Skip to content

chore(deps): bump the root-minor-patch group across 1 directory with 30 updates#70

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/root-minor-patch-8e72bc7fe0
Open

chore(deps): bump the root-minor-patch group across 1 directory with 30 updates#70
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/root-minor-patch-8e72bc7fe0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 9, 2026

Copy link
Copy Markdown
Contributor

Bumps the root-minor-patch group with 28 updates in the / directory:

Package From To
@ai-sdk/amazon-bedrock 3.0.101 3.0.105
@ai-sdk/google 2.0.74 2.0.79
@ai-sdk/openai 2.0.106 2.0.111
@anthropic-ai/sdk 0.82.0 0.111.0
@ast-grep/napi 0.42.2 0.44.1
@fastify/cors 11.2.0 11.3.0
@fastify/static 9.1.3 9.3.0
@fastify/websocket 11.2.0 11.3.0
@langfuse/client 5.5.3 5.9.1
@langfuse/otel 5.5.3 5.9.1
@lingxiao-office/sdk 1.0.1 1.0.7
@opentelemetry/sdk-node 0.219.0 0.220.0
acorn 8.16.0 8.17.0
ai 5.0.198 5.0.212
fastify 5.8.5 5.10.0
openai 6.37.0 6.46.0
pdfkit 0.18.0 0.19.1
playwright 1.60.0 1.61.1
proxy-agent 8.0.1 8.0.2
react 19.2.6 19.2.7
@types/react 19.2.14 19.2.17
react-virtuoso 4.18.7 4.18.10
sharp 0.34.5 0.35.3
string-width 8.2.1 8.2.2
undici 8.2.0 8.7.0
@types/node 25.7.0 25.9.5
electron 42.4.1 42.6.1
tsx 4.22.4 4.23.1

Updates @ai-sdk/amazon-bedrock from 3.0.101 to 3.0.105

Changelog

Sourced from @​ai-sdk/amazon-bedrock's changelog.

3.0.105

Patch Changes

  • f236836: feat (provider/anthropic): add claude-sonnet-5 model id
  • Updated dependencies [f236836]
    • @​ai-sdk/anthropic@​2.0.85

3.0.104

Patch Changes

  • Updated dependencies [b85c4fb]
    • @​ai-sdk/provider-utils@​3.0.28
    • @​ai-sdk/anthropic@​2.0.84

3.0.103

Patch Changes

  • Updated dependencies [9169261]
    • @​ai-sdk/provider-utils@​3.0.27
    • @​ai-sdk/anthropic@​2.0.83

3.0.102

Patch Changes

  • Updated dependencies [9f67efe]
  • Updated dependencies [eea9166]
    • @​ai-sdk/provider-utils@​3.0.26
    • @​ai-sdk/anthropic@​2.0.82
Commits

Updates @ai-sdk/anthropic from 2.0.81 to 2.0.85

Changelog

Sourced from @​ai-sdk/anthropic's changelog.

2.0.85

Patch Changes

  • f236836: feat (provider/anthropic): add claude-sonnet-5 model id

2.0.84

Patch Changes

  • Updated dependencies [b85c4fb]
    • @​ai-sdk/provider-utils@​3.0.28

2.0.83

Patch Changes

  • Updated dependencies [9169261]
    • @​ai-sdk/provider-utils@​3.0.27

2.0.82

Patch Changes

  • Updated dependencies [9f67efe]
  • Updated dependencies [eea9166]
    • @​ai-sdk/provider-utils@​3.0.26
Commits

Updates @ai-sdk/google from 2.0.74 to 2.0.79

Release notes

Sourced from @​ai-sdk/google's releases.

@​ai-sdk/xai@​2.0.77

Patch Changes

  • 3c89617: feat (provider/xai): add grok-4.5 model id
Changelog

Sourced from @​ai-sdk/google's changelog.

2.0.79

Patch Changes

  • af229e7: Expand standalone Google threshold provider options into safety settings.

