fix: package.json & package-lock.json to reduce vulnerabilities (#58)#72
Merged
fix: package.json & package-lock.json to reduce vulnerabilities (#58)#72
Conversation
* fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NEXT-14400636 - https://snyk.io/vuln/SNYK-JS-NEXT-14400644 * Revert "Fix React Server Components CVE vulnerabilities" * fix: package.json & package-lock.json to reduce vulnerabilities (#14) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NEXT-14173355 Co-authored-by: snyk-bot <snyk-bot@snyk.io> * fix: package.json to reduce vulnerabilities (#22) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NEXT-14400636 - https://snyk.io/vuln/SNYK-JS-NEXT-14400644 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> * fix: package.json to reduce vulnerabilities (#19) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-PLAYWRIGHT-14888269 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> * deps: bump next from 15.3.5 to 15.5.9 (#17) Bumps [next](https://github.com/vercel/next.js) from 15.3.5 to 15.5.9. - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](https://github.com/vercel/next.js/compare/v15.3.5...v15.5.9) --- updated-dependencies: - dependency-name: next dependency-version: 15.5.9 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> * deps: bump next-auth from 5.0.0-beta.29 to 5.0.0-beta.30 (#15) Bumps [next-auth](https://github.com/nextauthjs/next-auth) from 5.0.0-beta.29 to 5.0.0-beta.30. - [Release notes](https://github.com/nextauthjs/next-auth/releases) - [Commits](https://github.com/nextauthjs/next-auth/compare/next-auth@5.0.0-beta.29...next-auth@5.0.0-beta.30) --- updated-dependencies: - dependency-name: next-auth dependency-version: 5.0.0-beta.30 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> * fix: package.json to reduce vulnerabilities (#13) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NEXT-14173355 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> Co-authored-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> * fix: upgrade react from 19.1.0 to 19.2.0 (#12) Snyk has created this PR to upgrade react from 19.1.0 to 19.2.0. See this package in npm: react See this project in Snyk: https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> * fix: upgrade typescript from 5.8.3 to 5.9.3 (#11) Snyk has created this PR to upgrade typescript from 5.8.3 to 5.9.3. See this package in npm: typescript See this project in Snyk: https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> * feat: upgrade zod from 3.25.76 to 4.1.11 (#10) Snyk has created this PR to upgrade zod from 3.25.76 to 4.1.11. See this package in npm: zod See this project in Snyk: https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> * fix: upgrade next from 15.3.5 to 15.5.4 (#9) Snyk has created this PR to upgrade next from 15.3.5 to 15.5.4. See this package in npm: next See this project in Snyk: https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> Co-authored-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> * deps: bump the dependencies-major group across 1 directory with 2 updates (#8) Bumps the dependencies-major group with 2 updates in the / directory: [next](https://github.com/vercel/next.js) and [zod](https://github.com/colinhacks/zod). Updates `next` from 15.3.5 to 16.0.0 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](https://github.com/vercel/next.js/compare/v15.3.5...v16.0.0) Updates `zod` from 3.25.76 to 4.1.12 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](https://github.com/colinhacks/zod/compare/v3.25.76...v4.1.12) --- updated-dependencies: - dependency-name: next dependency-version: 16.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies-major - dependency-name: zod dependency-version: 4.1.12 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> * fix: package.json to reduce vulnerabilities (#7) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-PLAYWRIGHTCORE-13553173 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> Co-authored-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> * Create config.yml https://github.com/Dargon789/arcjet-example/commit/d37b38ea93bbc7f860b32f5134f57fe16dc21b9b * Update .github/config.yml Co-authored-by: sourcery-ai[bot] <58596630+sourcery-ai[bot]@users.noreply.github.com> * Delete .circleci directory * #26 #27 #28 (#29) (#30) * Create config.yml https://github.com/Dargon789/arcjet-example/commit/d37b38ea93bbc7f860b32f5134f57fe16dc21b9b * Update .github/config.yml * Delete .circleci directory --------- Co-authored-by: sourcery-ai[bot] <58596630+sourcery-ai[bot]@users.noreply.github.com> * deps: bump next from 16.0.10 to 16.1.6 (#39) Bumps [next](https://github.com/vercel/next.js) from 16.0.10 to 16.1.6. - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](https://github.com/vercel/next.js/compare/v16.0.10...v16.1.6) --- updated-dependencies: - dependency-name: next dependency-version: 16.1.6 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: package.json & package-lock.json to reduce vulnerabilities (#44) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UNDICI-14943963 Co-authored-by: snyk-bot <snyk-bot@snyk.io> * deps: bump next-auth from 5.0.0-beta.29 to 5.0.0-beta.30 (#45) Bumps [next-auth](https://github.com/nextauthjs/next-auth) from 5.0.0-beta.29 to 5.0.0-beta.30. - [Release notes](https://github.com/nextauthjs/next-auth/releases) - [Commits](https://github.com/nextauthjs/next-auth/compare/next-auth@5.0.0-beta.29...next-auth@5.0.0-beta.30) --- updated-dependencies: - dependency-name: next-auth dependency-version: 5.0.0-beta.30 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * deps: bump the dependencies-minor group across 1 directory with 16 updates (#49) Bumps the dependencies-minor group with 16 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@arcjet/decorate](https://github.com/arcjet/arcjet-js/tree/HEAD/decorate) | `1.0.0-beta.9` | `1.1.0` | | [@arcjet/env](https://github.com/arcjet/arcjet-js/tree/HEAD/env) | `1.0.0-beta.9` | `1.1.0` | | [@arcjet/ip](https://github.com/arcjet/arcjet-js/tree/HEAD/ip) | `1.0.0-beta.9` | `1.1.0` | | [@fontsource-variable/figtree](https://github.com/fontsource/font-files/tree/HEAD/fonts/variable/figtree) | `5.2.8` | `5.2.10` | | [@fontsource/ibm-plex-mono](https://github.com/fontsource/font-files/tree/HEAD/fonts/google/ibm-plex-mono) | `5.2.6` | `5.2.7` | | [@hookform/resolvers](https://github.com/react-hook-form/resolvers) | `5.1.1` | `5.2.2` | | [@nosecone/next](https://github.com/arcjet/arcjet-js/tree/HEAD/nosecone-next) | `1.0.0-beta.9` | `1.1.0` | | [@oddbird/css-anchor-positioning](https://github.com/oddbird/css-anchor-positioning) | `0.6.1` | `0.8.0` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.0` | `19.2.4` | | [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.1.8` | `19.2.13` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.1.0` | `19.2.4` | | [@types/react-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-dom) | `19.1.6` | `19.2.3` | | [react-hook-form](https://github.com/react-hook-form/react-hook-form) | `7.60.0` | `7.71.1` | | [zod](https://github.com/colinhacks/zod) | `4.2.1` | `4.3.6` | | [@playwright/test](https://github.com/microsoft/playwright) | `1.55.1` | `1.58.2` | | [sass](https://github.com/sass/dart-sass) | `1.89.2` | `1.97.3` | Updates `@arcjet/decorate` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/decorate/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/decorate) Updates `@arcjet/env` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/env/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/env) Updates `@arcjet/ip` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/ip/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/ip) Updates `@fontsource-variable/figtree` from 5.2.8 to 5.2.10 - [Changelog](https://github.com/fontsource/font-files/blob/main/CHANGELOG.md) - [Commits](https://github.com/fontsource/font-files/commits/HEAD/fonts/variable/figtree) Updates `@fontsource/ibm-plex-mono` from 