Skip to content

build(deps): bump astro from 6.1.8 to 6.1.10 in /docs#28912

Merged
mnkiefer merged 2 commits intomainfrom
dependabot/npm_and_yarn/docs/astro-6.1.9
Apr 29, 2026
Merged

build(deps): bump astro from 6.1.8 to 6.1.10 in /docs#28912
mnkiefer merged 2 commits intomainfrom
dependabot/npm_and_yarn/docs/astro-6.1.9

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 28, 2026
edited
Loading

Bumps astro from 6.1.8 to 6.1.10.

Release notes

Sourced from astro's releases.

astro@6.1.10

Patch Changes

  • #16479 1058428 Thanks @​matthewp! - Fixes a spurious [WARN] [content] Content config not loaded warning during astro dev for projects that don't use content collections

  • #16457 3d82220 Thanks @​matthewp! - Hardens server island encryption to prevent encrypted data from one island component being replayed against a different one

  • #16481 152700e Thanks @​matthewp! - Fixes a spurious 404 request for a dev toolbar sourcemap during astro dev caused by the browser mis-resolving a relative sourceMappingURL from the /@id/ URL prefix

  • #16480 1bcb43b Thanks @​matthewp! - Fixes an unnecessary full page reload on first navigation during dev

astro@6.1.9

Patch Changes

  • #16448 99464ed Thanks @​matthewp! - Updates vite, picomatch, and unstorage to latest patch versions

  • #16422 a3951d7 Thanks @​matthewp! - Hardens astro-island export resolution and hydration error handling for malformed component metadata

  • #16420 e21de1d Thanks @​matthewp! - Hardens Astro's error overlay and server logging paths to avoid unsafe HTML insertion and format-string interpolation

  • #16419 f3485c3 Thanks @​matthewp! - Hardens nested object and package metadata lookups to ignore prototype keys in content handling and project scaffolding

  • #16022 a002540 Thanks @​mathieumaf! - Fixes an issue where i18n domains would return 404 when trailingSlash is set to never.

  • Updated dependencies [99464ed, f3485c3]:

    • @​astrojs/internal-helpers@​0.9.0
    • @​astrojs/markdown-remark@​7.1.1
Changelog

Sourced from astro's changelog.

6.1.10

Patch Changes

  • #16479 1058428 Thanks @​matthewp! - Fixes a spurious [WARN] [content] Content config not loaded warning during astro dev for projects that don't use content collections

  • #16457 3d82220 Thanks @​matthewp! - Hardens server island encryption to prevent encrypted data from one island component being replayed against a different one

  • #16481 152700e Thanks @​matthewp! - Fixes a spurious 404 request for a dev toolbar sourcemap during astro dev caused by the browser mis-resolving a relative sourceMappingURL from the /@id/ URL prefix

  • #16480 1bcb43b Thanks @​matthewp! - Fixes an unnecessary full page reload on first navigation during dev

6.1.9

Patch Changes

  • #16448 99464ed Thanks @​matthewp! - Updates vite, picomatch, and unstorage to latest patch versions

  • #16422 a3951d7 Thanks @​matthewp! - Hardens astro-island export resolution and hydration error handling for malformed component metadata

  • #16420 e21de1d Thanks @​matthewp! - Hardens Astro's error overlay and server logging paths to avoid unsafe HTML insertion and format-string interpolation

  • #16419 f3485c3 Thanks @​matthewp! - Hardens nested object and package metadata lookups to ignore prototype keys in content handling and project scaffolding

  • #16022 a002540 Thanks @​mathieumaf! - Fixes an issue where i18n domains would return 404 when trailingSlash is set to never.

  • Updated dependencies [99464ed, f3485c3]:

    • @​astrojs/internal-helpers@​0.9.0
    • @​astrojs/markdown-remark@​7.1.1
Commits
  • c1f2e4f [ci] release (#16467)
  • 345fb9e chore: fix flaky dev toolbar render time test (#16500)
  • 5120ecd [ci] format
  • 3d82220 Add AEAD context binding to server island encryption (#16457)
  • 1bcb43b Prebundle dev toolbar entrypoint in client environment (#16480)
  • 93101cc [ci] format
  • 152700e fix: strip sourceMappingURL from dev toolbar entrypoint during dep optimizati...
  • bc83041 refactor(astro): migrate test utils to typescript (#16492)
  • 5c543c5 refactor(astro): add internal entry points for test (#16473)
  • 1058428 Suppress content config warning for projects without content collections (#16...
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 28, 2026
@mnkiefer mnkiefer closed this Apr 28, 2026
@mnkiefer mnkiefer reopened this Apr 28, 2026
@github-actions

This comment has been minimized.

Sign in to view
@github-actions

This comment has been minimized.

Sign in to view
@dependabot
build(deps): bump astro from 6.1.8 to 6.1.10 in /docs
ec5cc45 
Bumps [astro](https://github.com/withastro/astro/tree/HEAD/packages/astro) from 6.1.8 to 6.1.10.
- [Release notes](https://github.com/withastro/astro/releases)
- [Changelog](https://github.com/withastro/astro/blob/main/packages/astro/CHANGELOG.md)
- [Commits](https://github.com/withastro/astro/commits/astro@6.1.10/packages/astro)

---
updated-dependencies:
- dependency-name: astro
  dependency-version: 6.1.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title Bump astro from 6.1.8 to 6.1.9 in /docs build(deps): bump astro from 6.1.8 to 6.1.10 in /docs Apr 29, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/docs/astro-6.1.9 branch from 9343c9d to ec5cc45 Compare April 29, 2026 00:45
@github-actions github-actions Bot mentioned this pull request Apr 29, 2026
Closed
@github github deleted a comment from dependabot Bot Apr 29, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented Apr 29, 2026

✅ smoke-ci: safeoutputs CLI comment + comment-memory run (25093431914)

Generated by Smoke CI for issue #28912 ·

@github-actions github-actions Bot mentioned this pull request Apr 29, 2026
Closed
@mnkiefer mnkiefer merged commit 15fa29f into main Apr 29, 2026
19 checks passed
@mnkiefer mnkiefer deleted the dependabot/npm_and_yarn/docs/astro-6.1.9 branch April 29, 2026 06:11
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented Apr 29, 2026

Dependabot Repair Review

Action: safe-out
Checks reviewed: no
Repair PR: N/A

Summary: PR #28912 is authored by dependabot[bot] (astro 6.1.8 → 6.1.10 in /docs). However, the integrity policy filtered access to check runs, PR files, and comments — making it impossible to inspect what is failing or verify that any repair would be safe.

Next Step: A human reviewer should inspect the failing checks directly and determine if a lockfile update or other minimal repair is needed.

Note

🔒 Integrity filter blocked 1 item

The following item was blocked because it doesn't meet the GitHub integrity level.

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

Generated by Dependabot Local Repair for issue #28912 · ● 346.2K ·

To install this agentic workflow, run

gh aw add githubnext/dependabot-campaign/.github/workflows/dependabot-repair.md@ff91842c074b23270d3a0e26a7206a251232a374

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mnkiefer