name":"ajv","old_version":"6.12.6","new_version":"6.15.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"@tootallnate/once","old_version":"2.0.0","new_version":"removed","repository_url":"https://github.com/TooTallNate/once"},{"name":"@xmldom/xmldom","old_version":"0.8.11","new_version":"0.8.13","repository_url":"https://github.com/xmldom/xmldom"},{"name":"tar","old_version":"6.2.1","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"express-rate-limit","old_version":"8.2.1","new_version":"8.4.1","repository_url":"https://github.com/express-rate-limit/express-rate-limit"},{"name":"flatted","old_version":"3.3.3","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"hono","old_version":"4.11.9","new_version":"4.12.15","repository_url":"https://github.com/honojs/hono"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"path-to-regexp","old_version":"8.3.0","new_version":"8.4.2","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"qs","old_version":"6.14.1","new_version":"6.15.1","repository_url":"https://github.com/ljharb/qs"},{"name":"rollup","old_version":"4.53.5","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"seroval","old_version":"1.4.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 18 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [electron](https://github.com/electron/electron) | `39.2.7` | `39.8.5` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.0` | `7.3.2` |\n| [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) | `5.3.3` | `5.7.2` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [@hono/node-server](https://github.com/honojs/node-server) | `1.19.9` | `1.19.14` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.15.0` |\n| [@tootallnate/once](https://github.com/TooTallNate/once) | `2.0.0` | `removed` |\n| [@xmldom/xmldom](https://github.com/xmldom/xmldom) | `0.8.11` | `0.8.13` |\n| [tar](https://github.com/isaacs/node-tar) | `6.2.1` | `7.5.13` |\n| [express-rate-limit](https://github.com/express-rate-limit/express-rate-limit) | `8.2.1` | `8.4.1` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |\n| [hono](https://github.com/honojs/hono) | `4.11.9` | `4.12.15` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `8.3.0` | `8.4.2` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [qs](https://github.com/ljharb/qs) | `6.14.1` | `6.15.1` |\n| [rollup](https://github.com/rollup/rollup) | `4.53.5` | `4.60.2` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.4.0` | `1.5.2` |\n\nBumps the npm_and_yarn group with 2 updates in the /apps/ui directory: [electron](https://github.com/electron/electron) and [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\n\nUpdates `electron` from 39.2.7 to 39.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/electron/electron/releases\"\u003eelectron's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eelectron v39.8.5\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.5\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a crash in \u003ccode\u003eclipboard.readImage()\u003c/code\u003e when the clipboard contains malformed image data. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50493\"\u003e#50493\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50491\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50492\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50494\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed a crash when calling an offscreen shared texture's \u003ccode\u003erelease()\u003c/code\u003e after the texture object was garbage collected. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50499\"\u003e#50499\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50500\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50501\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50502\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.4\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.4\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003enodeIntegrationInWorker\u003c/code\u003e overrides in \u003ccode\u003esetWindowOpenHandler\u003c/code\u003e were not honored for child windows sharing a renderer process with their opener. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50468\"\u003e#50468\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50163\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50467\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50134\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed crash when handling JavaScript dialogs from windows opened with invalid or empty URLs. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50400\"\u003e#50400\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50401\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50399\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50398\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed improper focus tracking in BaseWindow on MacOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50338\"\u003e#50338\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50337\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50340\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50339\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed window freeze when failing to enter/exit fullscreen on macOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50341\"\u003e#50341\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50344\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50343\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50342\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for using a proxy during yarn install. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50349\"\u003e#50349\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50352\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50350\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50351\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 485935305. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50440\"\u003e#50440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 489381399. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50443\"\u003e#50443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for chromium:475877320. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50436\"\u003e#50436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fixes for 484751092, 487117772. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50461\"\u003e#50461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.3\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.3\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded additional ASAR support to additional \u003ccode\u003efs\u003c/code\u003e copy methods. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50284\"\u003e#50284\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50287\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50286\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50285\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed user resizing of transparent windows on win32 platform. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50300\"\u003e#50300\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50301\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50298\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50299\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.2\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.2\u003c/h1\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackported fix for b/491421267. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50230\"\u003e#50230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.1\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.1\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded validation to protocol client methods to reject protocol names that do not conform to the RFC 3986 URI scheme grammar. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50156\"\u003e#50156\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50157\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50158\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50155\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue on macOS where calling \u003ccode\u003eautoUpdater.quitAndInstall()\u003c/code\u003e could fail if \u003ccode\u003echeckForUpdates()\u003c/code\u003e was called again after an update was already downloaded. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50215\"\u003e#50215\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50216\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50217\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where Chrome Devtools menus may not appear in certain embedded windows. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50136\"\u003e#50136\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50138\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50137\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003eadditionalData\u003c/code\u003e passed to \u003ccode\u003eapp.requestSingleInstanceLock\u003c/code\u003e on Windows could be truncated or fail to deserialize in the primary instance's \u003ccode\u003esecond-instance\u003c/code\u003e event. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50174\"\u003e#50174\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50177\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50162\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50154\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003escreen.getCursorScreenPoint()\u003c/code\u003e crashed on Wayland when it was called before a \u003ccode\u003eBrowserWindow\u003c/code\u003e had been created. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50106\"\u003e#50106\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50104\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50105\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/9d2f8cb4da0d35e2daf7e7f60e35313b508cb224\"\u003e\u003ccode\u003e9d2f8cb\u003c/code\u003e\u003c/a\u003e refactor: remove dead named-window lookup from guest-window-manager (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50498\"\u003e#50498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/11730047394233e70743c52567e17f4c3b2dc9fc\"\u003e\u003ccode\u003e1173004\u003c/code\u003e\u003c/a\u003e fix: crash calling OSR shared texture release() after texture GC'd (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50499\"\u003e#50499\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/be37adefd08f882e3f1fb8403d2d9e92c3009d56\"\u003e\u003ccode\u003ebe37ade\u003c/code\u003e\u003c/a\u003e fix: crash in clipboard.readImage() on malformed image data (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50493\"\u003e#50493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/7007907df08d02da98f513dcbdb430ab51be59c7\"\u003e\u003ccode\u003e7007907\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 3 changes from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50461\"\u003e#50461\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/2c8b6ee0c0a7c26871dc0b320982afd8ed29df6c\"\u003e\u003ccode\u003e2c8b6ee\u003c/code\u003e\u003c/a\u003e chore: cherry-pick fbfb27470bf6 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50436\"\u003e#50436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/4c64377ead6b53bc565d7793a2712e49882e5354\"\u003e\u003ccode\u003e4c64377\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 50b057660b4d from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50440\"\u003e#50440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/0ef056130cde0c19c81ccfbc2932df6911765849\"\u003e\u003ccode\u003e0ef0561\u003c/code\u003e\u003c/a\u003e fix: read nodeIntegrationInWorker from per-frame WebPreferences (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50122\"\u003e#50122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50\"\u003e#50\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/64373df3ca697bc6fe6e3ab1f463ba05beaf64cf\"\u003e\u003ccode\u003e64373df\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 074d472db745 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50443\"\u003e#50443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/13e44072be367f516cfad36f95d183765174f4bf\"\u003e\u003ccode\u003e13e4407\u003c/code\u003e\u003c/a\u003e fix: don't re-parse URL unnecessarily when handling dialogs (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50400\"\u003e#50400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/16a038502a4ea0c79976be60bcc8f28a49f1ab99\"\u003e\u003ccode\u003e16a0385\u003c/code\u003e\u003c/a\u003e ci: output build cache hit rate as GHA annotation (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50369\"\u003e#50369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/electron/electron/compare/v39.2.7...v39.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 7.3.0 to 7.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.3.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.1...v7.3.2\"\u003e7.3.2\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e09d8c90\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebackport \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22162\"\u003e#22162\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e19db0f2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echeck \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22160\"\u003e#22160\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003ef8103cc\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.0...v7.3.1\"\u003e7.3.1\u003c/a\u003e (2026-01-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21364\"\u003e#21364\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e9d39d37\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/cc383e07b66d4c5a9768fcb570e0af812cb8d999\"\u003e\u003ccode\u003ecc383e0\u003c/code\u003e\u003c/a\u003e release: v7.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e\u003ccode\u003e09d8c90\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003e\u003ccode\u003ef8103cc\u003c/code\u003e\u003c/a\u003e fix: check \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160\"\u003e#22160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e\u003ccode\u003e19db0f2\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22162\"\u003e#22162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/95e8923f35d0252c9f6eb2d5e358c084542706f1\"\u003e\u003ccode\u003e95e8923\u003c/code\u003e\u003c/a\u003e release: v7.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e\u003ccode\u003e9d39d37\u003c/code\u003e\u003c/a\u003e feat: add \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/21364\"\u003e#21364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/vitejs/vite/commits/v7.3.2/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-xml-parser` from 5.3.3 to 5.7.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/releases\"\u003efast-xml-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ebackward compatibility for numerical external entity, fix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eallow numerical external entity for backward compatibility\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: attributesGroupName working with preserveOrder\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e: stackoverflow when tag expression is very long\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eupgrade \u003ccode\u003e@​nodable/entities\u003c/code\u003e and FXB\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003e@nodable/entities\u003c/code\u003e v2.1.0\n\u003cul\u003e\n\u003cli\u003ebreaking changes\n\u003cul\u003e\n\u003cli\u003esingle entity scan. You're not allowed to use entity value to form another entity name.\u003c/li\u003e\n\u003cli\u003eyou cant add numeric external entity\u003c/li\u003e\n\u003cli\u003eentity error message when expantion limit is crossed might change\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etypings are updated for new options related to process entity\u003c/li\u003e\n\u003cli\u003eplease follow documentation of \u003ccode\u003e@nodable/entities\u003c/code\u003e for more detail.\u003c/li\u003e\n\u003cli\u003eperformance\n\u003cul\u003e\n\u003cli\u003eif processEntities is false, then there should not be impact on performance.\u003c/li\u003e\n\u003cli\u003eif processEntities is true, but you dont pass entity decoder separately then performance may degrade by approx 8-10%\u003c/li\u003e\n\u003cli\u003eif processEntities is true, and you pass entity decoder separately\n\u003cul\u003e\n\u003cli\u003eif no entity then performance should be same as before\u003c/li\u003e\n\u003cli\u003eif there are entities then performance should be increased from past versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eignoreAttributes is not required to be set to set xml version for NCR entity value\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate 'fast-xml-builder' to sanitize malicious CDATA and comment's content\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003euse \u003ccode\u003e@​nodable/entities\u003c/code\u003e to replace entities\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo API change\u003c/li\u003e\n\u003cli\u003eNo change in performance for basic usage\u003c/li\u003e\n\u003cli\u003eNo typing change\u003c/li\u003e\n\u003cli\u003eNo config change\u003c/li\u003e\n\u003cli\u003enew dependency\u003c/li\u003e\n\u003cli\u003ebreaking: error messages for entities might have been changed.\u003c/li\u003e\n\u003cli\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.12...v5.6.0\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.12...v5.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eperformance improvment, increase entity expansion default limit\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eincrease default entity explansion limit as many projects demand for that\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003emaxEntitySize: 10000,\r\nmaxExpansionDepth: 10000,\r\nmaxTotalExpansions: Infinity,\r\nmaxExpandedLength: 100000,\r\nmaxEntityCount: 1000,\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eperformance improvement\n\u003cul\u003e\n\u003cli\u003ereduce calls to toString\u003c/li\u003e\n\u003cli\u003eearly return when entities are not present\u003c/li\u003e\n\u003cli\u003eprepare rawAttrsForMatcher only if user sets \u003ccode\u003ejPath: false\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.9...v5.5.10\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.9...v5.5.10\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003efix typins and matcher instance in callbacks\u003c/h2\u003e\n\u003cp\u003ecombine typings file to avoid configuration changes\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md\"\u003efast-xml-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003eNote: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eNote: Due to some last quick changes on v4, detail of v4.5.3 \u0026amp; v4.5.4 are not updated here. v4.5.4x is the last tag of v4 in github repository. I'm extremely sorry for the confusion\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.2 / 2026-04-25\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eallow numerical external entity for backward compatibility\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: attributesGroupName working with preserveOrder\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e: stackoverflow when tag expression is very long\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.1 / 2026-04-20\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix typo in CJS typing file\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.0 / 2026-04-17\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003e@nodable/entities\u003c/code\u003e v2.1.0\n\u003cul\u003e\n\u003cli\u003ebreaking changes\n\u003cul\u003e\n\u003cli\u003esingle entity scan. You're not allowed to user entity value to form another entity name.\u003c/li\u003e\n\u003cli\u003eyou cant add numeric external entity\u003c/li\u003e\n\u003cli\u003eentity error message when expantion limit is crossed might change\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etypings are updated for new options related to process entity\u003c/li\u003e\n\u003cli\u003eplease follow documentation of \u003ccode\u003e@nodable/entities\u003c/code\u003e for more detail.\u003c/li\u003e\n\u003cli\u003eperformance\n\u003cul\u003e\n\u003cli\u003eif processEntities is false, then there should not be impact on performance.\u003c/li\u003e\n\u003cli\u003eif processEntities is true, but you dont pass entity decoder separately then performance may degrade by approx 8-10%\u003c/li\u003e\n\u003cli\u003eif processEntities is true, and you pass entity decoder separately\n\u003cul\u003e\n\u003cli\u003eif no entity then performance should be same as before\u003c/li\u003e\n\u003cli\u003eif there are entities then performance should be increased from past versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eignoreAttributes is not required to be set to set xml version for NCR entity value\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate 'fast-xml-builder' to sanitize malicious CDATA and comment's content\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.6.0 / 2026-04-15\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: entity replacement for numeric entities\u003c/li\u003e\n\u003cli\u003euse \u003ccode\u003e@​nodable/entities\u003c/code\u003e to replace entities\n\u003cul\u003e\n\u003cli\u003ethis may change some error messages related to entities expansion limit or inavlid use\u003c/li\u003e\n\u003cli\u003epost check would be exposed in future version\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.12 / 2026-04-13\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePerformance Improvement: update path-expression-matcher\n\u003cul\u003e\n\u003cli\u003euse proxy pattern than Proxy class\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.11 / 2026-04-08\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePerformance Improvement\n\u003cul\u003e\n\u003cli\u003eintegrate ExpressionSet for stopNodes\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.10 / 2026-04-03\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eincrease default entity explansion limit as many projects demand for that\u003c/li\u003e\n\u003cli\u003eperformance improvement\n\u003cul\u003e\n\u003cli\u003ereduce calls to toString\u003c/li\u003e\n\u003cli\u003eearly return when entities are not present\u003c/li\u003e\n\u003cli\u003eprepare rawAttrsForMatcher only if user sets \u003ccode\u003ejPath: false\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/b1d5b907ccbfbfbdbbeecc1f273bf20973d305e3\"\u003e\u003ccode\u003eb1d5b90\u003c/code\u003e\u003c/a\u003e update releas info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/78571aec67c2b8642f96d467a2c0902e4155952e\"\u003e\u003ccode\u003e78571ae\u003c/code\u003e\u003c/a\u003e tests for long tag expression\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/ebaedc026ce15563bb9c3e12ccfe189279a8d8fd\"\u003e\u003ccode\u003eebaedc0\u003c/code\u003e\u003c/a\u003e allow numerical external entities for backward compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/91245eb51285482aafe1248c76a06e8794350e53\"\u003e\u003ccode\u003e91245eb\u003c/code\u003e\u003c/a\u003e update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/79dd40d60f1b900b3d29217a382663ddd620c5c8\"\u003e\u003ccode\u003e79dd40d\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: don not group and nest attributes when both preserveOrder and attri...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/d6bce3b42661254e99691f32c76e3f2551ccea11\"\u003e\u003ccode\u003ed6bce3b\u003c/code\u003e\u003c/a\u003e allow long attribute expressions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/9a2561b0d4d7b613df6b8785c04034a8fa740d84\"\u003e\u003ccode\u003e9a2561b\u003c/code\u003e\u003c/a\u003e remove unnecessary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/0f08303189d541b08401d15a7137dc238a815fa7\"\u003e\u003ccode\u003e0f08303\u003c/code\u003e\u003c/a\u003e fix typo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/f529642d760ef53bb9115ad4798af5dc77ac22c4\"\u003e\u003ccode\u003ef529642\u003c/code\u003e\u003c/a\u003e update to release v5.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/52a8583465d6a67ad19e86fe34714879a981c18e\"\u003e\u003ccode\u003e52a8583\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;improve performance of attributes reading\u0026quot;\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.3...v5.7.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@hono/node-server` from 1.19.9 to 1.19.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/node-server/releases\"\u003e\u003ccode\u003e@​hono/node-server\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.14\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: add custom inspect to lightweight Request/Response to prevent TypeError on console.log by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/340\"\u003ehonojs/node-server#340\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.13\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an issue in Serve Static Middleware where inconsistent handling of repeated slashes (\u003ccode\u003e//\u003c/code\u003e) between the router and static file resolution could allow middleware to be bypassed. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-92pp-h63x-v22m for details.\u003c/p\u003e\n\u003ch2\u003ev1.19.12\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: ignore claude setting by \u003ca href=\"https://github.com/yusukebe\"\u003e\u003ccode\u003e@​yusukebe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/314\"\u003ehonojs/node-server#314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: request draining for early 413 responses by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/329\"\u003ehonojs/node-server#329\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: do not overwrite Content-Length in the fast path pattern if Content-Length already exists. by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/309\"\u003ehonojs/node-server#309\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.10\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an authorization bypass in Serve Static Middleware caused by inconsistent URL decoding (\u003ccode\u003e%2F\u003c/code\u003e handling) between the router and static file resolution. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-wc8c-qw6v-h7f6 for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/b5e63a366d9b0ef62ac65fcafd7f69b383b03ff5\"\u003e\u003ccode\u003eb5e63a3\u003c/code\u003e\u003c/a\u003e 1.19.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c02d7770a2d29ea473403211bef0a60639885a28\"\u003e\u003ccode\u003ec02d777\u003c/code\u003e\u003c/a\u003e fix: add custom inspect to lightweight Request/Response to prevent TypeError ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/fd64e659a34ec661fd9ccda00d1b9dff88dfaf90\"\u003e\u003ccode\u003efd64e65\u003c/code\u003e\u003c/a\u003e 1.19.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/025c30f55d589ddbe6048b151d77e904f67a8cc2\"\u003e\u003ccode\u003e025c30f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/6cdb5a724952f3df5748e435637792068ebea6d9\"\u003e\u003ccode\u003e6cdb5a7\u003c/code\u003e\u003c/a\u003e 1.19.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/70250f780ec99d2ddc0dd8275a42f8e091e06e94\"\u003e\u003ccode\u003e70250f7\u003c/code\u003e\u003c/a\u003e fix: request draining for early 413 responses (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/329\"\u003e#329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/cfc08b330a1f2e0a2d8cc7797cde389465b5f4fb\"\u003e\u003ccode\u003ecfc08b3\u003c/code\u003e\u003c/a\u003e chore: ignore claude setting (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/314\"\u003e#314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/ecd4d6be55117005acfd60a22d90c4818618507b\"\u003e\u003ccode\u003eecd4d6b\u003c/code\u003e\u003c/a\u003e 1.19.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c94489955ebd855630b703022837f7fe5f925111\"\u003e\u003ccode\u003ec944899\u003c/code\u003e\u003c/a\u003e fix: do not overwrite Content-Length in the fast path pattern if Content-Leng...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/2f8ca3665f5257305603783ec9999bd1a9bec0f2\"\u003e\u003ccode\u003e2f8ca36\u003c/code\u003e\u003c/a\u003e 1.19.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.9...v1.19.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/184bc32745d9d33b2322949b9f3cb5f7609bf5ec\"\u003e\u003ccode\u003e184bc32\u003c/code\u003e\u003c/a\u003e 6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/fea46afd1a76b12ff89493f6dc1bc46730c6d379\"\u003e\u003ccode\u003efea46af\u003c/code\u003e\u003c/a\u003e test/fix prototype pollution via $data ref with format keyword (\u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/2606\"\u003e#2606\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nRemoves `@tootallnate/once`\n\nUpdates `@xmldom/xmldom` from 0.8.11 to 0.8.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/releases\"\u003e\u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.13\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e0.8.12\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/discussions/357\"\u003ehttps://github.com/xmldom/xmldom/discussions/357\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md\"\u003e\u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003e0.8.13\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.9.8...0.9.9\"\u003e0.9.9\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eParentNode.children\u003c/code\u003e getter \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/960\"\u003e\u003ccode\u003e[#960](https://github.com/xmldom/xmldom/issues/960)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/410\"\u003e\u003ccode\u003e[#410](https://github.com/xmldom/xmldom/issues/410)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecorrectly traverse ancestor chain in \u003ccode\u003eNode.contains\u003c/code\u003e \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/931\"\u003e\u003ccode\u003e[#931](https://github.com/xmldom/xmldom/issues/931)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdated dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/yoshi389111\"\u003e\u003ccode\u003e@​yoshi389111\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003e0.8.12\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e5c14802592685bb872c042c54c3f73758875c85\"\u003e\u003ccode\u003ee5c1480\u003c/code\u003e\u003c/a\u003e 0.8.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/9611e20d75f059dc377f806a8f7ee7d1eaeaeb7c\"\u003e\u003ccode\u003e9611e20\u003c/code\u003e\u003c/a\u003e style: drop unused import in test file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/dc4dff3d1d0b5a6b97c52fcc1823a735b8821e62\"\u003e\u003ccode\u003edc4dff3\u003c/code\u003e\u003c/a\u003e docs: add 0.8.13 changelog entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/842fa38deedd2d9a9c90d0ad54aa1be75d2a41bc\"\u003e\u003ccode\u003e842fa38\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow in normalize (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/aeff69f5a32e8c1bd540683da9e10718f84f595c\"\u003e\u003ccode\u003eaeff69f\u003c/code\u003e\u003c/a\u003e test: add normalize behavioral coverage to node.test.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/cbdb0d7db8ae70760bd4cc181cb8f30bb0cd9d88\"\u003e\u003ccode\u003ecbdb0d7\u003c/code\u003e\u003c/a\u003e fix: make walkDOM iterative to prevent stack overflow (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/0b543d31794dc198c86a0358574cb5dec29674c5\"\u003e\u003ccode\u003e0b543d3\u003c/code\u003e\u003c/a\u003e test: assert namespace declarations are isolated between siblings in serializ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/c007c51909587990c962cf3d5c2acadf4c897b87\"\u003e\u003ccode\u003ec007c51\u003c/code\u003e\u003c/a\u003e refactor: migrate serializeToString to walkDOM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/2bb3899074820089d9e76ce28a5edfdacf425025\"\u003e\u003ccode\u003e2bb3899\u003c/code\u003e\u003c/a\u003e test: add serializeToString coverage for uncovered branches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e69f38d0a58731152d300e8c8eb29506f5f488fe\"\u003e\u003ccode\u003ee69f38d\u003c/code\u003e\u003c/a\u003e refactor: migrate importNode to walkDOM\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~karfau\"\u003ekarfau\u003c/a\u003e, a new releaser for \u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 6.2.1 to 7.5.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d6611ae951056addb77c6e11baf7bcc9d7648e46\"\u003e\u003ccode\u003ed6611ae\u003c/code\u003e\u003c/a\u003e 7.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/119c401f4f7efbeb112d28f9dfc9c489674c9a79\"\u003e\u003ccode\u003e119c401\u003c/code\u003e\u003c/a\u003e fix(extract): prevent raced symlink writes outside cwd\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2a294d3fbb24c18dc80f31059f49dd9af15653fe\"\u003e\u003ccode\u003e2a294d3\u003c/code\u003e\u003c/a\u003e 7.5.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/01082a42c3256ca6054f9627911cce4dbfe00d92\"\u003e\u003ccode\u003e01082a4\u003c/code\u003e\u003c/a\u003e fix: reject top promise on floating addFilesAsync rejections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/dd1c36ab7acff26e5a34935d17f27a45bb088db3\"\u003e\u003ccode\u003edd1c36a\u003c/code\u003e\u003c/a\u003e linting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/35a1ffe73eb4aa05cd2613f8fdcfb4c9c9ed59f9\"\u003e\u003ccode\u003e35a1ffe\u003c/code\u003e\u003c/a\u003e doc: more clarity in security warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/bf776f673164215074b62749e0fe80e5834588f4\"\u003e\u003ccode\u003ebf776f6\u003c/code\u003e\u003c/a\u003e 7.5.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad\"\u003e\u003ccode\u003ef48b5fa\u003c/code\u003e\u003c/a\u003e prevent escaping symlinks with drive-relative paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/97cff15d3539a37a4095eb3d287147d9d77c2dc3\"\u003e\u003ccode\u003e97cff15\u003c/code\u003e\u003c/a\u003e docs: more security info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2b72abc1d47c3570e1ad95c9ab557fc4c2e6e4b1\"\u003e\u003ccode\u003e2b72abc\u003c/code\u003e\u003c/a\u003e 7.5.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v6.2.1...v7.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `express-rate-limit` from 8.2.1 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/releases\"\u003eexpress-rate-limit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.4.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.2\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/69568d4ea794905df4ff2e872f04e1daa1f89050\"\u003e\u003ccode\u003e69568d4\u003c/code\u003e\u003c/a\u003e 8.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/c686acd0bac3058dca4b7f116f240e694878b517\"\u003e\u003ccode\u003ec686acd\u003c/code\u003e\u003c/a\u003e v8.4.1 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/ba71353abbd8a6a5ee891faea755026cf960ead2\"\u003e\u003ccode\u003eba71353\u003c/code\u003e\u003c/a\u003e test: bump timeout in flakey skipFailedRequests test (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/dd4c8944d4a739e819306c8dde57852eac8540e0\"\u003e\u003ccode\u003edd4c894\u003c/code\u003e\u003c/a\u003e feat: allow usage of custom logger (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/616\"\u003e#616\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/2bb343cd078c311e8bc7f48b31b9047cf17f3ece\"\u003e\u003ccode\u003e2bb343c\u003c/code\u003e\u003c/a\u003e resolve Jest timeout for server-based tests (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/c4dbb42c1b4891056545e30a9187a64c8bfeb8bc\"\u003e\u003ccode\u003ec4dbb42\u003c/code\u003e\u003c/a\u003e 8.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/8f1cc6639a430d6409e600c8e5434c1bc1e572bf\"\u003e\u003ccode\u003e8f1cc66\u003c/code\u003e\u003c/a\u003e v8.3.2 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/601b87f5d171487ed035ccdfee17ec75f5b22f2d\"\u003e\u003ccode\u003e601b87f\u003c/code\u003e\u003c/a\u003e Fix skipFailedRequests for for connections that close very early (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/611\"\u003e#611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/014c2f32708c0fdb5544834c3e77043e041ae38a\"\u003e\u003ccode\u003e014c2f3\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the development-dependencies group with 6 updates (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/612\"\u003e#612\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/4e8b18bf972eff2890ed67bd11d8a08a2c6502d5\"\u003e\u003ccode\u003e4e8b18b\u003c/code\u003e\u003c/a\u003e Remove Zuplo sponsorship details from README (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/613\"\u003e#613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/compare/v8.2.1...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for express-rate-limit since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flatted` from 3.3.3 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7\"\u003e\u003ccode\u003e3bf0909\u003c/code\u003e\u003c/a\u003e 3.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802\"\u003e\u003ccode\u003e885ddcc\u003c/code\u003e\u003c/a\u003e fix CWE-1321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3\"\u003e\u003ccode\u003e0bdba70\u003c/code\u003e\u003c/a\u003e added flatted-view to the benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20\"\u003e\u003ccode\u003e2a02dce\u003c/code\u003e\u003c/a\u003e 3.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416\"\u003e\u003ccode\u003efba4e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/WebReflection/flatted/issues/89\"\u003e#89\u003c/a\u003e from WebReflection/python-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7\"\u003e\u003ccode\u003e5fe8648\u003c/code\u003e\u003c/a\u003e added \u0026quot;when in Rome\u0026quot; also a test for PHP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0\"\u003e\u003ccode\u003e53517ad\u003c/code\u003e\u003c/a\u003e some minor improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f\"\u003e\u003ccode\u003eb3e2a0c\u003c/code\u003e\u003c/a\u003e Fixing recursion issue in Python too\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad\"\u003e\u003ccode\u003ec4b46db\u003c/code\u003e\u003c/a\u003e Add SECURITY.md for security policy and reporting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988\"\u003e\u003ccode\u003ef86d071\u003c/code\u003e\u003c/a\u003e Create dependabot.yml for version updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/WebReflection/flatted/compare/v3.3.3...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hono` from 4.11.9 to 4.12.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/hono/releases\"\u003ehono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.12.15\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(jwt): support single-line PEM keys by \u003ca href=\"https://github.com/hiendv\"\u003e\u003ccode\u003e@​hiendv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4889\"\u003ehonojs/hono#4889\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hiendv\"\u003e\u003ccode\u003e@​hiendv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4889\"\u003ehonojs/hono#4889\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/hono/compare/v4.12.14...v4.12.15\"\u003ehttps://github.com/honojs/hono/compare/v4.12.14...v4.12.15\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.12.14\u003c/h2\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cp\u003eThis release includes fixes for the following security issues:\u003c/p\u003e\n\u003ch3\u003eImproper handling of JSX attribute names in hono/jsx SSR\u003c/h3\u003e\n\u003cp\u003eAffects: hono/jsx. Fixes missing validation of JSX attribute names during server-side rendering, which could allow malformed attribute keys to corrupt the generated HTML output and inject unintended attributes or elements. GHSA-458j-xx4x-4375\u003c/p\u003e\n\u003ch2\u003eOther changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(aws-lambda): handle invalid header names in request processing (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4883\"\u003e#4883\u003c/a\u003e)  fa2c74fe\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.12.13\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(types): infer response type from last handler in app.on 9-/10-handler overloads by \u003ca href=\"https://github.com/T4ko0522\"\u003e\u003ccode\u003e@​T4ko0522\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4865\"\u003ehonojs/hono#4865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(trailing-slash): add \u003ccode\u003eskip\u003c/code\u003e option by \u003ca href=\"https://github.com/yusukebe\"\u003e\u003ccode\u003e@​yusukebe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4862\"\u003ehonojs/hono#4862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(cache): add \u003ccode\u003eonCacheNotAvailable\u003c/code\u003e option by \u003ca href=\"https://github.com/yusukebe\"\u003e\u003ccode\u003e@​yusukebe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4876\"\u003ehonojs/hono#4876\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/T4ko0522\"\u003e\u003ccode\u003e@​T4ko0522\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4865\"\u003ehonojs/hono#4865\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/hono/compare/v4.12.12...v4.12.13\"\u003ehttps://github.com/honojs/hono/compare/v4.12.12...v4.12.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.12.12\u003c/h2\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cp\u003eThis release includes fixes for the following security issues:\u003c/p\u003e\n\u003ch3\u003eMiddleware bypass via repeated slashes in serveStatic\u003c/h3\u003e\n\u003cp\u003eAffects: Serve Static middleware. Fixes a path normalization inconsistency where repeated slashes (\u003ccode\u003e//\u003c/code\u003e) could bypass route-based middleware protections and allow access to protected static files. GHSA-wmmm-f939-6g9c\u003c/p\u003e\n\u003ch3\u003ePath traversal in toSSG() allows writing files outside the output directory\u003c/h3\u003e\n\u003cp\u003eAffects: \u003ccode\u003etoSSG()\u003c/code\u003e for Static Site Generation. Fixes a path traversal issue where crafted \u003ccode\u003essgParams\u003c/code\u003e values could write files outside the configured output directory. GHSA-xf4j-xp2r-rqqx\u003c/p\u003e\n\u003ch3\u003eIncorrect IP matching in ipRestriction() for IPv4-mapped IPv6 addresses\u003c/h3\u003e\n\u003cp\u003eAffects: IP Restriction Middleware. Fixes improper handling of IPv4-mapped IPv6 addresses (e.g. \u003ccode\u003e::ffff:127.0.0.1\u003c/code\u003e) that could cause allow/deny rules to be bypassed. GHSA-xpcf-pg52-r92g\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/f774f8df49e7ec7e205f15c5076a37132c515ebf\"\u003e\u003ccode\u003ef774f8d\u003c/code\u003e\u003c/a\u003e 4.12.15\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/18fe604c8cefc2628240651b1af219692e1918c1\"\u003e\u003ccode\u003e18fe604\u003c/code\u003e\u003c/a\u003e fix(jwt): support single-line PEM keys (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4889\"\u003e#4889\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/cf2d2b7edcf07adef2db7614557f4d7f9e2be7ba\"\u003e\u003ccode\u003ecf2d2b7\u003c/code\u003e\u003c/a\u003e 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/66daa2edef8965544c04fcad82c596ab2acdb5ee\"\u003e\u003ccode\u003e66daa2e\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/fa2c74fe5c3ce996d025d9d97bf5670c207bb82e\"\u003e\u003ccode\u003efa2c74f\u003c/code\u003e\u003c/a\u003e fix(aws-lambda): handle invalid header names in request processing (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4883\"\u003e#4883\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/3779927c17201dc6bfd20697f0e1ec65407da779\"\u003e\u003ccode\u003e3779927\u003c/code\u003e\u003c/a\u003e 4.12.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/faa6c46a1aa3a8b792b29e20fc93bcd6d2a4d720\"\u003e\u003ccode\u003efaa6c46\u003c/code\u003e\u003c/a\u003e feat(cache): add \u003ccode\u003eonCacheNotAvailable\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4876\"\u003e#4876\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/f23e97b7f300bcb8571ae864010b8f7cdb5d0d5d\"\u003e\u003ccode\u003ef23e97b\u003c/code\u003e\u003c/a\u003e feat(trailing-slash): add \u003ccode\u003eskip\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4862\"\u003e#4862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/1aa32fb91e7bc1366811d80ebcce61ec0d0c68cb\"\u003e\u003ccode\u003e1aa32fb\u003c/code\u003e\u003c/a\u003e fix(types): infer response type from last handler in app.on 9- and 10-handler...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/c37ba26da9709ad03b803d1972773ed864b7e60d\"\u003e\u003ccode\u003ec37ba26\u003c/code\u003e\u003c/a\u003e 4.12.12\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/honojs/hono/compare/v4.11.9...v4.12.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=...\n\n_Description has been truncated_","html_url":"https://github.com/helton-godoy/automaker/pull/20","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/helton-godoy%2Fautomaker/issues/20","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/20/packages"},{"uuid":"4326428909","node_id":"PR_kwDORHBcW87Vgxqm","number":4,"state":"open","title":"chore(deps): bump seroval from 1.3.2 to 1.4.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-25T00:42:38.000Z","updated_at":"2026-04-25T00:42:40.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"seroval","old_version":"1.3.2","new_version":"1.4.2","repository_url":"https://github.com/lxsmnsyc/seroval"}],"path":null,"ecosystem":"npm"},"body":"Bumps [seroval](https://github.com/lxsmnsyc/seroval) from 1.3.2 to 1.4.2.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/ce9408ebc87312fcad345a73c172212f2a798060\"\u003e\u003ccode\u003ece9408e\u003c/code\u003e\u003c/a\u003e \u003ccode\u003e1.4.1\u003c/code\u003e and \u003ccode\u003e1.4.2\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/727bd41a8e05541af92a404256b43bc4725a29df\"\u003e\u003ccode\u003e727bd41\u003c/code\u003e\u003c/a\u003e 1.4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/e3bd7baf451c5836e6ef70a75f8275a07ea49fe5\"\u003e\u003ccode\u003ee3bd7ba\u003c/code\u003e\u003c/a\u003e Fix changeset\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/a140120fa14ad529f9559b6a5684a548415cce57\"\u003e\u003ccode\u003ea140120\u003c/code\u003e\u003c/a\u003e Fix late stuff\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/e030d631b4b19490c8c47a796c1b4ec37e8a203a\"\u003e\u003ccode\u003ee030d63\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/lxsmnsyc/seroval/issues/65\"\u003e#65\u003c/a\u003e from lxsmnsyc/restructure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/435fc5ff4816562eb179ce754559b42965941899\"\u003e\u003ccode\u003e435fc5f\u003c/code\u003e\u003c/a\u003e Fix function strings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/466ec821a91a8007a0cb270df3ef2a7bc8362e49\"\u003e\u003ccode\u003e466ec82\u003c/code\u003e\u003c/a\u003e Fix snapshots and promise closure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/32444b333a7e93ccf31e7aa1d01f0c243b2a8857\"\u003e\u003ccode\u003e32444b3\u003c/code\u003e\u003c/a\u003e Replace \u003ccode\u003ecreateDeferred\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/f1ed4bf59715be17570729e4f4434ca2827cf259\"\u003e\u003ccode\u003ef1ed4bf\u003c/code\u003e\u003c/a\u003e Fix snapshots\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/a8e8cad25df1aeee404458a7379bed9dfcbd4df5\"\u003e\u003ccode\u003ea8e8cad\u003c/code\u003e\u003c/a\u003e Fix snapshots\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lxsmnsyc/seroval/compare/v1.3.2...1.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=seroval\u0026package-manager=npm_and_yarn\u0026previous-version=1.3.2\u0026new-version=1.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/arthrod/router/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/arthrod/router/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/arthrod%2Frouter/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"},{"uuid":"4326426497","node_id":"PR_kwDORYB4rM7VgxJH","number":11,"state":"open","title":"build(deps): bump seroval and solid-js","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-25T00:41:56.000Z","updated_at":"2026-04-25T00:42:08.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"seroval","repository_url":"https://github.com/lxsmnsyc/seroval","old_version":"1.3.2","new_version":"1.5.2"},{"name":"solid-js","repository_url":"https://github.com/solidjs/solid","old_version":"1.9.10","new_version":"1.9.12"}],"path":null,"ecosystem":"npm"},"body":"Bumps [seroval](https://github.com/lxsmnsyc/seroval) and [solid-js](https://github.com/solidjs/solid). These dependencies needed to be updated together.\nUpdates `seroval` from 1.3.2 to 1.5.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lxsmnsyc/seroval/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `solid-js` from 1.9.10 to 1.9.12\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/solidjs/solid/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/NayamAmarshe/telegram-exported-chats-viewer/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/NayamAmarshe/telegram-exported-chats-viewer/pull/11","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/NayamAmarshe%2Ftelegram-exported-chats-viewer/issues/11","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11/packages"},{"uuid":"4289141567","node_id":"PR_kwDOQntYx87TopKF","number":25,"state":"closed","title":"Bump seroval and solid-js in /frontend","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-04-18T20:49:09.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-18T20:45:48.000Z","updated_at":"2026-04-18T20:49:16.000Z","time_to_close":201,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"seroval","repository_url":"https://github.com/lxsmnsyc/seroval","old_version":"1.3.2","new_version":"1.5.2"},{"name":"solid-js","repository_url":"https://github.com/solidjs/solid","old_version":"1.9.10","new_version":"1.9.12"}],"path":"/frontend","ecosystem":"npm"},"body":"Bumps [seroval](https://github.com/lxsmnsyc/seroval) and [solid-js](https://github.com/solidjs/solid). These dependencies needed to be updated together.\nUpdates `seroval` from 1.3.2 to 1.5.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lxsmnsyc/seroval/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `solid-js` from 1.9.10 to 1.9.12\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/solidjs/solid/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/saisudhir14/ai-voice-agent/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/saisudhir14/ai-voice-agent/pull/25","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/saisudhir14%2Fai-voice-agent/issues/25","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/25/packages"},{"uuid":"4286308648","node_id":"PR_kwDORs7m1M7Tf_yt","number":5,"state":"closed","title":"chore(deps): bump the npm-minor-patch group across 1 directory with 142 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-04-25T01:35:28.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-18T01:55:19.000Z","updated_at":"2026-04-25T01:35:30.000Z","time_to_close":603609,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm-minor-patch","update_count":142,"packages":[{"name":"@applemusic-like-lyrics/lyric","old_version":"0.3.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/vue","old_version":"0.2.0","new_version":"0.4.0","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@neteasecloudmusicapienhanced/api","old_version":"4.30.3","new_version":"4.32.0"},{"name":"@types/pg","old_version":"8.18.0","new_version":"8.20.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"axios","old_version":"1.13.6","new_version":"1.15.0","repository_url":"https://github.com/axios/axios"},{"name":"dotenv","old_version":"17.3.1","new_version":"17.4.2","repository_url":"https://github.com/motdotla/dotenv"},{"name":"drizzle-orm","old_version":"0.45.1","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"lodash-es","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"postgres","old_version":"3.4.8","new_version":"3.4.9","repository_url":"https://github.com/porsager/postgres"},{"name":"redis","old_version":"5.11.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"sass","old_version":"1.98.0","new_version":"1.99.0","repository_url":"https://github.com/sass/dart-sass"},{"name":"vite-plugin-glsl","old_version":"1.5.6","new_version":"1.6.0","repository_url":"https://github.com/UstymUkhman/vite-plugin-glsl"},{"name":"vue","old_version":"3.5.30","new_version":"3.5.32","repository_url":"https://github.com/vuejs/core"},{"name":"prettier","old_version":"3.8.1","new_version":"3.8.3","repository_url":"https://github.com/prettier/prettier"},{"name":"@clack/prompts","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@emnapi/core","old_version":"1.9.1","new_version":"1.10.0","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/runtime","old_version":"1.9.1","new_version":"1.10.0","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@eslint/compat","old_version":"2.0.3","new_version":"2.0.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"@humanfs/core","old_version":"0.19.1","new_version":"0.19.2","repository_url":"https://github.com/humanwhocodes/humanfs"},{"name":"@humanfs/node","old_version":"0.16.7","new_version":"0.16.8","repository_url":"https://github.com/humanwhocodes/humanfs"},{"name":"path-to-regexp","old_version":"0.1.12","new_version":"0.1.13","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"@nuxt/telemetry","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nuxt/telemetry"},{"name":"@swc/core","old_version":"1.15.18","new_version":"1.15.26","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/helpers","old_version":"0.5.19","new_version":"0.5.21","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/wasm","old_version":"1.15.18","new_version":"1.15.26","repository_url":"https://github.com/swc-project/swc"},{"name":"@types/node","old_version":"25.5.0","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.57.1","new_version":"8.58.2","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@unhead/vue","old_version":"2.1.12","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"@vercel/nft","old_version":"1.4.0","new_version":"1.5.0","repository_url":"https://github.com/vercel/nft"},{"name":"@vitejs/plugin-vue","old_version":"6.0.5","new_version":"6.0.6","repository_url":"https://github.com/vitejs/vite-plugin-vue"},{"name":"@vue/devtools-core","old_version":"8.1.0","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"autoprefixer","old_version":"10.4.27","new_version":"10.5.0","repository_url":"https://github.com/postcss/autoprefixer"},{"name":"bare-fs","old_version":"4.5.6","new_version":"4.7.1","repository_url":"https://github.com/holepunchto/bare-fs"},{"name":"bare-os","old_version":"3.8.0","new_version":"3.8.7","repository_url":"https://github.com/holepunchto/bare-os"},{"name":"bare-stream","old_version":"2.10.0","new_version":"2.13.0","repository_url":"https://github.com/holepunchto/bare-stream"},{"name":"basic-ftp","old_version":"5.2.0","new_version":"5.3.0","repository_url":"https://github.com/patrickjuchli/basic-ftp"},{"name":"builtin-modules","old_version":"5.0.0","new_version":"5.1.0","repository_url":"https://github.com/sindresorhus/builtin-modules"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"cookie-es","old_version":"1.2.2","new_version":"1.2.3","repository_url":"https://github.com/unjs/cookie-es"},{"name":"css-declaration-sorter","old_version":"7.3.1","new_version":"7.4.0","repository_url":"https://github.com/Siilwyn/css-declaration-sorter"},{"name":"cssnano","old_version":"7.1.3","new_version":"7.1.5","repository_url":"https://github.com/cssnano/cssnano"},{"name":"devalue","old_version":"5.6.4","new_version":"5.7.1","repository_url":"https://github.com/sveltejs/devalue"},{"name":"diff","old_version":"8.0.3","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"dompurify","old_version":"3.3.3","new_version":"3.4.0","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"eslint-config-flat-gitignore","old_version":"2.2.1","new_version":"2.3.0","repository_url":"https://github.com/antfu/eslint-config-flat-gitignore"},{"name":"eslint-flat-config-utils","old_version":"3.0.2","new_version":"3.1.0","repository_url":"https://github.com/antfu/eslint-flat-config-utils"},{"name":"eslint-plugin-jsdoc","old_version":"62.8.0","new_version":"62.9.0","repository_url":"https://github.com/gajus/eslint-plugin-jsdoc"},{"name":"fast-npm-meta","old_version":"1.4.2","new_version":"1.5.0","repository_url":"https://github.com/antfu/fast-npm-meta"},{"name":"file-type","old_version":"21.3.3","new_version":"21.3.4","repository_url":"https://github.com/sindresorhus/file-type"},{"name":"follow-redirects","old_version":"1.15.11","new_version":"1.16.0","repository_url":"https://github.com/follow-redirects/follow-redirects"},{"name":"fuse.js","old_version":"7.1.0","new_version":"7.3.0","repository_url":"https://github.com/krisk/Fuse"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.14.0","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"globby","old_version":"16.1.1","new_version":"16.2.0","repository_url":"https://github.com/sindresorhus/globby"},{"name":"h3","old_version":"1.15.9","new_version":"1.15.11","repository_url":"https://github.com/h3js/h3"},{"name":"hasown","old_version":"2.0.2","new_version":"2.0.3","repository_url":"https://github.com/inspect-js/hasOwn"},{"name":"launch-editor","old_version":"2.13.1","new_version":"2.13.2","repository_url":"https://github.com/yyx990803/launch-editor"},{"name":"listhen","old_version":"1.9.0","new_version":"1.9.1","repository_url":"https://github.com/unjs/listhen"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"netmask","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/rs/node-netmask"},{"name":"nitropack","old_version":"2.13.1","new_version":"2.13.3","repository_url":"https://github.com/nitrojs/nitro"},{"name":"node-releases","old_version":"2.0.36","new_version":"2.0.37","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"postcss","old_version":"8.5.8","new_version":"8.5.10","repository_url":"https://github.com/postcss/postcss"},{"name":"regjsparser","old_version":"0.13.0","new_version":"0.13.1","repository_url":"https://github.com/jviereck/regjsparser"},{"name":"resolve","old_version":"1.22.11","new_version":"1.22.12","repository_url":"https://github.com/browserify/resolve"},{"name":"seroval","old_version":"1.5.1","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"simple-git","old_version":"3.33.0","new_version":"3.36.0","repository_url":"https://github.com/steveukx/git-js"},{"name":"srvx","old_version":"0.11.12","new_version":"0.11.15","repository_url":"https://github.com/h3js/srvx"},{"name":"strtok3","old_version":"10.3.4","new_version":"10.3.5","repository_url":"https://github.com/Borewit/strtok3"},{"name":"tar","old_version":"7.5.12","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"tinyexec","old_version":"1.0.4","new_version":"1.1.1","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"type-fest","old_version":"5.5.0","new_version":"5.6.0","repository_url":"https://github.com/sindresorhus/type-fest"},{"name":"uqr","old_version":"0.1.2","new_version":"0.1.3","repository_url":"https://github.com/unjs/uqr"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.2","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-minor-patch group with 78 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@applemusic-like-lyrics/lyric](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/lyric) | `0.3.0` | `0.4.1` |\n| [@applemusic-like-lyrics/vue](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue) | `0.2.0` | `0.4.0` |\n| @neteasecloudmusicapienhanced/api | `4.30.3` | `4.32.0` |\n| [@types/pg](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/pg) | `8.18.0` | `8.20.0` |\n| [axios](https://github.com/axios/axios) | `1.13.6` | `1.15.0` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.3.1` | `17.4.2` |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.45.1` | `0.45.2` |\n| [lodash-es](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [postgres](https://github.com/porsager/postgres) | `3.4.8` | `3.4.9` |\n| [redis](https://github.com/redis/node-redis) | `5.11.0` | `5.12.1` |\n| [sass](https://github.com/sass/dart-sass) | `1.98.0` | `1.99.0` |\n| [vite-plugin-glsl](https://github.com/UstymUkhman/vite-plugin-glsl) | `1.5.6` | `1.6.0` |\n| [vue](https://github.com/vuejs/core) | `3.5.30` | `3.5.32` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.3` |\n| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.1.0` | `1.2.0` |\n| [@emnapi/core](https://github.com/toyobayashi/emnapi) | `1.9.1` | `1.10.0` |\n| [@emnapi/runtime](https://github.com/toyobayashi/emnapi) | `1.9.1` | `1.10.0` |\n| [@eslint/compat](https://github.com/eslint/rewrite/tree/HEAD/packages/compat) | `2.0.3` | `2.0.5` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.14` |\n| [@humanfs/core](https://github.com/humanwhocodes/humanfs) | `0.19.1` | `0.19.2` |\n| [@humanfs/node](https://github.com/humanwhocodes/humanfs/tree/HEAD/packages/node) | `0.16.7` | `0.16.8` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `0.1.12` | `0.1.13` |\n| [@nuxt/telemetry](https://github.com/nuxt/telemetry) | `2.7.0` | `2.8.0` |\n| [@swc/core](https://github.com/swc-project/swc/tree/HEAD/packages/core) | `1.15.18` | `1.15.26` |\n| [@swc/helpers](https://github.com/swc-project/swc/tree/HEAD/packages/helpers) | `0.5.19` | `0.5.21` |\n| [@swc/wasm](https://github.com/swc-project/swc) | `1.15.18` | `1.15.26` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.5.0` | `25.6.0` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.57.1` | `8.58.2` |\n| [@unhead/vue](https://github.com/unjs/unhead/tree/HEAD/packages/vue) | `2.1.12` | `2.1.13` |\n| [@vercel/nft](https://github.com/vercel/nft) | `1.4.0` | `1.5.0` |\n| [@vitejs/plugin-vue](https://github.com/vitejs/vite-plugin-vue/tree/HEAD/packages/plugin-vue) | `6.0.5` | `6.0.6` |\n| [@vue/devtools-core](https://github.com/vuejs/devtools/tree/HEAD/packages/core) | `8.1.0` | `8.1.1` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [autoprefixer](https://github.com/postcss/autoprefixer) | `10.4.27` | `10.5.0` |\n| [bare-fs](https://github.com/holepunchto/bare-fs) | `4.5.6` | `4.7.1` |\n| [bare-os](https://github.com/holepunchto/bare-os) | `3.8.0` | `3.8.7` |\n| [bare-stream](https://github.com/holepunchto/bare-stream) | `2.10.0` | `2.13.0` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.2.0` | `5.3.0` |\n| [builtin-modules](https://github.com/sindresorhus/builtin-modules) | `5.0.0` | `5.1.0` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `1.2.2` | `1.2.3` |\n| [css-declaration-sorter](https://github.com/Siilwyn/css-declaration-sorter) | `7.3.1` | `7.4.0` |\n| [cssnano](https://github.com/cssnano/cssnano) | `7.1.3` | `7.1.5` |\n| [devalue](https://github.com/sveltejs/devalue) | `5.6.4` | `5.7.1` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.3` | `8.0.4` |\n| [dompurify](https://github.com/cure53/DOMPurify) | `3.3.3` | `3.4.0` |\n| [eslint-config-flat-gitignore](https://github.com/antfu/eslint-config-flat-gitignore) | `2.2.1` | `2.3.0` |\n| [eslint-flat-config-utils](https://github.com/antfu/eslint-flat-config-utils) | `3.0.2` | `3.1.0` |\n| [eslint-plugin-jsdoc](https://github.com/gajus/eslint-plugin-jsdoc) | `62.8.0` | `62.9.0` |\n| [fast-npm-meta](https://github.com/antfu/fast-npm-meta) | `1.4.2` | `1.5.0` |\n| [file-type](https://github.com/sindresorhus/file-type) | `21.3.3` | `21.3.4` |\n| [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.15.11` | `1.16.0` |\n| [fuse.js](https://github.com/krisk/Fuse) | `7.1.0` | `7.3.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.14.0` |\n| [globby](https://github.com/sindresorhus/globby) | `16.1.1` | `16.2.0` |\n| [h3](https://github.com/h3js/h3) | `1.15.9` | `1.15.11` |\n| [hasown](https://github.com/inspect-js/hasOwn) | `2.0.2` | `2.0.3` |\n| [launch-editor](https://github.com/yyx990803/launch-editor) | `2.13.1` | `2.13.2` |\n| [listhen](https://github.com/unjs/listhen) | `1.9.0` | `1.9.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [netmask](https://github.com/rs/node-netmask) | `2.0.2` | `2.1.1` |\n| [nitropack](https://github.com/nitrojs/nitro) | `2.13.1` | `2.13.3` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.36` | `2.0.37` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.8` | `8.5.10` |\n| [regjsparser](https://github.com/jviereck/regjsparser) | `0.13.0` | `0.13.1` |\n| [resolve](https://github.com/browserify/resolve) | `1.22.11` | `1.22.12` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.1` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.33.0` | `3.36.0` |\n| [srvx](https://github.com/h3js/srvx) | `0.11.12` | `0.11.15` |\n| [strtok3](https://github.com/Borewit/strtok3) | `10.3.4` | `10.3.5` |\n| [tar](https://github.com/isaacs/node-tar) | `7.5.12` | `7.5.13` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.4` | `1.1.1` |\n| [type-fest](https://github.com/sindresorhus/type-fest) | `5.5.0` | `5.6.0` |\n| [uqr](https://github.com/unjs/uqr) | `0.1.2` | `0.1.3` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.2` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |\n\n\nUpdates `@applemusic-like-lyrics/lyric` from 0.3.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/2fc5d2e19d7a2ce70501a347dec4f5f4f90fbfe2\"\u003e\u003ccode\u003e2fc5d2e\u003c/code\u003e\u003c/a\u003e fix: lyric 包 rust 侧适配 romanWord 可选\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/d862271aa1396b19b9a8bb4d8cd484a0df366270\"\u003e\u003ccode\u003ed862271\u003c/code\u003e\u003c/a\u003e fix: 修复 lyric 包 romanWord 类型\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/@applemusic-like-lyrics/lyric@0.4.1/packages/lyric\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/vue` from 0.2.0 to 0.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/blob/main/packages/vue/CHANGELOG.md\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.0 (2026-04-14)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore: 移除 canvas 歌词渲染器 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: 重构核心库测试组织模式 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/3db83c93\"\u003e3db83c93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: 更换工具链 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edocs: 修正 optimize-lyric.ts 和 OptimizeLyricOptions 里 cleanUnintentionalOverlaps 的文档和注释 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/75a8c0bb\"\u003e75a8c0bb\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho \u003ca href=\"https://github.com/Linho1219\"\u003e\u003ccode\u003e@​Linho1219\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMoYingJi \u003ca href=\"https://github.com/MoYingJi\"\u003e\u003ccode\u003e@​MoYingJi\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ef837385e99b16d46e4fddadd26aa756ba10231c\"\u003e\u003ccode\u003eef83738\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/aa845765f3fbc15df6d3ede5129a2a0e303da910\"\u003e\u003ccode\u003eaa84576\u003c/code\u003e\u003c/a\u003e chore: 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/bf4e41b4f8bac3610e17aa03fbfde7c11b1f730b\"\u003e\u003ccode\u003ebf4e41b\u003c/code\u003e\u003c/a\u003e 更换各个工具链 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/98b80b2b3a32dc09dfaf24cc9ba7f4797b2d3a1f\"\u003e\u003ccode\u003e98b80b2\u003c/code\u003e\u003c/a\u003e chore: 统一 TS 配置\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/69d7bef0f1f109a0626aadf564b3e50d3385c165\"\u003e\u003ccode\u003e69d7bef\u003c/code\u003e\u003c/a\u003e chore: 强制在构建时执行类型检查\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/9a81450a68a6731b31d8a9d0639e2e70ccb5d32b\"\u003e\u003ccode\u003e9a81450\u003c/code\u003e\u003c/a\u003e refactor: 抽离 vue playground\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/1a0803d465c230ac0ad46f70d85080d4debaf170\"\u003e\u003ccode\u003e1a0803d\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.4.0/packages/vue\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@neteasecloudmusicapienhanced/api` from 4.30.3 to 4.32.0\n\nUpdates `@types/pg` from 8.18.0 to 8.20.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/pg\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.6 to 1.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.0\u003c/h2\u003e\n\u003cp\u003eThis release delivers two critical security patches, adds runtime support for Deno and Bun, and includes significant CI hardening, documentation improvements, and routine dependency updates.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecation:\u003c/strong\u003e \u003ccode\u003eurl.parse()\u003c/code\u003e usage has been replaced to address Node.js deprecation warnings. If you are on a recent version of Node.js, this resolves console warnings you may have been seeing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed a \u003ccode\u003eno_proxy\u003c/code\u003e hostname normalisation bypass that could lead to Server-Side Request Forgery (SSRF). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHeader Injection:\u003c/strong\u003e Fixed an unrestricted cloud metadata exfiltration vulnerability via a header injection chain. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10660\"\u003e#10660\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Support:\u003c/strong\u003e Added compatibility checks and documentation for Deno and Bun environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10652\"\u003e#10652\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10653\"\u003e#10653\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Security:\u003c/strong\u003e Hardened workflow permissions to least privilege, added the \u003ccode\u003ezizmor\u003c/code\u003e security scanner, pinned action versions, and gated npm publishing with OIDC and environment protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10618\"\u003e#10618\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10619\"\u003e#10619\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10627\"\u003e#10627\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10637\"\u003e#10637\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eserialize-javascript\u003c/code\u003e, \u003ccode\u003ehandlebars\u003c/code\u003e, \u003ccode\u003epicomatch\u003c/code\u003e, \u003ccode\u003evite\u003c/code\u003e, and \u003ccode\u003edenoland/setup-deno\u003c/code\u003e to latest versions. Added a 7-day Dependabot cooldown period. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10574\"\u003e#10574\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10572\"\u003e#10572\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10568\"\u003e#10568\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10616\"\u003e#10616\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocumentation:\u003c/strong\u003e Unified docs, improved \u003ccode\u003ebeforeRedirect\u003c/code\u003e credential leakage example, clarified \u003ccode\u003ewithCredentials\u003c/code\u003e/\u003ccode\u003ewithXSRFToken\u003c/code\u003e behaviour, HTTP/2 support notes, async/await timeout error handling, header case preservation, and various typo fixes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10649\"\u003e#10649\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7471\"\u003e#7471\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10654\"\u003e#10654\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10644\"\u003e#10644\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHousekeeping:\u003c/strong\u003e Removed stale files, regenerated lockfile, and updated sponsor scripts and blocks. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10584\"\u003e#10584\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10650\"\u003e#10650\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10582\"\u003e#10582\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10640\"\u003e#10640\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10659\"\u003e#10659\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Added regression coverage for urlencoded \u003ccode\u003eContent-Type\u003c/code\u003e casing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve Axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/raashish1601\"\u003e\u003ccode\u003e@​raashish1601\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Kilros0817\"\u003e\u003ccode\u003e@​Kilros0817\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/ashstrc\"\u003e\u003ccode\u003e@​ashstrc\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Abhi3975\"\u003e\u003ccode\u003e@​Abhi3975\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/theamodhshetty\"\u003e\u003ccode\u003e@​theamodhshetty\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.14.0\u003c/h2\u003e\n\u003cp\u003eThis release focuses on compatibility fixes, adapter stability improvements, and test/tooling modernisation.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBreaking Changes:\u003c/strong\u003e None identified in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAction Required:\u003c/strong\u003e If you rely on env-based proxy behaviour or CJS resolution edge-cases, validate your integration after upgrade (notably \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 alignment and \u003ccode\u003emain\u003c/code\u003e entry compatibility fix).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Features:\u003c/strong\u003e No new end-user features were introduced in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTest Coverage Expansion:\u003c/strong\u003e Added broader smoke/module test coverage for CJS and ESM package usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7510\"\u003e#7510\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e Trim trailing CRLF in normalised header values. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7456\"\u003e#7456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP/2:\u003c/strong\u003e Close detached HTTP/2 sessions on timeout to avoid lingering sessions. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7457\"\u003e#7457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Cancel \u003ccode\u003eReadableStream\u003c/code\u003e created during request-stream capability probing to prevent async resource leaks. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7515\"\u003e#7515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed env proxy behavior with \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7499\"\u003e#7499\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.0 — April 7, 2026\u003c/h2\u003e\n\u003cp\u003eThis release delivers two critical security patches targeting header injection and SSRF via proxy bypass, adds official runtime support for Deno and Bun, and includes significant CI security hardening.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eHeader Injection (CRLF):\u003c/strong\u003e Rejects any header value containing \u003ccode\u003e\\r\u003c/code\u003e or \u003ccode\u003e\\n\u003c/code\u003e characters to block CRLF injection chains that could be used to exfiltrate cloud metadata (IMDS). Behavior change: headers with CR/LF now throw \u003ccode\u003e\u0026quot;Invalid character in header content\u0026quot;\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10660\"\u003e#10660\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eSSRF via \u003ccode\u003eno_proxy\u003c/code\u003e Bypass:\u003c/strong\u003e Introduces a \u003ccode\u003eshouldBypassProxy\u003c/code\u003e helper that normalises hostnames (strips trailing dots, handles bracketed IPv6) before evaluating \u003ccode\u003eno_proxy\u003c/code\u003e/\u003ccode\u003eNO_PROXY\u003c/code\u003e rules, closing a gap that could cause loopback or internal hosts to be inadvertently proxied. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDeno \u0026amp; Bun Runtime Support:\u003c/strong\u003e Added full smoke test suites for Deno and Bun, with CI workflows that run both runtimes before any release is cut. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10652\"\u003e#10652\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eNode.js v22 Compatibility:\u003c/strong\u003e Replaced deprecated \u003ccode\u003eurl.parse()\u003c/code\u003e calls with the WHATWG \u003ccode\u003eURL\u003c/code\u003e/\u003ccode\u003eURLSearchParams\u003c/code\u003e API across examples, sandbox, and tests, eliminating \u003ccode\u003eDEP0169\u003c/code\u003e deprecation warnings on Node.js v22+. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eCI Security Hardening:\u003c/strong\u003e Added \u003ca href=\"https://github.com/zizmorcore/zizmor\"\u003ezizmor\u003c/a\u003e GitHub Actions security scanner; switched npm publish to OIDC Trusted Publishing (removing the long-lived \u003ccode\u003eNODE_AUTH_TOKEN\u003c/code\u003e); pinned all action references to full commit SHAs; narrowed workflow permissions to least privilege; gated the publish step behind a dedicated \u003ccode\u003enpm-publish\u003c/code\u003e environment; and blocked the sponsor-block workflow from running on forks. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10618\"\u003e#10618\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10619\"\u003e#10619\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10627\"\u003e#10627\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10637\"\u003e#10637\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10641\"\u003e#10641\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Clarified HTTP/2 support and the unsupported \u003ccode\u003ehttpVersion\u003c/code\u003e option; added documentation for header case preservation; improved the \u003ccode\u003ebeforeRedirect\u003c/code\u003e example to prevent accidental credential leakage. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10644\"\u003e#10644\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10654\"\u003e#10654\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003epicomatch\u003c/code\u003e, \u003ccode\u003ehandlebars\u003c/code\u003e, \u003ccode\u003eserialize-javascript\u003c/code\u003e, \u003ccode\u003evite\u003c/code\u003e (×3), \u003ccode\u003edenoland/setup-deno\u003c/code\u003e, and 4 additional dev dependencies to latest versions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10564\"\u003e#10564\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10565\"\u003e#10565\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10567\"\u003e#10567\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10568\"\u003e#10568\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10572\"\u003e#10572\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10574\"\u003e#10574\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Kilros0817\"\u003e\u003ccode\u003e@​Kilros0817\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/shaanmajid\"\u003e\u003ccode\u003e@​shaanmajid\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10616\"\u003e#10616\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10617\"\u003e#10617\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10618\"\u003e#10618\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10619\"\u003e#10619\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10637\"\u003e#10637\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10641\"\u003e#10641\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/ashstrc\"\u003e\u003ccode\u003e@​ashstrc\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10644\"\u003e#10644\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Abhi3975\"\u003e\u003ccode\u003e@​Abhi3975\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/raashish1601\"\u003e\u003ccode\u003e@​raashish1601\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.14.0...v1.15.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003chr /\u003e\n\u003ch2\u003ev1.14.0 — March 27, 2026\u003c/h2\u003e\n\u003cp\u003eThis release fixes a security vulnerability in the \u003ccode\u003eformidable\u003c/code\u003e dependency, resolves a CommonJS compatibility regression, hardens proxy and HTTP/2 handling, and modernises the build and test toolchain.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFormidable Vulnerability:\u003c/strong\u003e Upgraded \u003ccode\u003eformidable\u003c/code\u003e from v2 to v3 to address a reported arbitrary-file vulnerability. Updated test server and assertions to align with the v3 API. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7533\"\u003e#7533\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/772a4e54ecc4cc2421e2b746daff0aca10f359d7\"\u003e\u003ccode\u003e772a4e5\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10671\"\u003e#10671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4b071371be2f810b4bc7797a13838e0f806ebb22\"\u003e\u003ccode\u003e4b07137\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.0 to 8.0.5 in /tests/smoke/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/51e57b39db251bfe3d34af5c943dfea18e06c8b6\"\u003e\u003ccode\u003e51e57b3\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fba1a77930f0c459677b729161627234b88c90aa\"\u003e\u003ccode\u003efba1a77\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 in /tests/module/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0bf6e28eac86e87da2b60bbf5ea4237910e1a08e\"\u003e\u003ccode\u003e0bf6e28\u003c/code\u003e\u003c/a\u003e chore(deps): bump denoland/setup-deno in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8107157c572ee4a54cb28c01ab7f7f3d895ba661\"\u003e\u003ccode\u003e8107157\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the development_dependencies group with 4 updates (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e66530e3302d56176befd0778155dafea2487542\"\u003e\u003ccode\u003ee66530e\u003c/code\u003e\u003c/a\u003e ci: require npm-publish environment for releases (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/49f23cbfe4d308a075281c5f798d4c68f648cbe2\"\u003e\u003ccode\u003e49f23cb\u003c/code\u003e\u003c/a\u003e chore(sponsor): update sponsor block (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/363185461b90b1b78845dc8a99a1f103d9b122a1\"\u003e\u003ccode\u003e3631854\u003c/code\u003e\u003c/a\u003e fix: unrestricted cloud metadata exfiltration via header injection chain (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10\"\u003e#10\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fb3befb6daac6cad26b2e54094d0f2d9e47f24df\"\u003e\u003ccode\u003efb3befb\u003c/code\u003e\u003c/a\u003e fix: no_proxy hostname normalization bypass leads to ssrf (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.6...v1.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv` from 17.3.1 to 17.4.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md\"\u003edotenv's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.1...v17.4.2\"\u003e17.4.2\u003c/a\u003e (2026-04-12)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImproved skill files - tightened up details (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.0...v17.4.1\"\u003e17.4.1\u003c/a\u003e (2026-04-05)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange text \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1005\"\u003e#1005\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.0\"\u003e17.4.0\u003c/a\u003e (2026-04-01)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eskills/\u003c/code\u003e folder with focused agent skills: \u003ccode\u003eskills/dotenv/SKILL.md\u003c/code\u003e (core usage) and \u003ccode\u003eskills/dotenvx/SKILL.md\u003c/code\u003e (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (\u003ccode\u003enpx skills add motdotla/dotenv\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTighten up logs: \u003ccode\u003e◇ injecting env (14) from .env\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1003\"\u003e#1003\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/f116f70310abab44fbfddbaeb833698b5bf84a9b\"\u003e\u003ccode\u003ef116f70\u003c/code\u003e\u003c/a\u003e 17.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/3a8161274fdd745239b86e604f4a7e972a1d3902\"\u003e\u003ccode\u003e3a81612\u003c/code\u003e\u003c/a\u003e fix visual order of faq\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/13f55a89e136b2024e68d277b836dd5260fc16cf\"\u003e\u003ccode\u003e13f55a8\u003c/code\u003e\u003c/a\u003e Merge branch 'skill'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/4bbbf73f0906bd69975c48bf310a84b686e5b1b4\"\u003e\u003ccode\u003e4bbbf73\u003c/code\u003e\u003c/a\u003e reorganize faq\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/c3da64bb2ba1d0e02f8b9b2b7ccb7e6f7a51d56c\"\u003e\u003ccode\u003ec3da64b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1009\"\u003e#1009\u003c/a\u003e from motdotla/skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/6f743b173fbd6c26f7eab7040d251f9a6c8b977d\"\u003e\u003ccode\u003e6f743b1\u003c/code\u003e\u003c/a\u003e update source\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/fc2c6247e858a32d4024cb06a5b0c79aa35851f5\"\u003e\u003ccode\u003efc2c624\u003c/code\u003e\u003c/a\u003e update skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/972315ba74bb2bbba4483d112e853fd26006ef8a\"\u003e\u003ccode\u003e972315b\u003c/code\u003e\u003c/a\u003e Tighten up skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/2795fce3d1ed07b4c570f1e06ab1c0d533c86997\"\u003e\u003ccode\u003e2795fce\u003c/code\u003e\u003c/a\u003e reorganize faq\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/d5495d4ae8e4e41ef9a682c9e00c81552794274e\"\u003e\u003ccode\u003ed5495d4\u003c/code\u003e\u003c/a\u003e adjust skill\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `drizzle-orm` from 0.45.1 to 0.45.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/releases\"\u003edrizzle-orm's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.45.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esql.identifier()\u003c/code\u003e, \u003ccode\u003esql.as()\u003c/code\u003e escaping issues. Previously all the values passed to this functions were not properly escaped\ncausing a possible SQL Injection (CWE-89) vulnerability\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/EthanKim88\"\u003e\u003ccode\u003e@​EthanKim88\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/0x90sh\"\u003e\u003ccode\u003e@​0x90sh\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/wgoodall01\"\u003e\u003ccode\u003e@​wgoodall01\u003c/code\u003e\u003c/a\u003e for reaching out to us with a reproduction and suggested fix\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/273c78071d4841b497f5144734b38294df7ec64b\"\u003e\u003ccode\u003e273c780\u003c/code\u003e\u003c/a\u003e + 0.45.2 (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5534\"\u003e#5534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/4aa6ecfee4b4728dadf6f77f071a149878a3c6c0\"\u003e\u003ccode\u003e4aa6ecf\u003c/code\u003e\u003c/a\u003e Kit updates (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5490\"\u003e#5490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/e8e6edfef5ca69c6188d320388ad440265911057\"\u003e\u003ccode\u003ee8e6edf\u003c/code\u003e\u003c/a\u003e feat(drizzle-kit): support d1 via binding (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5302\"\u003e#5302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/compare/0.45.1...0.45.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash-es` from 4.17.23 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash-es's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postgres` from 3.4.8 to 3.4.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/porsager/postgres/releases\"\u003epostgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.4.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e  1e92809\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ehttps://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/e7dfa14519f363229ccc3ead7b1b2f2051937efb\"\u003e\u003ccode\u003ee7dfa14\u003c/code\u003e\u003c/a\u003e 3.4.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/cc29931aa1280fc62b9452647a48a89fe5d443a2\"\u003e\u003ccode\u003ecc29931\u003c/code\u003e\u003c/a\u003e build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/1e92809e79dda7873d96646403c068cd6998ea73\"\u003e\u003ccode\u003e1e92809\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `redis` from 5.11.0 to 5.12.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/node-redis/releases\"\u003eredis's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eredis@5.12.0\u003c/h2\u003e\n\u003ch2\u003e✨ What's Changed\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat: expose \u003ccode\u003esendCommand\u003c/code\u003e on \u003ccode\u003emulti\u003c/code\u003e for all clients by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3181\"\u003eredis/node-redis#3181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(sentinel): add \u003ccode\u003esSubscribe\u003c/code\u003e/\u003ccode\u003esUnsubscribe\u003c/code\u003e methods to Sentinel client by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3178\"\u003eredis/node-redis#3178\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🐛 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix(search): correct \u003ccode\u003eINDEXMISSING\u003c/code\u003e placement by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3179\"\u003eredis/node-redis#3179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePool fixes by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3182\"\u003eredis/node-redis#3182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(search): use \u003ccode\u003e@redis/client\u003c/code\u003e dist imports in \u003ccode\u003eCREATE\u003c/code\u003e command by \u003ca href=\"https://github.com/PavelPashov\"\u003e\u003ccode\u003e@​PavelPashov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3187\"\u003eredis/node-redis#3187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(sentinel): preserve root seeds for outage recovery by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3188\"\u003eredis/node-redis#3188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: fallthrough bug in \u003ccode\u003etransformDoubleReply\u003c/code\u003e by \u003ca href=\"https://github.com/rhymincymon\"\u003e\u003ccode\u003e@​rhymincymon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3213\"\u003eredis/node-redis#3213\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🔭 Observability (OTEL + Diagnostics)\u003c/h3\u003e\n\u003cp\u003eNode Redis now ships with first-class observability via OpenTelemetry metrics and Node.js \u003ccode\u003ediagnostics_channel\u003c/code\u003e. Initialize \u003ccode\u003eOpenTelemetry\u003c/code\u003e before creating clients (\u003ccode\u003eOpenTelemetry.init({ metrics: { enabled: true } })\u003c/code\u003e) and you can plug Redis client telemetry into your existing OTel SDK/exporter pipeline.\u003c/p\u003e\n\u003cp\u003eThis enables visibility into command latency, connection lifecycle, resiliency/errors, Pub/Sub traffic, streaming behavior, and client-side caching activity. On top of metrics, diagnostics channels provide a more abstract, higher-level way to track runtime behavior through low-overhead event streams (commands, batches, connection events, maintenance notifications, pub/sub, cache, and pool wait timing), so APM tools or custom subscribers can observe the system without changing application code.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eadd OpenTelemetry metrics instrumentation by \u003ca href=\"https://github.com/PavelPashov\"\u003e\u003ccode\u003e@​PavelPashov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3110\"\u003eredis/node-redis#3110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: implement diagnostic channels for observability by \u003ca href=\"https://github.com/logaretm\"\u003e\u003ccode\u003e@​logaretm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3195\"\u003eredis/node-redis#3195\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🧪 Tests \u0026amp; CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003etest(scho oss): add smigrating checks for new connections by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3186\"\u003eredis/node-redis#3186\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd self-report metrics step to CI workflow by \u003ca href=\"https://github.com/bobymicroby\"\u003e\u003ccode\u003e@​bobymicroby\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3199\"\u003eredis/node-redis#3199\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd run tests action by \u003ca href=\"https://github.com/dariaguy\"\u003e\u003ccode\u003e@​dariaguy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3221\"\u003eredis/node-redis#3221\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📚 Docs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove sentinel docs by \u003ca href=\"https://github.com/cutiepoka\"\u003e\u003ccode\u003e@​cutiepoka\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3189\"\u003eredis/node-redis#3189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: clarify DUMP/RESTORE binary payload usage by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3201\"\u003eredis/node-redis#3201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(docs): configure typedoc entry points for monorepo by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3220\"\u003eredis/node-redis#3220\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🙌 New Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cutiepoka\"\u003e\u003ccode\u003e@​cutiepoka\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3189\"\u003eredis/node-redis#3189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rhymincymon\"\u003e\u003ccode\u003e@​rhymincymon\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3213\"\u003eredis/node-redis#3213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/logaretm\"\u003e\u003ccode\u003e@​logaretm\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3195\"\u003eredis/node-redis#3195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dariaguy\"\u003e\u003ccode\u003e@​dariaguy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3221\"\u003eredis/node-redis#3221\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/redis/node-redis/compare/redis@5.11.0...redis@5.12.0\"\u003ehttps://github.com/redis/node-redis/compare/redis@5.11.0...redis@5.12.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/5cdad1b34d1448119673b336086f9db4c3376ddd\"\u003e\u003ccode\u003e5cdad1b\u003c/code\u003e\u003c/a\u003e Release redis@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/6a447261fc77c4577aa5127fb269f8b69cfe6732\"\u003e\u003ccode\u003e6a44726\u003c/code\u003e\u003c/a\u003e Release entraid@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/9f930f906915976cb9386cb8188a2dd2610a8cdf\"\u003e\u003ccode\u003e9f930f9\u003c/code\u003e\u003c/a\u003e Release time-series@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/de70920ecb4caf2a9c871a24cf08f1fcb41b1d2d\"\u003e\u003ccode\u003ede70920\u003c/code\u003e\u003c/a\u003e Release search@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/9e7767c5bf2cb06bcce872fe99e5dbb349e3a074\"\u003e\u003ccode\u003e9e7767c\u003c/code\u003e\u003c/a\u003e Release json@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/02cfd5ad4c07ef6c1d703e25d3c2076eacfb4b45\"\u003e\u003ccode\u003e02cfd5a\u003c/code\u003e\u003c/a\u003e Release bloom@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/838c28d9f55d13a7933e650b9f7782fdb5af4f71\"\u003e\u003ccode\u003e838c28d\u003c/code\u003e\u003c/a\u003e Release client@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/789d6d5c5c774fda24257ce1fc7f4f66b80ae689\"\u003e\u003ccode\u003e789d6d5\u003c/code\u003e\u003c/a\u003e fix: decouple OTel public types from \u003ccode\u003e@​opentelemetry/api\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/node-redis/issues/3228\"\u003e#3228\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/07aff3345d9fc5dc956ea9a145a132ff32b19392\"\u003e\u003ccode\u003e07aff33\u003c/code\u003e\u003c/a\u003e Release redis@5.12.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/b91d88f5fc63fe8786566cf4197be2c383f163ec\"\u003e\u003ccode\u003eb91d88f\u003c/code\u003e\u003c/a\u003e Release entraid@5.12.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/redis/node-redis/compare/redis@5.11.0...redis@5.12.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sass` from 1.98.0 to 1.99.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/releases\"\u003esass's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDart Sass 1.99.0\u003c/h2\u003e\n\u003cp\u003eTo install Sass 1.99.0, download one of the packages below and \u003ca href=\"https://katiek2.github.io/path-doc/\"\u003eadd it to your PATH\u003c/a\u003e, or see \u003ca href=\"https://sass-lang.com/install\"\u003ethe Sass website\u003c/a\u003e for full installation instructions.\u003c/p\u003e\n\u003ch1\u003eChanges\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are emitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping root\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If such a function exists without a namespace in the current module, it will be used instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e, \u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were originally intended to match vendor prefixes, but in practice no vendor prefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some lowercase letters are now deprecated, These are names conflict with plain CSS functions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now, these calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are deprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/sass/dart-sass/blob/master/CHANGELOG.md#1990\"\u003efull changelog\u003c/a\u003e for changes in earlier releases.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/blob/main/CHANGELOG.md\"\u003esass's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.99.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are\nemitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping\nroot\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If\nsuch a function exists without a namespace in the current module, it will be\nused instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e,\n\u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were\noriginally intended to match vendor prefixes, but in practice no vendor\nprefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that\nbegin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some\nlowercase letters are now deprecated, These are names conflict with plain CSS\nfunctions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end\nwith \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now,\nthese calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are\ndeprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/83c39fec93ab0dc183a46cff2bc468999ce53e20\"\u003e\u003ccode\u003e83c39fe\u003c/code\u003e\u003c/a\u003e Support the top-level parent selector (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2758\"\u003e#2758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/ec85871864ca16f8045e66ad329bd462e791bfa1\"\u003e\u003ccode\u003eec85871\u003c/code\u003e\u003c/a\u003e Bump EndBug/add-and-commit from 9 to 10 (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2756\"\u003e#2756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/a604acd19ad2ce31ef2efe9aa5950b0c5fcc74a9\"\u003e\u003ccode\u003ea604acd\u003c/code\u003e\u003c/a\u003e [Function Name] Implement changes (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/sass/dart-sass/compare/1.98.0...1.99.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite-plugin-glsl` from 1.5.6 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/UstymUkhman/vite-plugin-glsl/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vue` from 3.5.30 to 3.5.32\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/releases\"\u003evue's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.32\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003ch2\u003ev3.5.31\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003evue's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.31...v3.5.32\"\u003e3.5.32\u003c/a\u003e (2026-04-03)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent currentInstance leak into sibling render during async setup re-entry (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14668\"\u003e#14668\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/f1663535a163057788d3285dec54a245c3efb3ad\"\u003ef166353\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/1466...\n\n_Description has been truncated_","html_url":"https://github.com/QQXIAOZHOU/VoiceHub-4805e/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/QQXIAOZHOU%2FVoiceHub-4805e/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"},{"uuid":"4282470428","node_id":"PR_kwDORhEIoc7TTj5S","number":16,"state":"closed","title":"Bump the all group across 1 directory with 174 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-20T01:50:57.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-17T12:09:13.000Z","updated_at":"2026-04-20T01:50:59.000Z","time_to_close":222104,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all","update_count":174,"packages":[{"name":"@hey-api/openapi-ts","old_version":"0.94.0","new_version":"0.96.0","repository_url":"https://github.com/hey-api/openapi-ts"},{"name":"@libsql/client","old_version":"0.17.0","new_version":"0.17.2","repository_url":"https://github.com/tursodatabase/libsql-client-ts"},{"name":"@supabase/supabase-js","old_version":"2.99.1","new_version":"2.103.3","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@tailwindcss/vite","old_version":"4.2.1","new_version":"4.2.2","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tanstack/react-query","old_version":"5.95.2","new_version":"5.99.0","repository_url":"https://github.com/TanStack/query"},{"name":"@tanstack/react-router","old_version":"1.166.7","new_version":"1.168.22","repository_url":"https://github.com/TanStack/router"},{"name":"@tanstack/router-plugin","old_version":"1.166.7","new_version":"1.167.22","repository_url":"https://github.com/TanStack/router"},{"name":"@trpc/client","old_version":"11.12.0","new_version":"11.16.0","repository_url":"https://github.com/trpc/trpc"},{"name":"@trpc/react-query","old_version":"11.12.0","new_version":"11.16.0","repository_url":"https://github.com/trpc/trpc"},{"name":"framer-motion","old_version":"12.35.2","new_version":"12.38.0","repository_url":"https://github.com/motiondivision/motion"},{"name":"pixi.js","old_version":"8.17.0","new_version":"8.18.1","repository_url":"https://github.com/pixijs/pixijs"},{"name":"react","old_version":"19.2.4","new_version":"19.2.5","repository_url":"https://github.com/facebook/react"},{"name":"react-dom","old_version":"19.2.4","new_version":"19.2.5","repository_url":"https://github.com/facebook/react"},{"name":"systeminformation","old_version":"5.31.4","new_version":"5.31.5","repository_url":"https://github.com/sebhildebrandt/systeminformation"},{"name":"yauzl","old_version":"3.2.1","new_version":"3.3.0","repository_url":"https://github.com/thejoshwolfe/yauzl"},{"name":"@eslint/js","old_version":"9.39.4","new_version":"10.0.1","repository_url":"https://github.com/eslint/eslint"},{"name":"@types/node","old_version":"25.4.0","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.57.0","new_version":"8.58.2","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/parser","old_version":"8.57.0","new_version":"8.58.2","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@vitejs/plugin-react","old_version":"5.1.4","new_version":"6.0.1","repository_url":"https://github.com/vitejs/vite-plugin-react"},{"name":"dotenv","old_version":"17.3.1","new_version":"17.4.2","repository_url":"https://github.com/motdotla/dotenv"},{"name":"electron","old_version":"41.1.1","new_version":"41.2.1","repository_url":"https://github.com/electron/electron"},{"name":"eslint","old_version":"9.39.4","new_version":"10.2.0","repository_url":"https://github.com/eslint/eslint"},{"name":"eslint-plugin-react-hooks","old_version":"7.0.1","new_version":"7.1.0","repository_url":"https://github.com/facebook/react"},{"name":"globals","old_version":"17.4.0","new_version":"17.5.0","repository_url":"https://github.com/sindresorhus/globals"},{"name":"javascript-obfuscator","old_version":"5.3.0","new_version":"5.4.1","repository_url":"https://github.com/javascript-obfuscator/javascript-obfuscator"},{"name":"jsdom","old_version":"28.1.0","new_version":"29.0.2","repository_url":"https://github.com/jsdom/jsdom"},{"name":"lint-staged","old_version":"16.3.3","new_version":"16.4.0","repository_url":"https://github.com/lint-staged/lint-staged"},{"name":"prettier","old_version":"3.8.1","new_version":"3.8.3","repository_url":"https://github.com/prettier/prettier"},{"name":"terser","old_version":"5.46.0","new_version":"5.46.1","repository_url":"https://github.com/terser/terser"},{"name":"typescript","old_version":"5.9.3","new_version":"6.0.3","repository_url":"https://github.com/microsoft/TypeScript"},{"name":"typescript-eslint","old_version":"8.57.0","new_version":"8.58.2","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"vite","old_version":"7.3.2","new_version":"8.0.8","repository_url":"https://github.com/vitejs/vite"},{"name":"vite-plugin-electron","old_version":"0.29.0","new_version":"0.29.1","repository_url":"https://github.com/electron-vite/vite-plugin-electron"},{"name":"vitest","old_version":"4.0.18","new_version":"4.1.4","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@babel/helpers","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/parser","old_version":"7.29.0","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/runtime","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"brace-expansion","old_version":"1.1.13","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"@noble/hashes","old_version":"2.0.1","new_version":"2.2.0","repository_url":"https://github.com/paulmillr/noble-hashes"},{"name":"@types/debug","old_version":"4.1.12","new_version":"4.1.13","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@vercel/blob","old_version":"2.3.1","new_version":"2.3.3","repository_url":"https://github.com/vercel/storage"},{"name":"undici","old_version":"6.24.1","new_version":"6.25.0","repository_url":"https://github.com/nodejs/undici"},{"name":"axe-core","old_version":"4.11.1","new_version":"4.11.3","repository_url":"https://github.com/dequelabs/axe-core"},{"name":"bare-fs","old_version":"4.5.6","new_version":"4.7.1","repository_url":"https://github.com/holepunchto/bare-fs"},{"name":"bare-os","old_version":"3.8.6","new_version":"3.8.7","repository_url":"https://github.com/holepunchto/bare-os"},{"name":"bare-stream","old_version":"2.11.0","new_version":"2.13.0","repository_url":"https://github.com/holepunchto/bare-stream"},{"name":"baseline-browser-mapping","old_version":"2.10.0","new_version":"2.10.19","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"call-bind","old_version":"1.0.8","new_version":"1.0.9","repository_url":"https://github.com/ljharb/call-bind"},{"name":"es-abstract","old_version":"1.24.1","new_version":"1.24.2","repository_url":"https://github.com/ljharb/es-abstract"},{"name":"es-iterator-helpers","old_version":"1.2.2","new_version":"1.3.2","repository_url":"https://github.com/es-shims/iterator-helpers"},{"name":"isbot","old_version":"5.1.35","new_version":"5.1.39","repository_url":"https://github.com/omrilotan/isbot"},{"name":"libphonenumber-js","old_version":"1.12.38","new_version":"1.12.41"},{"name":"minipass-flush","old_version":"1.0.5","new_version":"1.0.7","repository_url":"https://github.com/isaacs/minipass-flush"},{"name":"node-abi","old_version":"4.26.0","new_version":"4.28.0","repository_url":"https://github.com/electron/node-abi"},{"name":"sanitize-filename","old_version":"1.6.3","new_version":"1.6.4","repository_url":"https://github.com/parshap/node-sanitize-filename"},{"name":"sax","old_version":"1.4.4","new_version":"1.6.0","repository_url":"https://github.com/isaacs/sax-js"},{"name":"seroval","old_version":"1.5.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"seroval-plugins","old_version":"1.5.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"validator","old_version":"13.15.26","new_version":"13.15.35","repository_url":"https://github.com/validatorjs/validator.js"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"}],"path":null,"ecosystem":"npm"},"body":"Bumps the all group with 64 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@hey-api/openapi-ts](https://github.com/hey-api/openapi-ts) | `0.94.0` | `0.96.0` |\n| [@libsql/client](https://github.com/tursodatabase/libsql-client-ts/tree/HEAD/packages/libsql-client) | `0.17.0` | `0.17.2` |\n| [@supabase/supabase-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js) | `2.99.1` | `2.103.3` |\n| [@tailwindcss/vite](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite) | `4.2.1` | `4.2.2` |\n| [@tanstack/react-query](https://github.com/TanStack/query/tree/HEAD/packages/react-query) | `5.95.2` | `5.99.0` |\n| [@tanstack/react-router](https://github.com/TanStack/router/tree/HEAD/packages/react-router) | `1.166.7` | `1.168.22` |\n| [@tanstack/router-plugin](https://github.com/TanStack/router/tree/HEAD/packages/router-plugin) | `1.166.7` | `1.167.22` |\n| [@trpc/client](https://github.com/trpc/trpc/tree/HEAD/packages/client) | `11.12.0` | `11.16.0` |\n| [@trpc/react-query](https://github.com/trpc/trpc/tree/HEAD/packages/react) | `11.12.0` | `11.16.0` |\n| [framer-motion](https://github.com/motiondivision/motion) | `12.35.2` | `12.38.0` |\n| [pixi.js](https://github.com/pixijs/pixijs) | `8.17.0` | `8.18.1` |\n| [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.4` | `19.2.5` |\n| [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.4` | `19.2.5` |\n| [systeminformation](https://github.com/sebhildebrandt/systeminformation) | `5.31.4` | `5.31.5` |\n| [yauzl](https://github.com/thejoshwolfe/yauzl) | `3.2.1` | `3.3.0` |\n| [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js) | `9.39.4` | `10.0.1` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.4.0` | `25.6.0` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.57.0` | `8.58.2` |\n| [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.57.0` | `8.58.2` |\n| [@vitejs/plugin-react](https://github.com/vitejs/vite-plugin-react/tree/HEAD/packages/plugin-react) | `5.1.4` | `6.0.1` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.3.1` | `17.4.2` |\n| [electron](https://github.com/electron/electron) | `41.1.1` | `41.2.1` |\n| [eslint](https://github.com/eslint/eslint) | `9.39.4` | `10.2.0` |\n| [eslint-plugin-react-hooks](https://github.com/facebook/react/tree/HEAD/packages/eslint-plugin-react-hooks) | `7.0.1` | `7.1.0` |\n| [globals](https://github.com/sindresorhus/globals) | `17.4.0` | `17.5.0` |\n| [javascript-obfuscator](https://github.com/javascript-obfuscator/javascript-obfuscator) | `5.3.0` | `5.4.1` |\n| [jsdom](https://github.com/jsdom/jsdom) | `28.1.0` | `29.0.2` |\n| [lint-staged](https://github.com/lint-staged/lint-staged) | `16.3.3` | `16.4.0` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.3` |\n| [terser](https://github.com/terser/terser) | `5.46.0` | `5.46.1` |\n| [typescript](https://github.com/microsoft/TypeScript) | `5.9.3` | `6.0.3` |\n| [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) | `8.57.0` | `8.58.2` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.2` | `8.0.8` |\n| [vite-plugin-electron](https://github.com/electron-vite/vite-plugin-electron) | `0.29.0` | `0.29.1` |\n| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `4.0.18` | `4.1.4` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.28.6` | `7.29.2` |\n| [@babel/parser](https://github.com/babel/babel/tree/HEAD/packages/babel-parser) | `7.29.0` | `7.29.2` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.28.6` | `7.29.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.13` | `1.1.14` |\n| [@noble/hashes](https://github.com/paulmillr/noble-hashes) | `2.0.1` | `2.2.0` |\n| [@types/debug](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/debug) | `4.1.12` | `4.1.13` |\n| [@vercel/blob](https://github.com/vercel/storage/tree/HEAD/packages/blob) | `2.3.1` | `2.3.3` |\n| [undici](https://github.com/nodejs/undici) | `6.24.1` | `6.25.0` |\n| [axe-core](https://github.com/dequelabs/axe-core) | `4.11.1` | `4.11.3` |\n| [bare-fs](https://github.com/holepunchto/bare-fs) | `4.5.6` | `4.7.1` |\n| [bare-os](https://github.com/holepunchto/bare-os) | `3.8.6` | `3.8.7` |\n| [bare-stream](https://github.com/holepunchto/bare-stream) | `2.11.0` | `2.13.0` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.10.0` | `2.10.19` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [call-bind](https://github.com/ljharb/call-bind) | `1.0.8` | `1.0.9` |\n| [es-abstract](https://github.com/ljharb/es-abstract) | `1.24.1` | `1.24.2` |\n| [es-iterator-helpers](https://github.com/es-shims/iterator-helpers) | `1.2.2` | `1.3.2` |\n| [isbot](https://github.com/omrilotan/isbot) | `5.1.35` | `5.1.39` |\n| [libphonenumber-js](https://gitlab.com/catamphetamine/libphonenumber-js) | `1.12.38` | `1.12.41` |\n| [minipass-flush](https://github.com/isaacs/minipass-flush) | `1.0.5` | `1.0.7` |\n| [node-abi](https://github.com/electron/node-abi) | `4.26.0` | `4.28.0` |\n| [sanitize-filename](https://github.com/parshap/node-sanitize-filename) | `1.6.3` | `1.6.4` |\n| [sax](https://github.com/isaacs/sax-js) | `1.4.4` | `1.6.0` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.0` | `1.5.2` |\n| [seroval-plugins](https://github.com/lxsmnsyc/seroval) | `1.5.0` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.15.26` | `13.15.35` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n\n\nUpdates `@hey-api/openapi-ts` from 0.94.0 to 0.96.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hey-api/openapi-ts/releases\"\u003e\u003ccode\u003e@​hey-api/openapi-ts\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​hey-api/openapi-ts\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.95.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eplugin(valibot)\u003c/strong\u003e: remove request data schema (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3671\"\u003e#3671\u003c/a\u003e) (\u003ca href=\"https://github.com/hey-api/openapi-ts/commit/96f60adb6af144e39133884e97e74a6693b6c059\"\u003e\u003ccode\u003e96f60ad\u003c/code\u003e\u003c/a\u003e) by \u003ca href=\"https://github.com/mrlubos\"\u003e\u003ccode\u003e@​mrlubos\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eValidator request schemas\u003c/h3\u003e\n\u003cp\u003eValibot plugin no longer exports composite request \u003ccode\u003eData\u003c/code\u003e schemas. Instead, each layer is exported as a separate schema. If you're using validators with SDKs, you can preserve the composite schema with \u003ccode\u003eshouldExtract\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eexport default {\n  input: \u0026quot;hey-api/backend\u0026quot;, // sign up at app.heyapi.dev\n  output: \u0026quot;src/client\u0026quot;,\n  plugins: [\n    // ...other plugins\n    {\n      name: \u0026quot;sdk\u0026quot;,\n      validator: \u0026quot;valibot\u0026quot;,\n    },\n    {\n      name: \u0026quot;valibot\u0026quot;,\n      requests: {\n        shouldExtract: true,\n      },\n    },\n  ],\n};\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003einternal\u003c/strong\u003e: remove \u003ccode\u003eplugin.getSymbol()\u003c/code\u003e function (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3671\"\u003e#3671\u003c/a\u003e) (\u003ca href=\"https://github.com/hey-api/openapi-ts/commit/96f60adb6af144e39133884e97e74a6693b6c059\"\u003e\u003ccode\u003e96f60ad\u003c/code\u003e\u003c/a\u003e) by \u003ca href=\"https://github.com/mrlubos\"\u003e\u003ccode\u003e@​mrlubos\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved \u003ccode\u003eplugin.getSymbol()\u003c/code\u003e function\u003c/h3\u003e\n\u003cp\u003eThis function has been removed. You can use \u003ccode\u003eplugin.querySymbol()\u003c/code\u003e instead. It accepts the same arguments and returns the same result.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eplugin(zod)\u003c/strong\u003e: remove request data schema (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3671\"\u003e#3671\u003c/a\u003e) (\u003ca href=\"https://github.com/hey-api/openapi-ts/commit/96f60adb6af144e39133884e97e74a6693b6c059\"\u003e\u003ccode\u003e96f60ad\u003c/code\u003e\u003c/a\u003e) by \u003ca href=\"https://github.com/mrlubos\"\u003e\u003ccode\u003e@​mrlubos\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eValidator request schemas\u003c/h3\u003e\n\u003cp\u003eZod plugin no longer exports composite request \u003ccode\u003eData\u003c/code\u003e schemas. Instead, each layer is exported as a separate schema. If you're using validators with SDKs, you can preserve the composite schema with \u003ccode\u003eshouldExtract\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eexport default {\n  input: \u0026quot;hey-api/backend\u0026quot;, // sign up at app.heyapi.dev\n  output: \u0026quot;src/client\u0026quot;,\n  plugins: [\n    // ...other plugins\n    {\n      name: \u0026quot;sdk\u0026quot;,\n      validator: \u0026quot;zod\u0026quot;,\n\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt; \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hey-api/openapi-ts/blob/main/CHANGELOG.md\"\u003e\u003ccode\u003e@​hey-api/openapi-ts\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​hey-api/openapi-ts\u003c/code\u003e 0.96.0\u003c/h2\u003e\n\u003ch3\u003e⚠️ Breaking\u003c/h3\u003e\n\u003cp\u003eThis release has 1 breaking change. Please review the release notes carefully before upgrading.\u003c/p\u003e\n\u003ch3\u003eUpdates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e This release bumps the minimum required Node version to 22.13. (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3694\"\u003e#3694\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecli: improve error message on invalid input (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3679\"\u003e#3679\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eparser: keep orphans when explicitly included in filters (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3714\"\u003e#3714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eparser: process enum metadata (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3727\"\u003e#3727\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePlugins\u003c/h3\u003e\n\u003ch4\u003e\u003ccode\u003e@​angular/common\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003erequests and resources broken default configuration (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3678\"\u003e#3678\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-angular\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-axios\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-fetch\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-ky\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-next\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-nuxt\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-ofetch\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/transformers\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003ereturn value for primitive array entries (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3733\"\u003e#3733\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/hey-api/openapi-ts/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@libsql/client` from 0.17.0 to 0.17.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/697ae59038dc61224c1b3cf57b0d5a71b315ca5a\"\u003e\u003ccode\u003e697ae59\u003c/code\u003e\u003c/a\u003e 0.17.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/b15a87226612dad953f56d2dee10f811137ead92\"\u003e\u003ccode\u003eb15a872\u003c/code\u003e\u003c/a\u003e Bump libsql dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/1fede76c2ffa109a67a20e8a73d366a9fba538c2\"\u003e\u003ccode\u003e1fede76\u003c/code\u003e\u003c/a\u003e 0.17.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/8f1e8d386e95f98891af56283a731261224c43ca\"\u003e\u003ccode\u003e8f1e8d3\u003c/code\u003e\u003c/a\u003e Bump libsql dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/138f4a3c334f6031d372e46f29409c8384c6f4e6\"\u003e\u003ccode\u003e138f4a3\u003c/code\u003e\u003c/a\u003e Mention Turso serverless package\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commits/v0.17.2/packages/libsql-client\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@supabase/supabase-js` from 2.99.1 to 2.103.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/supabase/supabase-js/releases\"\u003e\u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.103.3\u003c/h2\u003e\n\u003ch2\u003e2.103.3 (2026-04-16)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e throw Error objects instead of bare strings (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2256\"\u003e#2256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e correct signedUrl type to allow null in createSignedUrls (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2254\"\u003e#2254\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKaterina Skroumpelou \u003ca href=\"https://github.com/mandarini\"\u003e\u003ccode\u003e@​mandarini\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eoniani1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.103.3-canary.1\u003c/h2\u003e\n\u003ch2\u003e2.103.3-canary.1 (2026-04-16)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e add stripNulls method for null value stripping (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2189\"\u003e#2189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e add cacheNonce parameter for download (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2234\"\u003e#2234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esupabase:\u003c/strong\u003e export PostgrestFilterBuilder and StorageApiError from supabase-js (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2222\"\u003e#2222\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eauth:\u003c/strong\u003e downgrade console.error to console.warn for missing session (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2214\"\u003e#2214\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eauth:\u003c/strong\u003e add toJSON to AuthError for correct JSON serialization (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eauth:\u003c/strong\u003e include Cloudflare error codes in NETWORK_ERROR_CODES (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2239\"\u003e#2239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eauth:\u003c/strong\u003e remove Prettify wrapper from exported types for TypeDoc expansion (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2250\"\u003e#2250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efunctions:\u003c/strong\u003e add toJSON to FunctionsError for correct JSON serialization (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2226\"\u003e#2226\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emisc:\u003c/strong\u003e add explicit return types to toJSON methods for JSR compat (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2252\"\u003e#2252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e fix scalar computed column type inference for isNotNullable and SETOF scalar (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2224\"\u003e#2224\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e handle bigint rpc (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2245\"\u003e#2245\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e throw Error objects instead of bare strings (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2256\"\u003e#2256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e set correct content-type for uploads (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2211\"\u003e#2211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e avoid duplicate content-type headers in vector requests (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2220\"\u003e#2220\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e add toJSON to StorageError for correct JSON serialization (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2246\"\u003e#2246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e apply empty transform check to download and getPublicUrl (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2219\"\u003e#2219\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e remove client-side signed URL render endpoint normalization (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2249\"\u003e#2249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e correct signedUrl type to allow null in createSignedUrls (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2254\"\u003e#2254\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKaterina Skroumpelou \u003ca href=\"https://github.com/mandarini\"\u003e\u003ccode\u003e@​mandarini\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eoniani1\u003c/li\u003e\n\u003cli\u003eSeydi Charyyev \u003ca href=\"https://github.com/TheSeydiCharyyev\"\u003e\u003ccode\u003e@​TheSeydiCharyyev\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eVaibhav \u003ca href=\"https://github.com/7ttp\"\u003e\u003ccode\u003e@​7ttp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eVansh Sharma \u003ca href=\"https://github.com/Vansh1811\"\u003e\u003ccode\u003e@​Vansh1811\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.103.3-canary.0\u003c/h2\u003e\n\u003ch2\u003e2.103.3-canary.0 (2026-04-15)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/supabase/supabase-js/blob/master/packages/core/supabase-js/CHANGELOG.md\"\u003e\u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.103.3 (2026-04-16)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.2 (2026-04-15)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.1 (2026-04-15)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.0 (2026-04-09)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.102.1 (2026-04-07)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.102.0 (2026-04-07)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esupabase:\u003c/strong\u003e export PostgrestFilterBuilder and StorageApiError from supabase-js (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2222\"\u003e#2222\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e add automatic retries for transient errors (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuilherme Souza\u003c/li\u003e\n\u003cli\u003eKaterina Skroumpelou \u003ca href=\"https://github.com/mandarini\"\u003e\u003ccode\u003e@​mandarini\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.101.1 (2026-03-31)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.101.0 (2026-03-30)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.100.1 (2026-03-26)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e narrow tstyche testFileMatch to only type test files (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2193\"\u003e#2193\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKaterina Skroumpelou \u003ca href=\"https://github.com/mandarini\"\u003e\u003ccode\u003e@​mandarini\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/a2f94144fae2a4a5dc713cb71dbcce46ad3e92f0\"\u003e\u003ccode\u003ea2f9414\u003c/code\u003e\u003c/a\u003e chore(release): version 2.103.2 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2253\"\u003e#2253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/f9da9eef4f54ebebc8de8da8c525c1a1b1b7bbd4\"\u003e\u003ccode\u003ef9da9ee\u003c/code\u003e\u003c/a\u003e chore(release): version 2.103.1 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/d38c1804aabb88dea6eb11f8aaed0114f57f6cd2\"\u003e\u003ccode\u003ed38c180\u003c/code\u003e\u003c/a\u003e chore(release): version 2.103.0 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2237\"\u003e#2237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/16dd2650b9d4bb1af1884231f0c999e1f3748a11\"\u003e\u003ccode\u003e16dd265\u003c/code\u003e\u003c/a\u003e chore(release): version 2.102.1 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2233\"\u003e#2233\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/0c1e6db8c32d5c558ec4a2118581c62362d4c397\"\u003e\u003ccode\u003e0c1e6db\u003c/code\u003e\u003c/a\u003e chore(release): version 2.102.0 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2232\"\u003e#2232\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/5a6a5bed8aa3f9b4938d07284f54b496205f97d6\"\u003e\u003ccode\u003e5a6a5be\u003c/code\u003e\u003c/a\u003e feat(supabase): export PostgrestFilterBuilder and StorageApiError from supaba...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/ea3e086ceabe7926caeff8e70d2f06ef59a5af0b\"\u003e\u003ccode\u003eea3e086\u003c/code\u003e\u003c/a\u003e feat(postgrest): add automatic retries for transient errors (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/ddae67218a671d3544d8084c313789e3b0dc25a7\"\u003e\u003ccode\u003eddae672\u003c/code\u003e\u003c/a\u003e ci(repo): fix flaky tests (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2210\"\u003e#2210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/647cee832bcd602964182fc22677dbb4c0cd4ab2\"\u003e\u003ccode\u003e647cee8\u003c/code\u003e\u003c/a\u003e fix(ci): add --ignore-scripts to platform test installs to block post install...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/ea30c939696a72387c72eb17c4be43bc097bb268\"\u003e\u003ccode\u003eea30c93\u003c/code\u003e\u003c/a\u003e chore(release): version 2.101.1 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2208\"\u003e#2208\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/supabase/supabase-js/commits/v2.103.3/packages/core/supabase-js\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tailwindcss/vite` from 4.2.1 to 4.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/releases\"\u003e\u003ccode\u003e@​tailwindcss/vite\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Vite 8 in \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19790\"\u003e#19790\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDon't crash when candidates contain prototype properties like \u003ccode\u003erow-constructor\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19725\"\u003e#19725\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalize \u003ccode\u003ecalc(var(--spacing)*…)\u003c/code\u003e expressions into \u003ccode\u003e--spacing(…)\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19769\"\u003e#19769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix crash in canonicalization step when handling utilities containing \u003ccode\u003e@property\u003c/code\u003e at-rules (e.g. \u003ccode\u003eshadow-sm border\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19727\"\u003e#19727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSkip full reload for server only modules scanned by client CSS when using \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19745\"\u003e#19745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove canonicalization for bare values exceeding default spacing scale suggestions (e.g. \u003ccode\u003ew-1234 h-1234\u003c/code\u003e → \u003ccode\u003esize-1234\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19809\"\u003e#19809\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix canonicalization resulting in empty list (e.g. \u003ccode\u003ew-5 h-5 size-5\u003c/code\u003e → \u003ccode\u003e''\u003c/code\u003e instead of \u003ccode\u003esize-5\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19812\"\u003e#19812\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md\"\u003e\u003ccode\u003e@​tailwindcss/vite\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.2.2] - 2026-03-18\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDon't crash when candidates contain prototype properties like \u003ccode\u003erow-constructor\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19725\"\u003e#19725\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalize \u003ccode\u003ecalc(var(--spacing)*…)\u003c/code\u003e expressions into \u003ccode\u003e--spacing(…)\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19769\"\u003e#19769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix crash in canonicalization step when handling utilities containing \u003ccode\u003e@property\u003c/code\u003e at-rules (e.g. \u003ccode\u003eshadow-sm border\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19727\"\u003e#19727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSkip full reload for server only modules scanned by client CSS when using \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19745\"\u003e#19745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for Vite 8 in \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19790\"\u003e#19790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove canonicalization for bare values exceeding default spacing scale suggestions (e.g. \u003ccode\u003ew-1234 h-1234\u003c/code\u003e → \u003ccode\u003esize-1234\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19809\"\u003e#19809\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix canonicalization resulting in empty list (e.g. \u003ccode\u003ew-5 h-5 size-5\u003c/code\u003e → \u003ccode\u003e''\u003c/code\u003e instead of \u003ccode\u003esize-5\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19812\"\u003e#19812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eResolve tsconfig paths to allow for \u003ccode\u003e@import '@/path/to/file';\u003c/code\u003e when using \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19803\"\u003e#19803\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/d596b0c43d36ad5099c983930fb155e089cbc291\"\u003e\u003ccode\u003ed596b0c\u003c/code\u003e\u003c/a\u003e 4.2.2 (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite/issues/19821\"\u003e#19821\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/faa5e8849be45e1009dc1d0f862ca782ee0a1ee9\"\u003e\u003ccode\u003efaa5e88\u003c/code\u003e\u003c/a\u003e Cleanup inconsistencies related to (regex) escapes (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite/issues/19804\"\u003e#19804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/59b0329f858dd8a25f64dfa55fb971aa6e74c32a\"\u003e\u003ccode\u003e59b0329\u003c/code\u003e\u003c/a\u003e Add support for Vite 8 in \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite/issues/19790\"\u003e#19790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/bf441a799f67df1596c2cf40eda30ddb50859607\"\u003e\u003ccode\u003ebf441a7\u003c/code\u003e\u003c/a\u003e fix(vite): skip full reload for server only modules scanned by client css (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commits/v4.2.2/packages/@tailwindcss-vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tanstack/react-query` from 5.95.2 to 5.99.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/query/releases\"\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-next-experimental\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-persist-client\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-persist-client-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-next-experimental\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-persist-client\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-persist-client-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/query/blob/main/packages/react-query/CHANGELOG.md\"\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.99.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.98.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.97.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/2bfb12cc44f1d8495106136e4ddacb817135f8f9\"\u003e\u003ccode\u003e2bfb12c\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.97.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.96.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.96.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.96.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.96.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.96.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.96.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/adc2543ade2f5070ee8d77882cce534795a67672\"\u003e\u003ccode\u003eadc2543\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10454\"\u003e#10454\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/6040278e75bb4395b366c932e48606c51cc7010a\"\u003e\u003ccode\u003e6040278\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10451\"\u003e#10451\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/125067c05adf6a8bfef14a34aa5b963bc885885d\"\u003e\u003ccode\u003e125067c\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10436\"\u003e#10436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/f6991900dcd50367a3580d27f69ddfb6bd3a34f3\"\u003e\u003ccode\u003ef699190\u003c/code\u003e\u003c/a\u003e test(react-query): replace hardcoded query keys with 'queryKey()' utility (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/f3d3eea76b5f085650a62494ab72f351d70a0d6c\"\u003e\u003ccode\u003ef3d3eea\u003c/code\u003e\u003c/a\u003e test(*): replace deprecated 'toMatchTypeOf' with 'toExtend' (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10413\"\u003e#10413\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/3d6e001baeeef4e7c524f39cc009544aa05c2b08\"\u003e\u003ccode\u003e3d6e001\u003c/code\u003e\u003c/a\u003e test(react-query/useSuspenseQueries): replace 'async/await sleep' with 'sleep...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/7d7a21c49c1c0d12e12a7da7ab00fa65df05650b\"\u003e\u003ccode\u003e7d7a21c\u003c/code\u003e\u003c/a\u003e test(react-query): replace 'async/await sleep' with 'sleep().then()' in test ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/5ca721fb05a7329ca168dd9aca8a906011b0601e\"\u003e\u003ccode\u003e5ca721f\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10379\"\u003e#10379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/75052a7fd05d5a7f430d323c513387b780a0c06f\"\u003e\u003ccode\u003e75052a7\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10370\"\u003e#10370\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/73e783bd8677a1011d95d34a896e1bf93cbb11a5\"\u003e\u003ccode\u003e73e783b\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10364\"\u003e#10364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/TanStack/query/commits/@tanstack/react-query@5.99.0/packages/react-query\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tanstack/react-router` from 1.166.7 to 1.168.22\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/router/blob/main/packages/react-router/CHANGELOG.md\"\u003e\u003ccode\u003e@​tanstack/react-router\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.168.22\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePreserve shared route stylesheet links across client navigation by rendering route CSS assets with React stylesheet precedence. (\u003ca href=\"https://redirect.github.com/TanStack/router/pull/7186\"\u003e#7186\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.168.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/16f6892d6b7ceadf606677c5a40e743f29163aa6\"\u003e\u003ccode\u003e16f6892\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-core\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.15\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.168.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix React Server Component imports from \u003ccode\u003e@tanstack/react-router\u003c/code\u003e by adding a \u003ccode\u003ereact-server\u003c/code\u003e root export that preserves the normal API surface while resolving \u003ccode\u003enotFound\u003c/code\u003e and \u003ccode\u003eredirect\u003c/code\u003e from a server-safe entry. (\u003ca href=\"https://redirect.github.com/TanStack/router/pull/7183\"\u003e#7183\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThis fixes RSC routes that throw \u003ccode\u003enotFound()\u003c/code\u003e or \u003ccode\u003eredirect()\u003c/code\u003e from server functions so they behave correctly during SSR and client navigation.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.168.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix route file transforms to preserve route ID quoting, handle more exported \u003ccode\u003eRoute\u003c/code\u003e patterns, and avoid incorrect import rewrites in edge cases. (\u003ca href=\"https://redirect.github.com/TanStack/router/pull/7167\"\u003e#7167\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eImprove transform robustness with clearer route-call detection, safer import removal, and expanded test coverage for quote preservation, constructor swaps, and unsupported route definitions.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.168.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/0e2c9003c18ae07c09969189c028f277ea562a7a\"\u003e\u003ccode\u003e0e2c900\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-core\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.14\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.168.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/812792fbda3caf97b300770855cf5641252f413b\"\u003e\u003ccode\u003e812792f\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-core\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.13\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.168.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/8ec9ca97b472779de878c2a6510f21deb24d386c\"\u003e\u003ccode\u003e8ec9ca9\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-core\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.12\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/6d00881b7ad127a0200c0e02dc1327ebd28ec185\"\u003e\u003ccode\u003e6d00881\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/e30814d949110ff25829de44d729ead47555940a\"\u003e\u003ccode\u003ee30814d\u003c/code\u003e\u003c/a\u003e fix react-router shared route css persistence on nav (\u003ca href=\"https://github.com/TanStack/router/tree/HEAD/packages/react-router/issues/7186\"\u003e#7186\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/26680c95a9e3f7ef766450c99cb6d378e6f358b6\"\u003e\u003ccode\u003e26680c9\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/16f6892d6b7ceadf606677c5a40e743f29163aa6\"\u003e\u003ccode\u003e16f6892\u003c/code\u003e\u003c/a\u003e fix(router-core): avoid intermediate success state for async notFound (\u003ca href=\"https://github.com/TanStack/router/tree/HEAD/packages/react-router/issues/7184\"\u003e#7184\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/73cd5699ac470d566fb06982f15a9862d25ca5c7\"\u003e\u003ccode\u003e73cd569\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/c5ad32936f6adcca0c56474677b73b212498443b\"\u003e\u003ccode\u003ec5ad329\u003c/code\u003e\u003c/a\u003e fix react server exports for start and react-router (\u003ca href=\"https://github.com/TanStack/router/tree/HEAD/packages/react-router/issues/7183\"\u003e#7183\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/85db3785ccb260a8801cc3f295b33033c94b167a\"\u003e\u003ccode\u003e85db378\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/105d05691a247779a63e7b688aa1207cce619339\"\u003e\u003ccode\u003e105d056\u003c/code\u003e\u003c/a\u003e fix(router-generator): harden route file transform rewrites (\u003ca href=\"https://github.com/TanStack/router/tree/HEAD/packages/react-router/issues/7167\"\u003e#7167\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/c3900c832804b37d3e7f1a5d9b5859e3b9867bca\"\u003e\u003ccode\u003ec3900c8\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/3ef971fa786f08378b1cc05db581a833ba86cb34\"\u003e\u003ccode\u003e3ef971f\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/TanStack/router/commits/@tanstack/react-router@1.168.22/packages/react-router\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tanstack/router-plugin` from 1.166.7 to 1.167.22\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/router/blob/main/packages/router-plugin/CHANGELOG.md\"\u003e\u003ccode\u003e@​tanstack/router-plugin\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.167.22\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/16f6892d6b7ceadf606677c5a40e743f29163aa6\"\u003e\u003ccode\u003e16f6892\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-core\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.15\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-router\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.21\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-generator\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.166.32\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.167.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/328d7e5ebc6b8074242a07d68ccafafb83e37a0e\"\u003e\u003ccode\u003e328d7e5\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-generator\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.166.31\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.167.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: update vite-plugin-solid peer dependency to support version 3.0.0-0 (\u003ca href=\"https://redirect.github.com/TanStack/router/pull/7170\"\u003e#7170\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.167.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/105d05691a247779a63e7b688aa1207cce619339\"\u003e\u003ccode\u003e105d056\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-generator\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.166.30\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-router\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.167.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd vite 8 to peer deps (\u003ca href=\"https://redirect.github.com/TanStack/router/pull/7160\"\u003e#7160\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.167.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/0e2c9003c18ae07c09969189c028f277ea562a7a\"\u003e\u003ccode\u003e0e2c900\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-core\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.14\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-router\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-generator\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.166.29\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.167.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/812792fbda3caf97b300770855cf5641252f413b\"\u003e\u003ccode\u003e812792f\u003c/code\u003e\u003c/a\u003e]:\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/26680c95a9e3f7ef766450c99cb6d378e6f358b6\"\u003e\u003ccode\u003e26680c9\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/c373feb22b0649f4646a2e032edff2d263eb0cde\"\u003e\u003ccode\u003ec373feb\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/c8570872868757a04945e39566cf10c8a1ee493d\"\u003e\u003ccode\u003ec857087\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/96ac2d8ed378340d63b88afeec3633e56e29b5f8\"\u003e\u003ccode\u003e96ac2d8\u003c/code\u003e\u003c/a\u003e fix(router-plugin): update vite-plugin-solid peer dependency to support versi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/85db3785ccb260a8801cc3f295b33033c94b167a\"\u003e\u003ccode\u003e85db378\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/105d05691a247779a63e7b688aa1207cce619339\"\u003e\u003ccode\u003e105d056\u003c/code\u003e\u003c/a\u003e fix(router-generator): harden route file transform rewrites (\u003ca href=\"https://github.com/TanStack/router/tree/HEAD/packages/router-plugin/issues/7167\"\u003e#7167\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/2cda5385dde91552d8d1887ad4f47b072fcf8585\"\u003e\u003ccode\u003e2cda538\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/656a2a040e79df7721d776e3751c8d634666570b\"\u003e\u003ccode\u003e656a2a0\u003c/code\u003e\u003c/a\u003e chore: add vite 8 to peer deps (\u003ca href=\"https://github.com/TanStack/router/tree/HEAD/packages/router-plugin/issues/7160\"\u003e#7160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/c3900c832804b37d3e7f1a5d9b5859e3b9867bca\"\u003e\u003ccode\u003ec3900c8\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/3ef971fa786f08378b1cc05db581a833ba86cb34\"\u003e\u003ccode\u003e3ef971f\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/TanStack/router/commits/@tanstack/router-plugin@1.167.22/packages/router-plugin\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@trpc/client` from 11.12.0 to 11.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/trpc/trpc/releases\"\u003e\u003ccode\u003e@​trpc/client\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.16.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: OpenAPI Cyclic Types support by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7283\"\u003etrpc/trpc#7283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Review stale skills (manual) by \u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7294\"\u003etrpc/trpc#7294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003e@trpc/openapi\u003c/code\u003e 11.16.0-alpha\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrops the type depth limit of 20, and significantly hardens cyclic-type support for both inference and Zod\u003c/li\u003e\n\u003cli\u003eSupport zod.lazy via Standard Schema fallback\u003c/li\u003e\n\u003cli\u003eStrip symbols from output (no more \u003ccode\u003e__@asyncIterator@5456\u003c/code\u003e symbols in output)\u003c/li\u003e\n\u003cli\u003eAdd more comprehensive types for the OpenAPI doc from the official package (now a dependency) and apply some patches to these types because they're slightly outdated\u003c/li\u003e\n\u003cli\u003eFixes several issues with gathering schema descriptions, such as consuming jsdoc comments from node_modules types\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7294\"\u003etrpc/trpc#7294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.15.1...v11.16.0\"\u003ehttps://github.com/trpc/trpc/compare/v11.15.1...v11.16.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.15.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(www): render sponsor links in static HTML for SEO by \u003ca href=\"https://github.com/shtefcs\"\u003e\u003ccode\u003e@​shtefcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7285\"\u003etrpc/trpc#7285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: error handling with Node VM by \u003ca href=\"https://github.com/znikola\"\u003e\u003ccode\u003e@​znikola\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7280\"\u003etrpc/trpc#7280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shtefcs\"\u003e\u003ccode\u003e@​shtefcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7285\"\u003etrpc/trpc#7285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/znikola\"\u003e\u003ccode\u003e@​znikola\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7280\"\u003etrpc/trpc#7280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.15.0...v11.15.1\"\u003ehttps://github.com/trpc/trpc/compare/v11.15.0...v11.15.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.15.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: empty string fallback on pathExtractor by \u003ca href=\"https://github.com/dorukozerr\"\u003e\u003ccode\u003e@​dorukozerr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7270\"\u003etrpc/trpc#7270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(server): max batch size by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7191\"\u003etrpc/trpc#7191\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorukozerr\"\u003e\u003ccode\u003e@​dorukozerr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7270\"\u003etrpc/trpc#7270\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.14.1...v11.15.0\"\u003ehttps://github.com/trpc/trpc/compare/v11.14.1...v11.15.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.14.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Tanstack Intent Skills by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7252\"\u003etrpc/trpc#7252\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.14.0...v11.14.1\"\u003ehttps://github.com/trpc/trpc/compare/v11.14.0...v11.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(server): use correct call index in batch stream error handling by \u003ca href=\"https://github.com/karesansui-u\"\u003e\u003ccode\u003e@​karesansui-u\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7262\"\u003etrpc/trpc#7262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: preserve buffered chunks on stream close in httpBatchStreamLink by \u003ca href=\"https://github.com/luinbytes\"\u003e\u003ccode\u003e@​luinbytes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7233\"\u003etrpc/trpc#7233\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/2713275631db358f17f2fec71a7f7e04b3db4add\"\u003e\u003ccode\u003e2713275\u003c/code\u003e\u003c/a\u003e v11.16.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/85b0ab89850167ae14ec5376044e2ac2a051c1d8\"\u003e\u003ccode\u003e85b0ab8\u003c/code\u003e\u003c/a\u003e v11.15.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/c4b1d7458ec869f6c51469f7fcd84b517d53ffae\"\u003e\u003ccode\u003ec4b1d74\u003c/code\u003e\u003c/a\u003e chore: Review stale skills (manual) (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/client/issues/7294\"\u003e#7294\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/88b02b81d16d4046a709508799a905ac7bf9ce8b\"\u003e\u003ccode\u003e88b02b8\u003c/code\u003e\u003c/a\u003e v11.15.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/25b97f51ee4ee57da0da3c63cf54a50c6c8627d5\"\u003e\u003ccode\u003e25b97f5\u003c/code\u003e\u003c/a\u003e v11.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/88f9f622edeb213a1ec565dcf908ab92b9a983d6\"\u003e\u003ccode\u003e88f9f62\u003c/code\u003e\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​tanstack/intent\u003c/code\u003e to ^0.0.23 (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/client/issues/7274\"\u003e#7274\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/e896259af491fc4b1c9e8fc320817e2222bae869\"\u003e\u003ccode\u003ee896259\u003c/code\u003e\u003c/a\u003e v11.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/e39a654b306d0c75730a9c546e77333f9d1dca8c\"\u003e\u003ccode\u003ee39a654\u003c/code\u003e\u003c/a\u003e feat: Tanstack Intent Skills (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/client/issues/7252\"\u003e#7252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/6e03f5c2f8d8ebaa237747d2db447737393402c6\"\u003e\u003ccode\u003e6e03f5c\u003c/code\u003e\u003c/a\u003e v11.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/ec32cdd9da013ca2bc493cfc7ac7f51db0c55557\"\u003e\u003ccode\u003eec32cdd\u003c/code\u003e\u003c/a\u003e fix(server): use correct call index in batch stream error handling (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/client/issues/7262\"\u003e#7262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/trpc/trpc/commits/v11.16.0/packages/client\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@trpc/react-query` from 11.12.0 to 11.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/trpc/trpc/releases\"\u003e\u003ccode\u003e@​trpc/react-query\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.16.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: OpenAPI Cyclic Types support by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7283\"\u003etrpc/trpc#7283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Review stale skills (manual) by \u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7294\"\u003etrpc/trpc#7294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003e@trpc/openapi\u003c/code\u003e 11.16.0-alpha\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrops the type depth limit of 20, and significantly hardens cyclic-type support for both inference and Zod\u003c/li\u003e\n\u003cli\u003eSupport zod.lazy via Standard Schema fallback\u003c/li\u003e\n\u003cli\u003eStrip symbols from output (no more \u003ccode\u003e__@asyncIterator@5456\u003c/code\u003e symbols in output)\u003c/li\u003e\n\u003cli\u003eAdd more comprehensive types for the OpenAPI doc from the official package (now a dependency) and apply some patches to these types because they're slightly outdated\u003c/li\u003e\n\u003cli\u003eFixes several issues with gathering schema descriptions, such as consuming jsdoc comments from node_modules types\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7294\"\u003etrpc/trpc#7294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.15.1...v11.16.0\"\u003ehttps://github.com/trpc/trpc/compare/v11.15.1...v11.16.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.15.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(www): render sponsor links in static HTML for SEO by \u003ca href=\"https://github.com/shtefcs\"\u003e\u003ccode\u003e@​shtefcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7285\"\u003etrpc/trpc#7285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: error handling with Node VM by \u003ca href=\"https://github.com/znikola\"\u003e\u003ccode\u003e@​znikola\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7280\"\u003etrpc/trpc#7280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shtefcs\"\u003e\u003ccode\u003e@​shtefcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7285\"\u003etrpc/trpc#7285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/znikola\"\u003e\u003ccode\u003e@​znikola\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7280\"\u003etrpc/trpc#7280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.15.0...v11.15.1\"\u003ehttps://github.com/trpc/trpc/compare/v11.15.0...v11.15.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.15.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: empty string fallback on pathExtractor by \u003ca href=\"https://github.com/dorukozerr\"\u003e\u003ccode\u003e@​dorukozerr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7270\"\u003etrpc/trpc#7270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(server): max batch size by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7191\"\u003etrpc/trpc#7191\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorukozerr\"\u003e\u003ccode\u003e@​dorukozerr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7270\"\u003etrpc/trpc#7270\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.14.1...v11.15.0\"\u003ehttps://github.com/trpc/trpc/compare/v11.14.1...v11.15.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.14.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Tanstack Intent Skills by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7252\"\u003etrpc/trpc#7252\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.14.0...v11.14.1\"\u003ehttps://github.com/trpc/trpc/compare/v11.14.0...v11.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(server): use correct call index in batch stream error handling by \u003ca href=\"https://github.com/karesansui-u\"\u003e\u003ccode\u003e@​karesansui-u\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7262\"\u003etrpc/trpc#7262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: preserve buffered chunks on stream close in httpBatchStreamLink by \u003ca href=\"https://github.com/luinbytes\"\u003e\u003ccode\u003e@​luinbytes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7233\"\u003etrpc/trpc#7233\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/trpc/trpc/commits/v11.16.0/packages/react\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@trpc/server` from 11.12.0 to 11.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/trpc/trpc/releases\"\u003e\u003ccode\u003e@​trpc/server\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.16.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: OpenAPI Cyclic Types support by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7283\"\u003etrpc/trpc#7283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Review stale skills (manual) by \u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7294\"\u003etrpc/trpc#7294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003e@trpc/openapi\u003c/code\u003e 11.16.0-alpha\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrops the type depth limit of 20, and significantly hardens cyclic-type support for both inference and Zod\u003c/li\u003e\n\u003cli\u003eSupport zod.lazy via Standard Schema fallback\u003c/li\u003e\n\u003cli\u003eStrip symbols from output (no more \u003ccode\u003e__@asyncIterator@5456\u003c/code\u003e symbols in output)\u003c/li\u003e\n\u003cli\u003eAdd more comprehensive types for the OpenAPI doc from the official package (now a dependency) and apply some patches to these types because they're slightly outdated\u003c/li\u003e\n\u003cli\u003eFixes several issues with gathering schema descriptions, such as consuming jsdoc comments from node_modules types\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7294\"\u003etrpc/trpc#7294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.15.1...v11.16.0\"\u003ehttps://github.com/trpc/trpc/compare/v11.15.1...v11.16.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.15.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(www): render sponsor links in static HTML for SEO by \u003ca href=\"https://github.com/shtefcs\"\u003e\u003ccode\u003e@​shtefcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7285\"\u003etrpc/trpc#7285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: error handling with Node VM by \u003ca href=\"https://github.com/znikola\"\u003e\u003ccode\u003e@​znikola\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7280\"\u003etrpc/trpc#7280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shtefcs\"\u003e\u003ccode\u003e@​shtefcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7285\"\u003etrpc/trpc#7285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/znikola\"\u003e\u003ccode\u003e@​znikola\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7280\"\u003etrpc/trpc#7280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.15.0...v11.15.1\"\u003ehttps://github.com/trpc/trpc/compare/v11.15.0...v11.15.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.15.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: empty string fallback on pathExtractor by \u003ca href=\"https://github.com/dorukozerr\"\u003e\u003ccode\u003e@​dorukozerr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7270\"\u003etrpc/trpc#7270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(server): max batch size by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7191\"\u003etrpc/trpc#7191\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorukozerr\"\u003e\u003ccode\u003e@​dorukozerr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7270\"\u003etrpc/trpc#7270\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.14.1...v11.15.0\"\u003ehttps://github.com/trpc/trpc/compare/v11.14.1...v11.15.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.14.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Tanstack Intent Skills by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7252\"\u003etrpc/trpc#7252\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.14.0...v11.14.1\"\u003ehttps://github.com/trpc/trpc/compare/v11.14.0...v11.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(server): use correct call index in batch stream error handling by \u003ca href=\"https://github.com/karesansui-u\"\u003e\u003ccode\u003e@​karesansui-u\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7262\"\u003etrpc/trpc#7262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: preserve buffered chunks on stream close in httpBatchStreamLink by \u003ca href=\"https://github.com/luinbytes\"\u003e\u003ccode\u003e@​luinbytes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7233\"\u003etrpc/trpc#7233\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/2713275631db358f17f2fec71a7f7e04b3db4add\"\u003e\u003ccode\u003e2713275\u003c/code\u003e\u003c/a\u003e v11.16.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/85b0ab89850167ae14ec5376044e2ac2a051c1d8\"\u003e\u003ccode\u003e85b0ab8\u003c/code\u003e\u003c/a\u003e v11.15.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/c4b1d7458ec869f6c51469f7fcd84b517d53ffae\"\u003e\u003ccode\u003ec4b1d74\u003c/code\u003e\u003c/a\u003e chore: Review stale skills (manual) (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/server/issues/7294\"\u003e#7294\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/88b02b81d16d4046a709508799a905ac7bf9ce8b\"\u003e\u003ccode\u003e88b02b8\u003c/code\u003e\u003c/a\u003e v11.15.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/a2f90fc96196baba0858a571bce0c2bfaafcce3c\"\u003e\u003ccode\u003ea2f90fc\u003c/code\u003e\u003c/a\u003e fix: error handling with Node VM (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/server/issues/7280\"\u003e#7280\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/25b97f51ee4ee57da0da3c63cf54a50c6c8627d5\"\u003e\u003ccode\u003e25b97f5\u003c/code\u003e\u003c/a\u003e v11.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/c9c211fa557355c2040d67d10da140c0e61c7097\"\u003e\u003ccode\u003ec9c211f\u003c/code\u003e\u003c/a\u003e feat(server): max batch size (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/server/issues/7191\"\u003e#7191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/88f9f622edeb213a1ec565dcf908ab92b9a983d6\"\u003e\u003ccode\u003e88f9f62\u003c/code\u003e\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​tanstack/intent\u003c/code\u003e to ^0.0.23 (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/server/issues/7274\"\u003e#7274\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/e896259af491fc4b1c9e8fc320817e2222bae869\"\u003e\u003ccode\u003ee896259\u003c/code\u003e\u003c/a\u003e v11.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/e39a654b306d0c75730a9c546e77333f9d1dca8c\"\u003e\u003ccode\u003ee39a654\u003c/code\u003e\u003c/a\u003e feat: Tanstack Intent Skills (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/server/issues/7252\"\u003e#7252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/trpc/trpc/commits/v11.16.0/packages/server\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `framer-motion` from 12.35.2 to 12.38.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/motiondivision/motion/blob/main/CHANGELOG.md\"\u003eframer-motion's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[12.38.0] 2026-03-16\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003elayoutAnchor\u003c/code\u003e prop to configure custom anchor point for resolving relative projection boxes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eReorder\u003c/code\u003e: Fix axis switching after window resize.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eReorder\u003c/code\u003e: Fix with virtualised lists.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eAnimatePresence\u003c/code\u003e: Ensure children are removed when exit animation matches current values.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[12.37.0] 2026-03-16\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for hardware accelerating \u003ccode\u003e\u0026quot;start\u0026quot;\u003c/code\u003e and \u003ccode\u003e\u0026quot;end\u0026quot;\u003c/code\u003e offsets in \u003ccode\u003escroll\u003c/code\u003e and \u003ccode\u003euseScroll\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eSupport for \u003ccode\u003eoklch\u003c/code\u003e, \u003ccode\u003eoklab\u003c/code\u003e, \u003ccode\u003elab\u003c/code\u003e, \u003ccode\u003elch\u003c/code\u003e, \u003ccode\u003ecolor\u003c/code\u003e, \u003ccode\u003ecolor-mix\u003c/code\u003e, \u003ccode\u003elight-dark\u003c/code\u003e color types.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003ewhileInView\u003c/code\u003e with client-side navigation.\u003c/li\u003e\n\u003cli\u003eFix draggable elements when layout updates due to surrounding element re-renders.\u003c/li\u003e\n\u003cli\u003eImproved memory pressure of layout animations.\u003c/li\u003e\n\u003cli\u003eEnsure motion value returned from \u003ccode\u003euseSpring\u003c/code\u003e reports correct \u003ccode\u003eisAnimating()\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[12.36.0] 2026-03-09\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003edragSnapToOrigin\u003c/code\u003e to accept \u003ccode\u003e\u0026quot;x\u0026quot;\u003c/code\u003e or \u003ccode\u003e\u0026quot;y\u0026quot;\u003c/code\u003e for per-axis snapping.\u003c/li\u003e\n\u003cli\u003eAdded axis-locked layout animations with \u003ccode\u003elayout=\u0026quot;x\u0026quot;\u003c/code\u003e and \u003ccode\u003elayout=\u0026quot;y\u0026quot;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eskipInitialAnimation\u003c/code\u003e to \u003ccode\u003euseSpring\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eheight\u003c/code\u003e and \u003ccode\u003ewidth: auto\u003c/code\u003e animations with \u003ccode\u003ebox-sizing: border-box\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eReset component values when exit animation finishes.\u003c/li\u003e\n\u003cli\u003eEnsure \u003ccode\u003eanticipate\u003c/code\u003e easing returns \u003ccode\u003e1\u003c/code\u003e at \u003ccode\u003ep === 1\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003e@emotion/is-prop-valid\u003c/code\u003e resolve error in Storybook.\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003edata-pop-layout-id\u003c/code\u003e from exiting eleme...\n\n_Description has been truncated_","html_url":"https://github.com/FapLandPartyDev/FapLand-Party-Edition/pull/16","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FapLandPartyDev%2FFapLand-Party-Edition/issues/16","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/16/packages"},{"uuid":"4242562396","node_id":"PR_kwDORs7m1M7Rm6J9","number":4,"state":"closed","title":"chore(deps): bump the npm-minor-patch group across 1 directory with 119 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-04-18T01:33:29.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-11T01:57:16.000Z","updated_at":"2026-04-18T01:33:31.000Z","time_to_close":603373,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm-minor-patch","update_count":119,"packages":[{"name":"@applemusic-like-lyrics/lyric","old_version":"0.3.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/vue","old_version":"0.2.0","new_version":"0.3.2","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@neteasecloudmusicapienhanced/api","old_version":"4.30.3","new_version":"4.31.0"},{"name":"@types/pg","old_version":"8.18.0","new_version":"8.20.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"axios","old_version":"1.13.6","new_version":"1.15.0","repository_url":"https://github.com/axios/axios"},{"name":"dotenv","old_version":"17.3.1","new_version":"17.4.1","repository_url":"https://github.com/motdotla/dotenv"},{"name":"drizzle-orm","old_version":"0.45.1","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"lodash-es","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"postgres","old_version":"3.4.8","new_version":"3.4.9","repository_url":"https://github.com/porsager/postgres"},{"name":"sass","old_version":"1.98.0","new_version":"1.99.0","repository_url":"https://github.com/sass/dart-sass"},{"name":"vite-plugin-glsl","old_version":"1.5.6","new_version":"1.6.0","repository_url":"https://github.com/UstymUkhman/vite-plugin-glsl"},{"name":"vue","old_version":"3.5.30","new_version":"3.5.32","repository_url":"https://github.com/vuejs/core"},{"name":"prettier","old_version":"3.8.1","new_version":"3.8.2","repository_url":"https://github.com/prettier/prettier"},{"name":"@clack/prompts","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@emnapi/core","old_version":"1.9.1","new_version":"1.9.2","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/runtime","old_version":"1.9.1","new_version":"1.9.2","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@eslint/compat","old_version":"2.0.3","new_version":"2.0.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.13","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"path-to-regexp","old_version":"0.1.12","new_version":"0.1.13","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"@nuxt/telemetry","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nuxt/telemetry"},{"name":"@swc/core","old_version":"1.15.18","new_version":"1.15.24","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/helpers","old_version":"0.5.19","new_version":"0.5.21","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/wasm","old_version":"1.15.18","new_version":"1.15.24","repository_url":"https://github.com/swc-project/swc"},{"name":"@types/node","old_version":"25.5.0","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.57.1","new_version":"8.58.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@unhead/vue","old_version":"2.1.12","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"@vercel/nft","old_version":"1.4.0","new_version":"1.5.0","repository_url":"https://github.com/vercel/nft"},{"name":"@vue/devtools-core","old_version":"8.1.0","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"bare-fs","old_version":"4.5.6","new_version":"4.7.0","repository_url":"https://github.com/holepunchto/bare-fs"},{"name":"bare-os","old_version":"3.8.0","new_version":"3.8.7","repository_url":"https://github.com/holepunchto/bare-os"},{"name":"bare-stream","old_version":"2.10.0","new_version":"2.13.0","repository_url":"https://github.com/holepunchto/bare-stream"},{"name":"baseline-browser-mapping","old_version":"2.10.9","new_version":"2.10.17","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"basic-ftp","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/patrickjuchli/basic-ftp"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"cookie-es","old_version":"1.2.2","new_version":"1.2.3","repository_url":"https://github.com/unjs/cookie-es"},{"name":"css-declaration-sorter","old_version":"7.3.1","new_version":"7.4.0","repository_url":"https://github.com/Siilwyn/css-declaration-sorter"},{"name":"cssnano","old_version":"7.1.3","new_version":"7.1.4","repository_url":"https://github.com/cssnano/cssnano"},{"name":"devalue","old_version":"5.6.4","new_version":"5.7.1","repository_url":"https://github.com/sveltejs/devalue"},{"name":"diff","old_version":"8.0.3","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"eslint-config-flat-gitignore","old_version":"2.2.1","new_version":"2.3.0","repository_url":"https://github.com/antfu/eslint-config-flat-gitignore"},{"name":"eslint-flat-config-utils","old_version":"3.0.2","new_version":"3.1.0","repository_url":"https://github.com/antfu/eslint-flat-config-utils"},{"name":"eslint-plugin-jsdoc","old_version":"62.8.0","new_version":"62.9.0","repository_url":"https://github.com/gajus/eslint-plugin-jsdoc"},{"name":"file-type","old_version":"21.3.3","new_version":"21.3.4","repository_url":"https://github.com/sindresorhus/file-type"},{"name":"fuse.js","old_version":"7.1.0","new_version":"7.3.0","repository_url":"https://github.com/krisk/Fuse"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.13.7","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"globby","old_version":"16.1.1","new_version":"16.2.0","repository_url":"https://github.com/sindresorhus/globby"},{"name":"h3","old_version":"1.15.9","new_version":"1.15.11","repository_url":"https://github.com/h3js/h3"},{"name":"launch-editor","old_version":"2.13.1","new_version":"2.13.2","repository_url":"https://github.com/yyx990803/launch-editor"},{"name":"listhen","old_version":"1.9.0","new_version":"1.9.1","repository_url":"https://github.com/unjs/listhen"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"netmask","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/rs/node-netmask"},{"name":"nitropack","old_version":"2.13.1","new_version":"2.13.3","repository_url":"https://github.com/nitrojs/nitro"},{"name":"node-releases","old_version":"2.0.36","new_version":"2.0.37","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"postcss","old_version":"8.5.8","new_version":"8.5.9","repository_url":"https://github.com/postcss/postcss"},{"name":"regjsparser","old_version":"0.13.0","new_version":"0.13.1","repository_url":"https://github.com/jviereck/regjsparser"},{"name":"seroval","old_version":"1.5.1","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"simple-git","old_version":"3.33.0","new_version":"3.35.2","repository_url":"https://github.com/steveukx/git-js"},{"name":"srvx","old_version":"0.11.12","new_version":"0.11.15","repository_url":"https://github.com/h3js/srvx"},{"name":"strtok3","old_version":"10.3.4","new_version":"10.3.5","repository_url":"https://github.com/Borewit/strtok3"},{"name":"tar","old_version":"7.5.12","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"tinyexec","old_version":"1.0.4","new_version":"1.1.1","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"uqr","old_version":"0.1.2","new_version":"0.1.3","repository_url":"https://github.com/unjs/uqr"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.2","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-minor-patch group with 69 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@applemusic-like-lyrics/lyric](https://github.com/amll-dev/applemusic-like-lyrics) | `0.3.0` | `0.4.1` |\n| [@applemusic-like-lyrics/vue](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue) | `0.2.0` | `0.3.2` |\n| @neteasecloudmusicapienhanced/api | `4.30.3` | `4.31.0` |\n| [@types/pg](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/pg) | `8.18.0` | `8.20.0` |\n| [axios](https://github.com/axios/axios) | `1.13.6` | `1.15.0` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.3.1` | `17.4.1` |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.45.1` | `0.45.2` |\n| [lodash-es](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [postgres](https://github.com/porsager/postgres) | `3.4.8` | `3.4.9` |\n| [sass](https://github.com/sass/dart-sass) | `1.98.0` | `1.99.0` |\n| [vite-plugin-glsl](https://github.com/UstymUkhman/vite-plugin-glsl) | `1.5.6` | `1.6.0` |\n| [vue](https://github.com/vuejs/core) | `3.5.30` | `3.5.32` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.2` |\n| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.1.0` | `1.2.0` |\n| [@emnapi/core](https://github.com/toyobayashi/emnapi) | `1.9.1` | `1.9.2` |\n| [@emnapi/runtime](https://github.com/toyobayashi/emnapi) | `1.9.1` | `1.9.2` |\n| [@eslint/compat](https://github.com/eslint/rewrite/tree/HEAD/packages/compat) | `2.0.3` | `2.0.5` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.13` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `0.1.12` | `0.1.13` |\n| [@nuxt/telemetry](https://github.com/nuxt/telemetry) | `2.7.0` | `2.8.0` |\n| [@swc/core](https://github.com/swc-project/swc/tree/HEAD/packages/core) | `1.15.18` | `1.15.24` |\n| [@swc/helpers](https://github.com/swc-project/swc/tree/HEAD/packages/helpers) | `0.5.19` | `0.5.21` |\n| [@swc/wasm](https://github.com/swc-project/swc) | `1.15.18` | `1.15.24` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.5.0` | `25.6.0` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.57.1` | `8.58.1` |\n| [@unhead/vue](https://github.com/unjs/unhead/tree/HEAD/packages/vue) | `2.1.12` | `2.1.13` |\n| [@vercel/nft](https://github.com/vercel/nft) | `1.4.0` | `1.5.0` |\n| [@vue/devtools-core](https://github.com/vuejs/devtools/tree/HEAD/packages/core) | `8.1.0` | `8.1.1` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [bare-fs](https://github.com/holepunchto/bare-fs) | `4.5.6` | `4.7.0` |\n| [bare-os](https://github.com/holepunchto/bare-os) | `3.8.0` | `3.8.7` |\n| [bare-stream](https://github.com/holepunchto/bare-stream) | `2.10.0` | `2.13.0` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.10.9` | `2.10.17` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.2.0` | `5.2.2` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `1.2.2` | `1.2.3` |\n| [css-declaration-sorter](https://github.com/Siilwyn/css-declaration-sorter) | `7.3.1` | `7.4.0` |\n| [cssnano](https://github.com/cssnano/cssnano) | `7.1.3` | `7.1.4` |\n| [devalue](https://github.com/sveltejs/devalue) | `5.6.4` | `5.7.1` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.3` | `8.0.4` |\n| [eslint-config-flat-gitignore](https://github.com/antfu/eslint-config-flat-gitignore) | `2.2.1` | `2.3.0` |\n| [eslint-flat-config-utils](https://github.com/antfu/eslint-flat-config-utils) | `3.0.2` | `3.1.0` |\n| [eslint-plugin-jsdoc](https://github.com/gajus/eslint-plugin-jsdoc) | `62.8.0` | `62.9.0` |\n| [file-type](https://github.com/sindresorhus/file-type) | `21.3.3` | `21.3.4` |\n| [fuse.js](https://github.com/krisk/Fuse) | `7.1.0` | `7.3.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.13.7` |\n| [globby](https://github.com/sindresorhus/globby) | `16.1.1` | `16.2.0` |\n| [h3](https://github.com/h3js/h3) | `1.15.9` | `1.15.11` |\n| [launch-editor](https://github.com/yyx990803/launch-editor) | `2.13.1` | `2.13.2` |\n| [listhen](https://github.com/unjs/listhen) | `1.9.0` | `1.9.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [netmask](https://github.com/rs/node-netmask) | `2.0.2` | `2.1.1` |\n| [nitropack](https://github.com/nitrojs/nitro) | `2.13.1` | `2.13.3` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.36` | `2.0.37` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.8` | `8.5.9` |\n| [regjsparser](https://github.com/jviereck/regjsparser) | `0.13.0` | `0.13.1` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.1` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.33.0` | `3.35.2` |\n| [srvx](https://github.com/h3js/srvx) | `0.11.12` | `0.11.15` |\n| [strtok3](https://github.com/Borewit/strtok3) | `10.3.4` | `10.3.5` |\n| [tar](https://github.com/isaacs/node-tar) | `7.5.12` | `7.5.13` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.4` | `1.1.1` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [uqr](https://github.com/unjs/uqr) | `0.1.2` | `0.1.3` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.2` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |\n\n\nUpdates `@applemusic-like-lyrics/lyric` from 0.3.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/0309834a90cc9f489ef78cc4c6d6f6d18362e162\"\u003e\u003ccode\u003e0309834\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/issues/457\"\u003e#457\u003c/a\u003e from Linho1219/fix-type-error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/2fc5d2e19d7a2ce70501a347dec4f5f4f90fbfe2\"\u003e\u003ccode\u003e2fc5d2e\u003c/code\u003e\u003c/a\u003e fix: lyric 包 rust 侧适配 romanWord 可选\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/4fdd6a93839179f44891ba1b618c0b8b957ba0e0\"\u003e\u003ccode\u003e4fdd6a9\u003c/code\u003e\u003c/a\u003e chore: 添加 version plan\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/d862271aa1396b19b9a8bb4d8cd484a0df366270\"\u003e\u003ccode\u003ed862271\u003c/code\u003e\u003c/a\u003e fix: 修复 lyric 包 romanWord 类型\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/compare/core-bundle@0.3.0...@applemusic-like-lyrics/lyric@0.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/vue` from 0.2.0 to 0.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/1a0803d465c230ac0ad46f70d85080d4debaf170\"\u003e\u003ccode\u003e1a0803d\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.3.2/packages/vue\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@neteasecloudmusicapienhanced/api` from 4.30.3 to 4.31.0\n\nUpdates `@types/pg` from 8.18.0 to 8.20.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/pg\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.6 to 1.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.0\u003c/h2\u003e\n\u003cp\u003eThis release delivers two critical security patches, adds runtime support for Deno and Bun, and includes significant CI hardening, documentation improvements, and routine dependency updates.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecation:\u003c/strong\u003e \u003ccode\u003eurl.parse()\u003c/code\u003e usage has been replaced to address Node.js deprecation warnings. If you are on a recent version of Node.js, this resolves console warnings you may have been seeing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed a \u003ccode\u003eno_proxy\u003c/code\u003e hostname normalisation bypass that could lead to Server-Side Request Forgery (SSRF). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHeader Injection:\u003c/strong\u003e Fixed an unrestricted cloud metadata exfiltration vulnerability via a header injection chain. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10660\"\u003e#10660\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Support:\u003c/strong\u003e Added compatibility checks and documentation for Deno and Bun environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10652\"\u003e#10652\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10653\"\u003e#10653\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Security:\u003c/strong\u003e Hardened workflow permissions to least privilege, added the \u003ccode\u003ezizmor\u003c/code\u003e security scanner, pinned action versions, and gated npm publishing with OIDC and environment protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10618\"\u003e#10618\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10619\"\u003e#10619\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10627\"\u003e#10627\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10637\"\u003e#10637\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eserialize-javascript\u003c/code\u003e, \u003ccode\u003ehandlebars\u003c/code\u003e, \u003ccode\u003epicomatch\u003c/code\u003e, \u003ccode\u003evite\u003c/code\u003e, and \u003ccode\u003edenoland/setup-deno\u003c/code\u003e to latest versions. Added a 7-day Dependabot cooldown period. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10574\"\u003e#10574\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10572\"\u003e#10572\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10568\"\u003e#10568\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10616\"\u003e#10616\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocumentation:\u003c/strong\u003e Unified docs, improved \u003ccode\u003ebeforeRedirect\u003c/code\u003e credential leakage example, clarified \u003ccode\u003ewithCredentials\u003c/code\u003e/\u003ccode\u003ewithXSRFToken\u003c/code\u003e behaviour, HTTP/2 support notes, async/await timeout error handling, header case preservation, and various typo fixes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10649\"\u003e#10649\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7471\"\u003e#7471\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10654\"\u003e#10654\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10644\"\u003e#10644\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHousekeeping:\u003c/strong\u003e Removed stale files, regenerated lockfile, and updated sponsor scripts and blocks. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10584\"\u003e#10584\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10650\"\u003e#10650\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10582\"\u003e#10582\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10640\"\u003e#10640\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10659\"\u003e#10659\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Added regression coverage for urlencoded \u003ccode\u003eContent-Type\u003c/code\u003e casing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve Axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/raashish1601\"\u003e\u003ccode\u003e@​raashish1601\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Kilros0817\"\u003e\u003ccode\u003e@​Kilros0817\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/ashstrc\"\u003e\u003ccode\u003e@​ashstrc\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Abhi3975\"\u003e\u003ccode\u003e@​Abhi3975\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/theamodhshetty\"\u003e\u003ccode\u003e@​theamodhshetty\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.14.0\u003c/h2\u003e\n\u003cp\u003eThis release focuses on compatibility fixes, adapter stability improvements, and test/tooling modernisation.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBreaking Changes:\u003c/strong\u003e None identified in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAction Required:\u003c/strong\u003e If you rely on env-based proxy behaviour or CJS resolution edge-cases, validate your integration after upgrade (notably \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 alignment and \u003ccode\u003emain\u003c/code\u003e entry compatibility fix).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Features:\u003c/strong\u003e No new end-user features were introduced in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTest Coverage Expansion:\u003c/strong\u003e Added broader smoke/module test coverage for CJS and ESM package usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7510\"\u003e#7510\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e Trim trailing CRLF in normalised header values. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7456\"\u003e#7456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP/2:\u003c/strong\u003e Close detached HTTP/2 sessions on timeout to avoid lingering sessions. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7457\"\u003e#7457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Cancel \u003ccode\u003eReadableStream\u003c/code\u003e created during request-stream capability probing to prevent async resource leaks. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7515\"\u003e#7515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed env proxy behavior with \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7499\"\u003e#7499\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7201) [#7201](https://github.com/axios/axios/issues/7201) )\"\u003ecodenomnom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Nandann018-ux\" title=\"+60/-10 ([#7272](https://github.com/axios/axios/issues/7272) )\"\u003eNandan Acharya\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/KernelDeimos\" title=\"+22/-40 ([#7042](https://github.com/axios/axios/issues/7042) )\"\u003eEric Dubé\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/tiborpilz\" title=\"+40/-4 ([#5551](https://github.com/axios/axios/issues/5551) )\"\u003eTibor Pilz\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/joaoGabriel55\" title=\"+31/-4 ([#6314](https://github.com/axios/axios/issues/6314) )\"\u003eGabriel Quaresma\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/turadg\" title=\"+23/-6 ([#6265](https://github.com/axios/axios/issues/6265) )\"\u003eTuradg Aleahmad\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/772a4e54ecc4cc2421e2b746daff0aca10f359d7\"\u003e\u003ccode\u003e772a4e5\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10671\"\u003e#10671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4b071371be2f810b4bc7797a13838e0f806ebb22\"\u003e\u003ccode\u003e4b07137\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.0 to 8.0.5 in /tests/smoke/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/51e57b39db251bfe3d34af5c943dfea18e06c8b6\"\u003e\u003ccode\u003e51e57b3\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fba1a77930f0c459677b729161627234b88c90aa\"\u003e\u003ccode\u003efba1a77\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 in /tests/module/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0bf6e28eac86e87da2b60bbf5ea4237910e1a08e\"\u003e\u003ccode\u003e0bf6e28\u003c/code\u003e\u003c/a\u003e chore(deps): bump denoland/setup-deno in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8107157c572ee4a54cb28c01ab7f7f3d895ba661\"\u003e\u003ccode\u003e8107157\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the development_dependencies group with 4 updates (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e66530e3302d56176befd0778155dafea2487542\"\u003e\u003ccode\u003ee66530e\u003c/code\u003e\u003c/a\u003e ci: require npm-publish environment for releases (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/49f23cbfe4d308a075281c5f798d4c68f648cbe2\"\u003e\u003ccode\u003e49f23cb\u003c/code\u003e\u003c/a\u003e chore(sponsor): update sponsor block (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/363185461b90b1b78845dc8a99a1f103d9b122a1\"\u003e\u003ccode\u003e3631854\u003c/code\u003e\u003c/a\u003e fix: unrestricted cloud metadata exfiltration via header injection chain (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10\"\u003e#10\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fb3befb6daac6cad26b2e54094d0f2d9e47f24df\"\u003e\u003ccode\u003efb3befb\u003c/code\u003e\u003c/a\u003e fix: no_proxy hostname normalization bypass leads to ssrf (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.6...v1.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv` from 17.3.1 to 17.4.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md\"\u003edotenv's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.0...v17.4.1\"\u003e17.4.1\u003c/a\u003e (2026-04-05)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange text \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1005\"\u003e#1005\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.0\"\u003e17.4.0\u003c/a\u003e (2026-04-01)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eskills/\u003c/code\u003e folder with focused agent skills: \u003ccode\u003eskills/dotenv/SKILL.md\u003c/code\u003e (core usage) and \u003ccode\u003eskills/dotenvx/SKILL.md\u003c/code\u003e (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (\u003ccode\u003enpx skills add motdotla/dotenv\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTighten up logs: \u003ccode\u003e◇ injecting env (14) from .env\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1003\"\u003e#1003\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/48aa216de16846724e7bc80756fd42745116e4aa\"\u003e\u003ccode\u003e48aa216\u003c/code\u003e\u003c/a\u003e 17.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/e4282b0286703784f4c5f7fda6c0e30739aead77\"\u003e\u003ccode\u003ee4282b0\u003c/code\u003e\u003c/a\u003e changelog 🪵\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/c540e75d3cfde551865be9bdcb0218fbfffc9229\"\u003e\u003ccode\u003ec540e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1006\"\u003e#1006\u003c/a\u003e from motdotla/skills-update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/5626f9b07e49a353b1fdf35077ea58d1d080cbdc\"\u003e\u003ccode\u003e5626f9b\u003c/code\u003e\u003c/a\u003e dotenvx skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/2411f2a61b0c957b0756942c2d6e4ba572e0fd3d\"\u003e\u003ccode\u003e2411f2a\u003c/code\u003e\u003c/a\u003e update dotenvx skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/1e08a70b6e5a5e55d974a46bca87bd35cf3807e4\"\u003e\u003ccode\u003e1e08a70\u003c/code\u003e\u003c/a\u003e simplify dotenv skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/747f4171feb7364993465915a8cd8929cef0e0cb\"\u003e\u003ccode\u003e747f417\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1005\"\u003e#1005\u003c/a\u003e from motdotla/injected\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/271df30f90869c04c666d8652895a909c097fea7\"\u003e\u003ccode\u003e271df30\u003c/code\u003e\u003c/a\u003e changelog 🪵\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/3f01a8b61addc4e6978f2c40b0147f6812e2f64b\"\u003e\u003ccode\u003e3f01a8b\u003c/code\u003e\u003c/a\u003e \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/ccc50d50d9e398a0b20355748e710852e1db5d07\"\u003e\u003ccode\u003eccc50d5\u003c/code\u003e\u003c/a\u003e update\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `drizzle-orm` from 0.45.1 to 0.45.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/releases\"\u003edrizzle-orm's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.45.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esql.identifier()\u003c/code\u003e, \u003ccode\u003esql.as()\u003c/code\u003e escaping issues. Previously all the values passed to this functions were not properly escaped\ncausing a possible SQL Injection (CWE-89) vulnerability\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/EthanKim88\"\u003e\u003ccode\u003e@​EthanKim88\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/0x90sh\"\u003e\u003ccode\u003e@​0x90sh\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/wgoodall01\"\u003e\u003ccode\u003e@​wgoodall01\u003c/code\u003e\u003c/a\u003e for reaching out to us with a reproduction and suggested fix\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/273c78071d4841b497f5144734b38294df7ec64b\"\u003e\u003ccode\u003e273c780\u003c/code\u003e\u003c/a\u003e + 0.45.2 (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5534\"\u003e#5534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/4aa6ecfee4b4728dadf6f77f071a149878a3c6c0\"\u003e\u003ccode\u003e4aa6ecf\u003c/code\u003e\u003c/a\u003e Kit updates (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5490\"\u003e#5490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/e8e6edfef5ca69c6188d320388ad440265911057\"\u003e\u003ccode\u003ee8e6edf\u003c/code\u003e\u003c/a\u003e feat(drizzle-kit): support d1 via binding (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5302\"\u003e#5302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/compare/0.45.1...0.45.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash-es` from 4.17.23 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash-es's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postgres` from 3.4.8 to 3.4.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/porsager/postgres/releases\"\u003epostgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.4.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e  1e92809\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ehttps://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/e7dfa14519f363229ccc3ead7b1b2f2051937efb\"\u003e\u003ccode\u003ee7dfa14\u003c/code\u003e\u003c/a\u003e 3.4.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/cc29931aa1280fc62b9452647a48a89fe5d443a2\"\u003e\u003ccode\u003ecc29931\u003c/code\u003e\u003c/a\u003e build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/1e92809e79dda7873d96646403c068cd6998ea73\"\u003e\u003ccode\u003e1e92809\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sass` from 1.98.0 to 1.99.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/releases\"\u003esass's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDart Sass 1.99.0\u003c/h2\u003e\n\u003cp\u003eTo install Sass 1.99.0, download one of the packages below and \u003ca href=\"https://katiek2.github.io/path-doc/\"\u003eadd it to your PATH\u003c/a\u003e, or see \u003ca href=\"https://sass-lang.com/install\"\u003ethe Sass website\u003c/a\u003e for full installation instructions.\u003c/p\u003e\n\u003ch1\u003eChanges\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are emitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping root\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If such a function exists without a namespace in the current module, it will be used instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e, \u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were originally intended to match vendor prefixes, but in practice no vendor prefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some lowercase letters are now deprecated, These are names conflict with plain CSS functions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now, these calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are deprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/sass/dart-sass/blob/master/CHANGELOG.md#1990\"\u003efull changelog\u003c/a\u003e for changes in earlier releases.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/blob/main/CHANGELOG.md\"\u003esass's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.99.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are\nemitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping\nroot\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If\nsuch a function exists without a namespace in the current module, it will be\nused instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e,\n\u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were\noriginally intended to match vendor prefixes, but in practice no vendor\nprefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that\nbegin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some\nlowercase letters are now deprecated, These are names conflict with plain CSS\nfunctions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end\nwith \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now,\nthese calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are\ndeprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/83c39fec93ab0dc183a46cff2bc468999ce53e20\"\u003e\u003ccode\u003e83c39fe\u003c/code\u003e\u003c/a\u003e Support the top-level parent selector (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2758\"\u003e#2758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/ec85871864ca16f8045e66ad329bd462e791bfa1\"\u003e\u003ccode\u003eec85871\u003c/code\u003e\u003c/a\u003e Bump EndBug/add-and-commit from 9 to 10 (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2756\"\u003e#2756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/a604acd19ad2ce31ef2efe9aa5950b0c5fcc74a9\"\u003e\u003ccode\u003ea604acd\u003c/code\u003e\u003c/a\u003e [Function Name] Implement changes (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/sass/dart-sass/compare/1.98.0...1.99.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite-plugin-glsl` from 1.5.6 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/UstymUkhman/vite-plugin-glsl/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vue` from 3.5.30 to 3.5.32\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/releases\"\u003evue's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.32\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003ch2\u003ev3.5.31\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003evue's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.31...v3.5.32\"\u003e3.5.32\u003c/a\u003e (2026-04-03)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent currentInstance leak into sibling render during async setup re-entry (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14668\"\u003e#14668\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/f1663535a163057788d3285dec54a245c3efb3ad\"\u003ef166353\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14667\"\u003e#14667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eteleport:\u003c/strong\u003e handle updates before deferred mount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14642\"\u003e#14642\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/32b44f19f67aa30899817a7e79a4510f3b52970a\"\u003e32b44f1\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14640\"\u003e#14640\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e allow customRef to have different getter/setter types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14639\"\u003e#14639\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/e20ddb00188e9935884930046fa572eab7c9dcba\"\u003ee20ddb0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e use private branding for shallowReactive (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14641\"\u003e#14641\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/302c47a4994bc8b47b8a2af6693d8cb6bbd4b06b\"\u003e302c47a\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14638\"\u003e#14638\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14493\"\u003e#14493\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix(server-renderer): cleanup component effect scopes after SSR render\u0026quot; (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14674\"\u003e#14674\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/219d83bd305ce6fc052941acaaf02e7bc70616a4\"\u003e219d83b\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14674\"\u003e#14674\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14669\"\u003e#14669\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.30...v3.5.31\"\u003e3.5.31\u003c/a\u003e (2026-03-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecompiler-sfc:\u003c/strong\u003e allow Node.js subpath imports patterns in asset urls (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/13045\"\u003e#13045\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/95c33560c9af369d44a7670d0c3b93fb62323be2\"\u003e95c3356\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/9919\"\u003e#9919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecompiler-sfc:\u003c/strong\u003e support template literal as defineModel name (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14622\"\u003e#14622\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/bd7eef0161d69bccd48ac303bc6a56ba8d718e2d\"\u003ebd7eef0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14621\"\u003e#14621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ereactivity:\u003c/strong\u003e normalize toRef property keys before dep lookup + improve types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14625\"\u003e#14625\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/1bb28d011b31bc75c80d2860bc6484cceec1ff20\"\u003e1bb28d0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12427\"\u003e#12427\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12431\"\u003e#12431\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e invalidate detached v-for memo vnodes after unmount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14624\"\u003e#14624\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/560def426fc38c1710fda7ddd1ac634d67897960\"\u003e560def4\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12708\"\u003e#12708\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12710\"\u003e#12710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e preserve nullish event handlers in mergeProps (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14550\"\u003e#14550\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/5725222a6bc5d1dd032318349ce0c540b1d63a49\"\u003e5725222\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent merging model listener when value is null or undefined (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14629\"\u003e#14629\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/b39e0329f67354702f4e417e55c15c61d2439657\"\u003eb39e032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-dom:\u003c/strong\u003e defer teleport mount/update until suspense resolves (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/8619\"\u003e#8619\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/88ed04501555b9257df8d7ad86d844c2c2136e50\"\u003e88ed045\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/8603\"\u003e#8603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-dom:\u003c/strong\u003e handle activeElement check in Shadow DOM for v-model (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14196\"\u003e#14196\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/959ded22ab7ea1453f607e0964e1fb6748ece6c7\"\u003e959ded2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eserver-renderer:\u003c/strong\u003e cleanup component effect scopes after SSR render (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14548\"\u003e#14548\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/862f11ee017d51cb9573a8c0642055b3b17cace8\"\u003e862f11e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esuspense:\u003c/strong\u003e avoid unmount activeBranch twice if wrapped in transition (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/9392\"\u003e#9392\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/908c6ad05e1c76ae690d2e50f3bd28278af07e22\"\u003e908c6ad\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/7966\"\u003e#7966\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esuspense:\u003c/strong\u003e update suspense vnode's el during branch self-update (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/12922\"\u003e#12922\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/a2c17004c84e5ce3c4e82e35b806ba381144eed3\"\u003ea2c1700\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12920\"\u003e#12920\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etransition:\u003c/strong\u003e skip enter guard while hmr updating (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14611\"\u003e#14611\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/be0a2f1a7fc3d81d05638798cc628848cfa62cef\"\u003ebe0a2f1\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14608\"\u003e#14608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e prevent shallowReactive marker from leaking into value unions (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14493\"\u003e#14493\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/3b561db4ab42d06166b002f13c0e97cb2bd4a061\"\u003e3b561db\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14490\"\u003e#14490\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/9a2eb53bc03be1f4c8ea109f6bab157c54813765\"\u003e\u003ccode\u003e9a2eb53\u003c/code\u003e\u003c/a\u003e release: v3.5.32\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/32b44f19f67aa30899817a7e79a4510f3b52970a\"\u003e\u003ccode\u003e32b44f1\u003c/code\u003e\u003c/a\u003e fix(teleport): handle updates before deferred mount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14642\"\u003e#14642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/f1663535a163057788d3285dec54a245c3efb3ad\"\u003e\u003ccode\u003ef166353\u003c/code\u003e\u003c/a\u003e fix(runtime-core): prevent currentInstance leak into sibling render during as...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/302c47a4994bc8b47b8a2af6693d8cb6bbd4b06b\"\u003e\u003ccode\u003e302c47a\u003c/code\u003e\u003c/a\u003e fix(types): use private branding for shallowReactive (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14641\"\u003e#14641\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/e20ddb00188e9935884930046fa572eab7c9dcba\"\u003e\u003ccode\u003ee20ddb0\u003c/code\u003e\u003c/a\u003e fix(types): allow customRef to have different getter/setter types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14639\"\u003e#14639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/219d83bd305ce6fc052941acaaf02e7bc70616a4\"\u003e\u003ccode\u003e219d83b\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;fix(server-renderer): cleanup component effect scopes after SSR rende...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/fa23116437250b3fdec41112f276211cb284136e\"\u003e\u003ccode\u003efa23116\u003c/code\u003e\u003c/a\u003e chore: fix typos in changelogs (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14653\"\u003e#14653\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/81615d398a89beeccfe56a4a96fd2fba0c6fb37b\"\u003e\u003ccode\u003e81615d3\u003c/code\u003e\u003c/a\u003e release: v3.5.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/3b561db4ab42d06166b002f13c0e97cb2bd4a061\"\u003e\u003ccode\u003e3b561db\u003c/code\u003e\u003c/a\u003e fix(types): prevent shallowReactive marker from leaking into value unions (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/1b2aca4f38aaec3da4f316256e8364a13f2554d7\"\u003e\u003ccode\u003e1b2aca4\u003c/code\u003e\u003c/a\u003e chore: ignore entities updates in renovate (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14630\"\u003e#14630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vuejs/core/compare/v3.5.30...v3.5.32\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `prettier` from 3.8.1 to 3.8.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/prettier/prettier/releases\"\u003eprettier's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.8.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Angular v21.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e🔗 \u003ca href=\"https://github.com/prettier/prettier/blob/main/CHANGELOG.md#382\"\u003eChangelog\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/prettier/prettier/blob/main/CHANGELOG.md\"\u003eprettier's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e3.8.2\u003c/h1\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/prettier/prettier/compare/3.8.1...3.8.2\"\u003ediff\u003c/a\u003e\u003c/p\u003e\n\u003ch4\u003eAngular: Support Angular v21.2 (\u003ca href=\"https://redirect.github.com/prettier/prettier/pull/18722\"\u003e#18722\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/prettier/pret...\n\n_Description has been truncated_","html_url":"https://github.com/QQXIAOZHOU/VoiceHub-4805e/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/QQXIAOZHOU%2FVoiceHub-4805e/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"},{"uuid":"4242557696","node_id":"PR_kwDORsKXY87Rm5U1","number":5,"state":"open","title":"chore(deps): bump the npm-minor-patch group across 1 directory with 140 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-11T01:55:15.000Z","updated_at":"2026-04-11T01:56:49.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm-minor-patch","update_count":140,"packages":[{"name":"@applemusic-like-lyrics/lyric","old_version":"0.3.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/vue","old_version":"0.2.0","new_version":"0.3.2","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@neteasecloudmusicapienhanced/api","old_version":"4.30.3","new_version":"4.31.0"},{"name":"@types/pg","old_version":"8.18.0","new_version":"8.20.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"axios","old_version":"1.13.6","new_version":"1.15.0","repository_url":"https://github.com/axios/axios"},{"name":"dotenv","old_version":"17.3.1","new_version":"17.4.1","repository_url":"https://github.com/motdotla/dotenv"},{"name":"drizzle-kit","old_version":"0.31.9","new_version":"0.31.10","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"drizzle-orm","old_version":"0.45.1","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"lodash-es","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"postgres","old_version":"3.4.8","new_version":"3.4.9","repository_url":"https://github.com/porsager/postgres"},{"name":"sass","old_version":"1.98.0","new_version":"1.99.0","repository_url":"https://github.com/sass/dart-sass"},{"name":"vite-plugin-glsl","old_version":"1.5.5","new_version":"1.6.0","repository_url":"https://github.com/UstymUkhman/vite-plugin-glsl"},{"name":"vite-plugin-wasm","old_version":"3.5.0","new_version":"3.6.0","repository_url":"https://github.com/Menci/vite-plugin-wasm"},{"name":"vue","old_version":"3.5.30","new_version":"3.5.32","repository_url":"https://github.com/vuejs/core"},{"name":"prettier","old_version":"3.8.1","new_version":"3.8.2","repository_url":"https://github.com/prettier/prettier"},{"name":"@babel/helpers","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/runtime","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@clack/prompts","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@emnapi/core","old_version":"1.9.0","new_version":"1.9.2","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/runtime","old_version":"1.9.0","new_version":"1.9.2","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@eslint/compat","old_version":"2.0.3","new_version":"2.0.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.13","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"file-type","old_version":"21.3.2","new_version":"21.3.4","repository_url":"https://github.com/sindresorhus/file-type"},{"name":"@nuxt/devtools","old_version":"3.2.3","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/telemetry","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nuxt/telemetry"},{"name":"@speed-highlight/core","old_version":"1.2.14","new_version":"1.2.15","repository_url":"https://github.com/speed-highlight/core"},{"name":"@swc/core","old_version":"1.15.18","new_version":"1.15.24","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/helpers","old_version":"0.5.19","new_version":"0.5.21","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/wasm","old_version":"1.15.18","new_version":"1.15.24","repository_url":"https://github.com/swc-project/swc"},{"name":"@types/node","old_version":"25.5.0","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.57.0","new_version":"8.58.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@unhead/vue","old_version":"2.1.12","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"@vercel/nft","old_version":"1.3.2","new_version":"1.5.0","repository_url":"https://github.com/vercel/nft"},{"name":"@vue/devtools-core","old_version":"8.1.0","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"bare-fs","old_version":"4.5.5","new_version":"4.7.0","repository_url":"https://github.com/holepunchto/bare-fs"},{"name":"bare-os","old_version":"3.8.0","new_version":"3.8.7","repository_url":"https://github.com/holepunchto/bare-os"},{"name":"bare-stream","old_version":"2.8.1","new_version":"2.13.0","repository_url":"https://github.com/holepunchto/bare-stream"},{"name":"bare-url","old_version":"2.3.2","new_version":"2.4.0","repository_url":"https://github.com/holepunchto/bare-url"},{"name":"baseline-browser-mapping","old_version":"2.10.7","new_version":"2.10.17","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"basic-ftp","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/patrickjuchli/basic-ftp"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"cookie-es","old_version":"1.2.2","new_version":"1.2.3","repository_url":"https://github.com/unjs/cookie-es"},{"name":"core-js","old_version":"3.48.0","new_version":"3.49.0","repository_url":"https://github.com/zloirock/core-js"},{"name":"core-js-compat","old_version":"3.48.0","new_version":"3.49.0","repository_url":"https://github.com/zloirock/core-js"},{"name":"css-declaration-sorter","old_version":"7.3.1","new_version":"7.4.0","repository_url":"https://github.com/Siilwyn/css-declaration-sorter"},{"name":"cssnano","old_version":"7.1.3","new_version":"7.1.4","repository_url":"https://github.com/cssnano/cssnano"},{"name":"devalue","old_version":"5.6.4","new_version":"5.7.1","repository_url":"https://github.com/sveltejs/devalue"},{"name":"eslint-config-flat-gitignore","old_version":"2.2.1","new_version":"2.3.0","repository_url":"https://github.com/antfu/eslint-config-flat-gitignore"},{"name":"eslint-flat-config-utils","old_version":"3.0.2","new_version":"3.1.0","repository_url":"https://github.com/antfu/eslint-flat-config-utils"},{"name":"eslint-plugin-jsdoc","old_version":"62.8.0","new_version":"62.9.0","repository_url":"https://github.com/gajus/eslint-plugin-jsdoc"},{"name":"path-to-regexp","old_version":"0.1.12","new_version":"0.1.13","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"flatted","old_version":"3.4.1","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"fuse.js","old_version":"7.1.0","new_version":"7.3.0","repository_url":"https://github.com/krisk/Fuse"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.13.7","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"globby","old_version":"16.1.1","new_version":"16.2.0","repository_url":"https://github.com/sindresorhus/globby"},{"name":"h3","old_version":"1.15.6","new_version":"1.15.11","repository_url":"https://github.com/h3js/h3"},{"name":"ioredis","old_version":"5.10.0","new_version":"5.10.1","repository_url":"https://github.com/luin/ioredis"},{"name":"launch-editor","old_version":"2.13.1","new_version":"2.13.2","repository_url":"https://github.com/yyx990803/launch-editor"},{"name":"listhen","old_version":"1.9.0","new_version":"1.9.1","repository_url":"https://github.com/unjs/listhen"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"netmask","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/rs/node-netmask"},{"name":"nitropack","old_version":"2.13.1","new_version":"2.13.3","repository_url":"https://github.com/nitrojs/nitro"},{"name":"node-releases","old_version":"2.0.36","new_version":"2.0.37","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"postcss","old_version":"8.5.8","new_version":"8.5.9","repository_url":"https://github.com/postcss/postcss"},{"name":"regjsparser","old_version":"0.13.0","new_version":"0.13.1","repository_url":"https://github.com/jviereck/regjsparser"},{"name":"sax","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/isaacs/sax-js"},{"name":"seroval","old_version":"1.5.1","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"simple-git","old_version":"3.33.0","new_version":"3.35.2","repository_url":"https://github.com/steveukx/git-js"},{"name":"srvx","old_version":"0.11.9","new_version":"0.11.15","repository_url":"https://github.com/h3js/srvx"},{"name":"tar","old_version":"7.5.11","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"terser","old_version":"5.46.0","new_version":"5.46.1","repository_url":"https://github.com/terser/terser"},{"name":"tinyexec","old_version":"1.0.4","new_version":"1.1.1","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"type-fest","old_version":"5.4.4","new_version":"5.5.0","repository_url":"https://github.com/sindresorhus/type-fest"},{"name":"uqr","old_version":"0.1.2","new_version":"0.1.3","repository_url":"https://github.com/unjs/uqr"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.2","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-minor-patch group with 81 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@applemusic-like-lyrics/lyric](https://github.com/amll-dev/applemusic-like-lyrics) | `0.3.0` | `0.4.1` |\n| [@applemusic-like-lyrics/vue](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue) | `0.2.0` | `0.3.2` |\n| @neteasecloudmusicapienhanced/api | `4.30.3` | `4.31.0` |\n| [@types/pg](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/pg) | `8.18.0` | `8.20.0` |\n| [axios](https://github.com/axios/axios) | `1.13.6` | `1.15.0` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.3.1` | `17.4.1` |\n| [drizzle-kit](https://github.com/drizzle-team/drizzle-orm) | `0.31.9` | `0.31.10` |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.45.1` | `0.45.2` |\n| [lodash-es](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [postgres](https://github.com/porsager/postgres) | `3.4.8` | `3.4.9` |\n| [sass](https://github.com/sass/dart-sass) | `1.98.0` | `1.99.0` |\n| [vite-plugin-glsl](https://github.com/UstymUkhman/vite-plugin-glsl) | `1.5.5` | `1.6.0` |\n| [vite-plugin-wasm](https://github.com/Menci/vite-plugin-wasm) | `3.5.0` | `3.6.0` |\n| [vue](https://github.com/vuejs/core) | `3.5.30` | `3.5.32` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.2` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.28.6` | `7.29.2` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.28.6` | `7.29.2` |\n| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.1.0` | `1.2.0` |\n| [@emnapi/core](https://github.com/toyobayashi/emnapi) | `1.9.0` | `1.9.2` |\n| [@emnapi/runtime](https://github.com/toyobayashi/emnapi) | `1.9.0` | `1.9.2` |\n| [@eslint/compat](https://github.com/eslint/rewrite/tree/HEAD/packages/compat) | `2.0.3` | `2.0.5` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.13` |\n| [file-type](https://github.com/sindresorhus/file-type) | `21.3.2` | `21.3.4` |\n| [@nuxt/devtools](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools) | `3.2.3` | `3.2.4` |\n| [@nuxt/telemetry](https://github.com/nuxt/telemetry) | `2.7.0` | `2.8.0` |\n| [@speed-highlight/core](https://github.com/speed-highlight/core) | `1.2.14` | `1.2.15` |\n| [@swc/core](https://github.com/swc-project/swc/tree/HEAD/packages/core) | `1.15.18` | `1.15.24` |\n| [@swc/helpers](https://github.com/swc-project/swc/tree/HEAD/packages/helpers) | `0.5.19` | `0.5.21` |\n| [@swc/wasm](https://github.com/swc-project/swc) | `1.15.18` | `1.15.24` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.5.0` | `25.6.0` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.57.0` | `8.58.1` |\n| [@unhead/vue](https://github.com/unjs/unhead/tree/HEAD/packages/vue) | `2.1.12` | `2.1.13` |\n| [@vercel/nft](https://github.com/vercel/nft) | `1.3.2` | `1.5.0` |\n| [@vue/devtools-core](https://github.com/vuejs/devtools/tree/HEAD/packages/core) | `8.1.0` | `8.1.1` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [bare-fs](https://github.com/holepunchto/bare-fs) | `4.5.5` | `4.7.0` |\n| [bare-os](https://github.com/holepunchto/bare-os) | `3.8.0` | `3.8.7` |\n| [bare-stream](https://github.com/holepunchto/bare-stream) | `2.8.1` | `2.13.0` |\n| [bare-url](https://github.com/holepunchto/bare-url) | `2.3.2` | `2.4.0` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.10.7` | `2.10.17` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.2.0` | `5.2.2` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `1.2.2` | `1.2.3` |\n| [core-js](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js) | `3.48.0` | `3.49.0` |\n| [core-js-compat](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js-compat) | `3.48.0` | `3.49.0` |\n| [css-declaration-sorter](https://github.com/Siilwyn/css-declaration-sorter) | `7.3.1` | `7.4.0` |\n| [cssnano](https://github.com/cssnano/cssnano) | `7.1.3` | `7.1.4` |\n| [devalue](https://github.com/sveltejs/devalue) | `5.6.4` | `5.7.1` |\n| [eslint-config-flat-gitignore](https://github.com/antfu/eslint-config-flat-gitignore) | `2.2.1` | `2.3.0` |\n| [eslint-flat-config-utils](https://github.com/antfu/eslint-flat-config-utils) | `3.0.2` | `3.1.0` |\n| [eslint-plugin-jsdoc](https://github.com/gajus/eslint-plugin-jsdoc) | `62.8.0` | `62.9.0` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `0.1.12` | `0.1.13` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.4.1` | `3.4.2` |\n| [fuse.js](https://github.com/krisk/Fuse) | `7.1.0` | `7.3.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.13.7` |\n| [globby](https://github.com/sindresorhus/globby) | `16.1.1` | `16.2.0` |\n| [h3](https://github.com/h3js/h3) | `1.15.6` | `1.15.11` |\n| [ioredis](https://github.com/luin/ioredis) | `5.10.0` | `5.10.1` |\n| [launch-editor](https://github.com/yyx990803/launch-editor) | `2.13.1` | `2.13.2` |\n| [listhen](https://github.com/unjs/listhen) | `1.9.0` | `1.9.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [netmask](https://github.com/rs/node-netmask) | `2.0.2` | `2.1.1` |\n| [nitropack](https://github.com/nitrojs/nitro) | `2.13.1` | `2.13.3` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.36` | `2.0.37` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.8` | `8.5.9` |\n| [regjsparser](https://github.com/jviereck/regjsparser) | `0.13.0` | `0.13.1` |\n| [sax](https://github.com/isaacs/sax-js) | `1.5.0` | `1.6.0` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.1` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.33.0` | `3.35.2` |\n| [srvx](https://github.com/h3js/srvx) | `0.11.9` | `0.11.15` |\n| [tar](https://github.com/isaacs/node-tar) | `7.5.11` | `7.5.13` |\n| [terser](https://github.com/terser/terser) | `5.46.0` | `5.46.1` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.4` | `1.1.1` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [type-fest](https://github.com/sindresorhus/type-fest) | `5.4.4` | `5.5.0` |\n| [uqr](https://github.com/unjs/uqr) | `0.1.2` | `0.1.3` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.2` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |\n\n\nUpdates `@applemusic-like-lyrics/lyric` from 0.3.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/0309834a90cc9f489ef78cc4c6d6f6d18362e162\"\u003e\u003ccode\u003e0309834\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/issues/457\"\u003e#457\u003c/a\u003e from Linho1219/fix-type-error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/2fc5d2e19d7a2ce70501a347dec4f5f4f90fbfe2\"\u003e\u003ccode\u003e2fc5d2e\u003c/code\u003e\u003c/a\u003e fix: lyric 包 rust 侧适配 romanWord 可选\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/4fdd6a93839179f44891ba1b618c0b8b957ba0e0\"\u003e\u003ccode\u003e4fdd6a9\u003c/code\u003e\u003c/a\u003e chore: 添加 version plan\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/d862271aa1396b19b9a8bb4d8cd484a0df366270\"\u003e\u003ccode\u003ed862271\u003c/code\u003e\u003c/a\u003e fix: 修复 lyric 包 romanWord 类型\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/compare/core-bundle@0.3.0...@applemusic-like-lyrics/lyric@0.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/vue` from 0.2.0 to 0.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/1a0803d465c230ac0ad46f70d85080d4debaf170\"\u003e\u003ccode\u003e1a0803d\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.3.2/packages/vue\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@neteasecloudmusicapienhanced/api` from 4.30.3 to 4.31.0\n\nUpdates `@types/pg` from 8.18.0 to 8.20.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/pg\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.6 to 1.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.0\u003c/h2\u003e\n\u003cp\u003eThis release delivers two critical security patches, adds runtime support for Deno and Bun, and includes significant CI hardening, documentation improvements, and routine dependency updates.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecation:\u003c/strong\u003e \u003ccode\u003eurl.parse()\u003c/code\u003e usage has been replaced to address Node.js deprecation warnings. If you are on a recent version of Node.js, this resolves console warnings you may have been seeing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed a \u003ccode\u003eno_proxy\u003c/code\u003e hostname normalisation bypass that could lead to Server-Side Request Forgery (SSRF). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHeader Injection:\u003c/strong\u003e Fixed an unrestricted cloud metadata exfiltration vulnerability via a header injection chain. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10660\"\u003e#10660\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Support:\u003c/strong\u003e Added compatibility checks and documentation for Deno and Bun environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10652\"\u003e#10652\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10653\"\u003e#10653\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Security:\u003c/strong\u003e Hardened workflow permissions to least privilege, added the \u003ccode\u003ezizmor\u003c/code\u003e security scanner, pinned action versions, and gated npm publishing with OIDC and environment protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10618\"\u003e#10618\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10619\"\u003e#10619\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10627\"\u003e#10627\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10637\"\u003e#10637\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eserialize-javascript\u003c/code\u003e, \u003ccode\u003ehandlebars\u003c/code\u003e, \u003ccode\u003epicomatch\u003c/code\u003e, \u003ccode\u003evite\u003c/code\u003e, and \u003ccode\u003edenoland/setup-deno\u003c/code\u003e to latest versions. Added a 7-day Dependabot cooldown period. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10574\"\u003e#10574\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10572\"\u003e#10572\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10568\"\u003e#10568\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10616\"\u003e#10616\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocumentation:\u003c/strong\u003e Unified docs, improved \u003ccode\u003ebeforeRedirect\u003c/code\u003e credential leakage example, clarified \u003ccode\u003ewithCredentials\u003c/code\u003e/\u003ccode\u003ewithXSRFToken\u003c/code\u003e behaviour, HTTP/2 support notes, async/await timeout error handling, header case preservation, and various typo fixes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10649\"\u003e#10649\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7471\"\u003e#7471\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10654\"\u003e#10654\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10644\"\u003e#10644\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHousekeeping:\u003c/strong\u003e Removed stale files, regenerated lockfile, and updated sponsor scripts and blocks. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10584\"\u003e#10584\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10650\"\u003e#10650\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10582\"\u003e#10582\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10640\"\u003e#10640\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10659\"\u003e#10659\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Added regression coverage for urlencoded \u003ccode\u003eContent-Type\u003c/code\u003e casing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve Axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/raashish1601\"\u003e\u003ccode\u003e@​raashish1601\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Kilros0817\"\u003e\u003ccode\u003e@​Kilros0817\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/ashstrc\"\u003e\u003ccode\u003e@​ashstrc\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Abhi3975\"\u003e\u003ccode\u003e@​Abhi3975\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/theamodhshetty\"\u003e\u003ccode\u003e@​theamodhshetty\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.14.0\u003c/h2\u003e\n\u003cp\u003eThis release focuses on compatibility fixes, adapter stability improvements, and test/tooling modernisation.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBreaking Changes:\u003c/strong\u003e None identified in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAction Required:\u003c/strong\u003e If you rely on env-based proxy behaviour or CJS resolution edge-cases, validate your integration after upgrade (notably \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 alignment and \u003ccode\u003emain\u003c/code\u003e entry compatibility fix).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Features:\u003c/strong\u003e No new end-user features were introduced in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTest Coverage Expansion:\u003c/strong\u003e Added broader smoke/module test coverage for CJS and ESM package usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7510\"\u003e#7510\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e Trim trailing CRLF in normalised header values. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7456\"\u003e#7456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP/2:\u003c/strong\u003e Close detached HTTP/2 sessions on timeout to avoid lingering sessions. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7457\"\u003e#7457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Cancel \u003ccode\u003eReadableStream\u003c/code\u003e created during request-stream capability probing to prevent async resource leaks. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7515\"\u003e#7515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed env proxy behavior with \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7499\"\u003e#7499\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7201) [#7201](https://github.com/axios/axios/issues/7201) )\"\u003ecodenomnom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Nandann018-ux\" title=\"+60/-10 ([#7272](https://github.com/axios/axios/issues/7272) )\"\u003eNandan Acharya\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/KernelDeimos\" title=\"+22/-40 ([#7042](https://github.com/axios/axios/issues/7042) )\"\u003eEric Dubé\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/tiborpilz\" title=\"+40/-4 ([#5551](https://github.com/axios/axios/issues/5551) )\"\u003eTibor Pilz\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/joaoGabriel55\" title=\"+31/-4 ([#6314](https://github.com/axios/axios/issues/6314) )\"\u003eGabriel Quaresma\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/turadg\" title=\"+23/-6 ([#6265](https://github.com/axios/axios/issues/6265) )\"\u003eTuradg Aleahmad\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/772a4e54ecc4cc2421e2b746daff0aca10f359d7\"\u003e\u003ccode\u003e772a4e5\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10671\"\u003e#10671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4b071371be2f810b4bc7797a13838e0f806ebb22\"\u003e\u003ccode\u003e4b07137\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.0 to 8.0.5 in /tests/smoke/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/51e57b39db251bfe3d34af5c943dfea18e06c8b6\"\u003e\u003ccode\u003e51e57b3\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fba1a77930f0c459677b729161627234b88c90aa\"\u003e\u003ccode\u003efba1a77\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 in /tests/module/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0bf6e28eac86e87da2b60bbf5ea4237910e1a08e\"\u003e\u003ccode\u003e0bf6e28\u003c/code\u003e\u003c/a\u003e chore(deps): bump denoland/setup-deno in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8107157c572ee4a54cb28c01ab7f7f3d895ba661\"\u003e\u003ccode\u003e8107157\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the development_dependencies group with 4 updates (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e66530e3302d56176befd0778155dafea2487542\"\u003e\u003ccode\u003ee66530e\u003c/code\u003e\u003c/a\u003e ci: require npm-publish environment for releases (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/49f23cbfe4d308a075281c5f798d4c68f648cbe2\"\u003e\u003ccode\u003e49f23cb\u003c/code\u003e\u003c/a\u003e chore(sponsor): update sponsor block (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/363185461b90b1b78845dc8a99a1f103d9b122a1\"\u003e\u003ccode\u003e3631854\u003c/code\u003e\u003c/a\u003e fix: unrestricted cloud metadata exfiltration via header injection chain (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10\"\u003e#10\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fb3befb6daac6cad26b2e54094d0f2d9e47f24df\"\u003e\u003ccode\u003efb3befb\u003c/code\u003e\u003c/a\u003e fix: no_proxy hostname normalization bypass leads to ssrf (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.6...v1.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv` from 17.3.1 to 17.4.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md\"\u003edotenv's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.0...v17.4.1\"\u003e17.4.1\u003c/a\u003e (2026-04-05)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange text \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1005\"\u003e#1005\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.0\"\u003e17.4.0\u003c/a\u003e (2026-04-01)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eskills/\u003c/code\u003e folder with focused agent skills: \u003ccode\u003eskills/dotenv/SKILL.md\u003c/code\u003e (core usage) and \u003ccode\u003eskills/dotenvx/SKILL.md\u003c/code\u003e (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (\u003ccode\u003enpx skills add motdotla/dotenv\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTighten up logs: \u003ccode\u003e◇ injecting env (14) from .env\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1003\"\u003e#1003\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/48aa216de16846724e7bc80756fd42745116e4aa\"\u003e\u003ccode\u003e48aa216\u003c/code\u003e\u003c/a\u003e 17.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/e4282b0286703784f4c5f7fda6c0e30739aead77\"\u003e\u003ccode\u003ee4282b0\u003c/code\u003e\u003c/a\u003e changelog 🪵\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/c540e75d3cfde551865be9bdcb0218fbfffc9229\"\u003e\u003ccode\u003ec540e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1006\"\u003e#1006\u003c/a\u003e from motdotla/skills-update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/5626f9b07e49a353b1fdf35077ea58d1d080cbdc\"\u003e\u003ccode\u003e5626f9b\u003c/code\u003e\u003c/a\u003e dotenvx skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/2411f2a61b0c957b0756942c2d6e4ba572e0fd3d\"\u003e\u003ccode\u003e2411f2a\u003c/code\u003e\u003c/a\u003e update dotenvx skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/1e08a70b6e5a5e55d974a46bca87bd35cf3807e4\"\u003e\u003ccode\u003e1e08a70\u003c/code\u003e\u003c/a\u003e simplify dotenv skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/747f4171feb7364993465915a8cd8929cef0e0cb\"\u003e\u003ccode\u003e747f417\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1005\"\u003e#1005\u003c/a\u003e from motdotla/injected\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/271df30f90869c04c666d8652895a909c097fea7\"\u003e\u003ccode\u003e271df30\u003c/code\u003e\u003c/a\u003e changelog 🪵\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/3f01a8b61addc4e6978f2c40b0147f6812e2f64b\"\u003e\u003ccode\u003e3f01a8b\u003c/code\u003e\u003c/a\u003e \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/ccc50d50d9e398a0b20355748e710852e1db5d07\"\u003e\u003ccode\u003eccc50d5\u003c/code\u003e\u003c/a\u003e update\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `drizzle-kit` from 0.31.9 to 0.31.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/releases\"\u003edrizzle-kit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003edrizzle-kit@0.31.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated to \u003ccode\u003ehanji@0.0.8\u003c/code\u003e - native bun \u003ccode\u003estringWidth\u003c/code\u003e, \u003ccode\u003estripANSI\u003c/code\u003e support, errors for non-TTY environments\u003c/li\u003e\n\u003cli\u003eWe've migrated away from \u003ccode\u003eesbuild-register\u003c/code\u003e to \u003ccode\u003etsx\u003c/code\u003e loader, it will now allow to use \u003ccode\u003edrizzle-kit\u003c/code\u003e seamlessly with both \u003ccode\u003eESM\u003c/code\u003e and \u003ccode\u003eCJS\u003c/code\u003e modules\u003c/li\u003e\n\u003cli\u003eWe've also added native \u003ccode\u003eBun\u003c/code\u003e and \u003ccode\u003eDeno\u003c/code\u003e launch support, which will not trigger \u003ccode\u003etsx\u003c/code\u003e loader and utilise native \u003ccode\u003ebun\u003c/code\u003e and \u003ccode\u003edeno\u003c/code\u003e imports capabilities and faster startup times\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/4aa6ecfee4b4728dadf6f77f071a149878a3c6c0\"\u003e\u003ccode\u003e4aa6ecf\u003c/code\u003e\u003c/a\u003e Kit updates (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5490\"\u003e#5490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/compare/drizzle-kit@0.31.9...drizzle-kit@0.31.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `drizzle-orm` from 0.45.1 to 0.45.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/releases\"\u003edrizzle-orm's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.45.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esql.identifier()\u003c/code\u003e, \u003ccode\u003esql.as()\u003c/code\u003e escaping issues. Previously all the values passed to this functions were not properly escaped\ncausing a possible SQL Injection (CWE-89) vulnerability\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/EthanKim88\"\u003e\u003ccode\u003e@​EthanKim88\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/0x90sh\"\u003e\u003ccode\u003e@​0x90sh\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/wgoodall01\"\u003e\u003ccode\u003e@​wgoodall01\u003c/code\u003e\u003c/a\u003e for reaching out to us with a reproduction and suggested fix\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/273c78071d4841b497f5144734b38294df7ec64b\"\u003e\u003ccode\u003e273c780\u003c/code\u003e\u003c/a\u003e + 0.45.2 (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5534\"\u003e#5534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/4aa6ecfee4b4728dadf6f77f071a149878a3c6c0\"\u003e\u003ccode\u003e4aa6ecf\u003c/code\u003e\u003c/a\u003e Kit updates (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5490\"\u003e#5490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/e8e6edfef5ca69c6188d320388ad440265911057\"\u003e\u003ccode\u003ee8e6edf\u003c/code\u003e\u003c/a\u003e feat(drizzle-kit): support d1 via binding (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5302\"\u003e#5302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/compare/0.45.1...0.45.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash-es` from 4.17.23 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash-es's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postgres` from 3.4.8 to 3.4.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/porsager/postgres/releases\"\u003epostgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.4.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e  1e92809\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ehttps://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/e7dfa14519f363229ccc3ead7b1b2f2051937efb\"\u003e\u003ccode\u003ee7dfa14\u003c/code\u003e\u003c/a\u003e 3.4.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/cc29931aa1280fc62b9452647a48a89fe5d443a2\"\u003e\u003ccode\u003ecc29931\u003c/code\u003e\u003c/a\u003e build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/1e92809e79dda7873d96646403c068cd6998ea73\"\u003e\u003ccode\u003e1e92809\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sass` from 1.98.0 to 1.99.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/releases\"\u003esass's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDart Sass 1.99.0\u003c/h2\u003e\n\u003cp\u003eTo install Sass 1.99.0, download one of the packages below and \u003ca href=\"https://katiek2.github.io/path-doc/\"\u003eadd it to your PATH\u003c/a\u003e, or see \u003ca href=\"https://sass-lang.com/install\"\u003ethe Sass website\u003c/a\u003e for full installation instructions.\u003c/p\u003e\n\u003ch1\u003eChanges\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are emitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping root\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If such a function exists without a namespace in the current module, it will be used instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e, \u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were originally intended to match vendor prefixes, but in practice no vendor prefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some lowercase letters are now deprecated, These are names conflict with plain CSS functions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now, these calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are deprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/sass/dart-sass/blob/master/CHANGELOG.md#1990\"\u003efull changelog\u003c/a\u003e for changes in earlier releases.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/blob/main/CHANGELOG.md\"\u003esass's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.99.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are\nemitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping\nroot\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If\nsuch a function exists without a namespace in the current module, it will be\nused instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e,\n\u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were\noriginally intended to match vendor prefixes, but in practice no vendor\nprefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that\nbegin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some\nlowercase letters are now deprecated, These are names conflict with plain CSS\nfunctions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end\nwith \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now,\nthese calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are\ndeprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/83c39fec93ab0dc183a46cff2bc468999ce53e20\"\u003e\u003ccode\u003e83c39fe\u003c/code\u003e\u003c/a\u003e Support the top-level parent selector (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2758\"\u003e#2758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/ec85871864ca16f8045e66ad329bd462e791bfa1\"\u003e\u003ccode\u003eec85871\u003c/code\u003e\u003c/a\u003e Bump EndBug/add-and-commit from 9 to 10 (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2756\"\u003e#2756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/a604acd19ad2ce31ef2efe9aa5950b0c5fcc74a9\"\u003e\u003ccode\u003ea604acd\u003c/code\u003e\u003c/a\u003e [Function Name] Implement changes (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/sass/dart-sass/compare/1.98.0...1.99.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite-plugin-glsl` from 1.5.5 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/UstymUkhman/vite-plugin-glsl/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite-plugin-wasm` from 3.5.0 to 3.6.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Menci/vite-plugin-wasm/commit/35c4349b04c78c0b2631be1bb0233ee1d816d3d2\"\u003e\u003ccode\u003e35c4349\u003c/code\u003e\u003c/a\u003e chore: bump to v3.6.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Menci/vite-plugin-wasm/commit/691909bc98b47762c6bda4c0ee88a6e5bc1e1f8c\"\u003e\u003ccode\u003e691909b\u003c/code\u003e\u003c/a\u003e feat: support vite 8 (\u003ca href=\"https://redirect.github.com/Menci/vite-plugin-wasm/issues/87\"\u003e#87\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Menci/vite-plugin-wasm/commit/5b4f0de093b3aa70c1d76bed8359922d448423b6\"\u003e\u003ccode\u003e5b4f0de\u003c/code\u003e\u003c/a\u003e chore: migrate to node:test (\u003ca href=\"https://redirect.github.com/Menci/vite-plugin-wasm/issues/86\"\u003e#86\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Menci/vite-plugin-wasm/commit/b43294042f6f3177fc745f0b777e554d15447d67\"\u003e\u003ccode\u003eb432940\u003c/code\u003e\u003c/a\u003e fix: handle WASM exports with non-identifier characters (\u003ca href=\"https://redirect.github.com/Menci/vite-plugin-wasm/issues/84\"\u003e#84\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Menci/vite-plugin-wasm/commit/c70ef06eb904aedf1d8071befd7f9b58b0e9d9ed\"\u003e\u003ccode\u003ec70ef06\u003c/code\u003e\u003c/a\u003e docs: update README.md to reflect Vite 7 support (\u003ca href=\"https://redirect.github.com/Menci/vite-plugin-wasm/issues/80\"\u003e#80\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/Menci/vite-plugin-wasm/compare/v3.5.0...v3.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vue` from 3.5.30 to 3.5.32\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/releases\"\u003evue's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.32\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003ch2\u003ev3.5.31\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003evue's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.31...v3.5.32\"\u003e3.5.32\u003c/a\u003e (2026-04-03)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent currentInstance leak into sibling render during async setup re-entry (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14668\"\u003e#14668\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/f1663535a163057788d3285dec54a245c3efb3ad\"\u003ef166353\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14667\"\u003e#14667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eteleport:\u003c/strong\u003e handle updates before deferred mount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14642\"\u003e#14642\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/32b44f19f67aa30899817a7e79a4510f3b52970a\"\u003e32b44f1\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14640\"\u003e#14640\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e allow customRef to have different getter/setter types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14639\"\u003e#14639\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/e20ddb00188e9935884930046fa572eab7c9dcba\"\u003ee20ddb0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e use private branding for shallowReactive (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14641\"\u003e#14641\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/302c47a4994bc8b47b8a2af6693d8cb6bbd4b06b\"\u003e302c47a\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14638\"\u003e#14638\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14493\"\u003e#14493\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix(server-renderer): cleanup component effect scopes after SSR render\u0026quot; (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14674\"\u003e#14674\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/219d83bd305ce6fc052941acaaf02e7bc70616a4\"\u003e219d83b\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14674\"\u003e#14674\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14669\"\u003e#14669\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.30...v3.5.31\"\u003e3.5.31\u003c/a\u003e (2026-03-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecompiler-sfc:\u003c/strong\u003e allow Node.js subpath imports patterns in asset urls (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/13045\"\u003e#13045\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/95c33560c9af369d44a7670d0c3b93fb62323be2\"\u003e95c3356\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/9919\"\u003e#9919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecompiler-sfc:\u003c/strong\u003e support template literal as defineModel name (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14622\"\u003e#14622\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/bd7eef0161d69bccd48ac303bc6a56ba8d718e2d\"\u003ebd7eef0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14621\"\u003e#14621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ereactivity:\u003c/strong\u003e normalize toRef property keys before dep lookup + improve types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14625\"\u003e#14625\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/1bb28d011b31bc75c80d2860bc6484cceec1ff20\"\u003e1bb28d0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12427\"\u003e#12427\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12431\"\u003e#12431\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e invalidate detached v-for memo vnodes after unmount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14624\"\u003e#14624\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/560def426fc38c1710fda7ddd1ac634d67897960\"\u003e560def4\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12708\"\u003e#12708\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12710\"\u003e#12710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e preserve nullish event handlers in mergeProps (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14550\"\u003e#14550\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/5725222a6bc5d1dd032318349ce0c540b1d63a49\"\u003e5725222\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent merging model listener when value is null or undefined (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14629\"\u003e#14629\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/b39e0329f67354702f4e417e55c15c61d2439657\"\u003eb39e032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-dom:\u003c/strong\u003e defer teleport mount/update until suspense resolves (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/8619\"\u003e#8619\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/88ed04501555b9257df8d7ad86d844c2c2136e50\"\u003e88ed045\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/8603\"\u003e#8603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-dom:\u003c/strong\u003e handle activeElement check in Shadow DOM for v-model (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14196\"\u003e#14196\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/959ded22ab7ea1453f607e0964e1fb6748ece6c7\"\u003e959ded2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eserver-renderer:\u003c/strong\u003e cleanup component effect scopes after SSR render (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14548\"\u003e#14548\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/862f11ee017d51cb9573a8c0642055b3b17cace8\"\u003e862f11e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esuspense:\u003c/strong\u003e avoid unmount activeBranch twice if wrapped in transition (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/9392\"\u003e#9392\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/908c6ad05e1c76ae690d2e50f3bd28278af07e22\"\u003e908c6ad\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/7966\"\u003e#7966\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esuspense:\u003c/strong\u003e update suspense vnode's el during branch self-update (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/12922\"\u003e#12922\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/a2c17004c84e5ce3c4e82e35b806ba381144eed3\"\u003ea2c1700\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12920\"\u003e#12920\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etransition:\u003c/strong\u003e skip enter guard while hmr updating (\u003ca href=\"https://redirect...\n\n_Description has been truncated_","html_url":"https://github.com/qinchunhuan/VoiceHub/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/qinchunhuan%2FVoiceHub/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"},{"uuid":"4242548226","node_id":"PR_kwDORtBzwc7Rm3i8","number":4,"state":"open","title":"chore(deps): bump the npm-minor-patch group across 1 directory with 119 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-11T01:51:59.000Z","updated_at":"2026-04-11T01:53:32.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm-minor-patch","update_count":119,"packages":[{"name":"@applemusic-like-lyrics/lyric","old_version":"0.3.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/vue","old_version":"0.2.0","new_version":"0.3.2","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@neteasecloudmusicapienhanced/api","old_version":"4.30.3","new_version":"4.31.0"},{"name":"@types/pg","old_version":"8.18.0","new_version":"8.20.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"axios","old_version":"1.13.6","new_version":"1.15.0","repository_url":"https://github.com/axios/axios"},{"name":"dotenv","old_version":"17.3.1","new_version":"17.4.1","repository_url":"https://github.com/motdotla/dotenv"},{"name":"drizzle-orm","old_version":"0.45.1","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"lodash-es","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"postgres","old_version":"3.4.8","new_version":"3.4.9","repository_url":"https://github.com/porsager/postgres"},{"name":"sass","old_version":"1.98.0","new_version":"1.99.0","repository_url":"https://github.com/sass/dart-sass"},{"name":"vite-plugin-glsl","old_version":"1.5.6","new_version":"1.6.0","repository_url":"https://github.com/UstymUkhman/vite-plugin-glsl"},{"name":"vue","old_version":"3.5.30","new_version":"3.5.32","repository_url":"https://github.com/vuejs/core"},{"name":"prettier","old_version":"3.8.1","new_version":"3.8.2","repository_url":"https://github.com/prettier/prettier"},{"name":"@clack/prompts","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@emnapi/core","old_version":"1.9.1","new_version":"1.9.2","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/runtime","old_version":"1.9.1","new_version":"1.9.2","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@eslint/compat","old_version":"2.0.3","new_version":"2.0.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.13","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"path-to-regexp","old_version":"0.1.12","new_version":"0.1.13","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"@nuxt/telemetry","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nuxt/telemetry"},{"name":"@swc/core","old_version":"1.15.18","new_version":"1.15.24","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/helpers","old_version":"0.5.19","new_version":"0.5.21","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/wasm","old_version":"1.15.18","new_version":"1.15.24","repository_url":"https://github.com/swc-project/swc"},{"name":"@types/node","old_version":"25.5.0","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.57.1","new_version":"8.58.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@unhead/vue","old_version":"2.1.12","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"@vercel/nft","old_version":"1.4.0","new_version":"1.5.0","repository_url":"https://github.com/vercel/nft"},{"name":"@vue/devtools-core","old_version":"8.1.0","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"bare-fs","old_version":"4.5.6","new_version":"4.7.0","repository_url":"https://github.com/holepunchto/bare-fs"},{"name":"bare-os","old_version":"3.8.0","new_version":"3.8.7","repository_url":"https://github.com/holepunchto/bare-os"},{"name":"bare-stream","old_version":"2.10.0","new_version":"2.13.0","repository_url":"https://github.com/holepunchto/bare-stream"},{"name":"baseline-browser-mapping","old_version":"2.10.9","new_version":"2.10.17","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"basic-ftp","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/patrickjuchli/basic-ftp"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"cookie-es","old_version":"1.2.2","new_version":"1.2.3","repository_url":"https://github.com/unjs/cookie-es"},{"name":"css-declaration-sorter","old_version":"7.3.1","new_version":"7.4.0","repository_url":"https://github.com/Siilwyn/css-declaration-sorter"},{"name":"cssnano","old_version":"7.1.3","new_version":"7.1.4","repository_url":"https://github.com/cssnano/cssnano"},{"name":"devalue","old_version":"5.6.4","new_version":"5.7.1","repository_url":"https://github.com/sveltejs/devalue"},{"name":"diff","old_version":"8.0.3","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"eslint-config-flat-gitignore","old_version":"2.2.1","new_version":"2.3.0","repository_url":"https://github.com/antfu/eslint-config-flat-gitignore"},{"name":"eslint-flat-config-utils","old_version":"3.0.2","new_version":"3.1.0","repository_url":"https://github.com/antfu/eslint-flat-config-utils"},{"name":"eslint-plugin-jsdoc","old_version":"62.8.0","new_version":"62.9.0","repository_url":"https://github.com/gajus/eslint-plugin-jsdoc"},{"name":"file-type","old_version":"21.3.3","new_version":"21.3.4","repository_url":"https://github.com/sindresorhus/file-type"},{"name":"fuse.js","old_version":"7.1.0","new_version":"7.3.0","repository_url":"https://github.com/krisk/Fuse"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.13.7","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"globby","old_version":"16.1.1","new_version":"16.2.0","repository_url":"https://github.com/sindresorhus/globby"},{"name":"h3","old_version":"1.15.9","new_version":"1.15.11","repository_url":"https://github.com/h3js/h3"},{"name":"launch-editor","old_version":"2.13.1","new_version":"2.13.2","repository_url":"https://github.com/yyx990803/launch-editor"},{"name":"listhen","old_version":"1.9.0","new_version":"1.9.1","repository_url":"https://github.com/unjs/listhen"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"netmask","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/rs/node-netmask"},{"name":"nitropack","old_version":"2.13.1","new_version":"2.13.3","repository_url":"https://github.com/nitrojs/nitro"},{"name":"node-releases","old_version":"2.0.36","new_version":"2.0.37","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"postcss","old_version":"8.5.8","new_version":"8.5.9","repository_url":"https://github.com/postcss/postcss"},{"name":"regjsparser","old_version":"0.13.0","new_version":"0.13.1","repository_url":"https://github.com/jviereck/regjsparser"},{"name":"seroval","old_version":"1.5.1","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"simple-git","old_version":"3.33.0","new_version":"3.35.2","repository_url":"https://github.com/steveukx/git-js"},{"name":"srvx","old_version":"0.11.12","new_version":"0.11.15","repository_url":"https://github.com/h3js/srvx"},{"name":"strtok3","old_version":"10.3.4","new_version":"10.3.5","repository_url":"https://github.com/Borewit/strtok3"},{"name":"tar","old_version":"7.5.12","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"tinyexec","old_version":"1.0.4","new_version":"1.1.1","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"uqr","old_version":"0.1.2","new_version":"0.1.3","repository_url":"https://github.com/unjs/uqr"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.2","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-minor-patch group with 69 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@applemusic-like-lyrics/lyric](https://github.com/amll-dev/applemusic-like-lyrics) | `0.3.0` | `0.4.1` |\n| [@applemusic-like-lyrics/vue](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue) | `0.2.0` | `0.3.2` |\n| @neteasecloudmusicapienhanced/api | `4.30.3` | `4.31.0` |\n| [@types/pg](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/pg) | `8.18.0` | `8.20.0` |\n| [axios](https://github.com/axios/axios) | `1.13.6` | `1.15.0` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.3.1` | `17.4.1` |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.45.1` | `0.45.2` |\n| [lodash-es](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [postgres](https://github.com/porsager/postgres) | `3.4.8` | `3.4.9` |\n| [sass](https://github.com/sass/dart-sass) | `1.98.0` | `1.99.0` |\n| [vite-plugin-glsl](https://github.com/UstymUkhman/vite-plugin-glsl) | `1.5.6` | `1.6.0` |\n| [vue](https://github.com/vuejs/core) | `3.5.30` | `3.5.32` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.2` |\n| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.1.0` | `1.2.0` |\n| [@emnapi/core](https://github.com/toyobayashi/emnapi) | `1.9.1` | `1.9.2` |\n| [@emnapi/runtime](https://github.com/toyobayashi/emnapi) | `1.9.1` | `1.9.2` |\n| [@eslint/compat](https://github.com/eslint/rewrite/tree/HEAD/packages/compat) | `2.0.3` | `2.0.5` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.13` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `0.1.12` | `0.1.13` |\n| [@nuxt/telemetry](https://github.com/nuxt/telemetry) | `2.7.0` | `2.8.0` |\n| [@swc/core](https://github.com/swc-project/swc/tree/HEAD/packages/core) | `1.15.18` | `1.15.24` |\n| [@swc/helpers](https://github.com/swc-project/swc/tree/HEAD/packages/helpers) | `0.5.19` | `0.5.21` |\n| [@swc/wasm](https://github.com/swc-project/swc) | `1.15.18` | `1.15.24` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.5.0` | `25.6.0` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.57.1` | `8.58.1` |\n| [@unhead/vue](https://github.com/unjs/unhead/tree/HEAD/packages/vue) | `2.1.12` | `2.1.13` |\n| [@vercel/nft](https://github.com/vercel/nft) | `1.4.0` | `1.5.0` |\n| [@vue/devtools-core](https://github.com/vuejs/devtools/tree/HEAD/packages/core) | `8.1.0` | `8.1.1` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [bare-fs](https://github.com/holepunchto/bare-fs) | `4.5.6` | `4.7.0` |\n| [bare-os](https://github.com/holepunchto/bare-os) | `3.8.0` | `3.8.7` |\n| [bare-stream](https://github.com/holepunchto/bare-stream) | `2.10.0` | `2.13.0` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.10.9` | `2.10.17` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.2.0` | `5.2.2` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `1.2.2` | `1.2.3` |\n| [css-declaration-sorter](https://github.com/Siilwyn/css-declaration-sorter) | `7.3.1` | `7.4.0` |\n| [cssnano](https://github.com/cssnano/cssnano) | `7.1.3` | `7.1.4` |\n| [devalue](https://github.com/sveltejs/devalue) | `5.6.4` | `5.7.1` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.3` | `8.0.4` |\n| [eslint-config-flat-gitignore](https://github.com/antfu/eslint-config-flat-gitignore) | `2.2.1` | `2.3.0` |\n| [eslint-flat-config-utils](https://github.com/antfu/eslint-flat-config-utils) | `3.0.2` | `3.1.0` |\n| [eslint-plugin-jsdoc](https://github.com/gajus/eslint-plugin-jsdoc) | `62.8.0` | `62.9.0` |\n| [file-type](https://github.com/sindresorhus/file-type) | `21.3.3` | `21.3.4` |\n| [fuse.js](https://github.com/krisk/Fuse) | `7.1.0` | `7.3.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.13.7` |\n| [globby](https://github.com/sindresorhus/globby) | `16.1.1` | `16.2.0` |\n| [h3](https://github.com/h3js/h3) | `1.15.9` | `1.15.11` |\n| [launch-editor](https://github.com/yyx990803/launch-editor) | `2.13.1` | `2.13.2` |\n| [listhen](https://github.com/unjs/listhen) | `1.9.0` | `1.9.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [netmask](https://github.com/rs/node-netmask) | `2.0.2` | `2.1.1` |\n| [nitropack](https://github.com/nitrojs/nitro) | `2.13.1` | `2.13.3` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.36` | `2.0.37` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.8` | `8.5.9` |\n| [regjsparser](https://github.com/jviereck/regjsparser) | `0.13.0` | `0.13.1` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.1` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.33.0` | `3.35.2` |\n| [srvx](https://github.com/h3js/srvx) | `0.11.12` | `0.11.15` |\n| [strtok3](https://github.com/Borewit/strtok3) | `10.3.4` | `10.3.5` |\n| [tar](https://github.com/isaacs/node-tar) | `7.5.12` | `7.5.13` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.4` | `1.1.1` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [uqr](https://github.com/unjs/uqr) | `0.1.2` | `0.1.3` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.2` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |\n\n\nUpdates `@applemusic-like-lyrics/lyric` from 0.3.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/0309834a90cc9f489ef78cc4c6d6f6d18362e162\"\u003e\u003ccode\u003e0309834\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/issues/457\"\u003e#457\u003c/a\u003e from Linho1219/fix-type-error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/2fc5d2e19d7a2ce70501a347dec4f5f4f90fbfe2\"\u003e\u003ccode\u003e2fc5d2e\u003c/code\u003e\u003c/a\u003e fix: lyric 包 rust 侧适配 romanWord 可选\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/4fdd6a93839179f44891ba1b618c0b8b957ba0e0\"\u003e\u003ccode\u003e4fdd6a9\u003c/code\u003e\u003c/a\u003e chore: 添加 version plan\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/d862271aa1396b19b9a8bb4d8cd484a0df366270\"\u003e\u003ccode\u003ed862271\u003c/code\u003e\u003c/a\u003e fix: 修复 lyric 包 romanWord 类型\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/compare/core-bundle@0.3.0...@applemusic-like-lyrics/lyric@0.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/vue` from 0.2.0 to 0.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/1a0803d465c230ac0ad46f70d85080d4debaf170\"\u003e\u003ccode\u003e1a0803d\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.3.2/packages/vue\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@neteasecloudmusicapienhanced/api` from 4.30.3 to 4.31.0\n\nUpdates `@types/pg` from 8.18.0 to 8.20.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/pg\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.6 to 1.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.0\u003c/h2\u003e\n\u003cp\u003eThis release delivers two critical security patches, adds runtime support for Deno and Bun, and includes significant CI hardening, documentation improvements, and routine dependency updates.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecation:\u003c/strong\u003e \u003ccode\u003eurl.parse()\u003c/code\u003e usage has been replaced to address Node.js deprecation warnings. If you are on a recent version of Node.js, this resolves console warnings you may have been seeing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed a \u003ccode\u003eno_proxy\u003c/code\u003e hostname normalisation bypass that could lead to Server-Side Request Forgery (SSRF). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHeader Injection:\u003c/strong\u003e Fixed an unrestricted cloud metadata exfiltration vulnerability via a header injection chain. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10660\"\u003e#10660\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Support:\u003c/strong\u003e Added compatibility checks and documentation for Deno and Bun environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10652\"\u003e#10652\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10653\"\u003e#10653\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Security:\u003c/strong\u003e Hardened workflow permissions to least privilege, added the \u003ccode\u003ezizmor\u003c/code\u003e security scanner, pinned action versions, and gated npm publishing with OIDC and environment protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10618\"\u003e#10618\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10619\"\u003e#10619\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10627\"\u003e#10627\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10637\"\u003e#10637\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eserialize-javascript\u003c/code\u003e, \u003ccode\u003ehandlebars\u003c/code\u003e, \u003ccode\u003epicomatch\u003c/code\u003e, \u003ccode\u003evite\u003c/code\u003e, and \u003ccode\u003edenoland/setup-deno\u003c/code\u003e to latest versions. Added a 7-day Dependabot cooldown period. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10574\"\u003e#10574\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10572\"\u003e#10572\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10568\"\u003e#10568\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10616\"\u003e#10616\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocumentation:\u003c/strong\u003e Unified docs, improved \u003ccode\u003ebeforeRedirect\u003c/code\u003e credential leakage example, clarified \u003ccode\u003ewithCredentials\u003c/code\u003e/\u003ccode\u003ewithXSRFToken\u003c/code\u003e behaviour, HTTP/2 support notes, async/await timeout error handling, header case preservation, and various typo fixes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10649\"\u003e#10649\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7471\"\u003e#7471\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10654\"\u003e#10654\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10644\"\u003e#10644\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHousekeeping:\u003c/strong\u003e Removed stale files, regenerated lockfile, and updated sponsor scripts and blocks. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10584\"\u003e#10584\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10650\"\u003e#10650\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10582\"\u003e#10582\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10640\"\u003e#10640\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10659\"\u003e#10659\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Added regression coverage for urlencoded \u003ccode\u003eContent-Type\u003c/code\u003e casing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve Axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/raashish1601\"\u003e\u003ccode\u003e@​raashish1601\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Kilros0817\"\u003e\u003ccode\u003e@​Kilros0817\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/ashstrc\"\u003e\u003ccode\u003e@​ashstrc\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Abhi3975\"\u003e\u003ccode\u003e@​Abhi3975\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/theamodhshetty\"\u003e\u003ccode\u003e@​theamodhshetty\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.14.0\u003c/h2\u003e\n\u003cp\u003eThis release focuses on compatibility fixes, adapter stability improvements, and test/tooling modernisation.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBreaking Changes:\u003c/strong\u003e None identified in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAction Required:\u003c/strong\u003e If you rely on env-based proxy behaviour or CJS resolution edge-cases, validate your integration after upgrade (notably \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 alignment and \u003ccode\u003emain\u003c/code\u003e entry compatibility fix).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Features:\u003c/strong\u003e No new end-user features were introduced in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTest Coverage Expansion:\u003c/strong\u003e Added broader smoke/module test coverage for CJS and ESM package usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7510\"\u003e#7510\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e Trim trailing CRLF in normalised header values. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7456\"\u003e#7456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP/2:\u003c/strong\u003e Close detached HTTP/2 sessions on timeout to avoid lingering sessions. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7457\"\u003e#7457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Cancel \u003ccode\u003eReadableStream\u003c/code\u003e created during request-stream capability probing to prevent async resource leaks. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7515\"\u003e#7515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed env proxy behavior with \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7499\"\u003e#7499\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7201) [#7201](https://github.com/axios/axios/issues/7201) )\"\u003ecodenomnom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Nandann018-ux\" title=\"+60/-10 ([#7272](https://github.com/axios/axios/issues/7272) )\"\u003eNandan Acharya\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/KernelDeimos\" title=\"+22/-40 ([#7042](https://github.com/axios/axios/issues/7042) )\"\u003eEric Dubé\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/tiborpilz\" title=\"+40/-4 ([#5551](https://github.com/axios/axios/issues/5551) )\"\u003eTibor Pilz\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/joaoGabriel55\" title=\"+31/-4 ([#6314](https://github.com/axios/axios/issues/6314) )\"\u003eGabriel Quaresma\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/turadg\" title=\"+23/-6 ([#6265](https://github.com/axios/axios/issues/6265) )\"\u003eTuradg Aleahmad\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/772a4e54ecc4cc2421e2b746daff0aca10f359d7\"\u003e\u003ccode\u003e772a4e5\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10671\"\u003e#10671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4b071371be2f810b4bc7797a13838e0f806ebb22\"\u003e\u003ccode\u003e4b07137\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.0 to 8.0.5 in /tests/smoke/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/51e57b39db251bfe3d34af5c943dfea18e06c8b6\"\u003e\u003ccode\u003e51e57b3\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fba1a77930f0c459677b729161627234b88c90aa\"\u003e\u003ccode\u003efba1a77\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 in /tests/module/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0bf6e28eac86e87da2b60bbf5ea4237910e1a08e\"\u003e\u003ccode\u003e0bf6e28\u003c/code\u003e\u003c/a\u003e chore(deps): bump denoland/setup-deno in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8107157c572ee4a54cb28c01ab7f7f3d895ba661\"\u003e\u003ccode\u003e8107157\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the development_dependencies group with 4 updates (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e66530e3302d56176befd0778155dafea2487542\"\u003e\u003ccode\u003ee66530e\u003c/code\u003e\u003c/a\u003e ci: require npm-publish environment for releases (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/49f23cbfe4d308a075281c5f798d4c68f648cbe2\"\u003e\u003ccode\u003e49f23cb\u003c/code\u003e\u003c/a\u003e chore(sponsor): update sponsor block (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/363185461b90b1b78845dc8a99a1f103d9b122a1\"\u003e\u003ccode\u003e3631854\u003c/code\u003e\u003c/a\u003e fix: unrestricted cloud metadata exfiltration via header injection chain (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10\"\u003e#10\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fb3befb6daac6cad26b2e54094d0f2d9e47f24df\"\u003e\u003ccode\u003efb3befb\u003c/code\u003e\u003c/a\u003e fix: no_proxy hostname normalization bypass leads to ssrf (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.6...v1.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv` from 17.3.1 to 17.4.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md\"\u003edotenv's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.0...v17.4.1\"\u003e17.4.1\u003c/a\u003e (2026-04-05)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange text \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1005\"\u003e#1005\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.0\"\u003e17.4.0\u003c/a\u003e (2026-04-01)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eskills/\u003c/code\u003e folder with focused agent skills: \u003ccode\u003eskills/dotenv/SKILL.md\u003c/code\u003e (core usage) and \u003ccode\u003eskills/dotenvx/SKILL.md\u003c/code\u003e (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (\u003ccode\u003enpx skills add motdotla/dotenv\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTighten up logs: \u003ccode\u003e◇ injecting env (14) from .env\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1003\"\u003e#1003\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/48aa216de16846724e7bc80756fd42745116e4aa\"\u003e\u003ccode\u003e48aa216\u003c/code\u003e\u003c/a\u003e 17.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/e4282b0286703784f4c5f7fda6c0e30739aead77\"\u003e\u003ccode\u003ee4282b0\u003c/code\u003e\u003c/a\u003e changelog 🪵\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/c540e75d3cfde551865be9bdcb0218fbfffc9229\"\u003e\u003ccode\u003ec540e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1006\"\u003e#1006\u003c/a\u003e from motdotla/skills-update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/5626f9b07e49a353b1fdf35077ea58d1d080cbdc\"\u003e\u003ccode\u003e5626f9b\u003c/code\u003e\u003c/a\u003e dotenvx skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/2411f2a61b0c957b0756942c2d6e4ba572e0fd3d\"\u003e\u003ccode\u003e2411f2a\u003c/code\u003e\u003c/a\u003e update dotenvx skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/1e08a70b6e5a5e55d974a46bca87bd35cf3807e4\"\u003e\u003ccode\u003e1e08a70\u003c/code\u003e\u003c/a\u003e simplify dotenv skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/747f4171feb7364993465915a8cd8929cef0e0cb\"\u003e\u003ccode\u003e747f417\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1005\"\u003e#1005\u003c/a\u003e from motdotla/injected\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/271df30f90869c04c666d8652895a909c097fea7\"\u003e\u003ccode\u003e271df30\u003c/code\u003e\u003c/a\u003e changelog 🪵\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/3f01a8b61addc4e6978f2c40b0147f6812e2f64b\"\u003e\u003ccode\u003e3f01a8b\u003c/code\u003e\u003c/a\u003e \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/ccc50d50d9e398a0b20355748e710852e1db5d07\"\u003e\u003ccode\u003eccc50d5\u003c/code\u003e\u003c/a\u003e update\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `drizzle-orm` from 0.45.1 to 0.45.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/releases\"\u003edrizzle-orm's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.45.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esql.identifier()\u003c/code\u003e, \u003ccode\u003esql.as()\u003c/code\u003e escaping issues. Previously all the values passed to this functions were not properly escaped\ncausing a possible SQL Injection (CWE-89) vulnerability\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/EthanKim88\"\u003e\u003ccode\u003e@​EthanKim88\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/0x90sh\"\u003e\u003ccode\u003e@​0x90sh\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/wgoodall01\"\u003e\u003ccode\u003e@​wgoodall01\u003c/code\u003e\u003c/a\u003e for reaching out to us with a reproduction and suggested fix\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/273c78071d4841b497f5144734b38294df7ec64b\"\u003e\u003ccode\u003e273c780\u003c/code\u003e\u003c/a\u003e + 0.45.2 (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5534\"\u003e#5534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/4aa6ecfee4b4728dadf6f77f071a149878a3c6c0\"\u003e\u003ccode\u003e4aa6ecf\u003c/code\u003e\u003c/a\u003e Kit updates (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5490\"\u003e#5490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/e8e6edfef5ca69c6188d320388ad440265911057\"\u003e\u003ccode\u003ee8e6edf\u003c/code\u003e\u003c/a\u003e feat(drizzle-kit): support d1 via binding (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5302\"\u003e#5302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/compare/0.45.1...0.45.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash-es` from 4.17.23 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash-es's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postgres` from 3.4.8 to 3.4.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/porsager/postgres/releases\"\u003epostgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.4.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e  1e92809\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ehttps://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/e7dfa14519f363229ccc3ead7b1b2f2051937efb\"\u003e\u003ccode\u003ee7dfa14\u003c/code\u003e\u003c/a\u003e 3.4.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/cc29931aa1280fc62b9452647a48a89fe5d443a2\"\u003e\u003ccode\u003ecc29931\u003c/code\u003e\u003c/a\u003e build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/1e92809e79dda7873d96646403c068cd6998ea73\"\u003e\u003ccode\u003e1e92809\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sass` from 1.98.0 to 1.99.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/releases\"\u003esass's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDart Sass 1.99.0\u003c/h2\u003e\n\u003cp\u003eTo install Sass 1.99.0, download one of the packages below and \u003ca href=\"https://katiek2.github.io/path-doc/\"\u003eadd it to your PATH\u003c/a\u003e, or see \u003ca href=\"https://sass-lang.com/install\"\u003ethe Sass website\u003c/a\u003e for full installation instructions.\u003c/p\u003e\n\u003ch1\u003eChanges\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are emitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping root\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If such a function exists without a namespace in the current module, it will be used instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e, \u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were originally intended to match vendor prefixes, but in practice no vendor prefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some lowercase letters are now deprecated, These are names conflict with plain CSS functions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now, these calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are deprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/sass/dart-sass/blob/master/CHANGELOG.md#1990\"\u003efull changelog\u003c/a\u003e for changes in earlier releases.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/blob/main/CHANGELOG.md\"\u003esass's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.99.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are\nemitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping\nroot\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If\nsuch a function exists without a namespace in the current module, it will be\nused instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e,\n\u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were\noriginally intended to match vendor prefixes, but in practice no vendor\nprefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that\nbegin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some\nlowercase letters are now deprecated, These are names conflict with plain CSS\nfunctions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end\nwith \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now,\nthese calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are\ndeprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/83c39fec93ab0dc183a46cff2bc468999ce53e20\"\u003e\u003ccode\u003e83c39fe\u003c/code\u003e\u003c/a\u003e Support the top-level parent selector (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2758\"\u003e#2758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/ec85871864ca16f8045e66ad329bd462e791bfa1\"\u003e\u003ccode\u003eec85871\u003c/code\u003e\u003c/a\u003e Bump EndBug/add-and-commit from 9 to 10 (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2756\"\u003e#2756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/a604acd19ad2ce31ef2efe9aa5950b0c5fcc74a9\"\u003e\u003ccode\u003ea604acd\u003c/code\u003e\u003c/a\u003e [Function Name] Implement changes (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/sass/dart-sass/compare/1.98.0...1.99.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite-plugin-glsl` from 1.5.6 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/UstymUkhman/vite-plugin-glsl/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vue` from 3.5.30 to 3.5.32\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/releases\"\u003evue's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.32\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003ch2\u003ev3.5.31\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003evue's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.31...v3.5.32\"\u003e3.5.32\u003c/a\u003e (2026-04-03)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent currentInstance leak into sibling render during async setup re-entry (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14668\"\u003e#14668\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/f1663535a163057788d3285dec54a245c3efb3ad\"\u003ef166353\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14667\"\u003e#14667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eteleport:\u003c/strong\u003e handle updates before deferred mount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14642\"\u003e#14642\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/32b44f19f67aa30899817a7e79a4510f3b52970a\"\u003e32b44f1\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14640\"\u003e#14640\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e allow customRef to have different getter/setter types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14639\"\u003e#14639\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/e20ddb00188e9935884930046fa572eab7c9dcba\"\u003ee20ddb0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e use private branding for shallowReactive (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14641\"\u003e#14641\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/302c47a4994bc8b47b8a2af6693d8cb6bbd4b06b\"\u003e302c47a\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14638\"\u003e#14638\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14493\"\u003e#14493\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix(server-renderer): cleanup component effect scopes after SSR render\u0026quot; (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14674\"\u003e#14674\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/219d83bd305ce6fc052941acaaf02e7bc70616a4\"\u003e219d83b\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14674\"\u003e#14674\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14669\"\u003e#14669\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.30...v3.5.31\"\u003e3.5.31\u003c/a\u003e (2026-03-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecompiler-sfc:\u003c/strong\u003e allow Node.js subpath imports patterns in asset urls (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/13045\"\u003e#13045\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/95c33560c9af369d44a7670d0c3b93fb62323be2\"\u003e95c3356\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/9919\"\u003e#9919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecompiler-sfc:\u003c/strong\u003e support template literal as defineModel name (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14622\"\u003e#14622\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/bd7eef0161d69bccd48ac303bc6a56ba8d718e2d\"\u003ebd7eef0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14621\"\u003e#14621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ereactivity:\u003c/strong\u003e normalize toRef property keys before dep lookup + improve types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14625\"\u003e#14625\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/1bb28d011b31bc75c80d2860bc6484cceec1ff20\"\u003e1bb28d0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12427\"\u003e#12427\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12431\"\u003e#12431\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e invalidate detached v-for memo vnodes after unmount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14624\"\u003e#14624\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/560def426fc38c1710fda7ddd1ac634d67897960\"\u003e560def4\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12708\"\u003e#12708\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12710\"\u003e#12710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e preserve nullish event handlers in mergeProps (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14550\"\u003e#14550\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/5725222a6bc5d1dd032318349ce0c540b1d63a49\"\u003e5725222\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent merging model listener when value is null or undefined (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14629\"\u003e#14629\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/b39e0329f67354702f4e417e55c15c61d2439657\"\u003eb39e032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-dom:\u003c/strong\u003e defer teleport mount/update until suspense resolves (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/8619\"\u003e#8619\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/88ed04501555b9257df8d7ad86d844c2c2136e50\"\u003e88ed045\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/8603\"\u003e#8603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-dom:\u003c/strong\u003e handle activeElement check in Shadow DOM for v-model (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14196\"\u003e#14196\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/959ded22ab7ea1453f607e0964e1fb6748ece6c7\"\u003e959ded2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eserver-renderer:\u003c/strong\u003e cleanup component effect scopes after SSR render (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14548\"\u003e#14548\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/862f11ee017d51cb9573a8c0642055b3b17cace8\"\u003e862f11e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esuspense:\u003c/strong\u003e avoid unmount activeBranch twice if wrapped in transition (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/9392\"\u003e#9392\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/908c6ad05e1c76ae690d2e50f3bd28278af07e22\"\u003e908c6ad\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/7966\"\u003e#7966\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esuspense:\u003c/strong\u003e update suspense vnode's el during branch self-update (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/12922\"\u003e#12922\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/a2c17004c84e5ce3c4e82e35b806ba381144eed3\"\u003ea2c1700\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12920\"\u003e#12920\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etransition:\u003c/strong\u003e skip enter guard while hmr updating (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14611\"\u003e#14611\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/be0a2f1a7fc3d81d05638798cc628848cfa62cef\"\u003ebe0a2f1\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14608\"\u003e#14608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e prevent shallowReactive marker from leaking into value unions (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14493\"\u003e#14493\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/3b561db4ab42d06166b002f13c0e97cb2bd4a061\"\u003e3b561db\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14490\"\u003e#14490\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/9a2eb53bc03be1f4c8ea109f6bab157c54813765\"\u003e\u003ccode\u003e9a2eb53\u003c/code\u003e\u003c/a\u003e release: v3.5.32\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/32b44f19f67aa30899817a7e79a4510f3b52970a\"\u003e\u003ccode\u003e32b44f1\u003c/code\u003e\u003c/a\u003e fix(teleport): handle updates before deferred mount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14642\"\u003e#14642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/f1663535a163057788d3285dec54a245c3efb3ad\"\u003e\u003ccode\u003ef166353\u003c/code\u003e\u003c/a\u003e fix(runtime-core): prevent currentInstance leak into sibling render during as...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/302c47a4994bc8b47b8a2af6693d8cb6bbd4b06b\"\u003e\u003ccode\u003e302c47a\u003c/code\u003e\u003c/a\u003e fix(types): use private branding for shallowReactive (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14641\"\u003e#14641\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/e20ddb00188e9935884930046fa572eab7c9dcba\"\u003e\u003ccode\u003ee20ddb0\u003c/code\u003e\u003c/a\u003e fix(types): allow customRef to have different getter/setter types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14639\"\u003e#14639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/219d83bd305ce6fc052941acaaf02e7bc70616a4\"\u003e\u003ccode\u003e219d83b\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;fix(server-renderer): cleanup component effect scopes after SSR rende...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/fa23116437250b3fdec41112f276211cb284136e\"\u003e\u003ccode\u003efa23116\u003c/code\u003e\u003c/a\u003e chore: fix typos in changelogs (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14653\"\u003e#14653\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/81615d398a89beeccfe56a4a96fd2fba0c6fb37b\"\u003e\u003ccode\u003e81615d3\u003c/code\u003e\u003c/a\u003e release: v3.5.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/3b561db4ab42d06166b002f13c0e97cb2bd4a061\"\u003e\u003ccode\u003e3b561db\u003c/code\u003e\u003c/a\u003e fix(types): prevent shallowReactive marker from leaking into value unions (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/1b2aca4f38aaec3da4f316256e8364a13f2554d7\"\u003e\u003ccode\u003e1b2aca4\u003c/code\u003e\u003c/a\u003e chore: ignore entities updates in renovate (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14630\"\u003e#14630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vuejs/core/compare/v3.5.30...v3.5.32\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `prettier` from 3.8.1 to 3.8.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/prettier/prettier/releases\"\u003eprettier's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.8.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Angular v21.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e🔗 \u003ca href=\"https://github.com/prettier/prettier/blob/main/CHANGELOG.md#382\"\u003eChangelog\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/prettier/prettier/blob/main/CHANGELOG.md\"\u003eprettier's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e3.8.2\u003c/h1\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/prettier/prettier/compare/3.8.1...3.8.2\"\u003ediff\u003c/a\u003e\u003c/p\u003e\n\u003ch4\u003eAngular: Support Angular v21.2 (\u003ca href=\"https://redirect.github.com/prettier/prettier/pull/18722\"\u003e#18722\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/prettier/pret...\n\n_Description has been truncated_","html_url":"https://github.com/qinchunhuan/VoiceHub-fb544/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/qinchunhuan%2FVoiceHub-fb544/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"}],"issue_packages":[{"old_version":"1.3.2","new_version":"1.5.4","update_type":"minor","path":null,"pr_created_at":"2026-05-18T08:11:15.000Z","version_change":"1.3.2 → 1.5.4","issue":{"uuid":"4467400611","node_id":"PR_kwDON5Pjus7cj-D_","number":767,"state":"closed","title":"Bump the npm_and_yarn group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-18T08:33:22.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-18T08:11:15.000Z","updated_at":"2026-05-18T08:33:24.000Z","time_to_close":1327,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":6,"packages":[{"name":"@babel/plugin-transform-modules-systemjs","old_version":"7.29.0","new_version":"7.29.4","repository_url":"https://github.com/babel/babel"},{"name":"basic-ftp","old_version":"5.3.0","new_version":"5.3.1","repository_url":"https://github.com/patrickjuchli/basic-ftp"},{"name":"fast-uri","old_version":"3.1.0","new_version":"3.1.2","repository_url":"https://github.com/fastify/fast-uri"},{"name":"fast-xml-builder","old_version":"1.1.5","new_version":"1.2.0","repository_url":"https://github.com/NaturalIntelligence/fast-xml-builder"},{"name":"seroval","old_version":"1.3.2","new_version":"1.5.4","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"uuid","old_version":"8.3.2","new_version":"11.1.1","repository_url":"https://github.com/uuidjs/uuid"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@babel/plugin-transform-modules-systemjs](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs) | `7.29.0` | `7.29.4` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.3.0` | `5.3.1` |\n| [fast-uri](https://github.com/fastify/fast-uri) | `3.1.0` | `3.1.2` |\n| [fast-xml-builder](https://github.com/NaturalIntelligence/fast-xml-builder) | `1.1.5` | `1.2.0` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.3.2` | `1.5.4` |\n| [uuid](https://github.com/uuidjs/uuid) | `8.3.2` | `11.1.1` |\n\n\nUpdates `@babel/plugin-transform-modules-systemjs` from 7.29.0 to 7.29.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e@​babel/plugin-transform-modules-systemjs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.4 (2026-05-05)\u003c/h2\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-modules-systemjs\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17974\"\u003e#17974\u003c/a\u003e [7.x backport]fix(systemjs): improve module string name support (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 1\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.3 (2026-04-30)\u003c/h2\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17923\"\u003e#17923\u003c/a\u003e Support flow extends bound (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-create-class-features-plugin\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17931\"\u003e#17931\u003c/a\u003e fix(decorators): replace super within all removed static elements (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-register\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17915\"\u003e#17915\u003c/a\u003e Fix thread synchronization issues in \u003ccode\u003e@babel/register\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-compat-data\u003c/code\u003e, \u003ccode\u003ebabel-plugin-bugfix-safari-rest-destructuring-rhs-array\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17788\"\u003e#17788\u003c/a\u003e Add bugfix plugin for Safari array rest destructuring bug (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17782\"\u003e#17782\u003c/a\u003e Improve trailing comma comment handling (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:memo: Documentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17847\"\u003e#17847\u003c/a\u003e Replace npmjs.com links with npmx.dev (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-import-to-platform-api\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-modules\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17818\"\u003e#17818\u003c/a\u003e Load async Wasm and JSON imports in parallel (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 4\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.2 (2026-03-16)\u003c/h2\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17840\"\u003e#17840\u003c/a\u003e [7.x backport] async x =\u0026gt; {} must be in leading pos (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helpers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17805\"\u003e#17805\u003c/a\u003e [7.x backport] fix: Properly handle await in finally (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-preset-env\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a458f66074b97d54773db8159af673d23b26079b\"\u003e\u003ccode\u003ea458f66\u003c/code\u003e\u003c/a\u003e v7.29.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/32ebd5aaf2526ddd176fd6a3d1e3dc594abdc8d9\"\u003e\u003ccode\u003e32ebd5a\u003c/code\u003e\u003c/a\u003e [7.x backport]fix(systemjs): improve module string name support (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17974\"\u003e#17974\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.4/packages/babel-plugin-transform-modules-systemjs\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `basic-ftp` from 5.3.0 to 5.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/releases\"\u003ebasic-ftp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed: Protect against unbounded control response, fixes \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-rpmf-866q-6p89\"\u003ehttps://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-rpmf-866q-6p89\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/blob/master/CHANGELOG.md\"\u003ebasic-ftp's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed: Protect against unbounded control response, fixes \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-rpmf-866q-6p89\"\u003ehttps://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-rpmf-866q-6p89\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/980371bb6057d78d479b5cfc18683392abd2c45f\"\u003e\u003ccode\u003e980371b\u003c/code\u003e\u003c/a\u003e Guard against unbounded control response\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/50827c73ca6c1d786c97276e47be8a33d0f2277d\"\u003e\u003ccode\u003e50827c7\u003c/code\u003e\u003c/a\u003e Adjust changelog to match release notes\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/compare/v5.3.0...v5.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-uri` from 3.1.0 to 3.1.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fast-uri/releases\"\u003efast-uri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.2\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\"\u003ehttps://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle malformed fragment decoding as a parse error by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/171\"\u003efastify/fast-uri#171\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.1...v3.1.2\"\u003ehttps://github.com/fastify/fast-uri/compare/v3.1.1...v3.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6\"\u003ehttps://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps-dev): bump tsd from 0.32.0 to 0.33.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/148\"\u003efastify/fast-uri#148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/149\"\u003efastify/fast-uri#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(.npmrc): ignore scripts by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/150\"\u003efastify/fast-uri#150\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): remove \u003ccode\u003e@​fastify/pre-commit\u003c/code\u003e by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/151\"\u003efastify/fast-uri#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/152\"\u003efastify/fast-uri#152\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(ci): add concurrency config by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/153\"\u003efastify/fast-uri#153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/154\"\u003efastify/fast-uri#154\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/156\"\u003efastify/fast-uri#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(license): standardise license notice by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/159\"\u003efastify/fast-uri#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estyle: remove trailing whitespace by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/161\"\u003efastify/fast-uri#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove unused github files by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/162\"\u003efastify/fast-uri#162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update readme by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/164\"\u003efastify/fast-uri#164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-manager.yml from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/165\"\u003efastify/fast-uri#165\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/166\"\u003efastify/fast-uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump neostandard from 0.12.2 to 0.13.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/167\"\u003efastify/fast-uri#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add lock-threads workflow by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/169\"\u003efastify/fast-uri#169\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/162\"\u003efastify/fast-uri#162\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.1\"\u003ehttps://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/919dd8ea7689fcc220d0d9b71307f5095e723ef9\"\u003e\u003ccode\u003e919dd8e\u003c/code\u003e\u003c/a\u003e Bumped v3.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/c65ba573714af6b8e19e481d9444c27bc4355d07\"\u003e\u003ccode\u003ec65ba57\u003c/code\u003e\u003c/a\u003e fixup: linting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/6c86c17c3d76fb93aa3700ec6c0fa00faeb97293\"\u003e\u003ccode\u003e6c86c17\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/a95158ad308df4d92bbde4eba699ce5165e9f796\"\u003e\u003ccode\u003ea95158a\u003c/code\u003e\u003c/a\u003e Handle malformed fragment decoding without throwing (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/171\"\u003e#171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/cea547c91c6aae610041b17b75792ca4aa035a6d\"\u003e\u003ccode\u003ecea547c\u003c/code\u003e\u003c/a\u003e Bumped v3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/876ce79b662c3e5015e4e7dffe6f37752ad34f35\"\u003e\u003ccode\u003e876ce79\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/dcdf690b71a7bb3a19887ada65a9ab160d83bcc0\"\u003e\u003ccode\u003edcdf690\u003c/code\u003e\u003c/a\u003e ci: add lock-threads workflow (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/169\"\u003e#169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/c860e6589b1ac346f66e114b4eadb9613768108c\"\u003e\u003ccode\u003ec860e65\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump neostandard from 0.12.2 to 0.13.0 (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/167\"\u003e#167\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/9b4c6dc82fde0ca44e674403ece9185d85bb6d5f\"\u003e\u003ccode\u003e9b4c6dc\u003c/code\u003e\u003c/a\u003e build(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/166\"\u003e#166\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/85d09a9f7aa76b32c2bb005a90a71e144c361d24\"\u003e\u003ccode\u003e85d09a9\u003c/code\u003e\u003c/a\u003e build(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-mana...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-xml-builder` from 1.1.5 to 1.2.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/blob/main/CHANGELOG.md\"\u003efast-xml-builder's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e1.2.0\u003c/strong\u003e (2026-05-08)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for \u003ccode\u003esanitizeName\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eSupport xml-naming for validating and sanitizing tag and attribute names\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.9\u003c/strong\u003e (2026-05-06)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: format output for preserve order when indent by is set to empty string\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.8\u003c/strong\u003e (2026-05-05)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: skip text property for PI tags\u003c/li\u003e\n\u003cli\u003eimprove typings\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.7\u003c/strong\u003e (2026--05-04)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix security issues when attribute value contains quotes\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.6\u003c/strong\u003e (2026--05-04)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix security issues related to comment\u003c/li\u003e\n\u003cli\u003eskip comment with null value\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.5\u003c/strong\u003e (2026-04-17)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix security issues related to comment and cdata\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.4\u003c/strong\u003e (2026-03-16)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003esupport maxNestedTags option\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.3\u003c/strong\u003e (2026-03-13)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003edeclare Matcher \u0026amp; Expression as unknown so user is not forced to install path-expression-matcher\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.2\u003c/strong\u003e (2026-03-11)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix typings\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.1\u003c/strong\u003e (2026-03-11)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eupgrade path-expression-matcher to 1.1.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e1.1.0\u003c/strong\u003e (2026-03-10)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIntegrate \u003ca href=\"https://github.com/NaturalIntelligence/path-expression-matcher\"\u003epath-expression-matcher\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/a9a905b316176ef9a97bdf5450e60efbf0341f25\"\u003e\u003ccode\u003ea9a905b\u003c/code\u003e\u003c/a\u003e for release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/42680e8d730c48082268823fd285e10127ddba21\"\u003e\u003ccode\u003e42680e8\u003c/code\u003e\u003c/a\u003e support name sanitization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/8b00185bf6be67981ffc40e06c18acbbbe908779\"\u003e\u003ccode\u003e8b00185\u003c/code\u003e\u003c/a\u003e release info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/8a08f173d7b9c9a82599fe7de279ca7e12c3ad6b\"\u003e\u003ccode\u003e8a08f17\u003c/code\u003e\u003c/a\u003e allow indentation to be empty string\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/7fc5decb9613afbd5d03747b1a0f11e0916e34ef\"\u003e\u003ccode\u003e7fc5dec\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/c241b6a8ed1863e5f518490ec1fcc38b13f2c370\"\u003e\u003ccode\u003ec241b6a\u003c/code\u003e\u003c/a\u003e improve documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/15d5668b53777400c8d80b6e21029c1a70888c78\"\u003e\u003ccode\u003e15d5668\u003c/code\u003e\u003c/a\u003e update for release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/98774853a696a1aee4dca830dd3eee2759676bd2\"\u003e\u003ccode\u003e9877485\u003c/code\u003e\u003c/a\u003e fix: skip text property for PI tags\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/311a2213a817cf31558bea7c0e0807b0d4441814\"\u003e\u003ccode\u003e311a221\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-builder/issues/5\"\u003e#5\u003c/a\u003e typing import issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/commit/e8fc5b15d9d54b559781961f066de82a55aabcdd\"\u003e\u003ccode\u003ee8fc5b1\u003c/code\u003e\u003c/a\u003e update for releast\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder/compare/v1.1.5...v1.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `seroval` from 1.3.2 to 1.5.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lxsmnsyc/seroval/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uuid` from 8.3.2 to 11.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v11.1.1\"\u003e11.1.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport GHSA-w5hq-g745-h8pq fix (\u003ca href=\"https://github.com/uuidjs/uuid/commit/32389c887c9e75f90442ee4cc95bbab0c4e8346e\"\u003e32389c8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev11.1.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate TS types to allow\u003ccode\u003eUint8Array\u003c/code\u003e subtypes for \u003ccode\u003ebuffer\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/865\"\u003e#865\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/a5231e7e1b98c20b23c35402a232167f476b39a2\"\u003ea5231e7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev11.0.5\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.4...v11.0.5\"\u003e11.0.5\u003c/a\u003e (2025-01-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd TS unit test, pin to typescript@5.0.4 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/860\"\u003e#860\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/24ac2fd067e5bab97a5ccea3f6f365a64c01d140\"\u003e24ac2fd\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev11.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.3...v11.0.4\"\u003e11.0.4\u003c/a\u003e (2025-01-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e insure -\u0026gt; ensure (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/843\"\u003e#843\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/d2a61e154d861e58549466e753bb9e4d5bfffb68\"\u003ed2a61e1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eexclude tests from published package (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/840\"\u003e#840\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f992ff4780937089b0134195fa22e76e2e1cb3a7\"\u003ef992ff4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTest for invalid byte array sizes and ranges in \u003ccode\u003ev1()\u003c/code\u003e, \u003ccode\u003ev4()\u003c/code\u003e, and \u003ccode\u003ev7()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/845\"\u003e#845\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e0ee90051ebd13475bbcff4d371330aa4f9bd1dd\"\u003ee0ee900\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev11.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.2...v11.0.3\"\u003e11.0.3\u003c/a\u003e (2024-11-04)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapply stricter typing to the v* signatures (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/831\"\u003e#831\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c2d3fed22cfd47c22c8f22f6154abb5060648ce5\"\u003ec2d3fed\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eexport internal uuid types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/833\"\u003e#833\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/341edf444ced63708ba336285dbec29443523939\"\u003e341edf4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove sourcemaps (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/827\"\u003e#827\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/b93ea101af7382053032d4fb61cc85599d6c7216\"\u003eb93ea10\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erevert \u0026quot;simplify type for v3 and v5\u0026quot; (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/835\"\u003e#835\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2dee691e95aba854a892d2507d8cd9f009bf61d\"\u003ee2dee69\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev11.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.1...v11.0.2\"\u003e11.0.2\u003c/a\u003e (2024-10-28)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/v11.1.1/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v11.1.1\"\u003e11.1.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport GHSA-w5hq-g745-h8pq fix (\u003ca href=\"https://github.com/uuidjs/uuid/commit/32389c887c9e75f90442ee4cc95bbab0c4e8346e\"\u003e32389c8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate TS types to allow\u003ccode\u003eUint8Array\u003c/code\u003e subtypes for \u003ccode\u003ebuffer\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/865\"\u003e#865\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/a5231e7e1b98c20b23c35402a232167f476b39a2\"\u003ea5231e7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.4...v11.0.5\"\u003e11.0.5\u003c/a\u003e (2025-01-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd TS unit test, pin to typescript@5.0.4 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/860\"\u003e#860\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/24ac2fd067e5bab97a5ccea3f6f365a64c01d140\"\u003e24ac2fd\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.3...v11.0.4\"\u003e11.0.4\u003c/a\u003e (2025-01-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e insure -\u0026gt; ensure (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/843\"\u003e#843\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/d2a61e154d861e58549466e753bb9e4d5bfffb68\"\u003ed2a61e1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eexclude tests from published package (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/840\"\u003e#840\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f992ff4780937089b0134195fa22e76e2e1cb3a7\"\u003ef992ff4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTest for invalid byte array sizes and ranges in \u003ccode\u003ev1()\u003c/code\u003e, \u003ccode\u003ev4()\u003c/code\u003e, and \u003ccode\u003ev7()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/845\"\u003e#845\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e0ee90051ebd13475bbcff4d371330aa4f9bd1dd\"\u003ee0ee900\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.2...v11.0.3\"\u003e11.0.3\u003c/a\u003e (2024-11-04)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapply stricter typing to the v* signatures (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/831\"\u003e#831\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c2d3fed22cfd47c22c8f22f6154abb5060648ce5\"\u003ec2d3fed\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eexport internal uuid types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/833\"\u003e#833\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/341edf444ced63708ba336285dbec29443523939\"\u003e341edf4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove sourcemaps (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/827\"\u003e#827\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/b93ea101af7382053032d4fb61cc85599d6c7216\"\u003eb93ea10\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erevert \u0026quot;simplify type for v3 and v5\u0026quot; (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/835\"\u003e#835\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2dee691e95aba854a892d2507d8cd9f009bf61d\"\u003ee2dee69\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.1...v11.0.2\"\u003e11.0.2\u003c/a\u003e (2024-10-28)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove wrapper.mjs (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/822\"\u003e#822\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/6683ad38b048375b451eac1194960f24ba20e0ca\"\u003e6683ad3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.0...v11.0.1\"\u003e11.0.1\u003c/a\u003e (2024-10-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7269a96c12a55a745bd4a7812c01cfd385ec6c46\"\u003e\u003ccode\u003e7269a96\u003c/code\u003e\u003c/a\u003e chore(11.x): release 11.1.1 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/949\"\u003e#949\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/32389c887c9e75f90442ee4cc95bbab0c4e8346e\"\u003e\u003ccode\u003e32389c8\u003c/code\u003e\u003c/a\u003e fix: backport GHSA-w5hq-g745-h8pq fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/2799f71d0065ddc3c056f5b0812d1d941eaab2f5\"\u003e\u003ccode\u003e2799f71\u003c/code\u003e\u003c/a\u003e chore: update workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d1eba06be81fb3a02e16d06ef6fe959c9bb5c5c\"\u003e\u003ccode\u003e3d1eba0\u003c/code\u003e\u003c/a\u003e chore(main): release 11.1.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/866\"\u003e#866\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/a5231e7e1b98c20b23c35402a232167f476b39a2\"\u003e\u003ccode\u003ea5231e7\u003c/code\u003e\u003c/a\u003e feat: update TS types to allow\u003ccode\u003eUint8Array\u003c/code\u003e subtypes for \u003ccode\u003ebuffer\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/865\"\u003e#865\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/aeabb600a991e0c009c5a6659cf1baef62e62779\"\u003e\u003ccode\u003eaeabb60\u003c/code\u003e\u003c/a\u003e docs: docs housecleaning (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/864\"\u003e#864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/46ada3cbc4acdc907dd6924eaedcc2c53dc6095a\"\u003e\u003ccode\u003e46ada3c\u003c/code\u003e\u003c/a\u003e chore(main): release 11.0.5 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/861\"\u003e#861\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/24ac2fd067e5bab97a5ccea3f6f365a64c01d140\"\u003e\u003ccode\u003e24ac2fd\u003c/code\u003e\u003c/a\u003e fix: add TS unit test, pin to typescript@5.0.4 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/860\"\u003e#860\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e426aaa97527a41e9a033ce70d57995c437a9e06\"\u003e\u003ccode\u003ee426aaa\u003c/code\u003e\u003c/a\u003e build: use \u003ccode\u003enpm pack\u003c/code\u003e tarball for local examples and testing instead of .loca...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/050cd5b9df5aa73097a1677b9e7c3482eb4367fc\"\u003e\u003ccode\u003e050cd5b\u003c/code\u003e\u003c/a\u003e chore(main): release 11.0.4 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/842\"\u003e#842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v8.3.2...v11.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/rubenvitt/bluelight-hub/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/rubenvitt/bluelight-hub/pull/767","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/rubenvitt%2Fbluelight-hub/issues/767","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/767/packages"}},{"old_version":"1.3.2","new_version":"1.5.4","update_type":"minor","path":null,"pr_created_at":"2026-05-18T07:36:28.000Z","version_change":"1.3.2 → 1.5.4","issue":{"uuid":"4467175114","node_id":"PR_kwDOGjojcc7cjPhx","number":759,"state":"open","title":"build(deps): bump the npm_and_yarn group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-18T07:36:28.000Z","updated_at":"2026-05-18T07:38:50.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":6,"packages":[{"name":"defu","old_version":"6.1.4","new_version":"6.1.7","repository_url":"https://github.com/unjs/defu"},{"name":"diff","old_version":"8.0.2","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"flatted","old_version":"3.3.3","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"h3","old_version":"2.0.1-rc.7","new_version":"2.0.1-rc.22","repository_url":"https://github.com/h3js/h3"},{"name":"seroval","old_version":"1.3.2","new_version":"1.5.4","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"undici","old_version":"7.16.0","new_version":"7.25.0","repository_url":"https://github.com/nodejs/undici"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [defu](https://github.com/unjs/defu) | `6.1.4` | `6.1.7` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.2` | `8.0.4` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |\n| [h3](https://github.com/h3js/h3) | `2.0.1-rc.7` | `2.0.1-rc.22` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.3.2` | `1.5.4` |\n| [undici](https://github.com/nodejs/undici) | `7.16.0` | `7.25.0` |\n\n\nUpdates `defu` from 6.1.4 to 6.1.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/unjs/defu/releases\"\u003edefu's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.7\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/unjs/defu/compare/v6.1.6...v6.1.7\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e📦 Build\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCorrect the \u003ccode\u003etypes\u003c/code\u003e export entry (\u003ca href=\"https://redirect.github.com/unjs/defu/pull/160\"\u003e#160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eExport Defu types (\u003ca href=\"https://redirect.github.com/unjs/defu/pull/157\"\u003e#157\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eJakub Michálek (\u003ca href=\"https://github.com/J-Michalek\"\u003e\u003ccode\u003e@​J-Michalek\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKricsleo (\u003ca href=\"https://github.com/kricsleo\"\u003e\u003ccode\u003e@​kricsleo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.6\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/unjs/defu/compare/v6.1.5...v6.1.6\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e📦 Build\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix mixed types (\u003ca href=\"https://github.com/unjs/defu/commit/407b516\"\u003e407b516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.5\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/unjs/defu/compare/v6.1.4...v6.1.5\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent prototype pollution via \u003ccode\u003e__proto__\u003c/code\u003e in defaults (\u003ca href=\"https://redirect.github.com/unjs/defu/pull/156\"\u003e#156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore inherited enumerable properties (\u003ca href=\"https://github.com/unjs/defu/commit/11ba022\"\u003e11ba022\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e✅ Tests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd more tests for plain objects (\u003ca href=\"https://github.com/unjs/defu/commit/b65f603\"\u003eb65f603\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePooya Parsa (\u003ca href=\"https://github.com/pi0\"\u003e\u003ccode\u003e@​pi0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKricsleo (\u003ca href=\"https://github.com/kricsleo\"\u003e\u003ccode\u003e@​kricsleo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/unjs/defu/blob/main/CHANGELOG.md\"\u003edefu's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.7\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/unjs/defu/compare/v6.1.6...v6.1.7\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edefu.d.cts:\u003c/strong\u003e Export Defu types (\u003ca href=\"https://redirect.github.com/unjs/defu/pull/157\"\u003e#157\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📦 Build\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCorrect the \u003ccode\u003etypes\u003c/code\u003e export entry (\u003ca href=\"https://redirect.github.com/unjs/defu/pull/160\"\u003e#160\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eJakub Michálek (\u003ca href=\"https://github.com/J-Michalek\"\u003e\u003ccode\u003e@​J-Michalek\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKricsleo (\u003ca href=\"https://github.com/kricsleo\"\u003e\u003ccode\u003e@​kricsleo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.6\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/unjs/defu/compare/v6.1.5...v6.1.6\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e📦 Build\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix mixed types (\u003ca href=\"https://github.com/unjs/defu/commit/407b516\"\u003e407b516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePooya Parsa (\u003ca href=\"https://github.com/pi0\"\u003e\u003ccode\u003e@​pi0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.5\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/unjs/defu/compare/v6.1.4...v6.1.5\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent prototype pollution via \u003ccode\u003e__proto__\u003c/code\u003e in defaults (\u003ca href=\"https://redirect.github.com/unjs/defu/pull/156\"\u003e#156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore inherited enumerable properties (\u003ca href=\"https://github.com/unjs/defu/commit/11ba022\"\u003e11ba022\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🏡 Chore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd tea.yaml (\u003ca href=\"https://github.com/unjs/defu/commit/70cffe5\"\u003e70cffe5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate repo (\u003ca href=\"https://github.com/unjs/defu/commit/23cc432\"\u003e23cc432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix typecheck (\u003ca href=\"https://github.com/unjs/defu/commit/89df6bb\"\u003e89df6bb\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e✅ Tests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd more tests for plain objects (\u003ca href=\"https://github.com/unjs/defu/commit/b65f603\"\u003eb65f603\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🤖 CI\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/80c0146afb11ebd86183a579ec469f3abd976695\"\u003e\u003ccode\u003e80c0146\u003c/code\u003e\u003c/a\u003e chore(release): v6.1.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/40d7ef42d30db975bf80c340e7856c1ad3568321\"\u003e\u003ccode\u003e40d7ef4\u003c/code\u003e\u003c/a\u003e fix(defu.d.cts): export Defu types (\u003ca href=\"https://redirect.github.com/unjs/defu/issues/157\"\u003e#157\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/3d3a7c89ca78f3fa43ec7194b12e44e4b0568697\"\u003e\u003ccode\u003e3d3a7c8\u003c/code\u003e\u003c/a\u003e build: correct the \u003ccode\u003etypes\u003c/code\u003e export entry (\u003ca href=\"https://redirect.github.com/unjs/defu/issues/160\"\u003e#160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/001c2906010eb65c1bb13ccd1f4abea09e10405b\"\u003e\u003ccode\u003e001c290\u003c/code\u003e\u003c/a\u003e chore(release): v6.1.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/407b51645c41a57da6efac5b40967f2c60ce4f12\"\u003e\u003ccode\u003e407b516\u003c/code\u003e\u003c/a\u003e build: fix mixed types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/23e59e684cb6a432aad13f308d142247e31b6315\"\u003e\u003ccode\u003e23e59e6\u003c/code\u003e\u003c/a\u003e chore(release): v6.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/11ba02213d4b1c6b02dd686041f75edc479c98e9\"\u003e\u003ccode\u003e11ba022\u003c/code\u003e\u003c/a\u003e fix: ignore inherited enumerable properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/3942bfbbcaa72084bd4284846c83bd61ed7c8b29\"\u003e\u003ccode\u003e3942bfb\u003c/code\u003e\u003c/a\u003e fix: prevent prototype pollution via \u003ccode\u003e__proto__\u003c/code\u003e in defaults (\u003ca href=\"https://redirect.github.com/unjs/defu/issues/156\"\u003e#156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/d3ef16dabe861713192ba8679c5db8e0ac143f9b\"\u003e\u003ccode\u003ed3ef16d\u003c/code\u003e\u003c/a\u003e chore(deps): update actions/checkout action to v6 (\u003ca href=\"https://redirect.github.com/unjs/defu/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unjs/defu/commit/869a053effb7b1bf49a1635e1bb211840daa589e\"\u003e\u003ccode\u003e869a053\u003c/code\u003e\u003c/a\u003e chore(deps): update actions/setup-node action to v6 (\u003ca href=\"https://redirect.github.com/unjs/defu/issues/149\"\u003e#149\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/unjs/defu/compare/v6.1.4...v6.1.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diff` from 8.0.2 to 8.0.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/667\"\u003e#667\u003c/a\u003e - \u003cstrong\u003efix another bug in \u003ccode\u003ediffWords\u003c/code\u003e when used with an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e\u003c/strong\u003e. If the text to be diffed included a combining mark after a whitespace character (i.e. roughly speaking, an accented space), \u003ccode\u003ediffWords\u003c/code\u003e would previously crash. Now this case is handled correctly.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/631\"\u003e#631\u003c/a\u003e - \u003cstrong\u003efix support for using an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e with \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e. This has been almost completely broken since the feature was added in v6.0.0, since it would outright crash on any text that featured two consecutive newlines between a pair of words (a very common case).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/635\"\u003e#635\u003c/a\u003e - \u003cstrong\u003esmall tweaks to tokenization behaviour of \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e when used \u003cem\u003ewithout\u003c/em\u003e an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e. Specifically, the soft hyphen (U+00AD) is no longer considered to be a word break, and the multiplication and division signs (\u003ccode\u003e×\u003c/code\u003e and \u003ccode\u003e÷\u003c/code\u003e) are now treated as punctuation instead of as letters / word characters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/641\"\u003e#641\u003c/a\u003e - \u003cstrong\u003ethe format of file headers in \u003ccode\u003ecreatePatch\u003c/code\u003e etc. patches can now be customised somewhat\u003c/strong\u003e. It now takes a \u003ccode\u003eheaderOptions\u003c/code\u003e option that can be used to disable the file headers entirely, or omit the \u003ccode\u003eIndex:\u003c/code\u003e line and/or the underline. In particular, this was motivated by a request to make jsdiff patches compatible with react-diff-view, which they now are if produced with \u003ccode\u003eheaderOptions: FILE_HEADERS_ONLY\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003e#647\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003e#649\u003c/a\u003e - \u003cstrong\u003efix denial-of-service vulnerabilities in \u003ccode\u003eparsePatch\u003c/code\u003e whereby adversarial input could cause a memory-leaking infinite loop, typically crashing the calling process\u003c/strong\u003e. Also fixed ReDOS vulnerabilities whereby adversarially-crafted patch headers could take cubic time to parse. Now, \u003ccode\u003eparsePatch\u003c/code\u003e should reliably take linear time. (Handling of headers that include the line break characters \u003ccode\u003e\\r\u003c/code\u003e, \u003ccode\u003e\\u2028\u003c/code\u003e, or \u003ccode\u003e\\u2029\u003c/code\u003e in non-trailing positions is also now more reasonable as side effect of the fix.)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/dd2f99497703a1540b2ae406b51c49b74b5fc1a1\"\u003e\u003ccode\u003edd2f994\u003c/code\u003e\u003c/a\u003e 8.0.4 release (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/3cc438434db53c5d1c40412b727ea7650f6f145a\"\u003e\u003ccode\u003e3cc4384\u003c/code\u003e\u003c/a\u003e Update docs on releasing to reflect migration to yarn berry (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/6fc2aa6b7672af08774b50aae00d97b99c5b5715\"\u003e\u003ccode\u003e6fc2aa6\u003c/code\u003e\u003c/a\u003e yarn up '*' \u0026amp;\u0026amp; yarn up -R '**' (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/676\"\u003e#676\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/af7393ac3404565dc8da655c2e7aeeed28c01ff7\"\u003e\u003ccode\u003eaf7393a\u003c/code\u003e\u003c/a\u003e yarn up '*' \u0026amp;\u0026amp; yarn up -R '**' (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/670\"\u003e#670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/4b5d1800370bf29b61a3378fb8086aeb231d3ef7\"\u003e\u003ccode\u003e4b5d180\u003c/code\u003e\u003c/a\u003e Fix another bug in diffWords's \u0026quot;intlSegmenter\u0026quot; mode (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/667\"\u003e#667\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/10da50c466709e7bd4b192dac96af0af46f8b7bd\"\u003e\u003ccode\u003e10da50c\u003c/code\u003e\u003c/a\u003e yarn up '*' \u0026amp;\u0026amp; yarn up -R '**' (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/666\"\u003e#666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/8dc164b5d133b8114738927aa90ed6dfcf49d497\"\u003e\u003ccode\u003e8dc164b\u003c/code\u003e\u003c/a\u003e Migrate from Yarn Classic to Yarn Berry (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/662\"\u003e#662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/750fbd6472fcdda02d90f8c7d04afa7119953447\"\u003e\u003ccode\u003e750fbd6\u003c/code\u003e\u003c/a\u003e yarn upgrade --latest (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/661\"\u003e#661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/abe2bde240f9fb65d29ebf275fb8fec7d39b1d63\"\u003e\u003ccode\u003eabe2bde\u003c/code\u003e\u003c/a\u003e Add release notes for undocumented releases (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/658\"\u003e#658\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/13576bfbcc444ce48f71cfd1e08529bd13962411\"\u003e\u003ccode\u003e13576bf\u003c/code\u003e\u003c/a\u003e 8.0.3 release (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/652\"\u003e#652\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v8.0.2...8.0.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flatted` from 3.3.3 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7\"\u003e\u003ccode\u003e3bf0909\u003c/code\u003e\u003c/a\u003e 3.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802\"\u003e\u003ccode\u003e885ddcc\u003c/code\u003e\u003c/a\u003e fix CWE-1321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3\"\u003e\u003ccode\u003e0bdba70\u003c/code\u003e\u003c/a\u003e added flatted-view to the benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20\"\u003e\u003ccode\u003e2a02dce\u003c/code\u003e\u003c/a\u003e 3.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416\"\u003e\u003ccode\u003efba4e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/WebReflection/flatted/issues/89\"\u003e#89\u003c/a\u003e from WebReflection/python-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7\"\u003e\u003ccode\u003e5fe8648\u003c/code\u003e\u003c/a\u003e added \u0026quot;when in Rome\u0026quot; also a test for PHP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0\"\u003e\u003ccode\u003e53517ad\u003c/code\u003e\u003c/a\u003e some minor improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f\"\u003e\u003ccode\u003eb3e2a0c\u003c/code\u003e\u003c/a\u003e Fixing recursion issue in Python too\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad\"\u003e\u003ccode\u003ec4b46db\u003c/code\u003e\u003c/a\u003e Add SECURITY.md for security policy and reporting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988\"\u003e\u003ccode\u003ef86d071\u003c/code\u003e\u003c/a\u003e Create dependabot.yml for version updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/WebReflection/flatted/compare/v3.3.3...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `h3` from 2.0.1-rc.7 to 2.0.1-rc.22\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/h3js/h3/releases\"\u003eh3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.1-rc.22\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/h3js/h3/compare/v2.0.1-rc.21...v2.0.1-rc.22\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🚀 Enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003etracing:\u003c/strong\u003e Export \u003ccode\u003ewrapHandlerWithTracing\u003c/code\u003e for manual handler wrapping (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1369\"\u003e#1369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003etoEventHandler:\u003c/strong\u003e Validate h3 subapp instance to pick \u003ccode\u003e.handler\u003c/code\u003e (\u003ca href=\"https://github.com/h3js/h3/commit/a94b7fb\"\u003ea94b7fb\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e💅 Refactors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSplit plugin definition (\u003ca href=\"https://github.com/h3js/h3/commit/40bddff\"\u003e40bddff\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📦 Build\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSimplify chunk names (\u003ca href=\"https://github.com/h3js/h3/commit/07c118d\"\u003e07c118d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePooya Parsa (\u003ca href=\"https://github.com/pi0\"\u003e\u003ccode\u003e@​pi0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAbdelrahman Awad (\u003ca href=\"https://github.com/logaretm\"\u003e\u003ccode\u003e@​logaretm\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.0.1-rc.21\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/h3js/h3/compare/v2.0.1-rc.20...v2.0.1-rc.21\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🚀 Enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCoerce thrown number/string to HTTPError (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1372\"\u003e#1372\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esetCookie:\u003c/strong\u003e Handle \u003ccode\u003eencode\u003c/code\u003e and \u003ccode\u003estringify\u003c/code\u003e serialize options (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1377\"\u003e#1377\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eevent-stream:\u003c/strong\u003e Do not emit unhandled rejection when readable side is canceled (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1376\"\u003e#1376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewithoutBase:\u003c/strong\u003e Collapse leading slashes (\u003ca href=\"https://github.com/h3js/h3/commit/64acfe6\"\u003e64acfe6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📖 Documentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix typo in error handling (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1364\"\u003e#1364\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePooya Parsa (\u003ca href=\"https://github.com/pi0\"\u003e\u003ccode\u003e@​pi0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMax (\u003ca href=\"https://github.com/onmax\"\u003e\u003ccode\u003e@​onmax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDrackin Best (\u003ca href=\"https://github.com/Drackin\"\u003e\u003ccode\u003e@​Drackin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKevin Dyes (\u003ca href=\"https://github.com/dyeske61283\"\u003e\u003ccode\u003e@​dyeske61283\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDaniel Roe (\u003ca href=\"https://github.com/danielroe\"\u003e\u003ccode\u003e@​danielroe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.0.1-rc.20\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/h3js/h3/blob/main/CHANGELOG.md\"\u003eh3's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.1-rc.22\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/h3js/h3/compare/v2.0.1-rc.21...v2.0.1-rc.22\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🚀 Enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003etracing:\u003c/strong\u003e Export \u003ccode\u003ewrapHandlerWithTracing\u003c/code\u003e for manual handler wrapping (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1369\"\u003e#1369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003etoEventHandler:\u003c/strong\u003e Validate h3 subapp instance to pick \u003ccode\u003e.handler\u003c/code\u003e (\u003ca href=\"https://github.com/h3js/h3/commit/a94b7fb\"\u003ea94b7fb\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e💅 Refactors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSplit plugin definition (\u003ca href=\"https://github.com/h3js/h3/commit/40bddff\"\u003e40bddff\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📦 Build\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSimplify chunk names (\u003ca href=\"https://github.com/h3js/h3/commit/07c118d\"\u003e07c118d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🏡 Chore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate deps (\u003ca href=\"https://github.com/h3js/h3/commit/a7a0460\"\u003ea7a0460\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePooya Parsa (\u003ca href=\"https://github.com/pi0\"\u003e\u003ccode\u003e@​pi0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAbdelrahman Awad \u003ca href=\"mailto:abdelrahman.awad@sentry.io\"\u003eabdelrahman.awad@sentry.io\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.0.1-rc.21\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/h3js/h3/compare/v2.0.1-rc.20...v2.0.1-rc.21\"\u003ecompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003e🚀 Enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCoerce thrown number/string to HTTPError (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1372\"\u003e#1372\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esetCookie:\u003c/strong\u003e Handle \u003ccode\u003eencode\u003c/code\u003e and \u003ccode\u003estringify\u003c/code\u003e serialize options (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1377\"\u003e#1377\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eevent-stream:\u003c/strong\u003e Do not emit unhandled rejection when readable side is canceled (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1376\"\u003e#1376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewithoutBase:\u003c/strong\u003e Collapse leading slashes (\u003ca href=\"https://github.com/h3js/h3/commit/64acfe6\"\u003e64acfe6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📖 Documentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix typo in error handling (\u003ca href=\"https://redirect.github.com/h3js/h3/pull/1364\"\u003e#1364\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🏡 Chore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate deps (\u003ca href=\"https://github.com/h3js/h3/commit/e2f8cbd\"\u003ee2f8cbd\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/84244b49b84e6ce6260d6b3a3590409e0d525fab\"\u003e\u003ccode\u003e84244b4\u003c/code\u003e\u003c/a\u003e chore(release): v2.0.1-rc.22\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/a7a04604afce8e41088b05956632a00bc2e8a08b\"\u003e\u003ccode\u003ea7a0460\u003c/code\u003e\u003c/a\u003e chore: update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/07c118d2aebc3bf7fe06f0ccb66c874f8334c646\"\u003e\u003ccode\u003e07c118d\u003c/code\u003e\u003c/a\u003e build: simplify chunk names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/40bddfffeee1c52312454118520a90d7cb7a5519\"\u003e\u003ccode\u003e40bddff\u003c/code\u003e\u003c/a\u003e refactor: split plugin definition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/a94b7fbc2feffd983b04a3c9d0b7202c149fab91\"\u003e\u003ccode\u003ea94b7fb\u003c/code\u003e\u003c/a\u003e fix(toEventHandler): validate h3 subapp instance to pick \u003ccode\u003e.handler\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/db7ef498f62f5da9092ddc4b56e1403ef68d95cb\"\u003e\u003ccode\u003edb7ef49\u003c/code\u003e\u003c/a\u003e feat(tracing): export \u003ccode\u003ewrapHandlerWithTracing\u003c/code\u003e for manual handler wrapping (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/906e89d1713a8a4a624498770d3ad08aa11a7316\"\u003e\u003ccode\u003e906e89d\u003c/code\u003e\u003c/a\u003e chore(release): v2.0.1-rc.21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/4e38f49a0bfbd9510588386538f4246313395cdd\"\u003e\u003ccode\u003e4e38f49\u003c/code\u003e\u003c/a\u003e chore: update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/351b2aa15229f10be7c04e583c1a1759f059f76c\"\u003e\u003ccode\u003e351b2aa\u003c/code\u003e\u003c/a\u003e feat: coerce thrown number/string to HTTPError (\u003ca href=\"https://redirect.github.com/h3js/h3/issues/1372\"\u003e#1372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/h3js/h3/commit/10128d11a499ab866033de2bf6f9f8a278fc46fb\"\u003e\u003ccode\u003e10128d1\u003c/code\u003e\u003c/a\u003e docs: fix typo in error handling (\u003ca href=\"https://redirect.github.com/h3js/h3/issues/1364\"\u003e#1364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/h3js/h3/compare/v2.0.1-rc.7...v2.0.1-rc.22\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `seroval` from 1.3.2 to 1.5.4\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lxsmnsyc/seroval/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `undici` from 7.16.0 to 7.25.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodejs/undici/releases\"\u003eundici's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.25.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nodejs/undici/compare/v7.24.8...v7.25.0\"\u003ehttps://github.com/nodejs/undici/compare/v7.24.8...v7.25.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.24.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: backport 401 stream-backed body fix to v7.x by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/5006\"\u003enodejs/undici#5006\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nodejs/undici/compare/v7.24.7...v7.24.8\"\u003ehttps://github.com/nodejs/undici/compare/v7.24.7...v7.24.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.24.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update broken links in file \u0026quot;Dispatcher.md\u0026quot; by \u003ca href=\"https://github.com/samuel871211\"\u003e\u003ccode\u003e@​samuel871211\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4924\"\u003enodejs/undici#4924\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edoc: remove unused parameter \u003ccode\u003eredirectionLimitReached\u003c/code\u003e by \u003ca href=\"https://github.com/samuel871211\"\u003e\u003ccode\u003e@​samuel871211\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4933\"\u003enodejs/undici#4933\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: skip flaky macOS Node 20 cookie fetch cases by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4932\"\u003enodejs/undici#4932\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(types): align Response with DOM fetch types by \u003ca href=\"https://github.com/theamodhshetty\"\u003e\u003ccode\u003e@​theamodhshetty\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4867\"\u003enodejs/undici#4867\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(types): Fix clone method type declaration to be an instance method rather than instance property by \u003ca href=\"https://github.com/mistval\"\u003e\u003ccode\u003e@​mistval\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4925\"\u003enodejs/undici#4925\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: skip IPv6 tests when IPv6 is not available by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4939\"\u003enodejs/undici#4939\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: correctly handle multi-value rawHeaders in fetch by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4938\"\u003enodejs/undici#4938\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eignore AGENTS.md by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4942\"\u003enodejs/undici#4942\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samuel871211\"\u003e\u003ccode\u003e@​samuel871211\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4924\"\u003enodejs/undici#4924\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mistval\"\u003e\u003ccode\u003e@​mistval\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4925\"\u003enodejs/undici#4925\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nodejs/undici/compare/v7.24.6...v7.24.7\"\u003ehttps://github.com/nodejs/undici/compare/v7.24.6...v7.24.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.24.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(test): client wasm compatible with clang 22 by \u003ca href=\"https://github.com/rozzilla\"\u003e\u003ccode\u003e@​rozzilla\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4909\"\u003enodejs/undici#4909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mock): improve error message when intercepts are exhausted by \u003ca href=\"https://github.com/travisbreaks\"\u003e\u003ccode\u003e@​travisbreaks\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4912\"\u003enodejs/undici#4912\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(websocket): support open diagnostics over h2 by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4921\"\u003enodejs/undici#4921\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: assume http/https scheme for scheme-less proxy env vars by \u003ca href=\"https://github.com/travisbreaks\"\u003e\u003ccode\u003e@​travisbreaks\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4914\"\u003enodejs/undici#4914\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(cache): check Authorization on request headers per RFC 9111 §3.5 by \u003ca href=\"https://github.com/metalix2\"\u003e\u003ccode\u003e@​metalix2\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4911\"\u003enodejs/undici#4911\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: wrap kConnector call in try/catch to prevent client hang by \u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4834\"\u003enodejs/undici#4834\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: clarify fetch and FormData pairing by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4922\"\u003enodejs/undici#4922\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: support Connection header with connection-specific header names per RFC 7230 by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4775\"\u003enodejs/undici#4775\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: avoid prototype collisions in parseHeaders by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4923\"\u003enodejs/undici#4923\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump typescript from 5.9.3 to 6.0.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4926\"\u003enodejs/undici#4926\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: auto-init WPT submodule by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4930\"\u003enodejs/undici#4930\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rozzilla\"\u003e\u003ccode\u003e@​rozzilla\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4909\"\u003enodejs/undici#4909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/nodejs/undici/pull/4834\"\u003enodejs/undici#4834\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nodejs/undici/compare/v7.24.5...v7.24.6\"\u003ehttps://github.com/nodejs/undici/compare/v7.24.5...v7.24.6\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/12d9045923b7caebb1ae6975ef34c29dbcfd95d0\"\u003e\u003ccode\u003e12d9045\u003c/code\u003e\u003c/a\u003e Bumped v7.25.0 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5025\"\u003e#5025\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/7a6f7febb30a30748a04f38c21e3641c77d21b0e\"\u003e\u003ccode\u003e7a6f7fe\u003c/code\u003e\u003c/a\u003e Bumped v7.24.8 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5020\"\u003e#5020\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/1f85ae4b27ed6401e7ccc35eb546ad2e5976121f\"\u003e\u003ccode\u003e1f85ae4\u003c/code\u003e\u003c/a\u003e fix: avoid 401 failures for stream-backed request bodies (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4941\"\u003e#4941\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/5006\"\u003e#5006\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/c6610674dfad7c205ddf0f27831133973ad7894e\"\u003e\u003ccode\u003ec661067\u003c/code\u003e\u003c/a\u003e chore: update v7.x maintenance release flow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/84f23e2a19cd0f585579c4257d801e4ec2d65dbd\"\u003e\u003ccode\u003e84f23e2\u003c/code\u003e\u003c/a\u003e Bumped v7.24.7 (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4947\"\u003e#4947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/a770b1033201984b9e8082a9bf955414bff5dc2e\"\u003e\u003ccode\u003ea770b10\u003c/code\u003e\u003c/a\u003e ignore AGENTS.md (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4942\"\u003e#4942\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/6acd19beaf67c1a2d07bcd38f40d0b751a81e7cc\"\u003e\u003ccode\u003e6acd19b\u003c/code\u003e\u003c/a\u003e fix: correctly handle multi-value rawHeaders in fetch (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4938\"\u003e#4938\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/1da1c747c7d6e01b93ab295e0efb86623f3c8e06\"\u003e\u003ccode\u003e1da1c74\u003c/code\u003e\u003c/a\u003e test: skip IPv6 tests when IPv6 is not available (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4939\"\u003e#4939\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/04cb77327f7ada95c2e5b67424cddcb22d7bf882\"\u003e\u003ccode\u003e04cb773\u003c/code\u003e\u003c/a\u003e fix(types): Fix clone method type declaration to be an instance method rather...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodejs/undici/commit/5145a7c47080d1715b2723591def3a75b0c3ba63\"\u003e\u003ccode\u003e5145a7c\u003c/code\u003e\u003c/a\u003e fix(types): align Response with DOM fetch types (\u003ca href=\"https://redirect.github.com/nodejs/undici/issues/4867\"\u003e#4867\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nodejs/undici/compare/v7.16.0...v7.25.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/softmaple/softmaple/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/softmaple/softmaple/pull/759","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/softmaple%2Fsoftmaple/issues/759","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/759/packages"}},{"old_version":"1.4.0","new_version":"1.5.4","update_type":"minor","path":null,"pr_created_at":"2026-05-09T03:17:40.000Z","version_change":"1.4.0 → 1.5.4","issue":{"uuid":"4410875470","node_id":"PR_kwDOQ3ffIc7Zw6kx","number":23,"state":"open","title":"chore(deps): bump the npm_and_yarn group across 2 directories with 19 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-09T03:17:40.000Z","updated_at":"2026-05-09T03:18:42.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":19,"packages":[{"name":"electron","old_version":"39.2.7","new_version":"39.8.5","repository_url":"https://github.com/electron/electron"},{"name":"vite","old_version":"7.3.0","new_version":"7.3.3","repository_url":"https://github.com/vitejs/vite"},{"name":"fast-xml-parser","old_version":"5.3.3","new_version":"5.7.3","repository_url":"https://github.com/NaturalIntelligence/fast-xml-parser"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"@hono/node-server","old_version":"1.19.9","new_version":"1.19.14","repository_url":"https://github.com/honojs/node-server"},{"name":"ajv","old_version":"6.12.6","new_version":"6.15.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"@tootallnate/once","old_version":"2.0.0","new_version":"2.0.1","repository_url":"https://github.com/TooTallNate/once"},{"name":"@xmldom/xmldom","old_version":"0.8.11","new_version":"0.8.13","repository_url":"https://github.com/xmldom/xmldom"},{"name":"express-rate-limit","old_version":"8.2.1","new_version":"8.5.1","repository_url":"https://github.com/express-rate-limit/express-rate-limit"},{"name":"fast-uri","old_version":"3.1.0","new_version":"3.1.2","repository_url":"https://github.com/fastify/fast-uri"},{"name":"flatted","old_version":"3.3.3","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"hono","old_version":"4.11.9","new_version":"4.12.18","repository_url":"https://github.com/honojs/hono"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"path-to-regexp","old_version":"8.3.0","new_version":"8.4.2","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"qs","old_version":"6.14.1","new_version":"6.15.1","repository_url":"https://github.com/ljharb/qs"},{"name":"rollup","old_version":"4.53.5","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"seroval","old_version":"1.4.0","new_version":"1.5.4","repository_url":"https://github.com/lxsmnsyc/seroval"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 18 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [electron](https://github.com/electron/electron) | `39.2.7` | `39.8.5` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.0` | `7.3.3` |\n| [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) | `5.3.3` | `5.7.3` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [@hono/node-server](https://github.com/honojs/node-server) | `1.19.9` | `1.19.14` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.15.0` |\n| [@tootallnate/once](https://github.com/TooTallNate/once) | `2.0.0` | `2.0.1` |\n| [@xmldom/xmldom](https://github.com/xmldom/xmldom) | `0.8.11` | `0.8.13` |\n| [express-rate-limit](https://github.com/express-rate-limit/express-rate-limit) | `8.2.1` | `8.5.1` |\n| [fast-uri](https://github.com/fastify/fast-uri) | `3.1.0` | `3.1.2` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |\n| [hono](https://github.com/honojs/hono) | `4.11.9` | `4.12.18` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `8.3.0` | `8.4.2` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [qs](https://github.com/ljharb/qs) | `6.14.1` | `6.15.1` |\n| [rollup](https://github.com/rollup/rollup) | `4.53.5` | `4.60.3` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.4.0` | `1.5.4` |\n\nBumps the npm_and_yarn group with 2 updates in the /apps/ui directory: [electron](https://github.com/electron/electron) and [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\n\nUpdates `electron` from 39.2.7 to 39.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/electron/electron/releases\"\u003eelectron's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eelectron v39.8.5\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.5\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a crash in \u003ccode\u003eclipboard.readImage()\u003c/code\u003e when the clipboard contains malformed image data. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50493\"\u003e#50493\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50491\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50492\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50494\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed a crash when calling an offscreen shared texture's \u003ccode\u003erelease()\u003c/code\u003e after the texture object was garbage collected. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50499\"\u003e#50499\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50500\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50501\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50502\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.4\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.4\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003enodeIntegrationInWorker\u003c/code\u003e overrides in \u003ccode\u003esetWindowOpenHandler\u003c/code\u003e were not honored for child windows sharing a renderer process with their opener. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50468\"\u003e#50468\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50163\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50467\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50134\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed crash when handling JavaScript dialogs from windows opened with invalid or empty URLs. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50400\"\u003e#50400\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50401\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50399\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50398\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed improper focus tracking in BaseWindow on MacOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50338\"\u003e#50338\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50337\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50340\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50339\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed window freeze when failing to enter/exit fullscreen on macOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50341\"\u003e#50341\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50344\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50343\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50342\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for using a proxy during yarn install. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50349\"\u003e#50349\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50352\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50350\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50351\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 485935305. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50440\"\u003e#50440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 489381399. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50443\"\u003e#50443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for chromium:475877320. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50436\"\u003e#50436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fixes for 484751092, 487117772. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50461\"\u003e#50461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.3\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.3\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded additional ASAR support to additional \u003ccode\u003efs\u003c/code\u003e copy methods. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50284\"\u003e#50284\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50287\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50286\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50285\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed user resizing of transparent windows on win32 platform. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50300\"\u003e#50300\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50301\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50298\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50299\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.2\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.2\u003c/h1\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackported fix for b/491421267. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50230\"\u003e#50230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.1\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.1\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded validation to protocol client methods to reject protocol names that do not conform to the RFC 3986 URI scheme grammar. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50156\"\u003e#50156\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50157\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50158\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50155\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue on macOS where calling \u003ccode\u003eautoUpdater.quitAndInstall()\u003c/code\u003e could fail if \u003ccode\u003echeckForUpdates()\u003c/code\u003e was called again after an update was already downloaded. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50215\"\u003e#50215\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50216\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50217\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where Chrome Devtools menus may not appear in certain embedded windows. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50136\"\u003e#50136\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50138\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50137\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003eadditionalData\u003c/code\u003e passed to \u003ccode\u003eapp.requestSingleInstanceLock\u003c/code\u003e on Windows could be truncated or fail to deserialize in the primary instance's \u003ccode\u003esecond-instance\u003c/code\u003e event. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50174\"\u003e#50174\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50177\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50162\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50154\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003escreen.getCursorScreenPoint()\u003c/code\u003e crashed on Wayland when it was called before a \u003ccode\u003eBrowserWindow\u003c/code\u003e had been created. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50106\"\u003e#50106\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50104\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50105\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/9d2f8cb4da0d35e2daf7e7f60e35313b508cb224\"\u003e\u003ccode\u003e9d2f8cb\u003c/code\u003e\u003c/a\u003e refactor: remove dead named-window lookup from guest-window-manager (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50498\"\u003e#50498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/11730047394233e70743c52567e17f4c3b2dc9fc\"\u003e\u003ccode\u003e1173004\u003c/code\u003e\u003c/a\u003e fix: crash calling OSR shared texture release() after texture GC'd (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50499\"\u003e#50499\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/be37adefd08f882e3f1fb8403d2d9e92c3009d56\"\u003e\u003ccode\u003ebe37ade\u003c/code\u003e\u003c/a\u003e fix: crash in clipboard.readImage() on malformed image data (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50493\"\u003e#50493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/7007907df08d02da98f513dcbdb430ab51be59c7\"\u003e\u003ccode\u003e7007907\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 3 changes from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50461\"\u003e#50461\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/2c8b6ee0c0a7c26871dc0b320982afd8ed29df6c\"\u003e\u003ccode\u003e2c8b6ee\u003c/code\u003e\u003c/a\u003e chore: cherry-pick fbfb27470bf6 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50436\"\u003e#50436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/4c64377ead6b53bc565d7793a2712e49882e5354\"\u003e\u003ccode\u003e4c64377\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 50b057660b4d from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50440\"\u003e#50440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/0ef056130cde0c19c81ccfbc2932df6911765849\"\u003e\u003ccode\u003e0ef0561\u003c/code\u003e\u003c/a\u003e fix: read nodeIntegrationInWorker from per-frame WebPreferences (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50122\"\u003e#50122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50\"\u003e#50\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/64373df3ca697bc6fe6e3ab1f463ba05beaf64cf\"\u003e\u003ccode\u003e64373df\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 074d472db745 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50443\"\u003e#50443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/13e44072be367f516cfad36f95d183765174f4bf\"\u003e\u003ccode\u003e13e4407\u003c/code\u003e\u003c/a\u003e fix: don't re-parse URL unnecessarily when handling dialogs (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50400\"\u003e#50400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/16a038502a4ea0c79976be60bcc8f28a49f1ab99\"\u003e\u003ccode\u003e16a0385\u003c/code\u003e\u003c/a\u003e ci: output build cache hit rate as GHA annotation (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50369\"\u003e#50369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/electron/electron/compare/v39.2.7...v39.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 7.3.0 to 7.3.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.3.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.3/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.3/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.2...v7.3.3\"\u003e7.3.3\u003c/a\u003e (2026-05-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid destructure lowering for newer safari (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22346\"\u003e#22346\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/5ab51c0f76f0896175e02ad797c1f5fe116d02f4\"\u003e5ab51c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.1...v7.3.2\"\u003e7.3.2\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e09d8c90\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebackport \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22162\"\u003e#22162\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e19db0f2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echeck \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22160\"\u003e#22160\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003ef8103cc\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.0...v7.3.1\"\u003e7.3.1\u003c/a\u003e (2026-01-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21364\"\u003e#21364\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e9d39d37\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/ca31424cccb075c88131132b929a63527d0e2b69\"\u003e\u003ccode\u003eca31424\u003c/code\u003e\u003c/a\u003e release: v7.3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/5ab51c0f76f0896175e02ad797c1f5fe116d02f4\"\u003e\u003ccode\u003e5ab51c0\u003c/code\u003e\u003c/a\u003e fix: avoid destructure lowering for newer safari (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22346\"\u003e#22346\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/cc383e07b66d4c5a9768fcb570e0af812cb8d999\"\u003e\u003ccode\u003ecc383e0\u003c/code\u003e\u003c/a\u003e release: v7.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e\u003ccode\u003e09d8c90\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003e\u003ccode\u003ef8103cc\u003c/code\u003e\u003c/a\u003e fix: check \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160\"\u003e#22160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e\u003ccode\u003e19db0f2\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22162\"\u003e#22162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/95e8923f35d0252c9f6eb2d5e358c084542706f1\"\u003e\u003ccode\u003e95e8923\u003c/code\u003e\u003c/a\u003e release: v7.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e\u003ccode\u003e9d39d37\u003c/code\u003e\u003c/a\u003e feat: add \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/21364\"\u003e#21364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/vitejs/vite/commits/v7.3.3/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-xml-parser` from 5.3.3 to 5.7.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/releases\"\u003efast-xml-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003efix minor old bugs and update builder\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: alwaysCreateTextNode should create text node when attributes are present for self closing node\u003c/li\u003e\n\u003cli\u003efix stop node expression when ns prefix is removed (found by \u003ca href=\"https://github.com/iruizsalinas\"\u003eiruizsalinas\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XML Builder to 1.1.7\u003c/li\u003e\n\u003cli\u003emark addEntity deprecated\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ebackward compatibility for numerical external entity, fix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eallow numerical external entity for backward compatibility\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: attributesGroupName working with preserveOrder\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e: stackoverflow when tag expression is very long\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eupgrade \u003ccode\u003e@​nodable/entities\u003c/code\u003e and FXB\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003e@nodable/entities\u003c/code\u003e v2.1.0\n\u003cul\u003e\n\u003cli\u003ebreaking changes\n\u003cul\u003e\n\u003cli\u003esingle entity scan. You're not allowed to use entity value to form another entity name.\u003c/li\u003e\n\u003cli\u003eyou cant add numeric external entity\u003c/li\u003e\n\u003cli\u003eentity error message when expantion limit is crossed might change\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etypings are updated for new options related to process entity\u003c/li\u003e\n\u003cli\u003eplease follow documentation of \u003ccode\u003e@nodable/entities\u003c/code\u003e for more detail.\u003c/li\u003e\n\u003cli\u003eperformance\n\u003cul\u003e\n\u003cli\u003eif processEntities is false, then there should not be impact on performance.\u003c/li\u003e\n\u003cli\u003eif processEntities is true, but you dont pass entity decoder separately then performance may degrade by approx 8-10%\u003c/li\u003e\n\u003cli\u003eif processEntities is true, and you pass entity decoder separately\n\u003cul\u003e\n\u003cli\u003eif no entity then performance should be same as before\u003c/li\u003e\n\u003cli\u003eif there are entities then performance should be increased from past versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eignoreAttributes is not required to be set to set xml version for NCR entity value\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate 'fast-xml-builder' to sanitize malicious CDATA and comment's content\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003euse \u003ccode\u003e@​nodable/entities\u003c/code\u003e to replace entities\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo API change\u003c/li\u003e\n\u003cli\u003eNo change in performance for basic usage\u003c/li\u003e\n\u003cli\u003eNo typing change\u003c/li\u003e\n\u003cli\u003eNo config change\u003c/li\u003e\n\u003cli\u003enew dependency\u003c/li\u003e\n\u003cli\u003ebreaking: error messages for entities might have been changed.\u003c/li\u003e\n\u003cli\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.12...v5.6.0\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.12...v5.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eperformance improvment, increase entity expansion default limit\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eincrease default entity explansion limit as many projects demand for that\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003emaxEntitySize: 10000,\r\nmaxExpansionDepth: 10000,\r\nmaxTotalExpansions: Infinity,\r\nmaxExpandedLength: 100000,\r\nmaxEntityCount: 1000,\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eperformance improvement\n\u003cul\u003e\n\u003cli\u003ereduce calls to toString\u003c/li\u003e\n\u003cli\u003eearly return when entities are not present\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md\"\u003efast-xml-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003eNote: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eNote: Due to some last quick changes on v4, detail of v4.5.3 \u0026amp; v4.5.4 are not updated here. v4.5.4x is the last tag of v4 in github repository. I'm extremely sorry for the confusion\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.3 / 2006-05-05\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: alwaysCreateTextNode should create text node when attributes are present for self closing node\u003c/li\u003e\n\u003cli\u003efix stop node expression when ns prefix is removed (found by \u003ca href=\"https://github.com/iruizsalinas\"\u003eiruizsalinas\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XML Builder to 1.1.7\u003c/li\u003e\n\u003cli\u003emark addEntity deprecated\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.2 / 2026-04-25\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eallow numerical external entity for backward compatibility\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: attributesGroupName working with preserveOrder\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e: stackoverflow when tag expression is very long\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.1 / 2026-04-20\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix typo in CJS typing file\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.0 / 2026-04-17\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003e@nodable/entities\u003c/code\u003e v2.1.0\n\u003cul\u003e\n\u003cli\u003ebreaking changes\n\u003cul\u003e\n\u003cli\u003esingle entity scan. You're not allowed to user entity value to form another entity name.\u003c/li\u003e\n\u003cli\u003eyou cant add numeric external entity\u003c/li\u003e\n\u003cli\u003eentity error message when expantion limit is crossed might change\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etypings are updated for new options related to process entity\u003c/li\u003e\n\u003cli\u003eplease follow documentation of \u003ccode\u003e@nodable/entities\u003c/code\u003e for more detail.\u003c/li\u003e\n\u003cli\u003eperformance\n\u003cul\u003e\n\u003cli\u003eif processEntities is false, then there should not be impact on performance.\u003c/li\u003e\n\u003cli\u003eif processEntities is true, but you dont pass entity decoder separately then performance may degrade by approx 8-10%\u003c/li\u003e\n\u003cli\u003eif processEntities is true, and you pass entity decoder separately\n\u003cul\u003e\n\u003cli\u003eif no entity then performance should be same as before\u003c/li\u003e\n\u003cli\u003eif there are entities then performance should be increased from past versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eignoreAttributes is not required to be set to set xml version for NCR entity value\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate 'fast-xml-builder' to sanitize malicious CDATA and comment's content\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.6.0 / 2026-04-15\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: entity replacement for numeric entities\u003c/li\u003e\n\u003cli\u003euse \u003ccode\u003e@​nodable/entities\u003c/code\u003e to replace entities\n\u003cul\u003e\n\u003cli\u003ethis may change some error messages related to entities expansion limit or inavlid use\u003c/li\u003e\n\u003cli\u003epost check would be exposed in future version\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.12 / 2026-04-13\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePerformance Improvement: update path-expression-matcher\n\u003cul\u003e\n\u003cli\u003euse proxy pattern than Proxy class\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.11 / 2026-04-08\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePerformance Improvement\n\u003cul\u003e\n\u003cli\u003eintegrate ExpressionSet for stopNodes\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/d6d80429b1d1f1420902e1cebac6fe7831ba0839\"\u003e\u003ccode\u003ed6d8042\u003c/code\u003e\u003c/a\u003e update to release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/d2633709699520c514208ea70e31adb6d71ab0e8\"\u003e\u003ccode\u003ed263370\u003c/code\u003e\u003c/a\u003e remove dev dependency 'he'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/f9c9a2c19f819ab6fe0856ef4e94d6aa28fe1eec\"\u003e\u003ccode\u003ef9c9a2c\u003c/code\u003e\u003c/a\u003e update builder to 1.1.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/b65da87028f943abf5698b96385eef21e39f983e\"\u003e\u003ccode\u003eb65da87\u003c/code\u003e\u003c/a\u003e update changelog and mark addEntity deprecated\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/c2ca631f99d4d7f66e0d48001741bc8784cfe966\"\u003e\u003ccode\u003ec2ca631\u003c/code\u003e\u003c/a\u003e update fxb\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/da7519163bfdc257e90be781a05af83840b330a8\"\u003e\u003ccode\u003eda75191\u003c/code\u003e\u003c/a\u003e fix stop node expression when ns prefix is removed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/31bbc99adedcada7d52bc4745273e7d8b9824b31\"\u003e\u003ccode\u003e31bbc99\u003c/code\u003e\u003c/a\u003e fix: alwaysCreateTextNode should create text node when attributes are present...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/dab327a05acd4f62bba277fb924e2e751079eca0\"\u003e\u003ccode\u003edab327a\u003c/code\u003e\u003c/a\u003e remove unnecessary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/ab04eeb91d3013d56c6a949cf45c17deaa3a0fc8\"\u003e\u003ccode\u003eab04eeb\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/383cb3feee7f8181379f41836359e6b53379db5d\"\u003e\u003ccode\u003e383cb3f\u003c/code\u003e\u003c/a\u003e Revise security information for v6 release\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.3...v5.7.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@hono/node-server` from 1.19.9 to 1.19.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/node-server/releases\"\u003e@​hono/node-server's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.14\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: add custom inspect to lightweight Request/Response to prevent TypeError on console.log by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/340\"\u003ehonojs/node-server#340\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.13\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an issue in Serve Static Middleware where inconsistent handling of repeated slashes (\u003ccode\u003e//\u003c/code\u003e) between the router and static file resolution could allow middleware to be bypassed. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-92pp-h63x-v22m for details.\u003c/p\u003e\n\u003ch2\u003ev1.19.12\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: ignore claude setting by \u003ca href=\"https://github.com/yusukebe\"\u003e\u003ccode\u003e@​yusukebe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/314\"\u003ehonojs/node-server#314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: request draining for early 413 responses by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/329\"\u003ehonojs/node-server#329\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: do not overwrite Content-Length in the fast path pattern if Content-Length already exists. by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/309\"\u003ehonojs/node-server#309\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.10\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an authorization bypass in Serve Static Middleware caused by inconsistent URL decoding (\u003ccode\u003e%2F\u003c/code\u003e handling) between the router and static file resolution. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-wc8c-qw6v-h7f6 for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/b5e63a366d9b0ef62ac65fcafd7f69b383b03ff5\"\u003e\u003ccode\u003eb5e63a3\u003c/code\u003e\u003c/a\u003e 1.19.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c02d7770a2d29ea473403211bef0a60639885a28\"\u003e\u003ccode\u003ec02d777\u003c/code\u003e\u003c/a\u003e fix: add custom inspect to lightweight Request/Response to prevent TypeError ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/fd64e659a34ec661fd9ccda00d1b9dff88dfaf90\"\u003e\u003ccode\u003efd64e65\u003c/code\u003e\u003c/a\u003e 1.19.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/025c30f55d589ddbe6048b151d77e904f67a8cc2\"\u003e\u003ccode\u003e025c30f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/6cdb5a724952f3df5748e435637792068ebea6d9\"\u003e\u003ccode\u003e6cdb5a7\u003c/code\u003e\u003c/a\u003e 1.19.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/70250f780ec99d2ddc0dd8275a42f8e091e06e94\"\u003e\u003ccode\u003e70250f7\u003c/code\u003e\u003c/a\u003e fix: request draining for early 413 responses (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/329\"\u003e#329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/cfc08b330a1f2e0a2d8cc7797cde389465b5f4fb\"\u003e\u003ccode\u003ecfc08b3\u003c/code\u003e\u003c/a\u003e chore: ignore claude setting (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/314\"\u003e#314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/ecd4d6be55117005acfd60a22d90c4818618507b\"\u003e\u003ccode\u003eecd4d6b\u003c/code\u003e\u003c/a\u003e 1.19.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c94489955ebd855630b703022837f7fe5f925111\"\u003e\u003ccode\u003ec944899\u003c/code\u003e\u003c/a\u003e fix: do not overwrite Content-Length in the fast path pattern if Content-Leng...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/2f8ca3665f5257305603783ec9999bd1a9bec0f2\"\u003e\u003ccode\u003e2f8ca36\u003c/code\u003e\u003c/a\u003e 1.19.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.9...v1.19.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/184bc32745d9d33b2322949b9f3cb5f7609bf5ec\"\u003e\u003ccode\u003e184bc32\u003c/code\u003e\u003c/a\u003e 6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/fea46afd1a76b12ff89493f6dc1bc46730c6d379\"\u003e\u003ccode\u003efea46af\u003c/code\u003e\u003c/a\u003e test/fix prototype pollution via $data ref with format keyword (\u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/2606\"\u003e#2606\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tootallnate/once` from 2.0.0 to 2.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TooTallNate/once/releases\"\u003e@​tootallnate/once's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea1e5e2d: Fix promise hang when AbortSignal is aborted\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TooTallNate/once/blob/v2.0.1/CHANGELOG.md\"\u003e@​tootallnate/once's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.0.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea1e5e2d: Fix promise hang when AbortSignal is aborted\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/bcbb21d387e5fb2d0bf8ec2fd8d0ac97d4553241\"\u003e\u003ccode\u003ebcbb21d\u003c/code\u003e\u003c/a\u003e ci: fix OIDC publishing — Node 24, npm latest, provenance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/dc24387be8e3405f1e7c911caf76c87b72a0e145\"\u003e\u003ccode\u003edc24387\u003c/code\u003e\u003c/a\u003e Version Packages (2.x) (\u003ca href=\"https://redirect.github.com/TooTallNate/once/issues/12\"\u003e#12\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/b8a6f80afcfd2482b4bdb1e29d784340a05e0ce3\"\u003e\u003ccode\u003eb8a6f80\u003c/code\u003e\u003c/a\u003e CI: test all Node versions on Linux only\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/dabcc0fb6202663cd83994f0a21ea1c710395327\"\u003e\u003ccode\u003edabcc0f\u003c/code\u003e\u003c/a\u003e ci: drop EOL Node.js 14.x/16.x, add 22.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/b464efcf4238d92590245b4d211d2fc05a94d28a\"\u003e\u003ccode\u003eb464efc\u003c/code\u003e\u003c/a\u003e Update CI: modern Node versions, fix macOS ARM64 compat\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/a1e5e2d784bcd1c65e49fac1524c6c94fe81f871\"\u003e\u003ccode\u003ea1e5e2d\u003c/code\u003e\u003c/a\u003e Fix promise hang when AbortSignal is aborted\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/TooTallNate/once/compare/2.0.0...v2.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​tootallnate/once\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@xmldom/xmldom` from 0.8.11 to 0.8.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/releases\"\u003e@​xmldom/xmldom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.13\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e0.8.12\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/discussions/357\"\u003ehttps://github.com/xmldom/xmldom/discussions/357\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md\"\u003e@​xmldom/xmldom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003e0.8.13\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.9.8...0.9.9\"\u003e0.9.9\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eParentNode.children\u003c/code\u003e getter \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/960\"\u003e\u003ccode\u003e[#960](https://github.com/xmldom/xmldom/issues/960)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/410\"\u003e\u003ccode\u003e[#410](https://github.com/xmldom/xmldom/issues/410)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecorrectly traverse ancestor chain in \u003ccode\u003eNode.contains\u003c/code\u003e \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/931\"\u003e\u003ccode\u003e[#931](https://github.com/xmldom/xmldom/issues/931)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdated dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/yoshi389111\"\u003e\u003ccode\u003e@​yoshi389111\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003e0.8.12\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e5c14802592685bb872c042c54c3f73758875c85\"\u003e\u003ccode\u003ee5c1480\u003c/code\u003e\u003c/a\u003e 0.8.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/9611e20d75f059dc377f806a8f7ee7d1eaeaeb7c\"\u003e\u003ccode\u003e9611e20\u003c/code\u003e\u003c/a\u003e style: drop unused import in test file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/dc4dff3d1d0b5a6b97c52fcc1823a735b8821e62\"\u003e\u003ccode\u003edc4dff3\u003c/code\u003e\u003c/a\u003e docs: add 0.8.13 changelog entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/842fa38deedd2d9a9c90d0ad54aa1be75d2a41bc\"\u003e\u003ccode\u003e842fa38\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow in normalize (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/aeff69f5a32e8c1bd540683da9e10718f84f595c\"\u003e\u003ccode\u003eaeff69f\u003c/code\u003e\u003c/a\u003e test: add normalize behavioral coverage to node.test.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/cbdb0d7db8ae70760bd4cc181cb8f30bb0cd9d88\"\u003e\u003ccode\u003ecbdb0d7\u003c/code\u003e\u003c/a\u003e fix: make walkDOM iterative to prevent stack overflow (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/0b543d31794dc198c86a0358574cb5dec29674c5\"\u003e\u003ccode\u003e0b543d3\u003c/code\u003e\u003c/a\u003e test: assert namespace declarations are isolated between siblings in serializ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/c007c51909587990c962cf3d5c2acadf4c897b87\"\u003e\u003ccode\u003ec007c51\u003c/code\u003e\u003c/a\u003e refactor: migrate serializeToString to walkDOM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/2bb3899074820089d9e76ce28a5edfdacf425025\"\u003e\u003ccode\u003e2bb3899\u003c/code\u003e\u003c/a\u003e test: add serializeToString coverage for uncovered branches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e69f38d0a58731152d300e8c8eb29506f5f488fe\"\u003e\u003ccode\u003ee69f38d\u003c/code\u003e\u003c/a\u003e refactor: migrate importNode to walkDOM\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~karfau\"\u003ekarfau\u003c/a\u003e, a new releaser for \u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `express-rate-limit` from 8.2.1 to 8.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/releases\"\u003eexpress-rate-limit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.5.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.5.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.4.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.2\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/50cc3f6345f603ac2fe4eb646edd7338b9a31fbb\"\u003e\u003ccode\u003e50cc3f6\u003c/code\u003e\u003c/a\u003e 8.5.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/92c8e3efd87b9b9f89092b1f9c8c17ac134c1293\"\u003e\u003ccode\u003e92c8e3e\u003c/code\u003e\u003c/a\u003e chore: bump ip-address library to latest (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/626\"\u003e#626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/807e383875e93be940493464ea397381fc93942b\"\u003e\u003ccode\u003e807e383\u003c/code\u003e\u003c/a\u003e 8.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/b84413793127a1c392738ef26d10ec7a899d9d2d\"\u003e\u003ccode\u003eb844137\u003c/code\u003e\u003c/a\u003e v8.5.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/ceaffabad1ee435549434b6b933097a938b27abe\"\u003e\u003ccode\u003eceaffab\u003c/code\u003e\u003c/a\u003e feat: async store init (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/621\"\u003e#621\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/69568d4ea794905df4ff2e872f04e1daa1f89050\"\u003e\u003ccode\u003e69568d4\u003c/code\u003e\u003c/a\u003e 8.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/c686acd0bac3058dca4b7f116f240e694878b517\"\u003e\u003ccode\u003ec686acd\u003c/code\u003e\u003c/a\u003e v8.4.1 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/ba71353abbd8a6a5ee891faea755026cf960ead2\"\u003e\u003ccode\u003eba71353\u003c/code\u003e\u003c/a\u003e test: bump timeout in flakey skipFailedRequests test (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/dd4c8944d4a739e819306c8dde57852eac8540e0\"\u003e\u003ccode\u003edd4c894\u003c/code\u003e\u003c/a\u003e feat: allow usage of custom logger (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/616\"\u003e#616\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/2bb343cd078c311e8bc7f48b31b9047cf17f3ece\"\u003e\u003ccode\u003e2bb343c\u003c/code\u003e\u003c/a\u003e resolve Jest timeout for server-based tests (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/compare/v8.2.1...v8.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for express-rate-limit since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ip-address` from 10.0.1 to 10.2.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/beaugunderson/ip-address/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-uri` from 3.1.0 to 3.1.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fast-uri/releases\"\u003efast-uri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.2\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\"\u003ehttps://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle malformed fragment decoding as a parse error by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/171\"\u003efastify/fast-uri#171\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.1...v3.1.2\"\u003ehttps://github.com/fastify/fast-uri/compare/v3.1.1...v3.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6\"\u003ehttps://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps-dev): bump tsd from 0.32.0 to 0.33.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/148\"\u003efastify/fast-uri#148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/149\"\u003efastify/fast-uri#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(.npmrc): ignore scripts by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/150\"\u003efastify/fast-uri#150\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): remove \u003ccode\u003e@​fastify/pre-commit\u003c/code\u003e by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/151\"\u003efastify/fast-uri#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/152\"\u003efastify/fast-uri#152\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(ci): add concurrency config by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/153\"\u003efastify/fast-uri#153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/154\"\u003efastify/fast-uri#154\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/156\"\u003efastify/fast-uri#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(license): standardise license notice by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/159\"\u003efastify/fast-uri#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estyle: remove trailing whitespace by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/161\"\u003efastify/fast-uri#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove unused github files by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/162\"\u003efastify/fast-uri#162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update readme by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/164\"\u003efastify/fast-uri#164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-manager.yml from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/165\"\u003efastify/fast-uri#165\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/166\"\u003efastify/fast-uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump neostandard from 0.12.2 to 0.13.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/167\"\u003efastify/fast-uri#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add lock-threads workflow by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/169\"\u003efastify/fast-uri#169\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/162\"\u003efastify/fast-uri#162\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.1\"\u003ehttps://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/919dd8ea7689fcc220d0d9b71307f5095e723ef9\"\u003e\u003ccode\u003e919dd8e\u003c/code\u003e\u003c/a\u003e Bumped v3.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/c65ba573714af6b8e19e481d9444c27bc4355d07\"\u003e\u003ccode\u003ec65ba57\u003c/code\u003e\u003c/a\u003e fixup: linting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/6c86c17c3d76fb93aa3700ec6c0fa00faeb97293\"\u003e\u003ccode\u003e6c86c17\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/a95158ad308df4d92bbde4eba699ce5165e9f796\"\u003e\u003ccode\u003ea95158a\u003c/code\u003e\u003c/a\u003e Handle malformed fragment decoding without throwing (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/171\"\u003e#171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/cea547c91c6aae610041b17b75792ca4aa035a6d\"\u003e\u003ccode\u003ecea547c\u003c/code\u003e\u003c/a\u003e Bumped v3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/876ce79b662c3e5015e4e7dffe6f37752ad34f35\"\u003e\u003ccode\u003e876ce79\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/dcdf690b71a7bb3a19887ada65a9ab160d83bcc0\"\u003e\u003ccode\u003edcdf690\u003c/code\u003e\u003c/a\u003e ci: add lock-threads workflow (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/169\"\u003e#169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/c860e6589b1ac346f66e114b4eadb9613768108c\"\u003e\u003ccode\u003ec860e65\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump neostandard from 0.12.2 to 0.13.0 (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/167\"\u003e#167\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/9b4c6dc82fde0ca44e674403ece9185d85bb6d5f\"\u003e\u003ccode\u003e9b4c6dc\u003c/code\u003e\u003c/a\u003e build(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/166\"\u003e#166\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/85d09a9f7aa76b32c2bb005a90a71e144c361d24\"\u003e\u003ccode\u003e85d09a9\u003c/code\u003e\u003c/a\u003e build(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-mana...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flatted` from 3.3.3 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7\"\u003e\u003ccode\u003e3bf0909\u003c/code\u003e\u003c/a\u003e 3.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802\"\u003e\u003ccode\u003e885ddcc\u003c/code\u003e\u003c/a\u003e fix CWE-1321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3\"\u003e\u003ccode\u003e0bdba70\u003c/code\u003e\u003c/a\u003e added flatted-view to the benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20\"\u003e\u003ccode\u003e2a02dce\u003c/code\u003e\u003c/a\u003e 3.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416\"\u003e\u003ccode\u003efba4e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/WebReflection/flatted/issues/89\"\u003e#89\u003c/a\u003e from WebReflection/python-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7\"\u003e\u003ccode\u003e5fe8648\u003c/code\u003e\u003c/a\u003e added \u0026quot;when in Rome\u0026quot; also a test for PHP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0\"\u003e\u003ccode\u003e53517ad\u003c/code\u003e\u003c/a\u003e some minor improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f\"\u003e\u003ccode\u003eb3e2a0c\u003c/code\u003e\u003c/a\u003e Fixing recursion issue in Python too\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad\"\u003e\u003ccode\u003ec4b46db\u003c/code\u003e\u003c/a\u003e Add SECURITY.md for security policy and reporting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988\"\u003e\u003ccode\u003ef86d071\u003c/code\u003e\u003c/a\u003e Create dependabot.yml for version updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/WebReflection/flatted/compare/v3.3.3...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hono` from 4.11.9 to 4.12.18\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/hono/releases\"\u003ehono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.12.18\u003c/h2\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cp\u003eThis release includes fixes for the following security issues:\u003c/p\u003e\n\u003ch3\u003eCache Middleware ignores Vary: Authorization / Vary: Cookie leading to cross-user cache leakage\u003c/h3\u003e\n\u003cp\u003eAffects: Cache Middleware. Fixes missing cache-skip handling for \u003ccode\u003eVary: Authorization\u003c/code\u003e and \u003ccode\u003eVary: Cookie\u003c/code\u003e, where a response cached for one authenticated user could be served to other users. GHSA-p77w-8qqv-26rm\u003c/p\u003e\n\u003ch3\u003eCSS Declaration Injection via Style Object Values in JSX SSR\u003c/h3\u003e\n\u003cp\u003eAffects: hono/jsx. Fixes a missing CSS-context escape for \u003ccode\u003estyle\u003c/code\u003e object values and property names, where untrusted input could inject additional CSS declarations. The impact is limited to CSS and does not allow JavaScript execution. GHSA-qp7p-654g-cw7p\u003c/p\u003e\n\u003ch3\u003eImproper validation of NumericDate claims (exp, nbf, iat) in JWT verify()\u003c/h3\u003e\n\u003cp\u003eAffects: \u003ccode\u003ehono/utils/jwt\u003c/code\u003e. Fixes improper validation of \u003ccode\u003eexp\u003c/code\u003e, \u003ccode\u003enbf\u003c/code\u003e, and \u003ccode\u003eiat\u003c/code\u003e claims, where falsy, non-finite, or non-numeric values could silently bypass time-based checks instead of being rejected per RFC 7519. GHSA-hm8q-7f3q-5f36\u003c/p\u003e\n\u003chr /\u003e\n\u003cp\u003eUsers who use the JWT helper, hono/jsx, or the Cache middleware are strongly encouraged to upgrade to this version.\u003c/p\u003e\n\u003ch2\u003ev4.12.17\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(jsx): normalize SVG attributes on the \u003c!-- raw HTML omitted --\u003e root element by \u003ca href=\"https://github.com/kfly8\"\u003e\u003ccode\u003e@​kfly8\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4893\"\u003ehonojs/hono#4893\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(ssg): add \u003ccode\u003eatom+xml\u003c/code\u003e and \u003ccode\u003erss+xml\u003c/code\u003e to \u003ccode\u003edefaultExtensionMap\u003c/code\u003e by \u003ca href=\"https://github.com/yuintei\"\u003e\u003ccode\u003e@​yuintei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4899\"\u003ehonojs/hono#4899\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(cors): make origin optional in CORSOptions by \u003ca href=\"https://github.com/truffle-dev\"\u003e\u003ccode\u003e@​truffle-dev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4905\"\u003ehonojs/hono#4905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(types): propagate middleware response types to app.on overloads by \u003ca href=\"https://github.com/T4ko0522\"\u003e\u003ccode\u003e@​T4ko0522\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4906\"\u003ehonojs/hono#4906\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kfly8\"\u003e\u003ccode\u003e@​kfly8\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4893\"\u003ehonojs/hono#4893\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truffle-dev\"\u003e\u003ccode\u003e@​truffle-dev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4905\"\u003ehonojs/hono#4905\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/hono/compare/v4.12.16...v4.12.17\"\u003ehttps://github.com/honojs/hono/compare/v4.12.16...v4.12.17\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.12.16\u003c/h2\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cp\u003eThis release includes fixes for the following security issues:\u003c/p\u003e\n\u003ch3\u003eUnvalidated JSX Tag Names in hono/jsx May Allow HTML Injection\u003c/h3\u003e\n\u003cp\u003eAffects: hono/jsx. Fixes missing validation of JSX tag names when u...\n\n_Description has been truncated_","html_url":"https://github.com/helton-godoy/automaker/pull/23","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/helton-godoy%2Fautomaker/issues/23","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/23/packages"}},{"old_version":"1.3.2","new_version":"1.5.4","update_type":"minor","path":null,"pr_created_at":"2026-05-09T00:50:27.000Z","version_change":"1.3.2 → 1.5.4","issue":{"uuid":"4410359350","node_id":"PR_kwDOQDqWxs7ZvMqa","number":32,"state":"open","title":"Bump the npm_and_yarn group across 8 directories with 17 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":6,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-09T00:50:27.000Z","updated_at":"2026-05-09T00:58:42.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":17,"packages":[{"name":"drizzle-orm","old_version":"0.41.0","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"electron","old_version":"38.2.2","new_version":"39.8.5","repository_url":"https://github.com/electron/electron"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.3","repository_url":"https://github.com/vitejs/vite"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"@hono/node-server","old_version":"1.19.9","new_version":"1.19.14","repository_url":"https://github.com/honojs/node-server"},{"name":"ajv","old_version":"6.12.6","new_version":"6.15.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"@xmldom/xmldom","old_version":"0.8.11","new_version":"0.8.13","repository_url":"https://github.com/xmldom/xmldom"},{"name":"axios","old_version":"1.13.4","new_version":"1.16.0","repository_url":"https://github.com/axios/axios"},{"name":"express-rate-limit","old_version":"8.2.1","new_version":"8.5.1","repository_url":"https://github.com/express-rate-limit/express-rate-limit"},{"name":"fast-uri","old_version":"3.1.0","new_version":"3.1.2","repository_url":"https://github.com/fastify/fast-uri"},{"name":"hono","old_version":"4.11.8","new_version":"4.12.18","repository_url":"https://github.com/honojs/hono"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"next","old_version":"16.1.6","new_version":"16.2.6","repository_url":"https://github.com/vercel/next.js"},{"name":"seroval","old_version":"1.3.2","new_version":"1.5.4","repository_url":"https://github.com/lxsmnsyc/seroval"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 15 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.41.0` | `0.45.2` |\n| [electron](https://github.com/electron/electron) | `38.2.2` | `39.8.5` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.3` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.14` |\n| [@hono/node-server](https://github.com/honojs/node-server) | `1.19.9` | `1.19.14` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.15.0` |\n| [@xmldom/xmldom](https://github.com/xmldom/xmldom) | `0.8.11` | `0.8.13` |\n| [axios](https://github.com/axios/axios) | `1.13.4` | `1.16.0` |\n| [express-rate-limit](https://github.com/express-rate-limit/express-rate-limit) | `8.2.1` | `8.5.1` |\n| [fast-uri](https://github.com/fastify/fast-uri) | `3.1.0` | `3.1.2` |\n| [hono](https://github.com/honojs/hono) | `4.11.8` | `4.12.18` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [next](https://github.com/vercel/next.js) | `16.1.6` | `16.2.6` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.3.2` | `1.5.4` |\n\nBumps the npm_and_yarn group with 1 update in the /e2e-tests/fixtures/import-app/astro directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /e2e-tests/fixtures/import-app/minimal directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /e2e-tests/fixtures/import-app/minimal-with-ai-rules directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /e2e-tests/fixtures/import-app/select-component directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 4 updates in the /packages/@dyad-sh/nextjs-webpack-component-tagger directory: [brace-expansion](https://github.com/juliangruber/brace-expansion), [ajv](https://github.com/ajv-validator/ajv), [fast-uri](https://github.com/fastify/fast-uri) and [picomatch](https://github.com/micromatch/picomatch).\nBumps the npm_and_yarn group with 4 updates in the /packages/@dyad-sh/react-vite-component-tagger directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite), [brace-expansion](https://github.com/juliangruber/brace-expansion), [ajv](https://github.com/ajv-validator/ajv) and [picomatch](https://github.com/micromatch/picomatch).\nBumps the npm_and_yarn group with 4 updates in the /scaffold directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite), [brace-expansion](https://github.com/juliangruber/brace-expansion), [ajv](https://github.com/ajv-validator/ajv) and [lodash](https://github.com/lodash/lodash).\n\nUpdates `drizzle-orm` from 0.41.0 to 0.45.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/releases\"\u003edrizzle-orm's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.45.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esql.identifier()\u003c/code\u003e, \u003ccode\u003esql.as()\u003c/code\u003e escaping issues. Previously all the values passed to this functions were not properly escaped\ncausing a possible SQL Injection (CWE-89) vulnerability\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/EthanKim88\"\u003e\u003ccode\u003e@​EthanKim88\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/0x90sh\"\u003e\u003ccode\u003e@​0x90sh\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/wgoodall01\"\u003e\u003ccode\u003e@​wgoodall01\u003c/code\u003e\u003c/a\u003e for reaching out to us with a reproduction and suggested fix\u003c/p\u003e\n\u003ch2\u003e0.45.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed pg-native Pool detection in node-postgres transactions breaking in environments with forbidden \u003ccode\u003erequire()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5107\"\u003e#5107\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.45.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed pg-native Pool detection in node-postgres transactions\u003c/li\u003e\n\u003cli\u003eAllowed subqueries in select fields\u003c/li\u003e\n\u003cli\u003eUpdated typo algorythm =\u0026gt; algorithm\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003e$onUpdate\u003c/code\u003e not handling \u003ccode\u003eSQL\u003c/code\u003e values (fixes \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/2388\"\u003e#2388\u003c/a\u003e, tests implemented by \u003ca href=\"https://github.com/L-Mario564\"\u003eL-Mario564\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/pull/2911\"\u003e#2911\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003epg\u003c/code\u003e mappers not handling \u003ccode\u003eDate\u003c/code\u003e instances in \u003ccode\u003ebun-sql:postgresql\u003c/code\u003e driver responses for \u003ccode\u003edate\u003c/code\u003e, \u003ccode\u003etimestamp\u003c/code\u003e types (fixes \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/4493\"\u003e#4493\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix durable sqlite transaction return value \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/3746\"\u003e#3746\u003c/a\u003e - thanks \u003ca href=\"https://github.com/joaocstro\"\u003e\u003ccode\u003e@​joaocstro\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add $replicas reference \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/4874\"\u003e#4874\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed invalid usage of \u003ccode\u003e.one()\u003c/code\u003e in \u003ccode\u003edurable-sqlite\u003c/code\u003e session\u003c/li\u003e\n\u003cli\u003eFixed spread operator related crash in sqlite \u003ccode\u003eblob\u003c/code\u003e columns\u003c/li\u003e\n\u003cli\u003eBetter browser support for sqlite \u003ccode\u003eblob\u003c/code\u003e columns\u003c/li\u003e\n\u003cli\u003eImproved sqlite \u003ccode\u003eblob\u003c/code\u003e mapping\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix wrong DrizzleQueryError export. thanks \u003ca href=\"https://github.com/nathankleyn\"\u003e\u003ccode\u003e@​nathankleyn\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed types of \u003ccode\u003e$client\u003c/code\u003e for clients created by drizzle function\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre lang=\"ts\"\u003e\u003ccode\u003eawait db.$client.[...]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eAdded the \u003ccode\u003eupdated_at\u003c/code\u003e column to the \u003ccode\u003eneon_auth.users_sync\u003c/code\u003e table definition.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[BUG]: Fixed type issues with joins with certain variations of \u003ccode\u003etsconfig\u003c/code\u003e: \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/4535\"\u003e#4535\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/4457\"\u003e#4457\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/4586\"\u003e[BUG]: Drizzle can no longer run on Durable Objects\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.44.0\u003c/h2\u003e\n\u003ch2\u003eError handling\u003c/h2\u003e\n\u003cp\u003eStarting from this version, we’ve introduced a new \u003ccode\u003eDrizzleQueryError\u003c/code\u003e that wraps all errors from database drivers and provides a set of useful information:\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/273c78071d4841b497f5144734b38294df7ec64b\"\u003e\u003ccode\u003e273c780\u003c/code\u003e\u003c/a\u003e + 0.45.2 (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5534\"\u003e#5534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/4aa6ecfee4b4728dadf6f77f071a149878a3c6c0\"\u003e\u003ccode\u003e4aa6ecf\u003c/code\u003e\u003c/a\u003e Kit updates (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5490\"\u003e#5490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/e8e6edfef5ca69c6188d320388ad440265911057\"\u003e\u003ccode\u003ee8e6edf\u003c/code\u003e\u003c/a\u003e feat(drizzle-kit): support d1 via binding (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5302\"\u003e#5302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/a086f59fba7f46f3a077893ba912c99e91eaa760\"\u003e\u003ccode\u003ea086f59\u003c/code\u003e\u003c/a\u003e Fixed pg-native Pool detection in node-postgres transactions breaking in envi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/c445637df39366bcf47b12601896ce851771c1c2\"\u003e\u003ccode\u003ec445637\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5095\"\u003e#5095\u003c/a\u003e from drizzle-team/main-workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/e7b3aaa26456b88cd23a7843ebc95b3bddde1ba4\"\u003e\u003ccode\u003ee7b3aaa\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into main-workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/0d885a54ddafd8717f8610cf3d2899f3eef61e65\"\u003e\u003ccode\u003e0d885a5\u003c/code\u003e\u003c/a\u003e refactor: Update condition for run-feature job to improve clarity and functio...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/45a1ffbcbfdd96772d0aba7d9e43744db2dce471\"\u003e\u003ccode\u003e45a1ffb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5087\"\u003e#5087\u003c/a\u003e from drizzle-team/main-workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/6357645bd33b1f444e1d081769dd4b71c3de31f8\"\u003e\u003ccode\u003e6357645\u003c/code\u003e\u003c/a\u003e chore: Comment out NEON_HTTP_CONNECTION_STRING requirement in release workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/53dec98a936f549d0cc2e668f19db3a2df842f51\"\u003e\u003ccode\u003e53dec98\u003c/code\u003e\u003c/a\u003e refactor: Simplify release router workflow by removing unnecessary switch job...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/compare/0.41.0...0.45.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for drizzle-orm since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `electron` from 38.2.2 to 39.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/electron/electron/releases\"\u003eelectron's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eelectron v39.8.5\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.5\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a crash in \u003ccode\u003eclipboard.readImage()\u003c/code\u003e when the clipboard contains malformed image data. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50493\"\u003e#50493\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50491\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50492\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50494\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed a crash when calling an offscreen shared texture's \u003ccode\u003erelease()\u003c/code\u003e after the texture object was garbage collected. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50499\"\u003e#50499\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50500\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50501\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50502\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.4\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.4\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003enodeIntegrationInWorker\u003c/code\u003e overrides in \u003ccode\u003esetWindowOpenHandler\u003c/code\u003e were not honored for child windows sharing a renderer process with their opener. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50468\"\u003e#50468\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50163\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50467\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50134\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed crash when handling JavaScript dialogs from windows opened with invalid or empty URLs. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50400\"\u003e#50400\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50401\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50399\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50398\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed improper focus tracking in BaseWindow on MacOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50338\"\u003e#50338\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50337\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50340\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50339\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed window freeze when failing to enter/exit fullscreen on macOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50341\"\u003e#50341\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50344\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50343\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50342\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for using a proxy during yarn install. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50349\"\u003e#50349\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50352\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50350\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50351\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 485935305. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50440\"\u003e#50440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 489381399. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50443\"\u003e#50443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for chromium:475877320. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50436\"\u003e#50436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fixes for 484751092, 487117772. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50461\"\u003e#50461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.3\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.3\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded additional ASAR support to additional \u003ccode\u003efs\u003c/code\u003e copy methods. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50284\"\u003e#50284\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50287\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50286\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50285\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed user resizing of transparent windows on win32 platform. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50300\"\u003e#50300\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50301\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50298\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50299\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.2\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.2\u003c/h1\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackported fix for b/491421267. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50230\"\u003e#50230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.1\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.1\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded validation to protocol client methods to reject protocol names that do not conform to the RFC 3986 URI scheme grammar. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50156\"\u003e#50156\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50157\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50158\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50155\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue on macOS where calling \u003ccode\u003eautoUpdater.quitAndInstall()\u003c/code\u003e could fail if \u003ccode\u003echeckForUpdates()\u003c/code\u003e was called again after an update was already downloaded. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50215\"\u003e#50215\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50216\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50217\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where Chrome Devtools menus may not appear in certain embedded windows. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50136\"\u003e#50136\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50138\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50137\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003eadditionalData\u003c/code\u003e passed to \u003ccode\u003eapp.requestSingleInstanceLock\u003c/code\u003e on Windows could be truncated or fail to deserialize in the primary instance's \u003ccode\u003esecond-instance\u003c/code\u003e event. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50174\"\u003e#50174\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50177\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50162\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50154\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003escreen.getCursorScreenPoint()\u003c/code\u003e crashed on Wayland when it was called before a \u003ccode\u003eBrowserWindow\u003c/code\u003e had been created. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50106\"\u003e#50106\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50104\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50105\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/9d2f8cb4da0d35e2daf7e7f60e35313b508cb224\"\u003e\u003ccode\u003e9d2f8cb\u003c/code\u003e\u003c/a\u003e refactor: remove dead named-window lookup from guest-window-manager (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50498\"\u003e#50498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/11730047394233e70743c52567e17f4c3b2dc9fc\"\u003e\u003ccode\u003e1173004\u003c/code\u003e\u003c/a\u003e fix: crash calling OSR shared texture release() after texture GC'd (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50499\"\u003e#50499\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/be37adefd08f882e3f1fb8403d2d9e92c3009d56\"\u003e\u003ccode\u003ebe37ade\u003c/code\u003e\u003c/a\u003e fix: crash in clipboard.readImage() on malformed image data (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50493\"\u003e#50493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/7007907df08d02da98f513dcbdb430ab51be59c7\"\u003e\u003ccode\u003e7007907\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 3 changes from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50461\"\u003e#50461\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/2c8b6ee0c0a7c26871dc0b320982afd8ed29df6c\"\u003e\u003ccode\u003e2c8b6ee\u003c/code\u003e\u003c/a\u003e chore: cherry-pick fbfb27470bf6 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50436\"\u003e#50436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/4c64377ead6b53bc565d7793a2712e49882e5354\"\u003e\u003ccode\u003e4c64377\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 50b057660b4d from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50440\"\u003e#50440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/0ef056130cde0c19c81ccfbc2932df6911765849\"\u003e\u003ccode\u003e0ef0561\u003c/code\u003e\u003c/a\u003e fix: read nodeIntegrationInWorker from per-frame WebPreferences (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50122\"\u003e#50122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50\"\u003e#50\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/64373df3ca697bc6fe6e3ab1f463ba05beaf64cf\"\u003e\u003ccode\u003e64373df\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 074d472db745 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50443\"\u003e#50443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/13e44072be367f516cfad36f95d183765174f4bf\"\u003e\u003ccode\u003e13e4407\u003c/code\u003e\u003c/a\u003e fix: don't re-parse URL unnecessarily when handling dialogs (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50400\"\u003e#50400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/16a038502a4ea0c79976be60bcc8f28a49f1ab99\"\u003e\u003ccode\u003e16a0385\u003c/code\u003e\u003c/a\u003e ci: output build cache hit rate as GHA annotation (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50369\"\u003e#50369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/electron/electron/compare/v38.2.2...v39.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 7.3.1 to 7.3.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.3.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.3/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.3/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.2...v7.3.3\"\u003e7.3.3\u003c/a\u003e (2026-05-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid destructure lowering for newer safari (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22346\"\u003e#22346\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/5ab51c0f76f0896175e02ad797c1f5fe116d02f4\"\u003e5ab51c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.1...v7.3.2\"\u003e7.3.2\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e09d8c90\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebackport \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22162\"\u003e#22162\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e19db0f2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echeck \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22160\"\u003e#22160\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003ef8103cc\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/ca31424cccb075c88131132b929a63527d0e2b69\"\u003e\u003ccode\u003eca31424\u003c/code\u003e\u003c/a\u003e release: v7.3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/5ab51c0f76f0896175e02ad797c1f5fe116d02f4\"\u003e\u003ccode\u003e5ab51c0\u003c/code\u003e\u003c/a\u003e fix: avoid destructure lowering for newer safari (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22346\"\u003e#22346\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/cc383e07b66d4c5a9768fcb570e0af812cb8d999\"\u003e\u003ccode\u003ecc383e0\u003c/code\u003e\u003c/a\u003e release: v7.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e\u003ccode\u003e09d8c90\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003e\u003ccode\u003ef8103cc\u003c/code\u003e\u003c/a\u003e fix: check \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160\"\u003e#22160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e\u003ccode\u003e19db0f2\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22162\"\u003e#22162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/vitejs/vite/commits/v7.3.3/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.12 to 1.1.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/10c05fcf3699b1a29ef5e611c011af3d3c97e6e3\"\u003e\u003ccode\u003e10c05fc\u003c/code\u003e\u003c/a\u003e 1.1.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/1afa1b22ead12f6a7a02f25bf0f7d64c2439b007\"\u003e\u003ccode\u003e1afa1b2\u003c/code\u003e\u003c/a\u003e Add opt-in { max } mitigation to v1 legacy line (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/103\"\u003e#103\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/2fbb6a2aa0f984bb2fb5f60252ca6cba3e1368ec\"\u003e\u003ccode\u003e2fbb6a2\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Backport fix for GHSA-7h2j-956f-4vf2 to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/101\"\u003e#101\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/102\"\u003e#102\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/0d7652e3093d3273151729812f9b0b79a17ecba6\"\u003e\u003ccode\u003e0d7652e\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-7h2j-956f-4vf2 to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/101\"\u003e#101\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/6c353caf23beb9644f858eb3fe38d43a68b82898\"\u003e\u003ccode\u003e6c353ca\u003c/code\u003e\u003c/a\u003e 1.1.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2\"\u003e\u003ccode\u003e7fd684f\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-f886-m6hf-6m8v (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/95\"\u003e#95\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.12...v1.1.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@hono/node-server` from 1.19.9 to 1.19.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/node-server/releases\"\u003e@​hono/node-server's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.14\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: add custom inspect to lightweight Request/Response to prevent TypeError on console.log by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/340\"\u003ehonojs/node-server#340\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.13\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an issue in Serve Static Middleware where inconsistent handling of repeated slashes (\u003ccode\u003e//\u003c/code\u003e) between the router and static file resolution could allow middleware to be bypassed. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-92pp-h63x-v22m for details.\u003c/p\u003e\n\u003ch2\u003ev1.19.12\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: ignore claude setting by \u003ca href=\"https://github.com/yusukebe\"\u003e\u003ccode\u003e@​yusukebe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/314\"\u003ehonojs/node-server#314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: request draining for early 413 responses by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/329\"\u003ehonojs/node-server#329\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: do not overwrite Content-Length in the fast path pattern if Content-Length already exists. by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/309\"\u003ehonojs/node-server#309\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.10\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an authorization bypass in Serve Static Middleware caused by inconsistent URL decoding (\u003ccode\u003e%2F\u003c/code\u003e handling) between the router and static file resolution. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-wc8c-qw6v-h7f6 for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/b5e63a366d9b0ef62ac65fcafd7f69b383b03ff5\"\u003e\u003ccode\u003eb5e63a3\u003c/code\u003e\u003c/a\u003e 1.19.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c02d7770a2d29ea473403211bef0a60639885a28\"\u003e\u003ccode\u003ec02d777\u003c/code\u003e\u003c/a\u003e fix: add custom inspect to lightweight Request/Response to prevent TypeError ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/fd64e659a34ec661fd9ccda00d1b9dff88dfaf90\"\u003e\u003ccode\u003efd64e65\u003c/code\u003e\u003c/a\u003e 1.19.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/025c30f55d589ddbe6048b151d77e904f67a8cc2\"\u003e\u003ccode\u003e025c30f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/6cdb5a724952f3df5748e435637792068ebea6d9\"\u003e\u003ccode\u003e6cdb5a7\u003c/code\u003e\u003c/a\u003e 1.19.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/70250f780ec99d2ddc0dd8275a42f8e091e06e94\"\u003e\u003ccode\u003e70250f7\u003c/code\u003e\u003c/a\u003e fix: request draining for early 413 responses (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/329\"\u003e#329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/cfc08b330a1f2e0a2d8cc7797cde389465b5f4fb\"\u003e\u003ccode\u003ecfc08b3\u003c/code\u003e\u003c/a\u003e chore: ignore claude setting (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/314\"\u003e#314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/ecd4d6be55117005acfd60a22d90c4818618507b\"\u003e\u003ccode\u003eecd4d6b\u003c/code\u003e\u003c/a\u003e 1.19.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c94489955ebd855630b703022837f7fe5f925111\"\u003e\u003ccode\u003ec944899\u003c/code\u003e\u003c/a\u003e fix: do not overwrite Content-Length in the fast path pattern if Content-Leng...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/2f8ca3665f5257305603783ec9999bd1a9bec0f2\"\u003e\u003ccode\u003e2f8ca36\u003c/code\u003e\u003c/a\u003e 1.19.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.9...v1.19.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/184bc32745d9d33b2322949b9f3cb5f7609bf5ec\"\u003e\u003ccode\u003e184bc32\u003c/code\u003e\u003c/a\u003e 6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/fea46afd1a76b12ff89493f6dc1bc46730c6d379\"\u003e\u003ccode\u003efea46af\u003c/code\u003e\u003c/a\u003e test/fix prototype pollution via $data ref with format keyword (\u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/2606\"\u003e#2606\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@xmldom/xmldom` from 0.8.11 to 0.8.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/releases\"\u003e@​xmldom/xmldom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.13\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e0.8.12\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/discussions/357\"\u003ehttps://github.com/xmldom/xmldom/discussions/357\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md\"\u003e@​xmldom/xmldom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003e0.8.13\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.9.8...0.9.9\"\u003e0.9.9\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eParentNode.children\u003c/code\u003e getter \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/960\"\u003e\u003ccode\u003e[#960](https://github.com/xmldom/xmldom/issues/960)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/410\"\u003e\u003ccode\u003e[#410](https://github.com/xmldom/xmldom/issues/410)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecorrectly traverse ancestor chain in \u003ccode\u003eNode.contains\u003c/code\u003e \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/931\"\u003e\u003ccode\u003e[#931](https://github.com/xmldom/xmldom/issues/931)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdated dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/yoshi389111\"\u003e\u003ccode\u003e@​yoshi389111\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003e0.8.12\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e5c14802592685bb872c042c54c3f73758875c85\"\u003e\u003ccode\u003ee5c1480\u003c/code\u003e\u003c/a\u003e 0.8.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/9611e20d75f059dc377f806a8f7ee7d1eaeaeb7c\"\u003e\u003ccode\u003e9611e20\u003c/code\u003e\u003c/a\u003e style: drop unused import in test file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/dc4dff3d1d0b5a6b97c52fcc1823a735b8821e62\"\u003e\u003ccode\u003edc4dff3\u003c/code\u003e\u003c/a\u003e docs: add 0.8.13 changelog entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/842fa38deedd2d9a9c90d0ad54aa1be75d2a41bc\"\u003e\u003ccode\u003e842fa38\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow in normalize (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/aeff69f5a32e8c1bd540683da9e10718f84f595c\"\u003e\u003ccode\u003eaeff69f\u003c/code\u003e\u003c/a\u003e test: add normalize behavioral coverage to node.test.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/cbdb0d7db8ae70760bd4cc181cb8f30bb0cd9d88\"\u003e\u003ccode\u003ecbdb0d7\u003c/code\u003e\u003c/a\u003e fix: make walkDOM iterative to prevent stack overflow (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/0b543d31794dc198c86a0358574cb5dec29674c5\"\u003e\u003ccode\u003e0b543d3\u003c/code\u003e\u003c/a\u003e test: assert namespace declarations are isolated between siblings in serializ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/c007c51909587990c962cf3d5c2acadf4c897b87\"\u003e\u003ccode\u003ec007c51\u003c/code\u003e\u003c/a\u003e refactor: migrate serializeToString to walkDOM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/2bb3899074820089d9e76ce28a5edfdacf425025\"\u003e\u003ccode\u003e2bb3899\u003c/code\u003e\u003c/a\u003e test: add serializeToString coverage for uncovered branches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e69f38d0a58731152d300e8c8eb29506f5f488fe\"\u003e\u003ccode\u003ee69f38d\u003c/code\u003e\u003c/a\u003e refactor: migrate importNode to walkDOM\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~karfau\"\u003ekarfau\u003c/a\u003e, a new releaser for \u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.4 to 1.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFetch adapter now enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e and \u003ccode\u003emaxContentLength\u003c/code\u003e.\u003c/strong\u003e These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy requests now preserve user-supplied \u003ccode\u003eHost\u003c/code\u003e headers.\u003c/strong\u003e Previously, the proxy path could overwrite a custom \u003ccode\u003eHost\u003c/code\u003e. Virtual-host-style routing through a proxy will now behave correctly. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBasic auth credentials embedded in URLs are now URL-decoded.\u003c/strong\u003e If you have percent-encoded credentials in a URL (e.g. \u003ccode\u003ehttps://user:p%40ss@host\u003c/code\u003e), the decoded value is what now goes on the wire. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eparseProtocol\u003c/code\u003e now strictly requires a colon in the protocol separator.\u003c/strong\u003e Strings that loosely parsed as protocols before may no longer match. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecated \u003ccode\u003eunescape()\u003c/code\u003e replaced with modern UTF-8 encoding.\u003c/strong\u003e Non-ASCII URL handling is now spec-correct; consumers depending on legacy \u003ccode\u003eunescape()\u003c/code\u003e quirks may see different output bytes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003etransformRequest\u003c/code\u003e input typing change was reverted.\u003c/strong\u003e The typing change introduced in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e was reverted in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e after follow-up review — net behavior is unchanged from 1.15.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eQUERY HTTP Method:\u003c/strong\u003e Added support for the QUERY HTTP method across adapters and type definitions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10802\"\u003e#10802\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eECONNREFUSED Error Constant:\u003c/strong\u003e Exposed \u003ccode\u003eECONNREFUSED\u003c/code\u003e as a constant on \u003ccode\u003eAxiosError\u003c/code\u003e so callers can match connection-refused failures without comparing string literals (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/6485\"\u003e#6485\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEncode Helper Export:\u003c/strong\u003e Exported the internal \u003ccode\u003eencode\u003c/code\u003e helper from \u003ccode\u003ebuildURL\u003c/code\u003e so userland param serializers can reuse the same encoding logic that axios uses internally. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6897\"\u003e#6897\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Redirects \u0026amp; Headers:\u003c/strong\u003e Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing \u003ccode\u003erequestDetails\u003c/code\u003e argument on \u003ccode\u003ebeforeRedirect\u003c/code\u003e, preserved user-supplied \u003ccode\u003eHost\u003c/code\u003e headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10794\"\u003e#10794\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10800\"\u003e#10800\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6241\"\u003e#6241\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Streams \u0026amp; Timeouts:\u003c/strong\u003e Preserved the partial response object on \u003ccode\u003eAxiosError\u003c/code\u003e when a stream is aborted after headers arrive, honoured the \u003ccode\u003etimeout\u003c/code\u003e option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and \u003ccode\u003emaxRedirects: 0\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10708\"\u003e#10708\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7149\"\u003e#7149\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Enforced \u003ccode\u003emaxBodyLength\u003c/code\u003e / \u003ccode\u003emaxContentLength\u003c/code\u003e in the fetch adapter, set the \u003ccode\u003eUser-Agent\u003c/code\u003e header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a \u003ccode\u003eTypeError\u003c/code\u003e in restricted environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10772\"\u003e#10772\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10806\"\u003e#10806\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Adapter:\u003c/strong\u003e Unsubscribed the \u003ccode\u003ecancelToken\u003c/code\u003e and \u003ccode\u003eAbortSignal\u003c/code\u003e listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e Attached the parsed response to \u003ccode\u003eAxiosError\u003c/code\u003e when \u003ccode\u003eJSON.parse\u003c/code\u003e fails inside \u003ccode\u003edispatchRequest\u003c/code\u003e, prevented \u003ccode\u003esettle\u003c/code\u003e from emitting \u003ccode\u003eundefined\u003c/code\u003e error codes, and tightened the \u003ccode\u003eparseProtocol\u003c/code\u003e regex to require a colon in the protocol separator. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10724\"\u003e#10724\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes \u0026amp; Exports:\u003c/strong\u003e Aligned the CommonJS \u003ccode\u003eCancelToken\u003c/code\u003e typings with the ESM build, fixed a compiler error caused by \u003ccode\u003eRawAxiosHeaders\u003c/code\u003e, and re-exported \u003ccode\u003ecreate\u003c/code\u003e from the package index. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7414\"\u003e#7414\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6389\"\u003e#6389\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6460\"\u003e#6460\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUTF-8 Encoding:\u003c/strong\u003e Replaced the deprecated \u003ccode\u003eunescape()\u003c/code\u003e call with a modern UTF-8 encoding implementation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMisc Cleanup:\u003c/strong\u003e Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRefactor — ES6 Modernisation:\u003c/strong\u003e Modernised the \u003ccode\u003eutils\u003c/code\u003e module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Hardened the HTTP test server lifecycle to fix flaky \u003ccode\u003eFormData\u003c/code\u003e EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10820\"\u003e#10820\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10791\"\u003e#10791\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10796\"\u003e#10796\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Documented \u003ccode\u003eparamsSerializer.encode\u003c/code\u003e for strict RFC 3986 query encoding, updated the \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10821\"\u003e#10821\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10782\"\u003e#10782\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10759\"\u003e#10759\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10804\"\u003e#10804\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReverted:\u003c/strong\u003e Reverted the \u003ccode\u003etransformRequest\u003c/code\u003e input typing change from \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e after follow-up review. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eactions/setup-node\u003c/code\u003e, the \u003ccode\u003egithub-actions\u003c/code\u003e group, and \u003ccode\u003epostcss\u003c/code\u003e (in \u003ccode\u003e/docs\u003c/code\u003e) to their latest versions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10785\"\u003e#10785\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10813\"\u003e#10813\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10814\"\u003e#10814\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRelease:\u003c/strong\u003e Updated changelog and packages, and prepared the 1.16.0 release. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10790\"\u003e#10790\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/singhankit001\"\u003e\u003ccode\u003e@​singhankit001\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/iruizsalinas\"\u003e\u003ccode\u003e@​iruizsalinas\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/MarcosNocetti\"\u003e\u003ccode\u003e@​MarcosNocetti\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/deepview-autofix\"\u003e\u003ccode\u003e@​deepview-autofix\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFetch adapter now enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e and \u003ccode\u003emaxContentLength\u003c/code\u003e.\u003c/strong\u003e These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy requests now preserve user-supplied \u003ccode\u003eHost\u003c/code\u003e headers.\u003c/strong\u003e Previously, the proxy path could overwrite a custom \u003ccode\u003eHost\u003c/code\u003e. Virtual-host-style routing through a proxy will now behave correctly. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBasic auth credentials embedded in URLs are now URL-decoded.\u003c/strong\u003e If you have percent-encoded credentials in a URL (e.g. \u003ccode\u003ehttps://user:p%40ss@host\u003c/code\u003e), the decoded value is what now goes on the wire. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eparseProtocol\u003c/code\u003e now strictly requires a colon in the protocol separator.\u003c/strong\u003e Strings that loosely parsed as protocols before may no longer match. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecated \u003ccode\u003eunescape()\u003c/code\u003e replaced with modern UTF-8 encoding.\u003c/strong\u003e Non-ASCII URL handling is now spec-correct; consumers depending on legacy \u003ccode\u003eunescape()\u003c/code\u003e quirks may see different output bytes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003etransformRequest\u003c/code\u003e input typing change was reverted.\u003c/strong\u003e The typing change introduced in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e was reverted in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e after follow-up review — net behavior is unchanged from 1.15.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eQUERY HTTP Method:\u003c/strong\u003e Added support for the QUERY HTTP method across adapters and type definitions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10802\"\u003e#10802\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eECONNREFUSED Error Constant:\u003c/strong\u003e Exposed \u003ccode\u003eECONNREFUSED\u003c/code\u003e as a constant on \u003ccode\u003eAxiosError\u003c/code\u003e so callers can match connection-refused failures without comparing string literals (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/6485\"\u003e#6485\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEncode Helper Export:\u003c/strong\u003e Exported the internal \u003ccode\u003eencode\u003c/code\u003e helper from \u003ccode\u003ebuildURL\u003c/code\u003e so userland param serializers can reuse the same encoding logic that axios uses internally. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6897\"\u003e#6897\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Redirects \u0026amp; Headers:\u003c/strong\u003e Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing \u003ccode\u003erequestDetails\u003c/code\u003e argument on \u003ccode\u003ebeforeRedirect\u003c/code\u003e, preserved user-supplied \u003ccode\u003eHost\u003c/code\u003e headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10794\"\u003e#10794\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10800\"\u003e#10800\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6241\"\u003e#6241\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Streams \u0026amp; Timeouts:\u003c/strong\u003e Preserved the partial response object on \u003ccode\u003eAxiosError\u003c/code\u003e when a stream is aborted after headers arrive, honoured the \u003ccode\u003etimeout\u003c/code\u003e option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and \u003ccode\u003emaxRedirects: 0\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10708\"\u003e#10708\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7149\"\u003e#7149\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Enforced \u003ccode\u003emaxBodyLength\u003c/code\u003e / \u003ccode\u003emaxContentLength\u003c/code\u003e in the fetch adapter, set the \u003ccode\u003eUser-Agent\u003c/code\u003e header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a \u003ccode\u003eTypeError\u003c/code\u003e in restricted environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10772\"\u003e#10772\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10806\"\u003e#10806\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Adapter:\u003c/strong\u003e Unsubscribed the \u003ccode\u003ecancelToken\u003c/code\u003e and \u003ccode\u003eAbortSignal\u003c/code\u003e listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e Attached the parsed response to \u003ccode\u003eAxiosError\u003c/code\u003e when \u003ccode\u003eJSON.parse\u003c/code\u003e fails inside \u003ccode\u003edispatchRequest\u003c/code\u003e, prevented \u003ccode\u003esettle\u003c/code\u003e from emitting \u003ccode\u003eundefined\u003c/code\u003e error codes, and tightened the \u003ccode\u003eparseProtocol\u003c/code\u003e regex to require a colon in the protocol separator. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10724\"\u003e#10724\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes \u0026amp; Exports:\u003c/strong\u003e Aligned the CommonJS \u003ccode\u003eCancelToken\u003c/code\u003e typings with the ESM build, fixed a compiler error caused by \u003ccode\u003eRawAxiosHeaders\u003c/code\u003e, and re-exported \u003ccode\u003ecreate\u003c/code\u003e from the package index. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7414\"\u003e#7414\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6389\"\u003e#6389\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6460\"\u003e#6460\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUTF-8 Encoding:\u003c/strong\u003e Replaced the deprecated \u003ccode\u003eunescape()\u003c/code\u003e call with a modern UTF-8 encoding implementation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMisc Cleanup:\u003c/strong\u003e Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRefactor — ES6 Modernisation:\u003c/strong\u003e Modernised the \u003ccode\u003eutils\u003c/code\u003e module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Hardened the HTTP test server lifecycle to fix flaky \u003ccode\u003eFormData\u003c/code\u003e EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10820\"\u003e#10820\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10791\"\u003e#10791\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10796\"\u003e#10796\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Documented \u003ccode\u003eparamsSerializer.encode\u003c/code\u003e for strict RFC 3986 query encoding, updated the \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (\u003cstrong\u003e\u003ca...\n\n_Description has been truncated_\n\n\u003c!-- This is an auto-generated description by cubic. --\u003e\n---\n## Summary by cubic\nUpgrade core dependencies across the repo to patch security issues and improve build/runtime stability. Key bumps include `drizzle-orm`, `electron`, `vite`, `axios`, `@xmldom/xmldom`, and `@hono/node-server`.\n\n- **Dependencies**\n  - `drizzle-orm` 0.41.0 → 0.45.2 — fixes escaping in `sql.identifier()`/`sql.as()` (SQL injection), better error handling.\n  - `electron` 38.2.2 → 39.8.5 — stability fixes for dialogs, focus/fullscreen, clipboard, and window behavior.\n  - `vite` root 7.3.1 → 7.3.3; fixtures/scaffold 6.4.1 → 6.4.2 — security hardening and Safari/runtime fixes.\n  - `axios` 1.13.4 → 1.16.0 — enforces `maxBodyLength`/`maxContentLength` in fetch adapter, QUERY method, proxy/redirect/header fixes.\n  - `@xmldom/xmldom` 0.8.11 → 0.8.13 — XML injection mitigations and deep DOM traversal safeguards.\n  - `@hono/node-server` 1.19.9 → 1.19.14 — static file middleware security fixes and header handling improvements.\n  - Also bumped: `lodash` 4.18.1, `express-rate-limit` 8.5.1, `hono` 4.12.18, `picomatch` 2.3.2, `brace-expansion` 1.1.14, `fast-uri` 3.1.2, `next` 16.2.6, `seroval` 1.5.4.\n\n- **Migration**\n  - If using the `axios` fetch adapter, verify `maxBodyLength`/`maxContentLength`, proxy headers, and timeouts in your config.\n  - If you use `drizzle-orm` with `sql.identifier()` or `sql.as()`, confirm inputs are as expected after the escaping fix.\n  - Test Electron flows (window open, dialogs, fullscreen) on your platforms.\n  - Run a clean install and build to refresh lockfiles and generated artifacts.\n\n\u003csup\u003eWritten for commit 128d2b602e05bb949ac9f78162ca332a7c80f268. Summary will update on new commits.\u003c/sup\u003e\n\n\u003c!-- End of auto-generated description by cubic. --\u003e\n\n","html_url":"https://github.com/billlzzz10/dyad-bl1nk/pull/32","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/billlzzz10%2Fdyad-bl1nk/issues/32","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/32/packages"}},{"old_version":"1.4.0","new_version":"1.5.4","update_type":"minor","path":null,"pr_created_at":"2026-05-07T01:36:17.000Z","version_change":"1.4.0 → 1.5.4","issue":{"uuid":"4395527977","node_id":"PR_kwDOQ3ffIc7Y-m2l","number":21,"state":"open","title":"chore(deps): bump the npm_and_yarn group across 2 directories with 18 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-07T01:36:17.000Z","updated_at":"2026-05-07T01:37:14.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":18,"packages":[{"name":"electron","old_version":"39.2.7","new_version":"39.8.5","repository_url":"https://github.com/electron/electron"},{"name":"vite","old_version":"7.3.0","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"fast-xml-parser","old_version":"5.3.3","new_version":"5.7.3","repository_url":"https://github.com/NaturalIntelligence/fast-xml-parser"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"@hono/node-server","old_version":"1.19.9","new_version":"1.19.14","repository_url":"https://github.com/honojs/node-server"},{"name":"ajv","old_version":"6.12.6","new_version":"6.15.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"@tootallnate/once","old_version":"2.0.0","new_version":"2.0.1","repository_url":"https://github.com/TooTallNate/once"},{"name":"@xmldom/xmldom","old_version":"0.8.11","new_version":"0.8.13","repository_url":"https://github.com/xmldom/xmldom"},{"name":"express-rate-limit","old_version":"8.2.1","new_version":"8.5.1","repository_url":"https://github.com/express-rate-limit/express-rate-limit"},{"name":"flatted","old_version":"3.3.3","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"hono","old_version":"4.11.9","new_version":"4.12.18","repository_url":"https://github.com/honojs/hono"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"path-to-regexp","old_version":"8.3.0","new_version":"8.4.2","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"qs","old_version":"6.14.1","new_version":"6.15.1","repository_url":"https://github.com/ljharb/qs"},{"name":"rollup","old_version":"4.53.5","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"seroval","old_version":"1.4.0","new_version":"1.5.4","repository_url":"https://github.com/lxsmnsyc/seroval"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 17 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [electron](https://github.com/electron/electron) | `39.2.7` | `39.8.5` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.0` | `7.3.2` |\n| [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) | `5.3.3` | `5.7.3` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [@hono/node-server](https://github.com/honojs/node-server) | `1.19.9` | `1.19.14` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.15.0` |\n| [@tootallnate/once](https://github.com/TooTallNate/once) | `2.0.0` | `2.0.1` |\n| [@xmldom/xmldom](https://github.com/xmldom/xmldom) | `0.8.11` | `0.8.13` |\n| [express-rate-limit](https://github.com/express-rate-limit/express-rate-limit) | `8.2.1` | `8.5.1` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |\n| [hono](https://github.com/honojs/hono) | `4.11.9` | `4.12.18` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `8.3.0` | `8.4.2` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [qs](https://github.com/ljharb/qs) | `6.14.1` | `6.15.1` |\n| [rollup](https://github.com/rollup/rollup) | `4.53.5` | `4.60.3` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.4.0` | `1.5.4` |\n\nBumps the npm_and_yarn group with 2 updates in the /apps/ui directory: [electron](https://github.com/electron/electron) and [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\n\nUpdates `electron` from 39.2.7 to 39.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/electron/electron/releases\"\u003eelectron's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eelectron v39.8.5\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.5\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a crash in \u003ccode\u003eclipboard.readImage()\u003c/code\u003e when the clipboard contains malformed image data. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50493\"\u003e#50493\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50491\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50492\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50494\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed a crash when calling an offscreen shared texture's \u003ccode\u003erelease()\u003c/code\u003e after the texture object was garbage collected. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50499\"\u003e#50499\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50500\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50501\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50502\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.4\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.4\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003enodeIntegrationInWorker\u003c/code\u003e overrides in \u003ccode\u003esetWindowOpenHandler\u003c/code\u003e were not honored for child windows sharing a renderer process with their opener. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50468\"\u003e#50468\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50163\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50467\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50134\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed crash when handling JavaScript dialogs from windows opened with invalid or empty URLs. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50400\"\u003e#50400\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50401\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50399\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50398\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed improper focus tracking in BaseWindow on MacOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50338\"\u003e#50338\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50337\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50340\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50339\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed window freeze when failing to enter/exit fullscreen on macOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50341\"\u003e#50341\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50344\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50343\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50342\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for using a proxy during yarn install. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50349\"\u003e#50349\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50352\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50350\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50351\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 485935305. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50440\"\u003e#50440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 489381399. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50443\"\u003e#50443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for chromium:475877320. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50436\"\u003e#50436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fixes for 484751092, 487117772. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50461\"\u003e#50461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.3\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.3\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded additional ASAR support to additional \u003ccode\u003efs\u003c/code\u003e copy methods. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50284\"\u003e#50284\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50287\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50286\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50285\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed user resizing of transparent windows on win32 platform. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50300\"\u003e#50300\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50301\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50298\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50299\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.2\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.2\u003c/h1\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackported fix for b/491421267. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50230\"\u003e#50230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.1\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.1\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded validation to protocol client methods to reject protocol names that do not conform to the RFC 3986 URI scheme grammar. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50156\"\u003e#50156\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50157\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50158\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50155\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue on macOS where calling \u003ccode\u003eautoUpdater.quitAndInstall()\u003c/code\u003e could fail if \u003ccode\u003echeckForUpdates()\u003c/code\u003e was called again after an update was already downloaded. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50215\"\u003e#50215\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50216\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50217\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where Chrome Devtools menus may not appear in certain embedded windows. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50136\"\u003e#50136\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50138\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50137\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003eadditionalData\u003c/code\u003e passed to \u003ccode\u003eapp.requestSingleInstanceLock\u003c/code\u003e on Windows could be truncated or fail to deserialize in the primary instance's \u003ccode\u003esecond-instance\u003c/code\u003e event. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50174\"\u003e#50174\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50177\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50162\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50154\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003escreen.getCursorScreenPoint()\u003c/code\u003e crashed on Wayland when it was called before a \u003ccode\u003eBrowserWindow\u003c/code\u003e had been created. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50106\"\u003e#50106\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50104\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50105\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/9d2f8cb4da0d35e2daf7e7f60e35313b508cb224\"\u003e\u003ccode\u003e9d2f8cb\u003c/code\u003e\u003c/a\u003e refactor: remove dead named-window lookup from guest-window-manager (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50498\"\u003e#50498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/11730047394233e70743c52567e17f4c3b2dc9fc\"\u003e\u003ccode\u003e1173004\u003c/code\u003e\u003c/a\u003e fix: crash calling OSR shared texture release() after texture GC'd (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50499\"\u003e#50499\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/be37adefd08f882e3f1fb8403d2d9e92c3009d56\"\u003e\u003ccode\u003ebe37ade\u003c/code\u003e\u003c/a\u003e fix: crash in clipboard.readImage() on malformed image data (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50493\"\u003e#50493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/7007907df08d02da98f513dcbdb430ab51be59c7\"\u003e\u003ccode\u003e7007907\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 3 changes from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50461\"\u003e#50461\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/2c8b6ee0c0a7c26871dc0b320982afd8ed29df6c\"\u003e\u003ccode\u003e2c8b6ee\u003c/code\u003e\u003c/a\u003e chore: cherry-pick fbfb27470bf6 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50436\"\u003e#50436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/4c64377ead6b53bc565d7793a2712e49882e5354\"\u003e\u003ccode\u003e4c64377\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 50b057660b4d from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50440\"\u003e#50440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/0ef056130cde0c19c81ccfbc2932df6911765849\"\u003e\u003ccode\u003e0ef0561\u003c/code\u003e\u003c/a\u003e fix: read nodeIntegrationInWorker from per-frame WebPreferences (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50122\"\u003e#50122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50\"\u003e#50\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/64373df3ca697bc6fe6e3ab1f463ba05beaf64cf\"\u003e\u003ccode\u003e64373df\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 074d472db745 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50443\"\u003e#50443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/13e44072be367f516cfad36f95d183765174f4bf\"\u003e\u003ccode\u003e13e4407\u003c/code\u003e\u003c/a\u003e fix: don't re-parse URL unnecessarily when handling dialogs (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50400\"\u003e#50400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/16a038502a4ea0c79976be60bcc8f28a49f1ab99\"\u003e\u003ccode\u003e16a0385\u003c/code\u003e\u003c/a\u003e ci: output build cache hit rate as GHA annotation (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50369\"\u003e#50369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/electron/electron/compare/v39.2.7...v39.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 7.3.0 to 7.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.3.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.1...v7.3.2\"\u003e7.3.2\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e09d8c90\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebackport \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22162\"\u003e#22162\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e19db0f2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echeck \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22160\"\u003e#22160\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003ef8103cc\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.0...v7.3.1\"\u003e7.3.1\u003c/a\u003e (2026-01-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21364\"\u003e#21364\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e9d39d37\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/cc383e07b66d4c5a9768fcb570e0af812cb8d999\"\u003e\u003ccode\u003ecc383e0\u003c/code\u003e\u003c/a\u003e release: v7.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e\u003ccode\u003e09d8c90\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003e\u003ccode\u003ef8103cc\u003c/code\u003e\u003c/a\u003e fix: check \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160\"\u003e#22160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e\u003ccode\u003e19db0f2\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22162\"\u003e#22162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/95e8923f35d0252c9f6eb2d5e358c084542706f1\"\u003e\u003ccode\u003e95e8923\u003c/code\u003e\u003c/a\u003e release: v7.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e\u003ccode\u003e9d39d37\u003c/code\u003e\u003c/a\u003e feat: add \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/21364\"\u003e#21364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/vitejs/vite/commits/v7.3.2/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-xml-parser` from 5.3.3 to 5.7.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/releases\"\u003efast-xml-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003efix minor old bugs and update builder\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: alwaysCreateTextNode should create text node when attributes are present for self closing node\u003c/li\u003e\n\u003cli\u003efix stop node expression when ns prefix is removed (found by \u003ca href=\"https://github.com/iruizsalinas\"\u003eiruizsalinas\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XML Builder to 1.1.7\u003c/li\u003e\n\u003cli\u003emark addEntity deprecated\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ebackward compatibility for numerical external entity, fix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eallow numerical external entity for backward compatibility\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: attributesGroupName working with preserveOrder\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e: stackoverflow when tag expression is very long\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eupgrade \u003ccode\u003e@​nodable/entities\u003c/code\u003e and FXB\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003e@nodable/entities\u003c/code\u003e v2.1.0\n\u003cul\u003e\n\u003cli\u003ebreaking changes\n\u003cul\u003e\n\u003cli\u003esingle entity scan. You're not allowed to use entity value to form another entity name.\u003c/li\u003e\n\u003cli\u003eyou cant add numeric external entity\u003c/li\u003e\n\u003cli\u003eentity error message when expantion limit is crossed might change\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etypings are updated for new options related to process entity\u003c/li\u003e\n\u003cli\u003eplease follow documentation of \u003ccode\u003e@nodable/entities\u003c/code\u003e for more detail.\u003c/li\u003e\n\u003cli\u003eperformance\n\u003cul\u003e\n\u003cli\u003eif processEntities is false, then there should not be impact on performance.\u003c/li\u003e\n\u003cli\u003eif processEntities is true, but you dont pass entity decoder separately then performance may degrade by approx 8-10%\u003c/li\u003e\n\u003cli\u003eif processEntities is true, and you pass entity decoder separately\n\u003cul\u003e\n\u003cli\u003eif no entity then performance should be same as before\u003c/li\u003e\n\u003cli\u003eif there are entities then performance should be increased from past versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eignoreAttributes is not required to be set to set xml version for NCR entity value\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate 'fast-xml-builder' to sanitize malicious CDATA and comment's content\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003euse \u003ccode\u003e@​nodable/entities\u003c/code\u003e to replace entities\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo API change\u003c/li\u003e\n\u003cli\u003eNo change in performance for basic usage\u003c/li\u003e\n\u003cli\u003eNo typing change\u003c/li\u003e\n\u003cli\u003eNo config change\u003c/li\u003e\n\u003cli\u003enew dependency\u003c/li\u003e\n\u003cli\u003ebreaking: error messages for entities might have been changed.\u003c/li\u003e\n\u003cli\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.12...v5.6.0\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.12...v5.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eperformance improvment, increase entity expansion default limit\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eincrease default entity explansion limit as many projects demand for that\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003emaxEntitySize: 10000,\r\nmaxExpansionDepth: 10000,\r\nmaxTotalExpansions: Infinity,\r\nmaxExpandedLength: 100000,\r\nmaxEntityCount: 1000,\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eperformance improvement\n\u003cul\u003e\n\u003cli\u003ereduce calls to toString\u003c/li\u003e\n\u003cli\u003eearly return when entities are not present\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md\"\u003efast-xml-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003eNote: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eNote: Due to some last quick changes on v4, detail of v4.5.3 \u0026amp; v4.5.4 are not updated here. v4.5.4x is the last tag of v4 in github repository. I'm extremely sorry for the confusion\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.3 / 2006-05-05\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: alwaysCreateTextNode should create text node when attributes are present for self closing node\u003c/li\u003e\n\u003cli\u003efix stop node expression when ns prefix is removed (found by \u003ca href=\"https://github.com/iruizsalinas\"\u003eiruizsalinas\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XML Builder to 1.1.7\u003c/li\u003e\n\u003cli\u003emark addEntity deprecated\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.2 / 2026-04-25\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eallow numerical external entity for backward compatibility\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: attributesGroupName working with preserveOrder\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e: stackoverflow when tag expression is very long\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.1 / 2026-04-20\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix typo in CJS typing file\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.0 / 2026-04-17\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003e@nodable/entities\u003c/code\u003e v2.1.0\n\u003cul\u003e\n\u003cli\u003ebreaking changes\n\u003cul\u003e\n\u003cli\u003esingle entity scan. You're not allowed to user entity value to form another entity name.\u003c/li\u003e\n\u003cli\u003eyou cant add numeric external entity\u003c/li\u003e\n\u003cli\u003eentity error message when expantion limit is crossed might change\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etypings are updated for new options related to process entity\u003c/li\u003e\n\u003cli\u003eplease follow documentation of \u003ccode\u003e@nodable/entities\u003c/code\u003e for more detail.\u003c/li\u003e\n\u003cli\u003eperformance\n\u003cul\u003e\n\u003cli\u003eif processEntities is false, then there should not be impact on performance.\u003c/li\u003e\n\u003cli\u003eif processEntities is true, but you dont pass entity decoder separately then performance may degrade by approx 8-10%\u003c/li\u003e\n\u003cli\u003eif processEntities is true, and you pass entity decoder separately\n\u003cul\u003e\n\u003cli\u003eif no entity then performance should be same as before\u003c/li\u003e\n\u003cli\u003eif there are entities then performance should be increased from past versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eignoreAttributes is not required to be set to set xml version for NCR entity value\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate 'fast-xml-builder' to sanitize malicious CDATA and comment's content\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.6.0 / 2026-04-15\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: entity replacement for numeric entities\u003c/li\u003e\n\u003cli\u003euse \u003ccode\u003e@​nodable/entities\u003c/code\u003e to replace entities\n\u003cul\u003e\n\u003cli\u003ethis may change some error messages related to entities expansion limit or inavlid use\u003c/li\u003e\n\u003cli\u003epost check would be exposed in future version\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.12 / 2026-04-13\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePerformance Improvement: update path-expression-matcher\n\u003cul\u003e\n\u003cli\u003euse proxy pattern than Proxy class\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.11 / 2026-04-08\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePerformance Improvement\n\u003cul\u003e\n\u003cli\u003eintegrate ExpressionSet for stopNodes\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/d6d80429b1d1f1420902e1cebac6fe7831ba0839\"\u003e\u003ccode\u003ed6d8042\u003c/code\u003e\u003c/a\u003e update to release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/d2633709699520c514208ea70e31adb6d71ab0e8\"\u003e\u003ccode\u003ed263370\u003c/code\u003e\u003c/a\u003e remove dev dependency 'he'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/f9c9a2c19f819ab6fe0856ef4e94d6aa28fe1eec\"\u003e\u003ccode\u003ef9c9a2c\u003c/code\u003e\u003c/a\u003e update builder to 1.1.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/b65da87028f943abf5698b96385eef21e39f983e\"\u003e\u003ccode\u003eb65da87\u003c/code\u003e\u003c/a\u003e update changelog and mark addEntity deprecated\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/c2ca631f99d4d7f66e0d48001741bc8784cfe966\"\u003e\u003ccode\u003ec2ca631\u003c/code\u003e\u003c/a\u003e update fxb\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/da7519163bfdc257e90be781a05af83840b330a8\"\u003e\u003ccode\u003eda75191\u003c/code\u003e\u003c/a\u003e fix stop node expression when ns prefix is removed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/31bbc99adedcada7d52bc4745273e7d8b9824b31\"\u003e\u003ccode\u003e31bbc99\u003c/code\u003e\u003c/a\u003e fix: alwaysCreateTextNode should create text node when attributes are present...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/dab327a05acd4f62bba277fb924e2e751079eca0\"\u003e\u003ccode\u003edab327a\u003c/code\u003e\u003c/a\u003e remove unnecessary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/ab04eeb91d3013d56c6a949cf45c17deaa3a0fc8\"\u003e\u003ccode\u003eab04eeb\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/383cb3feee7f8181379f41836359e6b53379db5d\"\u003e\u003ccode\u003e383cb3f\u003c/code\u003e\u003c/a\u003e Revise security information for v6 release\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.3...v5.7.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@hono/node-server` from 1.19.9 to 1.19.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/node-server/releases\"\u003e@​hono/node-server's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.14\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: add custom inspect to lightweight Request/Response to prevent TypeError on console.log by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/340\"\u003ehonojs/node-server#340\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.13\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an issue in Serve Static Middleware where inconsistent handling of repeated slashes (\u003ccode\u003e//\u003c/code\u003e) between the router and static file resolution could allow middleware to be bypassed. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-92pp-h63x-v22m for details.\u003c/p\u003e\n\u003ch2\u003ev1.19.12\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: ignore claude setting by \u003ca href=\"https://github.com/yusukebe\"\u003e\u003ccode\u003e@​yusukebe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/314\"\u003ehonojs/node-server#314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: request draining for early 413 responses by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/329\"\u003ehonojs/node-server#329\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: do not overwrite Content-Length in the fast path pattern if Content-Length already exists. by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/309\"\u003ehonojs/node-server#309\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.10\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an authorization bypass in Serve Static Middleware caused by inconsistent URL decoding (\u003ccode\u003e%2F\u003c/code\u003e handling) between the router and static file resolution. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-wc8c-qw6v-h7f6 for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/b5e63a366d9b0ef62ac65fcafd7f69b383b03ff5\"\u003e\u003ccode\u003eb5e63a3\u003c/code\u003e\u003c/a\u003e 1.19.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c02d7770a2d29ea473403211bef0a60639885a28\"\u003e\u003ccode\u003ec02d777\u003c/code\u003e\u003c/a\u003e fix: add custom inspect to lightweight Request/Response to prevent TypeError ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/fd64e659a34ec661fd9ccda00d1b9dff88dfaf90\"\u003e\u003ccode\u003efd64e65\u003c/code\u003e\u003c/a\u003e 1.19.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/025c30f55d589ddbe6048b151d77e904f67a8cc2\"\u003e\u003ccode\u003e025c30f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/6cdb5a724952f3df5748e435637792068ebea6d9\"\u003e\u003ccode\u003e6cdb5a7\u003c/code\u003e\u003c/a\u003e 1.19.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/70250f780ec99d2ddc0dd8275a42f8e091e06e94\"\u003e\u003ccode\u003e70250f7\u003c/code\u003e\u003c/a\u003e fix: request draining for early 413 responses (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/329\"\u003e#329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/cfc08b330a1f2e0a2d8cc7797cde389465b5f4fb\"\u003e\u003ccode\u003ecfc08b3\u003c/code\u003e\u003c/a\u003e chore: ignore claude setting (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/314\"\u003e#314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/ecd4d6be55117005acfd60a22d90c4818618507b\"\u003e\u003ccode\u003eecd4d6b\u003c/code\u003e\u003c/a\u003e 1.19.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c94489955ebd855630b703022837f7fe5f925111\"\u003e\u003ccode\u003ec944899\u003c/code\u003e\u003c/a\u003e fix: do not overwrite Content-Length in the fast path pattern if Content-Leng...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/2f8ca3665f5257305603783ec9999bd1a9bec0f2\"\u003e\u003ccode\u003e2f8ca36\u003c/code\u003e\u003c/a\u003e 1.19.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.9...v1.19.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/184bc32745d9d33b2322949b9f3cb5f7609bf5ec\"\u003e\u003ccode\u003e184bc32\u003c/code\u003e\u003c/a\u003e 6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/fea46afd1a76b12ff89493f6dc1bc46730c6d379\"\u003e\u003ccode\u003efea46af\u003c/code\u003e\u003c/a\u003e test/fix prototype pollution via $data ref with format keyword (\u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/2606\"\u003e#2606\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tootallnate/once` from 2.0.0 to 2.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TooTallNate/once/releases\"\u003e@​tootallnate/once's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea1e5e2d: Fix promise hang when AbortSignal is aborted\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TooTallNate/once/blob/v2.0.1/CHANGELOG.md\"\u003e@​tootallnate/once's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.0.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea1e5e2d: Fix promise hang when AbortSignal is aborted\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/bcbb21d387e5fb2d0bf8ec2fd8d0ac97d4553241\"\u003e\u003ccode\u003ebcbb21d\u003c/code\u003e\u003c/a\u003e ci: fix OIDC publishing — Node 24, npm latest, provenance\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/dc24387be8e3405f1e7c911caf76c87b72a0e145\"\u003e\u003ccode\u003edc24387\u003c/code\u003e\u003c/a\u003e Version Packages (2.x) (\u003ca href=\"https://redirect.github.com/TooTallNate/once/issues/12\"\u003e#12\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/b8a6f80afcfd2482b4bdb1e29d784340a05e0ce3\"\u003e\u003ccode\u003eb8a6f80\u003c/code\u003e\u003c/a\u003e CI: test all Node versions on Linux only\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/dabcc0fb6202663cd83994f0a21ea1c710395327\"\u003e\u003ccode\u003edabcc0f\u003c/code\u003e\u003c/a\u003e ci: drop EOL Node.js 14.x/16.x, add 22.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/b464efcf4238d92590245b4d211d2fc05a94d28a\"\u003e\u003ccode\u003eb464efc\u003c/code\u003e\u003c/a\u003e Update CI: modern Node versions, fix macOS ARM64 compat\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TooTallNate/once/commit/a1e5e2d784bcd1c65e49fac1524c6c94fe81f871\"\u003e\u003ccode\u003ea1e5e2d\u003c/code\u003e\u003c/a\u003e Fix promise hang when AbortSignal is aborted\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/TooTallNate/once/compare/2.0.0...v2.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​tootallnate/once\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@xmldom/xmldom` from 0.8.11 to 0.8.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/releases\"\u003e@​xmldom/xmldom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.13\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e0.8.12\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/discussions/357\"\u003ehttps://github.com/xmldom/xmldom/discussions/357\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md\"\u003e@​xmldom/xmldom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003e0.8.13\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.9.8...0.9.9\"\u003e0.9.9\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eParentNode.children\u003c/code\u003e getter \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/960\"\u003e\u003ccode\u003e[#960](https://github.com/xmldom/xmldom/issues/960)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/410\"\u003e\u003ccode\u003e[#410](https://github.com/xmldom/xmldom/issues/410)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecorrectly traverse ancestor chain in \u003ccode\u003eNode.contains\u003c/code\u003e \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/931\"\u003e\u003ccode\u003e[#931](https://github.com/xmldom/xmldom/issues/931)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdated dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/yoshi389111\"\u003e\u003ccode\u003e@​yoshi389111\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003e0.8.12\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e5c14802592685bb872c042c54c3f73758875c85\"\u003e\u003ccode\u003ee5c1480\u003c/code\u003e\u003c/a\u003e 0.8.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/9611e20d75f059dc377f806a8f7ee7d1eaeaeb7c\"\u003e\u003ccode\u003e9611e20\u003c/code\u003e\u003c/a\u003e style: drop unused import in test file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/dc4dff3d1d0b5a6b97c52fcc1823a735b8821e62\"\u003e\u003ccode\u003edc4dff3\u003c/code\u003e\u003c/a\u003e docs: add 0.8.13 changelog entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/842fa38deedd2d9a9c90d0ad54aa1be75d2a41bc\"\u003e\u003ccode\u003e842fa38\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow in normalize (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/aeff69f5a32e8c1bd540683da9e10718f84f595c\"\u003e\u003ccode\u003eaeff69f\u003c/code\u003e\u003c/a\u003e test: add normalize behavioral coverage to node.test.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/cbdb0d7db8ae70760bd4cc181cb8f30bb0cd9d88\"\u003e\u003ccode\u003ecbdb0d7\u003c/code\u003e\u003c/a\u003e fix: make walkDOM iterative to prevent stack overflow (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/0b543d31794dc198c86a0358574cb5dec29674c5\"\u003e\u003ccode\u003e0b543d3\u003c/code\u003e\u003c/a\u003e test: assert namespace declarations are isolated between siblings in serializ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/c007c51909587990c962cf3d5c2acadf4c897b87\"\u003e\u003ccode\u003ec007c51\u003c/code\u003e\u003c/a\u003e refactor: migrate serializeToString to walkDOM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/2bb3899074820089d9e76ce28a5edfdacf425025\"\u003e\u003ccode\u003e2bb3899\u003c/code\u003e\u003c/a\u003e test: add serializeToString coverage for uncovered branches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e69f38d0a58731152d300e8c8eb29506f5f488fe\"\u003e\u003ccode\u003ee69f38d\u003c/code\u003e\u003c/a\u003e refactor: migrate importNode to walkDOM\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~karfau\"\u003ekarfau\u003c/a\u003e, a new releaser for \u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `express-rate-limit` from 8.2.1 to 8.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/releases\"\u003eexpress-rate-limit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.5.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.5.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.4.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.2\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/50cc3f6345f603ac2fe4eb646edd7338b9a31fbb\"\u003e\u003ccode\u003e50cc3f6\u003c/code\u003e\u003c/a\u003e 8.5.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/92c8e3efd87b9b9f89092b1f9c8c17ac134c1293\"\u003e\u003ccode\u003e92c8e3e\u003c/code\u003e\u003c/a\u003e chore: bump ip-address library to latest (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/626\"\u003e#626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/807e383875e93be940493464ea397381fc93942b\"\u003e\u003ccode\u003e807e383\u003c/code\u003e\u003c/a\u003e 8.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/b84413793127a1c392738ef26d10ec7a899d9d2d\"\u003e\u003ccode\u003eb844137\u003c/code\u003e\u003c/a\u003e v8.5.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/ceaffabad1ee435549434b6b933097a938b27abe\"\u003e\u003ccode\u003eceaffab\u003c/code\u003e\u003c/a\u003e feat: async store init (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/621\"\u003e#621\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/69568d4ea794905df4ff2e872f04e1daa1f89050\"\u003e\u003ccode\u003e69568d4\u003c/code\u003e\u003c/a\u003e 8.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/c686acd0bac3058dca4b7f116f240e694878b517\"\u003e\u003ccode\u003ec686acd\u003c/code\u003e\u003c/a\u003e v8.4.1 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/ba71353abbd8a6a5ee891faea755026cf960ead2\"\u003e\u003ccode\u003eba71353\u003c/code\u003e\u003c/a\u003e test: bump timeout in flakey skipFailedRequests test (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/dd4c8944d4a739e819306c8dde57852eac8540e0\"\u003e\u003ccode\u003edd4c894\u003c/code\u003e\u003c/a\u003e feat: allow usage of custom logger (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/616\"\u003e#616\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/2bb343cd078c311e8bc7f48b31b9047cf17f3ece\"\u003e\u003ccode\u003e2bb343c\u003c/code\u003e\u003c/a\u003e resolve Jest timeout for server-based tests (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/compare/v8.2.1...v8.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for express-rate-limit since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ip-address` from 10.0.1 to 10.2.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/beaugunderson/ip-address/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flatted` from 3.3.3 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7\"\u003e\u003ccode\u003e3bf0909\u003c/code\u003e\u003c/a\u003e 3.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802\"\u003e\u003ccode\u003e885ddcc\u003c/code\u003e\u003c/a\u003e fix CWE-1321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3\"\u003e\u003ccode\u003e0bdba70\u003c/code\u003e\u003c/a\u003e added flatted-view to the benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20\"\u003e\u003ccode\u003e2a02dce\u003c/code\u003e\u003c/a\u003e 3.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416\"\u003e\u003ccode\u003efba4e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/WebReflection/flatted/issues/89\"\u003e#89\u003c/a\u003e from WebReflection/python-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7\"\u003e\u003ccode\u003e5fe8648\u003c/code\u003e\u003c/a\u003e added \u0026quot;when in Rome\u0026quot; also a test for PHP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0\"\u003e\u003ccode\u003e53517ad\u003c/code\u003e\u003c/a\u003e some minor improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f\"\u003e\u003ccode\u003eb3e2a0c\u003c/code\u003e\u003c/a\u003e Fixing recursion issue in Python too\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad\"\u003e\u003ccode\u003ec4b46db\u003c/code\u003e\u003c/a\u003e Add SECURITY.md for security policy and reporting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988\"\u003e\u003ccode\u003ef86d071\u003c/code\u003e\u003c/a\u003e Create dependabot.yml for version updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/WebReflection/flatted/compare/v3.3.3...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hono` from 4.11.9 to 4.12.18\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/hono/releases\"\u003ehono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.12.18\u003c/h2\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cp\u003eThis release includes fixes for the following security issues:\u003c/p\u003e\n\u003ch3\u003eCache Middleware ignores Vary: Authorization / Vary: Cookie leading to cross-user cache leakage\u003c/h3\u003e\n\u003cp\u003eAffects: Cache Middleware. Fixes missing cache-skip handling for \u003ccode\u003eVary: Authorization\u003c/code\u003e and \u003ccode\u003eVary: Cookie\u003c/code\u003e, where a response cached for one authenticated user could be served to other users. GHSA-p77w-8qqv-26rm\u003c/p\u003e\n\u003ch3\u003eCSS Declaration Injection via Style Object Values in JSX SSR\u003c/h3\u003e\n\u003cp\u003eAffects: hono/jsx. Fixes a missing CSS-context escape for \u003ccode\u003estyle\u003c/code\u003e object values and property names, where untrusted input could inject additional CSS declarations. The impact is limited to CSS and does not allow JavaScript execution. GHSA-qp7p-654g-cw7p\u003c/p\u003e\n\u003ch3\u003eImproper validation of NumericDate claims (exp, nbf, iat) in JWT verify()\u003c/h3\u003e\n\u003cp\u003eAffects: \u003ccode\u003ehono/utils/jwt\u003c/code\u003e. Fixes improper validation of \u003ccode\u003eexp\u003c/code\u003e, \u003ccode\u003enbf\u003c/code\u003e, and \u003ccode\u003eiat\u003c/code\u003e claims, where falsy, non-finite, or non-numeric values could silently bypass time-based checks instead of being rejected per RFC 7519. GHSA-hm8q-7f3q-5f36\u003c/p\u003e\n\u003chr /\u003e\n\u003cp\u003eUsers who use the JWT helper, hono/jsx, or the Cache middleware are strongly encouraged to upgrade to this version.\u003c/p\u003e\n\u003ch2\u003ev4.12.17\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(jsx): normalize SVG attributes on the \u003c!-- raw HTML omitted --\u003e root element by \u003ca href=\"https://github.com/kfly8\"\u003e\u003ccode\u003e@​kfly8\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4893\"\u003ehonojs/hono#4893\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(ssg): add \u003ccode\u003eatom+xml\u003c/code\u003e and \u003ccode\u003erss+xml\u003c/code\u003e to \u003ccode\u003edefaultExtensionMap\u003c/code\u003e by \u003ca href=\"https://github.com/yuintei\"\u003e\u003ccode\u003e@​yuintei\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4899\"\u003ehonojs/hono#4899\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(cors): make origin optional in CORSOptions by \u003ca href=\"https://github.com/truffle-dev\"\u003e\u003ccode\u003e@​truffle-dev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4905\"\u003ehonojs/hono#4905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(types): propagate middleware response types to app.on overloads by \u003ca href=\"https://github.com/T4ko0522\"\u003e\u003ccode\u003e@​T4ko0522\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4906\"\u003ehonojs/hono#4906\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kfly8\"\u003e\u003ccode\u003e@​kfly8\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4893\"\u003ehonojs/hono#4893\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truffle-dev\"\u003e\u003ccode\u003e@​truffle-dev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4905\"\u003ehonojs/hono#4905\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/hono/compare/v4.12.16...v4.12.17\"\u003ehttps://github.com/honojs/hono/compare/v4.12.16...v4.12.17\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.12.16\u003c/h2\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cp\u003eThis release includes fixes for the following security issues:\u003c/p\u003e\n\u003ch3\u003eUnvalidated JSX Tag Names in hono/jsx May Allow HTML Injection\u003c/h3\u003e\n\u003cp\u003eAffects: hono/jsx. Fixes missing validation of JSX tag names when using \u003ccode\u003ejsx()\u003c/code\u003e or \u003ccode\u003ecreateElement()\u003c/code\u003e, which could allow HTML injection if untrusted input is used as the tag name. GHSA-69xw-7hcm-h432\u003c/p\u003e\n\u003ch3\u003ebodyLimit() can be bypassed for chunked / unknown-length requests\u003c/h3\u003e\n\u003cp\u003eAffects: Body Limit Middleware. Fixes late enforcement for request bodies without a reliable Content-Length (e.g. chunked requests), where oversized requests could reach handlers and return successful responses before being rejected. GHSA-9vqf-7f2p-gf9v\u003c/p\u003e\n\u003ch2\u003ev4.12.15\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(jwt): support single-line PEM keys by \u003ca href=\"https://github.com/hiendv\"\u003e\u003ccode\u003e@​hiendv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4889\"\u003ehonojs/hono#4889\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/f10dee89ced5956b73c1cdc416d6bc0fd54d63b7\"\u003e\u003ccode\u003ef10dee8\u003c/code\u003e\u003c/a\u003e 4.12.18\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/a5bd9ebead279ed9d0239ecbd854f629edfc0e57\"\u003e\u003ccode\u003ea5bd9eb\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/58d3d3ad5656e007ed99da1b73865975952de5e9\"\u003e\u003ccode\u003e58d3d3a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/568c2ecc1dd556894fad4dfa4a7ba499db6dba9c\"\u003e\u003ccode\u003e568c2ec\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/ff2b3d31df1be35f7d597a95dd3369402b6e87f2\"\u003e\u003ccode\u003eff2b3d3\u003c/code\u003e\u003c/a\u003e 4.12.17\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/52aaaf9714b06303ce5caa655b1d80675be687e9\"\u003e\u003ccode\u003e52aaaf9\u003c/code\u003e\u003c/a\u003e fix(types): propagate middleware response types to app.on overloads (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4906\"\u003e#4906\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/76d5589e9b0569f4e74ec37e8dd6979455f70dfa\"\u003e\u003ccode\u003e76d5589\u003c/code\u003e\u003c/a\u003e fix(cors): make origin optional in CORSOptions (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4905\"\u003e#4905\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/8f027e5574e91e3c7f263a728656e3888559e51a\"\u003e\u003ccode\u003e8f027e5\u003c/code\u003e\u003c/a\u003e fix(ssg): add \u003ccode\u003eatom+xml\u003c/code\u003e and \u003ccode\u003erss+xml\u003c/code\u003e to \u003ccode\u003edefaultExtensionMap\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4899\"\u003e#4899\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/bfba97ca7ea3d4541a3419f1749e5a1a3e8f1727\"\u003e\u003ccode\u003ebfba97c\u003c/code\u003e\u003c/a\u003e fix(jsx): normalize SVG attributes on the \u0026lt;svg\u0026gt; root element (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4893\"\u003e#4893\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/90d4182aabd328e2ec6af3f25ec62ddc574ad8cb\"\u003e\u003ccode\u003e90d4182\u003c/code\u003e\u003c/a\u003e 4.12.16\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/honojs/hono/compare/v4.11.9...v4.12.18\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/packag...\n\n_Description has been truncated_","html_url":"https://github.com/helton-godoy/automaker/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/helton-godoy%2Fautomaker/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"}},{"old_version":"1.1.1","new_version":"1.5.4","update_type":"minor","path":null,"pr_created_at":"2026-05-06T02:11:37.000Z","version_change":"1.1.1 → 1.5.4","issue":{"uuid":"4388264081","node_id":"PR_kwDORI6nbc7YmzCv","number":69,"state":"closed","title":"Bump the npm_and_yarn group across 16 directories with 7 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-06T05:11:59.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-06T02:11:37.000Z","updated_at":"2026-05-06T05:12:01.000Z","time_to_close":10822,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":7,"packages":[{"name":"dompurify","old_version":"3.3.0","new_version":"3.4.2","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"uuid","old_version":"11.1.0","new_version":"11.1.1","repository_url":"https://github.com/uuidjs/uuid"},{"name":"postcss","old_version":"8.4.38","new_version":"8.5.10","repository_url":"https://github.com/postcss/postcss"},{"name":"postcss","old_version":"8.5.6","new_version":"8.5.10","repository_url":"https://github.com/postcss/postcss"},{"name":"postcss","old_version":"8.4.21","new_version":"8.5.10","repository_url":"https://github.com/postcss/postcss"},{"name":"vm2","old_version":"3.9.19","new_version":"3.11.2","repository_url":"https://github.com/patriksimek/vm2"},{"name":"postcss","old_version":"8.4.47","new_version":"8.5.14","repository_url":"https://github.com/postcss/postcss"},{"name":"seroval","old_version":"1.1.1","new_version":"1.5.4","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"dompurify","old_version":"3.3.0","new_version":"3.4.2","repository_url":"https://github.com/cure53/DOMPurify"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 2 updates in the /apps/vibe-coding-platform directory: [dompurify](https://github.com/cure53/DOMPurify) and [uuid](https://github.com/uuidjs/uuid).\nBumps the npm_and_yarn group with 1 update in the /edge-middleware/feature-flag-hypertune directory: [postcss](https://github.com/postcss/postcss).\nBumps the npm_and_yarn group with 1 update in the /framework-boilerplates/hydrogen directory: [postcss](https://github.com/postcss/postcss).\nBumps the npm_and_yarn group with 2 updates in the /framework-boilerplates/hydrogen-2 directory: [postcss](https://github.com/postcss/postcss) and [vm2](https://github.com/patriksimek/vm2).\nBumps the npm_and_yarn group with 2 updates in the /framework-boilerplates/solidstart-1 directory: [postcss](https://github.com/postcss/postcss) and [seroval](https://github.com/lxsmnsyc/seroval).\nBumps the npm_and_yarn group with 3 updates in the /python/vibe-coding-ide/frontend directory: [dompurify](https://github.com/cure53/DOMPurify), [postcss](https://github.com/postcss/postcss) and [uuid](https://github.com/uuidjs/uuid).\nBumps the npm_and_yarn group with 2 updates in the /solutions/auth-with-ory directory: [postcss](https://github.com/postcss/postcss) and [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /solutions/aws-dynamodb directory: [uuid](https://github.com/uuidjs/uuid).\nBumps the npm_and_yarn group with 1 update in the /solutions/aws-neptune-analytics directory: [postcss](https://github.com/postcss/postcss).\nBumps the npm_and_yarn group with 2 updates in the /solutions/aws-s3-image-upload directory: [uuid](https://github.com/uuidjs/uuid) and [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /solutions/slackbot directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /solutions/testing directory: [postcss](https://github.com/postcss/postcss).\nBumps the npm_and_yarn group with 1 update in the /solutions/web3-authentication directory: [postcss](https://github.com/postcss/postcss).\nBumps the npm_and_yarn group with 1 update in the /starter/cms-payload directory: [i18next-http-middleware](https://github.com/i18next/i18next-http-middleware).\nBumps the npm_and_yarn group with 1 update in the /starter/cms-sanity-graphql-fragments directory: [dompurify](https://github.com/cure53/DOMPurify).\nBumps the npm_and_yarn group with 2 updates in the /starter/personalization-builder-io directory: [postcss](https://github.com/postcss/postcss) and [vm2](https://github.com/patriksimek/vm2).\n\nUpdates `dompurify` from 3.3.0 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cure53/DOMPurify/releases\"\u003edompurify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDOMPurify 3.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with URI validation on attributes allowed via \u003ccode\u003eADD_ATTR\u003c/code\u003e callback, thanks \u003ca href=\"https://github.com/nelstrom\"\u003e\u003ccode\u003e@​nelstrom\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with source maps referring to non-existing files, thanks \u003ca href=\"https://github.com/cmdcolin\"\u003e\u003ccode\u003e@​cmdcolin\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, release signing, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with on-handler stripping for HTML-spec-reserved custom element names (\u003ccode\u003efont-face\u003c/code\u003e, \u003ccode\u003ecolor-profile\u003c/code\u003e, \u003ccode\u003emissing-glyph\u003c/code\u003e, \u003ccode\u003efont-face-src\u003c/code\u003e, \u003ccode\u003efont-face-uri\u003c/code\u003e, \u003ccode\u003efont-face-format\u003c/code\u003e, \u003ccode\u003efont-face-name\u003c/code\u003e) under permissive \u003ccode\u003eCUSTOM_ELEMENT_HANDLING\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFixed a case-sensitivity gap in the \u003ccode\u003eannotation-xml\u003c/code\u003e check that allowed mixed-case variants to bypass the basic-custom-element exclusion in XHTML mode\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003eSANITIZE_NAMED_PROPS\u003c/code\u003e repeatedly prefixing already-prefixed \u003ccode\u003eid\u003c/code\u003e and \u003ccode\u003ename\u003c/code\u003e values on subsequent sanitization\u003c/li\u003e\n\u003cli\u003eFixed the \u003ccode\u003eIN_PLACE\u003c/code\u003e root-node check to explicitly guard against non-string \u003ccode\u003enodeName\u003c/code\u003e (DOM-clobbering robustness)\u003c/li\u003e\n\u003cli\u003eRemoved a duplicate \u003ccode\u003eslot\u003c/code\u003e entry from the default HTML attribute allow-list\u003c/li\u003e\n\u003cli\u003eStrengthened the fast-check fuzz harness with explicit XSS invariants, an expanded seed-payload corpus, an additional idempotence property for \u003ccode\u003eSANITIZE_NAMED_PROPS\u003c/code\u003e, and a negative-control assertion ensuring the invariants actually fire\u003c/li\u003e\n\u003cli\u003eAdded regression and pinning tests covering the above fixes and two accepted-behavior contracts (\u003ccode\u003eSAFE_FOR_TEMPLATES\u003c/code\u003e greedy scrub, hook-added attribute handling)\u003c/li\u003e\n\u003cli\u003eExtended CodeQL analysis to run on \u003ccode\u003e3.x\u003c/code\u003e and \u003ccode\u003e2.x\u003c/code\u003e maintenance branches\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eMost relevant changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a problem with \u003ccode\u003eFORBID_TAGS\u003c/code\u003e not winning over \u003ccode\u003eADD_TAGS\u003c/code\u003e, thanks \u003ca href=\"https://github.com/kodareef5\"\u003e\u003ccode\u003e@​kodareef5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed several minor problems and typos regarding MathML attributes, thanks \u003ca href=\"https://github.com/DavidOliver\"\u003e\u003ccode\u003e@​DavidOliver\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003eADD_ATTR\u003c/code\u003e/\u003ccode\u003eADD_TAGS\u003c/code\u003e function leaking into subsequent array-based calls, thanks \u003ca href=\"https://github.com/1Jesper1\"\u003e\u003ccode\u003e@​1Jesper1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a missing \u003ccode\u003eSAFE_FOR_TEMPLATES\u003c/code\u003e scrub in \u003ccode\u003eRETURN_DOM\u003c/code\u003e path, thanks \u003ca href=\"https://github.com/bencalif\"\u003e\u003ccode\u003e@​bencalif\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a prototype pollution via \u003ccode\u003eCUSTOM_ELEMENT_HANDLING\u003c/code\u003e, thanks \u003ca href=\"https://github.com/trace37labs\"\u003e\u003ccode\u003e@​trace37labs\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eADD_TAGS\u003c/code\u003e function form bypassing \u003ccode\u003eFORBID_TAGS\u003c/code\u003e, thanks \u003ca href=\"https://github.com/eddieran\"\u003e\u003ccode\u003e@​eddieran\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eADD_ATTR\u003c/code\u003e predicates skipping URI validation, thanks \u003ca href=\"https://github.com/christos-eth\"\u003e\u003ccode\u003e@​christos-eth\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eUSE_PROFILES\u003c/code\u003e prototype pollution, thanks \u003ca href=\"https://github.com/christos-eth\"\u003e\u003ccode\u003e@​christos-eth\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue leading to possible mXSS via Re-Contextualization, thanks \u003ca href=\"https://github.com/researchatfluidattacks\"\u003e\u003ccode\u003e@​researchatfluidattacks\u003c/code\u003e\u003c/a\u003e and others\u003c/li\u003e\n\u003cli\u003eFixed an issue with closing tags leading to possible mXSS, thanks \u003ca href=\"https://github.com/frevadiscor\"\u003e\u003ccode\u003e@​frevadiscor\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a problem with the type dentition patcher after Node version bump\u003c/li\u003e\n\u003cli\u003eFixed freezing BS runs by reducing the tested browsers array\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003cli\u003eAdded needed files for OpenSSF scorecard checks\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003ePublished Advisories are here:\u003c/strong\u003e\n\u003ca href=\"https://github.com/cure53/DOMPurify/security/advisories?state=published\"\u003ehttps://github.com/cure53/DOMPurify/security/advisories?state=published\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eDOMPurify 3.3.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an engine requirement for Node 20 which caused hiccups, thanks \u003ca href=\"https://github.com/Rotzbua\"\u003e\u003ccode\u003e@​Rotzbua\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.3.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a possible bypass caused by jsdom's faulty raw-text tag parsing, thanks multiple reporters\u003c/li\u003e\n\u003cli\u003eFixed a prototype pollution issue when working with custom elements, thanks \u003ca href=\"https://github.com/christos-eth\"\u003e\u003ccode\u003e@​christos-eth\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a lenient config parsing in \u003ccode\u003e_isValidAttribute\u003c/code\u003e, thanks \u003ca href=\"https://github.com/christos-eth\"\u003e\u003ccode\u003e@​christos-eth\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped and removed several dependencies, thanks \u003ca href=\"https://github.com/Rotzbua\"\u003e\u003ccode\u003e@​Rotzbua\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the test suite after bumping dependencies, thanks \u003ca href=\"https://github.com/Rotzbua\"\u003e\u003ccode\u003e@​Rotzbua\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated \u003ccode\u003eADD_FORBID_CONTENTS\u003c/code\u003e setting to extend default list, thanks \u003ca href=\"https://github.com/MariusRumpf\"\u003e\u003ccode\u003e@​MariusRumpf\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated the ESM import syntax to be more correct, thanks \u003ca href=\"https://github.com/binhpv\"\u003e\u003ccode\u003e@​binhpv\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/6f67fd396a7b8c64294343999fe607ca1f5299c0\"\u003e\u003ccode\u003e6f67fd3\u003c/code\u003e\u003c/a\u003e Sync/3.4.2 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1322\"\u003e#1322\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5b0cdbbf52331e854c0a2de875b1a3790ecec2b8\"\u003e\u003ccode\u003e5b0cdbb\u003c/code\u003e\u003c/a\u003e chore: merge main into 3.x for 3.4.1 release (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1301\"\u003e#1301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/09f59115a311469de5b625225760593e551f080a\"\u003e\u003ccode\u003e09f5911\u003c/code\u003e\u003c/a\u003e test: added three more browsers to test setup (OSX, mobile)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5b16e0b892e82b1779d62b9928b43c4c4ff290b9\"\u003e\u003ccode\u003e5b16e0b\u003c/code\u003e\u003c/a\u003e Getting 3.x branch ready for 3.4.0 release (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1250\"\u003e#1250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/8bcbf73ae7eb56e7b4f1300b66cf543342c7ee27\"\u003e\u003ccode\u003e8bcbf73\u003c/code\u003e\u003c/a\u003e chore: Preparing 3.3.3 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5faddd60af7b4d612f32a0c6b44432b77c8c490c\"\u003e\u003ccode\u003e5faddd6\u003c/code\u003e\u003c/a\u003e fix: engine requirement (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1210\"\u003e#1210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/0f91e3add5c028bc4110c513b0c2571b284c35af\"\u003e\u003ccode\u003e0f91e3a\u003c/code\u003e\u003c/a\u003e Update README.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/d5ff1a8c605df1df998c2e7df2c4c8ac762b0dea\"\u003e\u003ccode\u003ed5ff1a8\u003c/code\u003e\u003c/a\u003e Merge branch 'main' of github.com:cure53/DOMPurify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/c3efd489010366e755de9d65fd741888fd8b7462\"\u003e\u003ccode\u003ec3efd48\u003c/code\u003e\u003c/a\u003e fix: moved back from jsdom 28 to jsdom 20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/988b888108c8df911ef37e68d0e26c85ad90e885\"\u003e\u003ccode\u003e988b888\u003c/code\u003e\u003c/a\u003e fix: moved back from jsdom 28 to jsdom 20\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cure53/DOMPurify/compare/3.3.0...3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uuid` from 11.1.0 to 11.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.1.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v11.1.1\"\u003e11.1.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport GHSA-w5hq-g745-h8pq fix (\u003ca href=\"https://github.com/uuidjs/uuid/commit/32389c887c9e75f90442ee4cc95bbab0c4e8346e\"\u003e32389c8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/v11.1.1/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v11.1.1\"\u003e11.1.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport GHSA-w5hq-g745-h8pq fix (\u003ca href=\"https://github.com/uuidjs/uuid/commit/32389c887c9e75f90442ee4cc95bbab0c4e8346e\"\u003e32389c8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7269a96c12a55a745bd4a7812c01cfd385ec6c46\"\u003e\u003ccode\u003e7269a96\u003c/code\u003e\u003c/a\u003e chore(11.x): release 11.1.1 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/949\"\u003e#949\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/32389c887c9e75f90442ee4cc95bbab0c4e8346e\"\u003e\u003ccode\u003e32389c8\u003c/code\u003e\u003c/a\u003e fix: backport GHSA-w5hq-g745-h8pq fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/2799f71d0065ddc3c056f5b0812d1d941eaab2f5\"\u003e\u003ccode\u003e2799f71\u003c/code\u003e\u003c/a\u003e chore: update workflow\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v11.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postcss` from 8.4.38 to 8.5.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/releases\"\u003epostcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003ePostCSS 8.5 brought API to work better with non-CSS sources like HTML, Vue.js/Svelte sources or CSS-in-JS.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e during \u003ca href=\"https://redirect.github.com/postcss/postcss/issues/1995\"\u003ehis work\u003c/a\u003e on \u003ca href=\"https://stylelint.io\"\u003eStylelint\u003c/a\u003e added \u003ccode\u003eInput#document\u003c/code\u003e in additional to \u003ccode\u003eInput#css\u003c/code\u003e.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eroot.source.input.document //=\u0026gt; \u0026quot;\u0026lt;p\u0026gt;Hello\u0026lt;/p\u0026gt;\r\n                           //    \u0026lt;style\u0026gt;\r\n                           //    p {\r\n                           //      color: green;\r\n                           //    }\r\n                           //    \u0026lt;/style\u0026gt;\u0026quot;\r\nroot.source.input.css      //=\u0026gt; \u0026quot;p {\r\n                           //      color: green;\r\n                           //    }\u0026quot;\r\n\u003cp\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/blob/main/CHANGELOG.md\"\u003epostcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eInput#document\u003c/code\u003e for sources like CSS-in-JS or HTML (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.4.49\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed custom syntax without \u003ccode\u003esource.offset\u003c/code\u003e (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/33b9790263dc1562a46ce45d9532bd63e95b7986\"\u003e\u003ccode\u003e33b9790\u003c/code\u003e\u003c/a\u003e Release 8.5.10 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/536c79e4b01e58a3a56b09c3c0cf2323f4b9a28b\"\u003e\u003ccode\u003e536c79e\u003c/code\u003e\u003c/a\u003e Escape \u0026lt;/style\u0026gt; in CSS output (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2074\"\u003e#2074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/afa96b2a139ce625c4d27973313479c7c85f39d4\"\u003e\u003ccode\u003eafa96b2\u003c/code\u003e\u003c/a\u003e Update dependencies (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2073\"\u003e#2073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/effe88bb87cabdc1876e02adbdd30f392f19f40d\"\u003e\u003ccode\u003eeffe88b\u003c/code\u003e\u003c/a\u003e Typo (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/3ee79a2c4a11e41d52db50b444eebe38299495ad\"\u003e\u003ccode\u003e3ee79a2\u003c/code\u003e\u003c/a\u003e Thread model (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2071\"\u003e#2071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/2e0683daca4dc2919211b03774f6b2d137136c01\"\u003e\u003ccode\u003e2e0683d\u003c/code\u003e\u003c/a\u003e Create incident response docs (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/fe88ac29c06b7b218be32994cdc6ca1525bdf2c9\"\u003e\u003ccode\u003efe88ac2\u003c/code\u003e\u003c/a\u003e Release 8.5.9 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/c551632496b87ab3f1965bfda5dc386b6c71963e\"\u003e\u003ccode\u003ec551632\u003c/code\u003e\u003c/a\u003e Avoid RegExp when we can use simple JS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/89a6b744060eb8dee743351c785a9fbe37d4525a\"\u003e\u003ccode\u003e89a6b74\u003c/code\u003e\u003c/a\u003e Move SECURITY.txt for docs folder to keep GitHub page cleaner\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/6ceb8a46af9f9de821faee98f861bdf84617347b\"\u003e\u003ccode\u003e6ceb8a4\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/postcss/postcss/compare/8.4.38...8.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postcss` from 8.5.6 to 8.5.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/releases\"\u003epostcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003ePostCSS 8.5 brought API to work better with non-CSS sources like HTML, Vue.js/Svelte sources or CSS-in-JS.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e during \u003ca href=\"https://redirect.github.com/postcss/postcss/issues/1995\"\u003ehis work\u003c/a\u003e on \u003ca href=\"https://stylelint.io\"\u003eStylelint\u003c/a\u003e added \u003ccode\u003eInput#document\u003c/code\u003e in additional to \u003ccode\u003eInput#css\u003c/code\u003e.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eroot.source.input.document //=\u0026gt; \u0026quot;\u0026lt;p\u0026gt;Hello\u0026lt;/p\u0026gt;\r\n                           //    \u0026lt;style\u0026gt;\r\n                           //    p {\r\n                           //      color: green;\r\n                           //    }\r\n                           //    \u0026lt;/style\u0026gt;\u0026quot;\r\nroot.source.input.css      //=\u0026gt; \u0026quot;p {\r\n                           //      color: green;\r\n                           //    }\u0026quot;\r\n\u003cp\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/blob/main/CHANGELOG.md\"\u003epostcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eInput#document\u003c/code\u003e for sources like CSS-in-JS or HTML (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.4.49\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed custom syntax without \u003ccode\u003esource.offset\u003c/code\u003e (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/33b9790263dc1562a46ce45d9532bd63e95b7986\"\u003e\u003ccode\u003e33b9790\u003c/code\u003e\u003c/a\u003e Release 8.5.10 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/536c79e4b01e58a3a56b09c3c0cf2323f4b9a28b\"\u003e\u003ccode\u003e536c79e\u003c/code\u003e\u003c/a\u003e Escape \u0026lt;/style\u0026gt; in CSS output (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2074\"\u003e#2074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/afa96b2a139ce625c4d27973313479c7c85f39d4\"\u003e\u003ccode\u003eafa96b2\u003c/code\u003e\u003c/a\u003e Update dependencies (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2073\"\u003e#2073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/effe88bb87cabdc1876e02adbdd30f392f19f40d\"\u003e\u003ccode\u003eeffe88b\u003c/code\u003e\u003c/a\u003e Typo (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/3ee79a2c4a11e41d52db50b444eebe38299495ad\"\u003e\u003ccode\u003e3ee79a2\u003c/code\u003e\u003c/a\u003e Thread model (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2071\"\u003e#2071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/2e0683daca4dc2919211b03774f6b2d137136c01\"\u003e\u003ccode\u003e2e0683d\u003c/code\u003e\u003c/a\u003e Create incident response docs (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/fe88ac29c06b7b218be32994cdc6ca1525bdf2c9\"\u003e\u003ccode\u003efe88ac2\u003c/code\u003e\u003c/a\u003e Release 8.5.9 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/c551632496b87ab3f1965bfda5dc386b6c71963e\"\u003e\u003ccode\u003ec551632\u003c/code\u003e\u003c/a\u003e Avoid RegExp when we can use simple JS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/89a6b744060eb8dee743351c785a9fbe37d4525a\"\u003e\u003ccode\u003e89a6b74\u003c/code\u003e\u003c/a\u003e Move SECURITY.txt for docs folder to keep GitHub page cleaner\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/6ceb8a46af9f9de821faee98f861bdf84617347b\"\u003e\u003ccode\u003e6ceb8a4\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/postcss/postcss/compare/8.4.38...8.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postcss` from 8.4.21 to 8.5.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/releases\"\u003epostcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003ePostCSS 8.5 brought API to work better with non-CSS sources like HTML, Vue.js/Svelte sources or CSS-in-JS.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e during \u003ca href=\"https://redirect.github.com/postcss/postcss/issues/1995\"\u003ehis work\u003c/a\u003e on \u003ca href=\"https://stylelint.io\"\u003eStylelint\u003c/a\u003e added \u003ccode\u003eInput#document\u003c/code\u003e in additional to \u003ccode\u003eInput#css\u003c/code\u003e.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eroot.source.input.document //=\u0026gt; \u0026quot;\u0026lt;p\u0026gt;Hello\u0026lt;/p\u0026gt;\r\n                           //    \u0026lt;style\u0026gt;\r\n                           //    p {\r\n                           //      color: green;\r\n                           //    }\r\n                           //    \u0026lt;/style\u0026gt;\u0026quot;\r\nroot.source.input.css      //=\u0026gt; \u0026quot;p {\r\n                           //      color: green;\r\n                           //    }\u0026quot;\r\n\u003cp\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/blob/main/CHANGELOG.md\"\u003epostcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eInput#document\u003c/code\u003e for sources like CSS-in-JS or HTML (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.4.49\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed custom syntax without \u003ccode\u003esource.offset\u003c/code\u003e (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/33b9790263dc1562a46ce45d9532bd63e95b7986\"\u003e\u003ccode\u003e33b9790\u003c/code\u003e\u003c/a\u003e Release 8.5.10 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/536c79e4b01e58a3a56b09c3c0cf2323f4b9a28b\"\u003e\u003ccode\u003e536c79e\u003c/code\u003e\u003c/a\u003e Escape \u0026lt;/style\u0026gt; in CSS output (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2074\"\u003e#2074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/afa96b2a139ce625c4d27973313479c7c85f39d4\"\u003e\u003ccode\u003eafa96b2\u003c/code\u003e\u003c/a\u003e Update dependencies (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2073\"\u003e#2073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/effe88bb87cabdc1876e02adbdd30f392f19f40d\"\u003e\u003ccode\u003eeffe88b\u003c/code\u003e\u003c/a\u003e Typo (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/3ee79a2c4a11e41d52db50b444eebe38299495ad\"\u003e\u003ccode\u003e3ee79a2\u003c/code\u003e\u003c/a\u003e Thread model (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2071\"\u003e#2071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/2e0683daca4dc2919211b03774f6b2d137136c01\"\u003e\u003ccode\u003e2e0683d\u003c/code\u003e\u003c/a\u003e Create incident response docs (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/fe88ac29c06b7b218be32994cdc6ca1525bdf2c9\"\u003e\u003ccode\u003efe88ac2\u003c/code\u003e\u003c/a\u003e Release 8.5.9 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/c551632496b87ab3f1965bfda5dc386b6c71963e\"\u003e\u003ccode\u003ec551632\u003c/code\u003e\u003c/a\u003e Avoid RegExp when we can use simple JS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/89a6b744060eb8dee743351c785a9fbe37d4525a\"\u003e\u003ccode\u003e89a6b74\u003c/code\u003e\u003c/a\u003e Move SECURITY.txt for docs folder to keep GitHub page cleaner\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/6ceb8a46af9f9de821faee98f861bdf84617347b\"\u003e\u003ccode\u003e6ceb8a4\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/postcss/postcss/compare/8.4.38...8.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vm2` from 3.9.19 to 3.11.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/patriksimek/vm2/releases\"\u003evm2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.11.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eSecurity fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-9vg3-4rfj-wgcm\u003c/strong\u003e — Sandbox-realm null-proto write-through via \u003ccode\u003ebridge.from()\u003c/code\u003e set trap (RCE)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-2cm2-m3w5-gp2f\u003c/strong\u003e — Internal state reachable via computed-key access on \u003ccode\u003eglobalThis\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-9qj6-qjgg-37qq\u003c/strong\u003e — Bridge saved-state leak via sandbox-installed \u003ccode\u003eArray.prototype[N]\u003c/code\u003e setter (RCE)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/blob/main/docs/ATTACKS.md\"\u003e\u003ccode\u003edocs/ATTACKS.md\u003c/code\u003e\u003c/a\u003e updated through Category 28, plus a new Defense Invariant\u003cbr /\u003e\n(\u0026quot;Bridge-internal containers must not invoke sandbox code\u0026quot;).\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/patriksimek/vm2/compare/v3.11.1...v3.11.2\"\u003ehttps://github.com/patriksimek/vm2/compare/v3.11.1...v3.11.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.11.1\u003c/h2\u003e\n\u003cp\u003eSingle advisory closed plus prominent documentation of an existing escape hatch. Patch release — no API changes for valid configurations.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eEmbedders running untrusted code with \u003ccode\u003enesting: true\u003c/code\u003e should read the new README section.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eSecurity fix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-8hg8-63c5-gwmx\u003c/strong\u003e — \u003ccode\u003enesting: true\u003c/code\u003e bypassed \u003ccode\u003erequire: false\u003c/code\u003e, allowing sandbox-to-host RCE via inner NodeVM construction. The contradictory option pair \u003ccode\u003e{ nesting: true, require: false }\u003c/code\u003e now throws \u003ccode\u003eVMError\u003c/code\u003e at \u003ccode\u003enew NodeVM(...)\u003c/code\u003e time citing the advisory. Same shape as the GHSA-cp6g eager FileSystem-contract probe — surface contradictory configuration at the API surface, not silently produce an unsandboxed sandbox.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNew README section \u003cstrong\u003e\u003ca href=\"https://github.com/patriksimek/vm2#5-nesting-true-is-an-escape-hatch\"\u003e\u0026quot;\u003ccode\u003enesting: true\u003c/code\u003e is an escape hatch\u0026quot;\u003c/a\u003e\u003c/strong\u003e under Hardening recommendations. Spells out the inner-VM independence: a nested VM's \u003ccode\u003erequire\u003c/code\u003e config is chosen by the sandbox code that constructs it, not constrained by the outer VM. \u003cstrong\u003eDo not enable \u003ccode\u003enesting: true\u003c/code\u003e for untrusted code.\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eJSDoc on the \u003ccode\u003enesting\u003c/code\u003e option (\u003ccode\u003elib/nodevm.js\u003c/code\u003e) upgraded to match.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/blob/main/docs/ATTACKS.md\"\u003e\u003ccode\u003edocs/ATTACKS.md\u003c/code\u003e\u003c/a\u003e gains \u003ca href=\"https://github.com/patriksimek/vm2/blob/main/docs/ATTACKS.md#attack-category-25-nodevm-nesting-true--require-false-configuration-trap\"\u003eCategory 25\u003c/a\u003e documenting the configuration trap, plus a matching row in the \u0026quot;How The Bridge Defends\u0026quot; table.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eUpgrade Notes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eIf you set \u003ccode\u003e{ nesting: true, require: false }\u003c/code\u003e\u003c/strong\u003e anywhere in your codebase, \u003ccode\u003enew NodeVM(...)\u003c/code\u003e now throws. Either drop \u003ccode\u003enesting: true\u003c/code\u003e (if you wanted deny-all), or replace \u003ccode\u003erequire: false\u003c/code\u003e with an explicit \u003ccode\u003erequire\u003c/code\u003e config (e.g. \u003ccode\u003erequire: { builtin: [] }\u003c/code\u003e) to acknowledge that vm2 will be requireable. The error message is actionable and links to the README section.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNo other configurations are affected.\u003c/strong\u003e Bare \u003ccode\u003enew NodeVM({ nesting: true })\u003c/code\u003e continues to work as documented; this is the documented escape hatch and is not closed by this patch (out of scope — would change \u003ccode\u003enesting: true\u003c/code\u003e semantics substantially).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat This Fix Does NOT Close\u003c/h2\u003e\n\u003cp\u003e\u003ccode\u003enesting: true\u003c/code\u003e itself remains an escape hatch for any non-trivial \u003ccode\u003erequire\u003c/code\u003e config. The fix closes the \u003cstrong\u003especific contradictory pair\u003c/strong\u003e flagged by the advisory; the broader recommendation is in the new README section: do not enable \u003ccode\u003enesting: true\u003c/code\u003e when running untrusted code. Constraint propagation from outer to inner NodeVM (where the outer's \u003ccode\u003erequire\u003c/code\u003e config would constrain inner construction) was considered and deferred — it would change the documented semantics of \u003ccode\u003enesting: true\u003c/code\u003e and is a major-version-shaped change.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/patriksimek/vm2/compare/v3.11.0...v3.11.1\"\u003ehttps://github.com/patriksimek/vm2/compare/v3.11.0...v3.11.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.11.0\u003c/h2\u003e\n\u003cp\u003eCoordinated security release closing 13 advisories, plus a new \u003ccode\u003ebufferAllocLimit\u003c/code\u003e option and a \u003ccode\u003erealpath()\u003c/code\u003e method on the FileSystem adapter contract. Minor version bump because of the new public option and the FileSystem contract addition; no incompatible changes to the existing public API surface.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eEmbedders running untrusted code should upgrade.\u003c/strong\u003e Several of the advisories close full sandbox-escape RCE primitives.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/patriksimek/vm2/blob/main/CHANGELOG.md\"\u003evm2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.11.2]\u003c/h2\u003e\n\u003cp\u003eThree advisories closed. Patch release — no API changes.\u003c/p\u003e\n\u003ch3\u003eSecurity fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-2cm2-m3w5-gp2f\u003c/strong\u003e — Internal state reachable via computed property access on \u003ccode\u003eglobalThis\u003c/code\u003e. The previous fix (GHSA-wp5r-2gw5-m7q7) tightened the transformer's identifier-rejection but left \u003ccode\u003eglobalThis['VM2_INTERNAL_STATE_DO_NOT_USE_OR_PROGRAM_WILL_FAIL']\u003c/code\u003e and every reflective probe of the global object (bracket access, \u003ccode\u003eReflect.get\u003c/code\u003e, \u003ccode\u003eObject.getOwnPropertyDescriptor\u003c/code\u003e, \u003ccode\u003eObject.getOwnPropertyNames\u003c/code\u003e enumeration) returning the live state object — the transformer is a syntactic gate and cannot see through dynamic property keys. Structural fix: the bootstrap script (\u003ccode\u003evm.js\u003c/code\u003e's setupSandboxScript source) now declares \u003ccode\u003elet VM2_INTERNAL_STATE_DO_NOT_USE_OR_PROGRAM_WILL_FAIL\u003c/code\u003e at the script's top level, which lands the binding in the context's \u003ccode\u003e[[GlobalLexicalEnvironment]]\u003c/code\u003e — reachable as a bare identifier from every script (so transformer-emitted catch handlers still resolve), but absent from \u003ccode\u003eglobalThis\u003c/code\u003e's own-property table (so every computed-key probe returns \u003ccode\u003eundefined\u003c/code\u003e). The \u003ccode\u003edefineProperty\u003c/code\u003e install in \u003ccode\u003esetup-sandbox.js\u003c/code\u003e is removed entirely; the bootstrap IIFE assigns into the outer \u003ccode\u003elet\u003c/code\u003e instead. Supersedes GHSA-wp5r-2gw5-m7q7's identifier-only mitigation by closing the entire computed-key class. ATTACKS.md Category 27.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-9vg3-4rfj-wgcm\u003c/strong\u003e — Sandbox breakout via null-proto throw / \u003ccode\u003ehandleException\u003c/code\u003e. The post-GHSA-mpf8 hardening switched \u003ccode\u003ehandleException\u003c/code\u003e and \u003ccode\u003eglobalPromise.prototype.then\u003c/code\u003e onFulfilled to wrap caught/resolved values with \u003ccode\u003ebridge.from()\u003c/code\u003e for \u0026quot;symmetry\u0026quot;. \u003ccode\u003efrom()\u003c/code\u003e builds a sandbox-side proxy whose target the bridge treats as host-realm; calling it on a sandbox-realm null-proto value (\u003ccode\u003e{__proto__: null}\u003c/code\u003e thrown or \u003ccode\u003ePromise.resolve\u003c/code\u003e-d by sandbox JS) produced a proxy whose \u003ccode\u003eset\u003c/code\u003e trap unwrapped sandbox proxies of host references (e.g. \u003ccode\u003eBuffer.prototype.inspect\u003c/code\u003e) back to their raw host originals and stored them on the underlying sandbox object — readable via the original sandbox reference and pivot to host \u003ccode\u003eFunction\u003c/code\u003e constructor → RCE. Three callsites in \u003ccode\u003elib/setup-sandbox.js\u003c/code\u003e reverted to \u003ccode\u003eensureThis()\u003c/code\u003e semantics; the host-Promise rejection sanitizer composes \u003ccode\u003efrom()\u003c/code\u003e outside \u003ccode\u003ehandleException\u003c/code\u003e so the GHSA-mpf8 invariant (host null-proto rejection values must reach sandbox callbacks bridge-wrapped) is preserved. ATTACKS.md Category 26.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-9qj6-qjgg-37qq\u003c/strong\u003e — sandbox breakout via the species-defense helper \u003ccode\u003eneutralizeArraySpeciesBatch\u003c/code\u003e. The helper appended saved-state records to a fresh \u003ccode\u003e[]\u003c/code\u003e literal that — being allocated by the sandbox-side bridge closure — inherited sandbox \u003ccode\u003eArray.prototype\u003c/code\u003e. A sandbox-installed setter on \u003ccode\u003eArray.prototype[N]\u003c/code\u003e therefore captured the next \u003ccode\u003esaved[saved.length] = c\u003c/code\u003e write and exposed \u003ccode\u003ec.arr\u003c/code\u003e (a host-realm proxy) directly to attacker code, leading to host \u003ccode\u003eFunction\u003c/code\u003e extraction and RCE. Fixed in \u003ccode\u003elib/bridge.js\u003c/code\u003e by writing every saved-state entry through \u003ccode\u003ethisReflectDefineProperty\u003c/code\u003e so the appended slot is an own data property and no \u003ccode\u003eArray.prototype[N]\u003c/code\u003e setter is ever invoked while the bridge holds raw saved state. ATTACKS.md gains a new Defense Invariant (\u0026quot;Bridge-internal containers must not invoke sandbox code\u0026quot;) codifying the cross-cutting principle.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.11.1]\u003c/h2\u003e\n\u003cp\u003eSingle advisory closed plus prominent documentation of an existing escape hatch. Patch release — no API changes for valid configurations.\u003c/p\u003e\n\u003ch3\u003eSecurity fix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-8hg8-63c5-gwmx\u003c/strong\u003e — \u003ccode\u003enesting: true\u003c/code\u003e bypassed \u003ccode\u003erequire: false\u003c/code\u003e, allowing sandbox-to-host RCE via inner NodeVM construction. The contradictory option pair \u003ccode\u003e{ nesting: true, require: false }\u003c/code\u003e now throws \u003ccode\u003eVMError\u003c/code\u003e at \u003ccode\u003enew NodeVM(...)\u003c/code\u003e time citing the advisory. Same shape as the GHSA-cp6g eager FileSystem-contract probe — surface contradictory configuration at the API surface, not silently produce an unsandboxed sandbox. ATTACKS.md Category 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eNew README section \u003cstrong\u003e\u0026quot;\u003ccode\u003enesting: true\u003c/code\u003e is an escape hatch\u0026quot;\u003c/strong\u003e under Hardening recommendations. Explains that \u003ccode\u003enesting: true\u003c/code\u003e lets sandbox code \u003ccode\u003erequire('vm2')\u003c/code\u003e and construct nested NodeVMs whose \u003ccode\u003erequire\u003c/code\u003e config is chosen by the sandbox (not constrained by the outer config — by design of nesting). \u003cstrong\u003eDo not enable \u003ccode\u003enesting: true\u003c/code\u003e for untrusted code.\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eJSDoc on the \u003ccode\u003enesting\u003c/code\u003e option (\u003ccode\u003elib/nodevm.js\u003c/code\u003e) upgraded to spell out the escape-hatch semantics and the GHSA-8hg8 contradictory-pair rejection.\u003c/li\u003e\n\u003cli\u003eATTACKS.md gains Category 25 documenting the configuration trap and a matching row in the \u0026quot;How The Bridge Defends\u0026quot; table.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eUpgrade notes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eIf you set \u003ccode\u003e{ nesting: true, require: false }\u003c/code\u003e\u003c/strong\u003e anywhere in your codebase, \u003ccode\u003enew NodeVM(...)\u003c/code\u003e now throws. Either drop \u003ccode\u003enesting: true\u003c/code\u003e (if you wanted deny-all), or replace \u003ccode\u003erequire: false\u003c/code\u003e with an explicit \u003ccode\u003erequire\u003c/code\u003e config (e.g. \u003ccode\u003erequire: { builtin: [] }\u003c/code\u003e) to acknowledge that vm2 will be requireable. The error message is actionable and links to the README section.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNo other configurations are affected.\u003c/strong\u003e Bare \u003ccode\u003enew NodeVM({ nesting: true })\u003c/code\u003e continues to work as documented; this is the documented escape hatch and is not closed by this patch (out of scope — would change \u003ccode\u003enesting: true\u003c/code\u003e semantics substantially).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eWhat this fix does NOT close\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003enesting: true\u003c/code\u003e itself remains an escape hatch for any non-trivial \u003ccode\u003erequire\u003c/code\u003e config. The fix closes the \u003cstrong\u003especific contradictory pair\u003c/strong\u003e flagged by the advisory; the broader recommendation is in the new README section: do not enable \u003ccode\u003enesting: true\u003c/code\u003e when running untrusted code. Constraint propagation from outer to inner NodeVM (where the outer's \u003ccode\u003erequire\u003c/code\u003e config would constrain inner construction) was considered and deferred — it would change the documented semantics of \u003ccode\u003enesting: true\u003c/code\u003e and is a major-version-shaped change.\u003c/p\u003e\n\u003ch2\u003e[3.11.0]\u003c/h2\u003e\n\u003cp\u003eCoordinated security release closing 13 advisories, plus a new \u003ccode\u003ebufferAllocLimit\u003c/code\u003e option and a \u003ccode\u003erealpath()\u003c/code\u003e method on the FileSystem adapter contract. Minor version bump because of the new public option and the FileSystem contract addition; no incompatible changes to the existing public API surface. Embedders running untrusted code in memory-constrained environments should review the new \u003ccode\u003ebufferAllocLimit\u003c/code\u003e option and the README's \u003ca href=\"https://github.com/patriksimek/vm2/blob/main/README.md#hardening-recommendations\"\u003eHardening recommendations\u003c/a\u003e section.\u003c/p\u003e\n\u003ch3\u003eUpgrade notes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCustom \u003ccode\u003efs\u003c/code\u003e adapters with \u003ccode\u003erequire.root\u003c/code\u003e\u003c/strong\u003e must implement \u003ccode\u003erealpathSync\u003c/code\u003e (or \u003ccode\u003erealpath()\u003c/code\u003e on a fully custom \u003ccode\u003eFileSystem\u003c/code\u003e class). Without it, \u003ccode\u003enew NodeVM({require: {root, fs: customAdapter}})\u003c/code\u003e now throws a \u003ccode\u003eVMError\u003c/code\u003e at construction, citing GHSA-cp6g-6699-wx9c. The eager probe converts what was previously silent deny-by-default at every later \u003ccode\u003erequire()\u003c/code\u003e into a single, clearly-labelled construction-time error. Default \u003ccode\u003efs\u003c/code\u003e users are unaffected — \u003ccode\u003eDefaultFileSystem\u003c/code\u003e and \u003ccode\u003eVMFileSystem\u003c/code\u003e ship \u003ccode\u003erealpath()\u003c/code\u003e out of the box.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEmbedders running untrusted async code\u003c/strong\u003e should install a host-side \u003ccode\u003eunhandledRejection\u003c/code\u003e handler. The GHSA-hw58 fix closes synchronous executor throws but cannot reach async-function / async-generator / \u003ccode\u003eawait using\u003c/code\u003e rejection paths (V8 creates rejection promises via the realm's intrinsic \u003ccode\u003ePromise\u003c/code\u003e). See README's Hardening recommendations and ATTACKS.md Category 22.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEmbedders running untrusted code in memory-constrained environments\u003c/strong\u003e should opt into a finite \u003ccode\u003ebufferAllocLimit\u003c/code\u003e (e.g. \u003ccode\u003e32 * 1024 * 1024\u003c/code\u003e) as part of layered DoS defense. Default remains \u003ccode\u003eInfinity\u003c/code\u003e for backwards compatibility.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSecurity fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-grj5-jjm8-h35p\u003c/strong\u003e — Array species self-return sandbox escape. Bridge \u003ccode\u003eapply\u003c/code\u003e and \u003ccode\u003econstruct\u003c/code\u003e traps now neutralise host-array \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eSymbol.species\u003c/code\u003e before every host call (and restore in a \u003ccode\u003efinally\u003c/code\u003e block). Direct write, \u003ccode\u003eObject.assign\u003c/code\u003e, non-configurable defineProperty, and prototype-level constructor variants all blocked.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-v37h-5mfm-c47c\u003c/strong\u003e — Handler reconstruction via \u003ccode\u003eutil.inspect\u003c/code\u003e leak. Three-layer defense: closure-scoped construction token, \u003ccode\u003egetHandlerObject\u003c/code\u003e WeakMap guard, and \u003ccode\u003e.constructor\u003c/code\u003e sentinel rebind on every handler-class prototype (including \u003ccode\u003eBufferHandler\u003c/code\u003e).\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-qcp4-v2jj-fjx8\u003c/strong\u003e — Trap method on leaked handler with forged target. New \u003ccode\u003ehandlerToTarget\u003c/code\u003e WeakMap pairs every handler with its canonical proxy target at construction; \u003ccode\u003evalidateHandlerTarget(this, target)\u003c/code\u003e at the entry of every trap method rejects forged-\u003ccode\u003ethis\u003c/code\u003e and forged-\u003ccode\u003etarget\u003c/code\u003e invocations with \u003ccode\u003eVMError(OPNA)\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-47x8-96vw-5wg6\u003c/strong\u003e — Cross-realm symbol extraction from host objects. Two-layer defense: dangerous cross-realm symbols (\u003ccode\u003enodejs.util.inspect.custom\u003c/code\u003e, \u003ccode\u003enodejs.rejection\u003c/code\u003e, \u003ccode\u003enodejs.util.promisify.custom\u003c/code\u003e) are filtered at the bridge boundary; structural identity collapse pre-populates the bridge identity caches for every built-in intrinsic prototype + constructor pair so prototype walks land on sandbox primordials.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGHSA-55hx-c926-fr95\u003c/strong\u003e — Promise structural-leak / SuppressedError / AggregateError sanitisation. \u003ccode\u003ehandleException\u003c/code\u003e now recurses into \u003ccode\u003eAggregateError.errors[]\u003c/code\u003e (in addition to \u003ccode\u003eSuppressedError.error\u003c/code\u003e/\u003ccode\u003e.suppressed\u003c/code\u003e); the bridge-level \u003ccode\u003eapply\u003c/code\u003e-trap recognises calls to host \u003ccode\u003ePromise.prototype.{then,catch,finally}\u003c/code\u003e by cached identity and pipes every sandbox callback through the same sanitiser.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/7a552e89e88bf34e0c3a33916aa7900efd9fd2f4\"\u003e\u003ccode\u003e7a552e8\u003c/code\u003e\u003c/a\u003e chore: bump to 3.11.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/ca195f0178989d6f59eafb7af965806f829e20f7\"\u003e\u003ccode\u003eca195f0\u003c/code\u003e\u003c/a\u003e fix(GHSA-9qj6-qjgg-37qq): bridge saved-state leak via Array.prototype[N] setter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/99d410bb7e0d607c56e68b420720a586dc0dd300\"\u003e\u003ccode\u003e99d410b\u003c/code\u003e\u003c/a\u003e fix(GHSA-2cm2-m3w5-gp2f): bind internal state in GlobalLexicalEnvironment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/c33c2bb19a822847f4e01d8d87b28dd5b2c86b3e\"\u003e\u003ccode\u003ec33c2bb\u003c/code\u003e\u003c/a\u003e fix(GHSA-9vg3-4rfj-wgcm): null-proto throw write-through via bridge from()\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/46cbbdde4e19b743974c942278080231004146ca\"\u003e\u003ccode\u003e46cbbdd\u003c/code\u003e\u003c/a\u003e fix(GHSA-8hg8-63c5-gwmx): reject contradictory { nesting: true, require: fals...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/fc0da548e63e96944b62f9b489d272d77a9d7f32\"\u003e\u003ccode\u003efc0da54\u003c/code\u003e\u003c/a\u003e fix: enhance CallSite path leak tests for Node 14+ and Node 16+ compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/fca270df73b64a88e2f9ce71ac17663b6eaf814e\"\u003e\u003ccode\u003efca270d\u003c/code\u003e\u003c/a\u003e fix: ensure compatibility with Node 8 by replacing recursive mkdir with expli...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/5cc3037848f9ebd693c53c02cb136ce25c31abb7\"\u003e\u003ccode\u003e5cc3037\u003c/code\u003e\u003c/a\u003e fix: update test pipeline\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/4e9fa062edd597ed9cd82c0cd96d7f9c78552d01\"\u003e\u003ccode\u003e4e9fa06\u003c/code\u003e\u003c/a\u003e chore: update mocha\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patriksimek/vm2/commit/865439d257f550ccf6ac8d153862944d66d026cf\"\u003e\u003ccode\u003e865439d\u003c/code\u003e\u003c/a\u003e chore: bump to 3.11.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/patriksimek/vm2/compare/3.9.19...v3.11.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for vm2 since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postcss` from 8.4.47 to 8.5.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/releases\"\u003epostcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003ePostCSS 8.5 brought API to work better with non-CSS sources like HTML, Vue.js/Svelte sources or CSS-in-JS.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e during \u003ca href=\"https://redirect.github.com/postcss/postcss/issues/1995\"\u003ehis work\u003c/a\u003e on \u003ca href=\"https://stylelint.io\"\u003eStylelint\u003c/a\u003e added \u003ccode\u003eInput#document\u003c/code\u003e in additional to \u003ccode\u003eInput#css\u003c/code\u003e.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eroot.source.input.document //=\u0026gt; \u0026quot;\u0026lt;p\u0026gt;Hello\u0026lt;/p\u0026gt;\r\n                           //    \u0026lt;style\u0026gt;\r\n                           //    p {\r\n                           //      color: green;\r\n                           //    }\r\n                           //    \u0026lt;/style\u0026gt;\u0026quot;\r\nroot.source.input.css      //=\u0026gt; \u0026quot;p {\r\n                           //      color: green;\r\n                           //    }\u0026quot;\r\n\u003cp\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/blob/main/CHANGELOG.md\"\u003epostcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eInput#document\u003c/code\u003e for sources like CSS-in-JS or HTML (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.4.49\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed custom syntax without \u003ccode\u003esource.offset\u003c/code\u003e (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/33b9790263dc1562a46ce45d9532bd63e95b7986\"\u003e\u003ccode\u003e33b9790\u003c/code\u003e\u003c/a\u003e Release 8.5.10 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/536c79e4b01e58a3a56b09c3c0cf2323f4b9a28b\"\u003e\u003ccode\u003e536c79e\u003c/code\u003e\u003c/a\u003e Escape \u0026lt;/style\u0026gt; in CSS output (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2074\"\u003e#2074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/afa96b2a139ce625c4d27973313479c7c85f39d4\"\u003e\u003ccode\u003eafa96b2\u003c/code\u003e\u003c/a\u003e Update dependencies (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2073\"\u003e#2073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/effe88bb87cabdc1876e02adbdd30f392f19f40d\"\u003e\u003ccode\u003eeffe88b\u003c/code\u003e\u003c/a\u003e Typo (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/3ee79a2c4a11e41d52db50b444eebe38299495ad\"\u003e\u003ccode\u003e3ee79a2\u003c/code\u003e\u003c/a\u003e Thread model (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2071\"\u003e#2071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/2e0683daca4dc2919211b03774f6b2d137136c01\"\u003e\u003ccode\u003e2e0683d\u003c/code\u003e\u003c/a\u003e Create incident response docs (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/fe88ac29c06b7b218be32994cdc6ca1525bdf2c9\"\u003e\u003ccode\u003efe88ac2\u003c/code\u003e\u003c/a\u003e Release 8.5.9 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/c551632496b87ab3f1965bfda5dc386b6c71963e\"\u003e\u003ccode\u003ec551632\u003c/code\u003e\u003c/a\u003e Avoid RegExp when we can use simple JS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/89a6b744060eb8dee743351c785a9fbe37d4525a\"\u003e\u003ccode\u003e89a6b74\u003c/code\u003e\u003c/a\u003e Move SECURITY.txt for docs folder to keep GitHub page cleaner\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/6ceb8a46af9f9de821faee98f861bdf84617347b\"\u003e\u003ccode\u003e6ceb8a4\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/postcss/postcss/compare/8.4.38...8.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `seroval` from 1.1.1 to 1.5.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lxsmnsyc/seroval/releases\"\u003eseroval's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove \u003ccode\u003eAbortSignal\u003c/code\u003e to \u003ccode\u003eseroval-plugins/web\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003eThis was an implementation mistake in 1.2.0, \u003ccode\u003eAbortSignal\u003c/code\u003e is a web standard.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexpose \u003ccode\u003eonParse\u003c/code\u003e, \u003ccode\u003epushPendingState\u003c/code\u003e, \u003ccode\u003epopPendingState\u003c/code\u003e and \u003ccode\u003eparseWithError\u003c/code\u003e in Plugin API.\u003c/li\u003e\n\u003cli\u003eRework serialized Promise format\n\u003cul\u003e\n\u003cli\u003eInstead of assigning resolver methods to a Promise, seroval will now keep track of an object that contains those methods and instead will reference that object when resolving in a streaming format.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003estatus\u003c/code\u003e and \u003ccode\u003evalue\u003c/code\u003e is now replaced with \u003ccode\u003es\u003c/code\u003e (0, 1, 2 as pending, success, failure) and \u003ccode\u003ev\u003c/code\u003e respectively.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eFix support for invalid Dates.\n\u003cul\u003e\n\u003cli\u003eTurns out, \u003ccode\u003enew Date(NaN)\u003c/code\u003e is a thing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAbortSignal\u003c/code\u003e to serializable values\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lxsmnsyc/seroval/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dompurify` from 3.3.0 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cure53/DOMPurify/releases\"\u003edompurify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDOMPurify 3.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with URI validation on attributes allowed via \u003ccode\u003eADD_ATTR\u003c/code\u003e callback, thanks \u003ca href=\"https://github.com/nelstrom\"\u003e\u003ccode\u003e@​nelstrom\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with source maps referring to non-existing files, thanks \u003ca href=\"https://github.com/cmdcolin\"\u003e\u003ccode\u003e@​cmdcolin\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, release signing, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with on-handler stripping for HTML-spec-reserved custom element names (\u003ccode\u003efont-face\u003c/code\u003e, \u003ccode\u003ecolor-profile\u003c/code\u003e, \u003ccode\u003emissing-glyph\u003c/code\u003e, \u003ccode\u003efont-face-src\u003c/code\u003e, \u003ccode\u003efont-face-uri\u003c/code\u003e, \u003ccode\u003efont-face-format\u003c/code\u003e, \u003ccode\u003efont-face-name\u003c/code\u003e) under permissive \u003ccode\u003eCUSTOM_ELEMENT_HANDLING\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFixed a case-sensitivity gap in the \u003ccode\u003eannotation-xml\u003c/code\u003e check that allowed mixed-case variants to bypass the basic-custom-element exclusion in XHTML mode\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003eSANITIZE_NAMED_PROPS\u003c/code\u003e repeatedly prefixing already-prefixed \u003ccode\u003eid\u003c/code\u003e and \u003ccode\u003ename\u003c/code\u003e values on subsequent sanitization\u003c/li\u003e\n\u003cli\u003eFixed the \u003ccode\u003eIN_PLACE\u003c/code\u003e root-node check to explicitly guard against non-string \u003ccode\u003enodeName\u003c/code\u003e (DOM-clobbering robustness)\u003c/li\u003e\n\u003cli\u003eRemoved a duplicate \u003ccode\u003eslot\u003c/code\u003e entry from the default HTML attribute allow-list\u003c/li\u003e\n\u003cli\u003eStrengthened the fast-check fuzz harness with explicit XSS invariants, an expanded seed-payload corpus, an additional idempotence property for \u003ccode\u003eSANITIZE_NAMED_PROPS\u003c/code\u003e, and a negative-control assertion ensuring the invariants actually fire\u003c/li\u003e\n\u003cli\u003eAdded regression and pinning tests covering the above fixes and two accepted-behavior contracts (\u003ccode\u003eSAFE_FOR_TEMPLATES\u003c/code\u003e greedy scrub, hook-added attribute handling)\u003c/li\u003e\n\u003cli\u003eExtended CodeQL analysis to run on \u003ccode\u003e3.x\u003c/code\u003e and \u003ccode\u003e2.x\u003c/code\u003e maintenance branches\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eMost relevant changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a problem with \u003ccode\u003eFORBID_TAGS\u003c/code\u003e not winning over \u003ccode\u003eADD_TAGS\u003c/code\u003e, thanks \u003ca href=\"https://github.com/kodareef5\"\u003e\u003ccode\u003e@​kodareef5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed several minor problems and typos regarding MathML attributes, thanks \u003ca href=\"https://github.com/DavidOliver\"\u003e\u003ccode\u003e@​DavidOliver\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed \u003ccode\u003eADD_ATTR\u003c/code\u003e/\u003ccode\u003eADD_TAGS\u003c/code\u003e function leaking into subsequent array-based calls, thanks \u003ca href=\"https://github.com/1Jesper1\"\u003e\u003ccode\u003e@​1Jesper1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a missing \u003ccode\u003eSAFE_FOR_TEMPLATES\u003c/code\u003e scrub in \u003ccode\u003eRETURN_DOM\u003c/code\u003e path, thanks \u003ca href=\"https://github.com/bencalif\"\u003e\u003ccode\u003e@​bencalif\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a prototype pollution via \u003ccode\u003eCUSTOM_ELEMENT_HANDLING\u003c/code\u003e, thanks \u003ca href=\"https://github.com/trace37labs\"\u003e\u003ccode\u003e@​trace37labs\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eADD_TAGS\u003c/code\u003e function form bypassing \u003ccode\u003eFORBID_TAGS\u003c/code\u003e, thanks \u003ca href=\"https://github.com/eddieran\"\u003e\u003ccode\u003e@​eddieran\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eADD_ATTR\u003c/code\u003e predicates skipping URI validation, thanks \u003ca href=\"https://github.com/christos-eth\"\u003e\u003ccode\u003e@​christos-eth\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with \u003ccode\u003eUSE_PROFILES\u003c/code\u003e prototype pollution, thanks \u003ca href=\"https://github.com/christos-eth\"\u003e\u003ccode\u003e@​christos-eth\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue leading to possible mXSS via Re-Contextualization, thanks \u003ca href=\"https://github.com/researchatfluidattacks\"\u003e\u003ccode\u003e@​researchatfluidattacks\u003c/code\u003e\u003c/a\u003e and others\u003c/li\u003e\n\u003cli\u003eFixed an issue with closing tags leading to possible mXSS, thanks \u003ca href=\"https://github.com/frevadiscor\"\u003e\u003ccode\u003e@​frevadiscor\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a problem with the type dentition patcher after Node version bump\u003c/li\u003e\n\u003cli\u003eFixed freezing BS runs by reducing the tested browsers array\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003cli\u003eAdded needed files for OpenSSF scorecard checks\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003ePubli...\n\n_Description has been truncated_","html_url":"https://github.com/Asper-Beauty-Shop/examples/pull/69","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Asper-Beauty-Shop%2Fexamples/issues/69","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/69/packages"}},{"old_version":"1.5.2","new_version":"1.5.3","update_type":"patch","path":null,"pr_created_at":"2026-05-04T15:53:16.000Z","version_change":"1.5.2 → 1.5.3","issue":{"uuid":"4377885872","node_id":"PR_kwDOKSIIAM7YE1wa","number":328,"state":"open","title":"Bump the npm group with 33 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-04T15:53:16.000Z","updated_at":"2026-05-05T04:19:59.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm","update_count":33,"packages":[{"name":"astro","old_version":"6.2.1","new_version":"6.2.2","repository_url":"https://github.com/withastro/astro"},{"name":"eslint","old_version":"10.2.1","new_version":"10.3.0","repository_url":"https://github.com/eslint/eslint"},{"name":"@rollup/rollup-android-arm-eabi","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-android-arm64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-darwin-arm64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-darwin-x64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-freebsd-arm64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-freebsd-x64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm-gnueabihf","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm-musleabihf","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm64-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm64-musl","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-loong64-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-loong64-musl","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-ppc64-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-ppc64-musl","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-riscv64-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-riscv64-musl","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-s390x-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-x64-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-x64-musl","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-openbsd-x64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-openharmony-arm64","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-arm64-msvc","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-ia32-msvc","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-x64-gnu","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-x64-msvc","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"baseline-browser-mapping","old_version":"2.10.24","new_version":"2.10.27","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"electron-to-chromium","old_version":"1.5.348","new_version":"1.5.349","repository_url":"https://github.com/Kilian/electron-to-chromium"},{"name":"rollup","old_version":"4.60.2","new_version":"4.60.3","repository_url":"https://github.com/rollup/rollup"},{"name":"seroval-plugins","old_version":"1.5.2","new_version":"1.5.3","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"seroval","old_version":"1.5.2","new_version":"1.5.3","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"zod","old_version":"4.4.1","new_version":"4.4.3","repository_url":"https://github.com/colinhacks/zod"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm group with 33 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [astro](https://github.com/withastro/astro/tree/HEAD/packages/astro) | `6.2.1` | `6.2.2` |\n| [eslint](https://github.com/eslint/eslint) | `10.2.1` | `10.3.0` |\n| [@rollup/rollup-android-arm-eabi](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-android-arm64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-darwin-x64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-freebsd-arm64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-freebsd-x64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-arm-gnueabihf](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-arm-musleabihf](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-arm64-musl](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-loong64-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-loong64-musl](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-ppc64-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-ppc64-musl](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-riscv64-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-riscv64-musl](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-s390x-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-linux-x64-musl](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-openbsd-x64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-openharmony-arm64](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-win32-arm64-msvc](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-win32-ia32-msvc](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-win32-x64-gnu](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [@rollup/rollup-win32-x64-msvc](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.10.24` | `2.10.27` |\n| [electron-to-chromium](https://github.com/Kilian/electron-to-chromium) | `1.5.348` | `1.5.349` |\n| [rollup](https://github.com/rollup/rollup) | `4.60.2` | `4.60.3` |\n| [seroval-plugins](https://github.com/lxsmnsyc/seroval) | `1.5.2` | `1.5.3` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.2` | `1.5.3` |\n| [zod](https://github.com/colinhacks/zod) | `4.4.1` | `4.4.3` |\n\nUpdates `astro` from 6.2.1 to 6.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/withastro/astro/releases\"\u003eastro's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eastro@6.2.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16292\"\u003e#16292\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/00f48ee25fdc072df93210fa2d6d24ea649d4ab1\"\u003e\u003ccode\u003e00f48ee\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/p-linnane\"\u003e\u003ccode\u003e@​p-linnane\u003c/code\u003e\u003c/a\u003e! - Fixes head metadata propagation in dev for adapters that load modules in the \u003ccode\u003eprerender\u003c/code\u003e Vite environment, such as \u003ccode\u003e@astrojs/cloudflare\u003c/code\u003e. The \u003ccode\u003eastro:head-metadata\u003c/code\u003e plugin previously only tracked the \u003ccode\u003essr\u003c/code\u003e environment, so \u003ccode\u003emaybeRenderHead()\u003c/code\u003e could fire inside an unrelated component's \u003ccode\u003e\\\u0026lt;template\u0026gt;\u003c/code\u003e element, trapping subsequent hoisted \u003ccode\u003e\u0026lt;style\u0026gt;\u003c/code\u003e blocks.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16451\"\u003e#16451\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/778865f4abe29f7dfa4009624f39e350b7735acd\"\u003e\u003ccode\u003e778865f\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/maximslo\"\u003e\u003ccode\u003e@​maximslo\u003c/code\u003e\u003c/a\u003e! - Fixes build crash when processing animated AVIF images. Sharp now gracefully passes through unsupported image formats instead of crashing during the build.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16548\"\u003e#16548\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/7214d3e134766c7324e76a0ec4c91050cf4a2a18\"\u003e\u003ccode\u003e7214d3e\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/senutpal\"\u003e\u003ccode\u003e@​senutpal\u003c/code\u003e\u003c/a\u003e! - Fixes scoped styles applying to the wrong element when \u003ccode\u003evite.css.transformer\u003c/code\u003e is set to \u003ccode\u003e'lightningcss'\u003c/code\u003e and a selector uses a nested \u003ccode\u003e\u0026amp;\u003c/code\u003e inside \u003ccode\u003e:where(...)\u003c/code\u003e, such as Tailwind v4's \u003ccode\u003espace-x-*\u003c/code\u003e, \u003ccode\u003espace-y-*\u003c/code\u003e, and \u003ccode\u003edivide-*\u003c/code\u003e utilities.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16566\"\u003e#16566\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/9ac96b406653d2993d35cd83dc5fa538b7417545\"\u003e\u003ccode\u003e9ac96b4\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/web-dev0521\"\u003e\u003ccode\u003e@​web-dev0521\u003c/code\u003e\u003c/a\u003e! - Fixes \u003ccode\u003edata-astro-prefetch=\u0026quot;tap\u0026quot;\u003c/code\u003e not triggering when clicking nested elements (e.g. \u003ccode\u003e\u0026lt;span\u0026gt;\u003c/code\u003e, \u003ccode\u003e\u0026lt;img\u0026gt;\u003c/code\u003e, \u003ccode\u003e\u0026lt;svg\u0026gt;\u003c/code\u003e) inside an anchor tag.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/15994\"\u003e#15994\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/1e70d18febca2319487c9acbd9c2e18cb961aef0\"\u003e\u003ccode\u003e1e70d18\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/ossaidqadri\"\u003e\u003ccode\u003e@​ossaidqadri\u003c/code\u003e\u003c/a\u003e! - Fix \u003ccode\u003e\u0026lt;style\u0026gt;\u003c/code\u003e compilation failure when importing Astro components via tsconfig path aliases\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16144\"\u003e#16144\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/1cd66504a63055dcbe54b5d3ec52cc220d3a82e1\"\u003e\u003ccode\u003e1cd6650\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/fkatsuhiro\"\u003e\u003ccode\u003e@​fkatsuhiro\u003c/code\u003e\u003c/a\u003e! - Fixed a regression where \u003ccode\u003e.html\u003c/code\u003e was unexpectedly stripped from dynamic route parameters on non-page routes (\u003ccode\u003e.ts\u003c/code\u003e endpoints and redirects). This caused endpoints like \u003ccode\u003e/some/[...id].ts\u003c/code\u003e returning \u003ccode\u003eid: 'file.html'\u003c/code\u003e on \u003ccode\u003egetStaticPaths\u003c/code\u003e to not serve that file because the generated route (\u003ccode\u003e/some/file.html\u003c/code\u003e) would get matched as \u003ccode\u003eid: file\u003c/code\u003e that is not part of the list returned by \u003ccode\u003egetStaticPaths\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16415\"\u003e#16415\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/559c0fd63ac8c051ee3bb634e06aadf48e8d8495\"\u003e\u003ccode\u003e559c0fd\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/0xbejaxer\"\u003e\u003ccode\u003e@​0xbejaxer\u003c/code\u003e\u003c/a\u003e! - Fix CSS traversal boundaries so pages with \u003ccode\u003eexport const partial = true\u003c/code\u003e still contribute styles when imported as components by other pages.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16516\"\u003e#16516\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/17f1867c177d99bc5fff31aa12f6c9ab35ef4581\"\u003e\u003ccode\u003e17f1867\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/fkatsuhiro\"\u003e\u003ccode\u003e@​fkatsuhiro\u003c/code\u003e\u003c/a\u003e! - Fixes an issue where the index route would return a 404 error when using a custom \u003ccode\u003ebase\u003c/code\u003e path combined with \u003ccode\u003etrailingSlash: 'never'\u003c/code\u003e. This ensures that the home page and internal rewrites are correctly matched under these configurations.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16515\"\u003e#16515\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/280ec88c0d9c75755b7616263ce516ff2122fb81\"\u003e\u003ccode\u003e280ec88\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/jp-knj\"\u003e\u003ccode\u003e@​jp-knj\u003c/code\u003e\u003c/a\u003e! - Fixes an issue where \u003ccode\u003ei18n.fallback\u003c/code\u003e pages with \u003ccode\u003efallbackType: 'rewrite'\u003c/code\u003e were emitted with empty bodies during \u003ccode\u003eastro build\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16565\"\u003e#16565\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/7959798c33c8c5e70183e1af3ab5d9b9d663e494\"\u003e\u003ccode\u003e7959798\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/enjoyandlove\"\u003e\u003ccode\u003e@​enjoyandlove\u003c/code\u003e\u003c/a\u003e! - Fixes session persistence when \u003ccode\u003esession.delete()\u003c/code\u003e is the first mutation in a request (no prior \u003ccode\u003eget\u003c/code\u003e, \u003ccode\u003eset\u003c/code\u003e, \u003ccode\u003ehas\u003c/code\u003e, or \u003ccode\u003ekeys\u003c/code\u003e). The session was marked dirty in memory, but persistence skipped the save because \u003ccode\u003e#data\u003c/code\u003e stayed \u003ccode\u003eundefined\u003c/code\u003e, so the backing store could still return the deleted key on the next request.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16527\"\u003e#16527\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/86fd80dd17cf896e5eaa185b70576d839d789978\"\u003e\u003ccode\u003e86fd80d\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/enjoyandlove\"\u003e\u003ccode\u003e@​enjoyandlove\u003c/code\u003e\u003c/a\u003e! - Prevents script deduplication state from being consumed while rendering inert \u003ccode\u003e\\\u0026lt;template\u0026gt;\u003c/code\u003e contexts.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16540\"\u003e#16540\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/e59c637fb6c589fff5b56b737bab57d7513b0559\"\u003e\u003ccode\u003ee59c637\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/ascorbic\"\u003e\u003ccode\u003e@​ascorbic\u003c/code\u003e\u003c/a\u003e! - Skips session storage reads when no session cookie is present. Previously, calling \u003ccode\u003esession.get()\u003c/code\u003e on a request without a session cookie would initialize the storage driver and make a read that was guaranteed to miss. On network-backed drivers this added latency and resource usage to every anonymous request.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16517\"\u003e#16517\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/6ab0b3c0266fe9c13638e22d40d46f2603e6031d\"\u003e\u003ccode\u003e6ab0b3c\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/adamchal\"\u003e\u003ccode\u003e@​adamchal\u003c/code\u003e\u003c/a\u003e! - Removes inline CSS for prerendered routes from the SSR manifest. The static HTML on disk already inlines those styles, and the SSR worker never renders prerendered routes, so the data was dead weight. Builds with many prerendered routes and \u003ccode\u003ebuild.inlineStylesheets: \u0026quot;always\u0026quot;\u003c/code\u003e (or \u003ccode\u003e\u0026quot;auto\u0026quot;\u003c/code\u003e with small stylesheets) will see a smaller SSR entry chunk, which reduces cold-start parse time on platforms like Cloudflare Workers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16509\"\u003e#16509\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/d3d3557c77decc59fca6f0bfbdc36ba65e420564\"\u003e\u003ccode\u003ed3d3557\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/cyphercodes\"\u003e\u003ccode\u003e@​cyphercodes\u003c/code\u003e\u003c/a\u003e! - Fix conditional named slot callbacks receiving arguments from \u003ccode\u003eAstro.slots.render()\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16236\"\u003e#16236\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/c6b068e905a1a7b6e6a0b813c2368586b70a2214\"\u003e\u003ccode\u003ec6b068e\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/fkatsuhiro\"\u003e\u003ccode\u003e@​fkatsuhiro\u003c/code\u003e\u003c/a\u003e! - Fixes the \u003ccode\u003eposition\u003c/code\u003e prop on \u003ccode\u003e\u0026lt;Image /\u0026gt;\u003c/code\u003e and \u003ccode\u003e\u0026lt;Picture /\u0026gt;\u003c/code\u003e components to correctly apply \u003ccode\u003eobject-position\u003c/code\u003e styles\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16018\"\u003e#16018\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/d14f47c46da2f50f79e9b8cfb87eaca9db8e898b\"\u003e\u003ccode\u003ed14f47c\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/felmonon\"\u003e\u003ccode\u003e@​felmonon\u003c/code\u003e\u003c/a\u003e! - Fix \u003ccode\u003edefineLiveCollection()\u003c/code\u003e so \u003ccode\u003eLiveLoader\u003c/code\u003e data types declared as interfaces are accepted.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/withastro/astro/blob/main/packages/astro/CHANGELOG.md\"\u003eastro's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e6.2.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16292\"\u003e#16292\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/00f48ee25fdc072df93210fa2d6d24ea649d4ab1\"\u003e\u003ccode\u003e00f48ee\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/p-linnane\"\u003e\u003ccode\u003e@​p-linnane\u003c/code\u003e\u003c/a\u003e! - Fixes head metadata propagation in dev for adapters that load modules in the \u003ccode\u003eprerender\u003c/code\u003e Vite environment, such as \u003ccode\u003e@astrojs/cloudflare\u003c/code\u003e. The \u003ccode\u003eastro:head-metadata\u003c/code\u003e plugin previously only tracked the \u003ccode\u003essr\u003c/code\u003e environment, so \u003ccode\u003emaybeRenderHead()\u003c/code\u003e could fire inside an unrelated component's \u003ccode\u003e\\\u0026lt;template\u0026gt;\u003c/code\u003e element, trapping subsequent hoisted \u003ccode\u003e\u0026lt;style\u0026gt;\u003c/code\u003e blocks.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16451\"\u003e#16451\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/778865f4abe29f7dfa4009624f39e350b7735acd\"\u003e\u003ccode\u003e778865f\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/maximslo\"\u003e\u003ccode\u003e@​maximslo\u003c/code\u003e\u003c/a\u003e! - Fixes build crash when processing animated AVIF images. Sharp now gracefully passes through unsupported image formats instead of crashing during the build.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16548\"\u003e#16548\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/7214d3e134766c7324e76a0ec4c91050cf4a2a18\"\u003e\u003ccode\u003e7214d3e\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/senutpal\"\u003e\u003ccode\u003e@​senutpal\u003c/code\u003e\u003c/a\u003e! - Fixes scoped styles applying to the wrong element when \u003ccode\u003evite.css.transformer\u003c/code\u003e is set to \u003ccode\u003e'lightningcss'\u003c/code\u003e and a selector uses a nested \u003ccode\u003e\u0026amp;\u003c/code\u003e inside \u003ccode\u003e:where(...)\u003c/code\u003e, such as Tailwind v4's \u003ccode\u003espace-x-*\u003c/code\u003e, \u003ccode\u003espace-y-*\u003c/code\u003e, and \u003ccode\u003edivide-*\u003c/code\u003e utilities.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16566\"\u003e#16566\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/9ac96b406653d2993d35cd83dc5fa538b7417545\"\u003e\u003ccode\u003e9ac96b4\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/web-dev0521\"\u003e\u003ccode\u003e@​web-dev0521\u003c/code\u003e\u003c/a\u003e! - Fixes \u003ccode\u003edata-astro-prefetch=\u0026quot;tap\u0026quot;\u003c/code\u003e not triggering when clicking nested elements (e.g. \u003ccode\u003e\u0026lt;span\u0026gt;\u003c/code\u003e, \u003ccode\u003e\u0026lt;img\u0026gt;\u003c/code\u003e, \u003ccode\u003e\u0026lt;svg\u0026gt;\u003c/code\u003e) inside an anchor tag.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/15994\"\u003e#15994\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/1e70d18febca2319487c9acbd9c2e18cb961aef0\"\u003e\u003ccode\u003e1e70d18\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/ossaidqadri\"\u003e\u003ccode\u003e@​ossaidqadri\u003c/code\u003e\u003c/a\u003e! - Fix \u003ccode\u003e\u0026lt;style\u0026gt;\u003c/code\u003e compilation failure when importing Astro components via tsconfig path aliases\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16144\"\u003e#16144\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/1cd66504a63055dcbe54b5d3ec52cc220d3a82e1\"\u003e\u003ccode\u003e1cd6650\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/fkatsuhiro\"\u003e\u003ccode\u003e@​fkatsuhiro\u003c/code\u003e\u003c/a\u003e! - Fixed a regression where \u003ccode\u003e.html\u003c/code\u003e was unexpectedly stripped from dynamic route parameters on non-page routes (\u003ccode\u003e.ts\u003c/code\u003e endpoints and redirects). This caused endpoints like \u003ccode\u003e/some/[...id].ts\u003c/code\u003e returning \u003ccode\u003eid: 'file.html'\u003c/code\u003e on \u003ccode\u003egetStaticPaths\u003c/code\u003e to not serve that file because the generated route (\u003ccode\u003e/some/file.html\u003c/code\u003e) would get matched as \u003ccode\u003eid: file\u003c/code\u003e that is not part of the list returned by \u003ccode\u003egetStaticPaths\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16415\"\u003e#16415\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/559c0fd63ac8c051ee3bb634e06aadf48e8d8495\"\u003e\u003ccode\u003e559c0fd\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/0xbejaxer\"\u003e\u003ccode\u003e@​0xbejaxer\u003c/code\u003e\u003c/a\u003e! - Fix CSS traversal boundaries so pages with \u003ccode\u003eexport const partial = true\u003c/code\u003e still contribute styles when imported as components by other pages.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16516\"\u003e#16516\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/17f1867c177d99bc5fff31aa12f6c9ab35ef4581\"\u003e\u003ccode\u003e17f1867\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/fkatsuhiro\"\u003e\u003ccode\u003e@​fkatsuhiro\u003c/code\u003e\u003c/a\u003e! - Fixes an issue where the index route would return a 404 error when using a custom \u003ccode\u003ebase\u003c/code\u003e path combined with \u003ccode\u003etrailingSlash: 'never'\u003c/code\u003e. This ensures that the home page and internal rewrites are correctly matched under these configurations.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16515\"\u003e#16515\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/280ec88c0d9c75755b7616263ce516ff2122fb81\"\u003e\u003ccode\u003e280ec88\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/jp-knj\"\u003e\u003ccode\u003e@​jp-knj\u003c/code\u003e\u003c/a\u003e! - Fixes an issue where \u003ccode\u003ei18n.fallback\u003c/code\u003e pages with \u003ccode\u003efallbackType: 'rewrite'\u003c/code\u003e were emitted with empty bodies during \u003ccode\u003eastro build\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16565\"\u003e#16565\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/7959798c33c8c5e70183e1af3ab5d9b9d663e494\"\u003e\u003ccode\u003e7959798\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/enjoyandlove\"\u003e\u003ccode\u003e@​enjoyandlove\u003c/code\u003e\u003c/a\u003e! - Fixes session persistence when \u003ccode\u003esession.delete()\u003c/code\u003e is the first mutation in a request (no prior \u003ccode\u003eget\u003c/code\u003e, \u003ccode\u003eset\u003c/code\u003e, \u003ccode\u003ehas\u003c/code\u003e, or \u003ccode\u003ekeys\u003c/code\u003e). The session was marked dirty in memory, but persistence skipped the save because \u003ccode\u003e#data\u003c/code\u003e stayed \u003ccode\u003eundefined\u003c/code\u003e, so the backing store could still return the deleted key on the next request.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16527\"\u003e#16527\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/86fd80dd17cf896e5eaa185b70576d839d789978\"\u003e\u003ccode\u003e86fd80d\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/enjoyandlove\"\u003e\u003ccode\u003e@​enjoyandlove\u003c/code\u003e\u003c/a\u003e! - Prevents script deduplication state from being consumed while rendering inert \u003ccode\u003e\\\u0026lt;template\u0026gt;\u003c/code\u003e contexts.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16540\"\u003e#16540\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/e59c637fb6c589fff5b56b737bab57d7513b0559\"\u003e\u003ccode\u003ee59c637\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/ascorbic\"\u003e\u003ccode\u003e@​ascorbic\u003c/code\u003e\u003c/a\u003e! - Skips session storage reads when no session cookie is present. Previously, calling \u003ccode\u003esession.get()\u003c/code\u003e on a request without a session cookie would initialize the storage driver and make a read that was guaranteed to miss. On network-backed drivers this added latency and resource usage to every anonymous request.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16517\"\u003e#16517\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/6ab0b3c0266fe9c13638e22d40d46f2603e6031d\"\u003e\u003ccode\u003e6ab0b3c\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/adamchal\"\u003e\u003ccode\u003e@​adamchal\u003c/code\u003e\u003c/a\u003e! - Removes inline CSS for prerendered routes from the SSR manifest. The static HTML on disk already inlines those styles, and the SSR worker never renders prerendered routes, so the data was dead weight. Builds with many prerendered routes and \u003ccode\u003ebuild.inlineStylesheets: \u0026quot;always\u0026quot;\u003c/code\u003e (or \u003ccode\u003e\u0026quot;auto\u0026quot;\u003c/code\u003e with small stylesheets) will see a smaller SSR entry chunk, which reduces cold-start parse time on platforms like Cloudflare Workers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16509\"\u003e#16509\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/d3d3557c77decc59fca6f0bfbdc36ba65e420564\"\u003e\u003ccode\u003ed3d3557\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/cyphercodes\"\u003e\u003ccode\u003e@​cyphercodes\u003c/code\u003e\u003c/a\u003e! - Fix conditional named slot callbacks receiving arguments from \u003ccode\u003eAstro.slots.render()\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16236\"\u003e#16236\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/c6b068e905a1a7b6e6a0b813c2368586b70a2214\"\u003e\u003ccode\u003ec6b068e\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/fkatsuhiro\"\u003e\u003ccode\u003e@​fkatsuhiro\u003c/code\u003e\u003c/a\u003e! - Fixes the \u003ccode\u003eposition\u003c/code\u003e prop on \u003ccode\u003e\u0026lt;Image /\u0026gt;\u003c/code\u003e and \u003ccode\u003e\u0026lt;Picture /\u0026gt;\u003c/code\u003e components to correctly apply \u003ccode\u003eobject-position\u003c/code\u003e styles\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/withastro/astro/pull/16018\"\u003e#16018\u003c/a\u003e \u003ca href=\"https://github.com/withastro/astro/commit/d14f47c46da2f50f79e9b8cfb87eaca9db8e898b\"\u003e\u003ccode\u003ed14f47c\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/felmonon\"\u003e\u003ccode\u003e@​felmonon\u003c/code\u003e\u003c/a\u003e! - Fix \u003ccode\u003edefineLiveCollection()\u003c/code\u003e so \u003ccode\u003eLiveLoader\u003c/code\u003e data types declared as interfaces are accepted.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/3f67b84bcfd232574a4832d4d32fcc724fdd3be5\"\u003e\u003ccode\u003e3f67b84\u003c/code\u003e\u003c/a\u003e [ci] release (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16545\"\u003e#16545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/7711e471ab8950d00f38ae1dd1acba451705dd51\"\u003e\u003ccode\u003e7711e47\u003c/code\u003e\u003c/a\u003e [ci] format\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/17f1867c177d99bc5fff31aa12f6c9ab35ef4581\"\u003e\u003ccode\u003e17f1867\u003c/code\u003e\u003c/a\u003e fix: route mismatch using trail slash never (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16516\"\u003e#16516\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/7959798c33c8c5e70183e1af3ab5d9b9d663e494\"\u003e\u003ccode\u003e7959798\u003c/code\u003e\u003c/a\u003e fix(astro): persist session delete without prior get/set (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16565\"\u003e#16565\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/9ac96b406653d2993d35cd83dc5fa538b7417545\"\u003e\u003ccode\u003e9ac96b4\u003c/code\u003e\u003c/a\u003e fix(prefetch): trigger tap strategy when clicking nested child elements (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16566\"\u003e#16566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/6ab0b3c0266fe9c13638e22d40d46f2603e6031d\"\u003e\u003ccode\u003e6ab0b3c\u003c/code\u003e\u003c/a\u003e fix(build): exclude prerendered route styles from SSR manifest (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16517\"\u003e#16517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/a595623e01a2895ab69683d89b3eeeab89981d29\"\u003e\u003ccode\u003ea595623\u003c/code\u003e\u003c/a\u003e [ci] format\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/c6b068e905a1a7b6e6a0b813c2368586b70a2214\"\u003e\u003ccode\u003ec6b068e\u003c/code\u003e\u003c/a\u003e fix : astro image position prop bug (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16236\"\u003e#16236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/9f4eee0d44cac4b9d858a063ee2a4b94a9c335f9\"\u003e\u003ccode\u003e9f4eee0\u003c/code\u003e\u003c/a\u003e Fixes @_@ not being stripped from CSS file names (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16264\"\u003e#16264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/withastro/astro/commit/7214d3e134766c7324e76a0ec4c91050cf4a2a18\"\u003e\u003ccode\u003e7214d3e\u003c/code\u003e\u003c/a\u003e fix(css): preserve scope on nested \u0026amp; with lightningcss transformer (\u003ca href=\"https://github.com/withastro/astro/tree/HEAD/packages/astro/issues/16548\"\u003e#16548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/withastro/astro/commits/astro@6.2.2/packages/astro\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `eslint` from 10.2.1 to 10.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/eslint/eslint/releases\"\u003eeslint's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev10.3.0\u003c/h2\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/379571a975f2b24d88037b9de2e72ec61d004130\"\u003e\u003ccode\u003e379571a\u003c/code\u003e\u003c/a\u003e feat: add suggestions for no-unused-private-class-members (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20773\"\u003e#20773\u003c/a\u003e) (sethamus)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/b6ae5cf07b9b51802367539cb24b245b61eaa37c\"\u003e\u003ccode\u003eb6ae5cf\u003c/code\u003e\u003c/a\u003e fix: handle unavailable require cache (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20812\"\u003e#20812\u003c/a\u003e) (Simon Podlipsky)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/6fb3685bcbe9a6f72fd7dfb9129686b6fb96b0bd\"\u003e\u003ccode\u003e6fb3685\u003c/code\u003e\u003c/a\u003e fix: rule suggestions cause continuation in class body (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20787\"\u003e#20787\u003c/a\u003e) (Milos Djermanovic)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/32cc7ab4ec653ce89da92deb5c40a9f4fc707fe5\"\u003e\u003ccode\u003e32cc7ab\u003c/code\u003e\u003c/a\u003e docs: fix typos in docs and comments (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20809\"\u003e#20809\u003c/a\u003e) (Tanuj Kanti)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/7f479376a2fa463d823ab762db6bb37ce8d2ee8f\"\u003e\u003ccode\u003e7f47937\u003c/code\u003e\u003c/a\u003e docs: Update README (GitHub Actions Bot)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/d32235ec19ceea211fa86452afa383ca05f5c2f9\"\u003e\u003ccode\u003ed32235e\u003c/code\u003e\u003c/a\u003e ci: use pnpm in \u003ccode\u003eeslint-flat-config-utils\u003c/code\u003e type integration test (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20826\"\u003e#20826\u003c/a\u003e) (Francesco Trotta)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/3ffb14ea517de750ed1181579ef844af342e4096\"\u003e\u003ccode\u003e3ffb14e\u003c/code\u003e\u003c/a\u003e chore: clean up typos in comments and JSDoc (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20821\"\u003e#20821\u003c/a\u003e) (Pixel998)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/22eb58a21cbde2fbd53a1fae99453d408672de50\"\u003e\u003ccode\u003e22eb58a\u003c/code\u003e\u003c/a\u003e chore: add missing continue-on-error to ecosystem-tests.yml (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20818\"\u003e#20818\u003c/a\u003e) (Josh Goldberg ✨)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/88bf0024cb36caebf2880516d9a1f81aa75dafe2\"\u003e\u003ccode\u003e88bf002\u003c/code\u003e\u003c/a\u003e ci: bump pnpm/action-setup from 6.0.1 to 6.0.3 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20815\"\u003e#20815\u003c/a\u003e) (dependabot[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/97c8c330beae9557ad24e19f94eebc8d08d1a722\"\u003e\u003ccode\u003e97c8c33\u003c/code\u003e\u003c/a\u003e chore: update ilshidur/action-discord action to v0.4.0 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20811\"\u003e#20811\u003c/a\u003e) (renovate[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/2f58136dd47364a4cae7054a64f7bf1e79693813\"\u003e\u003ccode\u003e2f58136\u003c/code\u003e\u003c/a\u003e chore: pin peter-evans/create-pull-request action to 5f6978f (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20810\"\u003e#20810\u003c/a\u003e) (renovate[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/77add7f1bc91ed17bba3be3289928a9146c5f5a1\"\u003e\u003ccode\u003e77add7f\u003c/code\u003e\u003c/a\u003e chore: add initial ecosystem plugin tests workflow (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/19643\"\u003e#19643\u003c/a\u003e) (Josh Goldberg ✨)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/4023b55490fae55e464fe35530ef038cdf5d79a5\"\u003e\u003ccode\u003e4023b55\u003c/code\u003e\u003c/a\u003e test: Add unit tests for SuppressionsService.prune() (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20797\"\u003e#20797\u003c/a\u003e) (kuldeep kumar)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/54080dad4f77bb39a1a843933d4ff3a2b7c175e2\"\u003e\u003ccode\u003e54080da\u003c/code\u003e\u003c/a\u003e test: add unit tests for ForkContext (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20778\"\u003e#20778\u003c/a\u003e) (kuldeep kumar)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/f0e2bcc4bf19253aaebfbd7df87824b0ca4a151f\"\u003e\u003ccode\u003ef0e2bcc\u003c/code\u003e\u003c/a\u003e test: add unit tests for SuppressionsService.suppress() method (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20765\"\u003e#20765\u003c/a\u003e) (kuldeep kumar)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/a7f0b94743a99bcdf8d07cff15ffbfa6a6c5f927\"\u003e\u003ccode\u003ea7f0b94\u003c/code\u003e\u003c/a\u003e chore: update dependency prettier to v3.8.3 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20782\"\u003e#20782\u003c/a\u003e) (renovate[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/7bf93d9e79f6dbf77242cbb9a9b8be834730fccd\"\u003e\u003ccode\u003e7bf93d9\u003c/code\u003e\u003c/a\u003e chore: update TypeScript to v6 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20677\"\u003e#20677\u003c/a\u003e) (sethamus)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/b42dd72e76e7f90e7f0be9458288d93353052adc\"\u003e\u003ccode\u003eb42dd72\u003c/code\u003e\u003c/a\u003e ci: bump pnpm/action-setup from 6.0.0 to 6.0.1 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20781\"\u003e#20781\u003c/a\u003e) (dependabot[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/2b252be80f362cca7be3326a6dbe958680fdfe9a\"\u003e\u003ccode\u003e2b252be\u003c/code\u003e\u003c/a\u003e test: add unit tests for IdGenerator (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20775\"\u003e#20775\u003c/a\u003e) (kuldeep kumar)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/78892043a36da4aa7640b59c99344b00c181048a\"\u003e\u003ccode\u003e7889204\u003c/code\u003e\u003c/a\u003e 10.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/5b69b4fce4dc407c8e960eba638b5a3409c4f1fd\"\u003e\u003ccode\u003e5b69b4f\u003c/code\u003e\u003c/a\u003e Build: changelog update for 10.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/d32235ec19ceea211fa86452afa383ca05f5c2f9\"\u003e\u003ccode\u003ed32235e\u003c/code\u003e\u003c/a\u003e ci: use pnpm in \u003ccode\u003eeslint-flat-config-utils\u003c/code\u003e type integration test (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20826\"\u003e#20826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/b6ae5cf07b9b51802367539cb24b245b61eaa37c\"\u003e\u003ccode\u003eb6ae5cf\u003c/code\u003e\u003c/a\u003e fix: handle unavailable require cache (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20812\"\u003e#20812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/3ffb14ea517de750ed1181579ef844af342e4096\"\u003e\u003ccode\u003e3ffb14e\u003c/code\u003e\u003c/a\u003e chore: clean up typos in comments and JSDoc (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20821\"\u003e#20821\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/6fb3685bcbe9a6f72fd7dfb9129686b6fb96b0bd\"\u003e\u003ccode\u003e6fb3685\u003c/code\u003e\u003c/a\u003e fix: rule suggestions cause continuation in class body (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20787\"\u003e#20787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/22eb58a21cbde2fbd53a1fae99453d408672de50\"\u003e\u003ccode\u003e22eb58a\u003c/code\u003e\u003c/a\u003e chore: add missing continue-on-error to ecosystem-tests.yml (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20818\"\u003e#20818\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/88bf0024cb36caebf2880516d9a1f81aa75dafe2\"\u003e\u003ccode\u003e88bf002\u003c/code\u003e\u003c/a\u003e ci: bump pnpm/action-setup from 6.0.1 to 6.0.3 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20815\"\u003e#20815\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/379571a975f2b24d88037b9de2e72ec61d004130\"\u003e\u003ccode\u003e379571a\u003c/code\u003e\u003c/a\u003e feat: add suggestions for no-unused-private-class-members (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20773\"\u003e#20773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eslint/eslint/commit/97c8c330beae9557ad24e19f94eebc8d08d1a722\"\u003e\u003ccode\u003e97c8c33\u003c/code\u003e\u003c/a\u003e chore: update ilshidur/action-discord action to v0.4.0 (\u003ca href=\"https://redirect.github.com/eslint/eslint/issues/20811\"\u003e#20811\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/eslint/eslint/compare/v10.2.1...v10.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-android-arm-eabi` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-android-arm-eabi's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-android-arm64` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-android-arm64's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-darwin-arm64` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-darwin-arm64's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-darwin-x64` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-darwin-x64's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-freebsd-arm64` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-freebsd-arm64's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-freebsd-x64` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-freebsd-x64's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-linux-arm-gnueabihf` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-linux-arm-gnueabihf's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-linux-arm-musleabihf` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-linux-arm-musleabihf's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://github.com/tariqrafique\"\u003e\u003ccode\u003e@​tariqrafique\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6364\"\u003e#6364\u003c/a\u003e: chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6365\"\u003e#6365\u003c/a\u003e: fix(deps): update minor/patch updates (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6366\"\u003e#6366\u003c/a\u003e: fix(deps): update swc monorepo (major) (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6367\"\u003e#6367\u003c/a\u003e: chore(deps): lock file maintenance (\u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6368\"\u003e#6368\u003c/a\u003e: docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://github.com/lumirlumir\"\u003e\u003ccode\u003e@​lumirlumir\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukastaegert\"\u003e\u003ccode\u003e@​lukastaegert\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297\"\u003e\u003ccode\u003eb47bdab\u003c/code\u003e\u003c/a\u003e 4.60.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/15c5f33083c8c6b1b2cbae548124fffbba2553bb\"\u003e\u003ccode\u003e15c5f33\u003c/code\u003e\u003c/a\u003e Add again some unneeded dev dependencies, to make some builds succeed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/12195dcebbd21f0f2d91e26720cd053526edbfe3\"\u003e\u003ccode\u003e12195dc\u003c/code\u003e\u003c/a\u003e fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not conflict (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/b74aa39a06952df77299a1057efc1a4cd06b2db0\"\u003e\u003ccode\u003eb74aa39\u003c/code\u003e\u003c/a\u003e Migrate instructions to AGENTS.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/aa5a3774a217a2abdfca8c591031e130a5e5ac72\"\u003e\u003ccode\u003eaa5a377\u003c/code\u003e\u003c/a\u003e fix(deps): update minor/patch updates (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6365\"\u003e#6365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/197e68b9d27ec38cc914183c4cbe9e57985cb36b\"\u003e\u003ccode\u003e197e68b\u003c/code\u003e\u003c/a\u003e chore(deps): update msys2/setup-msys2 digest to e989830 (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6364\"\u003e#6364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/cded70aef2932aa491a633a87be316edb0854599\"\u003e\u003ccode\u003ecded70a\u003c/code\u003e\u003c/a\u003e fix(deps): update swc monorepo (major) (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6366\"\u003e#6366\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/bb2b8a57cc2cad3c4f482869fb6ab810b4c4332d\"\u003e\u003ccode\u003ebb2b8a5\u003c/code\u003e\u003c/a\u003e docs: add missing backticks in \u003ccode\u003eplugin-development\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rollup/rollup/commit/20af1c4879d193636e6bd0295cb07860894c12e0\"\u003e\u003ccode\u003e20af1c4\u003c/code\u003e\u003c/a\u003e chore(deps): lock file maintenance (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6367\"\u003e#6367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rollup/rollup/compare/v4.60.2...v4.60.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@rollup/rollup-linux-arm64-gnu` from 4.60.2 to 4.60.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/rollup/rollup/blob/master/CHANGELOG.md\"\u003e@​rollup/rollup-linux-arm64-gnu's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.60.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003e2026-05-04\u003c/em\u003e\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure nested \u0026quot;exports\u0026quot; variables are not renamed (\u003ca href=\"https://redirect.github.com/rollup/rollup/issues/6360\"\u003e#6360\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePull Requests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/rollup/rollup/pull/6360\"\u003e#6360\u003c/a\u003e: fix: do not rename nested \u0026quot;exports\u0026quot; bindings that do not...\n\n_Description has been truncated_","html_url":"https://github.com/poad/astro-solid-example/pull/328","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/poad%2Fastro-solid-example/issues/328","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/328/packages"}},{"old_version":"1.3.2","new_version":"1.5.3","update_type":"minor","path":null,"pr_created_at":"2026-05-04T08:38:22.000Z","version_change":"1.3.2 → 1.5.3","issue":{"uuid":"4375124388","node_id":"PR_kwDOROVcZ87X7rvE","number":177,"state":"open","title":"Bump seroval from 1.3.2 to 1.5.3","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-04T08:38:22.000Z","updated_at":"2026-05-04T08:38:29.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"seroval","old_version":"1.3.2","new_version":"1.5.3","repository_url":"https://github.com/lxsmnsyc/seroval"}],"path":null,"ecosystem":"npm"},"body":"Bumps [seroval](https://github.com/lxsmnsyc/seroval) from 1.3.2 to 1.5.3.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lxsmnsyc/seroval/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=seroval\u0026package-manager=npm_and_yarn\u0026previous-version=1.3.2\u0026new-version=1.5.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Subhan-Haider/Codiner-Softwar/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Subhan-Haider/Codiner-Softwar/pull/177","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Subhan-Haider%2FCodiner-Softwar/issues/177","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/177/packages"}},{"old_version":"1.5.0","new_version":"1.5.2","update_type":"patch","path":null,"pr_created_at":"2026-05-04T02:11:20.000Z","version_change":"1.5.0 → 1.5.2","issue":{"uuid":"4373645519","node_id":"PR_kwDORhEIoc7X24Wm","number":18,"state":"closed","title":"Bump the all group with 220 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-11T01:54:02.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-04T02:11:20.000Z","updated_at":"2026-05-11T01:54:04.000Z","time_to_close":603762,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all","update_count":220,"packages":[{"name":"@hey-api/openapi-ts","old_version":"0.94.0","new_version":"0.97.1","repository_url":"https://github.com/hey-api/openapi-ts"},{"name":"@libsql/client","old_version":"0.17.0","new_version":"0.17.3","repository_url":"https://github.com/tursodatabase/libsql-client-ts"},{"name":"@lingui/core","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"@lingui/react","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"@supabase/supabase-js","old_version":"2.99.1","new_version":"2.105.1","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@tailwindcss/vite","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tanstack/react-query","old_version":"5.95.2","new_version":"5.100.9","repository_url":"https://github.com/TanStack/query"},{"name":"@tanstack/react-router","old_version":"1.166.7","new_version":"1.169.1","repository_url":"https://github.com/TanStack/router"},{"name":"@tanstack/react-virtual","old_version":"3.13.23","new_version":"3.13.24","repository_url":"https://github.com/TanStack/virtual"},{"name":"@tanstack/router-plugin","old_version":"1.166.7","new_version":"1.167.32","repository_url":"https://github.com/TanStack/router"},{"name":"@trpc/client","old_version":"11.12.0","new_version":"11.17.0","repository_url":"https://github.com/trpc/trpc"},{"name":"@trpc/react-query","old_version":"11.12.0","new_version":"11.17.0","repository_url":"https://github.com/trpc/trpc"},{"name":"@trpc/server","old_version":"11.12.0","new_version":"11.17.0","repository_url":"https://github.com/trpc/trpc"},{"name":"framer-motion","old_version":"12.35.2","new_version":"12.38.0","repository_url":"https://github.com/motiondivision/motion"},{"name":"megajs","old_version":"1.3.9","new_version":"1.3.10","repository_url":"https://github.com/qgustavor/mega"},{"name":"pixi.js","old_version":"8.17.0","new_version":"8.18.1","repository_url":"https://github.com/pixijs/pixijs"},{"name":"react","old_version":"19.2.4","new_version":"19.2.5","repository_url":"https://github.com/facebook/react"},{"name":"react-dom","old_version":"19.2.4","new_version":"19.2.5","repository_url":"https://github.com/facebook/react"},{"name":"systeminformation","old_version":"5.31.4","new_version":"5.31.5","repository_url":"https://github.com/sebhildebrandt/systeminformation"},{"name":"tailwindcss","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"yauzl","old_version":"3.2.1","new_version":"3.3.0","repository_url":"https://github.com/thejoshwolfe/yauzl"},{"name":"zod","old_version":"4.3.6","new_version":"4.4.2","repository_url":"https://github.com/colinhacks/zod"},{"name":"@eslint/js","old_version":"9.39.4","new_version":"10.0.1","repository_url":"https://github.com/eslint/eslint"},{"name":"@lingui/cli","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"@types/node","old_version":"25.4.0","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/parser","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@vitejs/plugin-react","old_version":"5.1.4","new_version":"6.0.1","repository_url":"https://github.com/vitejs/vite-plugin-react"},{"name":"dotenv","old_version":"17.3.1","new_version":"17.4.2","repository_url":"https://github.com/motdotla/dotenv"},{"name":"electron","old_version":"41.1.1","new_version":"41.5.0","repository_url":"https://github.com/electron/electron"},{"name":"eslint","old_version":"9.39.4","new_version":"10.3.0","repository_url":"https://github.com/eslint/eslint"},{"name":"eslint-plugin-react-hooks","old_version":"7.0.1","new_version":"7.1.1","repository_url":"https://github.com/facebook/react"},{"name":"globals","old_version":"17.4.0","new_version":"17.6.0","repository_url":"https://github.com/sindresorhus/globals"},{"name":"javascript-obfuscator","old_version":"5.3.0","new_version":"5.4.2","repository_url":"https://github.com/javascript-obfuscator/javascript-obfuscator"},{"name":"jsdom","old_version":"28.1.0","new_version":"29.1.1","repository_url":"https://github.com/jsdom/jsdom"},{"name":"lint-staged","old_version":"16.3.3","new_version":"16.4.0","repository_url":"https://github.com/lint-staged/lint-staged"},{"name":"prettier","old_version":"3.8.1","new_version":"3.8.3","repository_url":"https://github.com/prettier/prettier"},{"name":"terser","old_version":"5.46.0","new_version":"5.46.2","repository_url":"https://github.com/terser/terser"},{"name":"typescript","old_version":"5.9.3","new_version":"6.0.3","repository_url":"https://github.com/microsoft/TypeScript"},{"name":"typescript-eslint","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"vite","old_version":"7.3.2","new_version":"8.0.10","repository_url":"https://github.com/vitejs/vite"},{"name":"vite-plugin-electron","old_version":"0.29.0","new_version":"0.29.1","repository_url":"https://github.com/electron-vite/vite-plugin-electron"},{"name":"vitest","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@asamuzakjp/css-color","old_version":"5.0.1","new_version":"5.1.11","repository_url":"https://github.com/asamuzaK/cssColor"},{"name":"@asamuzakjp/dom-selector","old_version":"6.8.1","new_version":"7.1.1","repository_url":"https://github.com/asamuzaK/domSelector"},{"name":"@babel/compat-data","old_version":"7.29.0","new_version":"7.29.3","repository_url":"https://github.com/babel/babel"},{"name":"@babel/helpers","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/parser","old_version":"7.29.0","new_version":"7.29.3","repository_url":"https://github.com/babel/babel"},{"name":"@babel/runtime","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@csstools/css-calc","old_version":"3.1.1","new_version":"3.2.0","repository_url":"https://github.com/csstools/postcss-plugins"},{"name":"@csstools/css-color-parser","old_version":"4.0.2","new_version":"4.1.0","repository_url":"https://github.com/csstools/postcss-plugins"},{"name":"@csstools/css-syntax-patches-for-csstree","old_version":"1.0.28","new_version":"1.1.3","repository_url":"https://github.com/csstools/postcss-plugins"},{"name":"@electron/rebuild","old_version":"4.0.3","new_version":"4.0.4","repository_url":"https://github.com/electron/rebuild"},{"name":"brace-expansion","old_version":"1.1.13","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"@eslint/config-array","old_version":"0.21.2","new_version":"0.23.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"@eslint/config-helpers","old_version":"0.4.2","new_version":"0.5.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"@eslint/core","old_version":"0.17.0","new_version":"1.2.1","repository_url":"https://github.com/eslint/rewrite"},{"name":"@eslint/object-schema","old_version":"2.1.7","new_version":"3.0.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"@eslint/plugin-kit","old_version":"0.4.1","new_version":"0.7.1","repository_url":"https://github.com/eslint/rewrite"},{"name":"@exodus/bytes","old_version":"1.14.1","new_version":"1.15.0","repository_url":"https://github.com/ExodusOSS/bytes"},{"name":"@hey-api/codegen-core","old_version":"0.7.1","new_version":"0.8.1","repository_url":"https://github.com/hey-api/openapi-ts"},{"name":"@hey-api/json-schema-ref-parser","old_version":"1.3.1","new_version":"1.4.2","repository_url":"https://github.com/hey-api/openapi-ts"},{"name":"@hey-api/shared","old_version":"0.2.2","new_version":"0.4.3","repository_url":"https://github.com/hey-api/openapi-ts"},{"name":"@hey-api/types","old_version":"0.1.3","new_version":"0.1.4","repository_url":"https://github.com/hey-api/openapi-ts"},{"name":"@humanfs/core","old_version":"0.19.1","new_version":"0.19.2","repository_url":"https://github.com/humanwhocodes/humanfs"},{"name":"@humanfs/node","old_version":"0.16.7","new_version":"0.16.8","repository_url":"https://github.com/humanwhocodes/humanfs"},{"name":"@javascript-obfuscator/escodegen","old_version":"2.3.1","new_version":"2.4.1","repository_url":"https://github.com/estools/escodegen"},{"name":"@libsql/core","old_version":"0.17.0","new_version":"0.17.3","repository_url":"https://github.com/tursodatabase/libsql-client-ts"},{"name":"@libsql/darwin-arm64","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/darwin-x64","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/hrana-client","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/libsql/hrana-client-ts"},{"name":"@libsql/linux-arm-gnueabihf","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/linux-arm-musleabihf","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/linux-arm64-gnu","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/linux-arm64-musl","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/linux-x64-gnu","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/linux-x64-musl","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@libsql/win32-x64-msvc","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"@lingui/babel-plugin-extract-messages","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"@lingui/babel-plugin-lingui-macro","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"chokidar","old_version":"3.5.1","new_version":"3.6.0","repository_url":"https://github.com/paulmillr/chokidar"},{"name":"readdirp","old_version":"3.5.0","new_version":"3.6.0","repository_url":"https://github.com/paulmillr/readdirp"},{"name":"@lingui/conf","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"@lingui/format-po","old_version":"5.9.5","new_version":"6.0.1","repository_url":"https://github.com/lingui/js-lingui"},{"name":"@noble/hashes","old_version":"2.0.1","new_version":"2.2.0","repository_url":"https://github.com/paulmillr/noble-hashes"},{"name":"@rolldown/pluginutils","old_version":"1.0.0-rc.3","new_version":"1.0.0-rc.7","repository_url":"https://github.com/rolldown/rolldown"},{"name":"@supabase/auth-js","old_version":"2.99.1","new_version":"2.105.1","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@supabase/functions-js","old_version":"2.99.1","new_version":"2.105.1","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@supabase/postgrest-js","old_version":"2.99.1","new_version":"2.105.1","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@supabase/realtime-js","old_version":"2.99.1","new_version":"2.105.1","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@supabase/storage-js","old_version":"2.99.1","new_version":"2.105.1","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@tailwindcss/node","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-android-arm64","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-darwin-arm64","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-darwin-x64","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-freebsd-x64","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-linux-arm-gnueabihf","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-linux-arm64-gnu","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-linux-arm64-musl","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-linux-x64-gnu","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-linux-x64-musl","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-wasm32-wasi","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-win32-arm64-msvc","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tailwindcss/oxide-win32-x64-msvc","old_version":"4.2.1","new_version":"4.2.4","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tanstack/history","old_version":"1.161.4","new_version":"1.161.6","repository_url":"https://github.com/TanStack/router"},{"name":"@tanstack/query-core","old_version":"5.95.2","new_version":"5.100.9","repository_url":"https://github.com/TanStack/query"},{"name":"@tanstack/react-store","old_version":"0.9.1","new_version":"0.9.3","repository_url":"https://github.com/TanStack/store"},{"name":"@tanstack/router-core","old_version":"1.166.7","new_version":"1.169.1","repository_url":"https://github.com/TanStack/router"},{"name":"@tanstack/router-generator","old_version":"1.166.7","new_version":"1.166.39","repository_url":"https://github.com/TanStack/router"},{"name":"@tanstack/router-utils","old_version":"1.161.4","new_version":"1.161.7","repository_url":"https://github.com/TanStack/router"},{"name":"@tanstack/store","old_version":"0.9.1","new_version":"0.9.3","repository_url":"https://github.com/TanStack/store"},{"name":"@tanstack/virtual-core","old_version":"3.13.23","new_version":"3.14.0","repository_url":"https://github.com/TanStack/virtual"},{"name":"@tanstack/virtual-file-routes","old_version":"1.161.4","new_version":"1.161.7","repository_url":"https://github.com/TanStack/router"},{"name":"@types/debug","old_version":"4.1.12","new_version":"4.1.13","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/project-service","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/scope-manager","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/tsconfig-utils","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/type-utils","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/types","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/typescript-estree","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/utils","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/visitor-keys","old_version":"8.57.0","new_version":"8.59.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@vercel/blob","old_version":"2.3.1","new_version":"2.3.3","repository_url":"https://github.com/vercel/storage"},{"name":"undici","old_version":"6.24.1","new_version":"6.25.0","repository_url":"https://github.com/nodejs/undici"},{"name":"@vitest/expect","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@vitest/mocker","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@vitest/pretty-format","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@vitest/runner","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@vitest/snapshot","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@vitest/spy","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@vitest/utils","old_version":"4.0.18","new_version":"4.1.5","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@xmldom/xmldom","old_version":"0.8.12","new_version":"0.8.13","repository_url":"https://github.com/xmldom/xmldom"},{"name":"abbrev","old_version":"3.0.1","new_version":"4.0.0","repository_url":"https://github.com/npm/abbrev-js"},{"name":"ajv","old_version":"6.14.0","new_version":"6.15.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"axe-core","old_version":"4.11.1","new_version":"4.11.4","repository_url":"https://github.com/dequelabs/axe-core"},{"name":"b4a","old_version":"1.8.0","new_version":"1.8.1","repository_url":"https://github.com/holepunchto/b4a"},{"name":"bare-fs","old_version":"4.5.6","new_version":"4.7.1","repository_url":"https://github.com/holepunchto/bare-fs"},{"name":"bare-os","old_version":"3.8.6","new_version":"3.9.1","repository_url":"https://github.com/holepunchto/bare-os"},{"name":"bare-stream","old_version":"2.11.0","new_version":"2.13.1","repository_url":"https://github.com/holepunchto/bare-stream"},{"name":"bare-url","old_version":"2.4.0","new_version":"2.4.2","repository_url":"https://github.com/holepunchto/bare-url"},{"name":"baseline-browser-mapping","old_version":"2.10.0","new_version":"2.10.27","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"call-bind","old_version":"1.0.8","new_version":"1.0.9","repository_url":"https://github.com/ljharb/call-bind"},{"name":"caniuse-lite","old_version":"1.0.30001775","new_version":"1.0.30001791","repository_url":"https://github.com/browserslist/caniuse-lite"},{"name":"cli-cursor","old_version":"3.1.0","new_version":"5.0.0","repository_url":"https://github.com/sindresorhus/cli-cursor"},{"name":"cli-spinners","old_version":"2.9.2","new_version":"3.4.0","repository_url":"https://github.com/sindresorhus/cli-spinners"},{"name":"conf","old_version":"15.0.2","new_version":"15.1.0","repository_url":"https://github.com/sindresorhus/conf"},{"name":"cookie-es","old_version":"2.0.0","new_version":"3.1.1","repository_url":"https://github.com/unjs/cookie-es"},{"name":"whatwg-url","old_version":"5.0.0","new_version":"16.0.1","repository_url":"https://github.com/jsdom/whatwg-url"},{"name":"tr46","old_version":"0.0.3","new_version":"6.0.0","repository_url":"https://github.com/jsdom/tr46"},{"name":"webidl-conversions","old_version":"3.0.1","new_version":"8.0.1","repository_url":"https://github.com/jsdom/webidl-conversions"},{"name":"css-tree","old_version":"3.1.0","new_version":"3.2.1","repository_url":"https://github.com/csstree/csstree"},{"name":"diff","old_version":"8.0.3","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"electron-to-chromium","old_version":"1.5.302","new_version":"1.5.349","repository_url":"https://github.com/Kilian/electron-to-chromium"},{"name":"enhanced-resolve","old_version":"5.20.0","new_version":"5.21.0","repository_url":"https://github.com/webpack/enhanced-resolve"},{"name":"entities","old_version":"6.0.1","new_version":"8.0.0","repository_url":"https://github.com/fb55/entities"},{"name":"es-abstract","old_version":"1.24.1","new_version":"1.24.2","repository_url":"https://github.com/ljharb/es-abstract"},{"name":"es-iterator-helpers","old_version":"1.2.2","new_version":"1.3.2","repository_url":"https://github.com/es-shims/iterator-helpers"},{"name":"es-module-lexer","old_version":"1.7.0","new_version":"2.1.0","repository_url":"https://github.com/guybedford/es-module-lexer"},{"name":"espree","old_version":"10.4.0","new_version":"11.2.0","repository_url":"https://github.com/eslint/js"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.14.0","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"giget","old_version":"2.0.0","new_version":"3.2.0","repository_url":"https://github.com/unjs/giget"},{"name":"hasown","old_version":"2.0.2","new_version":"2.0.3","repository_url":"https://github.com/inspect-js/hasOwn"},{"name":"is-interactive","old_version":"1.0.0","new_version":"2.0.0","repository_url":"https://github.com/sindresorhus/is-interactive"},{"name":"is-unicode-supported","old_version":"0.1.0","new_version":"2.1.0","repository_url":"https://github.com/sindresorhus/is-unicode-supported"},{"name":"isbot","old_version":"5.1.35","new_version":"5.1.39","repository_url":"https://github.com/omrilotan/isbot"},{"name":"libphonenumber-js","old_version":"1.12.38","new_version":"1.12.42"},{"name":"libsql","old_version":"0.5.22","new_version":"0.5.29","repository_url":"https://github.com/tursodatabase/libsql-js"},{"name":"lightningcss","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-android-arm64","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-darwin-arm64","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-darwin-x64","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-freebsd-x64","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-linux-arm-gnueabihf","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-linux-arm64-gnu","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-linux-arm64-musl","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-linux-x64-gnu","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-linux-x64-musl","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-win32-arm64-msvc","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"lightningcss-win32-x64-msvc","old_version":"1.31.1","new_version":"1.32.0","repository_url":"https://github.com/parcel-bundler/lightningcss"},{"name":"log-symbols","old_version":"4.1.0","new_version":"7.0.1","repository_url":"https://github.com/sindresorhus/log-symbols"},{"name":"mdn-data","old_version":"2.12.2","new_version":"2.27.1","repository_url":"https://github.com/mdn/data"},{"name":"minipass","old_version":"3.3.6","new_version":"7.1.3","repository_url":"https://github.com/isaacs/minipass"},{"name":"motion-dom","old_version":"12.35.2","new_version":"12.38.0","repository_url":"https://github.com/motiondivision/motion"},{"name":"motion-utils","old_version":"12.29.2","new_version":"12.36.0","repository_url":"https://github.com/motiondivision/motion"},{"name":"nanoid","old_version":"3.3.11","new_version":"3.3.12","repository_url":"https://github.com/ai/nanoid"},{"name":"node-abi","old_version":"4.26.0","new_version":"4.29.0","repository_url":"https://github.com/electron/node-abi"},{"name":"node-gyp","old_version":"11.5.0","new_version":"12.3.0","repository_url":"https://github.com/nodejs/node-gyp"},{"name":"node-releases","old_version":"2.0.27","new_version":"2.0.38","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"nopt","old_version":"8.1.0","new_version":"9.0.0","repository_url":"https://github.com/npm/nopt"},{"name":"onetime","old_version":"5.1.2","new_version":"7.0.0","repository_url":"https://github.com/sindresorhus/onetime"},{"name":"ora","old_version":"5.4.1","new_version":"9.4.0","repository_url":"https://github.com/sindresorhus/ora"},{"name":"restore-cursor","old_version":"3.1.0","new_version":"5.1.0","repository_url":"https://github.com/sindresorhus/restore-cursor"},{"name":"parse5","old_version":"8.0.0","new_version":"8.0.1","repository_url":"https://github.com/inikulin/parse5"},{"name":"pkg-types","old_version":"2.3.0","new_version":"2.3.1","repository_url":"https://github.com/unjs/pkg-types"},{"name":"postcss","old_version":"8.5.6","new_version":"8.5.13","repository_url":"https://github.com/postcss/postcss"},{"name":"proc-log","old_version":"5.0.0","new_version":"6.1.0","repository_url":"https://github.com/npm/proc-log"},{"name":"rc9","old_version":"2.1.2","new_version":"3.0.1","repository_url":"https://github.com/unjs/rc9"},{"name":"safe-array-concat","old_version":"1.1.3","new_version":"1.1.4","repository_url":"https://github.com/ljharb/safe-array-concat"},{"name":"sanitize-filename","old_version":"1.6.3","new_version":"1.6.4","repository_url":"https://github.com/parshap/node-sanitize-filename"},{"name":"sax","old_version":"1.4.4","new_version":"1.6.0","repository_url":"https://github.com/isaacs/sax-js"},{"name":"seroval","old_version":"1.5.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"seroval-plugins","old_version":"1.5.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"std-env","old_version":"3.10.0","new_version":"4.1.0","repository_url":"https://github.com/unjs/std-env"},{"name":"tapable","old_version":"2.3.0","new_version":"2.3.3","repository_url":"https://github.com/webpack/tapable"},{"name":"tar-stream","old_version":"3.1.8","new_version":"3.2.0","repository_url":"https://github.com/mafintosh/tar-stream"},{"name":"tinyexec","old_version":"1.0.2","new_version":"1.1.2","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"tinyrainbow","old_version":"3.0.3","new_version":"3.1.0","repository_url":"https://github.com/tinylibs/tinyrainbow"},{"name":"tldts","old_version":"7.0.23","new_version":"7.0.30","repository_url":"https://github.com/remusao/tldts"},{"name":"tldts-core","old_version":"7.0.23","new_version":"7.0.30","repository_url":"https://github.com/remusao/tldts"},{"name":"tough-cookie","old_version":"6.0.0","new_version":"6.0.1","repository_url":"https://github.com/salesforce/tough-cookie"},{"name":"ts-api-utils","old_version":"2.4.0","new_version":"2.5.0","repository_url":"https://github.com/JoshuaKGoldberg/ts-api-utils"},{"name":"unplugin","old_version":"2.3.11","new_version":"3.0.0","repository_url":"https://github.com/unjs/unplugin"},{"name":"validator","old_version":"13.15.26","new_version":"13.15.35","repository_url":"https://github.com/validatorjs/validator.js"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.3","new_version":"2.8.4","repository_url":"https://github.com/eemeli/yaml"}],"path":null,"ecosystem":"npm"},"body":"Bumps the all group with 220 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@hey-api/openapi-ts](https://github.com/hey-api/openapi-ts) | `0.94.0` | `0.97.1` |\n| [@libsql/client](https://github.com/tursodatabase/libsql-client-ts/tree/HEAD/packages/libsql-client) | `0.17.0` | `0.17.3` |\n| [@lingui/core](https://github.com/lingui/js-lingui/tree/HEAD/packages/core) | `5.9.5` | `6.0.1` |\n| [@lingui/react](https://github.com/lingui/js-lingui/tree/HEAD/packages/react) | `5.9.5` | `6.0.1` |\n| [@supabase/supabase-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js) | `2.99.1` | `2.105.1` |\n| [@tailwindcss/vite](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite) | `4.2.1` | `4.2.4` |\n| [@tanstack/react-query](https://github.com/TanStack/query/tree/HEAD/packages/react-query) | `5.95.2` | `5.100.9` |\n| [@tanstack/react-router](https://github.com/TanStack/router/tree/HEAD/packages/react-router) | `1.166.7` | `1.169.1` |\n| [@tanstack/react-virtual](https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual) | `3.13.23` | `3.13.24` |\n| [@tanstack/router-plugin](https://github.com/TanStack/router/tree/HEAD/packages/router-plugin) | `1.166.7` | `1.167.32` |\n| [@trpc/client](https://github.com/trpc/trpc/tree/HEAD/packages/client) | `11.12.0` | `11.17.0` |\n| [@trpc/react-query](https://github.com/trpc/trpc/tree/HEAD/packages/react) | `11.12.0` | `11.17.0` |\n| [@trpc/server](https://github.com/trpc/trpc/tree/HEAD/packages/server) | `11.12.0` | `11.17.0` |\n| [framer-motion](https://github.com/motiondivision/motion) | `12.35.2` | `12.38.0` |\n| [megajs](https://github.com/qgustavor/mega) | `1.3.9` | `1.3.10` |\n| [pixi.js](https://github.com/pixijs/pixijs) | `8.17.0` | `8.18.1` |\n| [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.4` | `19.2.5` |\n| [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.4` | `19.2.5` |\n| [systeminformation](https://github.com/sebhildebrandt/systeminformation) | `5.31.4` | `5.31.5` |\n| [tailwindcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss) | `4.2.1` | `4.2.4` |\n| [yauzl](https://github.com/thejoshwolfe/yauzl) | `3.2.1` | `3.3.0` |\n| [zod](https://github.com/colinhacks/zod) | `4.3.6` | `4.4.2` |\n| [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js) | `9.39.4` | `10.0.1` |\n| [@lingui/cli](https://github.com/lingui/js-lingui/tree/HEAD/packages/cli) | `5.9.5` | `6.0.1` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.4.0` | `25.6.0` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.57.0` | `8.59.1` |\n| [@vitejs/plugin-react](https://github.com/vitejs/vite-plugin-react/tree/HEAD/packages/plugin-react) | `5.1.4` | `6.0.1` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.3.1` | `17.4.2` |\n| [electron](https://github.com/electron/electron) | `41.1.1` | `41.5.0` |\n| [eslint](https://github.com/eslint/eslint) | `9.39.4` | `10.3.0` |\n| [eslint-plugin-react-hooks](https://github.com/facebook/react/tree/HEAD/packages/eslint-plugin-react-hooks) | `7.0.1` | `7.1.1` |\n| [globals](https://github.com/sindresorhus/globals) | `17.4.0` | `17.6.0` |\n| [javascript-obfuscator](https://github.com/javascript-obfuscator/javascript-obfuscator) | `5.3.0` | `5.4.2` |\n| [jsdom](https://github.com/jsdom/jsdom) | `28.1.0` | `29.1.1` |\n| [lint-staged](https://github.com/lint-staged/lint-staged) | `16.3.3` | `16.4.0` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.3` |\n| [terser](https://github.com/terser/terser) | `5.46.0` | `5.46.2` |\n| [typescript](https://github.com/microsoft/TypeScript) | `5.9.3` | `6.0.3` |\n| [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) | `8.57.0` | `8.59.1` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.2` | `8.0.10` |\n| [vite-plugin-electron](https://github.com/electron-vite/vite-plugin-electron) | `0.29.0` | `0.29.1` |\n| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `4.0.18` | `4.1.5` |\n| [@asamuzakjp/css-color](https://github.com/asamuzaK/cssColor) | `5.0.1` | `5.1.11` |\n| [@asamuzakjp/dom-selector](https://github.com/asamuzaK/domSelector) | `6.8.1` | `7.1.1` |\n| [@babel/compat-data](https://github.com/babel/babel/tree/HEAD/packages/babel-compat-data) | `7.29.0` | `7.29.3` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.28.6` | `7.29.2` |\n| [@babel/parser](https://github.com/babel/babel/tree/HEAD/packages/babel-parser) | `7.29.0` | `7.29.3` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.28.6` | `7.29.2` |\n| [@csstools/css-calc](https://github.com/csstools/postcss-plugins/tree/HEAD/packages/css-calc) | `3.1.1` | `3.2.0` |\n| [@csstools/css-color-parser](https://github.com/csstools/postcss-plugins/tree/HEAD/packages/css-color-parser) | `4.0.2` | `4.1.0` |\n| [@csstools/css-syntax-patches-for-csstree](https://github.com/csstools/postcss-plugins/tree/HEAD/packages/css-syntax-patches-for-csstree) | `1.0.28` | `1.1.3` |\n| [@electron/rebuild](https://github.com/electron/rebuild) | `4.0.3` | `4.0.4` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.13` | `1.1.14` |\n| [@eslint/config-array](https://github.com/eslint/rewrite/tree/HEAD/packages/config-array) | `0.21.2` | `0.23.5` |\n| [@eslint/config-helpers](https://github.com/eslint/rewrite/tree/HEAD/packages/config-helpers) | `0.4.2` | `0.5.5` |\n| [@eslint/core](https://github.com/eslint/rewrite/tree/HEAD/packages/core) | `0.17.0` | `1.2.1` |\n| [@eslint/object-schema](https://github.com/eslint/rewrite/tree/HEAD/packages/object-schema) | `2.1.7` | `3.0.5` |\n| [@eslint/plugin-kit](https://github.com/eslint/rewrite/tree/HEAD/packages/plugin-kit) | `0.4.1` | `0.7.1` |\n| [@exodus/bytes](https://github.com/ExodusOSS/bytes) | `1.14.1` | `1.15.0` |\n| [@hey-api/codegen-core](https://github.com/hey-api/openapi-ts) | `0.7.1` | `0.8.1` |\n| [@hey-api/json-schema-ref-parser](https://github.com/hey-api/openapi-ts) | `1.3.1` | `1.4.2` |\n| [@hey-api/shared](https://github.com/hey-api/openapi-ts) | `0.2.2` | `0.4.3` |\n| [@hey-api/types](https://github.com/hey-api/openapi-ts) | `0.1.3` | `0.1.4` |\n| [@humanfs/core](https://github.com/humanwhocodes/humanfs) | `0.19.1` | `0.19.2` |\n| [@humanfs/node](https://github.com/humanwhocodes/humanfs/tree/HEAD/packages/node) | `0.16.7` | `0.16.8` |\n| [@javascript-obfuscator/escodegen](https://github.com/estools/escodegen) | `2.3.1` | `2.4.1` |\n| [@libsql/core](https://github.com/tursodatabase/libsql-client-ts/tree/HEAD/packages/libsql-core) | `0.17.0` | `0.17.3` |\n| [@libsql/darwin-arm64](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/darwin-x64](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/hrana-client](https://github.com/libsql/hrana-client-ts) | `0.9.0` | `0.10.0` |\n| [@libsql/linux-arm-gnueabihf](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/linux-arm-musleabihf](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/linux-arm64-gnu](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/linux-arm64-musl](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/linux-x64-gnu](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/linux-x64-musl](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@libsql/win32-x64-msvc](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [@lingui/babel-plugin-extract-messages](https://github.com/lingui/js-lingui/tree/HEAD/packages/babel-plugin-extract-messages) | `5.9.5` | `6.0.1` |\n| [@lingui/babel-plugin-lingui-macro](https://github.com/lingui/js-lingui/tree/HEAD/packages/babel-plugin-lingui-macro) | `5.9.5` | `6.0.1` |\n| [chokidar](https://github.com/paulmillr/chokidar) | `3.5.1` | `3.6.0` |\n| [readdirp](https://github.com/paulmillr/readdirp) | `3.5.0` | `3.6.0` |\n| [@lingui/conf](https://github.com/lingui/js-lingui/tree/HEAD/packages/conf) | `5.9.5` | `6.0.1` |\n| [@lingui/format-po](https://github.com/lingui/js-lingui/tree/HEAD/packages/format-po) | `5.9.5` | `6.0.1` |\n| [@noble/hashes](https://github.com/paulmillr/noble-hashes) | `2.0.1` | `2.2.0` |\n| [@rolldown/pluginutils](https://github.com/rolldown/rolldown/tree/HEAD/packages/pluginutils) | `1.0.0-rc.3` | `1.0.0-rc.7` |\n| [@supabase/auth-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/auth-js) | `2.99.1` | `2.105.1` |\n| [@supabase/functions-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/functions-js) | `2.99.1` | `2.105.1` |\n| [@supabase/postgrest-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/postgrest-js) | `2.99.1` | `2.105.1` |\n| [@supabase/realtime-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/realtime-js) | `2.99.1` | `2.105.1` |\n| [@supabase/storage-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/storage-js) | `2.99.1` | `2.105.1` |\n| [@tailwindcss/node](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-node) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-android-arm64](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/android-arm64) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-darwin-arm64](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/darwin-arm64) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-darwin-x64](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/darwin-x64) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-freebsd-x64](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/freebsd-x64) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-linux-arm-gnueabihf](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/linux-arm-gnueabihf) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-linux-arm64-gnu](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/linux-arm64-gnu) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-linux-arm64-musl](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/linux-arm64-musl) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-linux-x64-gnu](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/linux-x64-gnu) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-linux-x64-musl](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/linux-x64-musl) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-wasm32-wasi](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-win32-arm64-msvc](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/win32-arm64-msvc) | `4.2.1` | `4.2.4` |\n| [@tailwindcss/oxide-win32-x64-msvc](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/crates/node/npm/win32-x64-msvc) | `4.2.1` | `4.2.4` |\n| [@tanstack/history](https://github.com/TanStack/router/tree/HEAD/packages/history) | `1.161.4` | `1.161.6` |\n| [@tanstack/query-core](https://github.com/TanStack/query/tree/HEAD/packages/query-core) | `5.95.2` | `5.100.9` |\n| [@tanstack/react-store](https://github.com/TanStack/store/tree/HEAD/packages/react-store) | `0.9.1` | `0.9.3` |\n| [@tanstack/router-core](https://github.com/TanStack/router/tree/HEAD/packages/router-core) | `1.166.7` | `1.169.1` |\n| [@tanstack/router-generator](https://github.com/TanStack/router/tree/HEAD/packages/router-generator) | `1.166.7` | `1.166.39` |\n| [@tanstack/router-utils](https://github.com/TanStack/router/tree/HEAD/packages/router-utils) | `1.161.4` | `1.161.7` |\n| [@tanstack/store](https://github.com/TanStack/store/tree/HEAD/packages/store) | `0.9.1` | `0.9.3` |\n| [@tanstack/virtual-core](https://github.com/TanStack/virtual/tree/HEAD/packages/virtual-core) | `3.13.23` | `3.14.0` |\n| [@tanstack/virtual-file-routes](https://github.com/TanStack/router/tree/HEAD/packages/virtual-file-routes) | `1.161.4` | `1.161.7` |\n| [@types/debug](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/debug) | `4.1.12` | `4.1.13` |\n| [@typescript-eslint/project-service](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/project-service) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/scope-manager](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/scope-manager) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/tsconfig-utils](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/tsconfig-utils) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/type-utils](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/type-utils) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/types](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/types) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/typescript-estree](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-estree) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/utils](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/utils) | `8.57.0` | `8.59.1` |\n| [@typescript-eslint/visitor-keys](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/visitor-keys) | `8.57.0` | `8.59.1` |\n| [@vercel/blob](https://github.com/vercel/storage/tree/HEAD/packages/blob) | `2.3.1` | `2.3.3` |\n| [undici](https://github.com/nodejs/undici) | `6.24.1` | `6.25.0` |\n| [@vitest/expect](https://github.com/vitest-dev/vitest/tree/HEAD/packages/expect) | `4.0.18` | `4.1.5` |\n| [@vitest/mocker](https://github.com/vitest-dev/vitest/tree/HEAD/packages/mocker) | `4.0.18` | `4.1.5` |\n| [@vitest/pretty-format](https://github.com/vitest-dev/vitest/tree/HEAD/packages/pretty-format) | `4.0.18` | `4.1.5` |\n| [@vitest/runner](https://github.com/vitest-dev/vitest/tree/HEAD/packages/runner) | `4.0.18` | `4.1.5` |\n| [@vitest/snapshot](https://github.com/vitest-dev/vitest/tree/HEAD/packages/snapshot) | `4.0.18` | `4.1.5` |\n| [@vitest/spy](https://github.com/vitest-dev/vitest/tree/HEAD/packages/spy) | `4.0.18` | `4.1.5` |\n| [@vitest/utils](https://github.com/vitest-dev/vitest/tree/HEAD/packages/utils) | `4.0.18` | `4.1.5` |\n| [@xmldom/xmldom](https://github.com/xmldom/xmldom) | `0.8.12` | `0.8.13` |\n| [abbrev](https://github.com/npm/abbrev-js) | `3.0.1` | `4.0.0` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.14.0` | `6.15.0` |\n| [axe-core](https://github.com/dequelabs/axe-core) | `4.11.1` | `4.11.4` |\n| [b4a](https://github.com/holepunchto/b4a) | `1.8.0` | `1.8.1` |\n| [bare-fs](https://github.com/holepunchto/bare-fs) | `4.5.6` | `4.7.1` |\n| [bare-os](https://github.com/holepunchto/bare-os) | `3.8.6` | `3.9.1` |\n| [bare-stream](https://github.com/holepunchto/bare-stream) | `2.11.0` | `2.13.1` |\n| [bare-url](https://github.com/holepunchto/bare-url) | `2.4.0` | `2.4.2` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.10.0` | `2.10.27` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [call-bind](https://github.com/ljharb/call-bind) | `1.0.8` | `1.0.9` |\n| [caniuse-lite](https://github.com/browserslist/caniuse-lite) | `1.0.30001775` | `1.0.30001791` |\n| [cli-cursor](https://github.com/sindresorhus/cli-cursor) | `3.1.0` | `5.0.0` |\n| [cli-spinners](https://github.com/sindresorhus/cli-spinners) | `2.9.2` | `3.4.0` |\n| [conf](https://github.com/sindresorhus/conf) | `15.0.2` | `15.1.0` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `2.0.0` | `3.1.1` |\n| [whatwg-url](https://github.com/jsdom/whatwg-url) | `5.0.0` | `16.0.1` |\n| [tr46](https://github.com/jsdom/tr46) | `0.0.3` | `6.0.0` |\n| [webidl-conversions](https://github.com/jsdom/webidl-conversions) | `3.0.1` | `8.0.1` |\n| [css-tree](https://github.com/csstree/csstree) | `3.1.0` | `3.2.1` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.3` | `8.0.4` |\n| [electron-to-chromium](https://github.com/Kilian/electron-to-chromium) | `1.5.302` | `1.5.349` |\n| [enhanced-resolve](https://github.com/webpack/enhanced-resolve) | `5.20.0` | `5.21.0` |\n| [entities](https://github.com/fb55/entities) | `6.0.1` | `8.0.0` |\n| [es-abstract](https://github.com/ljharb/es-abstract) | `1.24.1` | `1.24.2` |\n| [es-iterator-helpers](https://github.com/es-shims/iterator-helpers) | `1.2.2` | `1.3.2` |\n| [es-module-lexer](https://github.com/guybedford/es-module-lexer) | `1.7.0` | `2.1.0` |\n| [espree](https://github.com/eslint/js/tree/HEAD/packages/espree) | `10.4.0` | `11.2.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.14.0` |\n| [giget](https://github.com/unjs/giget) | `2.0.0` | `3.2.0` |\n| [hasown](https://github.com/inspect-js/hasOwn) | `2.0.2` | `2.0.3` |\n| [is-interactive](https://github.com/sindresorhus/is-interactive) | `1.0.0` | `2.0.0` |\n| [is-unicode-supported](https://github.com/sindresorhus/is-unicode-supported) | `0.1.0` | `2.1.0` |\n| [isbot](https://github.com/omrilotan/isbot) | `5.1.35` | `5.1.39` |\n| [libphonenumber-js](https://gitlab.com/catamphetamine/libphonenumber-js) | `1.12.38` | `1.12.42` |\n| [libsql](https://github.com/tursodatabase/libsql-js) | `0.5.22` | `0.5.29` |\n| [lightningcss](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-android-arm64](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-darwin-arm64](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-darwin-x64](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-freebsd-x64](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-linux-arm-gnueabihf](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-linux-arm64-gnu](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-linux-arm64-musl](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-linux-x64-gnu](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-linux-x64-musl](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-win32-arm64-msvc](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [lightningcss-win32-x64-msvc](https://github.com/parcel-bundler/lightningcss) | `1.31.1` | `1.32.0` |\n| [log-symbols](https://github.com/sindresorhus/log-symbols) | `4.1.0` | `7.0.1` |\n| [mdn-data](https://github.com/mdn/data) | `2.12.2` | `2.27.1` |\n| [minipass](https://github.com/isaacs/minipass) | `3.3.6` | `7.1.3` |\n| [motion-dom](https://github.com/motiondivision/motion) | `12.35.2` | `12.38.0` |\n| [motion-utils](https://github.com/motiondivision/motion) | `12.29.2` | `12.36.0` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.11` | `3.3.12` |\n| [node-abi](https://github.com/electron/node-abi) | `4.26.0` | `4.29.0` |\n| [node-gyp](https://github.com/nodejs/node-gyp) | `11.5.0` | `12.3.0` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.27` | `2.0.38` |\n| [nopt](https://github.com/npm/nopt) | `8.1.0` | `9.0.0` |\n| [onetime](https://github.com/sindresorhus/onetime) | `5.1.2` | `7.0.0` |\n| [ora](https://github.com/sindresorhus/ora) | `5.4.1` | `9.4.0` |\n| [restore-cursor](https://github.com/sindresorhus/restore-cursor) | `3.1.0` | `5.1.0` |\n| [parse5](https://github.com/inikulin/parse5) | `8.0.0` | `8.0.1` |\n| [pkg-types](https://github.com/unjs/pkg-types) | `2.3.0` | `2.3.1` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.6` | `8.5.13` |\n| [proc-log](https://github.com/npm/proc-log) | `5.0.0` | `6.1.0` |\n| [rc9](https://github.com/unjs/rc9) | `2.1.2` | `3.0.1` |\n| [safe-array-concat](https://github.com/ljharb/safe-array-concat) | `1.1.3` | `1.1.4` |\n| [sanitize-filename](https://github.com/parshap/node-sanitize-filename) | `1.6.3` | `1.6.4` |\n| [sax](https://github.com/isaacs/sax-js) | `1.4.4` | `1.6.0` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.0` | `1.5.2` |\n| [seroval-plugins](https://github.com/lxsmnsyc/seroval) | `1.5.0` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [std-env](https://github.com/unjs/std-env) | `3.10.0` | `4.1.0` |\n| [tapable](https://github.com/webpack/tapable) | `2.3.0` | `2.3.3` |\n| [tar-stream](https://github.com/mafintosh/tar-stream) | `3.1.8` | `3.2.0` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.2` | `1.1.2` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [tinyrainbow](https://github.com/tinylibs/tinyrainbow) | `3.0.3` | `3.1.0` |\n| [tldts](https://github.com/remusao/tldts) | `7.0.23` | `7.0.30` |\n| [tldts-core](https://github.com/remusao/tldts) | `7.0.23` | `7.0.30` |\n| [tough-cookie](https://github.com/salesforce/tough-cookie) | `6.0.0` | `6.0.1` |\n| [ts-api-utils](https://github.com/JoshuaKGoldberg/ts-api-utils) | `2.4.0` | `2.5.0` |\n| [unplugin](https://github.com/unjs/unplugin) | `2.3.11` | `3.0.0` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.15.26` | `13.15.35` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.3` | `2.8.4` |\n\nUpdates `@hey-api/openapi-ts` from 0.94.0 to 0.97.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hey-api/openapi-ts/releases\"\u003e@​hey-api/openapi-ts's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​hey-api/openapi-ts\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.95.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eplugin(valibot)\u003c/strong\u003e: remove request data schema (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3671\"\u003e#3671\u003c/a\u003e) (\u003ca href=\"https://github.com/hey-api/openapi-ts/commit/96f60adb6af144e39133884e97e74a6693b6c059\"\u003e\u003ccode\u003e96f60ad\u003c/code\u003e\u003c/a\u003e) by \u003ca href=\"https://github.com/mrlubos\"\u003e\u003ccode\u003e@​mrlubos\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eValidator request schemas\u003c/h3\u003e\n\u003cp\u003eValibot plugin no longer exports composite request \u003ccode\u003eData\u003c/code\u003e schemas. Instead, each layer is exported as a separate schema. If you're using validators with SDKs, you can preserve the composite schema with \u003ccode\u003eshouldExtract\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eexport default {\n  input: \u0026quot;hey-api/backend\u0026quot;, // sign up at app.heyapi.dev\n  output: \u0026quot;src/client\u0026quot;,\n  plugins: [\n    // ...other plugins\n    {\n      name: \u0026quot;sdk\u0026quot;,\n      validator: \u0026quot;valibot\u0026quot;,\n    },\n    {\n      name: \u0026quot;valibot\u0026quot;,\n      requests: {\n        shouldExtract: true,\n      },\n    },\n  ],\n};\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003einternal\u003c/strong\u003e: remove \u003ccode\u003eplugin.getSymbol()\u003c/code\u003e function (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3671\"\u003e#3671\u003c/a\u003e) (\u003ca href=\"https://github.com/hey-api/openapi-ts/commit/96f60adb6af144e39133884e97e74a6693b6c059\"\u003e\u003ccode\u003e96f60ad\u003c/code\u003e\u003c/a\u003e) by \u003ca href=\"https://github.com/mrlubos\"\u003e\u003ccode\u003e@​mrlubos\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved \u003ccode\u003eplugin.getSymbol()\u003c/code\u003e function\u003c/h3\u003e\n\u003cp\u003eThis function has been removed. You can use \u003ccode\u003eplugin.querySymbol()\u003c/code\u003e instead. It accepts the same arguments and returns the same result.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eplugin(zod)\u003c/strong\u003e: remove request data schema (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3671\"\u003e#3671\u003c/a\u003e) (\u003ca href=\"https://github.com/hey-api/openapi-ts/commit/96f60adb6af144e39133884e97e74a6693b6c059\"\u003e\u003ccode\u003e96f60ad\u003c/code\u003e\u003c/a\u003e) by \u003ca href=\"https://github.com/mrlubos\"\u003e\u003ccode\u003e@​mrlubos\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eValidator request schemas\u003c/h3\u003e\n\u003cp\u003eZod plugin no longer exports composite request \u003ccode\u003eData\u003c/code\u003e schemas. Instead, each layer is exported as a separate schema. If you're using validators with SDKs, you can preserve the composite schema with \u003ccode\u003eshouldExtract\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eexport default {\n  input: \u0026quot;hey-api/backend\u0026quot;, // sign up at app.heyapi.dev\n  output: \u0026quot;src/client\u0026quot;,\n  plugins: [\n    // ...other plugins\n    {\n      name: \u0026quot;sdk\u0026quot;,\n      validator: \u0026quot;zod\u0026quot;,\n\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt; \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hey-api/openapi-ts/blob/main/CHANGELOG.md\"\u003e@​hey-api/openapi-ts's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch1\u003e2026-04-28\u003c/h1\u003e\n\u003ch2\u003e\u003ccode\u003e@​hey-api/openapi-ts\u003c/code\u003e 0.97.0\u003c/h2\u003e\n\u003ch3\u003e⚠️ Breaking\u003c/h3\u003e\n\u003cp\u003eThis release has 15 breaking changes. Please review the release notes carefully before upgrading.\u003c/p\u003e\n\u003ch3\u003eUpdates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecli: print file count and generator speed (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3828\"\u003e#3828\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e client: resolve \u003ccode\u003eruntimeConfigPath\u003c/code\u003e relative to the output folder (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3770\"\u003e#3770\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged \u003ccode\u003eruntimeConfigPath\u003c/code\u003e behavior\u003c/h3\u003e\n\u003cp\u003eThis was a known, long-standing issue confusing first-time users. Before, defining client \u003ccode\u003eruntimeConfigPath\u003c/code\u003e value would paste it verbatim to the generated output. This release changes the behavior to resolve relative to the current working directory the same way output path works.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003econfig: remove \u003ccode\u003e--apply\u003c/code\u003e flag from Biome post-processor commands (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3812\"\u003e#3812\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePlugins\u003c/h3\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-angular\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e \u003ccode\u003erequest\u003c/code\u003e and \u003ccode\u003eresponse\u003c/code\u003e objects might be undefined (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e respect \u003ccode\u003ethrowOnError\u003c/code\u003e when request validation fails (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-fetch\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e pass previous result to error interceptors (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e \u003ccode\u003erequest\u003c/code\u003e and \u003ccode\u003eresponse\u003c/code\u003e objects might be undefined (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e respect \u003ccode\u003ethrowOnError\u003c/code\u003e when request validation fails (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-ky\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e pass previous result to error interceptors (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e \u003ccode\u003erequest\u003c/code\u003e and \u003ccode\u003eresponse\u003c/code\u003e objects might be undefined (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e respect \u003ccode\u003ethrowOnError\u003c/code\u003e when request validation fails (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e respect ky instance defaults (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3806\"\u003e#3806\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged Ky client behavior\u003c/h3\u003e\n\u003cp\u003eThe Ky client was updated to be more intuitive. Some Ky options now need to be passed via the \u003ccode\u003ekyOptions\u003c/code\u003e field and you need to pass \u003ccode\u003eundefined\u003c/code\u003e to unset an option.\u003c/p\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-next\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e \u003ccode\u003erequest\u003c/code\u003e and \u003ccode\u003eresponse\u003c/code\u003e objects might be undefined (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e pass previous result to error interceptors (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e respect \u003ccode\u003ethrowOnError\u003c/code\u003e when request validation fails (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3814\"\u003e#3814\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/hey-api/openapi-ts/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@libsql/client` from 0.17.0 to 0.17.3\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/9d158a718ab655024e175d47a36565bd0178810b\"\u003e\u003ccode\u003e9d158a7\u003c/code\u003e\u003c/a\u003e 0.17.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/db7212640402f15e04b9fe7c16ca6cfa2b00ff07\"\u003e\u003ccode\u003edb72126\u003c/code\u003e\u003c/a\u003e 0.17.3-pre.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/e5d58414c671aabc88dfadf75fc1f3fd731da43d\"\u003e\u003ccode\u003ee5d5841\u003c/code\u003e\u003c/a\u003e Drop removed hrana-client re-exports from client test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/82b63c0466efc4435dfb05681988cb4656c86ed5\"\u003e\u003ccode\u003e82b63c0\u003c/code\u003e\u003c/a\u003e 0.17.3-pre.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/d377872e0ac42c7022d27b637815269fff8be6d1\"\u003e\u003ccode\u003ed377872\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003e@​libsql/hrana-client\u003c/code\u003e to 0.10.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/697ae59038dc61224c1b3cf57b0d5a71b315ca5a\"\u003e\u003ccode\u003e697ae59\u003c/code\u003e\u003c/a\u003e 0.17.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/b15a87226612dad953f56d2dee10f811137ead92\"\u003e\u003ccode\u003eb15a872\u003c/code\u003e\u003c/a\u003e Bump libsql dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/1fede76c2ffa109a67a20e8a73d366a9fba538c2\"\u003e\u003ccode\u003e1fede76\u003c/code\u003e\u003c/a\u003e 0.17.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/8f1e8d386e95f98891af56283a731261224c43ca\"\u003e\u003ccode\u003e8f1e8d3\u003c/code\u003e\u003c/a\u003e Bump libsql dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/138f4a3c334f6031d372e46f29409c8384c6f4e6\"\u003e\u003ccode\u003e138f4a3\u003c/code\u003e\u003c/a\u003e Mention Turso serverless package\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commits/v0.17.3/packages/libsql-client\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@lingui/core` from 5.9.5 to 6.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lingui/js-lingui/releases\"\u003e@​lingui/core's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v6.0.0...v6.0.1\"\u003e6.0.1\u003c/a\u003e (2026-04-30)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid throwing on object spreads in extractFromObjectExpression (\u003ca href=\"https://redirect.github.com/lingui/js-lingui/issues/2538\"\u003e#2538\u003c/a\u003e) (\u003ca href=\"https://github.com/lingui/js-lingui/commit/7cbc0a8638e1cc2f5ea702922b46156c0555fe29\"\u003e7cbc0a8\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecli:\u003c/strong\u003e declare files arguments (\u003ca href=\"https://redirect.github.com/lingui/js-lingui/issues/2532\"\u003e#2532\u003c/a\u003e) (\u003ca href=\"https://github.com/lingui/js-lingui/commit/4a55abe7b3d046b972cb26a3c5a11acf397f1d7a\"\u003e4a55abe\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v5.9.5...v6.0.0\"\u003ev6.0.0\u003c/a\u003e\u003c/h1\u003e\n\u003cp\u003eWe are pleased to announce the release of \u003cstrong\u003eLingui 6.0\u003c/strong\u003e ✨\u003c/p\u003e\n\u003cp\u003eThis release marks a \u003cstrong\u003emajor milestone\u003c/strong\u003e for the project. It includes a transition to ESM-only distribution, reduced dependency graph, the removal of deprecated APIs, and improved TypeScript support. A few new features have also been introduced.\u003c/p\u003e\n\u003cp\u003eCheck out the links below for more details:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://lingui.dev/blog/2026/04/22/announcing-lingui-6.0\"\u003eBlog Post: Announcing Lingui 6.0\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://lingui.dev/releases/migration-6\"\u003eMigration Guide from 5.x to 6.x\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v5.9.5...v6.0.0\"\u003eFull Changelog\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDiscussion\u003c/h2\u003e\n\u003cp\u003eIf you have any questions or suggestions regarding this release, please visit the \u003ca href=\"https://github.com/lingui/js-lingui/discussions/2455\"\u003eRelated Discussion\u003c/a\u003e or our \u003ca href=\"https://discord.gg/tBZqKpeF\"\u003eDiscord Server\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev6.0.0-next.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v6.0.0-next.3...v6.0.0-next.4\"\u003ev6.0.0-next.4\u003c/a\u003e (2026-04-17)\u003c/h2\u003e\n\u003cp\u003eVisit the \u003ca href=\"https://js-lingui-git-next-crowdin.vercel.app\"\u003ev6 website deployment\u003c/a\u003e to see the relevant docs, including the \u003ca href=\"https://js-lingui-git-next-crowdin.vercel.app/releases/migration-6\"\u003emigration guide from 5.x to 6.x\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003econsolidate metadata transformation options into \u003ccode\u003edescriptorFields\u003c/code\u003e (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2513\"\u003e#2513\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003emacro:\u003c/strong\u003e add optional configurable JSX placeholder naming (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2505\"\u003e#2505\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eloader:\u003c/strong\u003e make webpack peer dependency optional and update Rspack example (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2475\"\u003e#2475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epo-format:\u003c/strong\u003e remove duplicated references when \u003ccode\u003elineNumbers\u003c/code\u003e is false (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2509\"\u003e#2509\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecli:\u003c/strong\u003e support braces in catalog pathname (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2495\"\u003e#2495\u003c/a\u003e) \u003cem\u003e(backported from v5.x)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDiscussion\u003c/h2\u003e\n\u003cp\u003eVisit the \u003ca href=\"https://github.com/lingui/js-lingui/discussions/2455\"\u003erelated discussion\u003c/a\u003e if you have any questions about this release or feedback. We'd love to hear from you!\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lingui/js-lingui/blob/main/packages/core/CHANGELOG.md\"\u003e@​lingui/core's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v6.0.0...v6.0.1\"\u003e6.0.1\u003c/a\u003e (2026-04-30)\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​lingui/core\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v5.9.5...v6.0.0\"\u003e6.0.0\u003c/a\u003e (2026-04-22)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://lingui.dev/blog/2026/04/22/announcing-lingui-6.0\"\u003eAnnouncing Lingui 6.0\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/a710fd3c6dca7406a5b0ee219e99474586e93e59\"\u003e\u003ccode\u003ea710fd3\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.1 [skip ci] (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2541\"\u003e#2541\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/b91bb94b6fc59c85d460a4d403be41e70d11b717\"\u003e\u003ccode\u003eb91bb94\u003c/code\u003e\u003c/a\u003e chore: update tooling: Yarn, Vitest (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2539\"\u003e#2539\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/a194ab486dd979c42b39d90c80e5c3e2283bf8c7\"\u003e\u003ccode\u003ea194ab4\u003c/code\u003e\u003c/a\u003e chore: official v6 release (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2500\"\u003e#2500\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/9216f052768abd987bae67451eef512cf047c152\"\u003e\u003ccode\u003e9216f05\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.0-next.4 (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2521\"\u003e#2521\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/1597e3a3321f02a668285bec3f5e9b24c1ef2765\"\u003e\u003ccode\u003e1597e3a\u003c/code\u003e\u003c/a\u003e chore: improve public package descriptions and keywords (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2493\"\u003e#2493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/ebcb6dc8e8d327ae5775cadee931942ef309480f\"\u003e\u003ccode\u003eebcb6dc\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.0-next.3 (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2491\"\u003e#2491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/4b244312eb16e94451a33f6dac60ecdbb55d6f74\"\u003e\u003ccode\u003e4b24431\u003c/code\u003e\u003c/a\u003e feat(vite-plugin): Vite 8 compatibility + linguiTransformerBabelPreset (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2487\"\u003e#2487\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/f4bcdd555ceef0bed58b2f3075096efd4daaeec2\"\u003e\u003ccode\u003ef4bcdd5\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.0-next.2 (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2485\"\u003e#2485\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/2848e873f73b76c12b8aec6e672712d236c85b27\"\u003e\u003ccode\u003e2848e87\u003c/code\u003e\u003c/a\u003e fix(macro): add shims for macro executed in nodejs without transpilation (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2471\"\u003e#2471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/c3247d657e6010b4da3c53e83079902a2e83abb8\"\u003e\u003ccode\u003ec3247d6\u003c/code\u003e\u003c/a\u003e chore: fix eslint config for react (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/core/issues/2449\"\u003e#2449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lingui/js-lingui/commits/v6.0.1/packages/core\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@lingui/react` from 5.9.5 to 6.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lingui/js-lingui/releases\"\u003e@​lingui/react's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v6.0.0...v6.0.1\"\u003e6.0.1\u003c/a\u003e (2026-04-30)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid throwing on object spreads in extractFromObjectExpression (\u003ca href=\"https://redirect.github.com/lingui/js-lingui/issues/2538\"\u003e#2538\u003c/a\u003e) (\u003ca href=\"https://github.com/lingui/js-lingui/commit/7cbc0a8638e1cc2f5ea702922b46156c0555fe29\"\u003e7cbc0a8\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecli:\u003c/strong\u003e declare files arguments (\u003ca href=\"https://redirect.github.com/lingui/js-lingui/issues/2532\"\u003e#2532\u003c/a\u003e) (\u003ca href=\"https://github.com/lingui/js-lingui/commit/4a55abe7b3d046b972cb26a3c5a11acf397f1d7a\"\u003e4a55abe\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v5.9.5...v6.0.0\"\u003ev6.0.0\u003c/a\u003e\u003c/h1\u003e\n\u003cp\u003eWe are pleased to announce the release of \u003cstrong\u003eLingui 6.0\u003c/strong\u003e ✨\u003c/p\u003e\n\u003cp\u003eThis release marks a \u003cstrong\u003emajor milestone\u003c/strong\u003e for the project. It includes a transition to ESM-only distribution, reduced dependency graph, the removal of deprecated APIs, and improved TypeScript support. A few new features have also been introduced.\u003c/p\u003e\n\u003cp\u003eCheck out the links below for more details:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://lingui.dev/blog/2026/04/22/announcing-lingui-6.0\"\u003eBlog Post: Announcing Lingui 6.0\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://lingui.dev/releases/migration-6\"\u003eMigration Guide from 5.x to 6.x\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v5.9.5...v6.0.0\"\u003eFull Changelog\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDiscussion\u003c/h2\u003e\n\u003cp\u003eIf you have any questions or suggestions regarding this release, please visit the \u003ca href=\"https://github.com/lingui/js-lingui/discussions/2455\"\u003eRelated Discussion\u003c/a\u003e or our \u003ca href=\"https://discord.gg/tBZqKpeF\"\u003eDiscord Server\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev6.0.0-next.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v6.0.0-next.3...v6.0.0-next.4\"\u003ev6.0.0-next.4\u003c/a\u003e (2026-04-17)\u003c/h2\u003e\n\u003cp\u003eVisit the \u003ca href=\"https://js-lingui-git-next-crowdin.vercel.app\"\u003ev6 website deployment\u003c/a\u003e to see the relevant docs, including the \u003ca href=\"https://js-lingui-git-next-crowdin.vercel.app/releases/migration-6\"\u003emigration guide from 5.x to 6.x\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003econsolidate metadata transformation options into \u003ccode\u003edescriptorFields\u003c/code\u003e (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2513\"\u003e#2513\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003emacro:\u003c/strong\u003e add optional configurable JSX placeholder naming (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2505\"\u003e#2505\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eloader:\u003c/strong\u003e make webpack peer dependency optional and update Rspack example (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2475\"\u003e#2475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epo-format:\u003c/strong\u003e remove duplicated references when \u003ccode\u003elineNumbers\u003c/code\u003e is false (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2509\"\u003e#2509\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecli:\u003c/strong\u003e support braces in catalog pathname (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2495\"\u003e#2495\u003c/a\u003e) \u003cem\u003e(backported from v5.x)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDiscussion\u003c/h2\u003e\n\u003cp\u003eVisit the \u003ca href=\"https://github.com/lingui/js-lingui/discussions/2455\"\u003erelated discussion\u003c/a\u003e if you have any questions about this release or feedback. We'd love to hear from you!\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lingui/js-lingui/blob/main/packages/react/CHANGELOG.md\"\u003e@​lingui/react's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v6.0.0...v6.0.1\"\u003e6.0.1\u003c/a\u003e (2026-04-30)\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNote:\u003c/strong\u003e Version bump only for package \u003ccode\u003e@​lingui/react\u003c/code\u003e\u003c/p\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/lingui/js-lingui/compare/v5.9.5...v6.0.0\"\u003e6.0.0\u003c/a\u003e (2026-04-22)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://lingui.dev/blog/2026/04/22/announcing-lingui-6.0\"\u003eAnnouncing Lingui 6.0\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/a710fd3c6dca7406a5b0ee219e99474586e93e59\"\u003e\u003ccode\u003ea710fd3\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.1 [skip ci] (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2541\"\u003e#2541\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/b91bb94b6fc59c85d460a4d403be41e70d11b717\"\u003e\u003ccode\u003eb91bb94\u003c/code\u003e\u003c/a\u003e chore: update tooling: Yarn, Vitest (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2539\"\u003e#2539\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/a194ab486dd979c42b39d90c80e5c3e2283bf8c7\"\u003e\u003ccode\u003ea194ab4\u003c/code\u003e\u003c/a\u003e chore: official v6 release (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2500\"\u003e#2500\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/9216f052768abd987bae67451eef512cf047c152\"\u003e\u003ccode\u003e9216f05\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.0-next.4 (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2521\"\u003e#2521\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/1597e3a3321f02a668285bec3f5e9b24c1ef2765\"\u003e\u003ccode\u003e1597e3a\u003c/code\u003e\u003c/a\u003e chore: improve public package descriptions and keywords (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2493\"\u003e#2493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/ebcb6dc8e8d327ae5775cadee931942ef309480f\"\u003e\u003ccode\u003eebcb6dc\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.0-next.3 (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2491\"\u003e#2491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/4b244312eb16e94451a33f6dac60ecdbb55d6f74\"\u003e\u003ccode\u003e4b24431\u003c/code\u003e\u003c/a\u003e feat(vite-plugin): Vite 8 compatibility + linguiTransformerBabelPreset (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2487\"\u003e#2487\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/f4bcdd555ceef0bed58b2f3075096efd4daaeec2\"\u003e\u003ccode\u003ef4bcdd5\u003c/code\u003e\u003c/a\u003e chore(release): published v6.0.0-next.2 (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2485\"\u003e#2485\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/2848e873f73b76c12b8aec6e672712d236c85b27\"\u003e\u003ccode\u003e2848e87\u003c/code\u003e\u003c/a\u003e fix(macro): add shims for macro executed in nodejs without transpilation (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2471\"\u003e#2471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lingui/js-lingui/commit/c3247d657e6010b4da3c53e83079902a2e83abb8\"\u003e\u003ccode\u003ec3247d6\u003c/code\u003e\u003c/a\u003e chore: fix eslint config for react (\u003ca href=\"https://github.com/lingui/js-lingui/tree/HEAD/packages/react/issues/2449\"\u003e#2449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lingui/js-lingui/commits/v6.0.1/packages/react\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@supabase/supabase-js` from 2.99.1 to 2.105.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/supabase/supabase-js/releases\"\u003e@​supabase/supabase-js's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.105.1\u003c/h2\u003e\n\u003ch2\u003e2.105.1 (2026-04-28)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e query reassignment regression (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2292\"\u003e#2292\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e surface real Error on transport-level CHANNEL_ERROR (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2299\"\u003e#2299\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eVaibhav \u003ca href=\"https://github.com/7ttp\"\u003e\u003ccode\u003e@​7ttp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.105.1-canary.2\u003c/h2\u003e\n\u003ch2\u003e2.105.1-canary.2 (2026-04-28)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e surface real Error on transport-level CHANNEL_ERROR (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2299\"\u003e#2299\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.105.1-canary.1\u003c/h2\u003e\n\u003ch2\u003e2.105.1-canary.1 (2026-04-28)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only, there were no code changes.\u003c/p\u003e\n\u003ch2\u003ev2.105.1-canary.0\u003c/h2\u003e\n\u003ch2\u003e2.105.1-canary.0 (2026-04-28)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e query reassignment regression (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2292\"\u003e#2292\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eVaibhav \u003ca href=\"https://github.com/7ttp\"\u003e\u003ccode\u003e@​7ttp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.105.0\u003c/h2\u003e\n\u003ch2\u003e2.105.0 (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eauth:\u003c/strong\u003e add passkey support with WebAuthn registration, authentication, and management (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2283\"\u003e#2283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e Realtime deferred disconnect (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2282\"\u003e#2282\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e narrow column types after not(column, is, null) (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2264\"\u003e#2264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e annotate Timer/Vsn getters to avoid deep phoenix imports (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2284\"\u003e#2284\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e apply metadata, headers, and cacheControl dedupe to uploadToSignedUrl (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2275\"\u003e#2275\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e forward duplex option for stream uploads via uploadToSignedUrl (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2289\"\u003e#2289\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/supabase/supabase-js/blob/develop/packages/core/supabase-js/CHANGELOG.md\"\u003e@​supabase/supabase-js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.105.1 (2026-04-28)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.105.0 (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eauth:\u003c/strong\u003e add passkey support with WebAuthn registration, authentication, and management (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2283\"\u003e#2283\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e Realtime deferred disconnect (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2282\"\u003e#2282\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.104.1 (2026-04-23)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esupabase:\u003c/strong\u003e propagate custom fetch to realtime client (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2267\"\u003e#2267\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKaterina Skroumpelou \u003ca href=\"https://github.com/mandarini\"\u003e\u003ccode\u003e@​mandarini\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.104.0 (2026-04-20)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.3 (2026-04-16)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.2 (2026-04-15)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.1 (2026-04-15)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.0 (2026-04-09)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.102.1 (2026-04-07)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.102.0 (2026-04-07)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esupabase:\u003c/strong\u003e export PostgrestFilterBuilder and StorageApiError from supabase-js (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2222\"\u003e#2222\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/ca8c418dbe912a72d6c6434c319d432d31867943\"\u003e\u003ccode\u003eca8c418\u003c/code\u003e\u003c/a\u003e chore(release): version 2.105.0 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2290\"\u003e#2290\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/d19e6d3f8f7344205175034146ce61548d415837\"\u003e\u003ccode\u003ed19e6d3\u003c/code\u003e\u003c/a\u003e [patchback] docs(misc): rename anon key → publishable key and service role ke...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/c420456290b0eccf34a2eb5625294752b52e26d4\"\u003e\u003ccode\u003ec420456\u003c/code\u003e\u003c/a\u003e [patchback] feat(auth): add passkey support with WebAuthn registration, authe...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/bfb18bc82f452bf6987886ffbbe6a974496bf88d\"\u003e\u003ccode\u003ebfb18bc\u003c/code\u003e\u003c/a\u003e [patchback] feat(realtime): Realtime deferred disconnect (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2282\"\u003e#2282\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/ed49eed13592a7c874ec799d6aa8ff7b675aa929\"\u003e\u003ccode\u003eed49eed\u003c/code\u003e\u003c/a\u003e chore(release): version 2.104.1 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2273\"\u003e#2273\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/122d3a94cce7b4a4b7e340779c8f82bac99ff1b3\"\u003e\u003ccode\u003e122d3a9\u003c/code\u003e\u003c/a\u003e fix(supabase): propagate custom fetch to realtime client (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2267\"\u003e#2267\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/9360d4ae2797d25d6b53d5c6c99981d2a814f26b\"\u003e\u003ccode\u003e9360d4a\u003c/code\u003e\u003c/a\u003e chore(release): version 2.104.0 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2261\"\u003e#2261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/897fb8e9d288e74dd47e765b5d6ec647e765a3cb\"\u003e\u003ccode\u003e897fb8e\u003c/code\u003e\u003c/a\u003e docs(repo): show createClient as primary example in all client constructors (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/7a9b2e15031253b542dc3c2294e41c818b61509d\"\u003e\u003ccode\u003e7a9b2e1\u003c/code\u003e\u003c/a\u003e chore(release): version 2.103.3 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2258\"\u003e#2258\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/a2f94144fae2a4a5dc713cb71dbcce46ad3e92f0\"\u003e\u003ccode\u003ea2f9414\u003c/code\u003e\u003c/a\u003e chore(release): version 2.103.2 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2253\"\u003e#2253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/supabase/supabase-js/commits/v2.105.1/packages/core/supabase-js\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tailwindcss/vite` from 4.2.1 to 4.2.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/releases\"\u003e@​tailwindcss/vite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.2.4\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure imports in \u003ccode\u003e@import\u003c/code\u003e and \u003ccode\u003e@plugin\u003c/code\u003e still resolve correctly when using Vite aliases in \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19947\"\u003e#19947\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.3\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCanonicalization: improve canonicalizations for \u003ccode\u003etracking-*\u003c/code\u003e utilities by preferring non-negative utilities (e.g. \u003ccode\u003e-tracking-tighter\u003c/code\u003e → \u003ccode\u003etracking-wider\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19827\"\u003e#19827\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix crash due to invalid characters in candidate (exceeding valid unicode code point range) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19829\"\u003e#19829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure query params in imports are considered unique resources when using \u003ccode\u003e@tailwindcss/webpack\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19723\"\u003e#19723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse arbitrary values into shorthand utilities (e.g. \u003ccode\u003epx-[1.2rem] py-[1.2rem]\u003c/code\u003e → \u003ccode\u003ep-[1.2rem]\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19837\"\u003e#19837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003eborder-{t,b}-*\u003c/code\u003e into \u003ccode\u003eborder-y-*\u003c/code\u003e, \u003ccode\u003eborder-{l,r}-*\u003c/code\u003e into \u003ccode\u003eborder-x-*\u003c/code\u003e, and \u003ccode\u003eborder-{t,r,b,l}-*\u003c/code\u003e into \u003ccode\u003eborder-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003escroll-m{t,b}-*\u003c/code\u003e into \u003ccode\u003escroll-my-*\u003c/code\u003e, \u003ccode\u003escroll-m{l,r}-*\u003c/code\u003e into \u003ccode\u003escroll-mx-*\u003c/code\u003e, and \u003ccode\u003escroll-m{t,r,b,l}-*\u003c/code\u003e into \u003ccode\u003escroll-m-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003escroll-p{t,b}-*\u003c/code\u003e into \u003ccode\u003escroll-py-*\u003c/code\u003e, \u003ccode\u003escroll-p{l,r}-*\u003c/code\u003e into \u003ccode\u003escroll-px-*\u003c/code\u003e, and \u003ccode\u003escroll-p{t,r,b,l}-*\u003c/code\u003e into \u003ccode\u003escroll-p-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003eoverflow-{x,y}-*\u003c/code\u003e into \u003ccode\u003eoverflow-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003eoverscroll-{x,y}-*\u003c/code\u003e into \u003ccode\u003eoverscroll-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRead from \u003ccode\u003e--placeholder-color\u003c/code\u003e instead of \u003ccode\u003e--background-color\u003c/code\u003e for \u003ccode\u003eplaceholder-*\u003c/code\u003e utilities (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19843\"\u003e#19843\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: ensure files are not emptied out when killing the upgrade process while it's running (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: use \u003ccode\u003econfig.content\u003c/code\u003e when migrating from Tailwind CSS v3 to Tailwind CSS v4 (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: never migrate files that are ignored by git (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e.env\u003c/code\u003e and \u003ccode\u003e.env.*\u003c/code\u003e to default ignored content files (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: migrate \u003ccode\u003eoverflow-ellipsis\u003c/code\u003e into \u003ccode\u003etext-ellipsis\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19849\"\u003e#19849\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: migrate \u003ccode\u003estart-full\u003c/code\u003e → \u003ccode\u003einset-s-full\u003c/code\u003e, \u003ccode\u003estart-auto\u003c/code\u003e → \u003ccode\u003einset-s-auto\u003c/code\u003e, \u003ccode\u003estart-px\u003c/code\u003e → \u003ccode\u003einset-s-px\u003c/code\u003e, and \u003ccode\u003estart-\u0026lt;number\u0026gt;\u003c/code\u003e → \u003ccode\u003einset-s-\u0026lt;number\u0026gt;\u003c/code\u003e as well as negative versions (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19849\"\u003e#19849\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: migrate \u003ccode\u003eend-full\u003c/code\u003e → \u003ccode\u003einset-e-full\u003c/code\u003e, \u003ccode\u003eend-auto\u003c/code\u003e → \u003ccode\u003einset-e-auto\u003c/code\u003e, \u003ccode\u003eend-px\u003c/code\u003e → \u003ccode\u003einset-e-px\u003c/code\u003e, and \u003ccode\u003eend-\u0026lt;number\u0026gt;\u003c/code\u003e → \u003ccode\u003einset-e-\u0026lt;number\u0026gt;\u003c/code\u003e as well as negative versions (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19849\"\u003e#19849\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: move the \u003ccode\u003e-\u003c/code\u003e sign inside the arbitrary value \u003ccode\u003e-left-[9rem]\u003c/code\u003e → \u003ccode\u003eleft-[-9rem]\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19858\"\u003e#19858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: move the \u003ccode\u003e-\u003c/code\u003e sign outside the arbitrary value \u003ccode\u003eml-[calc(-1*var(--width))]\u003c/code\u003e → \u003ccode\u003e-ml-(--width)\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19858\"\u003e#19858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance when scanning JSONL / NDJSON files (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19862\"\u003e#19862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eNODE_PATH\u003c/code\u003e environment variable in standalone CLI (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19617\"\u003e#19617\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Vite 8 in \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19790\"\u003e#19790\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDon't crash when candidates contain prototype properties like \u003ccode\u003erow-constructor\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19725\"\u003e#19725\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalize \u003ccode\u003ecalc(var(--spacing)*…)\u003c/code\u003e expressions into \u003ccode\u003e--spacing(…)\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19769\"\u003e#19769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix crash in canonicalization step when handling utilities containing \u003ccode\u003e@property\u003c/code\u003e at-rules (e.g. \u003ccode\u003eshadow-sm border\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19727\"\u003e#19727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSkip full reload for server only modules scanned by client CSS when using \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19745\"\u003e#19745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove canonicalization for bare values exceeding default spacing scale suggestions (e.g. \u003ccode\u003ew-1234 h-1234\u003c/code\u003e → \u003ccode\u003esize-1234\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19809\"\u003e#19809\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix canonicalization resulting in empty list (e.g. \u003ccode\u003ew-5 h-5 size-5\u003c/code\u003e → \u003ccode\u003e''\u003c/code\u003e instead of \u003ccode\u003esize-5\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19812\"\u003e#19812\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md\"\u003e@​tailwindcss/vite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.2.4] - 2026-04-21\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure imports in \u003ccode\u003e@import\u003c/code\u003e and \u003ccode\u003e@plugin\u003c/code\u003e still resolve correctly when using Vite aliases in \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19947\"\u003e#19947\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.2.3] - 2026-04-20\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCanonicalization: improve canonicalization for \u003ccode\u003etracking-*\u003c/code\u003e utilities by preferring non-negative utilities (e.g. \u003ccode\u003e-tracking-tighter\u003c/code\u003e → \u003ccode\u003etracking-wider\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19827\"\u003e#19827\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix crash due to invalid characters in candidate (exceeding valid unicode code point range) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19829\"\u003e#19829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure query params in imports are considered unique resources when using \u003ccode\u003e@tailwindcss/webpack\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19723\"\u003e#19723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse arbitrary values into shorthand utilities (e.g. \u003ccode\u003epx-[1.2rem] py-[1.2rem]\u003c/code\u003e → \u003ccode\u003ep-[1.2rem]\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19837\"\u003e#19837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003eborder-{t,b}-*\u003c/code\u003e into \u003ccode\u003eborder-y-*\u003c/code\u003e, \u003ccode\u003eborder-{l,r}-*\u003c/code\u003e into \u003ccode\u003eborder-x-*\u003c/code\u003e, and \u003ccode\u003eborder-{t,r,b,l}-*\u003c/code\u003e into \u003ccode\u003eborder-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003escroll-m{t,b}-*\u003c/code\u003e into \u003ccode\u003escroll-my-*\u003c/code\u003e, \u003ccode\u003escroll-m{l,r}-*\u003c/code\u003e into \u003ccode\u003escroll-mx-*\u003c/code\u003e, and \u003ccode\u003escroll-m{t,r,b,l}-*\u003c/code\u003e into \u003ccode\u003escroll-m-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003escroll-p{t,b}-*\u003c/code\u003e into \u003ccode\u003escroll-py-*\u003c/code\u003e, \u003ccode\u003escroll-p{l,r}-*\u003c/code\u003e into \u003ccode\u003escroll-px-*\u003c/code\u003e, and \u003ccode\u003escroll-p{t,r,b,l}-*\u003c/code\u003e into \u003ccode\u003escroll-p-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003eoverflow-{x,y}-*\u003c/code\u003e into \u003ccode\u003eoverflow-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: collapse \u003ccode\u003eoverscroll-{x,y}-*\u003c/code\u003e into \u003ccode\u003eoverscroll-*\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19842\"\u003e#19842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRead from \u003ccode\u003e--placeholder-color\u003c/code\u003e instead of \u003ccode\u003e--background-color\u003c/code\u003e for \u003ccode\u003eplaceholder-*\u003c/code\u003e utilities (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19843\"\u003e#19843\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: ensure files are not emptied out when killing the upgrade process while it's running (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: use \u003ccode\u003econfig.content\u003c/code\u003e when migrating from Tailwind CSS v3 to Tailwind CSS v4 (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpgrade: never migrate files that are ignored by git (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e.env\u003c/code\u003e and \u003ccode\u003e.env.*\u003c/code\u003e to default ignored content files (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19846\"\u003e#19846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: migrate \u003ccode\u003eoverflow-ellipsis\u003c/code\u003e into \u003ccode\u003etext-ellipsis\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19849\"\u003e#19849\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: migrate \u003ccode\u003estart-full\u003c/code\u003e → \u003ccode\u003einset-s-full\u003c/code\u003e, \u003ccode\u003estart-auto\u003c/code\u003e → \u003ccode\u003einset-s-auto\u003c/code\u003e, \u003ccode\u003estart-px\u003c/code\u003e → \u003ccode\u003einset-s-px\u003c/code\u003e, and \u003ccode\u003estart-\u0026lt;number\u0026gt;\u003c/code\u003e → \u003ccode\u003einset-s-\u0026lt;number\u0026gt;\u003c/code\u003e as well as negative versions (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19849\"\u003e#19849\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: migrate \u003ccode\u003eend-full\u003c/code\u003e → \u003ccode\u003einset-e-full\u003c/code\u003e, \u003ccode\u003eend-auto\u003c/code\u003e → \u003ccode\u003einset-e-auto\u003c/code\u003e, \u003ccode\u003eend-px\u003c/code\u003e → \u003ccode\u003einset-e-px\u003c/code\u003e, and \u003ccode\u003eend-\u0026lt;number\u0026gt;\u003c/code\u003e → \u003ccode\u003einset-e-\u0026lt;number\u0026gt;\u003c/code\u003e as well as negative versions (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19849\"\u003e#19849\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: move the \u003ccode\u003e-\u003c/code\u003e sign inside the arbitrary value \u003ccode\u003e-left-[9rem]\u003c/code\u003e → \u003ccode\u003eleft-[-9rem]\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19858\"\u003e#19858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalization: move the \u003ccode\u003e-\u003c/code\u003e sign outside the arbitrary value \u003ccode\u003eml-[calc(-1*var(--width))]\u003c/code\u003e → \u003ccode\u003e-ml-(--width)\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19858\"\u003e#19858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance when scanning JSONL / NDJSON files (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19862\"\u003e#19862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eNODE_PATH\u003c/code\u003e environment variable in standalone CLI (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19617\"\u003e#19617\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.2.2] - 2026-03-18\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3...\n\n_Description has been truncated_","html_url":"https://github.com/FapLandPartyDev/FapLand-Party-Edition/pull/18","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FapLandPartyDev%2FFapLand-Party-Edition/issues/18","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/18/packages"}},{"old_version":"1.5.0","new_version":"1.5.2","update_type":"patch","path":null,"pr_created_at":"2026-05-02T04:21:22.000Z","version_change":"1.5.0 → 1.5.2","issue":{"uuid":"4367885343","node_id":"PR_kwDOROhQZs7Xl5_6","number":13,"state":"open","title":"chore(deps): bump the npm-minor-patch group with 276 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-02T04:21:22.000Z","updated_at":"2026-05-02T04:21:23.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm-minor-patch","update_count":276,"packages":[{"name":"@applemusic-like-lyrics/core","old_version":"0.2.0","new_version":"0.4.2","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/lyric","old_version":"0.3.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/vue","old_version":"0.2.0","new_version":"0.4.2","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@types/pg","old_version":"8.16.0","new_version":"8.20.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"axios","old_version":"1.13.5","new_version":"1.15.2","repository_url":"https://github.com/axios/axios"},{"name":"dayjs","old_version":"1.11.19","new_version":"1.11.20","repository_url":"https://github.com/iamkun/dayjs"},{"name":"dotenv","old_version":"17.2.4","new_version":"17.4.2","repository_url":"https://github.com/motdotla/dotenv"},{"name":"drizzle-kit","old_version":"0.31.9","new_version":"0.31.10","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"drizzle-orm","old_version":"0.45.1","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"lucide-vue-next","old_version":"0.563.0","new_version":"0.577.0","repository_url":"https://github.com/lucide-icons/lucide"},{"name":"multer","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/expressjs/multer"},{"name":"@types/multer","old_version":"2.0.0","new_version":"2.1.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"nuxt","old_version":"4.3.1","new_version":"4.4.4","repository_url":"https://github.com/nuxt/nuxt"},{"name":"postgres","old_version":"3.4.8","new_version":"3.4.9","repository_url":"https://github.com/porsager/postgres"},{"name":"redis","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"vite-plugin-wasm","old_version":"3.5.0","new_version":"3.6.0","repository_url":"https://github.com/Menci/vite-plugin-wasm"},{"name":"vue","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"zod","old_version":"4.3.6","new_version":"4.4.2","repository_url":"https://github.com/colinhacks/zod"},{"name":"@babel/compat-data","old_version":"7.29.0","new_version":"7.29.3","repository_url":"https://github.com/babel/babel"},{"name":"@babel/helper-create-class-features-plugin","old_version":"7.28.6","new_version":"7.29.3","repository_url":"https://github.com/babel/babel"},{"name":"@babel/helpers","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/parser","old_version":"7.29.0","new_version":"7.29.3","repository_url":"https://github.com/babel/babel"},{"name":"@babel/runtime","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@bomb.sh/tab","old_version":"0.0.12","new_version":"0.0.14","repository_url":"https://github.com/bombshell-dev/tab"},{"name":"@clack/core","old_version":"1.0.0","new_version":"1.3.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@clack/prompts","old_version":"1.0.0","new_version":"1.3.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@dxup/nuxt","old_version":"0.3.2","new_version":"0.4.1","repository_url":"https://github.com/KazariEX/dxup"},{"name":"@nuxt/kit","old_version":"3.21.1","new_version":"3.21.4","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@emnapi/core","old_version":"1.8.1","new_version":"1.10.0","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/runtime","old_version":"1.8.1","new_version":"1.10.0","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/wasi-threads","old_version":"1.1.0","new_version":"1.2.1","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@ioredis/commands","old_version":"1.5.0","new_version":"1.5.1","repository_url":"https://github.com/ioredis/commands"},{"name":"@napi-rs/wasm-runtime","old_version":"1.1.1","new_version":"1.1.4","repository_url":"https://github.com/napi-rs/napi-rs"},{"name":"@nuxt/cli","old_version":"3.33.1","new_version":"3.35.1","repository_url":"https://github.com/nuxt/cli"},{"name":"giget","old_version":"2.0.0","new_version":"3.2.0","repository_url":"https://github.com/unjs/giget"},{"name":"@nuxt/devtools","old_version":"3.1.1","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/devtools-kit","old_version":"3.1.1","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/devtools-wizard","old_version":"3.1.1","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/nitro-server","old_version":"4.3.1","new_version":"4.4.4","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@nuxt/schema","old_version":"4.3.1","new_version":"4.4.4","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@nuxt/telemetry","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nuxt/telemetry"},{"name":"@nuxt/vite-builder","old_version":"4.3.1","new_version":"4.4.4","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@oxc-minify/binding-android-arm-eabi","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-android-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-darwin-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-darwin-x64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-freebsd-x64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm-gnueabihf","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm-musleabihf","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-ppc64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-riscv64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-riscv64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-s390x-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-x64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-x64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-openharmony-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-wasm32-wasi","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-win32-arm64-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-win32-ia32-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-win32-x64-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-android-arm-eabi","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-android-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-darwin-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-darwin-x64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-freebsd-x64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm-gnueabihf","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm-musleabihf","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-ppc64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-riscv64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-riscv64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-s390x-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-x64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-x64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-openharmony-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-wasm32-wasi","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-win32-arm64-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-win32-ia32-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-win32-x64-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-project/types","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-android-arm-eabi","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-android-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-darwin-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-darwin-x64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-freebsd-x64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm-gnueabihf","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm-musleabihf","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-ppc64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-riscv64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-riscv64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-s390x-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-x64-gnu","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-x64-musl","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-openharmony-arm64","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-wasm32-wasi","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-win32-arm64-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-win32-ia32-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-win32-x64-msvc","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@poppinss/dumper","old_version":"0.6.5","new_version":"0.7.0","repository_url":"https://github.com/poppinss/dumper"},{"name":"@redis/bloom","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/client","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/json","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/search","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/time-series","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@rolldown/pluginutils","old_version":"1.0.0-rc.2","new_version":"1.0.0-rc.13","repository_url":"https://github.com/rolldown/rolldown"},{"name":"@rollup/plugin-commonjs","old_version":"29.0.0","new_version":"29.0.2","repository_url":"https://github.com/rollup/plugins"},{"name":"@rollup/plugin-terser","old_version":"0.4.4","new_version":"1.0.0","repository_url":"https://github.com/rollup/plugins"},{"name":"@rollup/rollup-android-arm-eabi","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-android-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-darwin-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-darwin-x64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-freebsd-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-freebsd-x64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm-gnueabihf","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm-musleabihf","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-loong64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-loong64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-ppc64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-ppc64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-riscv64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-riscv64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-s390x-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-x64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-x64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-openbsd-x64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-openharmony-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-arm64-msvc","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-ia32-msvc","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-x64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-x64-msvc","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@speed-highlight/core","old_version":"1.2.14","new_version":"1.2.15","repository_url":"https://github.com/speed-highlight/core"},{"name":"@types/node","old_version":"25.2.2","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@types/qs","old_version":"6.14.0","new_version":"6.15.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@unhead/vue","old_version":"2.1.4","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"@vercel/nft","old_version":"1.3.0","new_version":"1.5.0","repository_url":"https://github.com/vercel/nft"},{"name":"@vitejs/plugin-vue","old_version":"6.0.4","new_version":"6.0.6","repository_url":"https://github.com/vitejs/vite-plugin-vue"},{"name":"@vitejs/plugin-vue-jsx","old_version":"5.1.4","new_version":"5.1.5","repository_url":"https://github.com/vitejs/vite-plugin-vue"},{"name":"unplugin-utils","old_version":"0.2.5","new_version":"0.3.1","repository_url":"https://github.com/sxzz/unplugin-utils"},{"name":"@vue/compiler-core","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/compiler-dom","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/compiler-sfc","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/compiler-ssr","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/devtools-core","old_version":"8.0.6","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"@vue/devtools-kit","old_version":"8.0.6","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"@vue/devtools-shared","old_version":"8.0.6","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"@vue/reactivity","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/runtime-core","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/runtime-dom","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/server-renderer","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/shared","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"acorn","old_version":"8.15.0","new_version":"8.16.0","repository_url":"https://github.com/acornjs/acorn"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"autoprefixer","old_version":"10.4.24","new_version":"10.5.0","repository_url":"https://github.com/postcss/autoprefixer"},{"name":"b4a","old_version":"1.7.3","new_version":"1.8.1","repository_url":"https://github.com/holepunchto/b4a"},{"name":"baseline-browser-mapping","old_version":"2.9.19","new_version":"2.10.25","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"bezier-easing","old_version":"2.1.0","new_version":"3.0.0","repository_url":"https://github.com/gre/bezier-easing"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"rc9","old_version":"2.1.2","new_version":"3.0.1","repository_url":"https://github.com/unjs/rc9"},{"name":"caniuse-lite","old_version":"1.0.30001769","new_version":"1.0.30001791","repository_url":"https://github.com/browserslist/caniuse-lite"},{"name":"cookie-es","old_version":"1.2.2","new_version":"1.2.3","repository_url":"https://github.com/unjs/cookie-es"},{"name":"core-js","old_version":"3.48.0","new_version":"3.49.0","repository_url":"https://github.com/zloirock/core-js"},{"name":"croner","old_version":"9.1.0","new_version":"10.0.1","repository_url":"https://github.com/hexagon/croner"},{"name":"css-declaration-sorter","old_version":"7.3.1","new_version":"7.4.0","repository_url":"https://github.com/Siilwyn/css-declaration-sorter"},{"name":"cssnano","old_version":"7.1.2","new_version":"7.1.7","repository_url":"https://github.com/cssnano/cssnano"},{"name":"cssnano-preset-default","old_version":"7.0.10","new_version":"7.0.15","repository_url":"https://github.com/cssnano/cssnano"},{"name":"cssnano-utils","old_version":"5.0.1","new_version":"5.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"define-lazy-prop","old_version":"2.0.0","new_version":"3.0.0","repository_url":"https://github.com/sindresorhus/define-lazy-prop"},{"name":"defu","old_version":"6.1.4","new_version":"6.1.7","repository_url":"https://github.com/unjs/defu"},{"name":"devalue","old_version":"5.6.2","new_version":"5.8.0","repository_url":"https://github.com/sveltejs/devalue"},{"name":"diff","old_version":"8.0.3","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"dompurify","old_version":"3.3.1","new_version":"3.4.2","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"electron-to-chromium","old_version":"1.5.286","new_version":"1.5.349","repository_url":"https://github.com/Kilian/electron-to-chromium"},{"name":"es-module-lexer","old_version":"2.0.0","new_version":"2.1.0","repository_url":"https://github.com/guybedford/es-module-lexer"},{"name":"fast-npm-meta","old_version":"0.4.8","new_version":"1.5.1","repository_url":"https://github.com/antfu/fast-npm-meta"},{"name":"follow-redirects","old_version":"1.15.11","new_version":"1.16.0","repository_url":"https://github.com/follow-redirects/follow-redirects"},{"name":"fuse.js","old_version":"7.1.0","new_version":"7.3.0","repository_url":"https://github.com/krisk/Fuse"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.14.0","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"globby","old_version":"16.1.0","new_version":"16.2.0","repository_url":"https://github.com/sindresorhus/globby"},{"name":"h3","old_version":"1.15.5","new_version":"1.15.11","repository_url":"https://github.com/h3js/h3"},{"name":"hasown","old_version":"2.0.2","new_version":"2.0.3","repository_url":"https://github.com/inspect-js/hasOwn"},{"name":"httpxy","old_version":"0.1.7","new_version":"0.5.1","repository_url":"https://github.com/unjs/httpxy"},{"name":"impound","old_version":"1.0.0","new_version":"1.1.5","repository_url":"https://github.com/unjs/impound"},{"name":"ioredis","old_version":"5.9.2","new_version":"5.10.1","repository_url":"https://github.com/luin/ioredis"},{"name":"jsonfile","old_version":"6.2.0","new_version":"6.2.1","repository_url":"https://github.com/jprichardson/node-jsonfile"},{"name":"koa","old_version":"2.16.3","new_version":"2.16.4","repository_url":"https://github.com/koajs/koa"},{"name":"launch-editor","old_version":"2.12.0","new_version":"2.13.2","repository_url":"https://github.com/yyx990803/launch-editor"},{"name":"listhen","old_version":"1.9.0","new_version":"1.10.0","repository_url":"https://github.com/unjs/listhen"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"minipass","old_version":"7.1.2","new_version":"7.1.3","repository_url":"https://github.com/isaacs/minipass"},{"name":"mlly","old_version":"1.8.0","new_version":"1.8.2","repository_url":"https://github.com/unjs/mlly"},{"name":"nanoid","old_version":"3.3.11","new_version":"3.3.12","repository_url":"https://github.com/ai/nanoid"},{"name":"nanotar","old_version":"0.2.0","new_version":"0.3.0","repository_url":"https://github.com/unjs/nanotar"},{"name":"nitropack","old_version":"2.13.1","new_version":"2.13.4","repository_url":"https://github.com/nitrojs/nitro"},{"name":"node-forge","old_version":"1.3.3","new_version":"1.4.0","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"node-releases","old_version":"2.0.27","new_version":"2.0.38","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"nypm","old_version":"0.6.5","new_version":"0.6.6","repository_url":"https://github.com/unjs/nypm"},{"name":"oxc-minify","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"oxc-parser","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"oxc-transform","old_version":"0.112.0","new_version":"0.128.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"pg-protocol","old_version":"1.11.0","new_version":"1.13.0","repository_url":"https://github.com/brianc/node-postgres"},{"name":"postcss","old_version":"8.5.6","new_version":"8.5.13","repository_url":"https://github.com/postcss/postcss"},{"name":"postcss-colormin","old_version":"7.0.5","new_version":"7.0.9","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-convert-values","old_version":"7.0.8","new_version":"7.0.11","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-comments","old_version":"7.0.5","new_version":"7.0.7","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-duplicates","old_version":"7.0.2","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-empty","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-overridden","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-merge-longhand","old_version":"7.0.5","new_version":"7.0.6","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-merge-rules","old_version":"7.0.7","new_version":"7.0.10","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-font-values","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-gradients","old_version":"7.0.1","new_version":"7.0.4","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-params","old_version":"7.0.5","new_version":"7.0.8","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-selectors","old_version":"7.0.5","new_version":"7.1.0","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-charset","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-display-values","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-positions","old_version":"7.0.1","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-repeat-style","old_version":"7.0.1","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-string","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-timing-functions","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-unicode","old_version":"7.0.5","new_version":"7.0.8","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-url","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-whitespace","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-ordered-values","old_version":"7.0.2","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-reduce-initial","old_version":"7.0.5","new_version":"7.0.8","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-reduce-transforms","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-svgo","old_version":"7.1.0","new_version":"7.1.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-unique-selectors","old_version":"7.0.4","new_version":"7.0.6","repository_url":"https://github.com/cssnano/cssnano"},{"name":"proxy-from-env","old_version":"1.1.0","new_version":"2.1.0","repository_url":"https://github.com/Rob--W/proxy-from-env"},{"name":"qs","old_version":"6.14.1","new_version":"6.15.1","repository_url":"https://github.com/ljharb/qs"},{"name":"resolve","old_version":"1.22.11","new_version":"1.22.12","repository_url":"https://github.com/browserify/resolve"},{"name":"rollup","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"rollup-plugin-visualizer","old_version":"6.0.5","new_version":"7.0.1","repository_url":"https://github.com/btd/rollup-plugin-visualizer"},{"name":"rou3","old_version":"0.7.12","new_version":"0.8.1","repository_url":"https://github.com/h3js/rou3"},{"name":"sax","old_version":"1.4.4","new_version":"1.6.0","repository_url":"https://github.com/isaacs/sax-js"},{"name":"serialize-javascript","old_version":"6.0.2","new_version":"7.0.5","repository_url":"https://github.com/yahoo/serialize-javascript"},{"name":"seroval","old_version":"1.5.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"signal-exit","old_version":"4.1.0","new_version":"3.0.7","repository_url":"https://github.com/tapjs/signal-exit"},{"name":"simple-git","old_version":"3.30.0","new_version":"3.36.0","repository_url":"https://github.com/steveukx/git-js"},{"name":"smob","old_version":"1.5.0","new_version":"1.6.1","repository_url":"https://github.com/Tada5hi/smob"},{"name":"srvx","old_version":"0.11.2","new_version":"0.11.15","repository_url":"https://github.com/h3js/srvx"},{"name":"std-env","old_version":"3.10.0","new_version":"4.1.0","repository_url":"https://github.com/unjs/std-env"},{"name":"streamx","old_version":"2.23.0","new_version":"2.25.0","repository_url":"https://github.com/mafintosh/streamx"},{"name":"structured-clone-es","old_version":"1.0.0","new_version":"2.0.0","repository_url":"https://github.com/antfu-collective/structured-clone-es"},{"name":"stylehacks","old_version":"7.0.7","new_version":"7.0.10","repository_url":"https://github.com/cssnano/cssnano"},{"name":"svgo","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/svg/svgo"},{"name":"tar","old_version":"7.5.7","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"tar-stream","old_version":"3.1.7","new_version":"3.2.0","repository_url":"https://github.com/mafintosh/tar-stream"},{"name":"terser","old_version":"5.46.0","new_version":"5.46.2","repository_url":"https://github.com/terser/terser"},{"name":"text-decoder","old_version":"1.2.3","new_version":"1.2.7","repository_url":"https://github.com/holepunchto/text-decoder"},{"name":"tinyexec","old_version":"1.0.2","new_version":"1.1.2","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"type-fest","old_version":"5.4.4","new_version":"5.6.0","repository_url":"https://github.com/sindresorhus/type-fest"},{"name":"ufo","old_version":"1.6.3","new_version":"1.6.4","repository_url":"https://github.com/unjs/ufo"},{"name":"undici-types","old_version":"7.16.0","new_version":"7.19.2","repository_url":"https://github.com/nodejs/undici"},{"name":"unhead","old_version":"2.1.4","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"unimport","old_version":"5.6.0","new_version":"6.2.0","repository_url":"https://github.com/unjs/unimport"},{"name":"unstorage","old_version":"1.17.4","new_version":"1.17.5","repository_url":"https://github.com/unjs/unstorage"},{"name":"uqr","old_version":"0.1.2","new_version":"0.1.3","repository_url":"https://github.com/unjs/uqr"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"vite-hot-client","old_version":"2.1.0","new_version":"2.2.0","repository_url":"https://github.com/antfu/vite-hot-client"},{"name":"vite-plugin-checker","old_version":"0.12.0","new_version":"0.13.0","repository_url":"https://github.com/fi3ework/vite-plugin-checker"},{"name":"vite-plugin-vue-tracer","old_version":"1.2.0","new_version":"1.3.0","repository_url":"https://github.com/antfu/vite-plugin-vue-tracer"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.2","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"},{"name":"youch","old_version":"4.1.0-beta.13","new_version":"4.1.1","repository_url":"https://github.com/poppinss/youch"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-minor-patch group with 276 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@applemusic-like-lyrics/core](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core) | `0.2.0` | `0.4.2` |\n| [@applemusic-like-lyrics/lyric](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/lyric) | `0.3.0` | `0.4.1` |\n| [@applemusic-like-lyrics/vue](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue) | `0.2.0` | `0.4.2` |\n| [@types/pg](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/pg) | `8.16.0` | `8.20.0` |\n| [axios](https://github.com/axios/axios) | `1.13.5` | `1.15.2` |\n| [dayjs](https://github.com/iamkun/dayjs) | `1.11.19` | `1.11.20` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.2.4` | `17.4.2` |\n| [drizzle-kit](https://github.com/drizzle-team/drizzle-orm) | `0.31.9` | `0.31.10` |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.45.1` | `0.45.2` |\n| [lucide-vue-next](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-vue-next) | `0.563.0` | `0.577.0` |\n| [multer](https://github.com/expressjs/multer) | `2.0.2` | `2.1.1` |\n| [@types/multer](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/multer) | `2.0.0` | `2.1.0` |\n| [nuxt](https://github.com/nuxt/nuxt/tree/HEAD/packages/nuxt) | `4.3.1` | `4.4.4` |\n| [postgres](https://github.com/porsager/postgres) | `3.4.8` | `3.4.9` |\n| [redis](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [vite-plugin-wasm](https://github.com/Menci/vite-plugin-wasm) | `3.5.0` | `3.6.0` |\n| [vue](https://github.com/vuejs/core) | `3.5.28` | `3.5.33` |\n| [zod](https://github.com/colinhacks/zod) | `4.3.6` | `4.4.2` |\n| [@babel/compat-data](https://github.com/babel/babel/tree/HEAD/packages/babel-compat-data) | `7.29.0` | `7.29.3` |\n| [@babel/helper-create-class-features-plugin](https://github.com/babel/babel/tree/HEAD/packages/babel-helper-create-class-features-plugin) | `7.28.6` | `7.29.3` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.28.6` | `7.29.2` |\n| [@babel/parser](https://github.com/babel/babel/tree/HEAD/packages/babel-parser) | `7.29.0` | `7.29.3` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.28.6` | `7.29.2` |\n| [@bomb.sh/tab](https://github.com/bombshell-dev/tab) | `0.0.12` | `0.0.14` |\n| [@clack/core](https://github.com/bombshell-dev/clack/tree/HEAD/packages/core) | `1.0.0` | `1.3.0` |\n| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.0.0` | `1.3.0` |\n| [@dxup/nuxt](https://github.com/KazariEX/dxup) | `0.3.2` | `0.4.1` |\n| [@nuxt/kit](https://github.com/nuxt/nuxt/tree/HEAD/packages/kit) | `3.21.1` | `3.21.4` |\n| [@emnapi/core](https://github.com/toyobayashi/emnapi) | `1.8.1` | `1.10.0` |\n| [@emnapi/runtime](https://github.com/toyobayashi/emnapi) | `1.8.1` | `1.10.0` |\n| [@emnapi/wasi-threads](https://github.com/toyobayashi/emnapi) | `1.1.0` | `1.2.1` |\n| [@ioredis/commands](https://github.com/ioredis/commands) | `1.5.0` | `1.5.1` |\n| [@napi-rs/wasm-runtime](https://github.com/napi-rs/napi-rs/tree/HEAD/wasm-runtime) | `1.1.1` | `1.1.4` |\n| [@nuxt/cli](https://github.com/nuxt/cli/tree/HEAD/packages/nuxt-cli) | `3.33.1` | `3.35.1` |\n| [giget](https://github.com/unjs/giget) | `2.0.0` | `3.2.0` |\n| [@nuxt/devtools](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools) | `3.1.1` | `3.2.4` |\n| [@nuxt/devtools-kit](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools-kit) | `3.1.1` | `3.2.4` |\n| [@nuxt/devtools-wizard](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools-wizard) | `3.1.1` | `3.2.4` |\n| [@nuxt/nitro-server](https://github.com/nuxt/nuxt/tree/HEAD/packages/nitro-server) | `4.3.1` | `4.4.4` |\n| [@nuxt/schema](https://github.com/nuxt/nuxt/tree/HEAD/packages/schema) | `4.3.1` | `4.4.4` |\n| [@nuxt/telemetry](https://github.com/nuxt/telemetry) | `2.7.0` | `2.8.0` |\n| [@nuxt/vite-builder](https://github.com/nuxt/nuxt/tree/HEAD/packages/vite) | `4.3.1` | `4.4.4` |\n| [@oxc-minify/binding-android-arm-eabi](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-android-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-darwin-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-darwin-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-freebsd-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-arm-gnueabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-arm-musleabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-arm64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-arm64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-ppc64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-riscv64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-riscv64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-s390x-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-x64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-linux-x64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-openharmony-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-wasm32-wasi](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-win32-arm64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-win32-ia32-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-minify/binding-win32-x64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-android-arm-eabi](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-android-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-darwin-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-darwin-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-freebsd-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-arm-gnueabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-arm-musleabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-arm64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-arm64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-ppc64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-riscv64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-riscv64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-s390x-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-x64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-linux-x64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-openharmony-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-wasm32-wasi](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-win32-arm64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-win32-ia32-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-parser/binding-win32-x64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [@oxc-project/types](https://github.com/oxc-project/oxc/tree/HEAD/npm/oxc-types) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-android-arm-eabi](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-android-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-darwin-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-darwin-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-freebsd-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-arm-gnueabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-arm-musleabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-arm64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-arm64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-ppc64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-riscv64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-riscv64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-s390x-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-x64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-linux-x64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-openharmony-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-wasm32-wasi](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-win32-arm64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-win32-ia32-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@oxc-transform/binding-win32-x64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [@poppinss/dumper](https://github.com/poppinss/dumper) | `0.6.5` | `0.7.0` |\n| [@redis/bloom](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/client](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/json](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/search](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/time-series](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@rolldown/pluginutils](https://github.com/rolldown/rolldown/tree/HEAD/packages/pluginutils) | `1.0.0-rc.2` | `1.0.0-rc.13` |\n| [@rollup/plugin-commonjs](https://github.com/rollup/plugins/tree/HEAD/packages/commonjs) | `29.0.0` | `29.0.2` |\n| [@rollup/plugin-terser](https://github.com/rollup/plugins/tree/HEAD/packages/terser) | `0.4.4` | `1.0.0` |\n| [@rollup/rollup-android-arm-eabi](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-android-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-darwin-x64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-freebsd-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-freebsd-x64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm-gnueabihf](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm-musleabihf](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-loong64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-loong64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-ppc64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-ppc64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-riscv64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-riscv64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-s390x-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-x64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-openbsd-x64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-openharmony-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-arm64-msvc](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-ia32-msvc](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-x64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-x64-msvc](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@speed-highlight/core](https://github.com/speed-highlight/core) | `1.2.14` | `1.2.15` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.2.2` | `25.6.0` |\n| [@types/qs](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/qs) | `6.14.0` | `6.15.0` |\n| [@unhead/vue](https://github.com/unjs/unhead/tree/HEAD/packages/vue) | `2.1.4` | `2.1.13` |\n| [@vercel/nft](https://github.com/vercel/nft) | `1.3.0` | `1.5.0` |\n| [@vitejs/plugin-vue](https://github.com/vitejs/vite-plugin-vue/tree/HEAD/packages/plugin-vue) | `6.0.4` | `6.0.6` |\n| [@vitejs/plugin-vue-jsx](https://github.com/vitejs/vite-plugin-vue/tree/HEAD/packages/plugin-vue-jsx) | `5.1.4` | `5.1.5` |\n| [unplugin-utils](https://github.com/sxzz/unplugin-utils) | `0.2.5` | `0.3.1` |\n| [@vue/compiler-core](https://github.com/vuejs/core/tree/HEAD/packages/compiler-core) | `3.5.28` | `3.5.33` |\n| [@vue/compiler-dom](https://github.com/vuejs/core/tree/HEAD/packages/compiler-dom) | `3.5.28` | `3.5.33` |\n| [@vue/compiler-sfc](https://github.com/vuejs/core/tree/HEAD/packages/compiler-sfc) | `3.5.28` | `3.5.33` |\n| [@vue/compiler-ssr](https://github.com/vuejs/core/tree/HEAD/packages/compiler-ssr) | `3.5.28` | `3.5.33` |\n| [@vue/devtools-core](https://github.com/vuejs/devtools/tree/HEAD/packages/core) | `8.0.6` | `8.1.1` |\n| [@vue/devtools-kit](https://github.com/vuejs/devtools/tree/HEAD/packages/devtools-kit) | `8.0.6` | `8.1.1` |\n| [@vue/devtools-shared](https://github.com/vuejs/devtools/tree/HEAD/packages/shared) | `8.0.6` | `8.1.1` |\n| [@vue/reactivity](https://github.com/vuejs/core/tree/HEAD/packages/reactivity) | `3.5.28` | `3.5.33` |\n| [@vue/runtime-core](https://github.com/vuejs/core/tree/HEAD/packages/runtime-core) | `3.5.28` | `3.5.33` |\n| [@vue/runtime-dom](https://github.com/vuejs/core/tree/HEAD/packages/runtime-dom) | `3.5.28` | `3.5.33` |\n| [@vue/server-renderer](https://github.com/vuejs/core/tree/HEAD/packages/server-renderer) | `3.5.28` | `3.5.33` |\n| [@vue/shared](https://github.com/vuejs/core/tree/HEAD/packages/shared) | `3.5.28` | `3.5.33` |\n| [acorn](https://github.com/acornjs/acorn) | `8.15.0` | `8.16.0` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [autoprefixer](https://github.com/postcss/autoprefixer) | `10.4.24` | `10.5.0` |\n| [b4a](https://github.com/holepunchto/b4a) | `1.7.3` | `1.8.1` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.9.19` | `2.10.25` |\n| [bezier-easing](https://github.com/gre/bezier-easing) | `2.1.0` | `3.0.0` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.14` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [rc9](https://github.com/unjs/rc9) | `2.1.2` | `3.0.1` |\n| [caniuse-lite](https://github.com/browserslist/caniuse-lite) | `1.0.30001769` | `1.0.30001791` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `1.2.2` | `1.2.3` |\n| [core-js](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js) | `3.48.0` | `3.49.0` |\n| [croner](https://github.com/hexagon/croner) | `9.1.0` | `10.0.1` |\n| [css-declaration-sorter](https://github.com/Siilwyn/css-declaration-sorter) | `7.3.1` | `7.4.0` |\n| [cssnano](https://github.com/cssnano/cssnano) | `7.1.2` | `7.1.7` |\n| [cssnano-preset-default](https://github.com/cssnano/cssnano) | `7.0.10` | `7.0.15` |\n| [cssnano-utils](https://github.com/cssnano/cssnano) | `5.0.1` | `5.0.2` |\n| [define-lazy-prop](https://github.com/sindresorhus/define-lazy-prop) | `2.0.0` | `3.0.0` |\n| [defu](https://github.com/unjs/defu) | `6.1.4` | `6.1.7` |\n| [devalue](https://github.com/sveltejs/devalue) | `5.6.2` | `5.8.0` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.3` | `8.0.4` |\n| [dompurify](https://github.com/cure53/DOMPurify) | `3.3.1` | `3.4.2` |\n| [electron-to-chromium](https://github.com/Kilian/electron-to-chromium) | `1.5.286` | `1.5.349` |\n| [es-module-lexer](https://github.com/guybedford/es-module-lexer) | `2.0.0` | `2.1.0` |\n| [fast-npm-meta](https://github.com/antfu/fast-npm-meta) | `0.4.8` | `1.5.1` |\n| [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.15.11` | `1.16.0` |\n| [fuse.js](https://github.com/krisk/Fuse) | `7.1.0` | `7.3.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.14.0` |\n| [globby](https://github.com/sindresorhus/globby) | `16.1.0` | `16.2.0` |\n| [h3](https://github.com/h3js/h3) | `1.15.5` | `1.15.11` |\n| [hasown](https://github.com/inspect-js/hasOwn) | `2.0.2` | `2.0.3` |\n| [httpxy](https://github.com/unjs/httpxy) | `0.1.7` | `0.5.1` |\n| [impound](https://github.com/unjs/impound) | `1.0.0` | `1.1.5` |\n| [ioredis](https://github.com/luin/ioredis) | `5.9.2` | `5.10.1` |\n| [jsonfile](https://github.com/jprichardson/node-jsonfile) | `6.2.0` | `6.2.1` |\n| [koa](https://github.com/koajs/koa) | `2.16.3` | `2.16.4` |\n| [launch-editor](https://github.com/yyx990803/launch-editor) | `2.12.0` | `2.13.2` |\n| [listhen](https://github.com/unjs/listhen) | `1.9.0` | `1.10.0` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [minipass](https://github.com/isaacs/minipass) | `7.1.2` | `7.1.3` |\n| [mlly](https://github.com/unjs/mlly) | `1.8.0` | `1.8.2` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.11` | `3.3.12` |\n| [nanotar](https://github.com/unjs/nanotar) | `0.2.0` | `0.3.0` |\n| [nitropack](https://github.com/nitrojs/nitro) | `2.13.1` | `2.13.4` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.3` | `1.4.0` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.27` | `2.0.38` |\n| [nypm](https://github.com/unjs/nypm) | `0.6.5` | `0.6.6` |\n| [oxc-minify](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.128.0` |\n| [oxc-parser](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.128.0` |\n| [oxc-transform](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.128.0` |\n| [pg-protocol](https://github.com/brianc/node-postgres/tree/HEAD/packages/pg-protocol) | `1.11.0` | `1.13.0` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.6` | `8.5.13` |\n| [postcss-colormin](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.9` |\n| [postcss-convert-values](https://github.com/cssnano/cssnano) | `7.0.8` | `7.0.11` |\n| [postcss-discard-comments](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.7` |\n| [postcss-discard-duplicates](https://github.com/cssnano/cssnano) | `7.0.2` | `7.0.3` |\n| [postcss-discard-empty](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-discard-overridden](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-merge-longhand](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.6` |\n| [postcss-merge-rules](https://github.com/cssnano/cssnano) | `7.0.7` | `7.0.10` |\n| [postcss-minify-font-values](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-minify-gradients](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.4` |\n| [postcss-minify-params](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.8` |\n| [postcss-minify-selectors](https://github.com/cssnano/cssnano) | `7.0.5` | `7.1.0` |\n| [postcss-normalize-charset](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-display-values](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-positions](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.3` |\n| [postcss-normalize-repeat-style](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.3` |\n| [postcss-normalize-string](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-timing-functions](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-unicode](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.8` |\n| [postcss-normalize-url](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-whitespace](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-ordered-values](https://github.com/cssnano/cssnano) | `7.0.2` | `7.0.3` |\n| [postcss-reduce-initial](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.8` |\n| [postcss-reduce-transforms](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-svgo](https://github.com/cssnano/cssnano) | `7.1.0` | `7.1.2` |\n| [postcss-unique-selectors](https://github.com/cssnano/cssnano) | `7.0.4` | `7.0.6` |\n| [proxy-from-env](https://github.com/Rob--W/proxy-from-env) | `1.1.0` | `2.1.0` |\n| [qs](https://github.com/ljharb/qs) | `6.14.1` | `6.15.1` |\n| [resolve](https://github.com/browserify/resolve) | `1.22.11` | `1.22.12` |\n| [rollup](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [rollup-plugin-visualizer](https://github.com/btd/rollup-plugin-visualizer) | `6.0.5` | `7.0.1` |\n| [rou3](https://github.com/h3js/rou3) | `0.7.12` | `0.8.1` |\n| [sax](https://github.com/isaacs/sax-js) | `1.4.4` | `1.6.0` |\n| [serialize-javascript](https://github.com/yahoo/serialize-javascript) | `6.0.2` | `7.0.5` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.0` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [signal-exit](https://github.com/tapjs/signal-exit) | `4.1.0` | `3.0.7` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.30.0` | `3.36.0` |\n| [smob](https://github.com/Tada5hi/smob) | `1.5.0` | `1.6.1` |\n| [srvx](https://github.com/h3js/srvx) | `0.11.2` | `0.11.15` |\n| [std-env](https://github.com/unjs/std-env) | `3.10.0` | `4.1.0` |\n| [streamx](https://github.com/mafintosh/streamx) | `2.23.0` | `2.25.0` |\n| [structured-clone-es](https://github.com/antfu-collective/structured-clone-es) | `1.0.0` | `2.0.0` |\n| [stylehacks](https://github.com/cssnano/cssnano) | `7.0.7` | `7.0.10` |\n| [svgo](https://github.com/svg/svgo) | `4.0.0` | `4.0.1` |\n| [tar](https://github.com/isaacs/node-tar) | `7.5.7` | `7.5.13` |\n| [tar-stream](https://github.com/mafintosh/tar-stream) | `3.1.7` | `3.2.0` |\n| [terser](https://github.com/terser/terser) | `5.46.0` | `5.46.2` |\n| [text-decoder](https://github.com/holepunchto/text-decoder) | `1.2.3` | `1.2.7` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.2` | `1.1.2` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [type-fest](https://github.com/sindresorhus/type-fest) | `5.4.4` | `5.6.0` |\n| [ufo](https://github.com/unjs/ufo) | `1.6.3` | `1.6.4` |\n| [undici-types](https://github.com/nodejs/undici) | `7.16.0` | `7.19.2` |\n| [unhead](https://github.com/unjs/unhead/tree/HEAD/packages/unhead) | `2.1.4` | `2.1.13` |\n| [unimport](https://github.com/unjs/unimport) | `5.6.0` | `6.2.0` |\n| [unstorage](https://github.com/unjs/unstorage) | `1.17.4` | `1.17.5` |\n| [uqr](https://github.com/unjs/uqr) | `0.1.2` | `0.1.3` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.2` |\n| [vite-hot-client](https://github.com/antfu/vite-hot-client) | `2.1.0` | `2.2.0` |\n| [vite-plugin-checker](https://github.com/fi3ework/vite-plugin-checker) | `0.12.0` | `0.13.0` |\n| [vite-plugin-vue-tracer](https://github.com/antfu/vite-plugin-vue-tracer) | `1.2.0` | `1.3.0` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |\n| [youch](https://github.com/poppinss/youch) | `4.1.0-beta.13` | `4.1.1` |\n\nUpdates `@applemusic-like-lyrics/core` from 0.2.0 to 0.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e@​applemusic-like-lyrics/core's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/blob/main/packages/core/CHANGELOG.md\"\u003e@​applemusic-like-lyrics/core's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.2 (2026-05-01)\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efeat(core):\u003c/strong\u003e 平衡行长度时优先在标点处换行 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/503\"\u003e#503\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix:\u003c/strong\u003e 修复背景行注音高度错误 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/497\"\u003e#497\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix(core):\u003c/strong\u003e 修正平衡行长度时的行宽度计算 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/502\"\u003e#502\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.1 (2026-04-23)\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix:\u003c/strong\u003e 在各绑定中暴露歌词优化选项 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix(vue):\u003c/strong\u003e 修复掩码模式错误的类型 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/496\"\u003e#496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erefactor(core):\u003c/strong\u003e 重构平均行长度实现 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/494\"\u003e#494\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.0 (2026-04-14)\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 移除 canvas 歌词渲染器 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erefactor:\u003c/strong\u003e 重构核心库测试组织模式 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/3db83c93\"\u003e3db83c93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e 修正 optimize-lyric.ts 和 OptimizeLyricOptions 里 cleanUnintentionalOverlaps 的文档和注释 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/75a8c0bb\"\u003e75a8c0bb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 更换工具链 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho \u003ca href=\"https://github.com/Linho1219\"\u003e\u003ccode\u003e@​Linho1219\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMoYingJi \u003ca href=\"https://github.com/MoYingJi\"\u003e\u003ccode\u003e@​MoYingJi\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ab07d7205dd43bf3a0523eaeed9bd8ce589b9199\"\u003e\u003ccode\u003eab07d72\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5c5b2335329d53b326eb842373926ac4011b2029\"\u003e\u003ccode\u003e5c5b233\u003c/code\u003e\u003c/a\u003e feat(core): 平衡行长度时优先在标点处换行 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/503\"\u003e#503\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/b422aeb0093bde58f9ae4947e77ceb683354184b\"\u003e\u003ccode\u003eb422aeb\u003c/code\u003e\u003c/a\u003e fix(core): 修正平衡行长度时的行宽度计算 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/502\"\u003e#502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/c847a6ced40e386bc706bd374913b28877ba3f7d\"\u003e\u003ccode\u003ec847a6c\u003c/code\u003e\u003c/a\u003e fix: 修复背景行注音高度错误 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/497\"\u003e#497\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/48ec944509271f9eebf5a45433645f5296c41584\"\u003e\u003ccode\u003e48ec944\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/b04ada8c5d5d44b8a6c0a063a9b795c3a62e11ea\"\u003e\u003ccode\u003eb04ada8\u003c/code\u003e\u003c/a\u003e refactor(core): 重构平均行长度实现 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/494\"\u003e#494\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5453754f327eab8a285af4a9a3b44fd808ea19ae\"\u003e\u003ccode\u003e5453754\u003c/code\u003e\u003c/a\u003e ci: 调整 changelog 格式与若干 CI 行为 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/491\"\u003e#491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/802d7ec3e38551cbdbf18a778e88f36604a83387\"\u003e\u003ccode\u003e802d7ec\u003c/code\u003e\u003c/a\u003e chore: 移除各包目录下残留的 typedoc 并更新 Nx 配置 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/486\"\u003e#486\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ef837385e99b16d46e4fddadd26aa756ba10231c\"\u003e\u003ccode\u003eef83738\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/aa845765f3fbc15df6d3ede5129a2a0e303da910\"\u003e\u003ccode\u003eaa84576\u003c/code\u003e\u003c/a\u003e chore: 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.4.2/packages/core\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/core\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/lyric` from 0.3.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e@​applemusic-like-lyrics/lyric's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/2fc5d2e19d7a2ce70501a347dec4f5f4f90fbfe2\"\u003e\u003ccode\u003e2fc5d2e\u003c/code\u003e\u003c/a\u003e fix: lyric 包 rust 侧适配 romanWord 可选\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/d862271aa1396b19b9a8bb4d8cd484a0df366270\"\u003e\u003ccode\u003ed862271\u003c/code\u003e\u003c/a\u003e fix: 修复 lyric 包 romanWord 类型\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/@applemusic-like-lyrics/lyric@0.4.1/packages/lyric\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/vue` from 0.2.0 to 0.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e@​applemusic-like-lyrics/vue's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/blob/main/packages/vue/CHANGELOG.md\"\u003e@​applemusic-like-lyrics/vue's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.2 (2026-05-01)\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efeat(core):\u003c/strong\u003e 平衡行长度时优先在标点处换行 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/503\"\u003e#503\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix:\u003c/strong\u003e 修复背景行注音高度错误 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/497\"\u003e#497\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix(core):\u003c/strong\u003e 修正平衡行长度时的行宽度计算 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/502\"\u003e#502\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.1 (2026-04-23)\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix:\u003c/strong\u003e 在各绑定中暴露歌词优化选项 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix(vue):\u003c/strong\u003e 修复掩码模式错误的类型 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/496\"\u003e#496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erefactor(core):\u003c/strong\u003e 重构平均行长度实现 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/494\"\u003e#494\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.0 (2026-04-14)\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 移除 canvas 歌词渲染器 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erefactor:\u003c/strong\u003e 重构核心库测试组织模式 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/3db83c93\"\u003e3db83c93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e 修正 optimize-lyric.ts 和 OptimizeLyricOptions 里 cleanUnintentionalOverlaps 的文档和注释 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/75a8c0bb\"\u003e75a8c0bb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 更换工具链 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho \u003ca href=\"https://github.com/Linho1219\"\u003e\u003ccode\u003e@​Linho1219\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMoYingJi \u003ca href=\"https://github.com/MoYingJi\"\u003e\u003ccode\u003e@​MoYingJi\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ab07d7205dd43bf3a0523eaeed9bd8ce589b9199\"\u003e\u003ccode\u003eab07d72\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/48ec944509271f9eebf5a45433645f5296c41584\"\u003e\u003ccode\u003e48ec944\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/de5c5705666f6d2ebeafb987372564155ba9e036\"\u003e\u003ccode\u003ede5c570\u003c/code\u003e\u003c/a\u003e fix(vue): 修复掩码模式错误的类型 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/496\"\u003e#496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/f1c8309d314640893a3141c2a9eb6b04e428e874\"\u003e\u003ccode\u003ef1c8309\u003c/code\u003e\u003c/a\u003e build: 内联 CSS 中的 url (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/493\"\u003e#493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5cee8f65599cf87dab868602112939b4b6bfc903\"\u003e\u003ccode\u003e5cee8f6\u003c/code\u003e\u003c/a\u003e fix: 在各绑定中暴露歌词优化选项 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5453754f327eab8a285af4a9a3b44fd808ea19ae\"\u003e\u003ccode\u003e5453754\u003c/code\u003e\u003c/a\u003e ci: 调整 changelog 格式与若干 CI 行为 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/491\"\u003e#491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ef837385e99b16d46e4fddadd26aa756ba10231c\"\u003e\u003ccode\u003eef83738\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/aa845765f3fbc15df6d3ede5129a2a0e303da910\"\u003e\u003ccode\u003eaa84576\u003c/code\u003e\u003c/a\u003e chore: 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/bf4e41b4f8bac3610e17aa03fbfde7c11b1f730b\"\u003e\u003ccode\u003ebf4e41b\u003c/code\u003e\u003c/a\u003e 更换各个工具链 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/98b80b2b3a32dc09dfaf24cc9ba7f4797b2d3a1f\"\u003e\u003ccode\u003e98b80b2\u003c/code\u003e\u003c/a\u003e chore: 统一 TS 配置\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.4.2/packages/vue\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@types/pg` from 8.16.0 to 8.20.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/pg\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.5 to 1.15.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.2\u003c/h2\u003e\n\u003cp\u003eThis release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Hardening (HTTP Adapter):\u003c/strong\u003e Hardened the Node HTTP adapter and \u003ccode\u003eresolveConfig\u003c/code\u003e/\u003ccode\u003emergeConfig\u003c/code\u003e/validator paths to read only own properties and use null-prototype config objects, preventing polluted \u003ccode\u003eauth\u003c/code\u003e, \u003ccode\u003ebaseURL\u003c/code\u003e, \u003ccode\u003esocketPath\u003c/code\u003e, \u003ccode\u003ebeforeRedirect\u003c/code\u003e, and \u003ccode\u003einsecureHTTPParser\u003c/code\u003e from influencing requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSSRF via \u003ccode\u003esocketPath\u003c/code\u003e:\u003c/strong\u003e Rejects non-string \u003ccode\u003esocketPath\u003c/code\u003e values and adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e config option to restrict permitted Unix domain socket paths, returning \u003ccode\u003eAxiosError\u003c/code\u003e \u003ccode\u003eERR_BAD_OPTION_VALUE\u003c/code\u003e on mismatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSupply-chain Hardening:\u003c/strong\u003e Added \u003ccode\u003e.npmrc\u003c/code\u003e with \u003ccode\u003eignore-scripts=true\u003c/code\u003e, lockfile lint CI, non-blocking reproducible build diff, scoped CODEOWNERS, expanded \u003ccode\u003eSECURITY.md\u003c/code\u003e/\u003ccode\u003eTHREATMODEL.md\u003c/code\u003e with provenance verification (\u003ccode\u003enpm audit signatures\u003c/code\u003e), 60-day resolution policy, and maintainer incident-response runbook. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eallowedSocketPaths\u003c/code\u003e Config Option:\u003c/strong\u003e New request config option (and TypeScript types) to allowlist Unix domain socket paths used by the Node http adapter; backwards compatible when unset. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eKeep-alive Socket Memory Leak:\u003c/strong\u003e Installs a single per-socket \u003ccode\u003eerror\u003c/code\u003e listener tracking the active request via \u003ccode\u003ekAxiosSocketListener\u003c/code\u003e/\u003ccode\u003ekAxiosCurrentReq\u003c/code\u003e, eliminating per-request listener accumulation, \u003ccode\u003eMaxListenersExceededWarning\u003c/code\u003e, and linear heap growth under concurrent or long-running keep-alive workloads (fixes \u003ca href=\"https://redirect.github.com/axios/axios/issues/10780\"\u003e#10780\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eChangelog:\u003c/strong\u003e Updated \u003ccode\u003eCHANGELOG.md\u003c/code\u003e with v1.15.1 release notes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.15.1...v1.15.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.15.1\u003c/h2\u003e\n\u003cp\u003eThis release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeader Injection Hardening:\u003c/strong\u003e Tightened validation and sanitisation across request header construction to close the header-injection attack surface. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10749\"\u003e#10749\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCRLF Stripping in Multipart Headers:\u003c/strong\u003e Correctly strips CR/LF from multipart header values to prevent injection via field names and filenames. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10758\"\u003e#10758\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution / Auth Bypass:\u003c/strong\u003e Replaced unsafe \u003ccode\u003ein\u003c/code\u003e checks with \u003ccode\u003ehasOwnProperty\u003c/code\u003e to prevent authentication bypass via prototype pollution on config objects, with additional regression tests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10761\"\u003e#10761\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10760\"\u003e#10760\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003ewithXSRFToken\u003c/code\u003e Truthy Bypass:\u003c/strong\u003e Short-circuits on any truthy non-boolean value, so an ambiguous config no longer silently leaks the XSRF token cross-origin. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003emaxBodyLength\u003c/code\u003e With Zero Redirects:\u003c/strong\u003e Enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e even when \u003ccode\u003emaxRedirects\u003c/code\u003e is set to \u003ccode\u003e0\u003c/code\u003e, closing a bypass path for oversized request bodies. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10753\"\u003e#10753\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eStreamed Response \u003ccode\u003emaxContentLength\u003c/code\u003e Bypass:\u003c/strong\u003e Applies \u003ccode\u003emaxContentLength\u003c/code\u003e to streamed responses that previously bypassed the cap. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10754\"\u003e#10754\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFollow-up CVE Completion:\u003c/strong\u003e Completes an earlier incomplete CVE fix to fully close the regression window. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10755\"\u003e#10755\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAI-Based Docs Translations:\u003c/strong\u003e Initial scaffold for AI-assisted translations of the documentation site. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10705\"\u003e#10705\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eLocation\u003c/code\u003e Request Header Type:\u003c/strong\u003e Adds \u003ccode\u003eLocation\u003c/code\u003e to \u003ccode\u003eCommonRequestHeadersList\u003c/code\u003e for accurate typing of redirect-aware requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7528\"\u003e#7528\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFormData Handling:\u003c/strong\u003e Removes \u003ccode\u003eContent-Type\u003c/code\u003e when no boundary is present on \u003ccode\u003eFormData\u003c/code\u003e fetch requests, supports multi-select fields, cancels \u003ccode\u003erequest.body\u003c/code\u003e instead of the source stream on fetch abort, and fixes a recursion bug in form-data serialisation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7314\"\u003e#7314\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10676\"\u003e#10676\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10702\"\u003e#10702\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10726\"\u003e#10726\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter:\u003c/strong\u003e Handles socket-only request errors without leaking keep-alive listeners. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10576\"\u003e#10576\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProgress Events:\u003c/strong\u003e Clamps \u003ccode\u003eloaded\u003c/code\u003e to \u003ccode\u003etotal\u003c/code\u003e for computable upload/download progress events. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7458\"\u003e#7458\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes:\u003c/strong\u003e Aligns \u003ccode\u003erunWhen\u003c/code\u003e type with the runtime behaviour in \u003ccode\u003eInterceptorManager\u003c/code\u003e and makes response header keys case-insensitive. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7529\"\u003e#7529\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10677\"\u003e#10677\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003ebuildFullPath\u003c/code\u003e:\u003c/strong\u003e Uses strict equality in the base/relative URL check. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7252\"\u003e#7252\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eAxiosURLSearchParams\u003c/code\u003e Regex:\u003c/strong\u003e Improves the regex used for param serialisation to avoid edge-case mismatches. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10736\"\u003e#10736\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eResilient Value Parsing:\u003c/strong\u003e Parses out header/config values instead of throwing on malformed input. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10687\"\u003e#10687\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.2 - April 21, 2026\u003c/h2\u003e\n\u003cp\u003eThis release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Hardening (HTTP Adapter):\u003c/strong\u003e Hardened the Node HTTP adapter and \u003ccode\u003eresolveConfig\u003c/code\u003e/\u003ccode\u003emergeConfig\u003c/code\u003e/validator paths to read only own properties and use null-prototype config objects, preventing polluted \u003ccode\u003eauth\u003c/code\u003e, \u003ccode\u003ebaseURL\u003c/code\u003e, \u003ccode\u003esocketPath\u003c/code\u003e, \u003ccode\u003ebeforeRedirect\u003c/code\u003e, and \u003ccode\u003einsecureHTTPParser\u003c/code\u003e from influencing requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSSRF via \u003ccode\u003esocketPath\u003c/code\u003e:\u003c/strong\u003e Rejects non-string \u003ccode\u003esocketPath\u003c/code\u003e values and adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e config option to restrict permitted Unix domain socket paths, returning \u003ccode\u003eAxiosError\u003c/code\u003e \u003ccode\u003eERR_BAD_OPTION_VALUE\u003c/code\u003e on mismatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSupply-chain Hardening:\u003c/strong\u003e Added \u003ccode\u003e.npmrc\u003c/code\u003e with \u003ccode\u003eignore-scripts=true\u003c/code\u003e, lockfile lint CI, non-blocking reproducible build diff, scoped CODEOWNERS, expanded \u003ccode\u003eSECURITY.md\u003c/code\u003e/\u003ccode\u003eTHREATMODEL.md\u003c/code\u003e with provenance verification (\u003ccode\u003enpm audit signatures\u003c/code\u003e), 60-day resolution policy, and maintainer incident-response runbook. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eallowedSocketPaths\u003c/code\u003e Config Option:\u003c/strong\u003e New request config option (and TypeScript types) to allowlist Unix domain socket paths used by the Node http adapter; backwards compatible when unset. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eKeep-alive Socket Memory Leak:\u003c/strong\u003e Installs a single per-socket \u003ccode\u003eerror\u003c/code\u003e listener tracking the active request via \u003ccode\u003ekAxiosSocketListener\u003c/code\u003e/\u003ccode\u003ekAxiosCurrentReq\u003c/code\u003e, eliminating per-request listener accumulation, \u003ccode\u003eMaxListenersExceededWarning\u003c/code\u003e, and linear heap growth under concurrent or long-running keep-alive workloads (fixes \u003ca href=\"https://redirect.github.com/axios/axios/issues/10780\"\u003e#10780\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eChangelog:\u003c/strong\u003e Updated \u003ccode\u003eCHANGELOG.md\u003c/code\u003e with v1.15.1 release notes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.15.1...v1.15.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003chr /\u003e\n\u003ch2\u003ev1.15.1 - April 19, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eHeader Injection Hardening:\u003c/strong\u003e Tightened validation and sanitisation across request header construction to close the header-injection attack surface. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10749\"\u003e#10749\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eCRLF Stripping in Multipart Headers:\u003c/strong\u003e Correctly strips CR/LF from multipart header values to prevent injection via field names and filenames. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10758\"\u003e#10758\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ePrototype Pollution / Auth Bypass:\u003c/strong\u003e Replaced unsafe \u003ccode\u003ein\u003c/code\u003e checks with \u003ccode\u003ehasOwnProperty\u003c/code\u003e to prevent authentication bypass via prototype pollution on config objects, with additional regression tests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10761\"\u003e#10761\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10760\"\u003e#10760\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ewithXSRFToken\u003c/code\u003e Truthy Bypass:\u003c/strong\u003e Short-circuits on any truthy non-boolean value, so an ambiguous config no longer silently leaks the XSRF token cross-origin. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003emaxBodyLength\u003c/code\u003e With Zero Redirects:\u003c/strong\u003e Enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e even when \u003ccode\u003emaxRedirects\u003c/code\u003e is set to \u003ccode\u003e0\u003c/code\u003e, closing a bypass path for oversized request bodies. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10753\"\u003e#10753\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eStreamed Response \u003ccode\u003emaxContentLength\u003c/code\u003e Bypass:\u003c/strong\u003e Applies \u003ccode\u003emaxContentLength\u003c/code\u003e to streamed responses that previously bypassed the cap. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10754\"\u003e#10754\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eFollow-up CVE Completion:\u003c/strong\u003e Completes an earlier incomplete CVE fix to fully close the regression window. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10755\"\u003e#10755\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAI-Based Docs Translations:\u003c/strong\u003e Initial scaffold for AI-assisted translations of the documentation site. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10705\"\u003e#10705\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/582934382e4e0e0bcb679c628071a4203e93cf57\"\u003e\u003ccode\u003e5829343\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.2 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10789\"\u003e#10789\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4709a48fa2717ba97f43f5432d48ca4e26c2d326\"\u003e\u003ccode\u003e4709a48\u003c/code\u003e\u003c/a\u003e fix: added fix for memory leak in sockets (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/be3336014e01f9a4fc1f8aef15303cf7daaf58db\"\u003e\u003ccode\u003ebe33360\u003c/code\u003e\u003c/a\u003e chore: update changelog (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa\"\u003e\u003ccode\u003e4791514\u003c/code\u003e\u003c/a\u003e fix: more header pollutions (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/6feafcff6c2dbafe206161c5d09e38e1d36af66f\"\u003e\u003ccode\u003e6feafcf\u003c/code\u003e\u003c/a\u003e fix: socket issue (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/302e2739c602f00e323d4f3f5c79500647633a73\"\u003e\u003ccode\u003e302e273\u003c/code\u003e\u003c/a\u003e docs: update docs, add a couple actions etc (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ac42446be51300fe214ba3c6e40cc95f34fd6871\"\u003e\u003ccode\u003eac42446\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.1 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10767\"\u003e#10767\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/908f2206b6bfeff67236784abce85935698ac1d9\"\u003e\u003ccode\u003e908f220\u003c/code\u003e\u003c/a\u003e docs: update threatmodel (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10765\"\u003e#10765\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f93f8155250c2e066205521eda05ae22983a1f6d\"\u003e\u003ccode\u003ef93f815\u003c/code\u003e\u003c/a\u003e docs: added docs around potential decompressions bomb (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10763\"\u003e#10763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/1728aa1b15b8857f970611fd8983c06b423fc486\"\u003e\u003ccode\u003e1728aa1\u003c/code\u003e\u003c/a\u003e fix: short-circuits on any truthy non-boolean in withXSRFToken (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.5...v1.15.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eTh...\n\n_Description has been truncated_","html_url":"https://github.com/weiyb852/VoiceHub-93b43/pull/13","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/weiyb852%2FVoiceHub-93b43/issues/13","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/13/packages"}},{"old_version":"1.5.0","new_version":"1.5.2","update_type":"patch","path":null,"pr_created_at":"2026-04-25T01:57:32.000Z","version_change":"1.5.0 → 1.5.2","issue":{"uuid":"4326652390","node_id":"PR_kwDOROmGHM7Vhg6o","number":12,"state":"open","title":"chore(deps): bump the npm-minor-patch group with 266 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-25T01:57:32.000Z","updated_at":"2026-04-25T01:57:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm-minor-patch","update_count":266,"packages":[{"name":"@applemusic-like-lyrics/core","old_version":"0.2.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/lyric","old_version":"0.3.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/vue","old_version":"0.2.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@types/pg","old_version":"8.16.0","new_version":"8.20.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"axios","old_version":"1.13.5","new_version":"1.15.2","repository_url":"https://github.com/axios/axios"},{"name":"dayjs","old_version":"1.11.19","new_version":"1.11.20","repository_url":"https://github.com/iamkun/dayjs"},{"name":"dotenv","old_version":"17.2.4","new_version":"17.4.2","repository_url":"https://github.com/motdotla/dotenv"},{"name":"drizzle-kit","old_version":"0.31.9","new_version":"0.31.10","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"drizzle-orm","old_version":"0.45.1","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"lucide-vue-next","old_version":"0.563.0","new_version":"0.577.0","repository_url":"https://github.com/lucide-icons/lucide"},{"name":"multer","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/expressjs/multer"},{"name":"@types/multer","old_version":"2.0.0","new_version":"2.1.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"nuxt","old_version":"4.3.1","new_version":"4.4.2","repository_url":"https://github.com/nuxt/nuxt"},{"name":"postgres","old_version":"3.4.8","new_version":"3.4.9","repository_url":"https://github.com/porsager/postgres"},{"name":"redis","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"vite-plugin-wasm","old_version":"3.5.0","new_version":"3.6.0","repository_url":"https://github.com/Menci/vite-plugin-wasm"},{"name":"vue","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@babel/helpers","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/parser","old_version":"7.29.0","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/runtime","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@bomb.sh/tab","old_version":"0.0.12","new_version":"0.0.14","repository_url":"https://github.com/bombshell-dev/tab"},{"name":"@clack/core","old_version":"1.0.0","new_version":"1.2.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@clack/prompts","old_version":"1.0.0","new_version":"1.2.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@dxup/nuxt","old_version":"0.3.2","new_version":"0.4.1","repository_url":"https://github.com/KazariEX/dxup"},{"name":"@nuxt/kit","old_version":"3.21.1","new_version":"3.21.2","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@emnapi/core","old_version":"1.8.1","new_version":"1.10.0","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/runtime","old_version":"1.8.1","new_version":"1.10.0","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/wasi-threads","old_version":"1.1.0","new_version":"1.2.1","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@ioredis/commands","old_version":"1.5.0","new_version":"1.5.1","repository_url":"https://github.com/ioredis/commands"},{"name":"@napi-rs/wasm-runtime","old_version":"1.1.1","new_version":"1.1.4","repository_url":"https://github.com/napi-rs/napi-rs"},{"name":"@nuxt/cli","old_version":"3.33.1","new_version":"3.34.0","repository_url":"https://github.com/nuxt/cli"},{"name":"giget","old_version":"2.0.0","new_version":"3.2.0","repository_url":"https://github.com/unjs/giget"},{"name":"@nuxt/devtools","old_version":"3.1.1","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/devtools-kit","old_version":"3.1.1","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/devtools-wizard","old_version":"3.1.1","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/nitro-server","old_version":"4.3.1","new_version":"4.4.2","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@nuxt/schema","old_version":"4.3.1","new_version":"4.4.2","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@nuxt/telemetry","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nuxt/telemetry"},{"name":"@nuxt/vite-builder","old_version":"4.3.1","new_version":"4.4.2","repository_url":"https://github.com/nuxt/nuxt"},{"name":"@oxc-minify/binding-android-arm-eabi","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-android-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-darwin-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-darwin-x64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-freebsd-x64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm-gnueabihf","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm-musleabihf","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-arm64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-ppc64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-riscv64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-riscv64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-s390x-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-x64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-linux-x64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-openharmony-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-wasm32-wasi","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-win32-arm64-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-win32-ia32-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-minify/binding-win32-x64-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-android-arm-eabi","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-android-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-darwin-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-darwin-x64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-freebsd-x64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm-gnueabihf","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm-musleabihf","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-arm64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-ppc64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-riscv64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-riscv64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-s390x-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-x64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-linux-x64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-openharmony-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-wasm32-wasi","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-win32-arm64-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-win32-ia32-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-parser/binding-win32-x64-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-project/types","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-android-arm-eabi","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-android-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-darwin-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-darwin-x64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-freebsd-x64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm-gnueabihf","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm-musleabihf","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-arm64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-ppc64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-riscv64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-riscv64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-s390x-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-x64-gnu","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-linux-x64-musl","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-openharmony-arm64","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-wasm32-wasi","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-win32-arm64-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-win32-ia32-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@oxc-transform/binding-win32-x64-msvc","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"@poppinss/dumper","old_version":"0.6.5","new_version":"0.7.0","repository_url":"https://github.com/poppinss/dumper"},{"name":"@redis/bloom","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/client","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/json","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/search","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@redis/time-series","old_version":"5.10.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"@rolldown/pluginutils","old_version":"1.0.0-rc.2","new_version":"1.0.0-rc.13","repository_url":"https://github.com/rolldown/rolldown"},{"name":"@rollup/plugin-commonjs","old_version":"29.0.0","new_version":"29.0.2","repository_url":"https://github.com/rollup/plugins"},{"name":"@rollup/plugin-terser","old_version":"0.4.4","new_version":"1.0.0","repository_url":"https://github.com/rollup/plugins"},{"name":"@rollup/rollup-android-arm-eabi","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-android-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-darwin-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-darwin-x64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-freebsd-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-freebsd-x64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm-gnueabihf","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm-musleabihf","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-arm64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-loong64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-loong64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-ppc64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-ppc64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-riscv64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-riscv64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-s390x-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-x64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-linux-x64-musl","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-openbsd-x64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-openharmony-arm64","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-arm64-msvc","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-ia32-msvc","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-x64-gnu","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@rollup/rollup-win32-x64-msvc","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"@speed-highlight/core","old_version":"1.2.14","new_version":"1.2.15","repository_url":"https://github.com/speed-highlight/core"},{"name":"@types/node","old_version":"25.2.2","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@types/qs","old_version":"6.14.0","new_version":"6.15.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@unhead/vue","old_version":"2.1.4","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"@vercel/nft","old_version":"1.3.0","new_version":"1.5.0","repository_url":"https://github.com/vercel/nft"},{"name":"@vitejs/plugin-vue","old_version":"6.0.4","new_version":"6.0.6","repository_url":"https://github.com/vitejs/vite-plugin-vue"},{"name":"@vitejs/plugin-vue-jsx","old_version":"5.1.4","new_version":"5.1.5","repository_url":"https://github.com/vitejs/vite-plugin-vue"},{"name":"unplugin-utils","old_version":"0.2.5","new_version":"0.3.1","repository_url":"https://github.com/sxzz/unplugin-utils"},{"name":"@vue/compiler-core","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/compiler-dom","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/compiler-sfc","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/compiler-ssr","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/devtools-core","old_version":"8.0.6","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"@vue/devtools-kit","old_version":"8.0.6","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"@vue/devtools-shared","old_version":"8.0.6","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"@vue/reactivity","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/runtime-core","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/runtime-dom","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/server-renderer","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"@vue/shared","old_version":"3.5.28","new_version":"3.5.33","repository_url":"https://github.com/vuejs/core"},{"name":"acorn","old_version":"8.15.0","new_version":"8.16.0","repository_url":"https://github.com/acornjs/acorn"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"autoprefixer","old_version":"10.4.24","new_version":"10.5.0","repository_url":"https://github.com/postcss/autoprefixer"},{"name":"b4a","old_version":"1.7.3","new_version":"1.8.0","repository_url":"https://github.com/holepunchto/b4a"},{"name":"baseline-browser-mapping","old_version":"2.9.19","new_version":"2.10.21","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"bezier-easing","old_version":"2.1.0","new_version":"3.0.0","repository_url":"https://github.com/gre/bezier-easing"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"rc9","old_version":"2.1.2","new_version":"3.0.1","repository_url":"https://github.com/unjs/rc9"},{"name":"caniuse-lite","old_version":"1.0.30001769","new_version":"1.0.30001790","repository_url":"https://github.com/browserslist/caniuse-lite"},{"name":"cookie-es","old_version":"1.2.2","new_version":"1.2.3","repository_url":"https://github.com/unjs/cookie-es"},{"name":"core-js","old_version":"3.48.0","new_version":"3.49.0","repository_url":"https://github.com/zloirock/core-js"},{"name":"croner","old_version":"9.1.0","new_version":"10.0.1","repository_url":"https://github.com/hexagon/croner"},{"name":"css-declaration-sorter","old_version":"7.3.1","new_version":"7.4.0","repository_url":"https://github.com/Siilwyn/css-declaration-sorter"},{"name":"cssnano","old_version":"7.1.2","new_version":"7.1.7","repository_url":"https://github.com/cssnano/cssnano"},{"name":"cssnano-preset-default","old_version":"7.0.10","new_version":"7.0.15","repository_url":"https://github.com/cssnano/cssnano"},{"name":"cssnano-utils","old_version":"5.0.1","new_version":"5.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"define-lazy-prop","old_version":"2.0.0","new_version":"3.0.0","repository_url":"https://github.com/sindresorhus/define-lazy-prop"},{"name":"defu","old_version":"6.1.4","new_version":"6.1.7","repository_url":"https://github.com/unjs/defu"},{"name":"devalue","old_version":"5.6.2","new_version":"5.7.1","repository_url":"https://github.com/sveltejs/devalue"},{"name":"diff","old_version":"8.0.3","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"dompurify","old_version":"3.3.1","new_version":"3.4.1","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"electron-to-chromium","old_version":"1.5.286","new_version":"1.5.344","repository_url":"https://github.com/Kilian/electron-to-chromium"},{"name":"fast-npm-meta","old_version":"0.4.8","new_version":"1.5.0","repository_url":"https://github.com/antfu/fast-npm-meta"},{"name":"follow-redirects","old_version":"1.15.11","new_version":"1.16.0","repository_url":"https://github.com/follow-redirects/follow-redirects"},{"name":"fuse.js","old_version":"7.1.0","new_version":"7.3.0","repository_url":"https://github.com/krisk/Fuse"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.14.0","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"globby","old_version":"16.1.0","new_version":"16.2.0","repository_url":"https://github.com/sindresorhus/globby"},{"name":"h3","old_version":"1.15.5","new_version":"1.15.11","repository_url":"https://github.com/h3js/h3"},{"name":"hasown","old_version":"2.0.2","new_version":"2.0.3","repository_url":"https://github.com/inspect-js/hasOwn"},{"name":"httpxy","old_version":"0.1.7","new_version":"0.5.1","repository_url":"https://github.com/unjs/httpxy"},{"name":"impound","old_version":"1.0.0","new_version":"1.1.5","repository_url":"https://github.com/unjs/impound"},{"name":"ioredis","old_version":"5.9.2","new_version":"5.10.1","repository_url":"https://github.com/luin/ioredis"},{"name":"jsonfile","old_version":"6.2.0","new_version":"6.2.1","repository_url":"https://github.com/jprichardson/node-jsonfile"},{"name":"koa","old_version":"2.16.3","new_version":"2.16.4","repository_url":"https://github.com/koajs/koa"},{"name":"launch-editor","old_version":"2.12.0","new_version":"2.13.2","repository_url":"https://github.com/yyx990803/launch-editor"},{"name":"listhen","old_version":"1.9.0","new_version":"1.9.1","repository_url":"https://github.com/unjs/listhen"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"minipass","old_version":"7.1.2","new_version":"7.1.3","repository_url":"https://github.com/isaacs/minipass"},{"name":"mlly","old_version":"1.8.0","new_version":"1.8.2","repository_url":"https://github.com/unjs/mlly"},{"name":"nanotar","old_version":"0.2.0","new_version":"0.3.0","repository_url":"https://github.com/unjs/nanotar"},{"name":"nitropack","old_version":"2.13.1","new_version":"2.13.3","repository_url":"https://github.com/nitrojs/nitro"},{"name":"node-forge","old_version":"1.3.3","new_version":"1.4.0","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"node-releases","old_version":"2.0.27","new_version":"2.0.38","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"nypm","old_version":"0.6.5","new_version":"0.6.6","repository_url":"https://github.com/unjs/nypm"},{"name":"oxc-minify","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"oxc-parser","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"oxc-transform","old_version":"0.112.0","new_version":"0.117.0","repository_url":"https://github.com/oxc-project/oxc"},{"name":"pg-protocol","old_version":"1.11.0","new_version":"1.13.0","repository_url":"https://github.com/brianc/node-postgres"},{"name":"postcss","old_version":"8.5.6","new_version":"8.5.10","repository_url":"https://github.com/postcss/postcss"},{"name":"postcss-colormin","old_version":"7.0.5","new_version":"7.0.9","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-convert-values","old_version":"7.0.8","new_version":"7.0.11","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-comments","old_version":"7.0.5","new_version":"7.0.7","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-duplicates","old_version":"7.0.2","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-empty","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-discard-overridden","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-merge-longhand","old_version":"7.0.5","new_version":"7.0.6","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-merge-rules","old_version":"7.0.7","new_version":"7.0.10","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-font-values","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-gradients","old_version":"7.0.1","new_version":"7.0.4","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-params","old_version":"7.0.5","new_version":"7.0.8","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-minify-selectors","old_version":"7.0.5","new_version":"7.1.0","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-charset","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-display-values","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-positions","old_version":"7.0.1","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-repeat-style","old_version":"7.0.1","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-string","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-timing-functions","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-unicode","old_version":"7.0.5","new_version":"7.0.8","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-url","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-normalize-whitespace","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-ordered-values","old_version":"7.0.2","new_version":"7.0.3","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-reduce-initial","old_version":"7.0.5","new_version":"7.0.8","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-reduce-transforms","old_version":"7.0.1","new_version":"7.0.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-svgo","old_version":"7.1.0","new_version":"7.1.2","repository_url":"https://github.com/cssnano/cssnano"},{"name":"postcss-unique-selectors","old_version":"7.0.4","new_version":"7.0.6","repository_url":"https://github.com/cssnano/cssnano"},{"name":"proxy-from-env","old_version":"1.1.0","new_version":"2.1.0","repository_url":"https://github.com/Rob--W/proxy-from-env"},{"name":"qs","old_version":"6.14.1","new_version":"6.15.1","repository_url":"https://github.com/ljharb/qs"},{"name":"resolve","old_version":"1.22.11","new_version":"1.22.12","repository_url":"https://github.com/browserify/resolve"},{"name":"rollup","old_version":"4.57.1","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"rollup-plugin-visualizer","old_version":"6.0.5","new_version":"7.0.1","repository_url":"https://github.com/btd/rollup-plugin-visualizer"},{"name":"rou3","old_version":"0.7.12","new_version":"0.8.1","repository_url":"https://github.com/h3js/rou3"},{"name":"sax","old_version":"1.4.4","new_version":"1.6.0","repository_url":"https://github.com/isaacs/sax-js"},{"name":"serialize-javascript","old_version":"6.0.2","new_version":"7.0.5","repository_url":"https://github.com/yahoo/serialize-javascript"},{"name":"seroval","old_version":"1.5.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"simple-git","old_version":"3.30.0","new_version":"3.36.0","repository_url":"https://github.com/steveukx/git-js"},{"name":"smob","old_version":"1.5.0","new_version":"1.6.1","repository_url":"https://github.com/Tada5hi/smob"},{"name":"srvx","old_version":"0.11.2","new_version":"0.11.15","repository_url":"https://github.com/h3js/srvx"},{"name":"streamx","old_version":"2.23.0","new_version":"2.25.0","repository_url":"https://github.com/mafintosh/streamx"},{"name":"structured-clone-es","old_version":"1.0.0","new_version":"2.0.0","repository_url":"https://github.com/antfu-collective/structured-clone-es"},{"name":"stylehacks","old_version":"7.0.7","new_version":"7.0.10","repository_url":"https://github.com/cssnano/cssnano"},{"name":"svgo","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/svg/svgo"},{"name":"tar","old_version":"7.5.7","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"tar-stream","old_version":"3.1.7","new_version":"3.1.8","repository_url":"https://github.com/mafintosh/tar-stream"},{"name":"terser","old_version":"5.46.0","new_version":"5.46.2","repository_url":"https://github.com/terser/terser"},{"name":"text-decoder","old_version":"1.2.3","new_version":"1.2.7","repository_url":"https://github.com/holepunchto/text-decoder"},{"name":"tinyexec","old_version":"1.0.2","new_version":"1.1.1","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"type-fest","old_version":"5.4.4","new_version":"5.6.0","repository_url":"https://github.com/sindresorhus/type-fest"},{"name":"undici-types","old_version":"7.16.0","new_version":"7.19.2","repository_url":"https://github.com/nodejs/undici"},{"name":"unhead","old_version":"2.1.4","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"unimport","old_version":"5.6.0","new_version":"6.1.1","repository_url":"https://github.com/unjs/unimport"},{"name":"unstorage","old_version":"1.17.4","new_version":"1.17.5","repository_url":"https://github.com/unjs/unstorage"},{"name":"uqr","old_version":"0.1.2","new_version":"0.1.3","repository_url":"https://github.com/unjs/uqr"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"vite-plugin-vue-tracer","old_version":"1.2.0","new_version":"1.3.0","repository_url":"https://github.com/antfu/vite-plugin-vue-tracer"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.2","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"},{"name":"youch","old_version":"4.1.0-beta.13","new_version":"4.1.1","repository_url":"https://github.com/poppinss/youch"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-minor-patch group with 266 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@applemusic-like-lyrics/core](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core) | `0.2.0` | `0.4.1` |\n| [@applemusic-like-lyrics/lyric](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/lyric) | `0.3.0` | `0.4.1` |\n| [@applemusic-like-lyrics/vue](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue) | `0.2.0` | `0.4.1` |\n| [@types/pg](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/pg) | `8.16.0` | `8.20.0` |\n| [axios](https://github.com/axios/axios) | `1.13.5` | `1.15.2` |\n| [dayjs](https://github.com/iamkun/dayjs) | `1.11.19` | `1.11.20` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.2.4` | `17.4.2` |\n| [drizzle-kit](https://github.com/drizzle-team/drizzle-orm) | `0.31.9` | `0.31.10` |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.45.1` | `0.45.2` |\n| [lucide-vue-next](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-vue-next) | `0.563.0` | `0.577.0` |\n| [multer](https://github.com/expressjs/multer) | `2.0.2` | `2.1.1` |\n| [@types/multer](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/multer) | `2.0.0` | `2.1.0` |\n| [nuxt](https://github.com/nuxt/nuxt/tree/HEAD/packages/nuxt) | `4.3.1` | `4.4.2` |\n| [postgres](https://github.com/porsager/postgres) | `3.4.8` | `3.4.9` |\n| [redis](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [vite-plugin-wasm](https://github.com/Menci/vite-plugin-wasm) | `3.5.0` | `3.6.0` |\n| [vue](https://github.com/vuejs/core) | `3.5.28` | `3.5.33` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.28.6` | `7.29.2` |\n| [@babel/parser](https://github.com/babel/babel/tree/HEAD/packages/babel-parser) | `7.29.0` | `7.29.2` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.28.6` | `7.29.2` |\n| [@bomb.sh/tab](https://github.com/bombshell-dev/tab) | `0.0.12` | `0.0.14` |\n| [@clack/core](https://github.com/bombshell-dev/clack/tree/HEAD/packages/core) | `1.0.0` | `1.2.0` |\n| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.0.0` | `1.2.0` |\n| [@dxup/nuxt](https://github.com/KazariEX/dxup) | `0.3.2` | `0.4.1` |\n| [@nuxt/kit](https://github.com/nuxt/nuxt/tree/HEAD/packages/kit) | `3.21.1` | `3.21.2` |\n| [@emnapi/core](https://github.com/toyobayashi/emnapi) | `1.8.1` | `1.10.0` |\n| [@emnapi/runtime](https://github.com/toyobayashi/emnapi) | `1.8.1` | `1.10.0` |\n| [@emnapi/wasi-threads](https://github.com/toyobayashi/emnapi) | `1.1.0` | `1.2.1` |\n| [@ioredis/commands](https://github.com/ioredis/commands) | `1.5.0` | `1.5.1` |\n| [@napi-rs/wasm-runtime](https://github.com/napi-rs/napi-rs/tree/HEAD/wasm-runtime) | `1.1.1` | `1.1.4` |\n| [@nuxt/cli](https://github.com/nuxt/cli/tree/HEAD/packages/nuxt-cli) | `3.33.1` | `3.34.0` |\n| [giget](https://github.com/unjs/giget) | `2.0.0` | `3.2.0` |\n| [@nuxt/devtools](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools) | `3.1.1` | `3.2.4` |\n| [@nuxt/devtools-kit](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools-kit) | `3.1.1` | `3.2.4` |\n| [@nuxt/devtools-wizard](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools-wizard) | `3.1.1` | `3.2.4` |\n| [@nuxt/nitro-server](https://github.com/nuxt/nuxt/tree/HEAD/packages/nitro-server) | `4.3.1` | `4.4.2` |\n| [@nuxt/schema](https://github.com/nuxt/nuxt/tree/HEAD/packages/schema) | `4.3.1` | `4.4.2` |\n| [@nuxt/telemetry](https://github.com/nuxt/telemetry) | `2.7.0` | `2.8.0` |\n| [@nuxt/vite-builder](https://github.com/nuxt/nuxt/tree/HEAD/packages/vite) | `4.3.1` | `4.4.2` |\n| [@oxc-minify/binding-android-arm-eabi](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-android-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-darwin-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-darwin-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-freebsd-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-arm-gnueabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-arm-musleabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-arm64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-arm64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-ppc64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-riscv64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-riscv64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-s390x-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-x64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-linux-x64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-openharmony-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-wasm32-wasi](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-win32-arm64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-win32-ia32-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-minify/binding-win32-x64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-android-arm-eabi](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-android-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-darwin-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-darwin-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-freebsd-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-arm-gnueabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-arm-musleabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-arm64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-arm64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-ppc64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-riscv64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-riscv64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-s390x-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-x64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-linux-x64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-openharmony-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-wasm32-wasi](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-win32-arm64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-win32-ia32-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-parser/binding-win32-x64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [@oxc-project/types](https://github.com/oxc-project/oxc/tree/HEAD/npm/oxc-types) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-android-arm-eabi](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-android-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-darwin-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-darwin-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-freebsd-x64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-arm-gnueabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-arm-musleabihf](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-arm64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-arm64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-ppc64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-riscv64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-riscv64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-s390x-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-x64-gnu](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-linux-x64-musl](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-openharmony-arm64](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-wasm32-wasi](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-win32-arm64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-win32-ia32-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@oxc-transform/binding-win32-x64-msvc](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [@poppinss/dumper](https://github.com/poppinss/dumper) | `0.6.5` | `0.7.0` |\n| [@redis/bloom](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/client](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/json](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/search](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@redis/time-series](https://github.com/redis/node-redis) | `5.10.0` | `5.12.1` |\n| [@rolldown/pluginutils](https://github.com/rolldown/rolldown/tree/HEAD/packages/pluginutils) | `1.0.0-rc.2` | `1.0.0-rc.13` |\n| [@rollup/plugin-commonjs](https://github.com/rollup/plugins/tree/HEAD/packages/commonjs) | `29.0.0` | `29.0.2` |\n| [@rollup/plugin-terser](https://github.com/rollup/plugins/tree/HEAD/packages/terser) | `0.4.4` | `1.0.0` |\n| [@rollup/rollup-android-arm-eabi](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-android-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-darwin-x64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-freebsd-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-freebsd-x64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm-gnueabihf](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm-musleabihf](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-arm64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-loong64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-loong64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-ppc64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-ppc64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-riscv64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-riscv64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-s390x-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-linux-x64-musl](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-openbsd-x64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-openharmony-arm64](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-arm64-msvc](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-ia32-msvc](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-x64-gnu](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@rollup/rollup-win32-x64-msvc](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [@speed-highlight/core](https://github.com/speed-highlight/core) | `1.2.14` | `1.2.15` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.2.2` | `25.6.0` |\n| [@types/qs](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/qs) | `6.14.0` | `6.15.0` |\n| [@unhead/vue](https://github.com/unjs/unhead/tree/HEAD/packages/vue) | `2.1.4` | `2.1.13` |\n| [@vercel/nft](https://github.com/vercel/nft) | `1.3.0` | `1.5.0` |\n| [@vitejs/plugin-vue](https://github.com/vitejs/vite-plugin-vue/tree/HEAD/packages/plugin-vue) | `6.0.4` | `6.0.6` |\n| [@vitejs/plugin-vue-jsx](https://github.com/vitejs/vite-plugin-vue/tree/HEAD/packages/plugin-vue-jsx) | `5.1.4` | `5.1.5` |\n| [unplugin-utils](https://github.com/sxzz/unplugin-utils) | `0.2.5` | `0.3.1` |\n| [@vue/compiler-core](https://github.com/vuejs/core/tree/HEAD/packages/compiler-core) | `3.5.28` | `3.5.33` |\n| [@vue/compiler-dom](https://github.com/vuejs/core/tree/HEAD/packages/compiler-dom) | `3.5.28` | `3.5.33` |\n| [@vue/compiler-sfc](https://github.com/vuejs/core/tree/HEAD/packages/compiler-sfc) | `3.5.28` | `3.5.33` |\n| [@vue/compiler-ssr](https://github.com/vuejs/core/tree/HEAD/packages/compiler-ssr) | `3.5.28` | `3.5.33` |\n| [@vue/devtools-core](https://github.com/vuejs/devtools/tree/HEAD/packages/core) | `8.0.6` | `8.1.1` |\n| [@vue/devtools-kit](https://github.com/vuejs/devtools/tree/HEAD/packages/devtools-kit) | `8.0.6` | `8.1.1` |\n| [@vue/devtools-shared](https://github.com/vuejs/devtools/tree/HEAD/packages/shared) | `8.0.6` | `8.1.1` |\n| [@vue/reactivity](https://github.com/vuejs/core/tree/HEAD/packages/reactivity) | `3.5.28` | `3.5.33` |\n| [@vue/runtime-core](https://github.com/vuejs/core/tree/HEAD/packages/runtime-core) | `3.5.28` | `3.5.33` |\n| [@vue/runtime-dom](https://github.com/vuejs/core/tree/HEAD/packages/runtime-dom) | `3.5.28` | `3.5.33` |\n| [@vue/server-renderer](https://github.com/vuejs/core/tree/HEAD/packages/server-renderer) | `3.5.28` | `3.5.33` |\n| [@vue/shared](https://github.com/vuejs/core/tree/HEAD/packages/shared) | `3.5.28` | `3.5.33` |\n| [acorn](https://github.com/acornjs/acorn) | `8.15.0` | `8.16.0` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [autoprefixer](https://github.com/postcss/autoprefixer) | `10.4.24` | `10.5.0` |\n| [b4a](https://github.com/holepunchto/b4a) | `1.7.3` | `1.8.0` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.9.19` | `2.10.21` |\n| [bezier-easing](https://github.com/gre/bezier-easing) | `2.1.0` | `3.0.0` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.14` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [rc9](https://github.com/unjs/rc9) | `2.1.2` | `3.0.1` |\n| [caniuse-lite](https://github.com/browserslist/caniuse-lite) | `1.0.30001769` | `1.0.30001790` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `1.2.2` | `1.2.3` |\n| [core-js](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js) | `3.48.0` | `3.49.0` |\n| [croner](https://github.com/hexagon/croner) | `9.1.0` | `10.0.1` |\n| [css-declaration-sorter](https://github.com/Siilwyn/css-declaration-sorter) | `7.3.1` | `7.4.0` |\n| [cssnano](https://github.com/cssnano/cssnano) | `7.1.2` | `7.1.7` |\n| [cssnano-preset-default](https://github.com/cssnano/cssnano) | `7.0.10` | `7.0.15` |\n| [cssnano-utils](https://github.com/cssnano/cssnano) | `5.0.1` | `5.0.2` |\n| [define-lazy-prop](https://github.com/sindresorhus/define-lazy-prop) | `2.0.0` | `3.0.0` |\n| [defu](https://github.com/unjs/defu) | `6.1.4` | `6.1.7` |\n| [devalue](https://github.com/sveltejs/devalue) | `5.6.2` | `5.7.1` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.3` | `8.0.4` |\n| [dompurify](https://github.com/cure53/DOMPurify) | `3.3.1` | `3.4.1` |\n| [electron-to-chromium](https://github.com/Kilian/electron-to-chromium) | `1.5.286` | `1.5.344` |\n| [fast-npm-meta](https://github.com/antfu/fast-npm-meta) | `0.4.8` | `1.5.0` |\n| [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.15.11` | `1.16.0` |\n| [fuse.js](https://github.com/krisk/Fuse) | `7.1.0` | `7.3.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.14.0` |\n| [globby](https://github.com/sindresorhus/globby) | `16.1.0` | `16.2.0` |\n| [h3](https://github.com/h3js/h3) | `1.15.5` | `1.15.11` |\n| [hasown](https://github.com/inspect-js/hasOwn) | `2.0.2` | `2.0.3` |\n| [httpxy](https://github.com/unjs/httpxy) | `0.1.7` | `0.5.1` |\n| [impound](https://github.com/unjs/impound) | `1.0.0` | `1.1.5` |\n| [ioredis](https://github.com/luin/ioredis) | `5.9.2` | `5.10.1` |\n| [jsonfile](https://github.com/jprichardson/node-jsonfile) | `6.2.0` | `6.2.1` |\n| [koa](https://github.com/koajs/koa) | `2.16.3` | `2.16.4` |\n| [launch-editor](https://github.com/yyx990803/launch-editor) | `2.12.0` | `2.13.2` |\n| [listhen](https://github.com/unjs/listhen) | `1.9.0` | `1.9.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [minipass](https://github.com/isaacs/minipass) | `7.1.2` | `7.1.3` |\n| [mlly](https://github.com/unjs/mlly) | `1.8.0` | `1.8.2` |\n| [nanotar](https://github.com/unjs/nanotar) | `0.2.0` | `0.3.0` |\n| [nitropack](https://github.com/nitrojs/nitro) | `2.13.1` | `2.13.3` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.3` | `1.4.0` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.27` | `2.0.38` |\n| [nypm](https://github.com/unjs/nypm) | `0.6.5` | `0.6.6` |\n| [oxc-minify](https://github.com/oxc-project/oxc/tree/HEAD/napi/minify) | `0.112.0` | `0.117.0` |\n| [oxc-parser](https://github.com/oxc-project/oxc/tree/HEAD/napi/parser) | `0.112.0` | `0.117.0` |\n| [oxc-transform](https://github.com/oxc-project/oxc/tree/HEAD/napi/transform) | `0.112.0` | `0.117.0` |\n| [pg-protocol](https://github.com/brianc/node-postgres/tree/HEAD/packages/pg-protocol) | `1.11.0` | `1.13.0` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.6` | `8.5.10` |\n| [postcss-colormin](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.9` |\n| [postcss-convert-values](https://github.com/cssnano/cssnano) | `7.0.8` | `7.0.11` |\n| [postcss-discard-comments](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.7` |\n| [postcss-discard-duplicates](https://github.com/cssnano/cssnano) | `7.0.2` | `7.0.3` |\n| [postcss-discard-empty](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-discard-overridden](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-merge-longhand](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.6` |\n| [postcss-merge-rules](https://github.com/cssnano/cssnano) | `7.0.7` | `7.0.10` |\n| [postcss-minify-font-values](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-minify-gradients](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.4` |\n| [postcss-minify-params](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.8` |\n| [postcss-minify-selectors](https://github.com/cssnano/cssnano) | `7.0.5` | `7.1.0` |\n| [postcss-normalize-charset](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-display-values](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-positions](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.3` |\n| [postcss-normalize-repeat-style](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.3` |\n| [postcss-normalize-string](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-timing-functions](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-unicode](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.8` |\n| [postcss-normalize-url](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-normalize-whitespace](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-ordered-values](https://github.com/cssnano/cssnano) | `7.0.2` | `7.0.3` |\n| [postcss-reduce-initial](https://github.com/cssnano/cssnano) | `7.0.5` | `7.0.8` |\n| [postcss-reduce-transforms](https://github.com/cssnano/cssnano) | `7.0.1` | `7.0.2` |\n| [postcss-svgo](https://github.com/cssnano/cssnano) | `7.1.0` | `7.1.2` |\n| [postcss-unique-selectors](https://github.com/cssnano/cssnano) | `7.0.4` | `7.0.6` |\n| [proxy-from-env](https://github.com/Rob--W/proxy-from-env) | `1.1.0` | `2.1.0` |\n| [qs](https://github.com/ljharb/qs) | `6.14.1` | `6.15.1` |\n| [resolve](https://github.com/browserify/resolve) | `1.22.11` | `1.22.12` |\n| [rollup](https://github.com/rollup/rollup) | `4.57.1` | `4.60.2` |\n| [rollup-plugin-visualizer](https://github.com/btd/rollup-plugin-visualizer) | `6.0.5` | `7.0.1` |\n| [rou3](https://github.com/h3js/rou3) | `0.7.12` | `0.8.1` |\n| [sax](https://github.com/isaacs/sax-js) | `1.4.4` | `1.6.0` |\n| [serialize-javascript](https://github.com/yahoo/serialize-javascript) | `6.0.2` | `7.0.5` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.0` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.30.0` | `3.36.0` |\n| [smob](https://github.com/Tada5hi/smob) | `1.5.0` | `1.6.1` |\n| [srvx](https://github.com/h3js/srvx) | `0.11.2` | `0.11.15` |\n| [streamx](https://github.com/mafintosh/streamx) | `2.23.0` | `2.25.0` |\n| [structured-clone-es](https://github.com/antfu-collective/structured-clone-es) | `1.0.0` | `2.0.0` |\n| [stylehacks](https://github.com/cssnano/cssnano) | `7.0.7` | `7.0.10` |\n| [svgo](https://github.com/svg/svgo) | `4.0.0` | `4.0.1` |\n| [tar](https://github.com/isaacs/node-tar) | `7.5.7` | `7.5.13` |\n| [tar-stream](https://github.com/mafintosh/tar-stream) | `3.1.7` | `3.1.8` |\n| [terser](https://github.com/terser/terser) | `5.46.0` | `5.46.2` |\n| [text-decoder](https://github.com/holepunchto/text-decoder) | `1.2.3` | `1.2.7` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.2` | `1.1.1` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [type-fest](https://github.com/sindresorhus/type-fest) | `5.4.4` | `5.6.0` |\n| [undici-types](https://github.com/nodejs/undici) | `7.16.0` | `7.19.2` |\n| [unhead](https://github.com/unjs/unhead/tree/HEAD/packages/unhead) | `2.1.4` | `2.1.13` |\n| [unimport](https://github.com/unjs/unimport) | `5.6.0` | `6.1.1` |\n| [unstorage](https://github.com/unjs/unstorage) | `1.17.4` | `1.17.5` |\n| [uqr](https://github.com/unjs/uqr) | `0.1.2` | `0.1.3` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.2` |\n| [vite-plugin-vue-tracer](https://github.com/antfu/vite-plugin-vue-tracer) | `1.2.0` | `1.3.0` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |\n| [youch](https://github.com/poppinss/youch) | `4.1.0-beta.13` | `4.1.1` |\n\nUpdates `@applemusic-like-lyrics/core` from 0.2.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/core\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/blob/main/packages/core/CHANGELOG.md\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/core\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.1 (2026-04-23)\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix:\u003c/strong\u003e 在各绑定中暴露歌词优化选项 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix(vue):\u003c/strong\u003e 修复掩码模式错误的类型 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/496\"\u003e#496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erefactor(core):\u003c/strong\u003e 重构平均行长度实现 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/494\"\u003e#494\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.0 (2026-04-14)\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 移除 canvas 歌词渲染器 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erefactor:\u003c/strong\u003e 重构核心库测试组织模式 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/3db83c93\"\u003e3db83c93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e 修正 optimize-lyric.ts 和 OptimizeLyricOptions 里 cleanUnintentionalOverlaps 的文档和注释 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/75a8c0bb\"\u003e75a8c0bb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 更换工具链 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho \u003ca href=\"https://github.com/Linho1219\"\u003e\u003ccode\u003e@​Linho1219\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMoYingJi \u003ca href=\"https://github.com/MoYingJi\"\u003e\u003ccode\u003e@​MoYingJi\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/48ec944509271f9eebf5a45433645f5296c41584\"\u003e\u003ccode\u003e48ec944\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/b04ada8c5d5d44b8a6c0a063a9b795c3a62e11ea\"\u003e\u003ccode\u003eb04ada8\u003c/code\u003e\u003c/a\u003e refactor(core): 重构平均行长度实现 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/494\"\u003e#494\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5453754f327eab8a285af4a9a3b44fd808ea19ae\"\u003e\u003ccode\u003e5453754\u003c/code\u003e\u003c/a\u003e ci: 调整 changelog 格式与若干 CI 行为 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/491\"\u003e#491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/802d7ec3e38551cbdbf18a778e88f36604a83387\"\u003e\u003ccode\u003e802d7ec\u003c/code\u003e\u003c/a\u003e chore: 移除各包目录下残留的 typedoc 并更新 Nx 配置 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/486\"\u003e#486\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ef837385e99b16d46e4fddadd26aa756ba10231c\"\u003e\u003ccode\u003eef83738\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/aa845765f3fbc15df6d3ede5129a2a0e303da910\"\u003e\u003ccode\u003eaa84576\u003c/code\u003e\u003c/a\u003e chore: 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/bf4e41b4f8bac3610e17aa03fbfde7c11b1f730b\"\u003e\u003ccode\u003ebf4e41b\u003c/code\u003e\u003c/a\u003e 更换各个工具链 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/core/issues/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/98b80b2b3a32dc09dfaf24cc9ba7f4797b2d3a1f\"\u003e\u003ccode\u003e98b80b2\u003c/code\u003e\u003c/a\u003e chore: 统一 TS 配置\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/69d7bef0f1f109a0626aadf564b3e50d3385c165\"\u003e\u003ccode\u003e69d7bef\u003c/code\u003e\u003c/a\u003e chore: 强制在构建时执行类型检查\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cc913d240f95541ef20816becffeb700eb2fa131\"\u003e\u003ccode\u003ecc913d2\u003c/code\u003e\u003c/a\u003e refactor: 抽离 core playground\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.4.1/packages/core\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/core\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/lyric` from 0.3.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/2fc5d2e19d7a2ce70501a347dec4f5f4f90fbfe2\"\u003e\u003ccode\u003e2fc5d2e\u003c/code\u003e\u003c/a\u003e fix: lyric 包 rust 侧适配 romanWord 可选\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/d862271aa1396b19b9a8bb4d8cd484a0df366270\"\u003e\u003ccode\u003ed862271\u003c/code\u003e\u003c/a\u003e fix: 修复 lyric 包 romanWord 类型\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/@applemusic-like-lyrics/lyric@0.4.1/packages/lyric\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/vue` from 0.2.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/blob/main/packages/vue/CHANGELOG.md\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.1 (2026-04-23)\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix:\u003c/strong\u003e 在各绑定中暴露歌词优化选项 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efix(vue):\u003c/strong\u003e 修复掩码模式错误的类型 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/496\"\u003e#496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erefactor(core):\u003c/strong\u003e 重构平均行长度实现 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/494\"\u003e#494\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.0 (2026-04-14)\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 移除 canvas 歌词渲染器 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erefactor:\u003c/strong\u003e 重构核心库测试组织模式 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/3db83c93\"\u003e3db83c93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e 修正 optimize-lyric.ts 和 OptimizeLyricOptions 里 cleanUnintentionalOverlaps 的文档和注释 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/75a8c0bb\"\u003e75a8c0bb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 更换工具链 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003echore:\u003c/strong\u003e 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho \u003ca href=\"https://github.com/Linho1219\"\u003e\u003ccode\u003e@​Linho1219\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMoYingJi \u003ca href=\"https://github.com/MoYingJi\"\u003e\u003ccode\u003e@​MoYingJi\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/48ec944509271f9eebf5a45433645f5296c41584\"\u003e\u003ccode\u003e48ec944\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/de5c5705666f6d2ebeafb987372564155ba9e036\"\u003e\u003ccode\u003ede5c570\u003c/code\u003e\u003c/a\u003e fix(vue): 修复掩码模式错误的类型 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/496\"\u003e#496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/f1c8309d314640893a3141c2a9eb6b04e428e874\"\u003e\u003ccode\u003ef1c8309\u003c/code\u003e\u003c/a\u003e build: 内联 CSS 中的 url (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/493\"\u003e#493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5cee8f65599cf87dab868602112939b4b6bfc903\"\u003e\u003ccode\u003e5cee8f6\u003c/code\u003e\u003c/a\u003e fix: 在各绑定中暴露歌词优化选项 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/5453754f327eab8a285af4a9a3b44fd808ea19ae\"\u003e\u003ccode\u003e5453754\u003c/code\u003e\u003c/a\u003e ci: 调整 changelog 格式与若干 CI 行为 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/491\"\u003e#491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ef837385e99b16d46e4fddadd26aa756ba10231c\"\u003e\u003ccode\u003eef83738\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/aa845765f3fbc15df6d3ede5129a2a0e303da910\"\u003e\u003ccode\u003eaa84576\u003c/code\u003e\u003c/a\u003e chore: 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/bf4e41b4f8bac3610e17aa03fbfde7c11b1f730b\"\u003e\u003ccode\u003ebf4e41b\u003c/code\u003e\u003c/a\u003e 更换各个工具链 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/98b80b2b3a32dc09dfaf24cc9ba7f4797b2d3a1f\"\u003e\u003ccode\u003e98b80b2\u003c/code\u003e\u003c/a\u003e chore: 统一 TS 配置\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/69d7bef0f1f109a0626aadf564b3e50d3385c165\"\u003e\u003ccode\u003e69d7bef\u003c/code\u003e\u003c/a\u003e chore: 强制在构建时执行类型检查\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.4.1/packages/vue\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@types/pg` from 8.16.0 to 8.20.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/pg\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.5 to 1.15.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.2\u003c/h2\u003e\n\u003cp\u003eThis release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Hardening (HTTP Adapter):\u003c/strong\u003e Hardened the Node HTTP adapter and \u003ccode\u003eresolveConfig\u003c/code\u003e/\u003ccode\u003emergeConfig\u003c/code\u003e/validator paths to read only own properties and use null-prototype config objects, preventing polluted \u003ccode\u003eauth\u003c/code\u003e, \u003ccode\u003ebaseURL\u003c/code\u003e, \u003ccode\u003esocketPath\u003c/code\u003e, \u003ccode\u003ebeforeRedirect\u003c/code\u003e, and \u003ccode\u003einsecureHTTPParser\u003c/code\u003e from influencing requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSSRF via \u003ccode\u003esocketPath\u003c/code\u003e:\u003c/strong\u003e Rejects non-string \u003ccode\u003esocketPath\u003c/code\u003e values and adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e config option to restrict permitted Unix domain socket paths, returning \u003ccode\u003eAxiosError\u003c/code\u003e \u003ccode\u003eERR_BAD_OPTION_VALUE\u003c/code\u003e on mismatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSupply-chain Hardening:\u003c/strong\u003e Added \u003ccode\u003e.npmrc\u003c/code\u003e with \u003ccode\u003eignore-scripts=true\u003c/code\u003e, lockfile lint CI, non-blocking reproducible build diff, scoped CODEOWNERS, expanded \u003ccode\u003eSECURITY.md\u003c/code\u003e/\u003ccode\u003eTHREATMODEL.md\u003c/code\u003e with provenance verification (\u003ccode\u003enpm audit signatures\u003c/code\u003e), 60-day resolution policy, and maintainer incident-response runbook. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eallowedSocketPaths\u003c/code\u003e Config Option:\u003c/strong\u003e New request config option (and TypeScript types) to allowlist Unix domain socket paths used by the Node http adapter; backwards compatible when unset. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eKeep-alive Socket Memory Leak:\u003c/strong\u003e Installs a single per-socket \u003ccode\u003eerror\u003c/code\u003e listener tracking the active request via \u003ccode\u003ekAxiosSocketListener\u003c/code\u003e/\u003ccode\u003ekAxiosCurrentReq\u003c/code\u003e, eliminating per-request listener accumulation, \u003ccode\u003eMaxListenersExceededWarning\u003c/code\u003e, and linear heap growth under concurrent or long-running keep-alive workloads (fixes \u003ca href=\"https://redirect.github.com/axios/axios/issues/10780\"\u003e#10780\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eChangelog:\u003c/strong\u003e Updated \u003ccode\u003eCHANGELOG.md\u003c/code\u003e with v1.15.1 release notes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.15.1...v1.15.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.15.1\u003c/h2\u003e\n\u003cp\u003eThis release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeader Injection Hardening:\u003c/strong\u003e Tightened validation and sanitisation across request header construction to close the header-injection attack surface. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10749\"\u003e#10749\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCRLF Stripping in Multipart Headers:\u003c/strong\u003e Correctly strips CR/LF from multipart header values to prevent injection via field names and filenames. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10758\"\u003e#10758\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution / Auth Bypass:\u003c/strong\u003e Replaced unsafe \u003ccode\u003ein\u003c/code\u003e checks with \u003ccode\u003ehasOwnProperty\u003c/code\u003e to prevent authentication bypass via prototype pollution on config objects, with additional regression tests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10761\"\u003e#10761\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10760\"\u003e#10760\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003ewithXSRFToken\u003c/code\u003e Truthy Bypass:\u003c/strong\u003e Short-circuits on any truthy non-boolean value, so an ambiguous config no longer silently leaks the XSRF token cross-origin. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003emaxBodyLength\u003c/code\u003e With Zero Redirects:\u003c/strong\u003e Enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e even when \u003ccode\u003emaxRedirects\u003c/code\u003e is set to \u003ccode\u003e0\u003c/code\u003e, closing a bypass path for oversized request bodies. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10753\"\u003e#10753\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eStreamed Response \u003ccode\u003emaxContentLength\u003c/code\u003e Bypass:\u003c/strong\u003e Applies \u003ccode\u003emaxContentLength\u003c/code\u003e to streamed responses that previously bypassed the cap. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10754\"\u003e#10754\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFollow-up CVE Completion:\u003c/strong\u003e Completes an earlier incomplete CVE fix to fully close the regression window. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10755\"\u003e#10755\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAI-Based Docs Translations:\u003c/strong\u003e Initial scaffold for AI-assisted translations of the documentation site. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10705\"\u003e#10705\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eLocation\u003c/code\u003e Request Header Type:\u003c/strong\u003e Adds \u003ccode\u003eLocation\u003c/code\u003e to \u003ccode\u003eCommonRequestHeadersList\u003c/code\u003e for accurate typing of redirect-aware requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7528\"\u003e#7528\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFormData Handling:\u003c/strong\u003e Removes \u003ccode\u003eContent-Type\u003c/code\u003e when no boundary is present on \u003ccode\u003eFormData\u003c/code\u003e fetch requests, supports multi-select fields, cancels \u003ccode\u003erequest.body\u003c/code\u003e instead of the source stream on fetch abort, and fixes a recursion bug in form-data serialisation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7314\"\u003e#7314\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10676\"\u003e#10676\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10702\"\u003e#10702\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10726\"\u003e#10726\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter:\u003c/strong\u003e Handles socket-only request errors without leaking keep-alive listeners. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10576\"\u003e#10576\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProgress Events:\u003c/strong\u003e Clamps \u003ccode\u003eloaded\u003c/code\u003e to \u003ccode\u003etotal\u003c/code\u003e for computable upload/download progress events. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7458\"\u003e#7458\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes:\u003c/strong\u003e Aligns \u003ccode\u003erunWhen\u003c/code\u003e type with the runtime behaviour in \u003ccode\u003eInterceptorManager\u003c/code\u003e and makes response header keys case-insensitive. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7529\"\u003e#7529\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10677\"\u003e#10677\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003ebuildFullPath\u003c/code\u003e:\u003c/strong\u003e Uses strict equality in the base/relative URL check. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7252\"\u003e#7252\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eAxiosURLSearchParams\u003c/code\u003e Regex:\u003c/strong\u003e Improves the regex used for param serialisation to avoid edge-case mismatches. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10736\"\u003e#10736\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eResilient Value Parsing:\u003c/strong\u003e Parses out header/config values instead of throwing on malformed input. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10687\"\u003e#10687\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.2 - April 21, 2026\u003c/h2\u003e\n\u003cp\u003eThis release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Hardening (HTTP Adapter):\u003c/strong\u003e Hardened the Node HTTP adapter and \u003ccode\u003eresolveConfig\u003c/code\u003e/\u003ccode\u003emergeConfig\u003c/code\u003e/validator paths to read only own properties and use null-prototype config objects, preventing polluted \u003ccode\u003eauth\u003c/code\u003e, \u003ccode\u003ebaseURL\u003c/code\u003e, \u003ccode\u003esocketPath\u003c/code\u003e, \u003ccode\u003ebeforeRedirect\u003c/code\u003e, and \u003ccode\u003einsecureHTTPParser\u003c/code\u003e from influencing requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSSRF via \u003ccode\u003esocketPath\u003c/code\u003e:\u003c/strong\u003e Rejects non-string \u003ccode\u003esocketPath\u003c/code\u003e values and adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e config option to restrict permitted Unix domain socket paths, returning \u003ccode\u003eAxiosError\u003c/code\u003e \u003ccode\u003eERR_BAD_OPTION_VALUE\u003c/code\u003e on mismatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSupply-chain Hardening:\u003c/strong\u003e Added \u003ccode\u003e.npmrc\u003c/code\u003e with \u003ccode\u003eignore-scripts=true\u003c/code\u003e, lockfile lint CI, non-blocking reproducible build diff, scoped CODEOWNERS, expanded \u003ccode\u003eSECURITY.md\u003c/code\u003e/\u003ccode\u003eTHREATMODEL.md\u003c/code\u003e with provenance verification (\u003ccode\u003enpm audit signatures\u003c/code\u003e), 60-day resolution policy, and maintainer incident-response runbook. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eallowedSocketPaths\u003c/code\u003e Config Option:\u003c/strong\u003e New request config option (and TypeScript types) to allowlist Unix domain socket paths used by the Node http adapter; backwards compatible when unset. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eKeep-alive Socket Memory Leak:\u003c/strong\u003e Installs a single per-socket \u003ccode\u003eerror\u003c/code\u003e listener tracking the active request via \u003ccode\u003ekAxiosSocketListener\u003c/code\u003e/\u003ccode\u003ekAxiosCurrentReq\u003c/code\u003e, eliminating per-request listener accumulation, \u003ccode\u003eMaxListenersExceededWarning\u003c/code\u003e, and linear heap growth under concurrent or long-running keep-alive workloads (fixes \u003ca href=\"https://redirect.github.com/axios/axios/issues/10780\"\u003e#10780\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eChangelog:\u003c/strong\u003e Updated \u003ccode\u003eCHANGELOG.md\u003c/code\u003e with v1.15.1 release notes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.15.1...v1.15.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003chr /\u003e\n\u003ch2\u003ev1.15.1 - April 19, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eHeader Injection Hardening:\u003c/strong\u003e Tightened validation and sanitisation across request header construction to close the header-injection attack surface. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10749\"\u003e#10749\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eCRLF Stripping in Multipart Headers:\u003c/strong\u003e Correctly strips CR/LF from multipart header values to prevent injection via field names and filenames. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10758\"\u003e#10758\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ePrototype Pollution / Auth Bypass:\u003c/strong\u003e Replaced unsafe \u003ccode\u003ein\u003c/code\u003e checks with \u003ccode\u003ehasOwnProperty\u003c/code\u003e to prevent authentication bypass via prototype pollution on config objects, with additional regression tests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10761\"\u003e#10761\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10760\"\u003e#10760\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ewithXSRFToken\u003c/code\u003e Truthy Bypass:\u003c/strong\u003e Short-circuits on any truthy non-boolean value, so an ambiguous config no longer silently leaks the XSRF token cross-origin. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003emaxBodyLength\u003c/code\u003e With Zero Redirects:\u003c/strong\u003e Enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e even when \u003ccode\u003emaxRedirects\u003c/code\u003e is set to \u003ccode\u003e0\u003c/code\u003e, closing a bypass path for oversized request bodies. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10753\"\u003e#10753\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eStreamed Response \u003ccode\u003emaxContentLength\u003c/code\u003e Bypass:\u003c/strong\u003e Applies \u003ccode\u003emaxContentLength\u003c/code\u003e to streamed responses that previously bypassed the cap. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10754\"\u003e#10754\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eFollow-up CVE Completion:\u003c/strong\u003e Completes an earlier incomplete CVE fix to fully close the regression window. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10755\"\u003e#10755\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAI-Based Docs Translations:\u003c/strong\u003e Initial scaffold for AI-assisted translations of the documentation site. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10705\"\u003e#10705\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/582934382e4e0e0bcb679c628071a4203e93cf57\"\u003e\u003ccode\u003e5829343\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.2 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10789\"\u003e#10789\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4709a48fa2717ba97f43f5432d48ca4e26c2d326\"\u003e\u003ccode\u003e4709a48\u003c/code\u003e\u003c/a\u003e fix: added fix for memory leak in sockets (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/be3336014e01f9a4fc1f8aef15303cf7daaf58db\"\u003e\u003ccode\u003ebe33360\u003c/code\u003e\u003c/a\u003e chore: update changelog (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa\"\u003e\u003ccode\u003e4791514\u003c/code\u003e\u003c/a\u003e fix: more header pollutions (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/6feafcff6c2dbafe206161c5d09e38e1d36af66f\"\u003e\u003ccode\u003e6feafcf\u003c/code\u003e\u003c/a\u003e fix: socket issue (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/302e2739c602f00e323d4f3f5c79500647633a73\"\u003e\u003ccode\u003e302e273\u003c/code\u003e\u003c/a\u003e docs: update docs, add a couple actions etc (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ac42446be51300fe214ba3c6e40cc95f34fd6871\"\u003e\u003ccode\u003eac42446\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.1 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10767\"\u003e#10767\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/908f2206b6bfeff67236784abce85935698ac1d9\"\u003e\u003ccode\u003e908f220\u003c/code\u003e\u003c/a\u003e docs: update threatmodel (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10765\"\u003e#10765\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f93f8155250c2e066205521eda05ae22983a1f6d\"\u003e\u003ccode\u003ef93f815\u003c/code\u003e\u003c/a\u003e docs: added docs around potential decompressions bomb (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10763\"\u003e#10763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/1728aa1b15b8857f970611fd8983c06b423fc486\"\u003e\u003ccode\u003e1728aa1\u003c/code\u003e\u003c/a\u003e fix: short-circuits on any truthy non-boolean in withXSRFToken (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.5...v1.15.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dayjs` from 1.11.19 to 1.11.20\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/iamkun/dayjs/releases\"\u003edayjs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.11.20\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/iamkun/dayjs/compare/v1.11.19...v1.11.20\"\u003e1.11.20\u003c/a\u003e (2026-03-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate locale km.js to support meridiem (\u003ca href=\"https://redirect.github.com/iamkun/dayjs/issues/3017\"\u003e#3017\u003c/a\u003e) (\u003ca href=\"https://github.com/iamkun/dayjs/commit/9d2b6a1ec744ad5db13afd4d701f93349135dfec\"\u003e9d2b6a1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate updateLocale plugin to merge nested object properties instead of replacing (\u003ca href=\"https://redirect.github.com/iamkun/dayjs/issues/3012\"\u003e#3012\u003c/a\u003e) (\u003ca href=\"https://github.com/iamkun/dayjs/commit/99691c5f3bd1371d3b763d5f9dfaed9a1945a477\"\u003e99691c5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/iamkun/dayjs/issues/1118\"\u003e#1118\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/iamkun/dayjs/blob/dev/CHANGELOG.md\"\u003edayjs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/iamkun/dayjs/compare/v1.11.19...v1.11.20\"\u003e1.11.20\u003c/a\u003e (2026-03-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate locale km.js to support meridiem (\u003ca href=\"https://redirect.github.com/iamkun/dayjs/issues/3017\"\u003e#3017\u003c/a\u003e) (\u003ca href=\"https://github.com/iamkun/dayjs/commit/9d2b6a1ec744ad5db13afd4d701f93349135dfec\"\u003e9d2b6a1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate updateLocale plugin to merge nested object properties instead of replacing (\u003ca href=\"https://redirect.github.com/iamkun/dayjs/issues/3012\"\u003e#3012\u003c/a\u003e) (\u003ca href=\"https://github.com/iamkun/dayjs/commit/99691c5f3bd1371d3b763d5f9dfaed9a1945a477\"\u003e99691c5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/iamkun/dayjs/issues/1118\"\u003e#1118\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iamkun/dayjs/commit/af6e1f85c10fa8596e79471eadad25ab2da56f0f\"\u003e\u003ccode\u003eaf6e1f8\u003c/code\u003e\u003c/a\u003e chore(release): 1.11.20 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iamkun/dayjs/commit/82babd6688d7238fe1585895816fb...\n\n_Description has been truncated_","html_url":"https://github.com/weiyb852/VoiceHub-e7cc6/pull/12","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/weiyb852%2FVoiceHub-e7cc6/issues/12","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/12/packages"}},{"old_version":"1.4.0","new_version":"1.5.2","update_type":"minor","path":null,"pr_created_at":"2026-04-25T00:51:40.000Z","version_change":"1.4.0 → 1.5.2","issue":{"uuid":"4326459428","node_id":"PR_kwDOQ3ffIc7Vg4M2","number":20,"state":"open","title":"chore(deps): bump the npm_and_yarn group across 2 directories with 18 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-25T00:51:40.000Z","updated_at":"2026-04-25T00:53:07.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":18,"packages":[{"name":"electron","old_version":"39.2.7","new_version":"39.8.5","repository_url":"https://github.com/electron/electron"},{"name":"vite","old_version":"7.3.0","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"fast-xml-parser","old_version":"5.3.3","new_version":"5.7.2","repository_url":"https://github.com/NaturalIntelligence/fast-xml-parser"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"@hono/node-server","old_version":"1.19.9","new_version":"1.19.14","repository_url":"https://github.com/honojs/node-server"},{"name":"ajv","old_version":"6.12.6","new_version":"6.15.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"@tootallnate/once","old_version":"2.0.0","new_version":"removed","repository_url":"https://github.com/TooTallNate/once"},{"name":"@xmldom/xmldom","old_version":"0.8.11","new_version":"0.8.13","repository_url":"https://github.com/xmldom/xmldom"},{"name":"tar","old_version":"6.2.1","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"express-rate-limit","old_version":"8.2.1","new_version":"8.4.1","repository_url":"https://github.com/express-rate-limit/express-rate-limit"},{"name":"flatted","old_version":"3.3.3","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"hono","old_version":"4.11.9","new_version":"4.12.15","repository_url":"https://github.com/honojs/hono"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"path-to-regexp","old_version":"8.3.0","new_version":"8.4.2","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"qs","old_version":"6.14.1","new_version":"6.15.1","repository_url":"https://github.com/ljharb/qs"},{"name":"rollup","old_version":"4.53.5","new_version":"4.60.2","repository_url":"https://github.com/rollup/rollup"},{"name":"seroval","old_version":"1.4.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 18 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [electron](https://github.com/electron/electron) | `39.2.7` | `39.8.5` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.0` | `7.3.2` |\n| [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) | `5.3.3` | `5.7.2` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [@hono/node-server](https://github.com/honojs/node-server) | `1.19.9` | `1.19.14` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.15.0` |\n| [@tootallnate/once](https://github.com/TooTallNate/once) | `2.0.0` | `removed` |\n| [@xmldom/xmldom](https://github.com/xmldom/xmldom) | `0.8.11` | `0.8.13` |\n| [tar](https://github.com/isaacs/node-tar) | `6.2.1` | `7.5.13` |\n| [express-rate-limit](https://github.com/express-rate-limit/express-rate-limit) | `8.2.1` | `8.4.1` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |\n| [hono](https://github.com/honojs/hono) | `4.11.9` | `4.12.15` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `8.3.0` | `8.4.2` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [qs](https://github.com/ljharb/qs) | `6.14.1` | `6.15.1` |\n| [rollup](https://github.com/rollup/rollup) | `4.53.5` | `4.60.2` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.4.0` | `1.5.2` |\n\nBumps the npm_and_yarn group with 2 updates in the /apps/ui directory: [electron](https://github.com/electron/electron) and [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\n\nUpdates `electron` from 39.2.7 to 39.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/electron/electron/releases\"\u003eelectron's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eelectron v39.8.5\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.5\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a crash in \u003ccode\u003eclipboard.readImage()\u003c/code\u003e when the clipboard contains malformed image data. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50493\"\u003e#50493\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50491\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50492\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50494\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed a crash when calling an offscreen shared texture's \u003ccode\u003erelease()\u003c/code\u003e after the texture object was garbage collected. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50499\"\u003e#50499\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50500\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50501\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50502\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.4\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.4\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003enodeIntegrationInWorker\u003c/code\u003e overrides in \u003ccode\u003esetWindowOpenHandler\u003c/code\u003e were not honored for child windows sharing a renderer process with their opener. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50468\"\u003e#50468\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50163\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50467\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50134\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed crash when handling JavaScript dialogs from windows opened with invalid or empty URLs. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50400\"\u003e#50400\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50401\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50399\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50398\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed improper focus tracking in BaseWindow on MacOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50338\"\u003e#50338\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50337\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50340\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50339\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed window freeze when failing to enter/exit fullscreen on macOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50341\"\u003e#50341\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50344\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50343\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50342\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for using a proxy during yarn install. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50349\"\u003e#50349\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50352\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50350\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50351\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 485935305. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50440\"\u003e#50440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 489381399. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50443\"\u003e#50443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for chromium:475877320. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50436\"\u003e#50436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fixes for 484751092, 487117772. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50461\"\u003e#50461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.3\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.3\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded additional ASAR support to additional \u003ccode\u003efs\u003c/code\u003e copy methods. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50284\"\u003e#50284\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50287\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50286\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50285\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed user resizing of transparent windows on win32 platform. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50300\"\u003e#50300\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50301\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50298\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50299\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.2\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.2\u003c/h1\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackported fix for b/491421267. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50230\"\u003e#50230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.1\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.1\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded validation to protocol client methods to reject protocol names that do not conform to the RFC 3986 URI scheme grammar. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50156\"\u003e#50156\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50157\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50158\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50155\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue on macOS where calling \u003ccode\u003eautoUpdater.quitAndInstall()\u003c/code\u003e could fail if \u003ccode\u003echeckForUpdates()\u003c/code\u003e was called again after an update was already downloaded. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50215\"\u003e#50215\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50216\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50217\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where Chrome Devtools menus may not appear in certain embedded windows. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50136\"\u003e#50136\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50138\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50137\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003eadditionalData\u003c/code\u003e passed to \u003ccode\u003eapp.requestSingleInstanceLock\u003c/code\u003e on Windows could be truncated or fail to deserialize in the primary instance's \u003ccode\u003esecond-instance\u003c/code\u003e event. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50174\"\u003e#50174\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50177\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50162\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50154\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003escreen.getCursorScreenPoint()\u003c/code\u003e crashed on Wayland when it was called before a \u003ccode\u003eBrowserWindow\u003c/code\u003e had been created. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50106\"\u003e#50106\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50104\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50105\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/9d2f8cb4da0d35e2daf7e7f60e35313b508cb224\"\u003e\u003ccode\u003e9d2f8cb\u003c/code\u003e\u003c/a\u003e refactor: remove dead named-window lookup from guest-window-manager (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50498\"\u003e#50498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/11730047394233e70743c52567e17f4c3b2dc9fc\"\u003e\u003ccode\u003e1173004\u003c/code\u003e\u003c/a\u003e fix: crash calling OSR shared texture release() after texture GC'd (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50499\"\u003e#50499\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/be37adefd08f882e3f1fb8403d2d9e92c3009d56\"\u003e\u003ccode\u003ebe37ade\u003c/code\u003e\u003c/a\u003e fix: crash in clipboard.readImage() on malformed image data (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50493\"\u003e#50493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/7007907df08d02da98f513dcbdb430ab51be59c7\"\u003e\u003ccode\u003e7007907\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 3 changes from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50461\"\u003e#50461\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/2c8b6ee0c0a7c26871dc0b320982afd8ed29df6c\"\u003e\u003ccode\u003e2c8b6ee\u003c/code\u003e\u003c/a\u003e chore: cherry-pick fbfb27470bf6 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50436\"\u003e#50436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/4c64377ead6b53bc565d7793a2712e49882e5354\"\u003e\u003ccode\u003e4c64377\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 50b057660b4d from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50440\"\u003e#50440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/0ef056130cde0c19c81ccfbc2932df6911765849\"\u003e\u003ccode\u003e0ef0561\u003c/code\u003e\u003c/a\u003e fix: read nodeIntegrationInWorker from per-frame WebPreferences (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50122\"\u003e#50122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50\"\u003e#50\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/64373df3ca697bc6fe6e3ab1f463ba05beaf64cf\"\u003e\u003ccode\u003e64373df\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 074d472db745 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50443\"\u003e#50443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/13e44072be367f516cfad36f95d183765174f4bf\"\u003e\u003ccode\u003e13e4407\u003c/code\u003e\u003c/a\u003e fix: don't re-parse URL unnecessarily when handling dialogs (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50400\"\u003e#50400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/16a038502a4ea0c79976be60bcc8f28a49f1ab99\"\u003e\u003ccode\u003e16a0385\u003c/code\u003e\u003c/a\u003e ci: output build cache hit rate as GHA annotation (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50369\"\u003e#50369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/electron/electron/compare/v39.2.7...v39.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 7.3.0 to 7.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.3.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.1...v7.3.2\"\u003e7.3.2\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e09d8c90\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebackport \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22162\"\u003e#22162\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e19db0f2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echeck \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22160\"\u003e#22160\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003ef8103cc\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.0...v7.3.1\"\u003e7.3.1\u003c/a\u003e (2026-01-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21364\"\u003e#21364\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e9d39d37\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/cc383e07b66d4c5a9768fcb570e0af812cb8d999\"\u003e\u003ccode\u003ecc383e0\u003c/code\u003e\u003c/a\u003e release: v7.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/09d8c903bde12fee2710314d3b42bc789c686df7\"\u003e\u003ccode\u003e09d8c90\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f8103cc946f137a54e395fe3f5d08e8209231ed6\"\u003e\u003ccode\u003ef8103cc\u003c/code\u003e\u003c/a\u003e fix: check \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160\"\u003e#22160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/19db0f29c3a3ac4e64cc95c270716c77fd223ad1\"\u003e\u003ccode\u003e19db0f2\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e, apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22162\"\u003e#22162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/95e8923f35d0252c9f6eb2d5e358c084542706f1\"\u003e\u003ccode\u003e95e8923\u003c/code\u003e\u003c/a\u003e release: v7.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e\u003ccode\u003e9d39d37\u003c/code\u003e\u003c/a\u003e feat: add \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/21364\"\u003e#21364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/vitejs/vite/commits/v7.3.2/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-xml-parser` from 5.3.3 to 5.7.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/releases\"\u003efast-xml-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ebackward compatibility for numerical external entity, fix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eallow numerical external entity for backward compatibility\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: attributesGroupName working with preserveOrder\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e: stackoverflow when tag expression is very long\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eupgrade \u003ccode\u003e@​nodable/entities\u003c/code\u003e and FXB\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003e@nodable/entities\u003c/code\u003e v2.1.0\n\u003cul\u003e\n\u003cli\u003ebreaking changes\n\u003cul\u003e\n\u003cli\u003esingle entity scan. You're not allowed to use entity value to form another entity name.\u003c/li\u003e\n\u003cli\u003eyou cant add numeric external entity\u003c/li\u003e\n\u003cli\u003eentity error message when expantion limit is crossed might change\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etypings are updated for new options related to process entity\u003c/li\u003e\n\u003cli\u003eplease follow documentation of \u003ccode\u003e@nodable/entities\u003c/code\u003e for more detail.\u003c/li\u003e\n\u003cli\u003eperformance\n\u003cul\u003e\n\u003cli\u003eif processEntities is false, then there should not be impact on performance.\u003c/li\u003e\n\u003cli\u003eif processEntities is true, but you dont pass entity decoder separately then performance may degrade by approx 8-10%\u003c/li\u003e\n\u003cli\u003eif processEntities is true, and you pass entity decoder separately\n\u003cul\u003e\n\u003cli\u003eif no entity then performance should be same as before\u003c/li\u003e\n\u003cli\u003eif there are entities then performance should be increased from past versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eignoreAttributes is not required to be set to set xml version for NCR entity value\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate 'fast-xml-builder' to sanitize malicious CDATA and comment's content\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003euse \u003ccode\u003e@​nodable/entities\u003c/code\u003e to replace entities\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNo API change\u003c/li\u003e\n\u003cli\u003eNo change in performance for basic usage\u003c/li\u003e\n\u003cli\u003eNo typing change\u003c/li\u003e\n\u003cli\u003eNo config change\u003c/li\u003e\n\u003cli\u003enew dependency\u003c/li\u003e\n\u003cli\u003ebreaking: error messages for entities might have been changed.\u003c/li\u003e\n\u003cli\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.12...v5.6.0\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.12...v5.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eperformance improvment, increase entity expansion default limit\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eincrease default entity explansion limit as many projects demand for that\u003c/li\u003e\n\u003c/ul\u003e\n\u003cpre\u003e\u003ccode\u003emaxEntitySize: 10000,\r\nmaxExpansionDepth: 10000,\r\nmaxTotalExpansions: Infinity,\r\nmaxExpandedLength: 100000,\r\nmaxEntityCount: 1000,\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eperformance improvement\n\u003cul\u003e\n\u003cli\u003ereduce calls to toString\u003c/li\u003e\n\u003cli\u003eearly return when entities are not present\u003c/li\u003e\n\u003cli\u003eprepare rawAttrsForMatcher only if user sets \u003ccode\u003ejPath: false\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.9...v5.5.10\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.9...v5.5.10\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003efix typins and matcher instance in callbacks\u003c/h2\u003e\n\u003cp\u003ecombine typings file to avoid configuration changes\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md\"\u003efast-xml-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003eNote: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eNote: Due to some last quick changes on v4, detail of v4.5.3 \u0026amp; v4.5.4 are not updated here. v4.5.4x is the last tag of v4 in github repository. I'm extremely sorry for the confusion\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.2 / 2026-04-25\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eallow numerical external entity for backward compatibility\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: attributesGroupName working with preserveOrder\u003c/li\u003e\n\u003cli\u003efix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/817\"\u003e#817\u003c/a\u003e: stackoverflow when tag expression is very long\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.1 / 2026-04-20\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix typo in CJS typing file\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.7.0 / 2026-04-17\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003e@nodable/entities\u003c/code\u003e v2.1.0\n\u003cul\u003e\n\u003cli\u003ebreaking changes\n\u003cul\u003e\n\u003cli\u003esingle entity scan. You're not allowed to user entity value to form another entity name.\u003c/li\u003e\n\u003cli\u003eyou cant add numeric external entity\u003c/li\u003e\n\u003cli\u003eentity error message when expantion limit is crossed might change\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etypings are updated for new options related to process entity\u003c/li\u003e\n\u003cli\u003eplease follow documentation of \u003ccode\u003e@nodable/entities\u003c/code\u003e for more detail.\u003c/li\u003e\n\u003cli\u003eperformance\n\u003cul\u003e\n\u003cli\u003eif processEntities is false, then there should not be impact on performance.\u003c/li\u003e\n\u003cli\u003eif processEntities is true, but you dont pass entity decoder separately then performance may degrade by approx 8-10%\u003c/li\u003e\n\u003cli\u003eif processEntities is true, and you pass entity decoder separately\n\u003cul\u003e\n\u003cli\u003eif no entity then performance should be same as before\u003c/li\u003e\n\u003cli\u003eif there are entities then performance should be increased from past versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eignoreAttributes is not required to be set to set xml version for NCR entity value\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate 'fast-xml-builder' to sanitize malicious CDATA and comment's content\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.6.0 / 2026-04-15\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: entity replacement for numeric entities\u003c/li\u003e\n\u003cli\u003euse \u003ccode\u003e@​nodable/entities\u003c/code\u003e to replace entities\n\u003cul\u003e\n\u003cli\u003ethis may change some error messages related to entities expansion limit or inavlid use\u003c/li\u003e\n\u003cli\u003epost check would be exposed in future version\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.12 / 2026-04-13\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePerformance Improvement: update path-expression-matcher\n\u003cul\u003e\n\u003cli\u003euse proxy pattern than Proxy class\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.11 / 2026-04-08\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePerformance Improvement\n\u003cul\u003e\n\u003cli\u003eintegrate ExpressionSet for stopNodes\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.10 / 2026-04-03\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eincrease default entity explansion limit as many projects demand for that\u003c/li\u003e\n\u003cli\u003eperformance improvement\n\u003cul\u003e\n\u003cli\u003ereduce calls to toString\u003c/li\u003e\n\u003cli\u003eearly return when entities are not present\u003c/li\u003e\n\u003cli\u003eprepare rawAttrsForMatcher only if user sets \u003ccode\u003ejPath: false\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/b1d5b907ccbfbfbdbbeecc1f273bf20973d305e3\"\u003e\u003ccode\u003eb1d5b90\u003c/code\u003e\u003c/a\u003e update releas info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/78571aec67c2b8642f96d467a2c0902e4155952e\"\u003e\u003ccode\u003e78571ae\u003c/code\u003e\u003c/a\u003e tests for long tag expression\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/ebaedc026ce15563bb9c3e12ccfe189279a8d8fd\"\u003e\u003ccode\u003eebaedc0\u003c/code\u003e\u003c/a\u003e allow numerical external entities for backward compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/91245eb51285482aafe1248c76a06e8794350e53\"\u003e\u003ccode\u003e91245eb\u003c/code\u003e\u003c/a\u003e update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/79dd40d60f1b900b3d29217a382663ddd620c5c8\"\u003e\u003ccode\u003e79dd40d\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/705\"\u003e#705\u003c/a\u003e: don not group and nest attributes when both preserveOrder and attri...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/d6bce3b42661254e99691f32c76e3f2551ccea11\"\u003e\u003ccode\u003ed6bce3b\u003c/code\u003e\u003c/a\u003e allow long attribute expressions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/9a2561b0d4d7b613df6b8785c04034a8fa740d84\"\u003e\u003ccode\u003e9a2561b\u003c/code\u003e\u003c/a\u003e remove unnecessary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/0f08303189d541b08401d15a7137dc238a815fa7\"\u003e\u003ccode\u003e0f08303\u003c/code\u003e\u003c/a\u003e fix typo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/f529642d760ef53bb9115ad4798af5dc77ac22c4\"\u003e\u003ccode\u003ef529642\u003c/code\u003e\u003c/a\u003e update to release v5.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/52a8583465d6a67ad19e86fe34714879a981c18e\"\u003e\u003ccode\u003e52a8583\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;improve performance of attributes reading\u0026quot;\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.3...v5.7.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@hono/node-server` from 1.19.9 to 1.19.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/node-server/releases\"\u003e\u003ccode\u003e@​hono/node-server\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.14\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: add custom inspect to lightweight Request/Response to prevent TypeError on console.log by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/340\"\u003ehonojs/node-server#340\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.13...v1.19.14\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.13\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an issue in Serve Static Middleware where inconsistent handling of repeated slashes (\u003ccode\u003e//\u003c/code\u003e) between the router and static file resolution could allow middleware to be bypassed. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-92pp-h63x-v22m for details.\u003c/p\u003e\n\u003ch2\u003ev1.19.12\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: ignore claude setting by \u003ca href=\"https://github.com/yusukebe\"\u003e\u003ccode\u003e@​yusukebe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/314\"\u003ehonojs/node-server#314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: request draining for early 413 responses by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/329\"\u003ehonojs/node-server#329\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.11...v1.19.12\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: do not overwrite Content-Length in the fast path pattern if Content-Length already exists. by \u003ca href=\"https://github.com/usualoma\"\u003e\u003ccode\u003e@​usualoma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/node-server/pull/309\"\u003ehonojs/node-server#309\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\"\u003ehttps://github.com/honojs/node-server/compare/v1.19.10...v1.19.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.19.10\u003c/h2\u003e\n\u003ch2\u003eSecurity Fix\u003c/h2\u003e\n\u003cp\u003eFixed an authorization bypass in Serve Static Middleware caused by inconsistent URL decoding (\u003ccode\u003e%2F\u003c/code\u003e handling) between the router and static file resolution. Users of Serve Static Middleware are encouraged to upgrade to this version.\u003c/p\u003e\n\u003cp\u003eSee GHSA-wc8c-qw6v-h7f6 for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/b5e63a366d9b0ef62ac65fcafd7f69b383b03ff5\"\u003e\u003ccode\u003eb5e63a3\u003c/code\u003e\u003c/a\u003e 1.19.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c02d7770a2d29ea473403211bef0a60639885a28\"\u003e\u003ccode\u003ec02d777\u003c/code\u003e\u003c/a\u003e fix: add custom inspect to lightweight Request/Response to prevent TypeError ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/fd64e659a34ec661fd9ccda00d1b9dff88dfaf90\"\u003e\u003ccode\u003efd64e65\u003c/code\u003e\u003c/a\u003e 1.19.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/025c30f55d589ddbe6048b151d77e904f67a8cc2\"\u003e\u003ccode\u003e025c30f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/6cdb5a724952f3df5748e435637792068ebea6d9\"\u003e\u003ccode\u003e6cdb5a7\u003c/code\u003e\u003c/a\u003e 1.19.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/70250f780ec99d2ddc0dd8275a42f8e091e06e94\"\u003e\u003ccode\u003e70250f7\u003c/code\u003e\u003c/a\u003e fix: request draining for early 413 responses (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/329\"\u003e#329\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/cfc08b330a1f2e0a2d8cc7797cde389465b5f4fb\"\u003e\u003ccode\u003ecfc08b3\u003c/code\u003e\u003c/a\u003e chore: ignore claude setting (\u003ca href=\"https://redirect.github.com/honojs/node-server/issues/314\"\u003e#314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/ecd4d6be55117005acfd60a22d90c4818618507b\"\u003e\u003ccode\u003eecd4d6b\u003c/code\u003e\u003c/a\u003e 1.19.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/c94489955ebd855630b703022837f7fe5f925111\"\u003e\u003ccode\u003ec944899\u003c/code\u003e\u003c/a\u003e fix: do not overwrite Content-Length in the fast path pattern if Content-Leng...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/node-server/commit/2f8ca3665f5257305603783ec9999bd1a9bec0f2\"\u003e\u003ccode\u003e2f8ca36\u003c/code\u003e\u003c/a\u003e 1.19.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/honojs/node-server/compare/v1.19.9...v1.19.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/184bc32745d9d33b2322949b9f3cb5f7609bf5ec\"\u003e\u003ccode\u003e184bc32\u003c/code\u003e\u003c/a\u003e 6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/fea46afd1a76b12ff89493f6dc1bc46730c6d379\"\u003e\u003ccode\u003efea46af\u003c/code\u003e\u003c/a\u003e test/fix prototype pollution via $data ref with format keyword (\u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/2606\"\u003e#2606\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nRemoves `@tootallnate/once`\n\nUpdates `@xmldom/xmldom` from 0.8.11 to 0.8.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/releases\"\u003e\u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.13\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e0.8.12\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/discussions/357\"\u003ehttps://github.com/xmldom/xmldom/discussions/357\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md\"\u003e\u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003e0.8.13\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.9.8...0.9.9\"\u003e0.9.9\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eParentNode.children\u003c/code\u003e getter \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/960\"\u003e\u003ccode\u003e[#960](https://github.com/xmldom/xmldom/issues/960)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/410\"\u003e\u003ccode\u003e[#410](https://github.com/xmldom/xmldom/issues/410)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecorrectly traverse ancestor chain in \u003ccode\u003eNode.contains\u003c/code\u003e \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/931\"\u003e\u003ccode\u003e[#931](https://github.com/xmldom/xmldom/issues/931)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdated dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/yoshi389111\"\u003e\u003ccode\u003e@​yoshi389111\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003e0.8.12\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e5c14802592685bb872c042c54c3f73758875c85\"\u003e\u003ccode\u003ee5c1480\u003c/code\u003e\u003c/a\u003e 0.8.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/9611e20d75f059dc377f806a8f7ee7d1eaeaeb7c\"\u003e\u003ccode\u003e9611e20\u003c/code\u003e\u003c/a\u003e style: drop unused import in test file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/dc4dff3d1d0b5a6b97c52fcc1823a735b8821e62\"\u003e\u003ccode\u003edc4dff3\u003c/code\u003e\u003c/a\u003e docs: add 0.8.13 changelog entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/842fa38deedd2d9a9c90d0ad54aa1be75d2a41bc\"\u003e\u003ccode\u003e842fa38\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow in normalize (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/aeff69f5a32e8c1bd540683da9e10718f84f595c\"\u003e\u003ccode\u003eaeff69f\u003c/code\u003e\u003c/a\u003e test: add normalize behavioral coverage to node.test.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/cbdb0d7db8ae70760bd4cc181cb8f30bb0cd9d88\"\u003e\u003ccode\u003ecbdb0d7\u003c/code\u003e\u003c/a\u003e fix: make walkDOM iterative to prevent stack overflow (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/0b543d31794dc198c86a0358574cb5dec29674c5\"\u003e\u003ccode\u003e0b543d3\u003c/code\u003e\u003c/a\u003e test: assert namespace declarations are isolated between siblings in serializ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/c007c51909587990c962cf3d5c2acadf4c897b87\"\u003e\u003ccode\u003ec007c51\u003c/code\u003e\u003c/a\u003e refactor: migrate serializeToString to walkDOM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/2bb3899074820089d9e76ce28a5edfdacf425025\"\u003e\u003ccode\u003e2bb3899\u003c/code\u003e\u003c/a\u003e test: add serializeToString coverage for uncovered branches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e69f38d0a58731152d300e8c8eb29506f5f488fe\"\u003e\u003ccode\u003ee69f38d\u003c/code\u003e\u003c/a\u003e refactor: migrate importNode to walkDOM\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~karfau\"\u003ekarfau\u003c/a\u003e, a new releaser for \u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 6.2.1 to 7.5.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d6611ae951056addb77c6e11baf7bcc9d7648e46\"\u003e\u003ccode\u003ed6611ae\u003c/code\u003e\u003c/a\u003e 7.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/119c401f4f7efbeb112d28f9dfc9c489674c9a79\"\u003e\u003ccode\u003e119c401\u003c/code\u003e\u003c/a\u003e fix(extract): prevent raced symlink writes outside cwd\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2a294d3fbb24c18dc80f31059f49dd9af15653fe\"\u003e\u003ccode\u003e2a294d3\u003c/code\u003e\u003c/a\u003e 7.5.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/01082a42c3256ca6054f9627911cce4dbfe00d92\"\u003e\u003ccode\u003e01082a4\u003c/code\u003e\u003c/a\u003e fix: reject top promise on floating addFilesAsync rejections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/dd1c36ab7acff26e5a34935d17f27a45bb088db3\"\u003e\u003ccode\u003edd1c36a\u003c/code\u003e\u003c/a\u003e linting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/35a1ffe73eb4aa05cd2613f8fdcfb4c9c9ed59f9\"\u003e\u003ccode\u003e35a1ffe\u003c/code\u003e\u003c/a\u003e doc: more clarity in security warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/bf776f673164215074b62749e0fe80e5834588f4\"\u003e\u003ccode\u003ebf776f6\u003c/code\u003e\u003c/a\u003e 7.5.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad\"\u003e\u003ccode\u003ef48b5fa\u003c/code\u003e\u003c/a\u003e prevent escaping symlinks with drive-relative paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/97cff15d3539a37a4095eb3d287147d9d77c2dc3\"\u003e\u003ccode\u003e97cff15\u003c/code\u003e\u003c/a\u003e docs: more security info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2b72abc1d47c3570e1ad95c9ab557fc4c2e6e4b1\"\u003e\u003ccode\u003e2b72abc\u003c/code\u003e\u003c/a\u003e 7.5.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v6.2.1...v7.5.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `express-rate-limit` from 8.2.1 to 8.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/releases\"\u003eexpress-rate-limit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.4.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.4.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.2\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.1\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev8.3.0\u003c/h2\u003e\n\u003cp\u003eYou can view the changelog \u003ca href=\"https://express-rate-limit.mintlify.app/reference/changelog\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/69568d4ea794905df4ff2e872f04e1daa1f89050\"\u003e\u003ccode\u003e69568d4\u003c/code\u003e\u003c/a\u003e 8.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/c686acd0bac3058dca4b7f116f240e694878b517\"\u003e\u003ccode\u003ec686acd\u003c/code\u003e\u003c/a\u003e v8.4.1 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/ba71353abbd8a6a5ee891faea755026cf960ead2\"\u003e\u003ccode\u003eba71353\u003c/code\u003e\u003c/a\u003e test: bump timeout in flakey skipFailedRequests test (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/dd4c8944d4a739e819306c8dde57852eac8540e0\"\u003e\u003ccode\u003edd4c894\u003c/code\u003e\u003c/a\u003e feat: allow usage of custom logger (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/616\"\u003e#616\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/2bb343cd078c311e8bc7f48b31b9047cf17f3ece\"\u003e\u003ccode\u003e2bb343c\u003c/code\u003e\u003c/a\u003e resolve Jest timeout for server-based tests (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/c4dbb42c1b4891056545e30a9187a64c8bfeb8bc\"\u003e\u003ccode\u003ec4dbb42\u003c/code\u003e\u003c/a\u003e 8.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/8f1cc6639a430d6409e600c8e5434c1bc1e572bf\"\u003e\u003ccode\u003e8f1cc66\u003c/code\u003e\u003c/a\u003e v8.3.2 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/601b87f5d171487ed035ccdfee17ec75f5b22f2d\"\u003e\u003ccode\u003e601b87f\u003c/code\u003e\u003c/a\u003e Fix skipFailedRequests for for connections that close very early (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/611\"\u003e#611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/014c2f32708c0fdb5544834c3e77043e041ae38a\"\u003e\u003ccode\u003e014c2f3\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the development-dependencies group with 6 updates (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/612\"\u003e#612\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/commit/4e8b18bf972eff2890ed67bd11d8a08a2c6502d5\"\u003e\u003ccode\u003e4e8b18b\u003c/code\u003e\u003c/a\u003e Remove Zuplo sponsorship details from README (\u003ca href=\"https://redirect.github.com/express-rate-limit/express-rate-limit/issues/613\"\u003e#613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/express-rate-limit/express-rate-limit/compare/v8.2.1...v8.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for express-rate-limit since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flatted` from 3.3.3 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7\"\u003e\u003ccode\u003e3bf0909\u003c/code\u003e\u003c/a\u003e 3.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802\"\u003e\u003ccode\u003e885ddcc\u003c/code\u003e\u003c/a\u003e fix CWE-1321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3\"\u003e\u003ccode\u003e0bdba70\u003c/code\u003e\u003c/a\u003e added flatted-view to the benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20\"\u003e\u003ccode\u003e2a02dce\u003c/code\u003e\u003c/a\u003e 3.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416\"\u003e\u003ccode\u003efba4e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/WebReflection/flatted/issues/89\"\u003e#89\u003c/a\u003e from WebReflection/python-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7\"\u003e\u003ccode\u003e5fe8648\u003c/code\u003e\u003c/a\u003e added \u0026quot;when in Rome\u0026quot; also a test for PHP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0\"\u003e\u003ccode\u003e53517ad\u003c/code\u003e\u003c/a\u003e some minor improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f\"\u003e\u003ccode\u003eb3e2a0c\u003c/code\u003e\u003c/a\u003e Fixing recursion issue in Python too\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad\"\u003e\u003ccode\u003ec4b46db\u003c/code\u003e\u003c/a\u003e Add SECURITY.md for security policy and reporting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988\"\u003e\u003ccode\u003ef86d071\u003c/code\u003e\u003c/a\u003e Create dependabot.yml for version updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/WebReflection/flatted/compare/v3.3.3...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hono` from 4.11.9 to 4.12.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/honojs/hono/releases\"\u003ehono's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.12.15\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(jwt): support single-line PEM keys by \u003ca href=\"https://github.com/hiendv\"\u003e\u003ccode\u003e@​hiendv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4889\"\u003ehonojs/hono#4889\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hiendv\"\u003e\u003ccode\u003e@​hiendv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4889\"\u003ehonojs/hono#4889\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/hono/compare/v4.12.14...v4.12.15\"\u003ehttps://github.com/honojs/hono/compare/v4.12.14...v4.12.15\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.12.14\u003c/h2\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cp\u003eThis release includes fixes for the following security issues:\u003c/p\u003e\n\u003ch3\u003eImproper handling of JSX attribute names in hono/jsx SSR\u003c/h3\u003e\n\u003cp\u003eAffects: hono/jsx. Fixes missing validation of JSX attribute names during server-side rendering, which could allow malformed attribute keys to corrupt the generated HTML output and inject unintended attributes or elements. GHSA-458j-xx4x-4375\u003c/p\u003e\n\u003ch2\u003eOther changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(aws-lambda): handle invalid header names in request processing (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4883\"\u003e#4883\u003c/a\u003e)  fa2c74fe\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.12.13\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(types): infer response type from last handler in app.on 9-/10-handler overloads by \u003ca href=\"https://github.com/T4ko0522\"\u003e\u003ccode\u003e@​T4ko0522\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4865\"\u003ehonojs/hono#4865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(trailing-slash): add \u003ccode\u003eskip\u003c/code\u003e option by \u003ca href=\"https://github.com/yusukebe\"\u003e\u003ccode\u003e@​yusukebe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4862\"\u003ehonojs/hono#4862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(cache): add \u003ccode\u003eonCacheNotAvailable\u003c/code\u003e option by \u003ca href=\"https://github.com/yusukebe\"\u003e\u003ccode\u003e@​yusukebe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4876\"\u003ehonojs/hono#4876\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/T4ko0522\"\u003e\u003ccode\u003e@​T4ko0522\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/honojs/hono/pull/4865\"\u003ehonojs/hono#4865\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/honojs/hono/compare/v4.12.12...v4.12.13\"\u003ehttps://github.com/honojs/hono/compare/v4.12.12...v4.12.13\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.12.12\u003c/h2\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cp\u003eThis release includes fixes for the following security issues:\u003c/p\u003e\n\u003ch3\u003eMiddleware bypass via repeated slashes in serveStatic\u003c/h3\u003e\n\u003cp\u003eAffects: Serve Static middleware. Fixes a path normalization inconsistency where repeated slashes (\u003ccode\u003e//\u003c/code\u003e) could bypass route-based middleware protections and allow access to protected static files. GHSA-wmmm-f939-6g9c\u003c/p\u003e\n\u003ch3\u003ePath traversal in toSSG() allows writing files outside the output directory\u003c/h3\u003e\n\u003cp\u003eAffects: \u003ccode\u003etoSSG()\u003c/code\u003e for Static Site Generation. Fixes a path traversal issue where crafted \u003ccode\u003essgParams\u003c/code\u003e values could write files outside the configured output directory. GHSA-xf4j-xp2r-rqqx\u003c/p\u003e\n\u003ch3\u003eIncorrect IP matching in ipRestriction() for IPv4-mapped IPv6 addresses\u003c/h3\u003e\n\u003cp\u003eAffects: IP Restriction Middleware. Fixes improper handling of IPv4-mapped IPv6 addresses (e.g. \u003ccode\u003e::ffff:127.0.0.1\u003c/code\u003e) that could cause allow/deny rules to be bypassed. GHSA-xpcf-pg52-r92g\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/f774f8df49e7ec7e205f15c5076a37132c515ebf\"\u003e\u003ccode\u003ef774f8d\u003c/code\u003e\u003c/a\u003e 4.12.15\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/18fe604c8cefc2628240651b1af219692e1918c1\"\u003e\u003ccode\u003e18fe604\u003c/code\u003e\u003c/a\u003e fix(jwt): support single-line PEM keys (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4889\"\u003e#4889\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/cf2d2b7edcf07adef2db7614557f4d7f9e2be7ba\"\u003e\u003ccode\u003ecf2d2b7\u003c/code\u003e\u003c/a\u003e 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/66daa2edef8965544c04fcad82c596ab2acdb5ee\"\u003e\u003ccode\u003e66daa2e\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/fa2c74fe5c3ce996d025d9d97bf5670c207bb82e\"\u003e\u003ccode\u003efa2c74f\u003c/code\u003e\u003c/a\u003e fix(aws-lambda): handle invalid header names in request processing (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4883\"\u003e#4883\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/3779927c17201dc6bfd20697f0e1ec65407da779\"\u003e\u003ccode\u003e3779927\u003c/code\u003e\u003c/a\u003e 4.12.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/faa6c46a1aa3a8b792b29e20fc93bcd6d2a4d720\"\u003e\u003ccode\u003efaa6c46\u003c/code\u003e\u003c/a\u003e feat(cache): add \u003ccode\u003eonCacheNotAvailable\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4876\"\u003e#4876\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/f23e97b7f300bcb8571ae864010b8f7cdb5d0d5d\"\u003e\u003ccode\u003ef23e97b\u003c/code\u003e\u003c/a\u003e feat(trailing-slash): add \u003ccode\u003eskip\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/honojs/hono/issues/4862\"\u003e#4862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/1aa32fb91e7bc1366811d80ebcce61ec0d0c68cb\"\u003e\u003ccode\u003e1aa32fb\u003c/code\u003e\u003c/a\u003e fix(types): infer response type from last handler in app.on 9- and 10-handler...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/honojs/hono/commit/c37ba26da9709ad03b803d1972773ed864b7e60d\"\u003e\u003ccode\u003ec37ba26\u003c/code\u003e\u003c/a\u003e 4.12.12\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/honojs/hono/compare/v4.11.9...v4.12.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=...\n\n_Description has been truncated_","html_url":"https://github.com/helton-godoy/automaker/pull/20","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/helton-godoy%2Fautomaker/issues/20","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/20/packages"}},{"old_version":"1.3.2","new_version":"1.4.2","update_type":"minor","path":null,"pr_created_at":"2026-04-25T00:42:38.000Z","version_change":"1.3.2 → 1.4.2","issue":{"uuid":"4326428909","node_id":"PR_kwDORHBcW87Vgxqm","number":4,"state":"open","title":"chore(deps): bump seroval from 1.3.2 to 1.4.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-25T00:42:38.000Z","updated_at":"2026-04-25T00:42:40.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"seroval","old_version":"1.3.2","new_version":"1.4.2","repository_url":"https://github.com/lxsmnsyc/seroval"}],"path":null,"ecosystem":"npm"},"body":"Bumps [seroval](https://github.com/lxsmnsyc/seroval) from 1.3.2 to 1.4.2.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/ce9408ebc87312fcad345a73c172212f2a798060\"\u003e\u003ccode\u003ece9408e\u003c/code\u003e\u003c/a\u003e \u003ccode\u003e1.4.1\u003c/code\u003e and \u003ccode\u003e1.4.2\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/727bd41a8e05541af92a404256b43bc4725a29df\"\u003e\u003ccode\u003e727bd41\u003c/code\u003e\u003c/a\u003e 1.4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/e3bd7baf451c5836e6ef70a75f8275a07ea49fe5\"\u003e\u003ccode\u003ee3bd7ba\u003c/code\u003e\u003c/a\u003e Fix changeset\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/a140120fa14ad529f9559b6a5684a548415cce57\"\u003e\u003ccode\u003ea140120\u003c/code\u003e\u003c/a\u003e Fix late stuff\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/e030d631b4b19490c8c47a796c1b4ec37e8a203a\"\u003e\u003ccode\u003ee030d63\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/lxsmnsyc/seroval/issues/65\"\u003e#65\u003c/a\u003e from lxsmnsyc/restructure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/435fc5ff4816562eb179ce754559b42965941899\"\u003e\u003ccode\u003e435fc5f\u003c/code\u003e\u003c/a\u003e Fix function strings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/466ec821a91a8007a0cb270df3ef2a7bc8362e49\"\u003e\u003ccode\u003e466ec82\u003c/code\u003e\u003c/a\u003e Fix snapshots and promise closure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/32444b333a7e93ccf31e7aa1d01f0c243b2a8857\"\u003e\u003ccode\u003e32444b3\u003c/code\u003e\u003c/a\u003e Replace \u003ccode\u003ecreateDeferred\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/f1ed4bf59715be17570729e4f4434ca2827cf259\"\u003e\u003ccode\u003ef1ed4bf\u003c/code\u003e\u003c/a\u003e Fix snapshots\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lxsmnsyc/seroval/commit/a8e8cad25df1aeee404458a7379bed9dfcbd4df5\"\u003e\u003ccode\u003ea8e8cad\u003c/code\u003e\u003c/a\u003e Fix snapshots\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lxsmnsyc/seroval/compare/v1.3.2...1.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=seroval\u0026package-manager=npm_and_yarn\u0026previous-version=1.3.2\u0026new-version=1.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/arthrod/router/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/arthrod/router/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/arthrod%2Frouter/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"}},{"old_version":"1.3.2","new_version":"1.5.2","update_type":"minor","path":null,"pr_created_at":"2026-04-25T00:41:56.000Z","version_change":"1.3.2 → 1.5.2","issue":{"uuid":"4326426497","node_id":"PR_kwDORYB4rM7VgxJH","number":11,"state":"open","title":"build(deps): bump seroval and solid-js","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-25T00:41:56.000Z","updated_at":"2026-04-25T00:42:08.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"seroval","repository_url":"https://github.com/lxsmnsyc/seroval","old_version":"1.3.2","new_version":"1.5.2"},{"name":"solid-js","repository_url":"https://github.com/solidjs/solid","old_version":"1.9.10","new_version":"1.9.12"}],"path":null,"ecosystem":"npm"},"body":"Bumps [seroval](https://github.com/lxsmnsyc/seroval) and [solid-js](https://github.com/solidjs/solid). These dependencies needed to be updated together.\nUpdates `seroval` from 1.3.2 to 1.5.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lxsmnsyc/seroval/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `solid-js` from 1.9.10 to 1.9.12\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/solidjs/solid/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/NayamAmarshe/telegram-exported-chats-viewer/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/NayamAmarshe/telegram-exported-chats-viewer/pull/11","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/NayamAmarshe%2Ftelegram-exported-chats-viewer/issues/11","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11/packages"}},{"old_version":"1.3.2","new_version":"1.5.2","update_type":"minor","path":"/frontend","pr_created_at":"2026-04-18T20:45:48.000Z","version_change":"1.3.2 → 1.5.2","issue":{"uuid":"4289141567","node_id":"PR_kwDOQntYx87TopKF","number":25,"state":"closed","title":"Bump seroval and solid-js in /frontend","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-04-18T20:49:09.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-18T20:45:48.000Z","updated_at":"2026-04-18T20:49:16.000Z","time_to_close":201,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"seroval","repository_url":"https://github.com/lxsmnsyc/seroval","old_version":"1.3.2","new_version":"1.5.2"},{"name":"solid-js","repository_url":"https://github.com/solidjs/solid","old_version":"1.9.10","new_version":"1.9.12"}],"path":"/frontend","ecosystem":"npm"},"body":"Bumps [seroval](https://github.com/lxsmnsyc/seroval) and [solid-js](https://github.com/solidjs/solid). These dependencies needed to be updated together.\nUpdates `seroval` from 1.3.2 to 1.5.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lxsmnsyc/seroval/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `solid-js` from 1.9.10 to 1.9.12\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/solidjs/solid/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/saisudhir14/ai-voice-agent/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/saisudhir14/ai-voice-agent/pull/25","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/saisudhir14%2Fai-voice-agent/issues/25","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/25/packages"}},{"old_version":"1.5.1","new_version":"1.5.2","update_type":"patch","path":null,"pr_created_at":"2026-04-18T01:55:19.000Z","version_change":"1.5.1 → 1.5.2","issue":{"uuid":"4286308648","node_id":"PR_kwDORs7m1M7Tf_yt","number":5,"state":"closed","title":"chore(deps): bump the npm-minor-patch group across 1 directory with 142 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-04-25T01:35:28.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-18T01:55:19.000Z","updated_at":"2026-04-25T01:35:30.000Z","time_to_close":603609,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm-minor-patch","update_count":142,"packages":[{"name":"@applemusic-like-lyrics/lyric","old_version":"0.3.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/vue","old_version":"0.2.0","new_version":"0.4.0","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@neteasecloudmusicapienhanced/api","old_version":"4.30.3","new_version":"4.32.0"},{"name":"@types/pg","old_version":"8.18.0","new_version":"8.20.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"axios","old_version":"1.13.6","new_version":"1.15.0","repository_url":"https://github.com/axios/axios"},{"name":"dotenv","old_version":"17.3.1","new_version":"17.4.2","repository_url":"https://github.com/motdotla/dotenv"},{"name":"drizzle-orm","old_version":"0.45.1","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"lodash-es","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"postgres","old_version":"3.4.8","new_version":"3.4.9","repository_url":"https://github.com/porsager/postgres"},{"name":"redis","old_version":"5.11.0","new_version":"5.12.1","repository_url":"https://github.com/redis/node-redis"},{"name":"sass","old_version":"1.98.0","new_version":"1.99.0","repository_url":"https://github.com/sass/dart-sass"},{"name":"vite-plugin-glsl","old_version":"1.5.6","new_version":"1.6.0","repository_url":"https://github.com/UstymUkhman/vite-plugin-glsl"},{"name":"vue","old_version":"3.5.30","new_version":"3.5.32","repository_url":"https://github.com/vuejs/core"},{"name":"prettier","old_version":"3.8.1","new_version":"3.8.3","repository_url":"https://github.com/prettier/prettier"},{"name":"@clack/prompts","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@emnapi/core","old_version":"1.9.1","new_version":"1.10.0","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/runtime","old_version":"1.9.1","new_version":"1.10.0","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@eslint/compat","old_version":"2.0.3","new_version":"2.0.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"@humanfs/core","old_version":"0.19.1","new_version":"0.19.2","repository_url":"https://github.com/humanwhocodes/humanfs"},{"name":"@humanfs/node","old_version":"0.16.7","new_version":"0.16.8","repository_url":"https://github.com/humanwhocodes/humanfs"},{"name":"path-to-regexp","old_version":"0.1.12","new_version":"0.1.13","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"@nuxt/telemetry","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nuxt/telemetry"},{"name":"@swc/core","old_version":"1.15.18","new_version":"1.15.26","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/helpers","old_version":"0.5.19","new_version":"0.5.21","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/wasm","old_version":"1.15.18","new_version":"1.15.26","repository_url":"https://github.com/swc-project/swc"},{"name":"@types/node","old_version":"25.5.0","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.57.1","new_version":"8.58.2","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@unhead/vue","old_version":"2.1.12","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"@vercel/nft","old_version":"1.4.0","new_version":"1.5.0","repository_url":"https://github.com/vercel/nft"},{"name":"@vitejs/plugin-vue","old_version":"6.0.5","new_version":"6.0.6","repository_url":"https://github.com/vitejs/vite-plugin-vue"},{"name":"@vue/devtools-core","old_version":"8.1.0","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"autoprefixer","old_version":"10.4.27","new_version":"10.5.0","repository_url":"https://github.com/postcss/autoprefixer"},{"name":"bare-fs","old_version":"4.5.6","new_version":"4.7.1","repository_url":"https://github.com/holepunchto/bare-fs"},{"name":"bare-os","old_version":"3.8.0","new_version":"3.8.7","repository_url":"https://github.com/holepunchto/bare-os"},{"name":"bare-stream","old_version":"2.10.0","new_version":"2.13.0","repository_url":"https://github.com/holepunchto/bare-stream"},{"name":"basic-ftp","old_version":"5.2.0","new_version":"5.3.0","repository_url":"https://github.com/patrickjuchli/basic-ftp"},{"name":"builtin-modules","old_version":"5.0.0","new_version":"5.1.0","repository_url":"https://github.com/sindresorhus/builtin-modules"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"cookie-es","old_version":"1.2.2","new_version":"1.2.3","repository_url":"https://github.com/unjs/cookie-es"},{"name":"css-declaration-sorter","old_version":"7.3.1","new_version":"7.4.0","repository_url":"https://github.com/Siilwyn/css-declaration-sorter"},{"name":"cssnano","old_version":"7.1.3","new_version":"7.1.5","repository_url":"https://github.com/cssnano/cssnano"},{"name":"devalue","old_version":"5.6.4","new_version":"5.7.1","repository_url":"https://github.com/sveltejs/devalue"},{"name":"diff","old_version":"8.0.3","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"dompurify","old_version":"3.3.3","new_version":"3.4.0","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"eslint-config-flat-gitignore","old_version":"2.2.1","new_version":"2.3.0","repository_url":"https://github.com/antfu/eslint-config-flat-gitignore"},{"name":"eslint-flat-config-utils","old_version":"3.0.2","new_version":"3.1.0","repository_url":"https://github.com/antfu/eslint-flat-config-utils"},{"name":"eslint-plugin-jsdoc","old_version":"62.8.0","new_version":"62.9.0","repository_url":"https://github.com/gajus/eslint-plugin-jsdoc"},{"name":"fast-npm-meta","old_version":"1.4.2","new_version":"1.5.0","repository_url":"https://github.com/antfu/fast-npm-meta"},{"name":"file-type","old_version":"21.3.3","new_version":"21.3.4","repository_url":"https://github.com/sindresorhus/file-type"},{"name":"follow-redirects","old_version":"1.15.11","new_version":"1.16.0","repository_url":"https://github.com/follow-redirects/follow-redirects"},{"name":"fuse.js","old_version":"7.1.0","new_version":"7.3.0","repository_url":"https://github.com/krisk/Fuse"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.14.0","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"globby","old_version":"16.1.1","new_version":"16.2.0","repository_url":"https://github.com/sindresorhus/globby"},{"name":"h3","old_version":"1.15.9","new_version":"1.15.11","repository_url":"https://github.com/h3js/h3"},{"name":"hasown","old_version":"2.0.2","new_version":"2.0.3","repository_url":"https://github.com/inspect-js/hasOwn"},{"name":"launch-editor","old_version":"2.13.1","new_version":"2.13.2","repository_url":"https://github.com/yyx990803/launch-editor"},{"name":"listhen","old_version":"1.9.0","new_version":"1.9.1","repository_url":"https://github.com/unjs/listhen"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"netmask","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/rs/node-netmask"},{"name":"nitropack","old_version":"2.13.1","new_version":"2.13.3","repository_url":"https://github.com/nitrojs/nitro"},{"name":"node-releases","old_version":"2.0.36","new_version":"2.0.37","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"postcss","old_version":"8.5.8","new_version":"8.5.10","repository_url":"https://github.com/postcss/postcss"},{"name":"regjsparser","old_version":"0.13.0","new_version":"0.13.1","repository_url":"https://github.com/jviereck/regjsparser"},{"name":"resolve","old_version":"1.22.11","new_version":"1.22.12","repository_url":"https://github.com/browserify/resolve"},{"name":"seroval","old_version":"1.5.1","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"simple-git","old_version":"3.33.0","new_version":"3.36.0","repository_url":"https://github.com/steveukx/git-js"},{"name":"srvx","old_version":"0.11.12","new_version":"0.11.15","repository_url":"https://github.com/h3js/srvx"},{"name":"strtok3","old_version":"10.3.4","new_version":"10.3.5","repository_url":"https://github.com/Borewit/strtok3"},{"name":"tar","old_version":"7.5.12","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"tinyexec","old_version":"1.0.4","new_version":"1.1.1","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"type-fest","old_version":"5.5.0","new_version":"5.6.0","repository_url":"https://github.com/sindresorhus/type-fest"},{"name":"uqr","old_version":"0.1.2","new_version":"0.1.3","repository_url":"https://github.com/unjs/uqr"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.2","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-minor-patch group with 78 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@applemusic-like-lyrics/lyric](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/lyric) | `0.3.0` | `0.4.1` |\n| [@applemusic-like-lyrics/vue](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue) | `0.2.0` | `0.4.0` |\n| @neteasecloudmusicapienhanced/api | `4.30.3` | `4.32.0` |\n| [@types/pg](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/pg) | `8.18.0` | `8.20.0` |\n| [axios](https://github.com/axios/axios) | `1.13.6` | `1.15.0` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.3.1` | `17.4.2` |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.45.1` | `0.45.2` |\n| [lodash-es](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [postgres](https://github.com/porsager/postgres) | `3.4.8` | `3.4.9` |\n| [redis](https://github.com/redis/node-redis) | `5.11.0` | `5.12.1` |\n| [sass](https://github.com/sass/dart-sass) | `1.98.0` | `1.99.0` |\n| [vite-plugin-glsl](https://github.com/UstymUkhman/vite-plugin-glsl) | `1.5.6` | `1.6.0` |\n| [vue](https://github.com/vuejs/core) | `3.5.30` | `3.5.32` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.3` |\n| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.1.0` | `1.2.0` |\n| [@emnapi/core](https://github.com/toyobayashi/emnapi) | `1.9.1` | `1.10.0` |\n| [@emnapi/runtime](https://github.com/toyobayashi/emnapi) | `1.9.1` | `1.10.0` |\n| [@eslint/compat](https://github.com/eslint/rewrite/tree/HEAD/packages/compat) | `2.0.3` | `2.0.5` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.14` |\n| [@humanfs/core](https://github.com/humanwhocodes/humanfs) | `0.19.1` | `0.19.2` |\n| [@humanfs/node](https://github.com/humanwhocodes/humanfs/tree/HEAD/packages/node) | `0.16.7` | `0.16.8` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `0.1.12` | `0.1.13` |\n| [@nuxt/telemetry](https://github.com/nuxt/telemetry) | `2.7.0` | `2.8.0` |\n| [@swc/core](https://github.com/swc-project/swc/tree/HEAD/packages/core) | `1.15.18` | `1.15.26` |\n| [@swc/helpers](https://github.com/swc-project/swc/tree/HEAD/packages/helpers) | `0.5.19` | `0.5.21` |\n| [@swc/wasm](https://github.com/swc-project/swc) | `1.15.18` | `1.15.26` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.5.0` | `25.6.0` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.57.1` | `8.58.2` |\n| [@unhead/vue](https://github.com/unjs/unhead/tree/HEAD/packages/vue) | `2.1.12` | `2.1.13` |\n| [@vercel/nft](https://github.com/vercel/nft) | `1.4.0` | `1.5.0` |\n| [@vitejs/plugin-vue](https://github.com/vitejs/vite-plugin-vue/tree/HEAD/packages/plugin-vue) | `6.0.5` | `6.0.6` |\n| [@vue/devtools-core](https://github.com/vuejs/devtools/tree/HEAD/packages/core) | `8.1.0` | `8.1.1` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [autoprefixer](https://github.com/postcss/autoprefixer) | `10.4.27` | `10.5.0` |\n| [bare-fs](https://github.com/holepunchto/bare-fs) | `4.5.6` | `4.7.1` |\n| [bare-os](https://github.com/holepunchto/bare-os) | `3.8.0` | `3.8.7` |\n| [bare-stream](https://github.com/holepunchto/bare-stream) | `2.10.0` | `2.13.0` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.2.0` | `5.3.0` |\n| [builtin-modules](https://github.com/sindresorhus/builtin-modules) | `5.0.0` | `5.1.0` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `1.2.2` | `1.2.3` |\n| [css-declaration-sorter](https://github.com/Siilwyn/css-declaration-sorter) | `7.3.1` | `7.4.0` |\n| [cssnano](https://github.com/cssnano/cssnano) | `7.1.3` | `7.1.5` |\n| [devalue](https://github.com/sveltejs/devalue) | `5.6.4` | `5.7.1` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.3` | `8.0.4` |\n| [dompurify](https://github.com/cure53/DOMPurify) | `3.3.3` | `3.4.0` |\n| [eslint-config-flat-gitignore](https://github.com/antfu/eslint-config-flat-gitignore) | `2.2.1` | `2.3.0` |\n| [eslint-flat-config-utils](https://github.com/antfu/eslint-flat-config-utils) | `3.0.2` | `3.1.0` |\n| [eslint-plugin-jsdoc](https://github.com/gajus/eslint-plugin-jsdoc) | `62.8.0` | `62.9.0` |\n| [fast-npm-meta](https://github.com/antfu/fast-npm-meta) | `1.4.2` | `1.5.0` |\n| [file-type](https://github.com/sindresorhus/file-type) | `21.3.3` | `21.3.4` |\n| [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.15.11` | `1.16.0` |\n| [fuse.js](https://github.com/krisk/Fuse) | `7.1.0` | `7.3.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.14.0` |\n| [globby](https://github.com/sindresorhus/globby) | `16.1.1` | `16.2.0` |\n| [h3](https://github.com/h3js/h3) | `1.15.9` | `1.15.11` |\n| [hasown](https://github.com/inspect-js/hasOwn) | `2.0.2` | `2.0.3` |\n| [launch-editor](https://github.com/yyx990803/launch-editor) | `2.13.1` | `2.13.2` |\n| [listhen](https://github.com/unjs/listhen) | `1.9.0` | `1.9.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [netmask](https://github.com/rs/node-netmask) | `2.0.2` | `2.1.1` |\n| [nitropack](https://github.com/nitrojs/nitro) | `2.13.1` | `2.13.3` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.36` | `2.0.37` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.8` | `8.5.10` |\n| [regjsparser](https://github.com/jviereck/regjsparser) | `0.13.0` | `0.13.1` |\n| [resolve](https://github.com/browserify/resolve) | `1.22.11` | `1.22.12` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.1` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.33.0` | `3.36.0` |\n| [srvx](https://github.com/h3js/srvx) | `0.11.12` | `0.11.15` |\n| [strtok3](https://github.com/Borewit/strtok3) | `10.3.4` | `10.3.5` |\n| [tar](https://github.com/isaacs/node-tar) | `7.5.12` | `7.5.13` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.4` | `1.1.1` |\n| [type-fest](https://github.com/sindresorhus/type-fest) | `5.5.0` | `5.6.0` |\n| [uqr](https://github.com/unjs/uqr) | `0.1.2` | `0.1.3` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.2` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |\n\n\nUpdates `@applemusic-like-lyrics/lyric` from 0.3.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/2fc5d2e19d7a2ce70501a347dec4f5f4f90fbfe2\"\u003e\u003ccode\u003e2fc5d2e\u003c/code\u003e\u003c/a\u003e fix: lyric 包 rust 侧适配 romanWord 可选\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/d862271aa1396b19b9a8bb4d8cd484a0df366270\"\u003e\u003ccode\u003ed862271\u003c/code\u003e\u003c/a\u003e fix: 修复 lyric 包 romanWord 类型\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/@applemusic-like-lyrics/lyric@0.4.1/packages/lyric\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/vue` from 0.2.0 to 0.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/blob/main/packages/vue/CHANGELOG.md\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.4.0 (2026-04-14)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore: 移除 canvas 歌词渲染器 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: 重构核心库测试组织模式 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/3db83c93\"\u003e3db83c93\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: 更换工具链 (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/pull/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edocs: 修正 optimize-lyric.ts 和 OptimizeLyricOptions 里 cleanUnintentionalOverlaps 的文档和注释 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/75a8c0bb\"\u003e75a8c0bb\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapoint123 \u003ca href=\"https://github.com/apoint123\"\u003e\u003ccode\u003e@​apoint123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinho \u003ca href=\"https://github.com/Linho1219\"\u003e\u003ccode\u003e@​Linho1219\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMoYingJi \u003ca href=\"https://github.com/MoYingJi\"\u003e\u003ccode\u003e@​MoYingJi\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/ef837385e99b16d46e4fddadd26aa756ba10231c\"\u003e\u003ccode\u003eef83738\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/aa845765f3fbc15df6d3ede5129a2a0e303da910\"\u003e\u003ccode\u003eaa84576\u003c/code\u003e\u003c/a\u003e chore: 在项目范围内启用 isolatedDeclarations (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/480\"\u003e#480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/bf4e41b4f8bac3610e17aa03fbfde7c11b1f730b\"\u003e\u003ccode\u003ebf4e41b\u003c/code\u003e\u003c/a\u003e 更换各个工具链 (\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue/issues/476\"\u003e#476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/98b80b2b3a32dc09dfaf24cc9ba7f4797b2d3a1f\"\u003e\u003ccode\u003e98b80b2\u003c/code\u003e\u003c/a\u003e chore: 统一 TS 配置\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/69d7bef0f1f109a0626aadf564b3e50d3385c165\"\u003e\u003ccode\u003e69d7bef\u003c/code\u003e\u003c/a\u003e chore: 强制在构建时执行类型检查\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/9a81450a68a6731b31d8a9d0639e2e70ccb5d32b\"\u003e\u003ccode\u003e9a81450\u003c/code\u003e\u003c/a\u003e refactor: 抽离 vue playground\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/1a0803d465c230ac0ad46f70d85080d4debaf170\"\u003e\u003ccode\u003e1a0803d\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.4.0/packages/vue\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@neteasecloudmusicapienhanced/api` from 4.30.3 to 4.32.0\n\nUpdates `@types/pg` from 8.18.0 to 8.20.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/pg\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.6 to 1.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.0\u003c/h2\u003e\n\u003cp\u003eThis release delivers two critical security patches, adds runtime support for Deno and Bun, and includes significant CI hardening, documentation improvements, and routine dependency updates.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecation:\u003c/strong\u003e \u003ccode\u003eurl.parse()\u003c/code\u003e usage has been replaced to address Node.js deprecation warnings. If you are on a recent version of Node.js, this resolves console warnings you may have been seeing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed a \u003ccode\u003eno_proxy\u003c/code\u003e hostname normalisation bypass that could lead to Server-Side Request Forgery (SSRF). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHeader Injection:\u003c/strong\u003e Fixed an unrestricted cloud metadata exfiltration vulnerability via a header injection chain. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10660\"\u003e#10660\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Support:\u003c/strong\u003e Added compatibility checks and documentation for Deno and Bun environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10652\"\u003e#10652\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10653\"\u003e#10653\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Security:\u003c/strong\u003e Hardened workflow permissions to least privilege, added the \u003ccode\u003ezizmor\u003c/code\u003e security scanner, pinned action versions, and gated npm publishing with OIDC and environment protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10618\"\u003e#10618\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10619\"\u003e#10619\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10627\"\u003e#10627\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10637\"\u003e#10637\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eserialize-javascript\u003c/code\u003e, \u003ccode\u003ehandlebars\u003c/code\u003e, \u003ccode\u003epicomatch\u003c/code\u003e, \u003ccode\u003evite\u003c/code\u003e, and \u003ccode\u003edenoland/setup-deno\u003c/code\u003e to latest versions. Added a 7-day Dependabot cooldown period. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10574\"\u003e#10574\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10572\"\u003e#10572\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10568\"\u003e#10568\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10616\"\u003e#10616\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocumentation:\u003c/strong\u003e Unified docs, improved \u003ccode\u003ebeforeRedirect\u003c/code\u003e credential leakage example, clarified \u003ccode\u003ewithCredentials\u003c/code\u003e/\u003ccode\u003ewithXSRFToken\u003c/code\u003e behaviour, HTTP/2 support notes, async/await timeout error handling, header case preservation, and various typo fixes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10649\"\u003e#10649\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7471\"\u003e#7471\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10654\"\u003e#10654\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10644\"\u003e#10644\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHousekeeping:\u003c/strong\u003e Removed stale files, regenerated lockfile, and updated sponsor scripts and blocks. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10584\"\u003e#10584\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10650\"\u003e#10650\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10582\"\u003e#10582\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10640\"\u003e#10640\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10659\"\u003e#10659\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Added regression coverage for urlencoded \u003ccode\u003eContent-Type\u003c/code\u003e casing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve Axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/raashish1601\"\u003e\u003ccode\u003e@​raashish1601\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Kilros0817\"\u003e\u003ccode\u003e@​Kilros0817\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/ashstrc\"\u003e\u003ccode\u003e@​ashstrc\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Abhi3975\"\u003e\u003ccode\u003e@​Abhi3975\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/theamodhshetty\"\u003e\u003ccode\u003e@​theamodhshetty\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.14.0\u003c/h2\u003e\n\u003cp\u003eThis release focuses on compatibility fixes, adapter stability improvements, and test/tooling modernisation.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBreaking Changes:\u003c/strong\u003e None identified in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAction Required:\u003c/strong\u003e If you rely on env-based proxy behaviour or CJS resolution edge-cases, validate your integration after upgrade (notably \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 alignment and \u003ccode\u003emain\u003c/code\u003e entry compatibility fix).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Features:\u003c/strong\u003e No new end-user features were introduced in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTest Coverage Expansion:\u003c/strong\u003e Added broader smoke/module test coverage for CJS and ESM package usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7510\"\u003e#7510\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e Trim trailing CRLF in normalised header values. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7456\"\u003e#7456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP/2:\u003c/strong\u003e Close detached HTTP/2 sessions on timeout to avoid lingering sessions. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7457\"\u003e#7457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Cancel \u003ccode\u003eReadableStream\u003c/code\u003e created during request-stream capability probing to prevent async resource leaks. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7515\"\u003e#7515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed env proxy behavior with \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7499\"\u003e#7499\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.0 — April 7, 2026\u003c/h2\u003e\n\u003cp\u003eThis release delivers two critical security patches targeting header injection and SSRF via proxy bypass, adds official runtime support for Deno and Bun, and includes significant CI security hardening.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eHeader Injection (CRLF):\u003c/strong\u003e Rejects any header value containing \u003ccode\u003e\\r\u003c/code\u003e or \u003ccode\u003e\\n\u003c/code\u003e characters to block CRLF injection chains that could be used to exfiltrate cloud metadata (IMDS). Behavior change: headers with CR/LF now throw \u003ccode\u003e\u0026quot;Invalid character in header content\u0026quot;\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10660\"\u003e#10660\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eSSRF via \u003ccode\u003eno_proxy\u003c/code\u003e Bypass:\u003c/strong\u003e Introduces a \u003ccode\u003eshouldBypassProxy\u003c/code\u003e helper that normalises hostnames (strips trailing dots, handles bracketed IPv6) before evaluating \u003ccode\u003eno_proxy\u003c/code\u003e/\u003ccode\u003eNO_PROXY\u003c/code\u003e rules, closing a gap that could cause loopback or internal hosts to be inadvertently proxied. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDeno \u0026amp; Bun Runtime Support:\u003c/strong\u003e Added full smoke test suites for Deno and Bun, with CI workflows that run both runtimes before any release is cut. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10652\"\u003e#10652\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eNode.js v22 Compatibility:\u003c/strong\u003e Replaced deprecated \u003ccode\u003eurl.parse()\u003c/code\u003e calls with the WHATWG \u003ccode\u003eURL\u003c/code\u003e/\u003ccode\u003eURLSearchParams\u003c/code\u003e API across examples, sandbox, and tests, eliminating \u003ccode\u003eDEP0169\u003c/code\u003e deprecation warnings on Node.js v22+. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eCI Security Hardening:\u003c/strong\u003e Added \u003ca href=\"https://github.com/zizmorcore/zizmor\"\u003ezizmor\u003c/a\u003e GitHub Actions security scanner; switched npm publish to OIDC Trusted Publishing (removing the long-lived \u003ccode\u003eNODE_AUTH_TOKEN\u003c/code\u003e); pinned all action references to full commit SHAs; narrowed workflow permissions to least privilege; gated the publish step behind a dedicated \u003ccode\u003enpm-publish\u003c/code\u003e environment; and blocked the sponsor-block workflow from running on forks. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10618\"\u003e#10618\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10619\"\u003e#10619\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10627\"\u003e#10627\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10637\"\u003e#10637\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10641\"\u003e#10641\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Clarified HTTP/2 support and the unsupported \u003ccode\u003ehttpVersion\u003c/code\u003e option; added documentation for header case preservation; improved the \u003ccode\u003ebeforeRedirect\u003c/code\u003e example to prevent accidental credential leakage. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10644\"\u003e#10644\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10654\"\u003e#10654\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003epicomatch\u003c/code\u003e, \u003ccode\u003ehandlebars\u003c/code\u003e, \u003ccode\u003eserialize-javascript\u003c/code\u003e, \u003ccode\u003evite\u003c/code\u003e (×3), \u003ccode\u003edenoland/setup-deno\u003c/code\u003e, and 4 additional dev dependencies to latest versions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10564\"\u003e#10564\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10565\"\u003e#10565\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10567\"\u003e#10567\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10568\"\u003e#10568\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10572\"\u003e#10572\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10574\"\u003e#10574\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Kilros0817\"\u003e\u003ccode\u003e@​Kilros0817\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/shaanmajid\"\u003e\u003ccode\u003e@​shaanmajid\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10616\"\u003e#10616\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10617\"\u003e#10617\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10618\"\u003e#10618\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10619\"\u003e#10619\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10637\"\u003e#10637\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10641\"\u003e#10641\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/ashstrc\"\u003e\u003ccode\u003e@​ashstrc\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10644\"\u003e#10644\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Abhi3975\"\u003e\u003ccode\u003e@​Abhi3975\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/raashish1601\"\u003e\u003ccode\u003e@​raashish1601\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.14.0...v1.15.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003chr /\u003e\n\u003ch2\u003ev1.14.0 — March 27, 2026\u003c/h2\u003e\n\u003cp\u003eThis release fixes a security vulnerability in the \u003ccode\u003eformidable\u003c/code\u003e dependency, resolves a CommonJS compatibility regression, hardens proxy and HTTP/2 handling, and modernises the build and test toolchain.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFormidable Vulnerability:\u003c/strong\u003e Upgraded \u003ccode\u003eformidable\u003c/code\u003e from v2 to v3 to address a reported arbitrary-file vulnerability. Updated test server and assertions to align with the v3 API. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7533\"\u003e#7533\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/772a4e54ecc4cc2421e2b746daff0aca10f359d7\"\u003e\u003ccode\u003e772a4e5\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10671\"\u003e#10671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4b071371be2f810b4bc7797a13838e0f806ebb22\"\u003e\u003ccode\u003e4b07137\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.0 to 8.0.5 in /tests/smoke/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/51e57b39db251bfe3d34af5c943dfea18e06c8b6\"\u003e\u003ccode\u003e51e57b3\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fba1a77930f0c459677b729161627234b88c90aa\"\u003e\u003ccode\u003efba1a77\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 in /tests/module/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0bf6e28eac86e87da2b60bbf5ea4237910e1a08e\"\u003e\u003ccode\u003e0bf6e28\u003c/code\u003e\u003c/a\u003e chore(deps): bump denoland/setup-deno in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8107157c572ee4a54cb28c01ab7f7f3d895ba661\"\u003e\u003ccode\u003e8107157\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the development_dependencies group with 4 updates (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e66530e3302d56176befd0778155dafea2487542\"\u003e\u003ccode\u003ee66530e\u003c/code\u003e\u003c/a\u003e ci: require npm-publish environment for releases (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/49f23cbfe4d308a075281c5f798d4c68f648cbe2\"\u003e\u003ccode\u003e49f23cb\u003c/code\u003e\u003c/a\u003e chore(sponsor): update sponsor block (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/363185461b90b1b78845dc8a99a1f103d9b122a1\"\u003e\u003ccode\u003e3631854\u003c/code\u003e\u003c/a\u003e fix: unrestricted cloud metadata exfiltration via header injection chain (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10\"\u003e#10\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fb3befb6daac6cad26b2e54094d0f2d9e47f24df\"\u003e\u003ccode\u003efb3befb\u003c/code\u003e\u003c/a\u003e fix: no_proxy hostname normalization bypass leads to ssrf (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.6...v1.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv` from 17.3.1 to 17.4.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md\"\u003edotenv's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.1...v17.4.2\"\u003e17.4.2\u003c/a\u003e (2026-04-12)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImproved skill files - tightened up details (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.0...v17.4.1\"\u003e17.4.1\u003c/a\u003e (2026-04-05)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange text \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1005\"\u003e#1005\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.0\"\u003e17.4.0\u003c/a\u003e (2026-04-01)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eskills/\u003c/code\u003e folder with focused agent skills: \u003ccode\u003eskills/dotenv/SKILL.md\u003c/code\u003e (core usage) and \u003ccode\u003eskills/dotenvx/SKILL.md\u003c/code\u003e (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (\u003ccode\u003enpx skills add motdotla/dotenv\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTighten up logs: \u003ccode\u003e◇ injecting env (14) from .env\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1003\"\u003e#1003\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/f116f70310abab44fbfddbaeb833698b5bf84a9b\"\u003e\u003ccode\u003ef116f70\u003c/code\u003e\u003c/a\u003e 17.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/3a8161274fdd745239b86e604f4a7e972a1d3902\"\u003e\u003ccode\u003e3a81612\u003c/code\u003e\u003c/a\u003e fix visual order of faq\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/13f55a89e136b2024e68d277b836dd5260fc16cf\"\u003e\u003ccode\u003e13f55a8\u003c/code\u003e\u003c/a\u003e Merge branch 'skill'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/4bbbf73f0906bd69975c48bf310a84b686e5b1b4\"\u003e\u003ccode\u003e4bbbf73\u003c/code\u003e\u003c/a\u003e reorganize faq\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/c3da64bb2ba1d0e02f8b9b2b7ccb7e6f7a51d56c\"\u003e\u003ccode\u003ec3da64b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1009\"\u003e#1009\u003c/a\u003e from motdotla/skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/6f743b173fbd6c26f7eab7040d251f9a6c8b977d\"\u003e\u003ccode\u003e6f743b1\u003c/code\u003e\u003c/a\u003e update source\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/fc2c6247e858a32d4024cb06a5b0c79aa35851f5\"\u003e\u003ccode\u003efc2c624\u003c/code\u003e\u003c/a\u003e update skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/972315ba74bb2bbba4483d112e853fd26006ef8a\"\u003e\u003ccode\u003e972315b\u003c/code\u003e\u003c/a\u003e Tighten up skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/2795fce3d1ed07b4c570f1e06ab1c0d533c86997\"\u003e\u003ccode\u003e2795fce\u003c/code\u003e\u003c/a\u003e reorganize faq\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/d5495d4ae8e4e41ef9a682c9e00c81552794274e\"\u003e\u003ccode\u003ed5495d4\u003c/code\u003e\u003c/a\u003e adjust skill\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `drizzle-orm` from 0.45.1 to 0.45.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/releases\"\u003edrizzle-orm's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.45.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esql.identifier()\u003c/code\u003e, \u003ccode\u003esql.as()\u003c/code\u003e escaping issues. Previously all the values passed to this functions were not properly escaped\ncausing a possible SQL Injection (CWE-89) vulnerability\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/EthanKim88\"\u003e\u003ccode\u003e@​EthanKim88\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/0x90sh\"\u003e\u003ccode\u003e@​0x90sh\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/wgoodall01\"\u003e\u003ccode\u003e@​wgoodall01\u003c/code\u003e\u003c/a\u003e for reaching out to us with a reproduction and suggested fix\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/273c78071d4841b497f5144734b38294df7ec64b\"\u003e\u003ccode\u003e273c780\u003c/code\u003e\u003c/a\u003e + 0.45.2 (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5534\"\u003e#5534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/4aa6ecfee4b4728dadf6f77f071a149878a3c6c0\"\u003e\u003ccode\u003e4aa6ecf\u003c/code\u003e\u003c/a\u003e Kit updates (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5490\"\u003e#5490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/e8e6edfef5ca69c6188d320388ad440265911057\"\u003e\u003ccode\u003ee8e6edf\u003c/code\u003e\u003c/a\u003e feat(drizzle-kit): support d1 via binding (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5302\"\u003e#5302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/compare/0.45.1...0.45.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash-es` from 4.17.23 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash-es's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postgres` from 3.4.8 to 3.4.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/porsager/postgres/releases\"\u003epostgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.4.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e  1e92809\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ehttps://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/e7dfa14519f363229ccc3ead7b1b2f2051937efb\"\u003e\u003ccode\u003ee7dfa14\u003c/code\u003e\u003c/a\u003e 3.4.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/cc29931aa1280fc62b9452647a48a89fe5d443a2\"\u003e\u003ccode\u003ecc29931\u003c/code\u003e\u003c/a\u003e build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/1e92809e79dda7873d96646403c068cd6998ea73\"\u003e\u003ccode\u003e1e92809\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `redis` from 5.11.0 to 5.12.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/node-redis/releases\"\u003eredis's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eredis@5.12.0\u003c/h2\u003e\n\u003ch2\u003e✨ What's Changed\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat: expose \u003ccode\u003esendCommand\u003c/code\u003e on \u003ccode\u003emulti\u003c/code\u003e for all clients by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3181\"\u003eredis/node-redis#3181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(sentinel): add \u003ccode\u003esSubscribe\u003c/code\u003e/\u003ccode\u003esUnsubscribe\u003c/code\u003e methods to Sentinel client by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3178\"\u003eredis/node-redis#3178\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🐛 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix(search): correct \u003ccode\u003eINDEXMISSING\u003c/code\u003e placement by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3179\"\u003eredis/node-redis#3179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePool fixes by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3182\"\u003eredis/node-redis#3182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(search): use \u003ccode\u003e@redis/client\u003c/code\u003e dist imports in \u003ccode\u003eCREATE\u003c/code\u003e command by \u003ca href=\"https://github.com/PavelPashov\"\u003e\u003ccode\u003e@​PavelPashov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3187\"\u003eredis/node-redis#3187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(sentinel): preserve root seeds for outage recovery by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3188\"\u003eredis/node-redis#3188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: fallthrough bug in \u003ccode\u003etransformDoubleReply\u003c/code\u003e by \u003ca href=\"https://github.com/rhymincymon\"\u003e\u003ccode\u003e@​rhymincymon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3213\"\u003eredis/node-redis#3213\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🔭 Observability (OTEL + Diagnostics)\u003c/h3\u003e\n\u003cp\u003eNode Redis now ships with first-class observability via OpenTelemetry metrics and Node.js \u003ccode\u003ediagnostics_channel\u003c/code\u003e. Initialize \u003ccode\u003eOpenTelemetry\u003c/code\u003e before creating clients (\u003ccode\u003eOpenTelemetry.init({ metrics: { enabled: true } })\u003c/code\u003e) and you can plug Redis client telemetry into your existing OTel SDK/exporter pipeline.\u003c/p\u003e\n\u003cp\u003eThis enables visibility into command latency, connection lifecycle, resiliency/errors, Pub/Sub traffic, streaming behavior, and client-side caching activity. On top of metrics, diagnostics channels provide a more abstract, higher-level way to track runtime behavior through low-overhead event streams (commands, batches, connection events, maintenance notifications, pub/sub, cache, and pool wait timing), so APM tools or custom subscribers can observe the system without changing application code.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eadd OpenTelemetry metrics instrumentation by \u003ca href=\"https://github.com/PavelPashov\"\u003e\u003ccode\u003e@​PavelPashov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3110\"\u003eredis/node-redis#3110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: implement diagnostic channels for observability by \u003ca href=\"https://github.com/logaretm\"\u003e\u003ccode\u003e@​logaretm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3195\"\u003eredis/node-redis#3195\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🧪 Tests \u0026amp; CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003etest(scho oss): add smigrating checks for new connections by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3186\"\u003eredis/node-redis#3186\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd self-report metrics step to CI workflow by \u003ca href=\"https://github.com/bobymicroby\"\u003e\u003ccode\u003e@​bobymicroby\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3199\"\u003eredis/node-redis#3199\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd run tests action by \u003ca href=\"https://github.com/dariaguy\"\u003e\u003ccode\u003e@​dariaguy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3221\"\u003eredis/node-redis#3221\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e📚 Docs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove sentinel docs by \u003ca href=\"https://github.com/cutiepoka\"\u003e\u003ccode\u003e@​cutiepoka\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3189\"\u003eredis/node-redis#3189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: clarify DUMP/RESTORE binary payload usage by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3201\"\u003eredis/node-redis#3201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(docs): configure typedoc entry points for monorepo by \u003ca href=\"https://github.com/nkaradzhov\"\u003e\u003ccode\u003e@​nkaradzhov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3220\"\u003eredis/node-redis#3220\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🙌 New Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cutiepoka\"\u003e\u003ccode\u003e@​cutiepoka\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3189\"\u003eredis/node-redis#3189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rhymincymon\"\u003e\u003ccode\u003e@​rhymincymon\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3213\"\u003eredis/node-redis#3213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/logaretm\"\u003e\u003ccode\u003e@​logaretm\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3195\"\u003eredis/node-redis#3195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dariaguy\"\u003e\u003ccode\u003e@​dariaguy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/redis/node-redis/pull/3221\"\u003eredis/node-redis#3221\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/redis/node-redis/compare/redis@5.11.0...redis@5.12.0\"\u003ehttps://github.com/redis/node-redis/compare/redis@5.11.0...redis@5.12.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/5cdad1b34d1448119673b336086f9db4c3376ddd\"\u003e\u003ccode\u003e5cdad1b\u003c/code\u003e\u003c/a\u003e Release redis@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/6a447261fc77c4577aa5127fb269f8b69cfe6732\"\u003e\u003ccode\u003e6a44726\u003c/code\u003e\u003c/a\u003e Release entraid@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/9f930f906915976cb9386cb8188a2dd2610a8cdf\"\u003e\u003ccode\u003e9f930f9\u003c/code\u003e\u003c/a\u003e Release time-series@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/de70920ecb4caf2a9c871a24cf08f1fcb41b1d2d\"\u003e\u003ccode\u003ede70920\u003c/code\u003e\u003c/a\u003e Release search@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/9e7767c5bf2cb06bcce872fe99e5dbb349e3a074\"\u003e\u003ccode\u003e9e7767c\u003c/code\u003e\u003c/a\u003e Release json@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/02cfd5ad4c07ef6c1d703e25d3c2076eacfb4b45\"\u003e\u003ccode\u003e02cfd5a\u003c/code\u003e\u003c/a\u003e Release bloom@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/838c28d9f55d13a7933e650b9f7782fdb5af4f71\"\u003e\u003ccode\u003e838c28d\u003c/code\u003e\u003c/a\u003e Release client@5.12.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/789d6d5c5c774fda24257ce1fc7f4f66b80ae689\"\u003e\u003ccode\u003e789d6d5\u003c/code\u003e\u003c/a\u003e fix: decouple OTel public types from \u003ccode\u003e@​opentelemetry/api\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/node-redis/issues/3228\"\u003e#3228\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/07aff3345d9fc5dc956ea9a145a132ff32b19392\"\u003e\u003ccode\u003e07aff33\u003c/code\u003e\u003c/a\u003e Release redis@5.12.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/node-redis/commit/b91d88f5fc63fe8786566cf4197be2c383f163ec\"\u003e\u003ccode\u003eb91d88f\u003c/code\u003e\u003c/a\u003e Release entraid@5.12.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/redis/node-redis/compare/redis@5.11.0...redis@5.12.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sass` from 1.98.0 to 1.99.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/releases\"\u003esass's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDart Sass 1.99.0\u003c/h2\u003e\n\u003cp\u003eTo install Sass 1.99.0, download one of the packages below and \u003ca href=\"https://katiek2.github.io/path-doc/\"\u003eadd it to your PATH\u003c/a\u003e, or see \u003ca href=\"https://sass-lang.com/install\"\u003ethe Sass website\u003c/a\u003e for full installation instructions.\u003c/p\u003e\n\u003ch1\u003eChanges\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are emitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping root\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If such a function exists without a namespace in the current module, it will be used instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e, \u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were originally intended to match vendor prefixes, but in practice no vendor prefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some lowercase letters are now deprecated, These are names conflict with plain CSS functions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now, these calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are deprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/sass/dart-sass/blob/master/CHANGELOG.md#1990\"\u003efull changelog\u003c/a\u003e for changes in earlier releases.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/blob/main/CHANGELOG.md\"\u003esass's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.99.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are\nemitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping\nroot\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If\nsuch a function exists without a namespace in the current module, it will be\nused instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e,\n\u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were\noriginally intended to match vendor prefixes, but in practice no vendor\nprefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that\nbegin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some\nlowercase letters are now deprecated, These are names conflict with plain CSS\nfunctions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end\nwith \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now,\nthese calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are\ndeprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/83c39fec93ab0dc183a46cff2bc468999ce53e20\"\u003e\u003ccode\u003e83c39fe\u003c/code\u003e\u003c/a\u003e Support the top-level parent selector (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2758\"\u003e#2758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/ec85871864ca16f8045e66ad329bd462e791bfa1\"\u003e\u003ccode\u003eec85871\u003c/code\u003e\u003c/a\u003e Bump EndBug/add-and-commit from 9 to 10 (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2756\"\u003e#2756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/a604acd19ad2ce31ef2efe9aa5950b0c5fcc74a9\"\u003e\u003ccode\u003ea604acd\u003c/code\u003e\u003c/a\u003e [Function Name] Implement changes (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/sass/dart-sass/compare/1.98.0...1.99.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite-plugin-glsl` from 1.5.6 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/UstymUkhman/vite-plugin-glsl/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vue` from 3.5.30 to 3.5.32\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/releases\"\u003evue's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.32\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003ch2\u003ev3.5.31\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003evue's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.31...v3.5.32\"\u003e3.5.32\u003c/a\u003e (2026-04-03)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent currentInstance leak into sibling render during async setup re-entry (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14668\"\u003e#14668\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/f1663535a163057788d3285dec54a245c3efb3ad\"\u003ef166353\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/1466...\n\n_Description has been truncated_","html_url":"https://github.com/QQXIAOZHOU/VoiceHub-4805e/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/QQXIAOZHOU%2FVoiceHub-4805e/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"}},{"old_version":"1.5.0","new_version":"1.5.2","update_type":"patch","path":null,"pr_created_at":"2026-04-17T12:09:13.000Z","version_change":"1.5.0 → 1.5.2","issue":{"uuid":"4282470428","node_id":"PR_kwDORhEIoc7TTj5S","number":16,"state":"closed","title":"Bump the all group across 1 directory with 174 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-20T01:50:57.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-17T12:09:13.000Z","updated_at":"2026-04-20T01:50:59.000Z","time_to_close":222104,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all","update_count":174,"packages":[{"name":"@hey-api/openapi-ts","old_version":"0.94.0","new_version":"0.96.0","repository_url":"https://github.com/hey-api/openapi-ts"},{"name":"@libsql/client","old_version":"0.17.0","new_version":"0.17.2","repository_url":"https://github.com/tursodatabase/libsql-client-ts"},{"name":"@supabase/supabase-js","old_version":"2.99.1","new_version":"2.103.3","repository_url":"https://github.com/supabase/supabase-js"},{"name":"@tailwindcss/vite","old_version":"4.2.1","new_version":"4.2.2","repository_url":"https://github.com/tailwindlabs/tailwindcss"},{"name":"@tanstack/react-query","old_version":"5.95.2","new_version":"5.99.0","repository_url":"https://github.com/TanStack/query"},{"name":"@tanstack/react-router","old_version":"1.166.7","new_version":"1.168.22","repository_url":"https://github.com/TanStack/router"},{"name":"@tanstack/router-plugin","old_version":"1.166.7","new_version":"1.167.22","repository_url":"https://github.com/TanStack/router"},{"name":"@trpc/client","old_version":"11.12.0","new_version":"11.16.0","repository_url":"https://github.com/trpc/trpc"},{"name":"@trpc/react-query","old_version":"11.12.0","new_version":"11.16.0","repository_url":"https://github.com/trpc/trpc"},{"name":"framer-motion","old_version":"12.35.2","new_version":"12.38.0","repository_url":"https://github.com/motiondivision/motion"},{"name":"pixi.js","old_version":"8.17.0","new_version":"8.18.1","repository_url":"https://github.com/pixijs/pixijs"},{"name":"react","old_version":"19.2.4","new_version":"19.2.5","repository_url":"https://github.com/facebook/react"},{"name":"react-dom","old_version":"19.2.4","new_version":"19.2.5","repository_url":"https://github.com/facebook/react"},{"name":"systeminformation","old_version":"5.31.4","new_version":"5.31.5","repository_url":"https://github.com/sebhildebrandt/systeminformation"},{"name":"yauzl","old_version":"3.2.1","new_version":"3.3.0","repository_url":"https://github.com/thejoshwolfe/yauzl"},{"name":"@eslint/js","old_version":"9.39.4","new_version":"10.0.1","repository_url":"https://github.com/eslint/eslint"},{"name":"@types/node","old_version":"25.4.0","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.57.0","new_version":"8.58.2","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/parser","old_version":"8.57.0","new_version":"8.58.2","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@vitejs/plugin-react","old_version":"5.1.4","new_version":"6.0.1","repository_url":"https://github.com/vitejs/vite-plugin-react"},{"name":"dotenv","old_version":"17.3.1","new_version":"17.4.2","repository_url":"https://github.com/motdotla/dotenv"},{"name":"electron","old_version":"41.1.1","new_version":"41.2.1","repository_url":"https://github.com/electron/electron"},{"name":"eslint","old_version":"9.39.4","new_version":"10.2.0","repository_url":"https://github.com/eslint/eslint"},{"name":"eslint-plugin-react-hooks","old_version":"7.0.1","new_version":"7.1.0","repository_url":"https://github.com/facebook/react"},{"name":"globals","old_version":"17.4.0","new_version":"17.5.0","repository_url":"https://github.com/sindresorhus/globals"},{"name":"javascript-obfuscator","old_version":"5.3.0","new_version":"5.4.1","repository_url":"https://github.com/javascript-obfuscator/javascript-obfuscator"},{"name":"jsdom","old_version":"28.1.0","new_version":"29.0.2","repository_url":"https://github.com/jsdom/jsdom"},{"name":"lint-staged","old_version":"16.3.3","new_version":"16.4.0","repository_url":"https://github.com/lint-staged/lint-staged"},{"name":"prettier","old_version":"3.8.1","new_version":"3.8.3","repository_url":"https://github.com/prettier/prettier"},{"name":"terser","old_version":"5.46.0","new_version":"5.46.1","repository_url":"https://github.com/terser/terser"},{"name":"typescript","old_version":"5.9.3","new_version":"6.0.3","repository_url":"https://github.com/microsoft/TypeScript"},{"name":"typescript-eslint","old_version":"8.57.0","new_version":"8.58.2","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"vite","old_version":"7.3.2","new_version":"8.0.8","repository_url":"https://github.com/vitejs/vite"},{"name":"vite-plugin-electron","old_version":"0.29.0","new_version":"0.29.1","repository_url":"https://github.com/electron-vite/vite-plugin-electron"},{"name":"vitest","old_version":"4.0.18","new_version":"4.1.4","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@babel/helpers","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/parser","old_version":"7.29.0","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/runtime","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"brace-expansion","old_version":"1.1.13","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"@noble/hashes","old_version":"2.0.1","new_version":"2.2.0","repository_url":"https://github.com/paulmillr/noble-hashes"},{"name":"@types/debug","old_version":"4.1.12","new_version":"4.1.13","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@vercel/blob","old_version":"2.3.1","new_version":"2.3.3","repository_url":"https://github.com/vercel/storage"},{"name":"undici","old_version":"6.24.1","new_version":"6.25.0","repository_url":"https://github.com/nodejs/undici"},{"name":"axe-core","old_version":"4.11.1","new_version":"4.11.3","repository_url":"https://github.com/dequelabs/axe-core"},{"name":"bare-fs","old_version":"4.5.6","new_version":"4.7.1","repository_url":"https://github.com/holepunchto/bare-fs"},{"name":"bare-os","old_version":"3.8.6","new_version":"3.8.7","repository_url":"https://github.com/holepunchto/bare-os"},{"name":"bare-stream","old_version":"2.11.0","new_version":"2.13.0","repository_url":"https://github.com/holepunchto/bare-stream"},{"name":"baseline-browser-mapping","old_version":"2.10.0","new_version":"2.10.19","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"call-bind","old_version":"1.0.8","new_version":"1.0.9","repository_url":"https://github.com/ljharb/call-bind"},{"name":"es-abstract","old_version":"1.24.1","new_version":"1.24.2","repository_url":"https://github.com/ljharb/es-abstract"},{"name":"es-iterator-helpers","old_version":"1.2.2","new_version":"1.3.2","repository_url":"https://github.com/es-shims/iterator-helpers"},{"name":"isbot","old_version":"5.1.35","new_version":"5.1.39","repository_url":"https://github.com/omrilotan/isbot"},{"name":"libphonenumber-js","old_version":"1.12.38","new_version":"1.12.41"},{"name":"minipass-flush","old_version":"1.0.5","new_version":"1.0.7","repository_url":"https://github.com/isaacs/minipass-flush"},{"name":"node-abi","old_version":"4.26.0","new_version":"4.28.0","repository_url":"https://github.com/electron/node-abi"},{"name":"sanitize-filename","old_version":"1.6.3","new_version":"1.6.4","repository_url":"https://github.com/parshap/node-sanitize-filename"},{"name":"sax","old_version":"1.4.4","new_version":"1.6.0","repository_url":"https://github.com/isaacs/sax-js"},{"name":"seroval","old_version":"1.5.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"seroval-plugins","old_version":"1.5.0","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"validator","old_version":"13.15.26","new_version":"13.15.35","repository_url":"https://github.com/validatorjs/validator.js"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"}],"path":null,"ecosystem":"npm"},"body":"Bumps the all group with 64 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@hey-api/openapi-ts](https://github.com/hey-api/openapi-ts) | `0.94.0` | `0.96.0` |\n| [@libsql/client](https://github.com/tursodatabase/libsql-client-ts/tree/HEAD/packages/libsql-client) | `0.17.0` | `0.17.2` |\n| [@supabase/supabase-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js) | `2.99.1` | `2.103.3` |\n| [@tailwindcss/vite](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite) | `4.2.1` | `4.2.2` |\n| [@tanstack/react-query](https://github.com/TanStack/query/tree/HEAD/packages/react-query) | `5.95.2` | `5.99.0` |\n| [@tanstack/react-router](https://github.com/TanStack/router/tree/HEAD/packages/react-router) | `1.166.7` | `1.168.22` |\n| [@tanstack/router-plugin](https://github.com/TanStack/router/tree/HEAD/packages/router-plugin) | `1.166.7` | `1.167.22` |\n| [@trpc/client](https://github.com/trpc/trpc/tree/HEAD/packages/client) | `11.12.0` | `11.16.0` |\n| [@trpc/react-query](https://github.com/trpc/trpc/tree/HEAD/packages/react) | `11.12.0` | `11.16.0` |\n| [framer-motion](https://github.com/motiondivision/motion) | `12.35.2` | `12.38.0` |\n| [pixi.js](https://github.com/pixijs/pixijs) | `8.17.0` | `8.18.1` |\n| [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.4` | `19.2.5` |\n| [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.4` | `19.2.5` |\n| [systeminformation](https://github.com/sebhildebrandt/systeminformation) | `5.31.4` | `5.31.5` |\n| [yauzl](https://github.com/thejoshwolfe/yauzl) | `3.2.1` | `3.3.0` |\n| [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js) | `9.39.4` | `10.0.1` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.4.0` | `25.6.0` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.57.0` | `8.58.2` |\n| [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.57.0` | `8.58.2` |\n| [@vitejs/plugin-react](https://github.com/vitejs/vite-plugin-react/tree/HEAD/packages/plugin-react) | `5.1.4` | `6.0.1` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.3.1` | `17.4.2` |\n| [electron](https://github.com/electron/electron) | `41.1.1` | `41.2.1` |\n| [eslint](https://github.com/eslint/eslint) | `9.39.4` | `10.2.0` |\n| [eslint-plugin-react-hooks](https://github.com/facebook/react/tree/HEAD/packages/eslint-plugin-react-hooks) | `7.0.1` | `7.1.0` |\n| [globals](https://github.com/sindresorhus/globals) | `17.4.0` | `17.5.0` |\n| [javascript-obfuscator](https://github.com/javascript-obfuscator/javascript-obfuscator) | `5.3.0` | `5.4.1` |\n| [jsdom](https://github.com/jsdom/jsdom) | `28.1.0` | `29.0.2` |\n| [lint-staged](https://github.com/lint-staged/lint-staged) | `16.3.3` | `16.4.0` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.3` |\n| [terser](https://github.com/terser/terser) | `5.46.0` | `5.46.1` |\n| [typescript](https://github.com/microsoft/TypeScript) | `5.9.3` | `6.0.3` |\n| [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) | `8.57.0` | `8.58.2` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.2` | `8.0.8` |\n| [vite-plugin-electron](https://github.com/electron-vite/vite-plugin-electron) | `0.29.0` | `0.29.1` |\n| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `4.0.18` | `4.1.4` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.28.6` | `7.29.2` |\n| [@babel/parser](https://github.com/babel/babel/tree/HEAD/packages/babel-parser) | `7.29.0` | `7.29.2` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.28.6` | `7.29.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.13` | `1.1.14` |\n| [@noble/hashes](https://github.com/paulmillr/noble-hashes) | `2.0.1` | `2.2.0` |\n| [@types/debug](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/debug) | `4.1.12` | `4.1.13` |\n| [@vercel/blob](https://github.com/vercel/storage/tree/HEAD/packages/blob) | `2.3.1` | `2.3.3` |\n| [undici](https://github.com/nodejs/undici) | `6.24.1` | `6.25.0` |\n| [axe-core](https://github.com/dequelabs/axe-core) | `4.11.1` | `4.11.3` |\n| [bare-fs](https://github.com/holepunchto/bare-fs) | `4.5.6` | `4.7.1` |\n| [bare-os](https://github.com/holepunchto/bare-os) | `3.8.6` | `3.8.7` |\n| [bare-stream](https://github.com/holepunchto/bare-stream) | `2.11.0` | `2.13.0` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.10.0` | `2.10.19` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [call-bind](https://github.com/ljharb/call-bind) | `1.0.8` | `1.0.9` |\n| [es-abstract](https://github.com/ljharb/es-abstract) | `1.24.1` | `1.24.2` |\n| [es-iterator-helpers](https://github.com/es-shims/iterator-helpers) | `1.2.2` | `1.3.2` |\n| [isbot](https://github.com/omrilotan/isbot) | `5.1.35` | `5.1.39` |\n| [libphonenumber-js](https://gitlab.com/catamphetamine/libphonenumber-js) | `1.12.38` | `1.12.41` |\n| [minipass-flush](https://github.com/isaacs/minipass-flush) | `1.0.5` | `1.0.7` |\n| [node-abi](https://github.com/electron/node-abi) | `4.26.0` | `4.28.0` |\n| [sanitize-filename](https://github.com/parshap/node-sanitize-filename) | `1.6.3` | `1.6.4` |\n| [sax](https://github.com/isaacs/sax-js) | `1.4.4` | `1.6.0` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.0` | `1.5.2` |\n| [seroval-plugins](https://github.com/lxsmnsyc/seroval) | `1.5.0` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.15.26` | `13.15.35` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n\n\nUpdates `@hey-api/openapi-ts` from 0.94.0 to 0.96.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hey-api/openapi-ts/releases\"\u003e\u003ccode\u003e@​hey-api/openapi-ts\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​hey-api/openapi-ts\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.95.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eplugin(valibot)\u003c/strong\u003e: remove request data schema (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3671\"\u003e#3671\u003c/a\u003e) (\u003ca href=\"https://github.com/hey-api/openapi-ts/commit/96f60adb6af144e39133884e97e74a6693b6c059\"\u003e\u003ccode\u003e96f60ad\u003c/code\u003e\u003c/a\u003e) by \u003ca href=\"https://github.com/mrlubos\"\u003e\u003ccode\u003e@​mrlubos\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eValidator request schemas\u003c/h3\u003e\n\u003cp\u003eValibot plugin no longer exports composite request \u003ccode\u003eData\u003c/code\u003e schemas. Instead, each layer is exported as a separate schema. If you're using validators with SDKs, you can preserve the composite schema with \u003ccode\u003eshouldExtract\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eexport default {\n  input: \u0026quot;hey-api/backend\u0026quot;, // sign up at app.heyapi.dev\n  output: \u0026quot;src/client\u0026quot;,\n  plugins: [\n    // ...other plugins\n    {\n      name: \u0026quot;sdk\u0026quot;,\n      validator: \u0026quot;valibot\u0026quot;,\n    },\n    {\n      name: \u0026quot;valibot\u0026quot;,\n      requests: {\n        shouldExtract: true,\n      },\n    },\n  ],\n};\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003einternal\u003c/strong\u003e: remove \u003ccode\u003eplugin.getSymbol()\u003c/code\u003e function (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3671\"\u003e#3671\u003c/a\u003e) (\u003ca href=\"https://github.com/hey-api/openapi-ts/commit/96f60adb6af144e39133884e97e74a6693b6c059\"\u003e\u003ccode\u003e96f60ad\u003c/code\u003e\u003c/a\u003e) by \u003ca href=\"https://github.com/mrlubos\"\u003e\u003ccode\u003e@​mrlubos\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved \u003ccode\u003eplugin.getSymbol()\u003c/code\u003e function\u003c/h3\u003e\n\u003cp\u003eThis function has been removed. You can use \u003ccode\u003eplugin.querySymbol()\u003c/code\u003e instead. It accepts the same arguments and returns the same result.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eplugin(zod)\u003c/strong\u003e: remove request data schema (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3671\"\u003e#3671\u003c/a\u003e) (\u003ca href=\"https://github.com/hey-api/openapi-ts/commit/96f60adb6af144e39133884e97e74a6693b6c059\"\u003e\u003ccode\u003e96f60ad\u003c/code\u003e\u003c/a\u003e) by \u003ca href=\"https://github.com/mrlubos\"\u003e\u003ccode\u003e@​mrlubos\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eValidator request schemas\u003c/h3\u003e\n\u003cp\u003eZod plugin no longer exports composite request \u003ccode\u003eData\u003c/code\u003e schemas. Instead, each layer is exported as a separate schema. If you're using validators with SDKs, you can preserve the composite schema with \u003ccode\u003eshouldExtract\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eexport default {\n  input: \u0026quot;hey-api/backend\u0026quot;, // sign up at app.heyapi.dev\n  output: \u0026quot;src/client\u0026quot;,\n  plugins: [\n    // ...other plugins\n    {\n      name: \u0026quot;sdk\u0026quot;,\n      validator: \u0026quot;zod\u0026quot;,\n\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt; \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hey-api/openapi-ts/blob/main/CHANGELOG.md\"\u003e\u003ccode\u003e@​hey-api/openapi-ts\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​hey-api/openapi-ts\u003c/code\u003e 0.96.0\u003c/h2\u003e\n\u003ch3\u003e⚠️ Breaking\u003c/h3\u003e\n\u003cp\u003eThis release has 1 breaking change. Please review the release notes carefully before upgrading.\u003c/p\u003e\n\u003ch3\u003eUpdates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e⚠️ Breaking:\u003c/strong\u003e This release bumps the minimum required Node version to 22.13. (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3694\"\u003e#3694\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecli: improve error message on invalid input (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3679\"\u003e#3679\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eparser: keep orphans when explicitly included in filters (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3714\"\u003e#3714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eparser: process enum metadata (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3727\"\u003e#3727\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePlugins\u003c/h3\u003e\n\u003ch4\u003e\u003ccode\u003e@​angular/common\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003erequests and resources broken default configuration (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3678\"\u003e#3678\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-angular\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-axios\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-fetch\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-ky\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-next\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-nuxt\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/client-ofetch\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003esimplify SSE line endings normalization (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3686\"\u003e#3686\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e\u003ccode\u003e@​hey-api/transformers\u003c/code\u003e\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003ereturn value for primitive array entries (\u003ca href=\"https://redirect.github.com/hey-api/openapi-ts/pull/3733\"\u003e#3733\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/hey-api/openapi-ts/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@libsql/client` from 0.17.0 to 0.17.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/697ae59038dc61224c1b3cf57b0d5a71b315ca5a\"\u003e\u003ccode\u003e697ae59\u003c/code\u003e\u003c/a\u003e 0.17.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/b15a87226612dad953f56d2dee10f811137ead92\"\u003e\u003ccode\u003eb15a872\u003c/code\u003e\u003c/a\u003e Bump libsql dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/1fede76c2ffa109a67a20e8a73d366a9fba538c2\"\u003e\u003ccode\u003e1fede76\u003c/code\u003e\u003c/a\u003e 0.17.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/8f1e8d386e95f98891af56283a731261224c43ca\"\u003e\u003ccode\u003e8f1e8d3\u003c/code\u003e\u003c/a\u003e Bump libsql dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commit/138f4a3c334f6031d372e46f29409c8384c6f4e6\"\u003e\u003ccode\u003e138f4a3\u003c/code\u003e\u003c/a\u003e Mention Turso serverless package\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tursodatabase/libsql-client-ts/commits/v0.17.2/packages/libsql-client\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@supabase/supabase-js` from 2.99.1 to 2.103.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/supabase/supabase-js/releases\"\u003e\u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.103.3\u003c/h2\u003e\n\u003ch2\u003e2.103.3 (2026-04-16)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e throw Error objects instead of bare strings (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2256\"\u003e#2256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e correct signedUrl type to allow null in createSignedUrls (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2254\"\u003e#2254\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKaterina Skroumpelou \u003ca href=\"https://github.com/mandarini\"\u003e\u003ccode\u003e@​mandarini\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eoniani1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.103.3-canary.1\u003c/h2\u003e\n\u003ch2\u003e2.103.3-canary.1 (2026-04-16)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e add stripNulls method for null value stripping (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2189\"\u003e#2189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e add cacheNonce parameter for download (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2234\"\u003e#2234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esupabase:\u003c/strong\u003e export PostgrestFilterBuilder and StorageApiError from supabase-js (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2222\"\u003e#2222\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eauth:\u003c/strong\u003e downgrade console.error to console.warn for missing session (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2214\"\u003e#2214\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eauth:\u003c/strong\u003e add toJSON to AuthError for correct JSON serialization (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eauth:\u003c/strong\u003e include Cloudflare error codes in NETWORK_ERROR_CODES (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2239\"\u003e#2239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eauth:\u003c/strong\u003e remove Prettify wrapper from exported types for TypeDoc expansion (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2250\"\u003e#2250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003efunctions:\u003c/strong\u003e add toJSON to FunctionsError for correct JSON serialization (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2226\"\u003e#2226\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emisc:\u003c/strong\u003e add explicit return types to toJSON methods for JSR compat (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2252\"\u003e#2252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e fix scalar computed column type inference for isNotNullable and SETOF scalar (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2224\"\u003e#2224\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e handle bigint rpc (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2245\"\u003e#2245\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erealtime:\u003c/strong\u003e throw Error objects instead of bare strings (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2256\"\u003e#2256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e set correct content-type for uploads (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2211\"\u003e#2211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e avoid duplicate content-type headers in vector requests (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2220\"\u003e#2220\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e add toJSON to StorageError for correct JSON serialization (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2246\"\u003e#2246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e apply empty transform check to download and getPublicUrl (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2219\"\u003e#2219\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e remove client-side signed URL render endpoint normalization (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2249\"\u003e#2249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003estorage:\u003c/strong\u003e correct signedUrl type to allow null in createSignedUrls (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2254\"\u003e#2254\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKaterina Skroumpelou \u003ca href=\"https://github.com/mandarini\"\u003e\u003ccode\u003e@​mandarini\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eoniani1\u003c/li\u003e\n\u003cli\u003eSeydi Charyyev \u003ca href=\"https://github.com/TheSeydiCharyyev\"\u003e\u003ccode\u003e@​TheSeydiCharyyev\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eVaibhav \u003ca href=\"https://github.com/7ttp\"\u003e\u003ccode\u003e@​7ttp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eVansh Sharma \u003ca href=\"https://github.com/Vansh1811\"\u003e\u003ccode\u003e@​Vansh1811\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.103.3-canary.0\u003c/h2\u003e\n\u003ch2\u003e2.103.3-canary.0 (2026-04-15)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/supabase/supabase-js/blob/master/packages/core/supabase-js/CHANGELOG.md\"\u003e\u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.103.3 (2026-04-16)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.2 (2026-04-15)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.1 (2026-04-15)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.103.0 (2026-04-09)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.102.1 (2026-04-07)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.102.0 (2026-04-07)\u003c/h2\u003e\n\u003ch3\u003e🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esupabase:\u003c/strong\u003e export PostgrestFilterBuilder and StorageApiError from supabase-js (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2222\"\u003e#2222\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e add automatic retries for transient errors (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGuilherme Souza\u003c/li\u003e\n\u003cli\u003eKaterina Skroumpelou \u003ca href=\"https://github.com/mandarini\"\u003e\u003ccode\u003e@​mandarini\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.101.1 (2026-03-31)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.101.0 (2026-03-30)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for \u003ccode\u003e@​supabase/supabase-js\u003c/code\u003e to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003ch2\u003e2.100.1 (2026-03-26)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003epostgrest:\u003c/strong\u003e narrow tstyche testFileMatch to only type test files (\u003ca href=\"https://redirect.github.com/supabase/supabase-js/pull/2193\"\u003e#2193\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKaterina Skroumpelou \u003ca href=\"https://github.com/mandarini\"\u003e\u003ccode\u003e@​mandarini\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/a2f94144fae2a4a5dc713cb71dbcce46ad3e92f0\"\u003e\u003ccode\u003ea2f9414\u003c/code\u003e\u003c/a\u003e chore(release): version 2.103.2 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2253\"\u003e#2253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/f9da9eef4f54ebebc8de8da8c525c1a1b1b7bbd4\"\u003e\u003ccode\u003ef9da9ee\u003c/code\u003e\u003c/a\u003e chore(release): version 2.103.1 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/d38c1804aabb88dea6eb11f8aaed0114f57f6cd2\"\u003e\u003ccode\u003ed38c180\u003c/code\u003e\u003c/a\u003e chore(release): version 2.103.0 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2237\"\u003e#2237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/16dd2650b9d4bb1af1884231f0c999e1f3748a11\"\u003e\u003ccode\u003e16dd265\u003c/code\u003e\u003c/a\u003e chore(release): version 2.102.1 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2233\"\u003e#2233\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/0c1e6db8c32d5c558ec4a2118581c62362d4c397\"\u003e\u003ccode\u003e0c1e6db\u003c/code\u003e\u003c/a\u003e chore(release): version 2.102.0 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2232\"\u003e#2232\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/5a6a5bed8aa3f9b4938d07284f54b496205f97d6\"\u003e\u003ccode\u003e5a6a5be\u003c/code\u003e\u003c/a\u003e feat(supabase): export PostgrestFilterBuilder and StorageApiError from supaba...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/ea3e086ceabe7926caeff8e70d2f06ef59a5af0b\"\u003e\u003ccode\u003eea3e086\u003c/code\u003e\u003c/a\u003e feat(postgrest): add automatic retries for transient errors (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/ddae67218a671d3544d8084c313789e3b0dc25a7\"\u003e\u003ccode\u003eddae672\u003c/code\u003e\u003c/a\u003e ci(repo): fix flaky tests (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2210\"\u003e#2210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/647cee832bcd602964182fc22677dbb4c0cd4ab2\"\u003e\u003ccode\u003e647cee8\u003c/code\u003e\u003c/a\u003e fix(ci): add --ignore-scripts to platform test installs to block post install...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/supabase-js/commit/ea30c939696a72387c72eb17c4be43bc097bb268\"\u003e\u003ccode\u003eea30c93\u003c/code\u003e\u003c/a\u003e chore(release): version 2.101.1 changelogs (\u003ca href=\"https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js/issues/2208\"\u003e#2208\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/supabase/supabase-js/commits/v2.103.3/packages/core/supabase-js\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tailwindcss/vite` from 4.2.1 to 4.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/releases\"\u003e\u003ccode\u003e@​tailwindcss/vite\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Vite 8 in \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19790\"\u003e#19790\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDon't crash when candidates contain prototype properties like \u003ccode\u003erow-constructor\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19725\"\u003e#19725\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalize \u003ccode\u003ecalc(var(--spacing)*…)\u003c/code\u003e expressions into \u003ccode\u003e--spacing(…)\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19769\"\u003e#19769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix crash in canonicalization step when handling utilities containing \u003ccode\u003e@property\u003c/code\u003e at-rules (e.g. \u003ccode\u003eshadow-sm border\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19727\"\u003e#19727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSkip full reload for server only modules scanned by client CSS when using \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19745\"\u003e#19745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove canonicalization for bare values exceeding default spacing scale suggestions (e.g. \u003ccode\u003ew-1234 h-1234\u003c/code\u003e → \u003ccode\u003esize-1234\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19809\"\u003e#19809\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix canonicalization resulting in empty list (e.g. \u003ccode\u003ew-5 h-5 size-5\u003c/code\u003e → \u003ccode\u003e''\u003c/code\u003e instead of \u003ccode\u003esize-5\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19812\"\u003e#19812\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md\"\u003e\u003ccode\u003e@​tailwindcss/vite\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.2.2] - 2026-03-18\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDon't crash when candidates contain prototype properties like \u003ccode\u003erow-constructor\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19725\"\u003e#19725\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCanonicalize \u003ccode\u003ecalc(var(--spacing)*…)\u003c/code\u003e expressions into \u003ccode\u003e--spacing(…)\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19769\"\u003e#19769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix crash in canonicalization step when handling utilities containing \u003ccode\u003e@property\u003c/code\u003e at-rules (e.g. \u003ccode\u003eshadow-sm border\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19727\"\u003e#19727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSkip full reload for server only modules scanned by client CSS when using \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19745\"\u003e#19745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for Vite 8 in \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19790\"\u003e#19790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove canonicalization for bare values exceeding default spacing scale suggestions (e.g. \u003ccode\u003ew-1234 h-1234\u003c/code\u003e → \u003ccode\u003esize-1234\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19809\"\u003e#19809\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix canonicalization resulting in empty list (e.g. \u003ccode\u003ew-5 h-5 size-5\u003c/code\u003e → \u003ccode\u003e''\u003c/code\u003e instead of \u003ccode\u003esize-5\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19812\"\u003e#19812\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eResolve tsconfig paths to allow for \u003ccode\u003e@import '@/path/to/file';\u003c/code\u003e when using \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tailwindlabs/tailwindcss/pull/19803\"\u003e#19803\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/d596b0c43d36ad5099c983930fb155e089cbc291\"\u003e\u003ccode\u003ed596b0c\u003c/code\u003e\u003c/a\u003e 4.2.2 (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite/issues/19821\"\u003e#19821\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/faa5e8849be45e1009dc1d0f862ca782ee0a1ee9\"\u003e\u003ccode\u003efaa5e88\u003c/code\u003e\u003c/a\u003e Cleanup inconsistencies related to (regex) escapes (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite/issues/19804\"\u003e#19804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/59b0329f858dd8a25f64dfa55fb971aa6e74c32a\"\u003e\u003ccode\u003e59b0329\u003c/code\u003e\u003c/a\u003e Add support for Vite 8 in \u003ccode\u003e@tailwindcss/vite\u003c/code\u003e (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite/issues/19790\"\u003e#19790\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commit/bf441a799f67df1596c2cf40eda30ddb50859607\"\u003e\u003ccode\u003ebf441a7\u003c/code\u003e\u003c/a\u003e fix(vite): skip full reload for server only modules scanned by client css (\u003ca href=\"https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-vite/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/tailwindlabs/tailwindcss/commits/v4.2.2/packages/@tailwindcss-vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tanstack/react-query` from 5.95.2 to 5.99.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/query/releases\"\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-next-experimental\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-persist-client\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-persist-client-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-devtools\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-next-experimental\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query-persist-client\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-persist-client-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/query/blob/main/packages/react-query/CHANGELOG.md\"\u003e\u003ccode\u003e@​tanstack/react-query\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.99.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.99.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.98.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.98.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.97.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/query/commit/2bfb12cc44f1d8495106136e4ddacb817135f8f9\"\u003e\u003ccode\u003e2bfb12c\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.97.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.96.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.96.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.96.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.96.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.96.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies []:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/query-core\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.96.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/adc2543ade2f5070ee8d77882cce534795a67672\"\u003e\u003ccode\u003eadc2543\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10454\"\u003e#10454\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/6040278e75bb4395b366c932e48606c51cc7010a\"\u003e\u003ccode\u003e6040278\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10451\"\u003e#10451\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/125067c05adf6a8bfef14a34aa5b963bc885885d\"\u003e\u003ccode\u003e125067c\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10436\"\u003e#10436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/f6991900dcd50367a3580d27f69ddfb6bd3a34f3\"\u003e\u003ccode\u003ef699190\u003c/code\u003e\u003c/a\u003e test(react-query): replace hardcoded query keys with 'queryKey()' utility (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/f3d3eea76b5f085650a62494ab72f351d70a0d6c\"\u003e\u003ccode\u003ef3d3eea\u003c/code\u003e\u003c/a\u003e test(*): replace deprecated 'toMatchTypeOf' with 'toExtend' (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10413\"\u003e#10413\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/3d6e001baeeef4e7c524f39cc009544aa05c2b08\"\u003e\u003ccode\u003e3d6e001\u003c/code\u003e\u003c/a\u003e test(react-query/useSuspenseQueries): replace 'async/await sleep' with 'sleep...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/7d7a21c49c1c0d12e12a7da7ab00fa65df05650b\"\u003e\u003ccode\u003e7d7a21c\u003c/code\u003e\u003c/a\u003e test(react-query): replace 'async/await sleep' with 'sleep().then()' in test ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/5ca721fb05a7329ca168dd9aca8a906011b0601e\"\u003e\u003ccode\u003e5ca721f\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10379\"\u003e#10379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/75052a7fd05d5a7f430d323c513387b780a0c06f\"\u003e\u003ccode\u003e75052a7\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10370\"\u003e#10370\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/query/commit/73e783bd8677a1011d95d34a896e1bf93cbb11a5\"\u003e\u003ccode\u003e73e783b\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/query/tree/HEAD/packages/react-query/issues/10364\"\u003e#10364\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/TanStack/query/commits/@tanstack/react-query@5.99.0/packages/react-query\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tanstack/react-router` from 1.166.7 to 1.168.22\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/router/blob/main/packages/react-router/CHANGELOG.md\"\u003e\u003ccode\u003e@​tanstack/react-router\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.168.22\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePreserve shared route stylesheet links across client navigation by rendering route CSS assets with React stylesheet precedence. (\u003ca href=\"https://redirect.github.com/TanStack/router/pull/7186\"\u003e#7186\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.168.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/16f6892d6b7ceadf606677c5a40e743f29163aa6\"\u003e\u003ccode\u003e16f6892\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-core\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.15\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.168.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix React Server Component imports from \u003ccode\u003e@tanstack/react-router\u003c/code\u003e by adding a \u003ccode\u003ereact-server\u003c/code\u003e root export that preserves the normal API surface while resolving \u003ccode\u003enotFound\u003c/code\u003e and \u003ccode\u003eredirect\u003c/code\u003e from a server-safe entry. (\u003ca href=\"https://redirect.github.com/TanStack/router/pull/7183\"\u003e#7183\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThis fixes RSC routes that throw \u003ccode\u003enotFound()\u003c/code\u003e or \u003ccode\u003eredirect()\u003c/code\u003e from server functions so they behave correctly during SSR and client navigation.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.168.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix route file transforms to preserve route ID quoting, handle more exported \u003ccode\u003eRoute\u003c/code\u003e patterns, and avoid incorrect import rewrites in edge cases. (\u003ca href=\"https://redirect.github.com/TanStack/router/pull/7167\"\u003e#7167\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eImprove transform robustness with clearer route-call detection, safer import removal, and expanded test coverage for quote preservation, constructor swaps, and unsupported route definitions.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.168.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/0e2c9003c18ae07c09969189c028f277ea562a7a\"\u003e\u003ccode\u003e0e2c900\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-core\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.14\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.168.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/812792fbda3caf97b300770855cf5641252f413b\"\u003e\u003ccode\u003e812792f\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-core\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.13\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.168.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/8ec9ca97b472779de878c2a6510f21deb24d386c\"\u003e\u003ccode\u003e8ec9ca9\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-core\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.12\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/6d00881b7ad127a0200c0e02dc1327ebd28ec185\"\u003e\u003ccode\u003e6d00881\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/e30814d949110ff25829de44d729ead47555940a\"\u003e\u003ccode\u003ee30814d\u003c/code\u003e\u003c/a\u003e fix react-router shared route css persistence on nav (\u003ca href=\"https://github.com/TanStack/router/tree/HEAD/packages/react-router/issues/7186\"\u003e#7186\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/26680c95a9e3f7ef766450c99cb6d378e6f358b6\"\u003e\u003ccode\u003e26680c9\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/16f6892d6b7ceadf606677c5a40e743f29163aa6\"\u003e\u003ccode\u003e16f6892\u003c/code\u003e\u003c/a\u003e fix(router-core): avoid intermediate success state for async notFound (\u003ca href=\"https://github.com/TanStack/router/tree/HEAD/packages/react-router/issues/7184\"\u003e#7184\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/73cd5699ac470d566fb06982f15a9862d25ca5c7\"\u003e\u003ccode\u003e73cd569\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/c5ad32936f6adcca0c56474677b73b212498443b\"\u003e\u003ccode\u003ec5ad329\u003c/code\u003e\u003c/a\u003e fix react server exports for start and react-router (\u003ca href=\"https://github.com/TanStack/router/tree/HEAD/packages/react-router/issues/7183\"\u003e#7183\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/85db3785ccb260a8801cc3f295b33033c94b167a\"\u003e\u003ccode\u003e85db378\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/105d05691a247779a63e7b688aa1207cce619339\"\u003e\u003ccode\u003e105d056\u003c/code\u003e\u003c/a\u003e fix(router-generator): harden route file transform rewrites (\u003ca href=\"https://github.com/TanStack/router/tree/HEAD/packages/react-router/issues/7167\"\u003e#7167\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/c3900c832804b37d3e7f1a5d9b5859e3b9867bca\"\u003e\u003ccode\u003ec3900c8\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/3ef971fa786f08378b1cc05db581a833ba86cb34\"\u003e\u003ccode\u003e3ef971f\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/TanStack/router/commits/@tanstack/react-router@1.168.22/packages/react-router\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@tanstack/router-plugin` from 1.166.7 to 1.167.22\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/router/blob/main/packages/router-plugin/CHANGELOG.md\"\u003e\u003ccode\u003e@​tanstack/router-plugin\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.167.22\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/16f6892d6b7ceadf606677c5a40e743f29163aa6\"\u003e\u003ccode\u003e16f6892\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-core\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.15\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-router\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.21\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-generator\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.166.32\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.167.21\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/328d7e5ebc6b8074242a07d68ccafafb83e37a0e\"\u003e\u003ccode\u003e328d7e5\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-generator\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.166.31\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.167.20\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: update vite-plugin-solid peer dependency to support version 3.0.0-0 (\u003ca href=\"https://redirect.github.com/TanStack/router/pull/7170\"\u003e#7170\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.167.19\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/105d05691a247779a63e7b688aa1207cce619339\"\u003e\u003ccode\u003e105d056\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-generator\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.166.30\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-router\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.167.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd vite 8 to peer deps (\u003ca href=\"https://redirect.github.com/TanStack/router/pull/7160\"\u003e#7160\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.167.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/0e2c9003c18ae07c09969189c028f277ea562a7a\"\u003e\u003ccode\u003e0e2c900\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-core\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.14\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/react-router\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.168.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/router-generator\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.166.29\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.167.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/router/commit/812792fbda3caf97b300770855cf5641252f413b\"\u003e\u003ccode\u003e812792f\u003c/code\u003e\u003c/a\u003e]:\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/26680c95a9e3f7ef766450c99cb6d378e6f358b6\"\u003e\u003ccode\u003e26680c9\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/c373feb22b0649f4646a2e032edff2d263eb0cde\"\u003e\u003ccode\u003ec373feb\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/c8570872868757a04945e39566cf10c8a1ee493d\"\u003e\u003ccode\u003ec857087\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/96ac2d8ed378340d63b88afeec3633e56e29b5f8\"\u003e\u003ccode\u003e96ac2d8\u003c/code\u003e\u003c/a\u003e fix(router-plugin): update vite-plugin-solid peer dependency to support versi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/85db3785ccb260a8801cc3f295b33033c94b167a\"\u003e\u003ccode\u003e85db378\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/105d05691a247779a63e7b688aa1207cce619339\"\u003e\u003ccode\u003e105d056\u003c/code\u003e\u003c/a\u003e fix(router-generator): harden route file transform rewrites (\u003ca href=\"https://github.com/TanStack/router/tree/HEAD/packages/router-plugin/issues/7167\"\u003e#7167\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/2cda5385dde91552d8d1887ad4f47b072fcf8585\"\u003e\u003ccode\u003e2cda538\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/656a2a040e79df7721d776e3751c8d634666570b\"\u003e\u003ccode\u003e656a2a0\u003c/code\u003e\u003c/a\u003e chore: add vite 8 to peer deps (\u003ca href=\"https://github.com/TanStack/router/tree/HEAD/packages/router-plugin/issues/7160\"\u003e#7160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/c3900c832804b37d3e7f1a5d9b5859e3b9867bca\"\u003e\u003ccode\u003ec3900c8\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/router/commit/3ef971fa786f08378b1cc05db581a833ba86cb34\"\u003e\u003ccode\u003e3ef971f\u003c/code\u003e\u003c/a\u003e ci: changeset release\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/TanStack/router/commits/@tanstack/router-plugin@1.167.22/packages/router-plugin\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@trpc/client` from 11.12.0 to 11.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/trpc/trpc/releases\"\u003e\u003ccode\u003e@​trpc/client\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.16.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: OpenAPI Cyclic Types support by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7283\"\u003etrpc/trpc#7283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Review stale skills (manual) by \u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7294\"\u003etrpc/trpc#7294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003e@trpc/openapi\u003c/code\u003e 11.16.0-alpha\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrops the type depth limit of 20, and significantly hardens cyclic-type support for both inference and Zod\u003c/li\u003e\n\u003cli\u003eSupport zod.lazy via Standard Schema fallback\u003c/li\u003e\n\u003cli\u003eStrip symbols from output (no more \u003ccode\u003e__@asyncIterator@5456\u003c/code\u003e symbols in output)\u003c/li\u003e\n\u003cli\u003eAdd more comprehensive types for the OpenAPI doc from the official package (now a dependency) and apply some patches to these types because they're slightly outdated\u003c/li\u003e\n\u003cli\u003eFixes several issues with gathering schema descriptions, such as consuming jsdoc comments from node_modules types\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7294\"\u003etrpc/trpc#7294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.15.1...v11.16.0\"\u003ehttps://github.com/trpc/trpc/compare/v11.15.1...v11.16.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.15.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(www): render sponsor links in static HTML for SEO by \u003ca href=\"https://github.com/shtefcs\"\u003e\u003ccode\u003e@​shtefcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7285\"\u003etrpc/trpc#7285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: error handling with Node VM by \u003ca href=\"https://github.com/znikola\"\u003e\u003ccode\u003e@​znikola\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7280\"\u003etrpc/trpc#7280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shtefcs\"\u003e\u003ccode\u003e@​shtefcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7285\"\u003etrpc/trpc#7285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/znikola\"\u003e\u003ccode\u003e@​znikola\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7280\"\u003etrpc/trpc#7280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.15.0...v11.15.1\"\u003ehttps://github.com/trpc/trpc/compare/v11.15.0...v11.15.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.15.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: empty string fallback on pathExtractor by \u003ca href=\"https://github.com/dorukozerr\"\u003e\u003ccode\u003e@​dorukozerr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7270\"\u003etrpc/trpc#7270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(server): max batch size by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7191\"\u003etrpc/trpc#7191\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorukozerr\"\u003e\u003ccode\u003e@​dorukozerr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7270\"\u003etrpc/trpc#7270\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.14.1...v11.15.0\"\u003ehttps://github.com/trpc/trpc/compare/v11.14.1...v11.15.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.14.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Tanstack Intent Skills by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7252\"\u003etrpc/trpc#7252\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.14.0...v11.14.1\"\u003ehttps://github.com/trpc/trpc/compare/v11.14.0...v11.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(server): use correct call index in batch stream error handling by \u003ca href=\"https://github.com/karesansui-u\"\u003e\u003ccode\u003e@​karesansui-u\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7262\"\u003etrpc/trpc#7262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: preserve buffered chunks on stream close in httpBatchStreamLink by \u003ca href=\"https://github.com/luinbytes\"\u003e\u003ccode\u003e@​luinbytes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7233\"\u003etrpc/trpc#7233\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/2713275631db358f17f2fec71a7f7e04b3db4add\"\u003e\u003ccode\u003e2713275\u003c/code\u003e\u003c/a\u003e v11.16.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/85b0ab89850167ae14ec5376044e2ac2a051c1d8\"\u003e\u003ccode\u003e85b0ab8\u003c/code\u003e\u003c/a\u003e v11.15.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/c4b1d7458ec869f6c51469f7fcd84b517d53ffae\"\u003e\u003ccode\u003ec4b1d74\u003c/code\u003e\u003c/a\u003e chore: Review stale skills (manual) (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/client/issues/7294\"\u003e#7294\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/88b02b81d16d4046a709508799a905ac7bf9ce8b\"\u003e\u003ccode\u003e88b02b8\u003c/code\u003e\u003c/a\u003e v11.15.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/25b97f51ee4ee57da0da3c63cf54a50c6c8627d5\"\u003e\u003ccode\u003e25b97f5\u003c/code\u003e\u003c/a\u003e v11.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/88f9f622edeb213a1ec565dcf908ab92b9a983d6\"\u003e\u003ccode\u003e88f9f62\u003c/code\u003e\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​tanstack/intent\u003c/code\u003e to ^0.0.23 (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/client/issues/7274\"\u003e#7274\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/e896259af491fc4b1c9e8fc320817e2222bae869\"\u003e\u003ccode\u003ee896259\u003c/code\u003e\u003c/a\u003e v11.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/e39a654b306d0c75730a9c546e77333f9d1dca8c\"\u003e\u003ccode\u003ee39a654\u003c/code\u003e\u003c/a\u003e feat: Tanstack Intent Skills (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/client/issues/7252\"\u003e#7252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/6e03f5c2f8d8ebaa237747d2db447737393402c6\"\u003e\u003ccode\u003e6e03f5c\u003c/code\u003e\u003c/a\u003e v11.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/ec32cdd9da013ca2bc493cfc7ac7f51db0c55557\"\u003e\u003ccode\u003eec32cdd\u003c/code\u003e\u003c/a\u003e fix(server): use correct call index in batch stream error handling (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/client/issues/7262\"\u003e#7262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/trpc/trpc/commits/v11.16.0/packages/client\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@trpc/react-query` from 11.12.0 to 11.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/trpc/trpc/releases\"\u003e\u003ccode\u003e@​trpc/react-query\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.16.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: OpenAPI Cyclic Types support by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7283\"\u003etrpc/trpc#7283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Review stale skills (manual) by \u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7294\"\u003etrpc/trpc#7294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003e@trpc/openapi\u003c/code\u003e 11.16.0-alpha\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrops the type depth limit of 20, and significantly hardens cyclic-type support for both inference and Zod\u003c/li\u003e\n\u003cli\u003eSupport zod.lazy via Standard Schema fallback\u003c/li\u003e\n\u003cli\u003eStrip symbols from output (no more \u003ccode\u003e__@asyncIterator@5456\u003c/code\u003e symbols in output)\u003c/li\u003e\n\u003cli\u003eAdd more comprehensive types for the OpenAPI doc from the official package (now a dependency) and apply some patches to these types because they're slightly outdated\u003c/li\u003e\n\u003cli\u003eFixes several issues with gathering schema descriptions, such as consuming jsdoc comments from node_modules types\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7294\"\u003etrpc/trpc#7294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.15.1...v11.16.0\"\u003ehttps://github.com/trpc/trpc/compare/v11.15.1...v11.16.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.15.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(www): render sponsor links in static HTML for SEO by \u003ca href=\"https://github.com/shtefcs\"\u003e\u003ccode\u003e@​shtefcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7285\"\u003etrpc/trpc#7285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: error handling with Node VM by \u003ca href=\"https://github.com/znikola\"\u003e\u003ccode\u003e@​znikola\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7280\"\u003etrpc/trpc#7280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shtefcs\"\u003e\u003ccode\u003e@​shtefcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7285\"\u003etrpc/trpc#7285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/znikola\"\u003e\u003ccode\u003e@​znikola\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7280\"\u003etrpc/trpc#7280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.15.0...v11.15.1\"\u003ehttps://github.com/trpc/trpc/compare/v11.15.0...v11.15.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.15.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: empty string fallback on pathExtractor by \u003ca href=\"https://github.com/dorukozerr\"\u003e\u003ccode\u003e@​dorukozerr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7270\"\u003etrpc/trpc#7270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(server): max batch size by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7191\"\u003etrpc/trpc#7191\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorukozerr\"\u003e\u003ccode\u003e@​dorukozerr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7270\"\u003etrpc/trpc#7270\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.14.1...v11.15.0\"\u003ehttps://github.com/trpc/trpc/compare/v11.14.1...v11.15.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.14.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Tanstack Intent Skills by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7252\"\u003etrpc/trpc#7252\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.14.0...v11.14.1\"\u003ehttps://github.com/trpc/trpc/compare/v11.14.0...v11.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(server): use correct call index in batch stream error handling by \u003ca href=\"https://github.com/karesansui-u\"\u003e\u003ccode\u003e@​karesansui-u\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7262\"\u003etrpc/trpc#7262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: preserve buffered chunks on stream close in httpBatchStreamLink by \u003ca href=\"https://github.com/luinbytes\"\u003e\u003ccode\u003e@​luinbytes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7233\"\u003etrpc/trpc#7233\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/trpc/trpc/commits/v11.16.0/packages/react\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@trpc/server` from 11.12.0 to 11.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/trpc/trpc/releases\"\u003e\u003ccode\u003e@​trpc/server\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.16.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: OpenAPI Cyclic Types support by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7283\"\u003etrpc/trpc#7283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Review stale skills (manual) by \u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7294\"\u003etrpc/trpc#7294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003e@trpc/openapi\u003c/code\u003e 11.16.0-alpha\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrops the type depth limit of 20, and significantly hardens cyclic-type support for both inference and Zod\u003c/li\u003e\n\u003cli\u003eSupport zod.lazy via Standard Schema fallback\u003c/li\u003e\n\u003cli\u003eStrip symbols from output (no more \u003ccode\u003e__@asyncIterator@5456\u003c/code\u003e symbols in output)\u003c/li\u003e\n\u003cli\u003eAdd more comprehensive types for the OpenAPI doc from the official package (now a dependency) and apply some patches to these types because they're slightly outdated\u003c/li\u003e\n\u003cli\u003eFixes several issues with gathering schema descriptions, such as consuming jsdoc comments from node_modules types\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7294\"\u003etrpc/trpc#7294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.15.1...v11.16.0\"\u003ehttps://github.com/trpc/trpc/compare/v11.15.1...v11.16.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.15.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(www): render sponsor links in static HTML for SEO by \u003ca href=\"https://github.com/shtefcs\"\u003e\u003ccode\u003e@​shtefcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7285\"\u003etrpc/trpc#7285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: error handling with Node VM by \u003ca href=\"https://github.com/znikola\"\u003e\u003ccode\u003e@​znikola\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7280\"\u003etrpc/trpc#7280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shtefcs\"\u003e\u003ccode\u003e@​shtefcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7285\"\u003etrpc/trpc#7285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/znikola\"\u003e\u003ccode\u003e@​znikola\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7280\"\u003etrpc/trpc#7280\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.15.0...v11.15.1\"\u003ehttps://github.com/trpc/trpc/compare/v11.15.0...v11.15.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.15.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: empty string fallback on pathExtractor by \u003ca href=\"https://github.com/dorukozerr\"\u003e\u003ccode\u003e@​dorukozerr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7270\"\u003etrpc/trpc#7270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(server): max batch size by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7191\"\u003etrpc/trpc#7191\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorukozerr\"\u003e\u003ccode\u003e@​dorukozerr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7270\"\u003etrpc/trpc#7270\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.14.1...v11.15.0\"\u003ehttps://github.com/trpc/trpc/compare/v11.14.1...v11.15.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.14.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Tanstack Intent Skills by \u003ca href=\"https://github.com/Nick-Lucas\"\u003e\u003ccode\u003e@​Nick-Lucas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7252\"\u003etrpc/trpc#7252\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/trpc/trpc/compare/v11.14.0...v11.14.1\"\u003ehttps://github.com/trpc/trpc/compare/v11.14.0...v11.14.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev11.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(server): use correct call index in batch stream error handling by \u003ca href=\"https://github.com/karesansui-u\"\u003e\u003ccode\u003e@​karesansui-u\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7262\"\u003etrpc/trpc#7262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: preserve buffered chunks on stream close in httpBatchStreamLink by \u003ca href=\"https://github.com/luinbytes\"\u003e\u003ccode\u003e@​luinbytes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/trpc/trpc/pull/7233\"\u003etrpc/trpc#7233\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/2713275631db358f17f2fec71a7f7e04b3db4add\"\u003e\u003ccode\u003e2713275\u003c/code\u003e\u003c/a\u003e v11.16.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/85b0ab89850167ae14ec5376044e2ac2a051c1d8\"\u003e\u003ccode\u003e85b0ab8\u003c/code\u003e\u003c/a\u003e v11.15.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/c4b1d7458ec869f6c51469f7fcd84b517d53ffae\"\u003e\u003ccode\u003ec4b1d74\u003c/code\u003e\u003c/a\u003e chore: Review stale skills (manual) (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/server/issues/7294\"\u003e#7294\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/88b02b81d16d4046a709508799a905ac7bf9ce8b\"\u003e\u003ccode\u003e88b02b8\u003c/code\u003e\u003c/a\u003e v11.15.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/a2f90fc96196baba0858a571bce0c2bfaafcce3c\"\u003e\u003ccode\u003ea2f90fc\u003c/code\u003e\u003c/a\u003e fix: error handling with Node VM (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/server/issues/7280\"\u003e#7280\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/25b97f51ee4ee57da0da3c63cf54a50c6c8627d5\"\u003e\u003ccode\u003e25b97f5\u003c/code\u003e\u003c/a\u003e v11.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/c9c211fa557355c2040d67d10da140c0e61c7097\"\u003e\u003ccode\u003ec9c211f\u003c/code\u003e\u003c/a\u003e feat(server): max batch size (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/server/issues/7191\"\u003e#7191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/88f9f622edeb213a1ec565dcf908ab92b9a983d6\"\u003e\u003ccode\u003e88f9f62\u003c/code\u003e\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​tanstack/intent\u003c/code\u003e to ^0.0.23 (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/server/issues/7274\"\u003e#7274\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/e896259af491fc4b1c9e8fc320817e2222bae869\"\u003e\u003ccode\u003ee896259\u003c/code\u003e\u003c/a\u003e v11.14.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/trpc/trpc/commit/e39a654b306d0c75730a9c546e77333f9d1dca8c\"\u003e\u003ccode\u003ee39a654\u003c/code\u003e\u003c/a\u003e feat: Tanstack Intent Skills (\u003ca href=\"https://github.com/trpc/trpc/tree/HEAD/packages/server/issues/7252\"\u003e#7252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/trpc/trpc/commits/v11.16.0/packages/server\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `framer-motion` from 12.35.2 to 12.38.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/motiondivision/motion/blob/main/CHANGELOG.md\"\u003eframer-motion's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[12.38.0] 2026-03-16\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003elayoutAnchor\u003c/code\u003e prop to configure custom anchor point for resolving relative projection boxes.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eReorder\u003c/code\u003e: Fix axis switching after window resize.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eReorder\u003c/code\u003e: Fix with virtualised lists.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eAnimatePresence\u003c/code\u003e: Ensure children are removed when exit animation matches current values.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[12.37.0] 2026-03-16\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for hardware accelerating \u003ccode\u003e\u0026quot;start\u0026quot;\u003c/code\u003e and \u003ccode\u003e\u0026quot;end\u0026quot;\u003c/code\u003e offsets in \u003ccode\u003escroll\u003c/code\u003e and \u003ccode\u003euseScroll\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eSupport for \u003ccode\u003eoklch\u003c/code\u003e, \u003ccode\u003eoklab\u003c/code\u003e, \u003ccode\u003elab\u003c/code\u003e, \u003ccode\u003elch\u003c/code\u003e, \u003ccode\u003ecolor\u003c/code\u003e, \u003ccode\u003ecolor-mix\u003c/code\u003e, \u003ccode\u003elight-dark\u003c/code\u003e color types.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003ewhileInView\u003c/code\u003e with client-side navigation.\u003c/li\u003e\n\u003cli\u003eFix draggable elements when layout updates due to surrounding element re-renders.\u003c/li\u003e\n\u003cli\u003eImproved memory pressure of layout animations.\u003c/li\u003e\n\u003cli\u003eEnsure motion value returned from \u003ccode\u003euseSpring\u003c/code\u003e reports correct \u003ccode\u003eisAnimating()\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[12.36.0] 2026-03-09\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow \u003ccode\u003edragSnapToOrigin\u003c/code\u003e to accept \u003ccode\u003e\u0026quot;x\u0026quot;\u003c/code\u003e or \u003ccode\u003e\u0026quot;y\u0026quot;\u003c/code\u003e for per-axis snapping.\u003c/li\u003e\n\u003cli\u003eAdded axis-locked layout animations with \u003ccode\u003elayout=\u0026quot;x\u0026quot;\u003c/code\u003e and \u003ccode\u003elayout=\u0026quot;y\u0026quot;\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eskipInitialAnimation\u003c/code\u003e to \u003ccode\u003euseSpring\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eheight\u003c/code\u003e and \u003ccode\u003ewidth: auto\u003c/code\u003e animations with \u003ccode\u003ebox-sizing: border-box\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eReset component values when exit animation finishes.\u003c/li\u003e\n\u003cli\u003eEnsure \u003ccode\u003eanticipate\u003c/code\u003e easing returns \u003ccode\u003e1\u003c/code\u003e at \u003ccode\u003ep === 1\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003e@emotion/is-prop-valid\u003c/code\u003e resolve error in Storybook.\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003edata-pop-layout-id\u003c/code\u003e from exiting eleme...\n\n_Description has been truncated_","html_url":"https://github.com/FapLandPartyDev/FapLand-Party-Edition/pull/16","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FapLandPartyDev%2FFapLand-Party-Edition/issues/16","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/16/packages"}},{"old_version":"1.5.1","new_version":"1.5.2","update_type":"patch","path":null,"pr_created_at":"2026-04-11T01:57:16.000Z","version_change":"1.5.1 → 1.5.2","issue":{"uuid":"4242562396","node_id":"PR_kwDORs7m1M7Rm6J9","number":4,"state":"closed","title":"chore(deps): bump the npm-minor-patch group across 1 directory with 119 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-04-18T01:33:29.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-11T01:57:16.000Z","updated_at":"2026-04-18T01:33:31.000Z","time_to_close":603373,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm-minor-patch","update_count":119,"packages":[{"name":"@applemusic-like-lyrics/lyric","old_version":"0.3.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/vue","old_version":"0.2.0","new_version":"0.3.2","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@neteasecloudmusicapienhanced/api","old_version":"4.30.3","new_version":"4.31.0"},{"name":"@types/pg","old_version":"8.18.0","new_version":"8.20.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"axios","old_version":"1.13.6","new_version":"1.15.0","repository_url":"https://github.com/axios/axios"},{"name":"dotenv","old_version":"17.3.1","new_version":"17.4.1","repository_url":"https://github.com/motdotla/dotenv"},{"name":"drizzle-orm","old_version":"0.45.1","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"lodash-es","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"postgres","old_version":"3.4.8","new_version":"3.4.9","repository_url":"https://github.com/porsager/postgres"},{"name":"sass","old_version":"1.98.0","new_version":"1.99.0","repository_url":"https://github.com/sass/dart-sass"},{"name":"vite-plugin-glsl","old_version":"1.5.6","new_version":"1.6.0","repository_url":"https://github.com/UstymUkhman/vite-plugin-glsl"},{"name":"vue","old_version":"3.5.30","new_version":"3.5.32","repository_url":"https://github.com/vuejs/core"},{"name":"prettier","old_version":"3.8.1","new_version":"3.8.2","repository_url":"https://github.com/prettier/prettier"},{"name":"@clack/prompts","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@emnapi/core","old_version":"1.9.1","new_version":"1.9.2","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/runtime","old_version":"1.9.1","new_version":"1.9.2","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@eslint/compat","old_version":"2.0.3","new_version":"2.0.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.13","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"path-to-regexp","old_version":"0.1.12","new_version":"0.1.13","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"@nuxt/telemetry","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nuxt/telemetry"},{"name":"@swc/core","old_version":"1.15.18","new_version":"1.15.24","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/helpers","old_version":"0.5.19","new_version":"0.5.21","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/wasm","old_version":"1.15.18","new_version":"1.15.24","repository_url":"https://github.com/swc-project/swc"},{"name":"@types/node","old_version":"25.5.0","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.57.1","new_version":"8.58.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@unhead/vue","old_version":"2.1.12","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"@vercel/nft","old_version":"1.4.0","new_version":"1.5.0","repository_url":"https://github.com/vercel/nft"},{"name":"@vue/devtools-core","old_version":"8.1.0","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"bare-fs","old_version":"4.5.6","new_version":"4.7.0","repository_url":"https://github.com/holepunchto/bare-fs"},{"name":"bare-os","old_version":"3.8.0","new_version":"3.8.7","repository_url":"https://github.com/holepunchto/bare-os"},{"name":"bare-stream","old_version":"2.10.0","new_version":"2.13.0","repository_url":"https://github.com/holepunchto/bare-stream"},{"name":"baseline-browser-mapping","old_version":"2.10.9","new_version":"2.10.17","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"basic-ftp","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/patrickjuchli/basic-ftp"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"cookie-es","old_version":"1.2.2","new_version":"1.2.3","repository_url":"https://github.com/unjs/cookie-es"},{"name":"css-declaration-sorter","old_version":"7.3.1","new_version":"7.4.0","repository_url":"https://github.com/Siilwyn/css-declaration-sorter"},{"name":"cssnano","old_version":"7.1.3","new_version":"7.1.4","repository_url":"https://github.com/cssnano/cssnano"},{"name":"devalue","old_version":"5.6.4","new_version":"5.7.1","repository_url":"https://github.com/sveltejs/devalue"},{"name":"diff","old_version":"8.0.3","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"eslint-config-flat-gitignore","old_version":"2.2.1","new_version":"2.3.0","repository_url":"https://github.com/antfu/eslint-config-flat-gitignore"},{"name":"eslint-flat-config-utils","old_version":"3.0.2","new_version":"3.1.0","repository_url":"https://github.com/antfu/eslint-flat-config-utils"},{"name":"eslint-plugin-jsdoc","old_version":"62.8.0","new_version":"62.9.0","repository_url":"https://github.com/gajus/eslint-plugin-jsdoc"},{"name":"file-type","old_version":"21.3.3","new_version":"21.3.4","repository_url":"https://github.com/sindresorhus/file-type"},{"name":"fuse.js","old_version":"7.1.0","new_version":"7.3.0","repository_url":"https://github.com/krisk/Fuse"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.13.7","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"globby","old_version":"16.1.1","new_version":"16.2.0","repository_url":"https://github.com/sindresorhus/globby"},{"name":"h3","old_version":"1.15.9","new_version":"1.15.11","repository_url":"https://github.com/h3js/h3"},{"name":"launch-editor","old_version":"2.13.1","new_version":"2.13.2","repository_url":"https://github.com/yyx990803/launch-editor"},{"name":"listhen","old_version":"1.9.0","new_version":"1.9.1","repository_url":"https://github.com/unjs/listhen"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"netmask","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/rs/node-netmask"},{"name":"nitropack","old_version":"2.13.1","new_version":"2.13.3","repository_url":"https://github.com/nitrojs/nitro"},{"name":"node-releases","old_version":"2.0.36","new_version":"2.0.37","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"postcss","old_version":"8.5.8","new_version":"8.5.9","repository_url":"https://github.com/postcss/postcss"},{"name":"regjsparser","old_version":"0.13.0","new_version":"0.13.1","repository_url":"https://github.com/jviereck/regjsparser"},{"name":"seroval","old_version":"1.5.1","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"simple-git","old_version":"3.33.0","new_version":"3.35.2","repository_url":"https://github.com/steveukx/git-js"},{"name":"srvx","old_version":"0.11.12","new_version":"0.11.15","repository_url":"https://github.com/h3js/srvx"},{"name":"strtok3","old_version":"10.3.4","new_version":"10.3.5","repository_url":"https://github.com/Borewit/strtok3"},{"name":"tar","old_version":"7.5.12","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"tinyexec","old_version":"1.0.4","new_version":"1.1.1","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"uqr","old_version":"0.1.2","new_version":"0.1.3","repository_url":"https://github.com/unjs/uqr"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.2","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-minor-patch group with 69 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@applemusic-like-lyrics/lyric](https://github.com/amll-dev/applemusic-like-lyrics) | `0.3.0` | `0.4.1` |\n| [@applemusic-like-lyrics/vue](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue) | `0.2.0` | `0.3.2` |\n| @neteasecloudmusicapienhanced/api | `4.30.3` | `4.31.0` |\n| [@types/pg](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/pg) | `8.18.0` | `8.20.0` |\n| [axios](https://github.com/axios/axios) | `1.13.6` | `1.15.0` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.3.1` | `17.4.1` |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.45.1` | `0.45.2` |\n| [lodash-es](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [postgres](https://github.com/porsager/postgres) | `3.4.8` | `3.4.9` |\n| [sass](https://github.com/sass/dart-sass) | `1.98.0` | `1.99.0` |\n| [vite-plugin-glsl](https://github.com/UstymUkhman/vite-plugin-glsl) | `1.5.6` | `1.6.0` |\n| [vue](https://github.com/vuejs/core) | `3.5.30` | `3.5.32` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.2` |\n| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.1.0` | `1.2.0` |\n| [@emnapi/core](https://github.com/toyobayashi/emnapi) | `1.9.1` | `1.9.2` |\n| [@emnapi/runtime](https://github.com/toyobayashi/emnapi) | `1.9.1` | `1.9.2` |\n| [@eslint/compat](https://github.com/eslint/rewrite/tree/HEAD/packages/compat) | `2.0.3` | `2.0.5` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.13` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `0.1.12` | `0.1.13` |\n| [@nuxt/telemetry](https://github.com/nuxt/telemetry) | `2.7.0` | `2.8.0` |\n| [@swc/core](https://github.com/swc-project/swc/tree/HEAD/packages/core) | `1.15.18` | `1.15.24` |\n| [@swc/helpers](https://github.com/swc-project/swc/tree/HEAD/packages/helpers) | `0.5.19` | `0.5.21` |\n| [@swc/wasm](https://github.com/swc-project/swc) | `1.15.18` | `1.15.24` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.5.0` | `25.6.0` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.57.1` | `8.58.1` |\n| [@unhead/vue](https://github.com/unjs/unhead/tree/HEAD/packages/vue) | `2.1.12` | `2.1.13` |\n| [@vercel/nft](https://github.com/vercel/nft) | `1.4.0` | `1.5.0` |\n| [@vue/devtools-core](https://github.com/vuejs/devtools/tree/HEAD/packages/core) | `8.1.0` | `8.1.1` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [bare-fs](https://github.com/holepunchto/bare-fs) | `4.5.6` | `4.7.0` |\n| [bare-os](https://github.com/holepunchto/bare-os) | `3.8.0` | `3.8.7` |\n| [bare-stream](https://github.com/holepunchto/bare-stream) | `2.10.0` | `2.13.0` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.10.9` | `2.10.17` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.2.0` | `5.2.2` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `1.2.2` | `1.2.3` |\n| [css-declaration-sorter](https://github.com/Siilwyn/css-declaration-sorter) | `7.3.1` | `7.4.0` |\n| [cssnano](https://github.com/cssnano/cssnano) | `7.1.3` | `7.1.4` |\n| [devalue](https://github.com/sveltejs/devalue) | `5.6.4` | `5.7.1` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.3` | `8.0.4` |\n| [eslint-config-flat-gitignore](https://github.com/antfu/eslint-config-flat-gitignore) | `2.2.1` | `2.3.0` |\n| [eslint-flat-config-utils](https://github.com/antfu/eslint-flat-config-utils) | `3.0.2` | `3.1.0` |\n| [eslint-plugin-jsdoc](https://github.com/gajus/eslint-plugin-jsdoc) | `62.8.0` | `62.9.0` |\n| [file-type](https://github.com/sindresorhus/file-type) | `21.3.3` | `21.3.4` |\n| [fuse.js](https://github.com/krisk/Fuse) | `7.1.0` | `7.3.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.13.7` |\n| [globby](https://github.com/sindresorhus/globby) | `16.1.1` | `16.2.0` |\n| [h3](https://github.com/h3js/h3) | `1.15.9` | `1.15.11` |\n| [launch-editor](https://github.com/yyx990803/launch-editor) | `2.13.1` | `2.13.2` |\n| [listhen](https://github.com/unjs/listhen) | `1.9.0` | `1.9.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [netmask](https://github.com/rs/node-netmask) | `2.0.2` | `2.1.1` |\n| [nitropack](https://github.com/nitrojs/nitro) | `2.13.1` | `2.13.3` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.36` | `2.0.37` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.8` | `8.5.9` |\n| [regjsparser](https://github.com/jviereck/regjsparser) | `0.13.0` | `0.13.1` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.1` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.33.0` | `3.35.2` |\n| [srvx](https://github.com/h3js/srvx) | `0.11.12` | `0.11.15` |\n| [strtok3](https://github.com/Borewit/strtok3) | `10.3.4` | `10.3.5` |\n| [tar](https://github.com/isaacs/node-tar) | `7.5.12` | `7.5.13` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.4` | `1.1.1` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [uqr](https://github.com/unjs/uqr) | `0.1.2` | `0.1.3` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.2` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |\n\n\nUpdates `@applemusic-like-lyrics/lyric` from 0.3.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/0309834a90cc9f489ef78cc4c6d6f6d18362e162\"\u003e\u003ccode\u003e0309834\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/issues/457\"\u003e#457\u003c/a\u003e from Linho1219/fix-type-error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/2fc5d2e19d7a2ce70501a347dec4f5f4f90fbfe2\"\u003e\u003ccode\u003e2fc5d2e\u003c/code\u003e\u003c/a\u003e fix: lyric 包 rust 侧适配 romanWord 可选\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/4fdd6a93839179f44891ba1b618c0b8b957ba0e0\"\u003e\u003ccode\u003e4fdd6a9\u003c/code\u003e\u003c/a\u003e chore: 添加 version plan\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/d862271aa1396b19b9a8bb4d8cd484a0df366270\"\u003e\u003ccode\u003ed862271\u003c/code\u003e\u003c/a\u003e fix: 修复 lyric 包 romanWord 类型\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/compare/core-bundle@0.3.0...@applemusic-like-lyrics/lyric@0.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/vue` from 0.2.0 to 0.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/1a0803d465c230ac0ad46f70d85080d4debaf170\"\u003e\u003ccode\u003e1a0803d\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.3.2/packages/vue\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@neteasecloudmusicapienhanced/api` from 4.30.3 to 4.31.0\n\nUpdates `@types/pg` from 8.18.0 to 8.20.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/pg\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.6 to 1.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.0\u003c/h2\u003e\n\u003cp\u003eThis release delivers two critical security patches, adds runtime support for Deno and Bun, and includes significant CI hardening, documentation improvements, and routine dependency updates.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecation:\u003c/strong\u003e \u003ccode\u003eurl.parse()\u003c/code\u003e usage has been replaced to address Node.js deprecation warnings. If you are on a recent version of Node.js, this resolves console warnings you may have been seeing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed a \u003ccode\u003eno_proxy\u003c/code\u003e hostname normalisation bypass that could lead to Server-Side Request Forgery (SSRF). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHeader Injection:\u003c/strong\u003e Fixed an unrestricted cloud metadata exfiltration vulnerability via a header injection chain. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10660\"\u003e#10660\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Support:\u003c/strong\u003e Added compatibility checks and documentation for Deno and Bun environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10652\"\u003e#10652\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10653\"\u003e#10653\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Security:\u003c/strong\u003e Hardened workflow permissions to least privilege, added the \u003ccode\u003ezizmor\u003c/code\u003e security scanner, pinned action versions, and gated npm publishing with OIDC and environment protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10618\"\u003e#10618\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10619\"\u003e#10619\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10627\"\u003e#10627\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10637\"\u003e#10637\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eserialize-javascript\u003c/code\u003e, \u003ccode\u003ehandlebars\u003c/code\u003e, \u003ccode\u003epicomatch\u003c/code\u003e, \u003ccode\u003evite\u003c/code\u003e, and \u003ccode\u003edenoland/setup-deno\u003c/code\u003e to latest versions. Added a 7-day Dependabot cooldown period. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10574\"\u003e#10574\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10572\"\u003e#10572\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10568\"\u003e#10568\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10616\"\u003e#10616\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocumentation:\u003c/strong\u003e Unified docs, improved \u003ccode\u003ebeforeRedirect\u003c/code\u003e credential leakage example, clarified \u003ccode\u003ewithCredentials\u003c/code\u003e/\u003ccode\u003ewithXSRFToken\u003c/code\u003e behaviour, HTTP/2 support notes, async/await timeout error handling, header case preservation, and various typo fixes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10649\"\u003e#10649\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7471\"\u003e#7471\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10654\"\u003e#10654\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10644\"\u003e#10644\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHousekeeping:\u003c/strong\u003e Removed stale files, regenerated lockfile, and updated sponsor scripts and blocks. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10584\"\u003e#10584\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10650\"\u003e#10650\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10582\"\u003e#10582\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10640\"\u003e#10640\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10659\"\u003e#10659\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Added regression coverage for urlencoded \u003ccode\u003eContent-Type\u003c/code\u003e casing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve Axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/raashish1601\"\u003e\u003ccode\u003e@​raashish1601\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Kilros0817\"\u003e\u003ccode\u003e@​Kilros0817\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/ashstrc\"\u003e\u003ccode\u003e@​ashstrc\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Abhi3975\"\u003e\u003ccode\u003e@​Abhi3975\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/theamodhshetty\"\u003e\u003ccode\u003e@​theamodhshetty\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.14.0\u003c/h2\u003e\n\u003cp\u003eThis release focuses on compatibility fixes, adapter stability improvements, and test/tooling modernisation.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBreaking Changes:\u003c/strong\u003e None identified in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAction Required:\u003c/strong\u003e If you rely on env-based proxy behaviour or CJS resolution edge-cases, validate your integration after upgrade (notably \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 alignment and \u003ccode\u003emain\u003c/code\u003e entry compatibility fix).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Features:\u003c/strong\u003e No new end-user features were introduced in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTest Coverage Expansion:\u003c/strong\u003e Added broader smoke/module test coverage for CJS and ESM package usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7510\"\u003e#7510\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e Trim trailing CRLF in normalised header values. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7456\"\u003e#7456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP/2:\u003c/strong\u003e Close detached HTTP/2 sessions on timeout to avoid lingering sessions. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7457\"\u003e#7457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Cancel \u003ccode\u003eReadableStream\u003c/code\u003e created during request-stream capability probing to prevent async resource leaks. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7515\"\u003e#7515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed env proxy behavior with \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7499\"\u003e#7499\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7201) [#7201](https://github.com/axios/axios/issues/7201) )\"\u003ecodenomnom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Nandann018-ux\" title=\"+60/-10 ([#7272](https://github.com/axios/axios/issues/7272) )\"\u003eNandan Acharya\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/KernelDeimos\" title=\"+22/-40 ([#7042](https://github.com/axios/axios/issues/7042) )\"\u003eEric Dubé\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/tiborpilz\" title=\"+40/-4 ([#5551](https://github.com/axios/axios/issues/5551) )\"\u003eTibor Pilz\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/joaoGabriel55\" title=\"+31/-4 ([#6314](https://github.com/axios/axios/issues/6314) )\"\u003eGabriel Quaresma\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/turadg\" title=\"+23/-6 ([#6265](https://github.com/axios/axios/issues/6265) )\"\u003eTuradg Aleahmad\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/772a4e54ecc4cc2421e2b746daff0aca10f359d7\"\u003e\u003ccode\u003e772a4e5\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10671\"\u003e#10671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4b071371be2f810b4bc7797a13838e0f806ebb22\"\u003e\u003ccode\u003e4b07137\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.0 to 8.0.5 in /tests/smoke/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/51e57b39db251bfe3d34af5c943dfea18e06c8b6\"\u003e\u003ccode\u003e51e57b3\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fba1a77930f0c459677b729161627234b88c90aa\"\u003e\u003ccode\u003efba1a77\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 in /tests/module/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0bf6e28eac86e87da2b60bbf5ea4237910e1a08e\"\u003e\u003ccode\u003e0bf6e28\u003c/code\u003e\u003c/a\u003e chore(deps): bump denoland/setup-deno in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8107157c572ee4a54cb28c01ab7f7f3d895ba661\"\u003e\u003ccode\u003e8107157\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the development_dependencies group with 4 updates (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e66530e3302d56176befd0778155dafea2487542\"\u003e\u003ccode\u003ee66530e\u003c/code\u003e\u003c/a\u003e ci: require npm-publish environment for releases (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/49f23cbfe4d308a075281c5f798d4c68f648cbe2\"\u003e\u003ccode\u003e49f23cb\u003c/code\u003e\u003c/a\u003e chore(sponsor): update sponsor block (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/363185461b90b1b78845dc8a99a1f103d9b122a1\"\u003e\u003ccode\u003e3631854\u003c/code\u003e\u003c/a\u003e fix: unrestricted cloud metadata exfiltration via header injection chain (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10\"\u003e#10\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fb3befb6daac6cad26b2e54094d0f2d9e47f24df\"\u003e\u003ccode\u003efb3befb\u003c/code\u003e\u003c/a\u003e fix: no_proxy hostname normalization bypass leads to ssrf (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.6...v1.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv` from 17.3.1 to 17.4.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md\"\u003edotenv's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.0...v17.4.1\"\u003e17.4.1\u003c/a\u003e (2026-04-05)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange text \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1005\"\u003e#1005\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.0\"\u003e17.4.0\u003c/a\u003e (2026-04-01)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eskills/\u003c/code\u003e folder with focused agent skills: \u003ccode\u003eskills/dotenv/SKILL.md\u003c/code\u003e (core usage) and \u003ccode\u003eskills/dotenvx/SKILL.md\u003c/code\u003e (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (\u003ccode\u003enpx skills add motdotla/dotenv\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTighten up logs: \u003ccode\u003e◇ injecting env (14) from .env\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1003\"\u003e#1003\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/48aa216de16846724e7bc80756fd42745116e4aa\"\u003e\u003ccode\u003e48aa216\u003c/code\u003e\u003c/a\u003e 17.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/e4282b0286703784f4c5f7fda6c0e30739aead77\"\u003e\u003ccode\u003ee4282b0\u003c/code\u003e\u003c/a\u003e changelog 🪵\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/c540e75d3cfde551865be9bdcb0218fbfffc9229\"\u003e\u003ccode\u003ec540e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1006\"\u003e#1006\u003c/a\u003e from motdotla/skills-update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/5626f9b07e49a353b1fdf35077ea58d1d080cbdc\"\u003e\u003ccode\u003e5626f9b\u003c/code\u003e\u003c/a\u003e dotenvx skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/2411f2a61b0c957b0756942c2d6e4ba572e0fd3d\"\u003e\u003ccode\u003e2411f2a\u003c/code\u003e\u003c/a\u003e update dotenvx skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/1e08a70b6e5a5e55d974a46bca87bd35cf3807e4\"\u003e\u003ccode\u003e1e08a70\u003c/code\u003e\u003c/a\u003e simplify dotenv skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/747f4171feb7364993465915a8cd8929cef0e0cb\"\u003e\u003ccode\u003e747f417\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1005\"\u003e#1005\u003c/a\u003e from motdotla/injected\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/271df30f90869c04c666d8652895a909c097fea7\"\u003e\u003ccode\u003e271df30\u003c/code\u003e\u003c/a\u003e changelog 🪵\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/3f01a8b61addc4e6978f2c40b0147f6812e2f64b\"\u003e\u003ccode\u003e3f01a8b\u003c/code\u003e\u003c/a\u003e \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/ccc50d50d9e398a0b20355748e710852e1db5d07\"\u003e\u003ccode\u003eccc50d5\u003c/code\u003e\u003c/a\u003e update\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `drizzle-orm` from 0.45.1 to 0.45.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/releases\"\u003edrizzle-orm's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.45.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esql.identifier()\u003c/code\u003e, \u003ccode\u003esql.as()\u003c/code\u003e escaping issues. Previously all the values passed to this functions were not properly escaped\ncausing a possible SQL Injection (CWE-89) vulnerability\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/EthanKim88\"\u003e\u003ccode\u003e@​EthanKim88\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/0x90sh\"\u003e\u003ccode\u003e@​0x90sh\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/wgoodall01\"\u003e\u003ccode\u003e@​wgoodall01\u003c/code\u003e\u003c/a\u003e for reaching out to us with a reproduction and suggested fix\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/273c78071d4841b497f5144734b38294df7ec64b\"\u003e\u003ccode\u003e273c780\u003c/code\u003e\u003c/a\u003e + 0.45.2 (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5534\"\u003e#5534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/4aa6ecfee4b4728dadf6f77f071a149878a3c6c0\"\u003e\u003ccode\u003e4aa6ecf\u003c/code\u003e\u003c/a\u003e Kit updates (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5490\"\u003e#5490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/e8e6edfef5ca69c6188d320388ad440265911057\"\u003e\u003ccode\u003ee8e6edf\u003c/code\u003e\u003c/a\u003e feat(drizzle-kit): support d1 via binding (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5302\"\u003e#5302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/compare/0.45.1...0.45.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash-es` from 4.17.23 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash-es's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postgres` from 3.4.8 to 3.4.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/porsager/postgres/releases\"\u003epostgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.4.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e  1e92809\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ehttps://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/e7dfa14519f363229ccc3ead7b1b2f2051937efb\"\u003e\u003ccode\u003ee7dfa14\u003c/code\u003e\u003c/a\u003e 3.4.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/cc29931aa1280fc62b9452647a48a89fe5d443a2\"\u003e\u003ccode\u003ecc29931\u003c/code\u003e\u003c/a\u003e build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/1e92809e79dda7873d96646403c068cd6998ea73\"\u003e\u003ccode\u003e1e92809\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sass` from 1.98.0 to 1.99.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/releases\"\u003esass's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDart Sass 1.99.0\u003c/h2\u003e\n\u003cp\u003eTo install Sass 1.99.0, download one of the packages below and \u003ca href=\"https://katiek2.github.io/path-doc/\"\u003eadd it to your PATH\u003c/a\u003e, or see \u003ca href=\"https://sass-lang.com/install\"\u003ethe Sass website\u003c/a\u003e for full installation instructions.\u003c/p\u003e\n\u003ch1\u003eChanges\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are emitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping root\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If such a function exists without a namespace in the current module, it will be used instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e, \u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were originally intended to match vendor prefixes, but in practice no vendor prefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some lowercase letters are now deprecated, These are names conflict with plain CSS functions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now, these calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are deprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/sass/dart-sass/blob/master/CHANGELOG.md#1990\"\u003efull changelog\u003c/a\u003e for changes in earlier releases.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/blob/main/CHANGELOG.md\"\u003esass's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.99.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are\nemitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping\nroot\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If\nsuch a function exists without a namespace in the current module, it will be\nused instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e,\n\u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were\noriginally intended to match vendor prefixes, but in practice no vendor\nprefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that\nbegin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some\nlowercase letters are now deprecated, These are names conflict with plain CSS\nfunctions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end\nwith \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now,\nthese calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are\ndeprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/83c39fec93ab0dc183a46cff2bc468999ce53e20\"\u003e\u003ccode\u003e83c39fe\u003c/code\u003e\u003c/a\u003e Support the top-level parent selector (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2758\"\u003e#2758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/ec85871864ca16f8045e66ad329bd462e791bfa1\"\u003e\u003ccode\u003eec85871\u003c/code\u003e\u003c/a\u003e Bump EndBug/add-and-commit from 9 to 10 (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2756\"\u003e#2756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/a604acd19ad2ce31ef2efe9aa5950b0c5fcc74a9\"\u003e\u003ccode\u003ea604acd\u003c/code\u003e\u003c/a\u003e [Function Name] Implement changes (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/sass/dart-sass/compare/1.98.0...1.99.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite-plugin-glsl` from 1.5.6 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/UstymUkhman/vite-plugin-glsl/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vue` from 3.5.30 to 3.5.32\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/releases\"\u003evue's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.32\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003ch2\u003ev3.5.31\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003evue's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.31...v3.5.32\"\u003e3.5.32\u003c/a\u003e (2026-04-03)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent currentInstance leak into sibling render during async setup re-entry (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14668\"\u003e#14668\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/f1663535a163057788d3285dec54a245c3efb3ad\"\u003ef166353\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14667\"\u003e#14667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eteleport:\u003c/strong\u003e handle updates before deferred mount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14642\"\u003e#14642\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/32b44f19f67aa30899817a7e79a4510f3b52970a\"\u003e32b44f1\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14640\"\u003e#14640\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e allow customRef to have different getter/setter types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14639\"\u003e#14639\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/e20ddb00188e9935884930046fa572eab7c9dcba\"\u003ee20ddb0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e use private branding for shallowReactive (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14641\"\u003e#14641\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/302c47a4994bc8b47b8a2af6693d8cb6bbd4b06b\"\u003e302c47a\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14638\"\u003e#14638\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14493\"\u003e#14493\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix(server-renderer): cleanup component effect scopes after SSR render\u0026quot; (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14674\"\u003e#14674\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/219d83bd305ce6fc052941acaaf02e7bc70616a4\"\u003e219d83b\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14674\"\u003e#14674\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14669\"\u003e#14669\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.30...v3.5.31\"\u003e3.5.31\u003c/a\u003e (2026-03-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecompiler-sfc:\u003c/strong\u003e allow Node.js subpath imports patterns in asset urls (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/13045\"\u003e#13045\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/95c33560c9af369d44a7670d0c3b93fb62323be2\"\u003e95c3356\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/9919\"\u003e#9919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecompiler-sfc:\u003c/strong\u003e support template literal as defineModel name (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14622\"\u003e#14622\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/bd7eef0161d69bccd48ac303bc6a56ba8d718e2d\"\u003ebd7eef0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14621\"\u003e#14621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ereactivity:\u003c/strong\u003e normalize toRef property keys before dep lookup + improve types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14625\"\u003e#14625\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/1bb28d011b31bc75c80d2860bc6484cceec1ff20\"\u003e1bb28d0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12427\"\u003e#12427\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12431\"\u003e#12431\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e invalidate detached v-for memo vnodes after unmount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14624\"\u003e#14624\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/560def426fc38c1710fda7ddd1ac634d67897960\"\u003e560def4\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12708\"\u003e#12708\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12710\"\u003e#12710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e preserve nullish event handlers in mergeProps (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14550\"\u003e#14550\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/5725222a6bc5d1dd032318349ce0c540b1d63a49\"\u003e5725222\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent merging model listener when value is null or undefined (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14629\"\u003e#14629\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/b39e0329f67354702f4e417e55c15c61d2439657\"\u003eb39e032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-dom:\u003c/strong\u003e defer teleport mount/update until suspense resolves (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/8619\"\u003e#8619\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/88ed04501555b9257df8d7ad86d844c2c2136e50\"\u003e88ed045\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/8603\"\u003e#8603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-dom:\u003c/strong\u003e handle activeElement check in Shadow DOM for v-model (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14196\"\u003e#14196\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/959ded22ab7ea1453f607e0964e1fb6748ece6c7\"\u003e959ded2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eserver-renderer:\u003c/strong\u003e cleanup component effect scopes after SSR render (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14548\"\u003e#14548\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/862f11ee017d51cb9573a8c0642055b3b17cace8\"\u003e862f11e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esuspense:\u003c/strong\u003e avoid unmount activeBranch twice if wrapped in transition (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/9392\"\u003e#9392\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/908c6ad05e1c76ae690d2e50f3bd28278af07e22\"\u003e908c6ad\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/7966\"\u003e#7966\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esuspense:\u003c/strong\u003e update suspense vnode's el during branch self-update (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/12922\"\u003e#12922\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/a2c17004c84e5ce3c4e82e35b806ba381144eed3\"\u003ea2c1700\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12920\"\u003e#12920\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etransition:\u003c/strong\u003e skip enter guard while hmr updating (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14611\"\u003e#14611\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/be0a2f1a7fc3d81d05638798cc628848cfa62cef\"\u003ebe0a2f1\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14608\"\u003e#14608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e prevent shallowReactive marker from leaking into value unions (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14493\"\u003e#14493\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/3b561db4ab42d06166b002f13c0e97cb2bd4a061\"\u003e3b561db\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14490\"\u003e#14490\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/9a2eb53bc03be1f4c8ea109f6bab157c54813765\"\u003e\u003ccode\u003e9a2eb53\u003c/code\u003e\u003c/a\u003e release: v3.5.32\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/32b44f19f67aa30899817a7e79a4510f3b52970a\"\u003e\u003ccode\u003e32b44f1\u003c/code\u003e\u003c/a\u003e fix(teleport): handle updates before deferred mount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14642\"\u003e#14642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/f1663535a163057788d3285dec54a245c3efb3ad\"\u003e\u003ccode\u003ef166353\u003c/code\u003e\u003c/a\u003e fix(runtime-core): prevent currentInstance leak into sibling render during as...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/302c47a4994bc8b47b8a2af6693d8cb6bbd4b06b\"\u003e\u003ccode\u003e302c47a\u003c/code\u003e\u003c/a\u003e fix(types): use private branding for shallowReactive (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14641\"\u003e#14641\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/e20ddb00188e9935884930046fa572eab7c9dcba\"\u003e\u003ccode\u003ee20ddb0\u003c/code\u003e\u003c/a\u003e fix(types): allow customRef to have different getter/setter types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14639\"\u003e#14639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/219d83bd305ce6fc052941acaaf02e7bc70616a4\"\u003e\u003ccode\u003e219d83b\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;fix(server-renderer): cleanup component effect scopes after SSR rende...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/fa23116437250b3fdec41112f276211cb284136e\"\u003e\u003ccode\u003efa23116\u003c/code\u003e\u003c/a\u003e chore: fix typos in changelogs (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14653\"\u003e#14653\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/81615d398a89beeccfe56a4a96fd2fba0c6fb37b\"\u003e\u003ccode\u003e81615d3\u003c/code\u003e\u003c/a\u003e release: v3.5.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/3b561db4ab42d06166b002f13c0e97cb2bd4a061\"\u003e\u003ccode\u003e3b561db\u003c/code\u003e\u003c/a\u003e fix(types): prevent shallowReactive marker from leaking into value unions (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/1b2aca4f38aaec3da4f316256e8364a13f2554d7\"\u003e\u003ccode\u003e1b2aca4\u003c/code\u003e\u003c/a\u003e chore: ignore entities updates in renovate (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14630\"\u003e#14630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vuejs/core/compare/v3.5.30...v3.5.32\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `prettier` from 3.8.1 to 3.8.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/prettier/prettier/releases\"\u003eprettier's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.8.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Angular v21.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e🔗 \u003ca href=\"https://github.com/prettier/prettier/blob/main/CHANGELOG.md#382\"\u003eChangelog\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/prettier/prettier/blob/main/CHANGELOG.md\"\u003eprettier's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e3.8.2\u003c/h1\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/prettier/prettier/compare/3.8.1...3.8.2\"\u003ediff\u003c/a\u003e\u003c/p\u003e\n\u003ch4\u003eAngular: Support Angular v21.2 (\u003ca href=\"https://redirect.github.com/prettier/prettier/pull/18722\"\u003e#18722\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/prettier/pret...\n\n_Description has been truncated_","html_url":"https://github.com/QQXIAOZHOU/VoiceHub-4805e/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/QQXIAOZHOU%2FVoiceHub-4805e/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"}},{"old_version":"1.5.1","new_version":"1.5.2","update_type":"patch","path":null,"pr_created_at":"2026-04-11T01:55:15.000Z","version_change":"1.5.1 → 1.5.2","issue":{"uuid":"4242557696","node_id":"PR_kwDORsKXY87Rm5U1","number":5,"state":"open","title":"chore(deps): bump the npm-minor-patch group across 1 directory with 140 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-11T01:55:15.000Z","updated_at":"2026-04-11T01:56:49.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm-minor-patch","update_count":140,"packages":[{"name":"@applemusic-like-lyrics/lyric","old_version":"0.3.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/vue","old_version":"0.2.0","new_version":"0.3.2","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@neteasecloudmusicapienhanced/api","old_version":"4.30.3","new_version":"4.31.0"},{"name":"@types/pg","old_version":"8.18.0","new_version":"8.20.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"axios","old_version":"1.13.6","new_version":"1.15.0","repository_url":"https://github.com/axios/axios"},{"name":"dotenv","old_version":"17.3.1","new_version":"17.4.1","repository_url":"https://github.com/motdotla/dotenv"},{"name":"drizzle-kit","old_version":"0.31.9","new_version":"0.31.10","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"drizzle-orm","old_version":"0.45.1","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"lodash-es","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"postgres","old_version":"3.4.8","new_version":"3.4.9","repository_url":"https://github.com/porsager/postgres"},{"name":"sass","old_version":"1.98.0","new_version":"1.99.0","repository_url":"https://github.com/sass/dart-sass"},{"name":"vite-plugin-glsl","old_version":"1.5.5","new_version":"1.6.0","repository_url":"https://github.com/UstymUkhman/vite-plugin-glsl"},{"name":"vite-plugin-wasm","old_version":"3.5.0","new_version":"3.6.0","repository_url":"https://github.com/Menci/vite-plugin-wasm"},{"name":"vue","old_version":"3.5.30","new_version":"3.5.32","repository_url":"https://github.com/vuejs/core"},{"name":"prettier","old_version":"3.8.1","new_version":"3.8.2","repository_url":"https://github.com/prettier/prettier"},{"name":"@babel/helpers","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@babel/runtime","old_version":"7.28.6","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"@clack/prompts","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@emnapi/core","old_version":"1.9.0","new_version":"1.9.2","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/runtime","old_version":"1.9.0","new_version":"1.9.2","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@eslint/compat","old_version":"2.0.3","new_version":"2.0.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.13","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"file-type","old_version":"21.3.2","new_version":"21.3.4","repository_url":"https://github.com/sindresorhus/file-type"},{"name":"@nuxt/devtools","old_version":"3.2.3","new_version":"3.2.4","repository_url":"https://github.com/nuxt/devtools"},{"name":"@nuxt/telemetry","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nuxt/telemetry"},{"name":"@speed-highlight/core","old_version":"1.2.14","new_version":"1.2.15","repository_url":"https://github.com/speed-highlight/core"},{"name":"@swc/core","old_version":"1.15.18","new_version":"1.15.24","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/helpers","old_version":"0.5.19","new_version":"0.5.21","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/wasm","old_version":"1.15.18","new_version":"1.15.24","repository_url":"https://github.com/swc-project/swc"},{"name":"@types/node","old_version":"25.5.0","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.57.0","new_version":"8.58.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@unhead/vue","old_version":"2.1.12","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"@vercel/nft","old_version":"1.3.2","new_version":"1.5.0","repository_url":"https://github.com/vercel/nft"},{"name":"@vue/devtools-core","old_version":"8.1.0","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"bare-fs","old_version":"4.5.5","new_version":"4.7.0","repository_url":"https://github.com/holepunchto/bare-fs"},{"name":"bare-os","old_version":"3.8.0","new_version":"3.8.7","repository_url":"https://github.com/holepunchto/bare-os"},{"name":"bare-stream","old_version":"2.8.1","new_version":"2.13.0","repository_url":"https://github.com/holepunchto/bare-stream"},{"name":"bare-url","old_version":"2.3.2","new_version":"2.4.0","repository_url":"https://github.com/holepunchto/bare-url"},{"name":"baseline-browser-mapping","old_version":"2.10.7","new_version":"2.10.17","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"basic-ftp","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/patrickjuchli/basic-ftp"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"cookie-es","old_version":"1.2.2","new_version":"1.2.3","repository_url":"https://github.com/unjs/cookie-es"},{"name":"core-js","old_version":"3.48.0","new_version":"3.49.0","repository_url":"https://github.com/zloirock/core-js"},{"name":"core-js-compat","old_version":"3.48.0","new_version":"3.49.0","repository_url":"https://github.com/zloirock/core-js"},{"name":"css-declaration-sorter","old_version":"7.3.1","new_version":"7.4.0","repository_url":"https://github.com/Siilwyn/css-declaration-sorter"},{"name":"cssnano","old_version":"7.1.3","new_version":"7.1.4","repository_url":"https://github.com/cssnano/cssnano"},{"name":"devalue","old_version":"5.6.4","new_version":"5.7.1","repository_url":"https://github.com/sveltejs/devalue"},{"name":"eslint-config-flat-gitignore","old_version":"2.2.1","new_version":"2.3.0","repository_url":"https://github.com/antfu/eslint-config-flat-gitignore"},{"name":"eslint-flat-config-utils","old_version":"3.0.2","new_version":"3.1.0","repository_url":"https://github.com/antfu/eslint-flat-config-utils"},{"name":"eslint-plugin-jsdoc","old_version":"62.8.0","new_version":"62.9.0","repository_url":"https://github.com/gajus/eslint-plugin-jsdoc"},{"name":"path-to-regexp","old_version":"0.1.12","new_version":"0.1.13","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"flatted","old_version":"3.4.1","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"fuse.js","old_version":"7.1.0","new_version":"7.3.0","repository_url":"https://github.com/krisk/Fuse"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.13.7","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"globby","old_version":"16.1.1","new_version":"16.2.0","repository_url":"https://github.com/sindresorhus/globby"},{"name":"h3","old_version":"1.15.6","new_version":"1.15.11","repository_url":"https://github.com/h3js/h3"},{"name":"ioredis","old_version":"5.10.0","new_version":"5.10.1","repository_url":"https://github.com/luin/ioredis"},{"name":"launch-editor","old_version":"2.13.1","new_version":"2.13.2","repository_url":"https://github.com/yyx990803/launch-editor"},{"name":"listhen","old_version":"1.9.0","new_version":"1.9.1","repository_url":"https://github.com/unjs/listhen"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"netmask","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/rs/node-netmask"},{"name":"nitropack","old_version":"2.13.1","new_version":"2.13.3","repository_url":"https://github.com/nitrojs/nitro"},{"name":"node-releases","old_version":"2.0.36","new_version":"2.0.37","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"postcss","old_version":"8.5.8","new_version":"8.5.9","repository_url":"https://github.com/postcss/postcss"},{"name":"regjsparser","old_version":"0.13.0","new_version":"0.13.1","repository_url":"https://github.com/jviereck/regjsparser"},{"name":"sax","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/isaacs/sax-js"},{"name":"seroval","old_version":"1.5.1","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"simple-git","old_version":"3.33.0","new_version":"3.35.2","repository_url":"https://github.com/steveukx/git-js"},{"name":"srvx","old_version":"0.11.9","new_version":"0.11.15","repository_url":"https://github.com/h3js/srvx"},{"name":"tar","old_version":"7.5.11","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"terser","old_version":"5.46.0","new_version":"5.46.1","repository_url":"https://github.com/terser/terser"},{"name":"tinyexec","old_version":"1.0.4","new_version":"1.1.1","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"type-fest","old_version":"5.4.4","new_version":"5.5.0","repository_url":"https://github.com/sindresorhus/type-fest"},{"name":"uqr","old_version":"0.1.2","new_version":"0.1.3","repository_url":"https://github.com/unjs/uqr"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.2","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-minor-patch group with 81 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@applemusic-like-lyrics/lyric](https://github.com/amll-dev/applemusic-like-lyrics) | `0.3.0` | `0.4.1` |\n| [@applemusic-like-lyrics/vue](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue) | `0.2.0` | `0.3.2` |\n| @neteasecloudmusicapienhanced/api | `4.30.3` | `4.31.0` |\n| [@types/pg](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/pg) | `8.18.0` | `8.20.0` |\n| [axios](https://github.com/axios/axios) | `1.13.6` | `1.15.0` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.3.1` | `17.4.1` |\n| [drizzle-kit](https://github.com/drizzle-team/drizzle-orm) | `0.31.9` | `0.31.10` |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.45.1` | `0.45.2` |\n| [lodash-es](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [postgres](https://github.com/porsager/postgres) | `3.4.8` | `3.4.9` |\n| [sass](https://github.com/sass/dart-sass) | `1.98.0` | `1.99.0` |\n| [vite-plugin-glsl](https://github.com/UstymUkhman/vite-plugin-glsl) | `1.5.5` | `1.6.0` |\n| [vite-plugin-wasm](https://github.com/Menci/vite-plugin-wasm) | `3.5.0` | `3.6.0` |\n| [vue](https://github.com/vuejs/core) | `3.5.30` | `3.5.32` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.2` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.28.6` | `7.29.2` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.28.6` | `7.29.2` |\n| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.1.0` | `1.2.0` |\n| [@emnapi/core](https://github.com/toyobayashi/emnapi) | `1.9.0` | `1.9.2` |\n| [@emnapi/runtime](https://github.com/toyobayashi/emnapi) | `1.9.0` | `1.9.2` |\n| [@eslint/compat](https://github.com/eslint/rewrite/tree/HEAD/packages/compat) | `2.0.3` | `2.0.5` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.13` |\n| [file-type](https://github.com/sindresorhus/file-type) | `21.3.2` | `21.3.4` |\n| [@nuxt/devtools](https://github.com/nuxt/devtools/tree/HEAD/packages/devtools) | `3.2.3` | `3.2.4` |\n| [@nuxt/telemetry](https://github.com/nuxt/telemetry) | `2.7.0` | `2.8.0` |\n| [@speed-highlight/core](https://github.com/speed-highlight/core) | `1.2.14` | `1.2.15` |\n| [@swc/core](https://github.com/swc-project/swc/tree/HEAD/packages/core) | `1.15.18` | `1.15.24` |\n| [@swc/helpers](https://github.com/swc-project/swc/tree/HEAD/packages/helpers) | `0.5.19` | `0.5.21` |\n| [@swc/wasm](https://github.com/swc-project/swc) | `1.15.18` | `1.15.24` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.5.0` | `25.6.0` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.57.0` | `8.58.1` |\n| [@unhead/vue](https://github.com/unjs/unhead/tree/HEAD/packages/vue) | `2.1.12` | `2.1.13` |\n| [@vercel/nft](https://github.com/vercel/nft) | `1.3.2` | `1.5.0` |\n| [@vue/devtools-core](https://github.com/vuejs/devtools/tree/HEAD/packages/core) | `8.1.0` | `8.1.1` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [bare-fs](https://github.com/holepunchto/bare-fs) | `4.5.5` | `4.7.0` |\n| [bare-os](https://github.com/holepunchto/bare-os) | `3.8.0` | `3.8.7` |\n| [bare-stream](https://github.com/holepunchto/bare-stream) | `2.8.1` | `2.13.0` |\n| [bare-url](https://github.com/holepunchto/bare-url) | `2.3.2` | `2.4.0` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.10.7` | `2.10.17` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.2.0` | `5.2.2` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `1.2.2` | `1.2.3` |\n| [core-js](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js) | `3.48.0` | `3.49.0` |\n| [core-js-compat](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js-compat) | `3.48.0` | `3.49.0` |\n| [css-declaration-sorter](https://github.com/Siilwyn/css-declaration-sorter) | `7.3.1` | `7.4.0` |\n| [cssnano](https://github.com/cssnano/cssnano) | `7.1.3` | `7.1.4` |\n| [devalue](https://github.com/sveltejs/devalue) | `5.6.4` | `5.7.1` |\n| [eslint-config-flat-gitignore](https://github.com/antfu/eslint-config-flat-gitignore) | `2.2.1` | `2.3.0` |\n| [eslint-flat-config-utils](https://github.com/antfu/eslint-flat-config-utils) | `3.0.2` | `3.1.0` |\n| [eslint-plugin-jsdoc](https://github.com/gajus/eslint-plugin-jsdoc) | `62.8.0` | `62.9.0` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `0.1.12` | `0.1.13` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.4.1` | `3.4.2` |\n| [fuse.js](https://github.com/krisk/Fuse) | `7.1.0` | `7.3.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.13.7` |\n| [globby](https://github.com/sindresorhus/globby) | `16.1.1` | `16.2.0` |\n| [h3](https://github.com/h3js/h3) | `1.15.6` | `1.15.11` |\n| [ioredis](https://github.com/luin/ioredis) | `5.10.0` | `5.10.1` |\n| [launch-editor](https://github.com/yyx990803/launch-editor) | `2.13.1` | `2.13.2` |\n| [listhen](https://github.com/unjs/listhen) | `1.9.0` | `1.9.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [netmask](https://github.com/rs/node-netmask) | `2.0.2` | `2.1.1` |\n| [nitropack](https://github.com/nitrojs/nitro) | `2.13.1` | `2.13.3` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.36` | `2.0.37` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.8` | `8.5.9` |\n| [regjsparser](https://github.com/jviereck/regjsparser) | `0.13.0` | `0.13.1` |\n| [sax](https://github.com/isaacs/sax-js) | `1.5.0` | `1.6.0` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.1` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.33.0` | `3.35.2` |\n| [srvx](https://github.com/h3js/srvx) | `0.11.9` | `0.11.15` |\n| [tar](https://github.com/isaacs/node-tar) | `7.5.11` | `7.5.13` |\n| [terser](https://github.com/terser/terser) | `5.46.0` | `5.46.1` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.4` | `1.1.1` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [type-fest](https://github.com/sindresorhus/type-fest) | `5.4.4` | `5.5.0` |\n| [uqr](https://github.com/unjs/uqr) | `0.1.2` | `0.1.3` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.2` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |\n\n\nUpdates `@applemusic-like-lyrics/lyric` from 0.3.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/0309834a90cc9f489ef78cc4c6d6f6d18362e162\"\u003e\u003ccode\u003e0309834\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/issues/457\"\u003e#457\u003c/a\u003e from Linho1219/fix-type-error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/2fc5d2e19d7a2ce70501a347dec4f5f4f90fbfe2\"\u003e\u003ccode\u003e2fc5d2e\u003c/code\u003e\u003c/a\u003e fix: lyric 包 rust 侧适配 romanWord 可选\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/4fdd6a93839179f44891ba1b618c0b8b957ba0e0\"\u003e\u003ccode\u003e4fdd6a9\u003c/code\u003e\u003c/a\u003e chore: 添加 version plan\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/d862271aa1396b19b9a8bb4d8cd484a0df366270\"\u003e\u003ccode\u003ed862271\u003c/code\u003e\u003c/a\u003e fix: 修复 lyric 包 romanWord 类型\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/compare/core-bundle@0.3.0...@applemusic-like-lyrics/lyric@0.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/vue` from 0.2.0 to 0.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/1a0803d465c230ac0ad46f70d85080d4debaf170\"\u003e\u003ccode\u003e1a0803d\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.3.2/packages/vue\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@neteasecloudmusicapienhanced/api` from 4.30.3 to 4.31.0\n\nUpdates `@types/pg` from 8.18.0 to 8.20.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/pg\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.6 to 1.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.0\u003c/h2\u003e\n\u003cp\u003eThis release delivers two critical security patches, adds runtime support for Deno and Bun, and includes significant CI hardening, documentation improvements, and routine dependency updates.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecation:\u003c/strong\u003e \u003ccode\u003eurl.parse()\u003c/code\u003e usage has been replaced to address Node.js deprecation warnings. If you are on a recent version of Node.js, this resolves console warnings you may have been seeing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed a \u003ccode\u003eno_proxy\u003c/code\u003e hostname normalisation bypass that could lead to Server-Side Request Forgery (SSRF). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHeader Injection:\u003c/strong\u003e Fixed an unrestricted cloud metadata exfiltration vulnerability via a header injection chain. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10660\"\u003e#10660\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Support:\u003c/strong\u003e Added compatibility checks and documentation for Deno and Bun environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10652\"\u003e#10652\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10653\"\u003e#10653\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Security:\u003c/strong\u003e Hardened workflow permissions to least privilege, added the \u003ccode\u003ezizmor\u003c/code\u003e security scanner, pinned action versions, and gated npm publishing with OIDC and environment protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10618\"\u003e#10618\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10619\"\u003e#10619\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10627\"\u003e#10627\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10637\"\u003e#10637\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eserialize-javascript\u003c/code\u003e, \u003ccode\u003ehandlebars\u003c/code\u003e, \u003ccode\u003epicomatch\u003c/code\u003e, \u003ccode\u003evite\u003c/code\u003e, and \u003ccode\u003edenoland/setup-deno\u003c/code\u003e to latest versions. Added a 7-day Dependabot cooldown period. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10574\"\u003e#10574\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10572\"\u003e#10572\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10568\"\u003e#10568\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10616\"\u003e#10616\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocumentation:\u003c/strong\u003e Unified docs, improved \u003ccode\u003ebeforeRedirect\u003c/code\u003e credential leakage example, clarified \u003ccode\u003ewithCredentials\u003c/code\u003e/\u003ccode\u003ewithXSRFToken\u003c/code\u003e behaviour, HTTP/2 support notes, async/await timeout error handling, header case preservation, and various typo fixes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10649\"\u003e#10649\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7471\"\u003e#7471\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10654\"\u003e#10654\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10644\"\u003e#10644\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHousekeeping:\u003c/strong\u003e Removed stale files, regenerated lockfile, and updated sponsor scripts and blocks. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10584\"\u003e#10584\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10650\"\u003e#10650\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10582\"\u003e#10582\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10640\"\u003e#10640\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10659\"\u003e#10659\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Added regression coverage for urlencoded \u003ccode\u003eContent-Type\u003c/code\u003e casing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve Axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/raashish1601\"\u003e\u003ccode\u003e@​raashish1601\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Kilros0817\"\u003e\u003ccode\u003e@​Kilros0817\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/ashstrc\"\u003e\u003ccode\u003e@​ashstrc\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Abhi3975\"\u003e\u003ccode\u003e@​Abhi3975\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/theamodhshetty\"\u003e\u003ccode\u003e@​theamodhshetty\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.14.0\u003c/h2\u003e\n\u003cp\u003eThis release focuses on compatibility fixes, adapter stability improvements, and test/tooling modernisation.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBreaking Changes:\u003c/strong\u003e None identified in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAction Required:\u003c/strong\u003e If you rely on env-based proxy behaviour or CJS resolution edge-cases, validate your integration after upgrade (notably \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 alignment and \u003ccode\u003emain\u003c/code\u003e entry compatibility fix).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Features:\u003c/strong\u003e No new end-user features were introduced in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTest Coverage Expansion:\u003c/strong\u003e Added broader smoke/module test coverage for CJS and ESM package usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7510\"\u003e#7510\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e Trim trailing CRLF in normalised header values. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7456\"\u003e#7456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP/2:\u003c/strong\u003e Close detached HTTP/2 sessions on timeout to avoid lingering sessions. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7457\"\u003e#7457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Cancel \u003ccode\u003eReadableStream\u003c/code\u003e created during request-stream capability probing to prevent async resource leaks. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7515\"\u003e#7515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed env proxy behavior with \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7499\"\u003e#7499\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7201) [#7201](https://github.com/axios/axios/issues/7201) )\"\u003ecodenomnom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Nandann018-ux\" title=\"+60/-10 ([#7272](https://github.com/axios/axios/issues/7272) )\"\u003eNandan Acharya\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/KernelDeimos\" title=\"+22/-40 ([#7042](https://github.com/axios/axios/issues/7042) )\"\u003eEric Dubé\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/tiborpilz\" title=\"+40/-4 ([#5551](https://github.com/axios/axios/issues/5551) )\"\u003eTibor Pilz\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/joaoGabriel55\" title=\"+31/-4 ([#6314](https://github.com/axios/axios/issues/6314) )\"\u003eGabriel Quaresma\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/turadg\" title=\"+23/-6 ([#6265](https://github.com/axios/axios/issues/6265) )\"\u003eTuradg Aleahmad\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/772a4e54ecc4cc2421e2b746daff0aca10f359d7\"\u003e\u003ccode\u003e772a4e5\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10671\"\u003e#10671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4b071371be2f810b4bc7797a13838e0f806ebb22\"\u003e\u003ccode\u003e4b07137\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.0 to 8.0.5 in /tests/smoke/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/51e57b39db251bfe3d34af5c943dfea18e06c8b6\"\u003e\u003ccode\u003e51e57b3\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fba1a77930f0c459677b729161627234b88c90aa\"\u003e\u003ccode\u003efba1a77\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 in /tests/module/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0bf6e28eac86e87da2b60bbf5ea4237910e1a08e\"\u003e\u003ccode\u003e0bf6e28\u003c/code\u003e\u003c/a\u003e chore(deps): bump denoland/setup-deno in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8107157c572ee4a54cb28c01ab7f7f3d895ba661\"\u003e\u003ccode\u003e8107157\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the development_dependencies group with 4 updates (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e66530e3302d56176befd0778155dafea2487542\"\u003e\u003ccode\u003ee66530e\u003c/code\u003e\u003c/a\u003e ci: require npm-publish environment for releases (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/49f23cbfe4d308a075281c5f798d4c68f648cbe2\"\u003e\u003ccode\u003e49f23cb\u003c/code\u003e\u003c/a\u003e chore(sponsor): update sponsor block (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/363185461b90b1b78845dc8a99a1f103d9b122a1\"\u003e\u003ccode\u003e3631854\u003c/code\u003e\u003c/a\u003e fix: unrestricted cloud metadata exfiltration via header injection chain (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10\"\u003e#10\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fb3befb6daac6cad26b2e54094d0f2d9e47f24df\"\u003e\u003ccode\u003efb3befb\u003c/code\u003e\u003c/a\u003e fix: no_proxy hostname normalization bypass leads to ssrf (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.6...v1.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv` from 17.3.1 to 17.4.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md\"\u003edotenv's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.0...v17.4.1\"\u003e17.4.1\u003c/a\u003e (2026-04-05)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange text \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1005\"\u003e#1005\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.0\"\u003e17.4.0\u003c/a\u003e (2026-04-01)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eskills/\u003c/code\u003e folder with focused agent skills: \u003ccode\u003eskills/dotenv/SKILL.md\u003c/code\u003e (core usage) and \u003ccode\u003eskills/dotenvx/SKILL.md\u003c/code\u003e (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (\u003ccode\u003enpx skills add motdotla/dotenv\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTighten up logs: \u003ccode\u003e◇ injecting env (14) from .env\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1003\"\u003e#1003\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/48aa216de16846724e7bc80756fd42745116e4aa\"\u003e\u003ccode\u003e48aa216\u003c/code\u003e\u003c/a\u003e 17.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/e4282b0286703784f4c5f7fda6c0e30739aead77\"\u003e\u003ccode\u003ee4282b0\u003c/code\u003e\u003c/a\u003e changelog 🪵\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/c540e75d3cfde551865be9bdcb0218fbfffc9229\"\u003e\u003ccode\u003ec540e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1006\"\u003e#1006\u003c/a\u003e from motdotla/skills-update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/5626f9b07e49a353b1fdf35077ea58d1d080cbdc\"\u003e\u003ccode\u003e5626f9b\u003c/code\u003e\u003c/a\u003e dotenvx skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/2411f2a61b0c957b0756942c2d6e4ba572e0fd3d\"\u003e\u003ccode\u003e2411f2a\u003c/code\u003e\u003c/a\u003e update dotenvx skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/1e08a70b6e5a5e55d974a46bca87bd35cf3807e4\"\u003e\u003ccode\u003e1e08a70\u003c/code\u003e\u003c/a\u003e simplify dotenv skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/747f4171feb7364993465915a8cd8929cef0e0cb\"\u003e\u003ccode\u003e747f417\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1005\"\u003e#1005\u003c/a\u003e from motdotla/injected\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/271df30f90869c04c666d8652895a909c097fea7\"\u003e\u003ccode\u003e271df30\u003c/code\u003e\u003c/a\u003e changelog 🪵\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/3f01a8b61addc4e6978f2c40b0147f6812e2f64b\"\u003e\u003ccode\u003e3f01a8b\u003c/code\u003e\u003c/a\u003e \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/ccc50d50d9e398a0b20355748e710852e1db5d07\"\u003e\u003ccode\u003eccc50d5\u003c/code\u003e\u003c/a\u003e update\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `drizzle-kit` from 0.31.9 to 0.31.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/releases\"\u003edrizzle-kit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003edrizzle-kit@0.31.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated to \u003ccode\u003ehanji@0.0.8\u003c/code\u003e - native bun \u003ccode\u003estringWidth\u003c/code\u003e, \u003ccode\u003estripANSI\u003c/code\u003e support, errors for non-TTY environments\u003c/li\u003e\n\u003cli\u003eWe've migrated away from \u003ccode\u003eesbuild-register\u003c/code\u003e to \u003ccode\u003etsx\u003c/code\u003e loader, it will now allow to use \u003ccode\u003edrizzle-kit\u003c/code\u003e seamlessly with both \u003ccode\u003eESM\u003c/code\u003e and \u003ccode\u003eCJS\u003c/code\u003e modules\u003c/li\u003e\n\u003cli\u003eWe've also added native \u003ccode\u003eBun\u003c/code\u003e and \u003ccode\u003eDeno\u003c/code\u003e launch support, which will not trigger \u003ccode\u003etsx\u003c/code\u003e loader and utilise native \u003ccode\u003ebun\u003c/code\u003e and \u003ccode\u003edeno\u003c/code\u003e imports capabilities and faster startup times\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/4aa6ecfee4b4728dadf6f77f071a149878a3c6c0\"\u003e\u003ccode\u003e4aa6ecf\u003c/code\u003e\u003c/a\u003e Kit updates (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5490\"\u003e#5490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/compare/drizzle-kit@0.31.9...drizzle-kit@0.31.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `drizzle-orm` from 0.45.1 to 0.45.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/releases\"\u003edrizzle-orm's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.45.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esql.identifier()\u003c/code\u003e, \u003ccode\u003esql.as()\u003c/code\u003e escaping issues. Previously all the values passed to this functions were not properly escaped\ncausing a possible SQL Injection (CWE-89) vulnerability\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/EthanKim88\"\u003e\u003ccode\u003e@​EthanKim88\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/0x90sh\"\u003e\u003ccode\u003e@​0x90sh\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/wgoodall01\"\u003e\u003ccode\u003e@​wgoodall01\u003c/code\u003e\u003c/a\u003e for reaching out to us with a reproduction and suggested fix\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/273c78071d4841b497f5144734b38294df7ec64b\"\u003e\u003ccode\u003e273c780\u003c/code\u003e\u003c/a\u003e + 0.45.2 (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5534\"\u003e#5534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/4aa6ecfee4b4728dadf6f77f071a149878a3c6c0\"\u003e\u003ccode\u003e4aa6ecf\u003c/code\u003e\u003c/a\u003e Kit updates (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5490\"\u003e#5490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/e8e6edfef5ca69c6188d320388ad440265911057\"\u003e\u003ccode\u003ee8e6edf\u003c/code\u003e\u003c/a\u003e feat(drizzle-kit): support d1 via binding (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5302\"\u003e#5302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/compare/0.45.1...0.45.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash-es` from 4.17.23 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash-es's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postgres` from 3.4.8 to 3.4.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/porsager/postgres/releases\"\u003epostgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.4.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e  1e92809\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ehttps://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/e7dfa14519f363229ccc3ead7b1b2f2051937efb\"\u003e\u003ccode\u003ee7dfa14\u003c/code\u003e\u003c/a\u003e 3.4.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/cc29931aa1280fc62b9452647a48a89fe5d443a2\"\u003e\u003ccode\u003ecc29931\u003c/code\u003e\u003c/a\u003e build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/1e92809e79dda7873d96646403c068cd6998ea73\"\u003e\u003ccode\u003e1e92809\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sass` from 1.98.0 to 1.99.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/releases\"\u003esass's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDart Sass 1.99.0\u003c/h2\u003e\n\u003cp\u003eTo install Sass 1.99.0, download one of the packages below and \u003ca href=\"https://katiek2.github.io/path-doc/\"\u003eadd it to your PATH\u003c/a\u003e, or see \u003ca href=\"https://sass-lang.com/install\"\u003ethe Sass website\u003c/a\u003e for full installation instructions.\u003c/p\u003e\n\u003ch1\u003eChanges\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are emitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping root\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If such a function exists without a namespace in the current module, it will be used instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e, \u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were originally intended to match vendor prefixes, but in practice no vendor prefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some lowercase letters are now deprecated, These are names conflict with plain CSS functions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now, these calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are deprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/sass/dart-sass/blob/master/CHANGELOG.md#1990\"\u003efull changelog\u003c/a\u003e for changes in earlier releases.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/blob/main/CHANGELOG.md\"\u003esass's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.99.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are\nemitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping\nroot\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If\nsuch a function exists without a namespace in the current module, it will be\nused instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e,\n\u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were\noriginally intended to match vendor prefixes, but in practice no vendor\nprefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that\nbegin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some\nlowercase letters are now deprecated, These are names conflict with plain CSS\nfunctions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end\nwith \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now,\nthese calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are\ndeprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/83c39fec93ab0dc183a46cff2bc468999ce53e20\"\u003e\u003ccode\u003e83c39fe\u003c/code\u003e\u003c/a\u003e Support the top-level parent selector (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2758\"\u003e#2758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/ec85871864ca16f8045e66ad329bd462e791bfa1\"\u003e\u003ccode\u003eec85871\u003c/code\u003e\u003c/a\u003e Bump EndBug/add-and-commit from 9 to 10 (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2756\"\u003e#2756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/a604acd19ad2ce31ef2efe9aa5950b0c5fcc74a9\"\u003e\u003ccode\u003ea604acd\u003c/code\u003e\u003c/a\u003e [Function Name] Implement changes (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/sass/dart-sass/compare/1.98.0...1.99.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite-plugin-glsl` from 1.5.5 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/UstymUkhman/vite-plugin-glsl/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite-plugin-wasm` from 3.5.0 to 3.6.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Menci/vite-plugin-wasm/commit/35c4349b04c78c0b2631be1bb0233ee1d816d3d2\"\u003e\u003ccode\u003e35c4349\u003c/code\u003e\u003c/a\u003e chore: bump to v3.6.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Menci/vite-plugin-wasm/commit/691909bc98b47762c6bda4c0ee88a6e5bc1e1f8c\"\u003e\u003ccode\u003e691909b\u003c/code\u003e\u003c/a\u003e feat: support vite 8 (\u003ca href=\"https://redirect.github.com/Menci/vite-plugin-wasm/issues/87\"\u003e#87\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Menci/vite-plugin-wasm/commit/5b4f0de093b3aa70c1d76bed8359922d448423b6\"\u003e\u003ccode\u003e5b4f0de\u003c/code\u003e\u003c/a\u003e chore: migrate to node:test (\u003ca href=\"https://redirect.github.com/Menci/vite-plugin-wasm/issues/86\"\u003e#86\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Menci/vite-plugin-wasm/commit/b43294042f6f3177fc745f0b777e554d15447d67\"\u003e\u003ccode\u003eb432940\u003c/code\u003e\u003c/a\u003e fix: handle WASM exports with non-identifier characters (\u003ca href=\"https://redirect.github.com/Menci/vite-plugin-wasm/issues/84\"\u003e#84\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Menci/vite-plugin-wasm/commit/c70ef06eb904aedf1d8071befd7f9b58b0e9d9ed\"\u003e\u003ccode\u003ec70ef06\u003c/code\u003e\u003c/a\u003e docs: update README.md to reflect Vite 7 support (\u003ca href=\"https://redirect.github.com/Menci/vite-plugin-wasm/issues/80\"\u003e#80\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/Menci/vite-plugin-wasm/compare/v3.5.0...v3.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vue` from 3.5.30 to 3.5.32\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/releases\"\u003evue's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.32\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003ch2\u003ev3.5.31\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003evue's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.31...v3.5.32\"\u003e3.5.32\u003c/a\u003e (2026-04-03)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent currentInstance leak into sibling render during async setup re-entry (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14668\"\u003e#14668\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/f1663535a163057788d3285dec54a245c3efb3ad\"\u003ef166353\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14667\"\u003e#14667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eteleport:\u003c/strong\u003e handle updates before deferred mount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14642\"\u003e#14642\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/32b44f19f67aa30899817a7e79a4510f3b52970a\"\u003e32b44f1\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14640\"\u003e#14640\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e allow customRef to have different getter/setter types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14639\"\u003e#14639\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/e20ddb00188e9935884930046fa572eab7c9dcba\"\u003ee20ddb0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e use private branding for shallowReactive (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14641\"\u003e#14641\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/302c47a4994bc8b47b8a2af6693d8cb6bbd4b06b\"\u003e302c47a\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14638\"\u003e#14638\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14493\"\u003e#14493\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix(server-renderer): cleanup component effect scopes after SSR render\u0026quot; (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14674\"\u003e#14674\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/219d83bd305ce6fc052941acaaf02e7bc70616a4\"\u003e219d83b\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14674\"\u003e#14674\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14669\"\u003e#14669\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.30...v3.5.31\"\u003e3.5.31\u003c/a\u003e (2026-03-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecompiler-sfc:\u003c/strong\u003e allow Node.js subpath imports patterns in asset urls (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/13045\"\u003e#13045\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/95c33560c9af369d44a7670d0c3b93fb62323be2\"\u003e95c3356\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/9919\"\u003e#9919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecompiler-sfc:\u003c/strong\u003e support template literal as defineModel name (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14622\"\u003e#14622\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/bd7eef0161d69bccd48ac303bc6a56ba8d718e2d\"\u003ebd7eef0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14621\"\u003e#14621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ereactivity:\u003c/strong\u003e normalize toRef property keys before dep lookup + improve types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14625\"\u003e#14625\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/1bb28d011b31bc75c80d2860bc6484cceec1ff20\"\u003e1bb28d0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12427\"\u003e#12427\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12431\"\u003e#12431\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e invalidate detached v-for memo vnodes after unmount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14624\"\u003e#14624\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/560def426fc38c1710fda7ddd1ac634d67897960\"\u003e560def4\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12708\"\u003e#12708\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12710\"\u003e#12710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e preserve nullish event handlers in mergeProps (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14550\"\u003e#14550\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/5725222a6bc5d1dd032318349ce0c540b1d63a49\"\u003e5725222\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent merging model listener when value is null or undefined (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14629\"\u003e#14629\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/b39e0329f67354702f4e417e55c15c61d2439657\"\u003eb39e032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-dom:\u003c/strong\u003e defer teleport mount/update until suspense resolves (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/8619\"\u003e#8619\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/88ed04501555b9257df8d7ad86d844c2c2136e50\"\u003e88ed045\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/8603\"\u003e#8603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-dom:\u003c/strong\u003e handle activeElement check in Shadow DOM for v-model (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14196\"\u003e#14196\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/959ded22ab7ea1453f607e0964e1fb6748ece6c7\"\u003e959ded2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eserver-renderer:\u003c/strong\u003e cleanup component effect scopes after SSR render (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14548\"\u003e#14548\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/862f11ee017d51cb9573a8c0642055b3b17cace8\"\u003e862f11e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esuspense:\u003c/strong\u003e avoid unmount activeBranch twice if wrapped in transition (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/9392\"\u003e#9392\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/908c6ad05e1c76ae690d2e50f3bd28278af07e22\"\u003e908c6ad\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/7966\"\u003e#7966\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esuspense:\u003c/strong\u003e update suspense vnode's el during branch self-update (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/12922\"\u003e#12922\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/a2c17004c84e5ce3c4e82e35b806ba381144eed3\"\u003ea2c1700\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12920\"\u003e#12920\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etransition:\u003c/strong\u003e skip enter guard while hmr updating (\u003ca href=\"https://redirect...\n\n_Description has been truncated_","html_url":"https://github.com/qinchunhuan/VoiceHub/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/qinchunhuan%2FVoiceHub/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"}},{"old_version":"1.5.1","new_version":"1.5.2","update_type":"patch","path":null,"pr_created_at":"2026-04-11T01:51:59.000Z","version_change":"1.5.1 → 1.5.2","issue":{"uuid":"4242548226","node_id":"PR_kwDORtBzwc7Rm3i8","number":4,"state":"open","title":"chore(deps): bump the npm-minor-patch group across 1 directory with 119 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-11T01:51:59.000Z","updated_at":"2026-04-11T01:53:32.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm-minor-patch","update_count":119,"packages":[{"name":"@applemusic-like-lyrics/lyric","old_version":"0.3.0","new_version":"0.4.1","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@applemusic-like-lyrics/vue","old_version":"0.2.0","new_version":"0.3.2","repository_url":"https://github.com/amll-dev/applemusic-like-lyrics"},{"name":"@neteasecloudmusicapienhanced/api","old_version":"4.30.3","new_version":"4.31.0"},{"name":"@types/pg","old_version":"8.18.0","new_version":"8.20.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"axios","old_version":"1.13.6","new_version":"1.15.0","repository_url":"https://github.com/axios/axios"},{"name":"dotenv","old_version":"17.3.1","new_version":"17.4.1","repository_url":"https://github.com/motdotla/dotenv"},{"name":"drizzle-orm","old_version":"0.45.1","new_version":"0.45.2","repository_url":"https://github.com/drizzle-team/drizzle-orm"},{"name":"lodash-es","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"postgres","old_version":"3.4.8","new_version":"3.4.9","repository_url":"https://github.com/porsager/postgres"},{"name":"sass","old_version":"1.98.0","new_version":"1.99.0","repository_url":"https://github.com/sass/dart-sass"},{"name":"vite-plugin-glsl","old_version":"1.5.6","new_version":"1.6.0","repository_url":"https://github.com/UstymUkhman/vite-plugin-glsl"},{"name":"vue","old_version":"3.5.30","new_version":"3.5.32","repository_url":"https://github.com/vuejs/core"},{"name":"prettier","old_version":"3.8.1","new_version":"3.8.2","repository_url":"https://github.com/prettier/prettier"},{"name":"@clack/prompts","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/bombshell-dev/clack"},{"name":"@emnapi/core","old_version":"1.9.1","new_version":"1.9.2","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@emnapi/runtime","old_version":"1.9.1","new_version":"1.9.2","repository_url":"https://github.com/toyobayashi/emnapi"},{"name":"@eslint/compat","old_version":"2.0.3","new_version":"2.0.5","repository_url":"https://github.com/eslint/rewrite"},{"name":"brace-expansion","old_version":"1.1.12","new_version":"1.1.13","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"path-to-regexp","old_version":"0.1.12","new_version":"0.1.13","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"@nuxt/telemetry","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nuxt/telemetry"},{"name":"@swc/core","old_version":"1.15.18","new_version":"1.15.24","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/helpers","old_version":"0.5.19","new_version":"0.5.21","repository_url":"https://github.com/swc-project/swc"},{"name":"@swc/wasm","old_version":"1.15.18","new_version":"1.15.24","repository_url":"https://github.com/swc-project/swc"},{"name":"@types/node","old_version":"25.5.0","new_version":"25.6.0","repository_url":"https://github.com/DefinitelyTyped/DefinitelyTyped"},{"name":"@typescript-eslint/eslint-plugin","old_version":"8.57.1","new_version":"8.58.1","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@unhead/vue","old_version":"2.1.12","new_version":"2.1.13","repository_url":"https://github.com/unjs/unhead"},{"name":"@vercel/nft","old_version":"1.4.0","new_version":"1.5.0","repository_url":"https://github.com/vercel/nft"},{"name":"@vue/devtools-core","old_version":"8.1.0","new_version":"8.1.1","repository_url":"https://github.com/vuejs/devtools"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"bare-fs","old_version":"4.5.6","new_version":"4.7.0","repository_url":"https://github.com/holepunchto/bare-fs"},{"name":"bare-os","old_version":"3.8.0","new_version":"3.8.7","repository_url":"https://github.com/holepunchto/bare-os"},{"name":"bare-stream","old_version":"2.10.0","new_version":"2.13.0","repository_url":"https://github.com/holepunchto/bare-stream"},{"name":"baseline-browser-mapping","old_version":"2.10.9","new_version":"2.10.17","repository_url":"https://github.com/web-platform-dx/baseline-browser-mapping"},{"name":"basic-ftp","old_version":"5.2.0","new_version":"5.2.2","repository_url":"https://github.com/patrickjuchli/basic-ftp"},{"name":"browserslist","old_version":"4.28.1","new_version":"4.28.2","repository_url":"https://github.com/browserslist/browserslist"},{"name":"c12","old_version":"3.3.3","new_version":"3.3.4","repository_url":"https://github.com/unjs/c12"},{"name":"cookie-es","old_version":"1.2.2","new_version":"1.2.3","repository_url":"https://github.com/unjs/cookie-es"},{"name":"css-declaration-sorter","old_version":"7.3.1","new_version":"7.4.0","repository_url":"https://github.com/Siilwyn/css-declaration-sorter"},{"name":"cssnano","old_version":"7.1.3","new_version":"7.1.4","repository_url":"https://github.com/cssnano/cssnano"},{"name":"devalue","old_version":"5.6.4","new_version":"5.7.1","repository_url":"https://github.com/sveltejs/devalue"},{"name":"diff","old_version":"8.0.3","new_version":"8.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"eslint-config-flat-gitignore","old_version":"2.2.1","new_version":"2.3.0","repository_url":"https://github.com/antfu/eslint-config-flat-gitignore"},{"name":"eslint-flat-config-utils","old_version":"3.0.2","new_version":"3.1.0","repository_url":"https://github.com/antfu/eslint-flat-config-utils"},{"name":"eslint-plugin-jsdoc","old_version":"62.8.0","new_version":"62.9.0","repository_url":"https://github.com/gajus/eslint-plugin-jsdoc"},{"name":"file-type","old_version":"21.3.3","new_version":"21.3.4","repository_url":"https://github.com/sindresorhus/file-type"},{"name":"fuse.js","old_version":"7.1.0","new_version":"7.3.0","repository_url":"https://github.com/krisk/Fuse"},{"name":"get-tsconfig","old_version":"4.13.6","new_version":"4.13.7","repository_url":"https://github.com/privatenumber/get-tsconfig"},{"name":"globby","old_version":"16.1.1","new_version":"16.2.0","repository_url":"https://github.com/sindresorhus/globby"},{"name":"h3","old_version":"1.15.9","new_version":"1.15.11","repository_url":"https://github.com/h3js/h3"},{"name":"launch-editor","old_version":"2.13.1","new_version":"2.13.2","repository_url":"https://github.com/yyx990803/launch-editor"},{"name":"listhen","old_version":"1.9.0","new_version":"1.9.1","repository_url":"https://github.com/unjs/listhen"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"netmask","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/rs/node-netmask"},{"name":"nitropack","old_version":"2.13.1","new_version":"2.13.3","repository_url":"https://github.com/nitrojs/nitro"},{"name":"node-releases","old_version":"2.0.36","new_version":"2.0.37","repository_url":"https://github.com/chicoxyzzy/node-releases"},{"name":"postcss","old_version":"8.5.8","new_version":"8.5.9","repository_url":"https://github.com/postcss/postcss"},{"name":"regjsparser","old_version":"0.13.0","new_version":"0.13.1","repository_url":"https://github.com/jviereck/regjsparser"},{"name":"seroval","old_version":"1.5.1","new_version":"1.5.2","repository_url":"https://github.com/lxsmnsyc/seroval"},{"name":"side-channel-list","old_version":"1.0.0","new_version":"1.0.1","repository_url":"https://github.com/ljharb/side-channel-list"},{"name":"simple-git","old_version":"3.33.0","new_version":"3.35.2","repository_url":"https://github.com/steveukx/git-js"},{"name":"srvx","old_version":"0.11.12","new_version":"0.11.15","repository_url":"https://github.com/h3js/srvx"},{"name":"strtok3","old_version":"10.3.4","new_version":"10.3.5","repository_url":"https://github.com/Borewit/strtok3"},{"name":"tar","old_version":"7.5.12","new_version":"7.5.13","repository_url":"https://github.com/isaacs/node-tar"},{"name":"tinyexec","old_version":"1.0.4","new_version":"1.1.1","repository_url":"https://github.com/tinylibs/tinyexec"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"uqr","old_version":"0.1.2","new_version":"0.1.3","repository_url":"https://github.com/unjs/uqr"},{"name":"vite","old_version":"7.3.1","new_version":"7.3.2","repository_url":"https://github.com/vitejs/vite"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.0","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.2","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-minor-patch group with 69 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@applemusic-like-lyrics/lyric](https://github.com/amll-dev/applemusic-like-lyrics) | `0.3.0` | `0.4.1` |\n| [@applemusic-like-lyrics/vue](https://github.com/amll-dev/applemusic-like-lyrics/tree/HEAD/packages/vue) | `0.2.0` | `0.3.2` |\n| @neteasecloudmusicapienhanced/api | `4.30.3` | `4.31.0` |\n| [@types/pg](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/pg) | `8.18.0` | `8.20.0` |\n| [axios](https://github.com/axios/axios) | `1.13.6` | `1.15.0` |\n| [dotenv](https://github.com/motdotla/dotenv) | `17.3.1` | `17.4.1` |\n| [drizzle-orm](https://github.com/drizzle-team/drizzle-orm) | `0.45.1` | `0.45.2` |\n| [lodash-es](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [postgres](https://github.com/porsager/postgres) | `3.4.8` | `3.4.9` |\n| [sass](https://github.com/sass/dart-sass) | `1.98.0` | `1.99.0` |\n| [vite-plugin-glsl](https://github.com/UstymUkhman/vite-plugin-glsl) | `1.5.6` | `1.6.0` |\n| [vue](https://github.com/vuejs/core) | `3.5.30` | `3.5.32` |\n| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.2` |\n| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.1.0` | `1.2.0` |\n| [@emnapi/core](https://github.com/toyobayashi/emnapi) | `1.9.1` | `1.9.2` |\n| [@emnapi/runtime](https://github.com/toyobayashi/emnapi) | `1.9.1` | `1.9.2` |\n| [@eslint/compat](https://github.com/eslint/rewrite/tree/HEAD/packages/compat) | `2.0.3` | `2.0.5` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.12` | `1.1.13` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `0.1.12` | `0.1.13` |\n| [@nuxt/telemetry](https://github.com/nuxt/telemetry) | `2.7.0` | `2.8.0` |\n| [@swc/core](https://github.com/swc-project/swc/tree/HEAD/packages/core) | `1.15.18` | `1.15.24` |\n| [@swc/helpers](https://github.com/swc-project/swc/tree/HEAD/packages/helpers) | `0.5.19` | `0.5.21` |\n| [@swc/wasm](https://github.com/swc-project/swc) | `1.15.18` | `1.15.24` |\n| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.5.0` | `25.6.0` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.57.1` | `8.58.1` |\n| [@unhead/vue](https://github.com/unjs/unhead/tree/HEAD/packages/vue) | `2.1.12` | `2.1.13` |\n| [@vercel/nft](https://github.com/vercel/nft) | `1.4.0` | `1.5.0` |\n| [@vue/devtools-core](https://github.com/vuejs/devtools/tree/HEAD/packages/core) | `8.1.0` | `8.1.1` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [bare-fs](https://github.com/holepunchto/bare-fs) | `4.5.6` | `4.7.0` |\n| [bare-os](https://github.com/holepunchto/bare-os) | `3.8.0` | `3.8.7` |\n| [bare-stream](https://github.com/holepunchto/bare-stream) | `2.10.0` | `2.13.0` |\n| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) | `2.10.9` | `2.10.17` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.2.0` | `5.2.2` |\n| [browserslist](https://github.com/browserslist/browserslist) | `4.28.1` | `4.28.2` |\n| [c12](https://github.com/unjs/c12) | `3.3.3` | `3.3.4` |\n| [cookie-es](https://github.com/unjs/cookie-es) | `1.2.2` | `1.2.3` |\n| [css-declaration-sorter](https://github.com/Siilwyn/css-declaration-sorter) | `7.3.1` | `7.4.0` |\n| [cssnano](https://github.com/cssnano/cssnano) | `7.1.3` | `7.1.4` |\n| [devalue](https://github.com/sveltejs/devalue) | `5.6.4` | `5.7.1` |\n| [diff](https://github.com/kpdecker/jsdiff) | `8.0.3` | `8.0.4` |\n| [eslint-config-flat-gitignore](https://github.com/antfu/eslint-config-flat-gitignore) | `2.2.1` | `2.3.0` |\n| [eslint-flat-config-utils](https://github.com/antfu/eslint-flat-config-utils) | `3.0.2` | `3.1.0` |\n| [eslint-plugin-jsdoc](https://github.com/gajus/eslint-plugin-jsdoc) | `62.8.0` | `62.9.0` |\n| [file-type](https://github.com/sindresorhus/file-type) | `21.3.3` | `21.3.4` |\n| [fuse.js](https://github.com/krisk/Fuse) | `7.1.0` | `7.3.0` |\n| [get-tsconfig](https://github.com/privatenumber/get-tsconfig) | `4.13.6` | `4.13.7` |\n| [globby](https://github.com/sindresorhus/globby) | `16.1.1` | `16.2.0` |\n| [h3](https://github.com/h3js/h3) | `1.15.9` | `1.15.11` |\n| [launch-editor](https://github.com/yyx990803/launch-editor) | `2.13.1` | `2.13.2` |\n| [listhen](https://github.com/unjs/listhen) | `1.9.0` | `1.9.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.23` | `4.18.1` |\n| [netmask](https://github.com/rs/node-netmask) | `2.0.2` | `2.1.1` |\n| [nitropack](https://github.com/nitrojs/nitro) | `2.13.1` | `2.13.3` |\n| [node-releases](https://github.com/chicoxyzzy/node-releases) | `2.0.36` | `2.0.37` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.8` | `8.5.9` |\n| [regjsparser](https://github.com/jviereck/regjsparser) | `0.13.0` | `0.13.1` |\n| [seroval](https://github.com/lxsmnsyc/seroval) | `1.5.1` | `1.5.2` |\n| [side-channel-list](https://github.com/ljharb/side-channel-list) | `1.0.0` | `1.0.1` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.33.0` | `3.35.2` |\n| [srvx](https://github.com/h3js/srvx) | `0.11.12` | `0.11.15` |\n| [strtok3](https://github.com/Borewit/strtok3) | `10.3.4` | `10.3.5` |\n| [tar](https://github.com/isaacs/node-tar) | `7.5.12` | `7.5.13` |\n| [tinyexec](https://github.com/tinylibs/tinyexec) | `1.0.4` | `1.1.1` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [uqr](https://github.com/unjs/uqr) | `0.1.2` | `0.1.3` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.2` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.0` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |\n\n\nUpdates `@applemusic-like-lyrics/lyric` from 0.3.0 to 0.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/0309834a90cc9f489ef78cc4c6d6f6d18362e162\"\u003e\u003ccode\u003e0309834\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/amll-dev/applemusic-like-lyrics/issues/457\"\u003e#457\u003c/a\u003e from Linho1219/fix-type-error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/2fc5d2e19d7a2ce70501a347dec4f5f4f90fbfe2\"\u003e\u003ccode\u003e2fc5d2e\u003c/code\u003e\u003c/a\u003e fix: lyric 包 rust 侧适配 romanWord 可选\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/4fdd6a93839179f44891ba1b618c0b8b957ba0e0\"\u003e\u003ccode\u003e4fdd6a9\u003c/code\u003e\u003c/a\u003e chore: 添加 version plan\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/d862271aa1396b19b9a8bb4d8cd484a0df366270\"\u003e\u003ccode\u003ed862271\u003c/code\u003e\u003c/a\u003e fix: 修复 lyric 包 romanWord 类型\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/compare/core-bundle@0.3.0...@applemusic-like-lyrics/lyric@0.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/lyric\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@applemusic-like-lyrics/vue` from 0.2.0 to 0.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/releases\"\u003e\u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.0 - 兼容 NCM 3.0.0！原生音频可视化！\u003c/h2\u003e\n\u003cp\u003e匆忙做了兼容性支持，有部分功能消失了是因为暂时没找到合适的办法移植，敬请期待！\n当前版本开始会同时兼容 2.9.X 和 3.0.0+ 的网易云，不过未来的某一天可能会中断对 2.9.X 版本的支持，所以请大家尽快升级版本哦！\u003c/p\u003e\n\u003ch2\u003e关于 3.0.0 版本的歌词页面访问方式变化（重要）\u003c/h2\u003e\n\u003cp\u003e（如果你正在使用 2.9.X 版本的网易云，则没有变化）\n从新版开始，打开歌词页面的方法变更为点击右下角的苹果歌词图标：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/79507c04-d5c3-44fc-8632-9d99d12a0ee1\" alt=\"image\" /\u003e\n且如果需要退出歌词页面，则需要打开菜单并点击底部的“退出歌词页面”：\n\u003cimg src=\"https://github.com/Steve-xmh/applemusic-like-lyrics/assets/39523898/c6c417d9-2c6b-455f-87c1-0d9dde292cc0\" alt=\"image\" /\u003e\u003c/p\u003e\n\u003cp\u003e以下是更新记录：\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e兼容 3.0.0 网易云，有一部分功能由于 3.0.0 架构大改暂时被移除。\u003c/li\u003e\n\u003cli\u003e支持 3.0.0 提供的音频可视化接口实现可视化动画。\u003c/li\u003e\n\u003cli\u003e重构背景渲染中，目前会对性能较差的显卡造成降维打击，还请多多注意！\u003c/li\u003e\n\u003cli\u003e部分细节优化。\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1 (v1.6.0)\u003c/h2\u003e\n\u003ch2\u003e更新\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e基本实现了私人 FM 的歌词显示\u003c/li\u003e\n\u003cli\u003e初步支持和实现和 \u003ca href=\"https://github.com/BetterNCM/LibFrontendPlay\"\u003eLibFrontendPlay\u003c/a\u003e 插件联动的音频可视化效果\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e修正与改进\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e现在会在逐词歌词和默认歌词之间选择合适的原始歌词了\u003c/li\u003e\n\u003cli\u003e缓解了因为回调问题导致歌词无法滚动的问题\u003c/li\u003e\n\u003cli\u003e修正了歌手和专辑标签无法隐藏的问题\u003c/li\u003e\n\u003cli\u003e调优了构建脚本\u003c/li\u003e\n\u003cli\u003e调优了开发重载能力\u003c/li\u003e\n\u003cli\u003e防止搜索函数搜索到自身\u003c/li\u003e\n\u003cli\u003e用 Rome 做了一遍格式化\u003c/li\u003e\n\u003cli\u003e似乎也不再需要 Hook 函数了\u003c/li\u003e\n\u003cli\u003e对工作线程做了一些特判\u003c/li\u003e\n\u003cli\u003e整理了代码结构\u003c/li\u003e\n\u003cli\u003e其他细节修正\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e最新 main 分支开发调试构建\u003c/h2\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4e586361026cd31b79d7d60ce41a6d3c5106d666\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f9fa644e4726d5dec5f661036aa0a22cac58fa22\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正工作流 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f090519d8393abb8fff76ed048e68b432917f214\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e修正顶栏 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/44ada57bc07f57f532bb7289c1dd0d42b7acb542\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加文档页面列表 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c2115fee0a4a0653c238ec125d13ea5d86e3b00\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加代码高亮，修改排版和样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6b1c1f9deabfce77b4b218cf1bae84e24d44c871\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加表格和其他样式支持 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/a47b5db16ccf67d31185457188292d9247d45a10\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e优化样式 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/6c91b4b70a75e69635e7ee62b11d45de8caafa3e\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e增加歌词编辑器文档（感谢 \u003ca href=\"https://github.com/Xionghaizi001\"\u003e\u003ccode\u003e@​Xionghaizi001\u003c/code\u003e\u003c/a\u003e ） (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/4cddb8666f83da2d256127ba1fab694e03311216\"\u003eSteve-xmh\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCommits\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e解耦部分模块 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/804a0de7b6626b4982c55a2f0a875e2274423406\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e支持调节背景帧数和渲染精度 (\u003ca href=\"https://github.com/Steve-xmh/applemusic-like-lyrics/commit/f4dd4e1eada165482c76fa3d73290118fd3b1c55\"\u003eSteveXMH\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/1a0803d465c230ac0ad46f70d85080d4debaf170\"\u003e\u003ccode\u003e1a0803d\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/cbd600c9a21d1d69d44bcd6b1e7fe84027c65d43\"\u003e\u003ccode\u003ecbd600c\u003c/code\u003e\u003c/a\u003e chore(release): publish\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commit/edf3b6a236ebba4fbfd195a2a357ee9b432cdeec\"\u003e\u003ccode\u003eedf3b6a\u003c/code\u003e\u003c/a\u003e ci: 覆盖自动推断行为\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/amll-dev/applemusic-like-lyrics/commits/core-bundle@0.3.2/packages/vue\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​applemusic-like-lyrics/vue\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@neteasecloudmusicapienhanced/api` from 4.30.3 to 4.31.0\n\nUpdates `@types/pg` from 8.18.0 to 8.20.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/pg\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.6 to 1.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.0\u003c/h2\u003e\n\u003cp\u003eThis release delivers two critical security patches, adds runtime support for Deno and Bun, and includes significant CI hardening, documentation improvements, and routine dependency updates.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecation:\u003c/strong\u003e \u003ccode\u003eurl.parse()\u003c/code\u003e usage has been replaced to address Node.js deprecation warnings. If you are on a recent version of Node.js, this resolves console warnings you may have been seeing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed a \u003ccode\u003eno_proxy\u003c/code\u003e hostname normalisation bypass that could lead to Server-Side Request Forgery (SSRF). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHeader Injection:\u003c/strong\u003e Fixed an unrestricted cloud metadata exfiltration vulnerability via a header injection chain. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10660\"\u003e#10660\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Support:\u003c/strong\u003e Added compatibility checks and documentation for Deno and Bun environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10652\"\u003e#10652\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10653\"\u003e#10653\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Security:\u003c/strong\u003e Hardened workflow permissions to least privilege, added the \u003ccode\u003ezizmor\u003c/code\u003e security scanner, pinned action versions, and gated npm publishing with OIDC and environment protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10618\"\u003e#10618\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10619\"\u003e#10619\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10627\"\u003e#10627\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10637\"\u003e#10637\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eserialize-javascript\u003c/code\u003e, \u003ccode\u003ehandlebars\u003c/code\u003e, \u003ccode\u003epicomatch\u003c/code\u003e, \u003ccode\u003evite\u003c/code\u003e, and \u003ccode\u003edenoland/setup-deno\u003c/code\u003e to latest versions. Added a 7-day Dependabot cooldown period. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10574\"\u003e#10574\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10572\"\u003e#10572\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10568\"\u003e#10568\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10616\"\u003e#10616\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocumentation:\u003c/strong\u003e Unified docs, improved \u003ccode\u003ebeforeRedirect\u003c/code\u003e credential leakage example, clarified \u003ccode\u003ewithCredentials\u003c/code\u003e/\u003ccode\u003ewithXSRFToken\u003c/code\u003e behaviour, HTTP/2 support notes, async/await timeout error handling, header case preservation, and various typo fixes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10649\"\u003e#10649\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7471\"\u003e#7471\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10654\"\u003e#10654\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10644\"\u003e#10644\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHousekeeping:\u003c/strong\u003e Removed stale files, regenerated lockfile, and updated sponsor scripts and blocks. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10584\"\u003e#10584\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10650\"\u003e#10650\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10582\"\u003e#10582\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10640\"\u003e#10640\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10659\"\u003e#10659\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Added regression coverage for urlencoded \u003ccode\u003eContent-Type\u003c/code\u003e casing. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve Axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/raashish1601\"\u003e\u003ccode\u003e@​raashish1601\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10573\"\u003e#10573\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Kilros0817\"\u003e\u003ccode\u003e@​Kilros0817\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10625\"\u003e#10625\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/ashstrc\"\u003e\u003ccode\u003e@​ashstrc\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10624\"\u003e#10624\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Abhi3975\"\u003e\u003ccode\u003e@​Abhi3975\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10589\"\u003e#10589\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/theamodhshetty\"\u003e\u003ccode\u003e@​theamodhshetty\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7452\"\u003e#7452\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.14.0\u003c/h2\u003e\n\u003cp\u003eThis release focuses on compatibility fixes, adapter stability improvements, and test/tooling modernisation.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBreaking Changes:\u003c/strong\u003e None identified in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAction Required:\u003c/strong\u003e If you rely on env-based proxy behaviour or CJS resolution edge-cases, validate your integration after upgrade (notably \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 alignment and \u003ccode\u003emain\u003c/code\u003e entry compatibility fix).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRuntime Features:\u003c/strong\u003e No new end-user features were introduced in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTest Coverage Expansion:\u003c/strong\u003e Added broader smoke/module test coverage for CJS and ESM package usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7510\"\u003e#7510\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e Trim trailing CRLF in normalised header values. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7456\"\u003e#7456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP/2:\u003c/strong\u003e Close detached HTTP/2 sessions on timeout to avoid lingering sessions. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7457\"\u003e#7457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Cancel \u003ccode\u003eReadableStream\u003c/code\u003e created during request-stream capability probing to prevent async resource leaks. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7515\"\u003e#7515\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Handling:\u003c/strong\u003e Fixed env proxy behavior with \u003ccode\u003eproxy-from-env\u003c/code\u003e v2 usage. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7499\"\u003e#7499\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7201) [#7201](https://github.com/axios/axios/issues/7201) )\"\u003ecodenomnom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Nandann018-ux\" title=\"+60/-10 ([#7272](https://github.com/axios/axios/issues/7272) )\"\u003eNandan Acharya\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/KernelDeimos\" title=\"+22/-40 ([#7042](https://github.com/axios/axios/issues/7042) )\"\u003eEric Dubé\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/tiborpilz\" title=\"+40/-4 ([#5551](https://github.com/axios/axios/issues/5551) )\"\u003eTibor Pilz\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/joaoGabriel55\" title=\"+31/-4 ([#6314](https://github.com/axios/axios/issues/6314) )\"\u003eGabriel Quaresma\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/turadg\" title=\"+23/-6 ([#6265](https://github.com/axios/axios/issues/6265) )\"\u003eTuradg Aleahmad\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/772a4e54ecc4cc2421e2b746daff0aca10f359d7\"\u003e\u003ccode\u003e772a4e5\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.15.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10671\"\u003e#10671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4b071371be2f810b4bc7797a13838e0f806ebb22\"\u003e\u003ccode\u003e4b07137\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.0 to 8.0.5 in /tests/smoke/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10663\"\u003e#10663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/51e57b39db251bfe3d34af5c943dfea18e06c8b6\"\u003e\u003ccode\u003e51e57b3\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10664\"\u003e#10664\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fba1a77930f0c459677b729161627234b88c90aa\"\u003e\u003ccode\u003efba1a77\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump vite from 8.0.2 to 8.0.5 in /tests/module/esm (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10665\"\u003e#10665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0bf6e28eac86e87da2b60bbf5ea4237910e1a08e\"\u003e\u003ccode\u003e0bf6e28\u003c/code\u003e\u003c/a\u003e chore(deps): bump denoland/setup-deno in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10669\"\u003e#10669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8107157c572ee4a54cb28c01ab7f7f3d895ba661\"\u003e\u003ccode\u003e8107157\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the development_dependencies group with 4 updates (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10670\"\u003e#10670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e66530e3302d56176befd0778155dafea2487542\"\u003e\u003ccode\u003ee66530e\u003c/code\u003e\u003c/a\u003e ci: require npm-publish environment for releases (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10666\"\u003e#10666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/49f23cbfe4d308a075281c5f798d4c68f648cbe2\"\u003e\u003ccode\u003e49f23cb\u003c/code\u003e\u003c/a\u003e chore(sponsor): update sponsor block (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10668\"\u003e#10668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/363185461b90b1b78845dc8a99a1f103d9b122a1\"\u003e\u003ccode\u003e3631854\u003c/code\u003e\u003c/a\u003e fix: unrestricted cloud metadata exfiltration via header injection chain (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10\"\u003e#10\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/fb3befb6daac6cad26b2e54094d0f2d9e47f24df\"\u003e\u003ccode\u003efb3befb\u003c/code\u003e\u003c/a\u003e fix: no_proxy hostname normalization bypass leads to ssrf (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10661\"\u003e#10661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.6...v1.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv` from 17.3.1 to 17.4.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md\"\u003edotenv's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.0...v17.4.1\"\u003e17.4.1\u003c/a\u003e (2026-04-05)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange text \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1005\"\u003e#1005\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.0\"\u003e17.4.0\u003c/a\u003e (2026-04-01)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eskills/\u003c/code\u003e folder with focused agent skills: \u003ccode\u003eskills/dotenv/SKILL.md\u003c/code\u003e (core usage) and \u003ccode\u003eskills/dotenvx/SKILL.md\u003c/code\u003e (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (\u003ccode\u003enpx skills add motdotla/dotenv\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTighten up logs: \u003ccode\u003e◇ injecting env (14) from .env\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1003\"\u003e#1003\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/48aa216de16846724e7bc80756fd42745116e4aa\"\u003e\u003ccode\u003e48aa216\u003c/code\u003e\u003c/a\u003e 17.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/e4282b0286703784f4c5f7fda6c0e30739aead77\"\u003e\u003ccode\u003ee4282b0\u003c/code\u003e\u003c/a\u003e changelog 🪵\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/c540e75d3cfde551865be9bdcb0218fbfffc9229\"\u003e\u003ccode\u003ec540e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1006\"\u003e#1006\u003c/a\u003e from motdotla/skills-update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/5626f9b07e49a353b1fdf35077ea58d1d080cbdc\"\u003e\u003ccode\u003e5626f9b\u003c/code\u003e\u003c/a\u003e dotenvx skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/2411f2a61b0c957b0756942c2d6e4ba572e0fd3d\"\u003e\u003ccode\u003e2411f2a\u003c/code\u003e\u003c/a\u003e update dotenvx skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/1e08a70b6e5a5e55d974a46bca87bd35cf3807e4\"\u003e\u003ccode\u003e1e08a70\u003c/code\u003e\u003c/a\u003e simplify dotenv skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/747f4171feb7364993465915a8cd8929cef0e0cb\"\u003e\u003ccode\u003e747f417\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1005\"\u003e#1005\u003c/a\u003e from motdotla/injected\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/271df30f90869c04c666d8652895a909c097fea7\"\u003e\u003ccode\u003e271df30\u003c/code\u003e\u003c/a\u003e changelog 🪵\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/3f01a8b61addc4e6978f2c40b0147f6812e2f64b\"\u003e\u003ccode\u003e3f01a8b\u003c/code\u003e\u003c/a\u003e \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/ccc50d50d9e398a0b20355748e710852e1db5d07\"\u003e\u003ccode\u003eccc50d5\u003c/code\u003e\u003c/a\u003e update\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `drizzle-orm` from 0.45.1 to 0.45.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/releases\"\u003edrizzle-orm's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.45.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esql.identifier()\u003c/code\u003e, \u003ccode\u003esql.as()\u003c/code\u003e escaping issues. Previously all the values passed to this functions were not properly escaped\ncausing a possible SQL Injection (CWE-89) vulnerability\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/EthanKim88\"\u003e\u003ccode\u003e@​EthanKim88\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/0x90sh\"\u003e\u003ccode\u003e@​0x90sh\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/wgoodall01\"\u003e\u003ccode\u003e@​wgoodall01\u003c/code\u003e\u003c/a\u003e for reaching out to us with a reproduction and suggested fix\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/273c78071d4841b497f5144734b38294df7ec64b\"\u003e\u003ccode\u003e273c780\u003c/code\u003e\u003c/a\u003e + 0.45.2 (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5534\"\u003e#5534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/4aa6ecfee4b4728dadf6f77f071a149878a3c6c0\"\u003e\u003ccode\u003e4aa6ecf\u003c/code\u003e\u003c/a\u003e Kit updates (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5490\"\u003e#5490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drizzle-team/drizzle-orm/commit/e8e6edfef5ca69c6188d320388ad440265911057\"\u003e\u003ccode\u003ee8e6edf\u003c/code\u003e\u003c/a\u003e feat(drizzle-kit): support d1 via binding (\u003ca href=\"https://redirect.github.com/drizzle-team/drizzle-orm/issues/5302\"\u003e#5302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/drizzle-team/drizzle-orm/compare/0.45.1...0.45.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash-es` from 4.17.23 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash-es's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postgres` from 3.4.8 to 3.4.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/porsager/postgres/releases\"\u003epostgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.4.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e  1e92809\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ehttps://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/e7dfa14519f363229ccc3ead7b1b2f2051937efb\"\u003e\u003ccode\u003ee7dfa14\u003c/code\u003e\u003c/a\u003e 3.4.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/cc29931aa1280fc62b9452647a48a89fe5d443a2\"\u003e\u003ccode\u003ecc29931\u003c/code\u003e\u003c/a\u003e build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/porsager/postgres/commit/1e92809e79dda7873d96646403c068cd6998ea73\"\u003e\u003ccode\u003e1e92809\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/porsager/postgres/issues/1143\"\u003eporsager/postgres#1143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/porsager/postgres/compare/v3.4.8...v3.4.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `sass` from 1.98.0 to 1.99.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/releases\"\u003esass's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDart Sass 1.99.0\u003c/h2\u003e\n\u003cp\u003eTo install Sass 1.99.0, download one of the packages below and \u003ca href=\"https://katiek2.github.io/path-doc/\"\u003eadd it to your PATH\u003c/a\u003e, or see \u003ca href=\"https://sass-lang.com/install\"\u003ethe Sass website\u003c/a\u003e for full installation instructions.\u003c/p\u003e\n\u003ch1\u003eChanges\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are emitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping root\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If such a function exists without a namespace in the current module, it will be used instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e, \u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were originally intended to match vendor prefixes, but in practice no vendor prefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some lowercase letters are now deprecated, These are names conflict with plain CSS functions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now, these calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are deprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/sass/dart-sass/blob/master/CHANGELOG.md#1990\"\u003efull changelog\u003c/a\u003e for changes in earlier releases.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/dart-sass/blob/main/CHANGELOG.md\"\u003esass's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.99.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for parent selectors (\u003ccode\u003e\u0026amp;\u003c/code\u003e) at the root of the document. These are\nemitted as-is in the CSS output, where they're interpreted as \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/CSS/Reference/Selectors/Nesting_selector#using_outside_nested_rule\"\u003ethe scoping\nroot\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003ecalc\u003c/code\u003e or \u003ccode\u003eclamp\u003c/code\u003e are no longer forbidden. If\nsuch a function exists without a namespace in the current module, it will be\nused instead of the built-in \u003ccode\u003ecalc()\u003c/code\u003e or \u003ccode\u003eclamp()\u003c/code\u003e function.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-expression\u003c/code\u003e,\n\u003ccode\u003e-url\u003c/code\u003e, \u003ccode\u003e-and\u003c/code\u003e, \u003ccode\u003e-or\u003c/code\u003e, or \u003ccode\u003e-not\u003c/code\u003e are no longer forbidden. These were\noriginally intended to match vendor prefixes, but in practice no vendor\nprefixes for these functions ever existed in real browsers.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUser-defined functions named \u003ccode\u003eEXPRESSION\u003c/code\u003e, \u003ccode\u003eURL\u003c/code\u003e, and \u003ccode\u003eELEMENT\u003c/code\u003e, those that\nbegin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-ELEMENT\u003c/code\u003e, as well as the same names with some\nlowercase letters are now deprecated, These are names conflict with plain CSS\nfunctions that have special syntax.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eIn a future release, calls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end\nwith \u003ccode\u003e-expression\u003c/code\u003e and \u003ccode\u003e-url\u003c/code\u003e will no longer have special parsing. For now,\nthese calls are deprecated if their behavior will change in the future.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCalls to functions whose names begin with \u003ccode\u003e-\u003c/code\u003e and end with \u003ccode\u003e-progid:...\u003c/code\u003e are\ndeprecated.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://sass-lang.com/d/function-name\"\u003ethe Sass website\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/83c39fec93ab0dc183a46cff2bc468999ce53e20\"\u003e\u003ccode\u003e83c39fe\u003c/code\u003e\u003c/a\u003e Support the top-level parent selector (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2758\"\u003e#2758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/ec85871864ca16f8045e66ad329bd462e791bfa1\"\u003e\u003ccode\u003eec85871\u003c/code\u003e\u003c/a\u003e Bump EndBug/add-and-commit from 9 to 10 (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2756\"\u003e#2756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/dart-sass/commit/a604acd19ad2ce31ef2efe9aa5950b0c5fcc74a9\"\u003e\u003ccode\u003ea604acd\u003c/code\u003e\u003c/a\u003e [Function Name] Implement changes (\u003ca href=\"https://redirect.github.com/sass/dart-sass/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/sass/dart-sass/compare/1.98.0...1.99.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite-plugin-glsl` from 1.5.6 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/UstymUkhman/vite-plugin-glsl/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vue` from 3.5.30 to 3.5.32\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/releases\"\u003evue's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.32\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003ch2\u003ev3.5.31\u003c/h2\u003e\n\u003cp\u003eFor stable releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\nFor pre-releases, please refer to \u003ca href=\"https://github.com/vuejs/core/blob/minor/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e of the \u003ccode\u003eminor\u003c/code\u003e branch.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vuejs/core/blob/main/CHANGELOG.md\"\u003evue's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.31...v3.5.32\"\u003e3.5.32\u003c/a\u003e (2026-04-03)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent currentInstance leak into sibling render during async setup re-entry (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14668\"\u003e#14668\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/f1663535a163057788d3285dec54a245c3efb3ad\"\u003ef166353\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14667\"\u003e#14667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eteleport:\u003c/strong\u003e handle updates before deferred mount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14642\"\u003e#14642\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/32b44f19f67aa30899817a7e79a4510f3b52970a\"\u003e32b44f1\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14640\"\u003e#14640\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e allow customRef to have different getter/setter types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14639\"\u003e#14639\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/e20ddb00188e9935884930046fa572eab7c9dcba\"\u003ee20ddb0\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e use private branding for shallowReactive (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14641\"\u003e#14641\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/302c47a4994bc8b47b8a2af6693d8cb6bbd4b06b\"\u003e302c47a\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14638\"\u003e#14638\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14493\"\u003e#14493\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix(server-renderer): cleanup component effect scopes after SSR render\u0026quot; (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14674\"\u003e#14674\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/219d83bd305ce6fc052941acaaf02e7bc70616a4\"\u003e219d83b\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14674\"\u003e#14674\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14669\"\u003e#14669\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vuejs/core/compare/v3.5.30...v3.5.31\"\u003e3.5.31\u003c/a\u003e (2026-03-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecompiler-sfc:\u003c/strong\u003e allow Node.js subpath imports patterns in asset urls (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/13045\"\u003e#13045\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/95c33560c9af369d44a7670d0c3b93fb62323be2\"\u003e95c3356\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/9919\"\u003e#9919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecompiler-sfc:\u003c/strong\u003e support template literal as defineModel name (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14622\"\u003e#14622\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/bd7eef0161d69bccd48ac303bc6a56ba8d718e2d\"\u003ebd7eef0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14621\"\u003e#14621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ereactivity:\u003c/strong\u003e normalize toRef property keys before dep lookup + improve types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14625\"\u003e#14625\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/1bb28d011b31bc75c80d2860bc6484cceec1ff20\"\u003e1bb28d0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12427\"\u003e#12427\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12431\"\u003e#12431\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e invalidate detached v-for memo vnodes after unmount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14624\"\u003e#14624\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/560def426fc38c1710fda7ddd1ac634d67897960\"\u003e560def4\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12708\"\u003e#12708\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12710\"\u003e#12710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e preserve nullish event handlers in mergeProps (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14550\"\u003e#14550\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/5725222a6bc5d1dd032318349ce0c540b1d63a49\"\u003e5725222\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-core:\u003c/strong\u003e prevent merging model listener when value is null or undefined (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14629\"\u003e#14629\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/b39e0329f67354702f4e417e55c15c61d2439657\"\u003eb39e032\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-dom:\u003c/strong\u003e defer teleport mount/update until suspense resolves (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/8619\"\u003e#8619\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/88ed04501555b9257df8d7ad86d844c2c2136e50\"\u003e88ed045\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/8603\"\u003e#8603\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eruntime-dom:\u003c/strong\u003e handle activeElement check in Shadow DOM for v-model (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14196\"\u003e#14196\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/959ded22ab7ea1453f607e0964e1fb6748ece6c7\"\u003e959ded2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eserver-renderer:\u003c/strong\u003e cleanup component effect scopes after SSR render (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14548\"\u003e#14548\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/862f11ee017d51cb9573a8c0642055b3b17cace8\"\u003e862f11e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esuspense:\u003c/strong\u003e avoid unmount activeBranch twice if wrapped in transition (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/9392\"\u003e#9392\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/908c6ad05e1c76ae690d2e50f3bd28278af07e22\"\u003e908c6ad\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/7966\"\u003e#7966\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esuspense:\u003c/strong\u003e update suspense vnode's el during branch self-update (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/12922\"\u003e#12922\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/a2c17004c84e5ce3c4e82e35b806ba381144eed3\"\u003ea2c1700\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/12920\"\u003e#12920\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etransition:\u003c/strong\u003e skip enter guard while hmr updating (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14611\"\u003e#14611\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/be0a2f1a7fc3d81d05638798cc628848cfa62cef\"\u003ebe0a2f1\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14608\"\u003e#14608\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e prevent shallowReactive marker from leaking into value unions (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14493\"\u003e#14493\u003c/a\u003e) (\u003ca href=\"https://github.com/vuejs/core/commit/3b561db4ab42d06166b002f13c0e97cb2bd4a061\"\u003e3b561db\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vuejs/core/issues/14490\"\u003e#14490\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/9a2eb53bc03be1f4c8ea109f6bab157c54813765\"\u003e\u003ccode\u003e9a2eb53\u003c/code\u003e\u003c/a\u003e release: v3.5.32\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/32b44f19f67aa30899817a7e79a4510f3b52970a\"\u003e\u003ccode\u003e32b44f1\u003c/code\u003e\u003c/a\u003e fix(teleport): handle updates before deferred mount (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14642\"\u003e#14642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/f1663535a163057788d3285dec54a245c3efb3ad\"\u003e\u003ccode\u003ef166353\u003c/code\u003e\u003c/a\u003e fix(runtime-core): prevent currentInstance leak into sibling render during as...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/302c47a4994bc8b47b8a2af6693d8cb6bbd4b06b\"\u003e\u003ccode\u003e302c47a\u003c/code\u003e\u003c/a\u003e fix(types): use private branding for shallowReactive (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14641\"\u003e#14641\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/e20ddb00188e9935884930046fa572eab7c9dcba\"\u003e\u003ccode\u003ee20ddb0\u003c/code\u003e\u003c/a\u003e fix(types): allow customRef to have different getter/setter types (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14639\"\u003e#14639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/219d83bd305ce6fc052941acaaf02e7bc70616a4\"\u003e\u003ccode\u003e219d83b\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;fix(server-renderer): cleanup component effect scopes after SSR rende...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/fa23116437250b3fdec41112f276211cb284136e\"\u003e\u003ccode\u003efa23116\u003c/code\u003e\u003c/a\u003e chore: fix typos in changelogs (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14653\"\u003e#14653\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/81615d398a89beeccfe56a4a96fd2fba0c6fb37b\"\u003e\u003ccode\u003e81615d3\u003c/code\u003e\u003c/a\u003e release: v3.5.31\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/3b561db4ab42d06166b002f13c0e97cb2bd4a061\"\u003e\u003ccode\u003e3b561db\u003c/code\u003e\u003c/a\u003e fix(types): prevent shallowReactive marker from leaking into value unions (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vuejs/core/commit/1b2aca4f38aaec3da4f316256e8364a13f2554d7\"\u003e\u003ccode\u003e1b2aca4\u003c/code\u003e\u003c/a\u003e chore: ignore entities updates in renovate (\u003ca href=\"https://redirect.github.com/vuejs/core/issues/14630\"\u003e#14630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vuejs/core/compare/v3.5.30...v3.5.32\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `prettier` from 3.8.1 to 3.8.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/prettier/prettier/releases\"\u003eprettier's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.8.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport Angular v21.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e🔗 \u003ca href=\"https://github.com/prettier/prettier/blob/main/CHANGELOG.md#382\"\u003eChangelog\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/prettier/prettier/blob/main/CHANGELOG.md\"\u003eprettier's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e3.8.2\u003c/h1\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/prettier/prettier/compare/3.8.1...3.8.2\"\u003ediff\u003c/a\u003e\u003c/p\u003e\n\u003ch4\u003eAngular: Support Angular v21.2 (\u003ca href=\"https://redirect.github.com/prettier/prettier/pull/18722\"\u003e#18722\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/prettier/pret...\n\n_Description has been truncated_","html_url":"https://github.com/qinchunhuan/VoiceHub-fb544/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/qinchunhuan%2FVoiceHub-fb544/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"}}]}