5.2.6 to 5.2.7 - [Changelog](https://github.com/fontsource/font-files/blob/main/CHANGELOG.md) - [Commits](https://github.com/fontsource/font-files/commits/HEAD/fonts/google/ibm-plex-mono) Updates `@hookform/resolvers` from 5.1.1 to 5.2.2 - [Release notes](https://github.com/react-hook-form/resolvers/releases) - [Commits](https://github.com/react-hook-form/resolvers/compare/v5.1.1...v5.2.2) Updates `@nosecone/next` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/nosecone-next/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/nosecone-next) Updates `@oddbird/css-anchor-positioning` from 0.6.1 to 0.8.0 - [Release notes](https://github.com/oddbird/css-anchor-positioning/releases) - [Changelog](https://github.com/oddbird/css-anchor-positioning/blob/main/CHANGELOG.md) - [Commits](https://github.com/oddbird/css-anchor-positioning/compare/v0.6.1...v0.8.0) Updates `react` from 19.2.0 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react) Updates `@types/react` from 19.1.8 to 19.2.13 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `react-dom` from 19.1.0 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom) Updates `@types/react-dom` from 19.1.6 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `react-hook-form` from 7.60.0 to 7.71.1 - [Release notes](https://github.com/react-hook-form/react-hook-form/releases) - [Changelog](https://github.com/react-hook-form/react-hook-form/blob/master/CHANGELOG.md) - [Commits](https://github.com/react-hook-form/react-hook-form/compare/v7.60.0...v7.71.1) Updates `zod` from 4.2.1 to 4.3.6 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](https://github.com/colinhacks/zod/compare/v4.2.1...v4.3.6) Updates `@playwright/test` from 1.55.1 to 1.58.2 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.55.1...v1.58.2) Updates `@types/react` from 19.1.8 to 19.2.13 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `@types/react-dom` from 19.1.6 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `sass` from 1.89.2 to 1.97.3 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.89.2...1.97.3) --- updated-dependencies: - dependency-name: "@arcjet/decorate" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@arcjet/env" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@arcjet/ip" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@fontsource-variable/figtree" dependency-version: 5.2.10 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@fontsource/ibm-plex-mono" dependency-version: 5.2.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@hookform/resolvers" dependency-version: 5.2.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@nosecone/next" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@oddbird/css-anchor-positioning" dependency-version: 0.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@types/react" dependency-version: 19.2.13 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react-dom dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react-dom" dependency-version: 19.2.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react-hook-form dependency-version: 7.71.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: zod dependency-version: 4.3.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@playwright/test" dependency-version: 1.58.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react" dependency-version: 19.2.13 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react-dom" dependency-version: 19.2.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: sass dependency-version: 1.97.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Merge pull request #26 #27 #28 (#29) (#30) (#50) (#51) * Delete .circleci directory * #26 #27 #28 (#29) (#30) * Create config.yml https://github.com/Dargon789/arcjet-example/commit/d37b38ea93bbc7f860b32f5134f57fe16dc21b9b * Update .github/config.yml * Delete .circleci directory --------- * deps: bump next from 16.0.10 to 16.1.6 (#39) Bumps [next](https://github.com/vercel/next.js) from 16.0.10 to 16.1.6. - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](https://github.com/vercel/next.js/compare/v16.0.10...v16.1.6) --- updated-dependencies: - dependency-name: next dependency-version: 16.1.6 dependency-type: direct:production ... * fix: package.json & package-lock.json to reduce vulnerabilities (#44) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UNDICI-14943963 * deps: bump next-auth from 5.0.0-beta.29 to 5.0.0-beta.30 (#45) Bumps [next-auth](https://github.com/nextauthjs/next-auth) from 5.0.0-beta.29 to 5.0.0-beta.30. - [Release notes](https://github.com/nextauthjs/next-auth/releases) - [Commits](https://github.com/nextauthjs/next-auth/compare/next-auth@5.0.0-beta.29...next-auth@5.0.0-beta.30) --- updated-dependencies: - dependency-name: next-auth dependency-version: 5.0.0-beta.30 dependency-type: direct:production ... * deps: bump the dependencies-minor group across 1 directory with 16 updates (#49) Bumps the dependencies-minor group with 16 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@arcjet/decorate](https://github.com/arcjet/arcjet-js/tree/HEAD/decorate) | `1.0.0-beta.9` | `1.1.0` | | [@arcjet/env](https://github.com/arcjet/arcjet-js/tree/HEAD/env) | `1.0.0-beta.9` | `1.1.0` | | [@arcjet/ip](https://github.com/arcjet/arcjet-js/tree/HEAD/ip) | `1.0.0-beta.9` | `1.1.0` | | [@fontsource-variable/figtree](https://github.com/fontsource/font-files/tree/HEAD/fonts/variable/figtree) | `5.2.8` | `5.2.10` | | [@fontsource/ibm-plex-mono](https://github.com/fontsource/font-files/tree/HEAD/fonts/google/ibm-plex-mono) | `5.2.6` | `5.2.7` | | [@hookform/resolvers](https://github.com/react-hook-form/resolvers) | `5.1.1` | `5.2.2` | | [@nosecone/next](https://github.com/arcjet/arcjet-js/tree/HEAD/nosecone-next) | `1.0.0-beta.9` | `1.1.0` | | [@oddbird/css-anchor-positioning](https://github.com/oddbird/css-anchor-positioning) | `0.6.1` | `0.8.0` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.0` | `19.2.4` | | [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.1.8` | `19.2.13` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.1.0` | `19.2.4` | | [@types/react-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-dom) | `19.1.6` | `19.2.3` | | [react-hook-form](https://github.com/react-hook-form/react-hook-form) | `7.60.0` | `7.71.1` | | [zod](https://github.com/colinhacks/zod) | `4.2.1` | `4.3.6` | | [@playwright/test](https://github.com/microsoft/playwright) | `1.55.1` | `1.58.2` | | [sass](https://github.com/sass/dart-sass) | `1.89.2` | `1.97.3` | Updates `@arcjet/decorate` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/decorate/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/decorate) Updates `@arcjet/env` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/env/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/env) Updates `@arcjet/ip` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/ip/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/ip) Updates `@fontsource-variable/figtree` from 5.2.8 to 5.2.10 - [Changelog](https://github.com/fontsource/font-files/blob/main/CHANGELOG.md) - [Commits](https://github.com/fontsource/font-files/commits/HEAD/fonts/variable/figtree) Updates `@fontsource/ibm-plex-mono` from 5.2.6 to 5.2.7 - [Changelog](https://github.com/fontsource/font-files/blob/main/CHANGELOG.md) - [Commits](https://github.com/fontsource/font-files/commits/HEAD/fonts/google/ibm-plex-mono) Updates `@hookform/resolvers` from 5.1.1 to 5.2.2 - [Release notes](https://github.com/react-hook-form/resolvers/releases) - [Commits](https://github.com/react-hook-form/resolvers/compare/v5.1.1...v5.2.2) Updates `@nosecone/next` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/nosecone-next/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/nosecone-next) Updates `@oddbird/css-anchor-positioning` from 0.6.1 to 0.8.0 - [Release notes](https://github.com/oddbird/css-anchor-positioning/releases) - [Changelog](https://github.com/oddbird/css-anchor-positioning/blob/main/CHANGELOG.md) - [Commits](https://github.com/oddbird/css-anchor-positioning/compare/v0.6.1...v0.8.0) Updates `react` from 19.2.0 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react) Updates `@types/react` from 19.1.8 to 19.2.13 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `react-dom` from 19.1.0 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom) Updates `@types/react-dom` from 19.1.6 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `react-hook-form` from 7.60.0 to 7.71.1 - [Release notes](https://github.com/react-hook-form/react-hook-form/releases) - [Changelog](https://github.com/react-hook-form/react-hook-form/blob/master/CHANGELOG.md) - [Commits](https://github.com/react-hook-form/react-hook-form/compare/v7.60.0...v7.71.1) Updates `zod` from 4.2.1 to 4.3.6 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](https://github.com/colinhacks/zod/compare/v4.2.1...v4.3.6) Updates `@playwright/test` from 1.55.1 to 1.58.2 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.55.1...v1.58.2) Updates `@types/react` from 19.1.8 to 19.2.13 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `@types/react-dom` from 19.1.6 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `sass` from 1.89.2 to 1.97.3 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.89.2...1.97.3) --- updated-dependencies: - dependency-name: "@arcjet/decorate" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@arcjet/env" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@arcjet/ip" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@fontsource-variable/figtree" dependency-version: 5.2.10 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@fontsource/ibm-plex-mono" dependency-version: 5.2.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@hookform/resolvers" dependency-version: 5.2.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@nosecone/next" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@oddbird/css-anchor-positioning" dependency-version: 0.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@types/react" dependency-version: 19.2.13 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react-dom dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react-dom" dependency-version: 19.2.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react-hook-form dependency-version: 7.71.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: zod dependency-version: 4.3.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@playwright/test" dependency-version: 1.58.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react" dependency-version: 19.2.13 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react-dom" dependency-version: 19.2.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: sass dependency-version: 1.97.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor ... --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: sourcery-ai[bot] <58596630+sourcery-ai[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: snyk-bot <snyk-bot@snyk.io> * Merge pull request #28 from Dargon789/Dargon789-patch-2 (#52) (#53) * #26 #27 #28 (#29) (#30) * Create config.yml https://github.com/Dargon789/arcjet-example/commit/d37b38ea93bbc7f860b32f5134f57fe16dc21b9b * Update .github/config.yml * Delete .circleci directory --------- * deps: bump next from 16.0.10 to 16.1.6 (#39) Bumps [next](https://github.com/vercel/next.js) from 16.0.10 to 16.1.6. - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](https://github.com/vercel/next.js/compare/v16.0.10...v16.1.6) --- updated-dependencies: - dependency-name: next dependency-version: 16.1.6 dependency-type: direct:production ... * fix: package.json & package-lock.json to reduce vulnerabilities (#44) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UNDICI-14943963 * deps: bump next-auth from 5.0.0-beta.29 to 5.0.0-beta.30 (#45) Bumps [next-auth](https://github.com/nextauthjs/next-auth) from 5.0.0-beta.29 to 5.0.0-beta.30. - [Release notes](https://github.com/nextauthjs/next-auth/releases) - [Commits](https://github.com/nextauthjs/next-auth/compare/next-auth@5.0.0-beta.29...next-auth@5.0.0-beta.30) --- updated-dependencies: - dependency-name: next-auth dependency-version: 5.0.0-beta.30 dependency-type: direct:production ... * deps: bump the dependencies-minor group across 1 directory with 16 updates (#49) Bumps the dependencies-minor group with 16 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@arcjet/decorate](https://github.com/arcjet/arcjet-js/tree/HEAD/decorate) | `1.0.0-beta.9` | `1.1.0` | | [@arcjet/env](https://github.com/arcjet/arcjet-js/tree/HEAD/env) | `1.0.0-beta.9` | `1.1.0` | | [@arcjet/ip](https://github.com/arcjet/arcjet-js/tree/HEAD/ip) | `1.0.0-beta.9` | `1.1.0` | | [@fontsource-variable/figtree](https://github.com/fontsource/font-files/tree/HEAD/fonts/variable/figtree) | `5.2.8` | `5.2.10` | | [@fontsource/ibm-plex-mono](https://github.com/fontsource/font-files/tree/HEAD/fonts/google/ibm-plex-mono) | `5.2.6` | `5.2.7` | | [@hookform/resolvers](https://github.com/react-hook-form/resolvers) | `5.1.1` | `5.2.2` | | [@nosecone/next](https://github.com/arcjet/arcjet-js/tree/HEAD/nosecone-next) | `1.0.0-beta.9` | `1.1.0` | | [@oddbird/css-anchor-positioning](https://github.com/oddbird/css-anchor-positioning) | `0.6.1` | `0.8.0` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.0` | `19.2.4` | | [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.1.8` | `19.2.13` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.1.0` | `19.2.4` | | [@types/react-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-dom) | `19.1.6` | `19.2.3` | | [react-hook-form](https://github.com/react-hook-form/react-hook-form) | `7.60.0` | `7.71.1` | | [zod](https://github.com/colinhacks/zod) | `4.2.1` | `4.3.6` | | [@playwright/test](https://github.com/microsoft/playwright) | `1.55.1` | `1.58.2` | | [sass](https://github.com/sass/dart-sass) | `1.89.2` | `1.97.3` | Updates `@arcjet/decorate` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/decorate/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/decorate) Updates `@arcjet/env` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/env/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/env) Updates `@arcjet/ip` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/ip/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/ip) Updates `@fontsource-variable/figtree` from 5.2.8 to 5.2.10 - [Changelog](https://github.com/fontsource/font-files/blob/main/CHANGELOG.md) - [Commits](https://github.com/fontsource/font-files/commits/HEAD/fonts/variable/figtree) Updates `@fontsource/ibm-plex-mono` from 5.2.6 to 5.2.7 - [Changelog](https://github.com/fontsource/font-files/blob/main/CHANGELOG.md) - [Commits](https://github.com/fontsource/font-files/commits/HEAD/fonts/google/ibm-plex-mono) Updates `@hookform/resolvers` from 5.1.1 to 5.2.2 - [Release notes](https://github.com/react-hook-form/resolvers/releases) - [Commits](https://github.com/react-hook-form/resolvers/compare/v5.1.1...v5.2.2) Updates `@nosecone/next` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/nosecone-next/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/nosecone-next) Updates `@oddbird/css-anchor-positioning` from 0.6.1 to 0.8.0 - [Release notes](https://github.com/oddbird/css-anchor-positioning/releases) - [Changelog](https://github.com/oddbird/css-anchor-positioning/blob/main/CHANGELOG.md) - [Commits](https://github.com/oddbird/css-anchor-positioning/compare/v0.6.1...v0.8.0) Updates `react` from 19.2.0 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react) Updates `@types/react` from 19.1.8 to 19.2.13 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `react-dom` from 19.1.0 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom) Updates `@types/react-dom` from 19.1.6 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `react-hook-form` from 7.60.0 to 7.71.1 - [Release notes](https://github.com/react-hook-form/react-hook-form/releases) - [Changelog](https://github.com/react-hook-form/react-hook-form/blob/master/CHANGELOG.md) - [Commits](https://github.com/react-hook-form/react-hook-form/compare/v7.60.0...v7.71.1) Updates `zod` from 4.2.1 to 4.3.6 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](https://github.com/colinhacks/zod/compare/v4.2.1...v4.3.6) Updates `@playwright/test` from 1.55.1 to 1.58.2 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.55.1...v1.58.2) Updates `@types/react` from 19.1.8 to 19.2.13 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `@types/react-dom` from 19.1.6 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `sass` from 1.89.2 to 1.97.3 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.89.2...1.97.3) --- updated-dependencies: - dependency-name: "@arcjet/decorate" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@arcjet/env" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@arcjet/ip" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@fontsource-variable/figtree" dependency-version: 5.2.10 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@fontsource/ibm-plex-mono" dependency-version: 5.2.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@hookform/resolvers" dependency-version: 5.2.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@nosecone/next" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@oddbird/css-anchor-positioning" dependency-version: 0.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@types/react" dependency-version: 19.2.13 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react-dom dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react-dom" dependency-version: 19.2.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react-hook-form dependency-version: 7.71.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: zod dependency-version: 4.3.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@playwright/test" dependency-version: 1.58.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react" dependency-version: 19.2.13 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react-dom" dependency-version: 19.2.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: sass dependency-version: 1.97.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor ... * Merge pull request #26 #27 #28 (#29) (#30) (#50) (#51) * Delete .circleci directory * #26 #27 #28 (#29) (#30) * Create config.yml https://github.com/Dargon789/arcjet-example/commit/d37b38ea93bbc7f860b32f5134f57fe16dc21b9b * Update .github/config.yml * Delete .circleci directory --------- * deps: bump next from 16.0.10 to 16.1.6 (#39) Bumps [next](https://github.com/vercel/next.js) from 16.0.10 to 16.1.6. - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](https://github.com/vercel/next.js/compare/v16.0.10...v16.1.6) --- updated-dependencies: - dependency-name: next dependency-version: 16.1.6 dependency-type: direct:production ... * fix: package.json & package-lock.json to reduce vulnerabilities (#44) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UNDICI-14943963 * deps: bump next-auth from 5.0.0-beta.29 to 5.0.0-beta.30 (#45) Bumps [next-auth](https://github.com/nextauthjs/next-auth) from 5.0.0-beta.29 to 5.0.0-beta.30. - [Release notes](https://github.com/nextauthjs/next-auth/releases) - [Commits](https://github.com/nextauthjs/next-auth/compare/next-auth@5.0.0-beta.29...next-auth@5.0.0-beta.30) --- updated-dependencies: - dependency-name: next-auth dependency-version: 5.0.0-beta.30 dependency-type: direct:production ... * deps: bump the dependencies-minor group across 1 directory with 16 updates (#49) Bumps the dependencies-minor group with 16 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@arcjet/decorate](https://github.com/arcjet/arcjet-js/tree/HEAD/decorate) | `1.0.0-beta.9` | `1.1.0` | | [@arcjet/env](https://github.com/arcjet/arcjet-js/tree/HEAD/env) | `1.0.0-beta.9` | `1.1.0` | | [@arcjet/ip](https://github.com/arcjet/arcjet-js/tree/HEAD/ip) | `1.0.0-beta.9` | `1.1.0` | | [@fontsource-variable/figtree](https://github.com/fontsource/font-files/tree/HEAD/fonts/variable/figtree) | `5.2.8` | `5.2.10` | | [@fontsource/ibm-plex-mono](https://github.com/fontsource/font-files/tree/HEAD/fonts/google/ibm-plex-mono) | `5.2.6` | `5.2.7` | | [@hookform/resolvers](https://github.com/react-hook-form/resolvers) | `5.1.1` | `5.2.2` | | [@nosecone/next](https://github.com/arcjet/arcjet-js/tree/HEAD/nosecone-next) | `1.0.0-beta.9` | `1.1.0` | | [@oddbird/css-anchor-positioning](https://github.com/oddbird/css-anchor-positioning) | `0.6.1` | `0.8.0` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.0` | `19.2.4` | | [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.1.8` | `19.2.13` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.1.0` | `19.2.4` | | [@types/react-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-dom) | `19.1.6` | `19.2.3` | | [react-hook-form](https://github.com/react-hook-form/react-hook-form) | `7.60.0` | `7.71.1` | | [zod](https://github.com/colinhacks/zod) | `4.2.1` | `4.3.6` | | [@playwright/test](https://github.com/microsoft/playwright) | `1.55.1` | `1.58.2` | | [sass](https://github.com/sass/dart-sass) | `1.89.2` | `1.97.3` | Updates `@arcjet/decorate` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/decorate/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/decorate) Updates `@arcjet/env` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/env/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/env) Updates `@arcjet/ip` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/ip/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/ip) Updates `@fontsource-variable/figtree` from 5.2.8 to 5.2.10 - [Changelog](https://github.com/fontsource/font-files/blob/main/CHANGELOG.md) - [Commits](https://github.com/fontsource/font-files/commits/HEAD/fonts/variable/figtree) Updates `@fontsource/ibm-plex-mono` from 5.2.6 to 5.2.7 - [Changelog](https://github.com/fontsource/font-files/blob/main/CHANGELOG.md) - [Commits](https://github.com/fontsource/font-files/commits/HEAD/fonts/google/ibm-plex-mono) Updates `@hookform/resolvers` from 5.1.1 to 5.2.2 - [Release notes](https://github.com/react-hook-form/resolvers/releases) - [Commits](https://github.com/react-hook-form/resolvers/compare/v5.1.1...v5.2.2) Updates `@nosecone/next` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/nosecone-next/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/nosecone-next) Updates `@oddbird/css-anchor-positioning` from 0.6.1 to 0.8.0 - [Release notes](https://github.com/oddbird/css-anchor-positioning/releases) - [Changelog](https://github.com/oddbird/css-anchor-positioning/blob/main/CHANGELOG.md) - [Commits](https://github.com/oddbird/css-anchor-positioning/compare/v0.6.1...v0.8.0) Updates `react` from 19.2.0 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react) Updates `@types/react` from 19.1.8 to 19.2.13 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `react-dom` from 19.1.0 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom) Updates `@types/react-dom` from 19.1.6 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `react-hook-form` from 7.60.0 to 7.71.1 - [Release notes](https://github.com/react-hook-form/react-hook-form/releases) - [Changelog](https://github.com/react-hook-form/react-hook-form/blob/master/CHANGELOG.md) - [Commits](https://github.com/react-hook-form/react-hook-form/compare/v7.60.0...v7.71.1) Updates `zod` from 4.2.1 to 4.3.6 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](https://github.com/colinhacks/zod/compare/v4.2.1...v4.3.6) Updates `@playwright/test` from 1.55.1 to 1.58.2 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.55.1...v1.58.2) Updates `@types/react` from 19.1.8 to 19.2.13 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `@types/react-dom` from 19.1.6 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `sass` from 1.89.2 to 1.97.3 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.89.2...1.97.3) --- updated-dependencies: - dependency-name: "@arcjet/decorate" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@arcjet/env" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@arcjet/ip" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@fontsource-variable/figtree" dependency-version: 5.2.10 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@fontsource/ibm-plex-mono" dependency-version: 5.2.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@hookform/resolvers" dependency-version: 5.2.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@nosecone/next" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@oddbird/css-anchor-positioning" dependency-version: 0.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@types/react" dependency-version: 19.2.13 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react-dom dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react-dom" dependency-version: 19.2.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react-hook-form dependency-version: 7.71.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: zod dependency-version: 4.3.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@playwright/test" dependency-version: 1.58.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react" dependency-version: 19.2.13 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react-dom" dependency-version: 19.2.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: sass dependency-version: 1.97.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor ... --------- --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: sourcery-ai[bot] <58596630+sourcery-ai[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: snyk-bot <snyk-bot@snyk.io> * fix: package.json & package-lock.json to reduce vulnerabilities (#56) (#57) * fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NEXT-14400636 - https://snyk.io/vuln/SNYK-JS-NEXT-14400644 * fix: package.json & package-lock.json to reduce vulnerabilities (#14) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NEXT-14173355 * fix: package.json to reduce vulnerabilities (#22) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NEXT-14400636 - https://snyk.io/vuln/SNYK-JS-NEXT-14400644 * fix: package.json to reduce vulnerabilities (#19) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-PLAYWRIGHT-14888269 * deps: bump next from 15.3.5 to 15.5.9 (#17) Bumps [next](https://github.com/vercel/next.js) from 15.3.5 to 15.5.9. - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](https://github.com/vercel/next.js/compare/v15.3.5...v15.5.9) --- updated-dependencies: - dependency-name: next dependency-version: 15.5.9 dependency-type: direct:production ... * deps: bump next-auth from 5.0.0-beta.29 to 5.0.0-beta.30 (#15) Bumps [next-auth](https://github.com/nextauthjs/next-auth) from 5.0.0-beta.29 to 5.0.0-beta.30. - [Release notes](https://github.com/nextauthjs/next-auth/releases) - [Commits](https://github.com/nextauthjs/next-auth/compare/next-auth@5.0.0-beta.29...next-auth@5.0.0-beta.30) --- updated-dependencies: - dependency-name: next-auth dependency-version: 5.0.0-beta.30 dependency-type: direct:production ... * fix: package.json to reduce vulnerabilities (#13) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NEXT-14173355 * fix: upgrade react from 19.1.0 to 19.2.0 (#12) Snyk has created this PR to upgrade react from 19.1.0 to 19.2.0. See this package in npm: react See this project in Snyk: https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr * fix: upgrade typescript from 5.8.3 to 5.9.3 (#11) Snyk has created this PR to upgrade typescript from 5.8.3 to 5.9.3. See this package in npm: typescript See this project in Snyk: https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr * feat: upgrade zod from 3.25.76 to 4.1.11 (#10) Snyk has created this PR to upgrade zod from 3.25.76 to 4.1.11. See this package in npm: zod See this project in Snyk: https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr * fix: upgrade next from 15.3.5 to 15.5.4 (#9) Snyk has created this PR to upgrade next from 15.3.5 to 15.5.4. See this package in npm: next See this project in Snyk: https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr * deps: bump the dependencies-major group across 1 directory with 2 updates (#8) Bumps the dependencies-major group with 2 updates in the / directory: [next](https://github.com/vercel/next.js) and [zod](https://github.com/colinhacks/zod). Updates `next` from 15.3.5 to 16.0.0 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](https://github.com/vercel/next.js/compare/v15.3.5...v16.0.0) Updates `zod` from 3.25.76 to 4.1.12 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](https://github.com/colinhacks/zod/compare/v3.25.76...v4.1.12) --- updated-dependencies: - dependency-name: next dependency-version: 16.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies-major - dependency-name: zod dependency-version: 4.1.12 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies-major ... * fix: package.json to reduce vulnerabilities (#7) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-PLAYWRIGHTCORE-13553173 * Create config.yml https://github.com/Dargon789/arcjet-example/commit/d37b38ea93bbc7f860b32f5134f57fe16dc21b9b * Update .github/config.yml * Delete .circleci directory * #26 #27 #28 (#29) (#30) * Create config.yml https://github.com/Dargon789/arcjet-example/commit/d37b38ea93bbc7f860b32f5134f57fe16dc21b9b * Update .github/config.yml * Delete .circleci directory --------- * deps: bump next from 16.0.10 to 16.1.6 (#39) Bumps [next](https://github.com/vercel/next.js) from 16.0.10 to 16.1.6. - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](https://github.com/vercel/next.js/compare/v16.0.10...v16.1.6) --- updated-dependencies: - dependency-name: next dependency-version: 16.1.6 dependency-type: direct:production ... * fix: package.json & package-lock.json to reduce vulnerabilities (#44) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UNDICI-14943963 * deps: bump next-auth from 5.0.0-beta.29 to 5.0.0-beta.30 (#45) Bumps [next-auth](https://github.com/nextauthjs/next-auth) from 5.0.0-beta.29 to 5.0.0-beta.30. - [Release notes](https://github.com/nextauthjs/next-auth/releases) - [Commits](https://github.com/nextauthjs/next-auth/compare/next-auth@5.0.0-beta.29...next-auth@5.0.0-beta.30) --- updated-dependencies: - dependency-name: next-auth dependency-version: 5.0.0-beta.30 dependency-type: direct:production ... * deps: bump the dependencies-minor group across 1 directory with 16 updates (#49) Bumps the dependencies-minor group with 16 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@arcjet/decorate](https://github.com/arcjet/arcjet-js/tree/HEAD/decorate) | `1.0.0-beta.9` | `1.1.0` | | [@arcjet/env](https://github.com/arcjet/arcjet-js/tree/HEAD/env) | `1.0.0-beta.9` | `1.1.0` | | [@arcjet/ip](https://github.com/arcjet/arcjet-js/tree/HEAD/ip) | `1.0.0-beta.9` | `1.1.0` | | [@fontsource-variable/figtree](https://github.com/fontsource/font-files/tree/HEAD/fonts/variable/figtree) | `5.2.8` | `5.2.10` | | [@fontsource/ibm-plex-mono](https://github.com/fontsource/font-files/tree/HEAD/fonts/google/ibm-plex-mono) | `5.2.6` | `5.2.7` | | [@hookform/resolvers](https://github.com/react-hook-form/resolvers) | `5.1.1` | `5.2.2` | | [@nosecone/next](https://github.com/arcjet/arcjet-js/tree/HEAD/nosecone-next) | `1.0.0-beta.9` | `1.1.0` | | [@oddbird/css-anchor-positioning](https://github.com/oddbird/css-anchor-positioning) | `0.6.1` | `0.8.0` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.0` | `19.2.4` | | [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.1.8` | `19.2.13` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.1.0` | `19.2.4` | | [@types/react-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-dom) | `19.1.6` | `19.2.3` | | [react-hook-form](https://github.com/react-hook-form/react-hook-form) | `7.60.0` | `7.71.1` | | [zod](https://github.com/colinhacks/zod) | `4.2.1` | `4.3.6` | | [@playwright/test](https://github.com/microsoft/playwright) | `1.55.1` | `1.58.2` | | [sass](https://github.com/sass/dart-sass) | `1.89.2` | `1.97.3` | Updates `@arcjet/decorate` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/decorate/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/decorate) Updates `@arcjet/env` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/env/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/env) Updates `@arcjet/ip` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/ip/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/ip) Updates `@fontsource-variable/figtree` from 5.2.8 to 5.2.10 - [Changelog](https://github.com/fontsource/font-files/blob/main/CHANGELOG.md) - [Commits](https://github.com/fontsource/font-files/commits/HEAD/fonts/variable/figtree) Updates `@fontsource/ibm-plex-mono` from 5.2.6 to 5.2.7 - [Changelog](https://github.com/fontsource/font-files/blob/main/CHANGELOG.md) - [Commits](https://github.com/fontsource/font-files/commits/HEAD/fonts/google/ibm-plex-mono) Updates `@hookform/resolvers` from 5.1.1 to 5.2.2 - [Release notes](https://github.com/react-hook-form/resolvers/releases) - [Commits](https://github.com/react-hook-form/resolvers/compare/v5.1.1...v5.2.2) Updates `@nosecone/next` from 1.0.0-beta.9 to 1.1.0 - [Release notes](https://github.com/arcjet/arcjet-js/releases) - [Changelog](https://github.com/arcjet/arcjet-js/blob/main/nosecone-next/CHANGELOG.md) - [Commits](https://github.com/arcjet/arcjet-js/commits/v1.1.0/nosecone-next) Updates `@oddbird/css-anchor-positioning` from 0.6.1 to 0.8.0 - [Release notes](https://github.com/oddbird/css-anchor-positioning/releases) - [Changelog](https://github.com/oddbird/css-anchor-positioning/blob/main/CHANGELOG.md) - [Commits](https://github.com/oddbird/css-anchor-positioning/compare/v0.6.1...v0.8.0) Updates `react` from 19.2.0 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react) Updates `@types/react` from 19.1.8 to 19.2.13 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `react-dom` from 19.1.0 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom) Updates `@types/react-dom` from 19.1.6 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `react-hook-form` from 7.60.0 to 7.71.1 - [Release notes](https://github.com/react-hook-form/react-hook-form/releases) - [Changelog](https://github.com/react-hook-form/react-hook-form/blob/master/CHANGELOG.md) - [Commits](https://github.com/react-hook-form/react-hook-form/compare/v7.60.0...v7.71.1) Updates `zod` from 4.2.1 to 4.3.6 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](https://github.com/colinhacks/zod/compare/v4.2.1...v4.3.6) Updates `@playwright/test` from 1.55.1 to 1.58.2 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.55.1...v1.58.2) Updates `@types/react` from 19.1.8 to 19.2.13 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `@types/react-dom` from 19.1.6 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `sass` from 1.89.2 to 1.97.3 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.89.2...1.97.3) --- updated-dependencies: - dependency-name: "@arcjet/decorate" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@arcjet/env" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@arcjet/ip" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@fontsource-variable/figtree" dependency-version: 5.2.10 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@fontsource/ibm-plex-mono" dependency-version: 5.2.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@hookform/resolvers" dependency-version: 5.2.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@nosecone/next" dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@oddbird/css-anchor-positioning" dependency-version: 0.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: "@types/react" dependency-version: 19.2.13 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react-dom dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@types/react-dom" dependency-version: 19.2.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: react-hook-form dependency-version: 7.71.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-…
Contributor
Reviewer's GuideThis PR refreshes the project’s dependency stack (Next.js, React, Arcjet, forms, tooling) to resolve Snyk-reported vulnerabilities and aligns CI configuration by moving CircleCI config into .github and pinning its Docker image tag. Flow diagram for dependency and tooling upgradesflowchart TD
App[Next_application] --> Next[next_16_1_6]
App --> React[react_19_2_4]
App --> ReactDOM[react_dom_19_2_4]
App --> NextAuth[next_auth_5_0_0_beta_30]
App --> ArcjetDecorate[arcjet_decorate_1_1_0]
App --> ArcjetEnv[arcjet_env_1_1_0]
App --> ArcjetIP[arcjet_ip_1_1_0]
App --> ArcjetNext[arcjet_next_1_1_0]
App --> NoseconeNext[nosecone_next_1_1_0]
App --> AnchorPositioning[css_anchor_positioning_0_8_0]
App --> FontsFigtree[fontsource_variable_figtree_5_2_10]
App --> FontsIBM[fontsource_ibm_plex_mono_5_2_7]
App --> Forms[react_hook_form_7_71_1]
App --> Validation[zod_4_3_6]
subgraph Tooling
App -- tests --> Playwright["@playwright_test_1_58_2"]
App -- build_styles --> Sass[sass_1_97_3]
App -- type_checking --> TS[typescript_5_9_3]
App -- react_types --> TypesReact["@types_react_19_2_13"]
App -- react_dom_types --> TypesReactDOM["@types_react_dom_19_2_3"]
end
File-Level Changes
Possibly linked issues
Tips and commandsInteracting with Sourcery
Customizing Your ExperienceAccess your dashboard to:
Getting Help
|
Contributor
✅ Snyk checks have passed. No issues have been found so far.
💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse. |
Summary of ChangesHello @Dargon789, I'm Gemini Code Assist1! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed! This pull request primarily focuses on enhancing the project's security posture and maintaining up-to-date dependencies. It incorporates a broad range of dependency upgrades, many of which directly address reported vulnerabilities in key packages like Next.js and Playwright. The updates also include significant version bumps for core development and production libraries, ensuring compatibility and leveraging the latest features and performance improvements. Highlights
Changelog
Activity
Using Gemini Code AssistThe full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips. Invoking Gemini You can request assistance from Gemini at any point by creating a comment using either
Customization To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a Limitations & Feedback Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here. You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension. Footnotes
|
![sourcery-ai[bot]](https://avatars.githubusercontent.com/in/48477?s=60&v=4){kind=small}
Contributor
There was a problem hiding this comment.
Hey - I've left some high level feedback:
- Since
nextandzodhave both been bumped across major versions, scan the codebase for any deprecated APIs or breaking changes called out in their changelogs (e.g. Next.js routing/data APIs, Zod schema helpers) and adjust usage accordingly to avoid runtime issues. - With the CircleCI image now pinned to
cimg/base:2024.01, confirm that the Node.js version in that image matches the version you expect for this project (and anyenginesfield) so local and CI environments stay aligned.
Prompt for AI Agents
Please address the comments from this code review:
## Overall Comments
- Since `next` and `zod` have both been bumped across major versions, scan the codebase for any deprecated APIs or breaking changes called out in their changelogs (e.g. Next.js routing/data APIs, Zod schema helpers) and adjust usage accordingly to avoid runtime issues.
- With the CircleCI image now pinned to `cimg/base:2024.01`, confirm that the Node.js version in that image matches the version you expect for this project (and any `engines` field) so local and CI environments stay aligned.Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.
Contributor
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
There was a problem hiding this comment.
Code Review
This pull request updates a large number of dependencies, including major version bumps for next and zod, primarily to address security vulnerabilities. It also pins the CircleCI base image to a specific version for reproducible builds, which is a great improvement. While the dependency updates are necessary, the pull request description is a collection of squashed commit messages, making it difficult to understand the full context and testing strategy for these significant changes. For future large updates, please provide a concise summary of the changes and their impact. Given the major version upgrades, it's critical to ensure that the application has been thoroughly tested for regressions.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
The following vulnerabilities are fixed with an upgrade:
Revert "Fix React Server Components CVE vulnerabilities"
fix: package.json & package-lock.json to reduce vulnerabilities ([Snyk] Security upgrade next from 15.3.5 to 15.3.6 #14)
The following vulnerabilities are fixed with an upgrade:
The following vulnerabilities are fixed with an upgrade:
The following vulnerabilities are fixed with an upgrade:
Bumps next from 15.3.5 to 15.5.9.
updated-dependencies:
Bumps next-auth from 5.0.0-beta.29 to 5.0.0-beta.30.
updated-dependencies:
The following vulnerabilities are fixed with an upgrade:
Snyk has created this PR to upgrade react from 19.1.0 to 19.2.0.
See this package in npm:
react
See this project in Snyk:
https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
Snyk has created this PR to upgrade typescript from 5.8.3 to 5.9.3.
See this package in npm:
typescript
See this project in Snyk:
https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
Snyk has created this PR to upgrade zod from 3.25.76 to 4.1.11.
See this package in npm:
zod
See this project in Snyk:
https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
Snyk has created this PR to upgrade next from 15.3.5 to 15.5.4.
See this package in npm:
next
See this project in Snyk:
https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
Bumps the dependencies-major group with 2 updates in the / directory: next and zod.
Updates
nextfrom 15.3.5 to 16.0.0Updates
zodfrom 3.25.76 to 4.1.12updated-dependencies:
The following vulnerabilities are fixed with an upgrade:
d37b38e
Update .github/config.yml
Delete .circleci directory
Merge pull request #25 from Dargon789/main #26 Create config.yml #27 Delete .circleci directory #28 (#26 #27 #28 #29) (#26 #27 #28 (#29) #30)
Create config.yml
d37b38e
Update .github/config.yml
Delete .circleci directory
Bumps next from 16.0.10 to 16.1.6.
updated-dependencies:
The following vulnerabilities are fixed with an upgrade:
Bumps next-auth from 5.0.0-beta.29 to 5.0.0-beta.30.
updated-dependencies:
Bumps the dependencies-minor group with 16 updates in the / directory:
1.0.0-beta.91.1.0Updates
@arcjet/decoratefrom 1.0.0-beta.9 to 1.1.0Updates
@arcjet/envfrom 1.0.0-beta.9 to 1.1.0Updates
@arcjet/ipfrom 1.0.0-beta.9 to 1.1.0Updates
@fontsource-variable/figtreefrom 5.2.8 to 5.2.10Updates
@fontsource/ibm-plex-monofrom 5.2.6 to 5.2.7Updates
@hookform/resolversfrom 5.1.1 to 5.2.2Updates
@nosecone/nextfrom 1.0.0-beta.9 to 1.1.0Updates
@oddbird/css-anchor-positioningfrom 0.6.1 to 0.8.0Updates
reactfrom 19.2.0 to 19.2.4Updates
@types/reactfrom 19.1.8 to 19.2.13Updates
react-domfrom 19.1.0 to 19.2.4Updates
@types/react-domfrom 19.1.6 to 19.2.3Updates
react-hook-formfrom 7.60.0 to 7.71.1Updates
zodfrom 4.2.1 to 4.3.6Updates
@playwright/testfrom 1.55.1 to 1.58.2Updates
@types/reactfrom 19.1.8 to 19.2.13Updates
@types/react-domfrom 19.1.6 to 19.2.3Updates
sassfrom 1.89.2 to 1.97.3updated-dependencies:
Merge pull request Merge pull request #25 from Dargon789/main #26 Create config.yml #27 Delete .circleci directory #28 (#26 #27 #28 #29) (#26 #27 #28 (#29) #30) (Merge pull request #26 #27 #28 (#29) (#30) #50) (Merge pull request #26 #27 #28 (#29) (#30) (#50) #51)
Delete .circleci directory
Merge pull request #25 from Dargon789/main #26 Create config.yml #27 Delete .circleci directory #28 (#26 #27 #28 #29) (#26 #27 #28 (#29) #30)
Create config.yml
d37b38e
Update .github/config.yml
Delete .circleci directory
Bumps next from 16.0.10 to 16.1.6.
updated-dependencies:
The following vulnerabilities are fixed with an upgrade:
Bumps next-auth from 5.0.0-beta.29 to 5.0.0-beta.30.
updated-dependencies:
Bumps the dependencies-minor group with 16 updates in the / directory:
1.0.0-beta.91.1.0Updates
@arcjet/decoratefrom 1.0.0-beta.9 to 1.1.0Updates
@arcjet/envfrom 1.0.0-beta.9 to 1.1.0Updates
@arcjet/ipfrom 1.0.0-beta.9 to 1.1.0Updates
@fontsource-variable/figtreefrom 5.2.8 to 5.2.10Updates
@fontsource/ibm-plex-monofrom 5.2.6 to 5.2.7Updates
@hookform/resolversfrom 5.1.1 to 5.2.2Updates
@nosecone/nextfrom 1.0.0-beta.9 to 1.1.0Updates
@oddbird/css-anchor-positioningfrom 0.6.1 to 0.8.0Updates
reactfrom 19.2.0 to 19.2.4Updates
@types/reactfrom 19.1.8 to 19.2.13Updates
react-domfrom 19.1.0 to 19.2.4Updates
@types/react-domfrom 19.1.6 to 19.2.3Updates
react-hook-formfrom 7.60.0 to 7.71.1Updates
zodfrom 4.2.1 to 4.3.6Updates
@playwright/testfrom 1.55.1 to 1.58.2Updates
@types/reactfrom 19.1.8 to 19.2.13Updates
@types/react-domfrom 19.1.6 to 19.2.3Updates
sassfrom 1.89.2 to 1.97.3updated-dependencies:
Merge pull request Delete .circleci directory #28 from Dargon789/Dargon789-patch-2 (Merge pull request #28 from Dargon789/Dargon789-patch-2 #52) (Merge pull request #28 from Dargon789/Dargon789-patch-2 (#52) #53)
Merge pull request #25 from Dargon789/main #26 Create config.yml #27 Delete .circleci directory #28 (#26 #27 #28 #29) (#26 #27 #28 (#29) #30)
Create config.yml
d37b38e
Update .github/config.yml
Delete .circleci directory
Bumps next from 16.0.10 to 16.1.6.
updated-dependencies:
The following vulnerabilities are fixed with an upgrade:
Bumps next-auth from 5.0.0-beta.29 to 5.0.0-beta.30.