2.0.78

Patch Changes

  • 8260f89: fix(provider/google): include usageMetadata in providerMetadata for non-streaming generate

2.0.77

Patch Changes

  • Updated dependencies [b85c4fb]
    • @​ai-sdk/provider-utils@​3.0.28

2.0.76

Patch Changes

  • Updated dependencies [9169261]
    • @​ai-sdk/provider-utils@​3.0.27

2.0.75

Patch Changes

  • 9f67efe: fix: only send provider credentials to same-origin response-supplied URLs

    Several provider clients followed a URL taken from the provider's API response (a polling/status URL or a final media URL such as polling_url, urls.get, result_url, result.sample, or video.uri) and reused the authenticated headers — or appended ?key=<API_KEY> — on that request. Because the host of the response-supplied URL was never validated, the long-lived API key was sent to whatever host the response named (a CDN in the benign case, or an attacker-chosen host if the provider response was tampered with), allowing credential exfiltration.

    A new isSameOrigin helper is added to @ai-sdk/provider-utils, and the affected fetches in @ai-sdk/black-forest-labs, @ai-sdk/fireworks, @ai-sdk/replicate, @ai-sdk/gladia, @ai-sdk/fal, and @ai-sdk/google now attach credentials only when the followed URL is same-origin with the provider's configured API origin. Requests to a foreign origin are made without the credential.

  • Updated dependencies [9f67efe]

  • Updated dependencies [eea9166]

    • @​ai-sdk/provider-utils@​3.0.26
Commits

Updates @ai-sdk/openai from 2.0.106 to 2.0.111

Release notes

Sourced from @​ai-sdk/openai's releases.

@​ai-sdk/openai@​2.0.111

Patch Changes

  • b4f8362: feat(provider/openai): add GPT-5.6 reasoning and prompt cache controls
  • 8549807: feat(provider/openai,provider/gateway): add gpt-5.6 model ids
Changelog

Sourced from @​ai-sdk/openai's changelog.

2.0.111

Patch Changes

  • b4f8362: feat(provider/openai): add GPT-5.6 reasoning and prompt cache controls
  • 8549807: feat(provider/openai,provider/gateway): add gpt-5.6 model ids

2.0.110

Patch Changes

  • Updated dependencies [b85c4fb]
    • @​ai-sdk/provider-utils@​3.0.28

2.0.109

Patch Changes

  • f8e6a5c: feat(openai): add orchestration token usage details to Responses API usage

2.0.108

Patch Changes

  • Updated dependencies [9169261]
    • @​ai-sdk/provider-utils@​3.0.27

2.0.107

Patch Changes

  • Updated dependencies [9f67efe]
  • Updated dependencies [eea9166]
    • @​ai-sdk/provider-utils@​3.0.26
Commits

Updates @anthropic-ai/sdk from 0.82.0 to 0.111.0

Release notes

Sourced from @​anthropic-ai/sdk's releases.

sdk: v0.111.0

0.111.0 (2026-07-10)

Full Changelog: sdk-v0.110.0...sdk-v0.111.0

Features

  • api: add support for dreaming (77b28a6)
  • tools: gate session tool calls on evaluated_permission; bound idle by server stop_reason (68a6d7b)

Chores

  • docs: small updates to field descriptions (e25b885)
  • docs: update model example (a33f3f0)
  • docs: updates to descriptions and examples (eac4bac)

sdk: v0.110.0

0.110.0 (2026-07-02)

Full Changelog: sdk-v0.109.1...sdk-v0.110.0

Features

  • api: add agent-memory-2026-07-22 beta header (a470e10)

sdk: v0.109.1

0.109.1 (2026-07-01)

Full Changelog: sdk-v0.109.0...sdk-v0.109.1

Chores

  • api: remove some nonfunctional types from the SDKs (cc4dd4e)

sdk: v0.109.0

0.109.0 (2026-06-30)

Full Changelog: sdk-v0.108.0...sdk-v0.109.0

Features

  • api: add support for Managed Agents event delta streaming, agent overrides, reverse pagination, vault credential injection scoping, and agent and deployment webhook events (7f3211b)

sdk: v0.108.0

0.108.0 (2026-06-30)

Full Changelog: sdk-v0.107.0...sdk-v0.108.0

Features

... (truncated)

Changelog

Sourced from @​anthropic-ai/sdk's changelog.

0.111.0 (2026-07-10)

Full Changelog: sdk-v0.110.0...sdk-v0.111.0

Features

  • api: add support for dreaming (77b28a6)
  • tools: gate session tool calls on evaluated_permission; bound idle by server stop_reason (68a6d7b)

Chores

  • docs: small updates to field descriptions (e25b885)
  • docs: update model example (a33f3f0)
  • docs: updates to descriptions and examples (eac4bac)

0.110.0 (2026-07-02)

Full Changelog: sdk-v0.109.1...sdk-v0.110.0

Features

  • api: add agent-memory-2026-07-22 beta header (a470e10)

0.109.1 (2026-07-01)

Full Changelog: sdk-v0.109.0...sdk-v0.109.1

Chores

  • api: remove some nonfunctional types from the SDKs (cc4dd4e)

0.109.0 (2026-06-30)

Full Changelog: sdk-v0.108.0...sdk-v0.109.0

Features

  • api: add support for Managed Agents event delta streaming, agent overrides, reverse pagination, vault credential injection scoping, and agent and deployment webhook events (7f3211b)

0.108.0 (2026-06-30)

Full Changelog: sdk-v0.107.0...sdk-v0.108.0

Features

  • api: add support for claude-sonnet-5 (4588db0)

Bug Fixes

... (truncated)

Commits
  • 9e46760 chore: release main
  • 8d461ea feat(api): add support for dreaming
  • 9436e29 codegen metadata
  • 0aec1e7 feat(tools): gate session tool calls on evaluated_permission; bound idle by s...
  • ac2fc67 chore(docs): update model example
  • c8af65d chore(docs): updates to descriptions and examples
  • 2a3a904 codegen metadata
  • 57c56c9 chore(docs): small updates to field descriptions
  • 4f2eb80 chore: release main (#1107)
  • 96d1a99 chore: release main (#1106)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​anthropic-ai/sdk since your current version.


Updates @ast-grep/napi from 0.42.2 to 0.44.1

Release notes

Sourced from @​ast-grep/napi's releases.

0.44.1

0.44.0

... (truncated)

Changelog

Sourced from @​ast-grep/napi's changelog.

0.44.1

0.44.0

21 June 2026

... (truncated)

Commits
  • 26f7845 0.44.1
  • de129f2 chore(deps): update rust crate napi to v3.10.3 (#2786)
  • 6859948 chore(deps): update rust crate napi-derive to v3.5.9 (#2785)
  • b50dd49 chore(deps): update dependency oxlint to v1.72.0 (#2780)
  • c16babe chore(deps): update rust crate terminal-light to v1.9.0 (#2781)
  • 6bcb735 chore(deps): update rust crate clap_complete to v4.6.7 (#2783)
  • 0708018 chore(deps): update rust crate ignore to v0.4.27 (#2784)
  • fe3607e fix(cli): bound outline file queue (#2787)
  • ba4047f chore(deps): update rust crate clap_complete to v4.6.6 (#2782)
  • 50d1510 chore(deps): update dependency @​ast-grep/napi to v0.44.0 (#2764)
  • Additional commits viewable in compare view

Updates @fastify/cors from 11.2.0 to 11.3.0

Release notes

Sourced from @​fastify/cors's releases.

v11.3.0

What's Changed

New Contributors

Full Changelog: fastify/fastify-cors@v11.2.0...v11.3.0

Commits
  • 2c60caa Bumped v11.3.0
  • cf4986e chore: bump @​types/node in the dev-dependencies-typescript group (#411)
  • 816d054 test: remove remaining tap-style assertions from vary tests (#410)
  • 20507ea chore(package.json): fix delvedor's personal url (#409)
  • 6fe85c4 docs(readme): update request origin link (#408)
  • 57bdc65 chore: bump fastify-plugin from 5.1.0 to 6.0.0 in the dependencies group (#407)
  • a8ae57d chore: update depedabot setting
  • 4d34798 chore(.gitattributes): retain binary file eol style (#402)
  • 675ebef refactor(types): migrate from tsd to tstyche (#403)
  • ef25e0b ci: add lock-threads workflow (#401)
  • Additional commits viewable in compare view

Updates @fastify/static from 9.1.3 to 9.3.0

Release notes

Sourced from @​fastify/static's releases.

v9.3.0

What's Changed

New Contributors

Full Changelog: fastify/fastify-static@v9.2.0...v9.3.0

v9.2.0

What's Changed

New Contributors

Full Changelog: fastify/fastify-static@v9.1.3...v9.2.0

Commits
  • ad05a27 Bumped v9.3.0
  • 58811db chore: update fastify-plugin dependency to version 6.0.0 (#594)
  • a343813 Bumped v9.2.0
  • b94c725 docs: clarify precompressed allowedPath behavior (#593)
  • 684a4ea docs: fix broken links (#591)
  • 26e7042 chore: bump @​types/node in the dev-dependencies-typescript group (#592)
  • 070912a chore: bump @​fastify/compress from 8.3.1 to 9.0.0 (#590)
  • 2f792ea chore: update depedabot setting
  • 5b6043c fix: propagate return value from fastify.errorHandler (#582)
  • 040307a refactor(types): migrate from tsd to tstyche (#579)
  • Additional commits viewable in compare view

Updates @fastify/websocket from 11.2.0 to 11.3.0

Release notes

Sourced from @​fastify/websocket's releases.

v11.3.0

What's Changed

New Contributors

@dependabot @github

dependabot Bot commented on behalf of github Jul 9, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@github-actions

github-actions Bot commented Jul 9, 2026

Copy link
Copy Markdown

GLM 审查信息

结论

未发现需要阻塞的明显问题,但本次更新包含多个 0.x 版本依赖的 minor 升级以及原生模块升级,存在较高的潜在回归风险,建议在合并前充分验证。

发现

  1. @anthropic-ai/sdk 破坏性变更风险:从 0.82.0 升级至 0.111.0。在 0.x 语义化版本下,minor 升级允许包含破坏性变更。根据 Changelog,0.109.1 版本“remove some nonfunctional types from the SDKs”,如果项目代码中直接引用了这些被移除的类型,将导致 TypeScript 编译失败。
  2. @ast-grep/napi 行为变更风险:从 0.42.2 升级至 0.44.10.44.0 版本修复了多个元变量绑定泄漏的问题,并“reject root multi-metavariable patterns”。如果项目中使用了自定义的 ast-grep 规则且依赖了这些旧行为,可能会导致规则匹配失效,进而影响代码分析或转换功能。
  3. sharp 原生模块升级风险:从 0.34.5 升级至 0.35.3sharp 依赖底层图像处理库,minor 版本升级可能涉及 Node.js 最低版本要求变更或预编译二进制包的兼容性变化,可能导致安装失败或运行时崩溃。
  4. @ai-sdk/google 安全修复带来的行为变更2.0.75 版本修复了凭证泄露漏洞,不再向跨域的响应 URL 发送 API Key。如果项目中有依赖跨域获取 Google AI 媒体资源的逻辑,可能会因为凭证不再发送而导致请求失败。

建议测试

  1. 类型检查:运行完整的 TypeScript 类型检查(如 tsc --noEmit),重点关注 @anthropic-ai/sdk 相关的调用代码,确保没有因类型移除导致的编译错误。
  2. AST 解析测试:运行所有涉及 @ast-grep/napi 的单元测试和集成测试,验证现有的代码分析、规则匹配和重构逻辑是否仍然按预期工作。
  3. 安装与构建测试:在干净的 CI 环境中执行依赖安装,验证 sharp@ast-grep/napi 的原生模块能否正确安装和加载;执行图像处理相关功能测试。
  4. AI 功能集成测试:针对 Google AI SDK 的文件上传/获取、多模态请求等功能进行集成测试,确保安全修复未阻断正常的业务流程。

…30 updates

Bumps the root-minor-patch group with 28 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@ai-sdk/amazon-bedrock](https://github.com/vercel/ai/tree/HEAD/packages/amazon-bedrock) | `3.0.101` | `3.0.105` |
| [@ai-sdk/google](https://github.com/vercel/ai/tree/HEAD/packages/google) | `2.0.74` | `2.0.79` |
| [@ai-sdk/openai](https://github.com/vercel/ai/tree/HEAD/packages/openai) | `2.0.106` | `2.0.111` |
| [@anthropic-ai/sdk](https://github.com/anthropics/anthropic-sdk-typescript) | `0.82.0` | `0.111.0` |
| [@ast-grep/napi](https://github.com/ast-grep/ast-grep) | `0.42.2` | `0.44.1` |
| [@fastify/cors](https://github.com/fastify/fastify-cors) | `11.2.0` | `11.3.0` |
| [@fastify/static](https://github.com/fastify/fastify-static) | `9.1.3` | `9.3.0` |
| [@fastify/websocket](https://github.com/fastify/fastify-websocket) | `11.2.0` | `11.3.0` |
| [@langfuse/client](https://github.com/langfuse/langfuse-js/tree/HEAD/packages/client) | `5.5.3` | `5.9.1` |
| [@langfuse/otel](https://github.com/langfuse/langfuse-js/tree/HEAD/packages/otel) | `5.5.3` | `5.9.1` |
| [@lingxiao-office/sdk](https://github.com/hexian2001/lingxiao-backend/tree/HEAD/packages/sdk) | `1.0.1` | `1.0.7` |
| [@opentelemetry/sdk-node](https://github.com/open-telemetry/opentelemetry-js) | `0.219.0` | `0.220.0` |
| [acorn](https://github.com/acornjs/acorn) | `8.16.0` | `8.17.0` |
| [ai](https://github.com/vercel/ai/tree/HEAD/packages/ai) | `5.0.198` | `5.0.212` |
| [fastify](https://github.com/fastify/fastify) | `5.8.5` | `5.10.0` |
| [openai](https://github.com/openai/openai-node) | `6.37.0` | `6.46.0` |
| [pdfkit](https://github.com/foliojs/pdfkit) | `0.18.0` | `0.19.1` |
| [playwright](https://github.com/microsoft/playwright) | `1.60.0` | `1.61.1` |
| [proxy-agent](https://github.com/TooTallNate/proxy-agents/tree/HEAD/packages/proxy-agent) | `8.0.1` | `8.0.2` |
| [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.6` | `19.2.7` |
| [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.2.14` | `19.2.17` |
| [react-virtuoso](https://github.com/petyosi/react-virtuoso/tree/HEAD/packages/react-virtuoso) | `4.18.7` | `4.18.10` |
| [sharp](https://github.com/lovell/sharp) | `0.34.5` | `0.35.3` |
| [string-width](https://github.com/sindresorhus/string-width) | `8.2.1` | `8.2.2` |
| [undici](https://github.com/nodejs/undici) | `8.2.0` | `8.7.0` |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.7.0` | `25.9.5` |
| [electron](https://github.com/electron/electron) | `42.4.1` | `42.6.1` |
| [tsx](https://github.com/privatenumber/tsx) | `4.22.4` | `4.23.1` |



Updates `@ai-sdk/amazon-bedrock` from 3.0.101 to 3.0.105
- [Release notes](https://github.com/vercel/ai/releases)
- [Changelog](https://github.com/vercel/ai/blob/@ai-sdk/amazon-bedrock@3.0.105/packages/amazon-bedrock/CHANGELOG.md)
- [Commits](https://github.com/vercel/ai/commits/@ai-sdk/amazon-bedrock@3.0.105/packages/amazon-bedrock)

Updates `@ai-sdk/anthropic` from 2.0.81 to 2.0.85
- [Release notes](https://github.com/vercel/ai/releases)
- [Changelog](https://github.com/vercel/ai/blob/@ai-sdk/anthropic@2.0.85/packages/anthropic/CHANGELOG.md)
- [Commits](https://github.com/vercel/ai/commits/@ai-sdk/anthropic@2.0.85/packages/anthropic)

Updates `@ai-sdk/google` from 2.0.74 to 2.0.79
- [Release notes](https://github.com/vercel/ai/releases)
- [Changelog](https://github.com/vercel/ai/blob/@ai-sdk/google@2.0.79/packages/google/CHANGELOG.md)
- [Commits](https://github.com/vercel/ai/commits/@ai-sdk/google@2.0.79/packages/google)

Updates `@ai-sdk/openai` from 2.0.106 to 2.0.111
- [Release notes](https://github.com/vercel/ai/releases)
- [Changelog](https://github.com/vercel/ai/blob/@ai-sdk/openai@2.0.111/packages/openai/CHANGELOG.md)
- [Commits](https://github.com/vercel/ai/commits/@ai-sdk/openai@2.0.111/packages/openai)

Updates `@anthropic-ai/sdk` from 0.82.0 to 0.111.0
- [Release notes](https://github.com/anthropics/anthropic-sdk-typescript/releases)
- [Changelog](https://github.com/anthropics/anthropic-sdk-typescript/blob/main/CHANGELOG.md)
- [Commits](anthropics/anthropic-sdk-typescript@sdk-v0.82.0...sdk-v0.111.0)

Updates `@ast-grep/napi` from 0.42.2 to 0.44.1
- [Release notes](https://github.com/ast-grep/ast-grep/releases)
- [Changelog](https://github.com/ast-grep/ast-grep/blob/main/CHANGELOG.md)
- [Commits](ast-grep/ast-grep@0.42.2...0.44.1)

Updates `@fastify/cors` from 11.2.0 to 11.3.0
- [Release notes](https://github.com/fastify/fastify-cors/releases)
- [Commits](fastify/fastify-cors@v11.2.0...v11.3.0)

Updates `@fastify/static` from 9.1.3 to 9.3.0
- [Release notes](https://github.com/fastify/fastify-static/releases)
- [Commits](fastify/fastify-static@v9.1.3...v9.3.0)

Updates `@fastify/websocket` from 11.2.0 to 11.3.0
- [Release notes](https://github.com/fastify/fastify-websocket/releases)
- [Commits](fastify/fastify-websocket@v11.2.0...v11.3.0)

Updates `@langfuse/client` from 5.5.3 to 5.9.1
- [Release notes](https://github.com/langfuse/langfuse-js/releases)
- [Changelog](https://github.com/langfuse/langfuse-js/blob/main/CHANGELOG.md)
- [Commits](https://github.com/langfuse/langfuse-js/commits/v5.9.1/packages/client)

Updates `@langfuse/otel` from 5.5.3 to 5.9.1
- [Release notes](https://github.com/langfuse/langfuse-js/releases)
- [Changelog](https://github.com/langfuse/langfuse-js/blob/main/CHANGELOG.md)
- [Commits](https://github.com/langfuse/langfuse-js/commits/v5.9.1/packages/otel)

Updates `@langfuse/tracing` from 5.5.3 to 5.9.1
- [Release notes](https://github.com/langfuse/langfuse-js/releases)
- [Changelog](https://github.com/langfuse/langfuse-js/blob/main/CHANGELOG.md)
- [Commits](https://github.com/langfuse/langfuse-js/commits/v5.9.1/packages/tracing)

Updates `@lingxiao-office/sdk` from 1.0.1 to 1.0.7
- [Changelog](https://github.com/hexian2001/lingxiao-backend/blob/main/docs/release-npm.md)
- [Commits](https://github.com/hexian2001/lingxiao-backend/commits/HEAD/packages/sdk)

Updates `@opentelemetry/sdk-node` from 0.219.0 to 0.220.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-js/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-js/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-js@experimental/v0.219.0...experimental/v0.220.0)

Updates `acorn` from 8.16.0 to 8.17.0
- [Commits](acornjs/acorn@8.16.0...8.17.0)

Updates `ai` from 5.0.198 to 5.0.212
- [Release notes](https://github.com/vercel/ai/releases)
- [Changelog](https://github.com/vercel/ai/blob/ai@5.0.212/packages/ai/CHANGELOG.md)
- [Commits](https://github.com/vercel/ai/commits/ai@5.0.212/packages/ai)

Updates `fastify` from 5.8.5 to 5.10.0
- [Release notes](https://github.com/fastify/fastify/releases)
- [Commits](fastify/fastify@v5.8.5...v5.10.0)

Updates `openai` from 6.37.0 to 6.46.0
- [Release notes](https://github.com/openai/openai-node/releases)
- [Changelog](https://github.com/openai/openai-node/blob/main/CHANGELOG.md)
- [Commits](openai/openai-node@v6.37.0...v6.46.0)

Updates `pdfkit` from 0.18.0 to 0.19.1
- [Release notes](https://github.com/foliojs/pdfkit/releases)
- [Changelog](https://github.com/foliojs/pdfkit/blob/master/CHANGELOG.md)
- [Commits](foliojs/pdfkit@v0.18.0...v0.19.1)

Updates `playwright` from 1.60.0 to 1.61.1
- [Release notes](https://github.com/microsoft/playwright/releases)
- [Commits](microsoft/playwright@v1.60.0...v1.61.1)

Updates `proxy-agent` from 8.0.1 to 8.0.2
- [Release notes](https://github.com/TooTallNate/proxy-agents/releases)
- [Changelog](https://github.com/TooTallNate/proxy-agents/blob/main/packages/proxy-agent/CHANGELOG.md)
- [Commits](https://github.com/TooTallNate/proxy-agents/commits/proxy-agent@8.0.2/packages/proxy-agent)

