Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

build(deps): bump the dependencies group across 1 directory with 16 updates

Closed
Number: #21
Type: Pull Request
State: Closed
Author: dependabot[bot] dependabot[bot]
Association: None
Comments: 2
Created: August 11, 2025 at 07:08 AM UTC
(27 days ago)
Updated: August 18, 2025 at 04:59 AM UTC
(20 days ago)
Closed: August 18, 2025 at 04:59 AM UTC
(20 days ago)
Time to Close: 7 days
Description:

Bumps the dependencies group with 16 updates in the /packages/toolprint-sdk directory:

Package From To
@blaxel/core 0.2.18 0.2.27
@composio/mcp 1.0.7 1.0.9
@modelcontextprotocol/sdk 1.13.2 1.17.2
@smithery/sdk 1.5.2 1.5.5
cache-manager 6.4.3 7.1.1
cacheable 1.10.0 1.10.3
chalk 5.4.1 5.5.0
eventsource 3.0.7 4.0.0
keyv 5.3.4 5.5.0
yaml 2.8.0 2.8.1
zod 3.24.2 4.0.17
@types/node 22.13.4 24.2.1
dotenv 16.4.7 17.2.1
eslint 9.21.0 9.33.0
@types/eslint 8.56.12 9.6.1
rollup 4.34.9 4.46.2

Updates @blaxel/core from 0.2.18 to 0.2.27

Commits

Updates @composio/mcp from 1.0.7 to 1.0.9

Updates @modelcontextprotocol/sdk from 1.13.2 to 1.17.2

Release notes

Sourced from @​modelcontextprotocol/sdk's releases.

1.17.2

What's Changed

Full Changelog: https://github.com/modelcontextprotocol/typescript-sdk/compare/1.17.1...1.17.2

1.17.1

What's Changed

Full Changelog: https://github.com/modelcontextprotocol/typescript-sdk/compare/1.17.0...1.17.1

1.17.0

What's Changed

New Contributors 🙏

Full Changelog: https://github.com/modelcontextprotocol/typescript-sdk/compare/1.16.0...1.17.0

1.16.0

What's Changed

New Contributors 🙏

... (truncated)

Commits
  • a1608a6 1.17.2 (#855)
  • f657ead fix: retry next endpoint on CORS error during auth server discovery (#827)
  • 0551cc5 1.17.1 (#831)
  • 31acdcb fix: prevent responses being sent to wrong client when multiple transports co...
  • ee16173 (fix): Update fallbackRequestHandler type to match _requestHandlers leaves ty...
  • 222db4a Bump version 1.17.0 (#810)
  • b8ec665 Bump form-data from 4.0.2 to 4.0.4 in the npm_and_yarn group across 1 directo...
  • 1fc452e fix: remove extraneous code block in README.md (#791)
  • bb7cccc feat: support oidc discovery in client sdk (#652)
  • 62c608d fix: Explicitly declare accpet type to json when exchanging oauth token (#801)
  • Additional commits viewable in compare view

Updates @smithery/sdk from 1.5.2 to 1.5.5

Updates cache-manager from 6.4.3 to 7.1.1

Commits

Updates cacheable from 1.10.0 to 1.10.3

Commits

Updates chalk from 5.4.1 to 5.5.0

Release notes

Sourced from chalk's releases.

v5.5.0

  • Make Ghostty terminal use true color (#653) 79ee2d3

https://github.com/chalk/chalk/compare/v5.4.1...v5.5.0

Commits

Updates eventsource from 3.0.7 to 4.0.0

Release notes

Sourced from eventsource's releases.

v4.0.0

4.0.0 (2025-05-13)

⚠ BREAKING CHANGES

  • FetchLikeInit is now removed. Use EventSourceFetchInit.
  • Drop support for Node.js v18, as it is end-of-life.

Features

  • require node.js v20 or higher (91a3a48)

Bug Fixes

  • drop FetchLikeInit type. Use EventSourceFetchInit instead. (6786e46)

This release is also available on:

Changelog

Sourced from eventsource's changelog.

4.0.0 (2025-05-13)

⚠ BREAKING CHANGES

  • FetchLikeInit is now removed. Use EventSourceFetchInit.
  • Drop support for Node.js v18, as it is end-of-life.

Features

  • require node.js v20 or higher (91a3a48)

Bug Fixes

  • drop FetchLikeInit type. Use EventSourceFetchInit instead. (6786e46)
Commits
  • d4385cb chore(release): 4.0.0 [skip ci]
  • 3057f3a docs: update migration guide
  • 6786e46 fix!: drop FetchLikeInit type. Use EventSourceFetchInit instead.
  • 91a3a48 feat!: require node.js v20 or higher
  • 54fbb3e chore(deps): upgrade dev dependencies to latest versions
  • See full diff in compare view

Updates keyv from 5.3.4 to 5.5.0

Commits

Updates yaml from 2.8.0 to 2.8.1

Release notes

Sourced from yaml's releases.

v2.8.1

  • Preserve empty block literals (#634)
Commits
  • 1dc3c3b 2.8.1
  • 5bbb1cb chore: Add explicit jest-resolve@29 dev dependency to keep Node.js 15 compati...
  • b3ba632 chore: Refresh lockfile
  • de8a0ab fix: Preserve empty block literals (#634)
  • 81eb3bf docs: Update site intro
  • ef23196 docs: Update README & docs/CONTRIBUTING
  • aa29f42 docs: Note that schema can be a Schema
  • cad823e docs: Update instructions on vulnerability reporting
  • See full diff in compare view

Updates zod from 3.24.2 to 4.0.17

Release notes

Sourced from zod's releases.

v4.0.17

Commits:

  • 1cebf336c560c87e6f806b9d02106fb623049f21 Add blog (#5074)
  • fc1e556318159b4740ba3d6b37660e783d2a3cb7 Fixes #5073
  • cc63f950158db212c5e9b75e7d22faca851ea624 v4.0.17

v4.0.16

Commits:

  • d589186c20c3dc112f5a5fda23cccd4d1f74420e fix: ensure keyof returns enum (#5045)
  • 4975f3a0e9c9f0b241499d936a02f1998c66dc01 feat: add discriminator generic (#5044)
  • 0a463e38e7f77b8036628ff911de515f9f9f6662 Update speakeasy files
  • 12658aff60349a87972a782b64802ec901c5ebf2 Fix Edit page buttons
  • 47e6604a3555811115d05bf41e50de54192e2e14 fix: edit this page button, now redirects to correct url using the new path (#5056)
  • 7207a2df38caaae910551b7ecf04941b00fc10c8 Update Hey API link to Zod v3 plugin (#5060)
  • 6887ff34fb9bf5f6769152cf62ba9b69fa378aac Update Hey API link to Zod plugin (#5059)
  • ffff1aac6a9a88fe6e7ad2659dbc7743275ea052 Clone POJO objects during defaulting/prefaulting
  • a227cb3bd22aba48412a0129650b86277adc3545 v4.0.16

v4.0.15

Commits:

  • 7e7e3461aceecf3633e158df50d6bc852e7cdf45 Clean up docs
  • f2949a81a06fe197c53e47c1fab024cebbd7f1f1 [docs] Fix migration guide upgrade command (#5021)
  • d43cf19d5cafd505f2f8e76f13e18564470f0696 Fix recursive object initialization errors with check() and other methods (#5018)
  • 3de2b6389a57a093f11ecf1820f31e5b4452c7e9 fix: remove redundant Required<> from input and output type definitions (#5033)
  • 93553bd48aeac27fdeb7dcbee5b7e37628572aff Add needs info
  • 03cfa8d9367c56d8c29870a83af10edc91eba34a 4.0.15

v4.0.14

Commits:

  • 99391a844271558e0f1736c9550375e82e630bbd Docs: Fix typo (#5005)
  • e25303e98c8d13ea96c3296507c564011f403ffe Docs: fix typo (#5008)
  • dbb05ef990c86ec6b1f6eac11b91ec7572e29c89 Add JSON Schema draft-04 output (#4811)
  • b8257d7d1f51dd3cb4033a58271bb6ac8e3678c7 Improve tuple recursive inference.
  • 9bdbc2f10d466050421a8e28c4b95a8a5776d150 Avoid infinite loops in defineLazy. Fixes #4994.
  • af96ad4700879b0d6e390a0c65ded4e700049cb9 4.0.14

v4.0.13

Commits:

  • 362eb33093e9c5f306eeec95e36985a99aba8fc7 Fix optional + pipe handling. Closes #5002. v4.0.13

v4.0.12

Commits:

  • ff83fc916ec2b35c0008a48782fa14f84293149d Add eslint-plugin-import-zod (#4848)
  • 7c9ce388ae39b2324c5ad05420ecf4732ebca6fe Update docs for z.property check (#4863)

... (truncated)

Commits

Updates @types/node from 22.13.4 to 24.2.1

Commits

Updates dotenv from 16.4.7 to 17.2.1

Changelog

Sourced from dotenv's changelog.

17.2.1 (2025-07-24)

Changed

  • Fix clickable tip links by removing parentheses (#897)

17.2.0 (2025-07-09)

Added

  • Optionally specify DOTENV_CONFIG_QUIET=true in your environment or .env file to quiet the runtime log (#889)
  • Just like dotenv any DOTENV_CONFIG_ environment variables take precedence over any code set options like ({quiet: false})
# .env
DOTENV_CONFIG_QUIET=true
HELLO="World"

// index.js
require('dotenv').config()
console.log(`Hello ${process.env.HELLO}`)

$ node index.js
Hello World

or


$ DOTENV_CONFIG_QUIET=true node index.js

17.1.0 (2025-07-07)

Added

  • Add additional security and configuration tips to the runtime log (#884)
  • Dim the tips text from the main injection information text
const TIPS = [
  '🔐 encrypt with dotenvx: https://dotenvx.com',
  '🔐 prevent committing .env to code: https://dotenvx.com/precommit',
  '🔐 prevent building .env in docker: https://dotenvx.com/prebuild',
  '🛠️  run anywhere with `dotenvx run -- yourcommand`',
  '⚙️  specify custom .env file path with { path: \'/custom/path/.env\' }',
  '⚙️  enable debug logging with { debug: true }',
  '⚙️  override existing env vars with { override: true }',
  '⚙️  suppress all logs with { quiet: true }',
  '⚙️  write to custom object with { processEnv: myObject }',
</tr></table>

... (truncated)

Commits

Updates eslint from 9.21.0 to 9.33.0

Release notes

Sourced from eslint's releases.

v9.33.0

Features

  • e07820e feat: add global object access detection to no-restricted-globals (#19939) (sethamus)
  • 90b050e feat: support explicit resource management in one-var (#19941) (Sweta Tanwar)

Bug Fixes

  • 732433c fix: allow any type for meta.docs.recommended in custom rules (#19995) (Francesco Trotta)
  • e8a6914 fix: Fixed potential bug in check-emfile-handling.js (#19975) (諏訪原慶斗)

Documentation

  • 34f0723 docs: playground button for TypeScript code example (#19671) (Tanuj Kanti)
  • dc942a4 docs: Update README (GitHub Actions Bot)
  • 5a4b6f7 docs: Update no-multi-assign.md (#19979) (Yuki Takada (Yukinosuke Takada))
  • 247e156 docs: add missing let declarations in no-plusplus (#19980) (Yuki Takada (Yukinosuke Takada))
  • 0d17242 docs: Update README (GitHub Actions Bot)
  • fa20b9d docs: Clarify when to open an issue for a PR (#19974) (Nicholas C. Zakas)

Build Related

  • 27fa865 build: use ESLint class to generate formatter examples (#19972) (Milos Djermanovic)

Chores

  • 4258046 chore: update dependency @​eslint/js to v9.33.0 (#19998) (renovate[bot])
  • ad28371 chore: package.json update for @​eslint/js release (Jenkins)
  • 06a22f1 test: resolve flakiness in --mcp flag test (#19993) (Pixel998)
  • 54920ed test: switch to Linter.Config in ESLintRules type tests (#19977) (Francesco Trotta)

v9.32.0

Features

  • 1245000 feat: support explicit resource management in core rules (#19828) (fnx)
  • 0e957a7 feat: support typescript types in accessor rules (#19882) (fnx)

Bug Fixes

  • 960fd40 fix: Upgrade @​eslint/js (#19971) (Nicholas C. Zakas)
  • bbf23fa fix: Refactor reporting into FileReport (#19877) (Nicholas C. Zakas)
  • d498887 fix: bump @​eslint/plugin-kit to 0.3.4 to resolve vulnerability (#19965) (Milos Djermanovic)
  • f46fc6c fix: report only global references in no-implied-eval (#19932) (Nitin Kumar)
  • 7863d26 fix: remove outdated types in ParserOptions.ecmaFeatures (#19944) (ntnyq)
  • 3173305 fix: update execScript message in no-implied-eval rule (#19937) (TKDev7)

Documentation

  • 86e7426 docs: Update README (GitHub Actions Bot)

Chores

  • 50de1ce chore: package.json update for @​eslint/js release (Jenkins)
  • 74f01a3 ci: unpin jiti to version ^2.5.1 (#19970) (루밀LuMir)
  • 2ab1381 ci: pin jiti to version 2.4.2 (#19964) (Francesco Trotta)
  • b7f7545 test: switch to flat config mode in SourceCode tests (#19953) (Milos Djermanovic)
  • f5a35e3 test: switch to flat config mode in eslint-fuzzer (#19960) (Milos Djermanovic)
  • e22af8c refactor: use CustomRuleDefinitionType in JSRuleDefinition (#19949) (Francesco Trotta)
  • e855717 chore: switch performance tests to hyperfine (#19919) (Francesco Trotta)

... (truncated)

Changelog

Sourced from eslint's changelog.

v9.33.0 - August 8, 2025

  • 4258046 chore: update dependency @​eslint/js to v9.33.0 (#19998) (renovate[bot])
  • ad28371 chore: package.json update for @​eslint/js release (Jenkins)
  • 06a22f1 test: resolve flakiness in --mcp flag test (#19993) (Pixel998)
  • 732433c fix: allow any type for meta.docs.recommended in custom rules (#19995) (Francesco Trotta)
  • 34f0723 docs: playground button for TypeScript code example (#19671) (Tanuj Kanti)
  • dc942a4 docs: Update README (GitHub Actions Bot)
  • 5a4b6f7 docs: Update no-multi-assign.md (#19979) (Yuki Takada (Yukinosuke Takada))
  • 247e156 docs: add missing let declarations in no-plusplus (#19980) (Yuki Takada (Yukinosuke Takada))
  • 0d17242 docs: Update README (GitHub Actions Bot)
  • e07820e feat: add global object access detection to no-restricted-globals (#19939) (sethamus)
  • fa20b9d docs: Clarify when to open an issue for a PR (#19974) (Nicholas C. Zakas)
  • 54920ed test: switch to Linter.Config in ESLintRules type tests (#19977) (Francesco Trotta)
  • e8a6914 fix: Fixed potential bug in check-emfile-handling.js (#19975) (諏訪原慶斗)
  • 90b050e feat: support explicit resource management in one-var (#19941) (Sweta Tanwar)
  • 27fa865 build: use ESLint class to generate formatter examples (#19972) (Milos Djermanovic)

v9.32.0 - July 25, 2025

  • 960fd40 fix: Upgrade @​eslint/js (#19971) (Nicholas C. Zakas)
  • 50de1ce chore: package.json update for @​eslint/js release (Jenkins)
  • bbf23fa fix: Refactor reporting into FileReport (#19877) (Nicholas C. Zakas)
  • 74f01a3 ci: unpin jiti to version ^2.5.1 (#19970) (루밀LuMir)
  • d498887 fix: bump @​eslint/plugin-kit to 0.3.4 to resolve vulnerability (#19965) (Milos Djermanovic)
  • 2ab1381 ci: pin jiti to version 2.4.2 (#19964) (Francesco Trotta)
  • b7f7545 test: switch to flat config mode in SourceCode tests (#19953) (Milos Djermanovic)
  • f5a35e3 test: switch to flat config mode in eslint-fuzzer (#19960) (Milos Djermanovic)
  • f46fc6c fix: report only global references in no-implied-eval (#19932) (Nitin Kumar)
  • 86e7426 docs: Update README (GitHub Actions Bot)
  • e22af8c refactor: use CustomRuleDefinitionType in JSRuleDefinition (#19949) (Francesco Trotta)
  • 1245000 feat: support explicit resource management in core rules (#19828) (fnx)
  • e855717 chore: switch performance tests to hyperfine (#19919) (Francesco Trotta)
  • 0e957a7 feat: support typescript types in accessor rules (#19882) (fnx)
  • 2f73a23 test: switch to flat config mode in ast-utils tests (#19948) (Milos Djermanovic)
  • 7863d26 fix: remove outdated types in ParserOptions.ecmaFeatures (#19944) (ntnyq)
  • c565a53 chore: exclude further_reading_links.json from Prettier formatting (#19943) (Milos Djermanovic)
  • 3173305 fix: update execScript message in no-implied-eval rule (#19937) (TKDev7)

v9.31.0 - July 11, 2025

  • 3ddd454 chore: upgrade to @eslint/js@9.31.0 (#19935) (Francesco Trotta)
  • d5054e5 chore: package.json update for @​eslint/js release (Jenkins)
  • 0f4a378 chore: update eslint (#19933) (renovate[bot])
  • 664cb44 docs: Update README (GitHub Actions Bot)
  • 07fac6c fix: retry on EMFILE when writing autofix results (#19926) (TKDev7)
  • 35cf44c feat: output full actual location in rule tester if different (#19904) (ST-DDT)
  • 40dbe2a docs: fix mismatch between globalIgnores() code and text (#19914) (MaoShizhong)
  • 76c2340 chore: bump mocha to v11 (#19917) (루밀LuMir)
  • 28cc7ab fix: Remove incorrect RuleContext types (#19910) (Nicholas C. Zakas)

... (truncated)

Commits

Updates @types/eslint from 8.56.12 to 9.6.1

Commits

Updates rollup from 4.34.9 to 4.46.2

Release notes

Sourced from rollup's releases.

v4.46.2

4.46.2

2025-07-29

Bug Fixes

  • Fix in-operator handling for external namespace and when the left side cannot be analyzed (#6041)

Pull Requests

v4.46.1

4.46.1

2025-07-28

Bug Fixes

  • Do not fail when using the in operator on external namespaces (#6036)

Pull Requests

  • #6036: disables optimization for external namespace when using the in operator (@​TrickyPi)

v4.46.0

4.46.0

2025-07-27

Features

  • Optimize in checks on namespaces to keep them treeshake-able (#6029)

Pull Requests

v4.45.3

4.45.3

2025-07-26

Bug Fixes

  • Do not fail build if a const is reassigned but warn instead (#6020)
  • Fail with a helpful error message if an exported binding is not defined (#6023)

... (truncated)

Changelog

Sourced from rollup's changelog.

4.46.2

2025-07-29

Bug Fixes

  • Fix in-operator handling for external namespace and when the left side cannot be analyzed (#6041)

Pull Requests

4.46.1

2025-07-28

Bug Fixes

  • Do not fail when using the in operator on external namespaces (#6036)

Pull Requests

  • #6036: disables optimization for external namespace when using the in operator (@​TrickyPi)

4.46.0

2025-07-27

Features

  • Optimize in checks on namespaces to keep them treeshake-able (#6029)

Pull Requests

4.45.3

2025-07-26

Bug Fixes

  • Do not fail build if a const is reassigned but warn instead (#6020)
  • Fail with a helpful error message if an exported binding is not defined (#6023)

Pull Requests

  • #6014: chore(deps): update dependency @​vue/language-server to v3 (@​renovate[bot])

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • `@dependabot unignore <ignore c...

Description has been truncated

Pull Request Statistics
Commits:
1
Files Changed:
1
Additions:
+17
Deletions:
-17
Package Dependencies
Package:
zod
Ecosystem:
npm
Version Change:
3.24.2 → 4.0.17
Update Type:
Major
Package:
eslint
Ecosystem:
npm
Version Change:
9.21.0 → 9.33.0
Update Type:
Minor
Package:
@types/node
Ecosystem:
npm
Version Change:
22.13.4 → 24.2.1
Update Type:
Major
Package:
yaml
Ecosystem:
npm
Version Change:
2.8.0 → 2.8.1
Update Type:
Patch
Package:
eventsource
Ecosystem:
npm
Version Change:
3.0.7 → 4.0.0
Update Type:
Major
Package:
rollup
Ecosystem:
npm
Version Change:
4.34.9 → 4.46.2
Update Type:
Minor
Package:
dotenv
Ecosystem:
npm
Version Change:
16.4.7 → 17.2.1
Update Type:
Major
Package:
chalk
Ecosystem:
npm
Version Change:
5.4.1 → 5.5.0
Update Type:
Minor
Package:
keyv
Ecosystem:
npm
Version Change:
5.3.4 → 5.5.0
Update Type:
Minor
Package:
@types/eslint
Ecosystem:
npm
Version Change:
8.56.12 → 9.6.1
Update Type:
Major
Package:
@modelcontextprotocol/sdk
Ecosystem:
npm
Version Change:
1.13.2 → 1.17.2
Update Type:
Minor
Package:
cache-manager
Ecosystem:
npm
Version Change:
6.4.3 → 7.1.1
Update Type:
Major
Package:
cacheable
Ecosystem:
npm
Version Change:
1.10.0 → 1.10.3
Update Type:
Patch
Package:
@smithery/sdk
Ecosystem:
npm
Version Change:
1.5.2 → 1.5.5
Update Type:
Patch
Package:
@blaxel/core
Ecosystem:
npm
Version Change:
0.2.18 → 0.2.27
Update Type:
Patch
Package:
@composio/mcp
Ecosystem:
npm
Version Change:
1.0.7 → 1.0.9
Update Type:
Patch
Actions
View on GitHub View Repository All Dependabot PRs
Technical Details
ID: 5249689
UUID: 2734377049
Node ID: PR_kwDOO9_UUc6i-0hZ
Host: GitHub
Repository: toolprint/sdk-ts
Mergeable: Yes
Merge State: Clean
Rebaseable: Yes