updated-dependencies:
Bumps the dependencies-minor group with 16 updates in the / directory:
1.0.0-beta.91.1.0Updates
@arcjet/decoratefrom 1.0.0-beta.9 to 1.1.0Updates
@arcjet/envfrom 1.0.0-beta.9 to 1.1.0Updates
@arcjet/ipfrom 1.0.0-beta.9 to 1.1.0Updates
@fontsource-variable/figtreefrom 5.2.8 to 5.2.10Updates
@fontsource/ibm-plex-monofrom 5.2.6 to 5.2.7Updates
@hookform/resolversfrom 5.1.1 to 5.2.2Updates
@nosecone/nextfrom 1.0.0-beta.9 to 1.1.0Updates
@oddbird/css-anchor-positioningfrom 0.6.1 to 0.8.0Updates
reactfrom 19.2.0 to 19.2.4Updates
@types/reactfrom 19.1.8 to 19.2.13Updates
react-domfrom 19.1.0 to 19.2.4Updates
@types/react-domfrom 19.1.6 to 19.2.3Updates
react-hook-formfrom 7.60.0 to 7.71.1Updates
zodfrom 4.2.1 to 4.3.6Updates
@playwright/testfrom 1.55.1 to 1.58.2Updates
@types/reactfrom 19.1.8 to 19.2.13Updates
@types/react-domfrom 19.1.6 to 19.2.3Updates
sassfrom 1.89.2 to 1.97.3updated-dependencies:
Merge pull request Merge pull request #25 from Dargon789/main #26 Create config.yml #27 Delete .circleci directory #28 (#26 #27 #28 #29) (#26 #27 #28 (#29) #30) (Merge pull request #26 #27 #28 (#29) (#30) #50) (Merge pull request #26 #27 #28 (#29) (#30) (#50) #51)
Delete .circleci directory
Merge pull request #25 from Dargon789/main #26 Create config.yml #27 Delete .circleci directory #28 (#26 #27 #28 #29) (#26 #27 #28 (#29) #30)
Create config.yml
d37b38e
Update .github/config.yml
Delete .circleci directory
Bumps next from 16.0.10 to 16.1.6.
updated-dependencies:
The following vulnerabilities are fixed with an upgrade:
Bumps next-auth from 5.0.0-beta.29 to 5.0.0-beta.30.
updated-dependencies:
Bumps the dependencies-minor group with 16 updates in the / directory:
1.0.0-beta.91.1.0Updates
@arcjet/decoratefrom 1.0.0-beta.9 to 1.1.0Updates
@arcjet/envfrom 1.0.0-beta.9 to 1.1.0Updates
@arcjet/ipfrom 1.0.0-beta.9 to 1.1.0Updates
@fontsource-variable/figtreefrom 5.2.8 to 5.2.10Updates
@fontsource/ibm-plex-monofrom 5.2.6 to 5.2.7Updates
@hookform/resolversfrom 5.1.1 to 5.2.2Updates
@nosecone/nextfrom 1.0.0-beta.9 to 1.1.0Updates
@oddbird/css-anchor-positioningfrom 0.6.1 to 0.8.0Updates
reactfrom 19.2.0 to 19.2.4Updates
@types/reactfrom 19.1.8 to 19.2.13Updates
react-domfrom 19.1.0 to 19.2.4Updates
@types/react-domfrom 19.1.6 to 19.2.3Updates
react-hook-formfrom 7.60.0 to 7.71.1Updates
zodfrom 4.2.1 to 4.3.6Updates
@playwright/testfrom 1.55.1 to 1.58.2Updates
@types/reactfrom 19.1.8 to 19.2.13Updates
@types/react-domfrom 19.1.6 to 19.2.3Updates
sassfrom 1.89.2 to 1.97.3updated-dependencies:
fix: package.json & package-lock.json to reduce vulnerabilities (fix: package.json & package-lock.json to reduce vulnerabilities #56) (fix: package.json & package-lock.json to reduce vulnerabilities (#56) #57)
fix: package.json & package-lock.json to reduce vulnerabilities
The following vulnerabilities are fixed with an upgrade:
The following vulnerabilities are fixed with an upgrade:
The following vulnerabilities are fixed with an upgrade:
The following vulnerabilities are fixed with an upgrade:
Bumps next from 15.3.5 to 15.5.9.
updated-dependencies:
Bumps next-auth from 5.0.0-beta.29 to 5.0.0-beta.30.
updated-dependencies:
The following vulnerabilities are fixed with an upgrade:
Snyk has created this PR to upgrade react from 19.1.0 to 19.2.0.
See this package in npm:
react
See this project in Snyk:
https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
Snyk has created this PR to upgrade typescript from 5.8.3 to 5.9.3.
See this package in npm:
typescript
See this project in Snyk:
https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
Snyk has created this PR to upgrade zod from 3.25.76 to 4.1.11.
See this package in npm:
zod
See this project in Snyk:
https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
Snyk has created this PR to upgrade next from 15.3.5 to 15.5.4.
See this package in npm:
next
See this project in Snyk:
https://app.snyk.io/org/dargon789/project/bd915cfa-8fe9-4f58-ba9a-619316bbc691?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
Bumps the dependencies-major group with 2 updates in the / directory: next and zod.
Updates
nextfrom 15.3.5 to 16.0.0Updates
zodfrom 3.25.76 to 4.1.12updated-dependencies:
The following vulnerabilities are fixed with an upgrade:
d37b38e
Update .github/config.yml
Delete .circleci directory
Merge pull request #25 from Dargon789/main #26 Create config.yml #27 Delete .circleci directory #28 (#26 #27 #28 #29) (#26 #27 #28 (#29) #30)
Create config.yml
d37b38e
Update .github/config.yml
Delete .circleci directory
Bumps next from 16.0.10 to 16.1.6.
updated-dependencies:
The following vulnerabilities are fixed with an upgrade:
Bumps next-auth from 5.0.0-beta.29 to 5.0.0-beta.30.
updated-dependencies:
Bumps the dependencies-minor group with 16 updates in the / directory:
1.0.0-beta.91.1.0Updates
@arcjet/decoratefrom 1.0.0-beta.9 to 1.1.0Updates
@arcjet/envfrom 1.0.0-beta.9 to 1.1.0Updates
@arcjet/ipfrom 1.0.0-beta.9 to 1.1.0Updates
@fontsource-variable/figtreefrom 5.2.8 to 5.2.10Updates
@fontsource/ibm-plex-monofrom 5.2.6 to 5.2.7Updates
@hookform/resolversfrom 5.1.1 to 5.2.2Updates
@nosecone/nextfrom 1.0.0-beta.9 to 1.1.0Updates
@oddbird/css-anchor-positioningfrom 0.6.1 to 0.8.0Updates
reactfrom 19.2.0 to 19.2.4Updates
@types/reactfrom 19.1.8 to 19.2.13Updates
react-domfrom 19.1.0 to 19.2.4Updates
@types/react-domfrom 19.1.6 to 19.2.3Updates
react-hook-formfrom 7.60.0 to 7.71.1Updates
zodfrom 4.2.1 to 4.3.6Updates
@playwright/testfrom 1.55.1 to 1.58.2Updates
@types/reactfrom 19.1.8 to 19.2.13Updates
@types/react-domfrom 19.1.6 to 19.2.3Updates
sassfrom 1.89.2 to 1.97.3updated-dependencies:
Summary by Sourcery
Upgrade frontend and tooling dependencies and adjust CI configuration for more reproducible builds.
Bug Fixes:
Enhancements:
Build:
CI:
Tests: