Skip to content

fix(deps): update patch updates (patch) - autoclosed #974

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
renovate wants to merge 1 commit into from
Closed

fix(deps): update patch updates (patch) - autoclosed #974

renovate wants to merge 1 commit into from

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Nov 21, 2025
edited
Loading

This PR contains the following updates:

Package Change Age Confidence
@vitest/eslint-plugin ^1.5.2 -> ^1.5.4 age confidence
browserslist 4.28.0 -> 4.28.1 age confidence
caniuse-lite ^1.0.30001760 -> ^1.0.30001761 age confidence
esbuild ^0.27.1 -> ^0.27.2 age confidence

Release Notes

vitest-dev/eslint-plugin-vitest (@​vitest/eslint-plugin)

v1.5.4

Compare Source

No significant changes

    View changes on GitHub
browserslist/browserslist (browserslist)

v4.28.1

Compare Source

  • Removed Baseline warning since we have it own warning.
browserslist/caniuse-lite (caniuse-lite)

v1.0.30001761

Compare Source

evanw/esbuild (esbuild)

v0.27.2

Compare Source

  • Allow import path specifiers starting with #/ (#​4361)

    Previously the specification for package.json disallowed import path specifiers starting with #/, but this restriction has recently been relaxed and support for it is being added across the JavaScript ecosystem. One use case is using it for a wildcard pattern such as mapping #/* to ./src/* (previously you had to use another character such as #_* instead, which was more confusing). There is some more context in nodejs/node#49182.

    This change was contributed by @​hybrist.

  • Automatically add the -webkit-mask prefix (#​4357, #​4358)

    This release automatically adds the -webkit- vendor prefix for the mask CSS shorthand property:

    /* Original code */
main {
  mask: url(x.png) center/5rem no-repeat
}

/* Old output (with --target=chrome110) */
main {
  mask: url(x.png) center/5rem no-repeat;
}

/* New output (with --target=chrome110) */
main {
  -webkit-mask: url(x.png) center/5rem no-repeat;
  mask: url(x.png) center/5rem no-repeat;
}

    This change was contributed by @​BPJEnnova.

  • Additional minification of switch statements (#​4176, #​4359)

    This release contains additional minification patterns for reducing switch statements. Here is an example:

    // Original code
switch (x) {
  case 0:
    foo()
    break
  case 1:
  default:
    bar()
}

// Old output (with --minify)
switch(x){case 0:foo();break;case 1:default:bar()}

// New output (with --minify)
x===0?foo():bar();

  • Forbid using declarations inside switch clauses (#​4323)

    This is a rare change to remove something that was previously possible. The Explicit Resource Management proposal introduced using declarations. These were previously allowed inside case and default clauses in switch statements. This had well-defined semantics and was already widely implemented (by V8, SpiderMonkey, TypeScript, esbuild, and others). However, it was considered to be too confusing because of how scope works in switch statements, so it has been removed from the specification. This edge case will now be a syntax error. See tc39/proposal-explicit-resource-management#215 and rbuckton/ecma262#14 for details.

    Here is an example of code that is no longer allowed:

    switch (mode) {
  case 'read':
    using readLock = db.read()
    return readAll(readLock)

  case 'write':
    using writeLock = db.write()
    return writeAll(writeLock)
}

    That code will now have to be modified to look like this instead (note the additional { and } block statements around each case body):

    switch (mode) {
  case 'read': {
    using readLock = db.read()
    return readAll(readLock)
  }
  case 'write': {
    using writeLock = db.write()
    return writeAll(writeLock)
  }
}

    This is not being released in one of esbuild's breaking change releases since this feature hasn't been finalized yet, and esbuild always tracks the current state of the specification (so esbuild's previous behavior was arguably incorrect).

Configuration

📅 Schedule: Branch creation - "after 10:00 before 19:00 every weekday except after 13:00 before 14:00" in timezone Europe/Berlin, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the c: dependencies Pull requests that adds/updates a dependency label Nov 21, 2025
@renovate renovate bot requested a review from prisis as a code owner November 21, 2025 13:55
@coderabbitai
Copy link

coderabbitai bot commented Nov 21, 2025
edited
Loading

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Comment @coderabbitai help to get the list of available commands and usage tips.

@github-actions
Copy link
Contributor

github-actions bot commented Nov 21, 2025
edited
Loading

Thank you for following the naming conventions! 🙏

@renovate renovate bot force-pushed the renovate/patch-patch-updates branch from f7ffad8 to 836c03d Compare November 24, 2025 09:33
@socket-security
Copy link

socket-security bot commented Nov 24, 2025
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Addedbrowserslist-config-anolilab@​6.0.7661009592100
Added@​vitest/​coverage-v8@​4.0.15991006999100
Added@​typescript-eslint/​parser@​8.49.01001007198100
Updatedesbuild@​0.27.1 ⏵ 0.27.2911007394100
Addedeslint-plugin-no-for-of-array@​0.1.0731008977100
Added@​visulima/​tsconfig@​2.1.373100999680
Added@​unocss/​eslint-plugin@​66.5.101001007496100
Addedcaniuse-lite@​1.0.300017611001007597100
Added@​visulima/​packem@​2.0.0-alpha.36751009996100
Addedcz-conventional-changelog@​3.3.0991008975100
Addedeslint-plugin-antfu@​3.1.11001007982100
Addedeslint-import-resolver-node@​0.3.91001007983100
Addedeslint-plugin-simple-import-sort@​12.1.11001008080100
Addedconfusing-browser-globals@​1.0.111001008085100
Addedeslint-plugin-no-only-tests@​3.3.01001009280100
Addedeslint-plugin-toml@​0.12.09910010080100
Addedeslint-plugin-html@​8.1.310010010081100
Addedeslint-plugin-no-unsanitized@​4.1.41001001008170
Addedeslint-merge-processors@​2.0.01001009581100
Addedeslint-plugin-no-secrets@​2.2.110010010081100
Addedcross-env@​10.1.010010010082100
Addedaudit-ci@​7.1.09910010082100
Addedeslint-plugin-react-perf@​3.3.310010010082100
Addedeslint-plugin-promise@​7.2.110010010082100
Addedeslint-plugin-compat@​6.0.29910010082100
Addedastro-eslint-parser@​1.2.29810010082100
Addedeslint-plugin-sonarjs@​3.0.51001001008770
Addedeslint-config-flat-gitignore@​2.1.01001009882100
Addedeslint-plugin-tailwindcss@​3.18.29910010083100
Addedeslint-plugin-security@​3.0.110010010083100
Addedeslint-plugin-react@​7.37.59910010084100
Addedeslint-plugin-jsx-a11y@​6.10.29910010084100
Addedeslint-plugin-regexp@​2.10.09910010084100
See 24 more rows in the dashboard

View full report

@renovate renovate bot force-pushed the renovate/patch-patch-updates branch 3 times, most recently from a54b0f8 to e97b096 Compare December 1, 2025 09:02
@socket-security
Copy link

socket-security bot commented Dec 1, 2025
edited
Loading

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report

@renovate renovate bot force-pushed the renovate/patch-patch-updates branch 5 times, most recently from 021d18a to 236c8bf Compare December 10, 2025 10:33
@renovate renovate bot changed the title fix(deps): update patch updates (patch) fix(deps): update dependency browserslist to v4.28.1 Dec 10, 2025
@renovate renovate bot force-pushed the renovate/patch-patch-updates branch 7 times, most recently from e819874 to 426fa3c Compare December 15, 2025 11:02
@renovate
fix(deps): update patch updates
d1a1cb9 
Signed-off-by: Renovate Bot <bot@renovateapp.com>
@renovate renovate bot force-pushed the renovate/patch-patch-updates branch from 426fa3c to d1a1cb9 Compare December 22, 2025 09:16
@renovate renovate bot changed the title fix(deps): update dependency browserslist to v4.28.1 fix(deps): update patch updates (patch) Dec 22, 2025
@renovate renovate bot changed the title fix(deps): update patch updates (patch) fix(deps): update patch updates (patch) - autoclosed Dec 22, 2025
@renovate renovate bot closed this Dec 22, 2025
@renovate renovate bot deleted the renovate/patch-patch-updates branch December 22, 2025 13:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@prisis prisis Awaiting requested review from prisis prisis is a code owner

Assignees

No one assigned

Labels

c: dependencies Pull requests that adds/updates a dependency

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant