Skip to content

chore(deps)(deps): bump the production-dependencies group across 1 directory with 9 updates#926

Merged
hotlong merged 1 commit intomainfrom
dependabot/npm_and_yarn/production-dependencies-c9abd36020
Mar 18, 2026
Merged

chore(deps)(deps): bump the production-dependencies group across 1 directory with 9 updates#926
hotlong merged 1 commit intomainfrom
dependabot/npm_and_yarn/production-dependencies-c9abd36020

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 17, 2026
edited
Loading

Bumps the production-dependencies group with 9 updates in the / directory:

Package From To
@oclif/core 4.8.3 4.9.0
msw 2.12.10 2.12.12
better-auth 1.5.4 1.5.5
hono 4.12.5 4.12.8
next 16.1.6 16.1.7
fumadocs-core 16.6.12 16.6.17
fumadocs-mdx 14.2.9 14.2.10
fumadocs-ui 16.6.12 16.6.17
react-resizable-panels 4.7.2 4.7.3

Updates @oclif/core from 4.8.3 to 4.9.0

Release notes

Sourced from @​oclif/core's releases.

4.9.0

Features

  • warn on hidden, deprecated aliases (af47f67)

4.8.4

Bug Fixes

Changelog

Sourced from @​oclif/core's changelog.

4.9.0 (2026-03-12)

Features

  • warn on hidden, deprecated aliases (af47f67)

4.8.4 (2026-03-09)

Bug Fixes

Commits
  • 5670148 chore(release): 4.9.0 [skip ci]
  • ee6f7e3 Merge pull request #1555 from rexxars/fix/warn-on-hidden-deprecated
  • af47f67 feat: warn on hidden, deprecated aliases
  • 5216f20 chore(release): 4.8.4 [skip ci]
  • 9da9748 Merge pull request #1553 from oclif/d/W-21178947-b
  • 8bd57c0 fix: --flags-dir works on 3rd party plugins @​W-21178947@
  • 5228df4 Merge pull request #1550 from oclif/dependabot-npm_and_yarn-eslint-config-ocl...
  • feddba7 chore(dev-deps): bump eslint-config-oclif from 6.0.144 to 6.0.146
  • 50614b8 Merge pull request #1551 from oclif/dependabot-npm_and_yarn-eslint-9.39.4
  • 5d99f49 chore(dev-deps): bump eslint from 9.39.3 to 9.39.4
  • Additional commits viewable in compare view

Updates msw from 2.12.10 to 2.12.12

Release notes

Sourced from msw's releases.

v2.12.12 (2026-03-17)

Bug Fixes

v2.12.11 (2026-03-15)

Bug Fixes

Commits

Updates better-auth from 1.5.4 to 1.5.5

Release notes

Sourced from better-auth's releases.

v1.5.5

   🚀 Features

   🐞 Bug Fixes

    View changes on GitHub
Commits
  • db5a444 chore: release v1.5.5
  • 497b1db fix: add origin check middleware to password reset request (#8392)
  • ff352c6 fix(oidc-provider): validate redirect_uri for prompt=none (#8398)
  • b9e54c9 fix(db): use CREATE INDEX for postgres migration (#8538)
  • c03666a fix(oauth-provider): avoid fetch redirect CORS after login (#8519)
  • e3e6664 fix: throw on duplicate email when autoSignIn: false without `requireEmailV...
  • b6222b2 chore(client): re-export necessary types (#8497)
  • 2bd994b fix: preserve custom session fields on focus refresh (#8354)
  • eb848c4 fix(adapters): restore deprecated createAdapter and type exports for backcomp...
  • 1221a2b docs(2fa): fix OTP server API method names (#8477)
  • Additional commits viewable in compare view

Updates hono from 4.12.5 to 4.12.8

Release notes

Sourced from hono's releases.

v4.12.8

What's Changed

New Contributors

Full Changelog: honojs/hono@v4.12.7...v4.12.8

v4.12.7

Security hardening

Ignore __proto__ path segments in parseBody({ dot: true }) to prevent potential prototype pollution when merged with unsafe patterns.

Full Changelog: honojs/hono@v4.12.6...v4.12.7

v4.12.6

What's Changed

New Contributors

Full Changelog: honojs/hono@v4.12.5...v4.12.6

Commits
  • fe689ec 4.12.8
  • 0c0bf8d fix(bearer-auth): escape regex metacharacters in bearer auth prefix option (#...
  • 488ea6a fix(utils/mime): Normalize input extension to lowercase before MIME check (#4...
  • b0aba5b 4.12.7
  • 1be3a53 ci: apply automated fixes
  • ef90225 Merge commit from fork
  • 3f88636 4.12.6
  • 53b66ae fix(lambda-edge): avoid callback handler deprecation on NODEJS_24_X (#4782)
  • 58825a7 feat(jsx-renderer): support function-based options (#4780)
  • 0e80acb chore: add tsconfig.spec.json (#4798)
  • Additional commits viewable in compare view

Updates next from 16.1.6 to 16.1.7

Release notes

Sourced from next's releases.

v16.1.7

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

  • [Cache Components] Prevent streaming fetch calls from hanging in dev (#89194)
  • Apply server actions transform to node_modules in route handlers (#89380)
  • ensure maxPostponedStateSize is always respected (See: CVE-2026-27979)
  • feat(next/image): add lru disk cache and images.maximumDiskCacheSize (See: CVE-2026-27980)
  • Allow blocking cross-site dev-only websocket connections from privacy-sensitive origins (See: CVE-2026-27977)
  • Disallow Server Action submissions from privacy-sensitive contexts by default (See: CVE-2026-27978)
  • fix: patch http-proxy to prevent request smuggling in rewrites (See: CVE-2026-29057)

Credits

Huge thanks to @​unstubbable, @​styfle, @​eps1lon, and @​ztanner for helping!

Commits
  • bdf3e35 v16.1.7
  • dc98c04 [backport]: fix: patch http-proxy to prevent request smuggling in rewrites (#...
  • 9023c0a [backport] Disallow Server Action submissions from privacy-sensitive contexts...
  • 36a97b9 Allow blocking cross-site dev-only websocket connections from privacy-sensiti...
  • 93c3993 [backport]: feat(next/image): add lru disk cache and `images.maximumDiskCache...
  • c68d62d Backport documentation fixes for 16.1.x (#90655)
  • 5214ac1 [backport]: ensure maxPostponedStateSize is always respected (#90060) (#90471)
  • c95e357 Backport/docs fixes 16.1.x (#90125)
  • cba6144 [backport] Apply server actions transform to node_modules in route handlers...
  • 3db9063 [backport] [Cache Components] Prevent streaming fetch calls from hanging in d...
  • Additional commits viewable in compare view

Updates fumadocs-core from 16.6.12 to 16.6.17

Release notes

Sourced from fumadocs-core's releases.

fumadocs-core@16.6.17

Patch Changes

  • c2678c0: Improve llms.txt generation via remark-llms plugin

  • 417f07a: Expose Markdown stringifier

  • bb07706: Include root items only once in Breadcrumb.

    Previously, when includeRoot was set to true, the root item was added twice to breadcrumbs.

  • f065406: Support fuma-content integration

fumadocs-core@16.6.16

Patch Changes

  • 054da73: Implement limit option on search servers

fumadocs-core@16.6.15

No release notes provided.

fumadocs-core@16.6.14

Patch Changes

  • 8382363: [Remark Image] set placeholder to none by default

fumadocs-core@16.6.13

No release notes provided.

Commits
  • 89b7750 Version Packages (#3102)
  • 9c56f6d Base UI: fix types
  • c2678c0 MDX: Improve llms.txt generation via remark-llms plugin
  • c3a723e UI: fix codeblock RSC highlighting
  • c8a7612 format
  • 04bd349 Chore: Migrate to Vite 8
  • 8b3179f Content: output as collection pack
  • 417f07a Core: Expose Markdown stringifier
  • f065406 Core & Content: support fuma-content integration
  • 14ab30e Chore: Update sponsors page
  • Additional commits viewable in compare view

Updates fumadocs-mdx from 14.2.9 to 14.2.10

Release notes

Sourced from fumadocs-mdx's releases.

fumadocs-mdx@14.2.10

Patch Changes

  • c2678c0: Improve llms.txt generation via remark-llms plugin
  • Updated dependencies [c2678c0]
  • Updated dependencies [417f07a]
  • Updated dependencies [bb07706]
  • Updated dependencies [f065406]
    • fumadocs-core@16.6.17
Commits
  • 89b7750 Version Packages (#3102)
  • 9c56f6d Base UI: fix types
  • c2678c0 MDX: Improve llms.txt generation via remark-llms plugin
  • c3a723e UI: fix codeblock RSC highlighting
  • c8a7612 format
  • 04bd349 Chore: Migrate to Vite 8
  • 8b3179f Content: output as collection pack
  • 417f07a Core: Expose Markdown stringifier
  • f065406 Core & Content: support fuma-content integration
  • 14ab30e Chore: Update sponsors page
  • Additional commits viewable in compare view

Updates fumadocs-ui from 16.6.12 to 16.6.17

Release notes

Sourced from fumadocs-ui's releases.

fumadocs-ui@16.6.17

Patch Changes

  • c3a723e: fix codeblock RSC highlighting
  • Updated dependencies [c2678c0]
  • Updated dependencies [417f07a]
  • Updated dependencies [bb07706]
  • Updated dependencies [f065406]
    • fumadocs-core@16.6.17

fumadocs-ui@16.6.16

Patch Changes

  • Updated dependencies [054da73]
    • fumadocs-core@16.6.16

fumadocs-ui@16.6.15

Patch Changes

  • 86d3abb: fix broken tsdown CSS logic
    • fumadocs-core@16.6.15

fumadocs-ui@16.6.14

Patch Changes

  • a02048c: UI: override MDX types by default
  • 02201df: Simplify i18n setup
  • Updated dependencies [8382363]
    • fumadocs-core@16.6.14

fumadocs-ui@16.6.13

Patch Changes

  • 2702b28: Bundle page actions into UI
    • fumadocs-core@16.6.13
Commits
  • 89b7750 Version Packages (#3102)
  • 9c56f6d Base UI: fix types
  • c2678c0 MDX: Improve llms.txt generation via remark-llms plugin
  • c3a723e UI: fix codeblock RSC highlighting
  • c8a7612 format
  • 04bd349 Chore: Migrate to Vite 8
  • 8b3179f Content: output as collection pack
  • 417f07a Core: Expose Markdown stringifier
  • f065406 Core & Content: support fuma-content integration
  • 14ab30e Chore: Update sponsors page
  • Additional commits viewable in compare view

Updates react-resizable-panels from 4.7.2 to 4.7.3

Release notes

Sourced from react-resizable-panels's releases.

4.7.3

  • 690: Imperative Panel API supports non-percentage sizes
Changelog

Sourced from react-resizable-panels's changelog.

4.7.3

  • 690: Imperative Panel API supports non-percentage sizes
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 17, 2026
@vercel
Copy link

vercel bot commented Mar 17, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
objectstack-play Ready Ready Preview, Comment Mar 18, 2026 9:45am
spec Ready Ready Preview, Comment Mar 18, 2026 9:45am

Request Review

@github-actions github-actions bot added documentation Improvements or additions to documentation size/s labels Mar 17, 2026
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/production-dependencies-c9abd36020 branch from 6781955 to 9eb43fd Compare March 18, 2026 09:26
@dependabot
chore(deps)(deps): bump the production-dependencies group across 1 di…
b2f61be 
…rectory with 9 updates

Bumps the production-dependencies group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@oclif/core](https://github.com/oclif/core) | `4.8.3` | `4.9.0` |
| [msw](https://github.com/mswjs/msw) | `2.12.10` | `2.12.12` |
| [better-auth](https://github.com/better-auth/better-auth/tree/HEAD/packages/better-auth) | `1.5.4` | `1.5.5` |
| [hono](https://github.com/honojs/hono) | `4.12.5` | `4.12.8` |
| [next](https://github.com/vercel/next.js) | `16.1.6` | `16.1.7` |
| [fumadocs-core](https://github.com/fuma-nama/fumadocs) | `16.6.12` | `16.6.17` |
| [fumadocs-mdx](https://github.com/fuma-nama/fumadocs) | `14.2.9` | `14.2.10` |
| [fumadocs-ui](https://github.com/fuma-nama/fumadocs) | `16.6.12` | `16.6.17` |
| [react-resizable-panels](https://github.com/bvaughn/react-resizable-panels) | `4.7.2` | `4.7.3` |



Updates `@oclif/core` from 4.8.3 to 4.9.0
- [Release notes](https://github.com/oclif/core/releases)
- [Changelog](https://github.com/oclif/core/blob/main/CHANGELOG.md)
- [Commits](oclif/core@4.8.3...4.9.0)

Updates `msw` from 2.12.10 to 2.12.12
- [Release notes](https://github.com/mswjs/msw/releases)
- [Changelog](https://github.com/mswjs/msw/blob/main/CHANGELOG.md)
- [Commits](mswjs/msw@v2.12.10...v2.12.12)

Updates `better-auth` from 1.5.4 to 1.5.5
- [Release notes](https://github.com/better-auth/better-auth/releases)
- [Commits](https://github.com/better-auth/better-auth/commits/v1.5.5/packages/better-auth)

Updates `hono` from 4.12.5 to 4.12.8
- [Release notes](https://github.com/honojs/hono/releases)
- [Commits](honojs/hono@v4.12.5...v4.12.8)

Updates `next` from 16.1.6 to 16.1.7
- [Release notes](https://github.com/vercel/next.js/releases)
- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)
- [Commits](vercel/next.js@v16.1.6...v16.1.7)

Updates `fumadocs-core` from 16.6.12 to 16.6.17
- [Release notes](https://github.com/fuma-nama/fumadocs/releases)
- [Commits](https://github.com/fuma-nama/fumadocs/compare/fumadocs-core@16.6.12...fumadocs-core@16.6.17)

Updates `fumadocs-mdx` from 14.2.9 to 14.2.10
- [Release notes](https://github.com/fuma-nama/fumadocs/releases)
- [Commits](https://github.com/fuma-nama/fumadocs/compare/fumadocs-mdx@14.2.9...fumadocs-mdx@14.2.10)

Updates `fumadocs-ui` from 16.6.12 to 16.6.17
- [Release notes](https://github.com/fuma-nama/fumadocs/releases)
- [Commits](https://github.com/fuma-nama/fumadocs/compare/fumadocs-ui@16.6.12...fumadocs-ui@16.6.17)

Updates `react-resizable-panels` from 4.7.2 to 4.7.3
- [Release notes](https://github.com/bvaughn/react-resizable-panels/releases)
- [Changelog](https://github.com/bvaughn/react-resizable-panels/blob/main/CHANGELOG.md)
- [Commits](bvaughn/react-resizable-panels@4.7.2...4.7.3)

---
updated-dependencies:
- dependency-name: "@oclif/core"
  dependency-version: 4.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: msw
  dependency-version: 2.12.12
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: better-auth
  dependency-version: 1.5.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: hono
  dependency-version: 4.12.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: next
  dependency-version: 16.1.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: fumadocs-core
  dependency-version: 16.6.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: fumadocs-mdx
  dependency-version: 14.2.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: fumadocs-ui
  dependency-version: 16.6.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: react-resizable-panels
  dependency-version: 4.7.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/production-dependencies-c9abd36020 branch from 9eb43fd to b2f61be Compare March 18, 2026 09:33
@hotlong hotlong merged commit d38adcf into main Mar 18, 2026
10 of 14 checks passed
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/production-dependencies-c9abd36020 branch March 18, 2026 10:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file documentation Improvements or additions to documentation javascript Pull requests that update javascript code size/s

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@hotlong