Updates `react` from 19.2.6 to 19.2.7
- [Release notes](https://github.com/facebook/react/releases)
- [Changelog](https://github.com/react/react/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/react/commits/v19.2.7/packages/react)

Updates `@types/react` from 19.2.14 to 19.2.17
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react)

Updates `react-virtuoso` from 4.18.7 to 4.18.10
- [Release notes](https://github.com/petyosi/react-virtuoso/releases)
- [Changelog](https://github.com/petyosi/react-virtuoso/blob/main/packages/react-virtuoso/CHANGELOG.md)
- [Commits](https://github.com/petyosi/react-virtuoso/commits/react-virtuoso@4.18.10/packages/react-virtuoso)

Updates `sharp` from 0.34.5 to 0.35.3
- [Release notes](https://github.com/lovell/sharp/releases)
- [Commits](lovell/sharp@v0.34.5...v0.35.3)

Updates `string-width` from 8.2.1 to 8.2.2
- [Release notes](https://github.com/sindresorhus/string-width/releases)
- [Commits](sindresorhus/string-width@v8.2.1...v8.2.2)

Updates `undici` from 8.2.0 to 8.7.0
- [Release notes](https://github.com/nodejs/undici/releases)
- [Commits](nodejs/undici@v8.2.0...v8.7.0)

Updates `@types/node` from 25.7.0 to 25.9.5
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Updates `@types/react` from 19.2.14 to 19.2.17
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react)

Updates `electron` from 42.4.1 to 42.6.1
- [Release notes](https://github.com/electron/electron/releases)
- [Commits](electron/electron@v42.4.1...v42.6.1)

Updates `tsx` from 4.22.4 to 4.23.1
- [Release notes](https://github.com/privatenumber/tsx/releases)
- [Changelog](https://github.com/privatenumber/tsx/blob/master/release.config.cjs)
- [Commits](privatenumber/tsx@v4.22.4...v4.23.1)

---
updated-dependencies:
- dependency-name: "@ai-sdk/amazon-bedrock"
  dependency-version: 3.0.105
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: root-minor-patch
- dependency-name: "@ai-sdk/anthropic"
  dependency-version: 2.0.85
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: root-minor-patch
- dependency-name: "@ai-sdk/google"
  dependency-version: 2.0.78
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: root-minor-patch
- dependency-name: "@ai-sdk/openai"
  dependency-version: 2.0.110
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: root-minor-patch
- dependency-name: "@anthropic-ai/sdk"
  dependency-version: 0.110.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: "@ast-grep/napi"
  dependency-version: 0.44.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: "@fastify/cors"
  dependency-version: 11.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: "@fastify/static"
  dependency-version: 9.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: "@fastify/websocket"
  dependency-version: 11.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: "@langfuse/client"
  dependency-version: 5.9.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: "@langfuse/otel"
  dependency-version: 5.9.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: "@langfuse/tracing"
  dependency-version: 5.9.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: "@lingxiao-office/sdk"
  dependency-version: 1.0.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: root-minor-patch
- dependency-name: "@opentelemetry/sdk-node"
  dependency-version: 0.220.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: "@types/node"
  dependency-version: 25.9.5
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: "@types/react"
  dependency-version: 19.2.17
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: root-minor-patch
- dependency-name: "@types/react"
  dependency-version: 19.2.17
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: root-minor-patch
- dependency-name: acorn
  dependency-version: 8.17.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: ai
  dependency-version: 5.0.210
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: root-minor-patch
- dependency-name: electron
  dependency-version: 42.6.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: fastify
  dependency-version: 5.10.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: openai
  dependency-version: 6.46.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: pdfkit
  dependency-version: 0.19.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: playwright
  dependency-version: 1.61.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: proxy-agent
  dependency-version: 8.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: root-minor-patch
- dependency-name: react
  dependency-version: 19.2.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: root-minor-patch
- dependency-name: react-virtuoso
  dependency-version: 4.18.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: root-minor-patch
- dependency-name: sharp
  dependency-version: 0.35.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: string-width
  dependency-version: 8.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: root-minor-patch
- dependency-name: tsx
  dependency-version: 4.23.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
- dependency-name: undici
  dependency-version: 8.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: root-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/root-minor-patch-8e72bc7fe0 branch from 1d302ee to 2f3b036 Compare July 14, 2026 15:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants