starred/nginx-ui

Fork 0

mirror of https://github.com/0xJacky/nginx-ui.git synced 2026-04-25 16:55:56 +03:00

[PR #1553] [MERGED] chore(deps): update all non-major dependencies #7116

New issue

Closed

opened 2026-03-01 17:15:42 +03:00 by kerem · 0 comments

kerem commented

2026-03-01 17:15:42 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/0xJacky/nginx-ui/pull/1553
Author: @renovate[bot]
Created: 2/9/2026
Status: ✅ Merged
Merged: 2/13/2026
Merged by: @renovate[bot]

Base: dev ← Head: renovate/all-minor-patch

📝 Commits (1)

6370533 chore(deps): update all non-major dependencies

📊 Changes

7 files changed (+583 additions, -546 deletions)

View changed files

📝 .github/workflows/build.yml (+3 -3)
📝 app/package.json (+15 -15)
📝 docs/package.json (+3 -3)
📝 go.mod (+10 -10)
📝 go.sum (+18 -0)
📝 pnpm-lock.yaml (+520 -501)
📝 pnpm-workspace.yaml (+14 -14)

📄 Description

This PR contains the following updates:

Package	Change	Type	Update
@antfu/eslint-config	`^7.2.0` → `^7.4.3`	pnpm.catalog.default	minor
@antfu/eslint-config	`^7.2.0` → `^7.4.3`	devDependencies	minor
@types/node (source)	`^24.10.10` → `^24.10.13`	devDependencies	patch
@vue/compiler-sfc (source)	`^3.5.27` → `^3.5.28`	pnpm.catalog.default	patch
@vue/compiler-sfc (source)	`^3.5.27` → `^3.5.28`	devDependencies	patch
@vue/reactivity (source)	`^3.5.27` → `^3.5.28`	pnpm.catalog.default	patch
@vue/reactivity (source)	`^3.5.27` → `^3.5.28`	dependencies	patch
@vue/shared (source)	`^3.5.27` → `^3.5.28`	pnpm.catalog.default	patch
@vue/shared (source)	`^3.5.27` → `^3.5.28`	dependencies	patch
@vueuse/components (source)	`^14.2.0` → `^14.2.1`	pnpm.catalog.default	patch
@vueuse/components (source)	`^14.2.0` → `^14.2.1`	dependencies	patch
@vueuse/core (source)	`^14.2.0` → `^14.2.1`	pnpm.catalog.default	patch
@vueuse/core (source)	`^14.2.0` → `^14.2.1`	dependencies	patch
@vueuse/integrations (source)	`^14.2.0` → `^14.2.1`	pnpm.catalog.default	patch
@vueuse/integrations (source)	`^14.2.0` → `^14.2.1`	dependencies	patch
@vueuse/router (source)	`^14.2.0` → `^14.2.1`	pnpm.catalog.default	patch
@vueuse/router (source)	`^14.2.0` → `^14.2.1`	dependencies	patch
axios (source)	`^1.13.4` → `^1.13.5`	pnpm.catalog.default	patch
axios (source)	`^1.13.4` → `^1.13.5`	dependencies	patch
eslint-plugin-sonarjs (source)	`^3.0.6` → `^3.0.7`	pnpm.catalog.default	patch
eslint-plugin-sonarjs (source)	`^3.0.6` → `^3.0.7`	devDependencies	patch
github.com/alibabacloud-go/darabonba-openapi/v2	`v2.1.14` → `v2.1.15`	require	patch
github.com/cloudflare/cloudflare-go/v6	`v6.6.0` → `v6.7.0`	require	minor
github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common	`v1.3.45` → `v1.3.48`	require	patch
go (source)	`1.25.7` → `1.26.0`	golang	minor
go	`^1.25.7` → `^1.26.0`	uses-with	minor
golang.org/x/crypto	`v0.47.0` → `v0.48.0`	require	minor
golang.org/x/net	`v0.49.0` → `v0.50.0`	require	minor
golang.org/x/oauth2	`v0.34.0` → `v0.35.0`	require	minor
google.golang.org/grpc	`v1.78.0` → `v1.79.0`	require	minor
marked (source)	`^17.0.1` → `^17.0.2`	pnpm.catalog.default	patch
marked (source)	`^17.0.1` → `^17.0.2`	dependencies	patch
pnpm (source)	`10.28.2+sha512.41872f037ad22f7348e3b1debbaf7e867cfd448f2726d9cf74c08f19507c31d2c8e7a11525b983febc2df640b5438dee6023ebb1f84ed43cc2d654d2bc326264` → `10.29.3`	packageManager	minor
sortablejs	`^1.15.6` → `^1.15.7`	pnpm.catalog.default	patch
sortablejs	`^1.15.6` → `^1.15.7`	dependencies	patch
sse.js	`^2.7.2` → `^2.8.0`	pnpm.catalog.default	minor
sse.js	`^2.7.2` → `^2.8.0`	dependencies	minor
vue (source)	`^3.5.27` → `^3.5.28`	pnpm.catalog.default	patch
vue (source)	`^3.5.27` → `^3.5.28`	dependencies	patch

Release Notes

antfu/eslint-config (@antfu/eslint-config)

`v7.4.3`

Compare Source

🐞 Bug Fixes

Formating regression - by @antfu (2ef8a)

View changes on GitHub

`v7.4.2`

Compare Source

🐞 Bug Fixes

Relax eslint peer deps range - by @antfu (b5f53)

View changes on GitHub

`v7.4.1`

Compare Source

🐞 Bug Fixes

Ignore typescript files when typescript is off - by @antfu (bda75)

View changes on GitHub

`v7.4.0`

Compare Source

🚀 Features

Angular support - by @St2r and @antfu in #804 (67b1b)

🐞 Bug Fixes

Update peer dependency requirement for eslint-plugin-react-refresh - by @hyoban in #813 (19a43)

View changes on GitHub

`v7.3.0`

Compare Source

🚀 Features

Upgrade eslint-plugin-react-refresh, eslint-plugin-regexp - by @antfu (610e7)
react: Sync recommend rules - by @hyoban in #810 (1b870)

🐞 Bug Fixes

Use ConfigWithExtends instead of Linter.Config - by @hyoban in #809 (ad4e5)

View changes on GitHub

vuejs/core (@vue/compiler-sfc)

`v3.5.28`

Compare Source

Bug Fixes

transition: avoid unexpected cancelled parameter in transition done callback (#14391) (6798853)
compiler-sfc: add resolution trying for .mts/.cts files (#14402) (c09d41f), closes vuejs/router#2611
compiler-sfc: no params were generated when using withDefaults (#12823) (b0a1f05), closes #12822
reactivity: add __v_skip flag to EffectScope to prevent reactive conversion (#14359) (48b7552), closes #14357
runtime-core: avoid retaining el on cached text vnodes during static traversal (#14419) (4ace79a), closes #14134
runtime-core: prevent child component updates when style remains unchanged (#12825) (57866b5), closes #12826
runtime-core: properly handle async component update before resolve (#11619) (e71c26c), closes #11617
runtime-dom: handle null/undefined handler in withModifiers (#14362) (261de54), closes #14361
teleport: properly handling disabled teleport target anchor (#14417) (d7bcd85), closes #14412
transition-group: correct move translation under scale via element rect (#14360) (0243a79), closes #14356
useTemplateRef: don't update setup ref for useTemplateRef key (#12756) (fc40ca0), closes #12749

vueuse/vueuse (@vueuse/components)

`v14.2.1`

Compare Source

🚀 Features

Add skills at the root directory for skills cli - by @antfu (c005d)
skills: Transfer @vueuse/skills - by @serkodev in #5286 (532ac)

🐞 Bug Fixes

useRafFn: Resolve reactive null fpsLimit not being handled - by @nemanjamalesija in #5284 (8ce0d)

View changes on GitHub

axios/axios (axios)

`v1.13.5`

Compare Source

Release 1.13.5

Highlights

Security: Fixed a potential Denial of Service issue involving the __proto__ key in mergeConfig. (PR #7369)
Bug fix: Resolved an issue where AxiosError could be missing the status field on and after v1.13.3. (PR #7368)

Changes

Security

Fix Denial of Service via __proto__ key in mergeConfig. (PR #7369)

Fixes

Fix/5657. (PR #7313)
Ensure status is present in AxiosError on and after v1.13.3. (PR #7368)

Features / Improvements

Add input validation to isAbsoluteURL. (PR #7326)
Refactor: bump minor package versions. (PR #7356)

Documentation

Clarify object-check comment. (PR #7323)
Fix deprecated Buffer constructor usage and README formatting. (PR #7371)

CI / Maintenance

Chore: fix issues with YAML. (PR #7355)
CI: update workflow YAMLs. (PR #7372)
CI: fix run condition. (PR #7373)
Dev deps: bump karma-sourcemap-loader from 0.3.8 to 0.4.0. (PR #7360)
Chore(release): prepare release 1.13.5. (PR #7379)

New Contributors

@sachin11063 (first contribution — PR #7323)
@asmitha-16 (first contribution — PR #7326)

Full Changelog: https://github.com/axios/axios/compare/v1.13.4...v1.13.5

SonarSource/SonarJS (eslint-plugin-sonarjs)

`v3.0.7`

Compare Source

alibabacloud-go/darabonba-openapi (github.com/alibabacloud-go/darabonba-openapi/v2)

`v2.1.15`

Compare Source

cloudflare/cloudflare-go (github.com/cloudflare/cloudflare-go/v6)

`v6.7.0`

Compare Source

6.7.0 (2026-02-10)

Full Changelog: v6.6.0...v6.7.0

Features

fraud: add new fraud detection API package
ai_gateway: add dynamic routing endpoints for AI Gateway
ai_gateway: add provider configuration management
ai_search: add chat completions endpoint
ai_search: add search endpoint
ai_search: add custom metadata field support
ai_search: add specific sitemaps configuration for web crawler
acm: add Update method for Total TLS settings (upsert pattern)
images: add metadata filtering support for image listings with operators (eq, in) and nested fields
magic_transit: add bond_id field to site LAN configuration
cloudforce_one: add cursor-based pagination for threat events (for deep pagination beyond 100k records)
cloudforce_one: add includeCreatedEvents option to bulk threat event creation
cloudforce_one: add datasetId field to threat event responses
zero_trust: add secure_web_gateway field to MCP portal configuration
email_security: add ids field for bulk move operations (replaces postfix_ids)

Bug Fixes

acm: rename New method to Edit for Total TLS settings to match API semantics
ai: add missing string union variants for AI run response types
ai: correct ToMarkdown transform method signature to use params instead of separate file parameter
custom_certificates: make bundle_method and other fields optional in response
custom_certificates: restructure edit params with proper union types
kv: change value field to support binary data in namespace value updates
d1: mark batch field as required for multiple queries
email_security: update bulk move documentation to specify 100 message limit
origin_tls_client_auth: restructure to use proper subresource pattern
workflows: properly type timeout and delay fields as unions (string or number)
workers: correct Mode types
browser_rendering: correct test URLs
cloudforce_one: remove preserveUuid parameter (replaced by includeCreatedEvents)
cloudforce_one: remove uuid field from threat event creation parameters
radar: correct CT data source constant name casing

Chores

intel: remove deprecated IP list endpoint and associated types
update version to 6.7.0
tests: skip problematic AI ToMarkdown transform tests
api: extensive API specification updates across all packages

tencentcloud/tencentcloud-sdk-go (github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common)

golang/go (go)

`v1.26.0`

actions/go-versions (go)

`v1.26.0`: 1.26.0

Compare Source

Go 1.26.0

grpc/grpc-go (google.golang.org/grpc)

`v1.79.0`: Release 1.79.0

Compare Source

API Changes

mem: Add experimental API SetDefaultBufferPool to change the default buffer pool. (#8806)
- Special Thanks: @vanja-p
experimental/stats: Update MetricsRecorder to require embedding the new UnimplementedMetricsRecorder (a no-op struct) in all implementations for forward compatibility. (#8780)

Behavior Changes

balancer/weightedtarget: Remove handling of Addresses and only handle Endpoints in resolver updates. (#8841)

New Features

experimental/stats: Add support for asynchronous gauge metrics through the new AsyncMetricReporter and RegisterAsyncReporter APIs. (#8780)
pickfirst: Add support for weighted random shuffling of endpoints, as described in gRFC A113.
- This is enabled by default, and can be turned off using the environment variable GRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING. (#8864)
xds: Implement :authority rewriting, as specified in gRFC A81. (#8779)
balancer/randomsubsetting: Implement the random_subsetting LB policy, as specified in gRFC A68. (#8650)
- Special Thanks: @marek-szews
server: Include status detail headers, if available, when terminating a stream during request header processing. (#8754)
- Special Thanks: @joybestourous

Bug Fixes

credentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (#8726)
- Special Thanks: @Atul1710
xds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in CONNECTING state. (#8813)
health: Fix a bug where health checks failed for clients using legacy compression options (WithDecompressor or RPCDecompressor). (#8765)
- Special Thanks: @sanki92
transport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (#8769)
- Special Thanks: @joybestourous

Performance Improvements

credentials/alts: Optimize read buffer alignment to reduce copies. (#8791)
mem: Optimize pooling and creation of buffer objects. (#8784)
transport: Reduce slice re-allocations by reserving slice capacity. (#8797)

markedjs/marked (marked)

`v17.0.2`

Compare Source

pnpm/pnpm (pnpm)

`v10.29.3`

Compare Source

`v10.29.2`

Compare Source

`v10.29.1`: pnpm 10.29.1

Compare Source

Minor Changes

The pnpm dlx / pnpx command now supports the catalog: protocol. Example: pnpm dlx shx@catalog:.
Support configuring auditLevel in the pnpm-workspace.yaml file #10540.
Support bare workspace: protocol without version specifier. It is now treated as workspace:* and resolves to the concrete version during publish #10436.

Patch Changes

Fixed pnpm list --json returning incorrect paths when using global virtual store #10187.
Fix pnpm store path and pnpm store status using workspace root for path resolution when storeDir is relative #10290.
Fixed pnpm run -r failing with "No projects matched the filters" when an empty pnpm-workspace.yaml exists #10497.
Fixed a bug where catalogMode: strict would write the literal string "catalog:" to pnpm-workspace.yaml instead of the resolved version specifier when re-adding an existing catalog dependency #10176.
Fixed the documentation URL shown in pnpm completion --help to point to the correct page at https://pnpm.io/completion #10281.
Skip local file: protocol dependencies during pnpm fetch. This fixes an issue where pnpm fetch would fail in Docker builds when local directory dependencies were not available #10460.
Fixed pnpm audit --json to respect the --audit-level setting for both exit code and output filtering #10540.
update tar to version 7.5.7 to fix security issue

Updating the version of dependency tar to 7.5.7 because the previous one have a security vulnerability reported here: CVE-2026-24842
Fix pnpm audit --fix replacing reference overrides (e.g. $foo) with concrete versions #10325.
Fix shamefullyHoist set via updateConfig in .pnpmfile.cjs not being converted to publicHoistPattern #10271.
pnpm help should correctly report if the currently running pnpm CLI is bundled with Node.js #10561.
Add a warning when the current directory contains the PATH delimiter character. On macOS, folder names containing forward slashes (/) appear as colons (:) at the Unix layer. Since colons are PATH separators in POSIX systems, this breaks PATH injection for node_modules/.bin, causing binaries to not be found when running commands like pnpm exec #10457.

Platinum Sponsors

Gold Sponsors

SortableJS/Sortable (sortablejs)

`v1.15.7`

Compare Source

#2431: Fix potential browser freezing bug
#2369: Fix edge-case where inputs being erroneously re-checked when another sortable is destroyed

mpetazzoni/sse.js (sse.js)

`v2.8.0`: sse.js v2.8.0

Compare Source

This release improves SSE specification compliance: retry field now updates reconnect delay, id fields containing NULL are ignored, UTF-8 BOM at stream start is stripped, and lastEventId is updated even when no event is dispatched. Also includes comprehensive spec compliance tests.

Configuration

📅 Schedule: Branch creation - "after 2am and before 3am" (UTC), Automerge - "after 1am and before 2am" (UTC).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/0xJacky/nginx-ui/pull/1553 **Author:** [@renovate[bot]](https://github.com/apps/renovate) **Created:** 2/9/2026 **Status:** ✅ Merged **Merged:** 2/13/2026 **Merged by:** [@renovate[bot]](https://github.com/apps/renovate) **Base:** `dev` ← **Head:** `renovate/all-minor-patch` --- ### 📝 Commits (1) - [`6370533`](https://github.com/0xJacky/nginx-ui/commit/63705339c9fe42e575213cbe83764857bc15a08c) chore(deps): update all non-major dependencies ### 📊 Changes **7 files changed** (+583 additions, -546 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/build.yml` (+3 -3) 📝 `app/package.json` (+15 -15) 📝 `docs/package.json` (+3 -3) 📝 `go.mod` (+10 -10) 📝 `go.sum` (+18 -0) 📝 `pnpm-lock.yaml` (+520 -501) 📝 `pnpm-workspace.yaml` (+14 -14) </details> ### 📄 Description This PR contains the following updates: | Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) | Type | Update | |---|---|---|---|---|---| | [@antfu/eslint-config](https://redirect.github.com/antfu/eslint-config) | [`^7.2.0` → `^7.4.3`](https://renovatebot.com/diffs/npm/@antfu%2feslint-config/7.2.0/7.4.3) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@antfu%2feslint-config/7.4.3?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@antfu%2feslint-config/7.2.0/7.4.3?slim=true) | pnpm.catalog.default | minor | | [@antfu/eslint-config](https://redirect.github.com/antfu/eslint-config) | [`^7.2.0` → `^7.4.3`](https://renovatebot.com/diffs/npm/@antfu%2feslint-config/7.2.0/7.4.3) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@antfu%2feslint-config/7.4.3?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@antfu%2feslint-config/7.2.0/7.4.3?slim=true) | devDependencies | minor | | [@types/node](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/master/types/node) ([source](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node)) | [`^24.10.10` → `^24.10.13`](https://renovatebot.com/diffs/npm/@types%2fnode/24.10.10/24.10.13) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@types%2fnode/24.10.13?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@types%2fnode/24.10.10/24.10.13?slim=true) | devDependencies | patch | | [@vue/compiler-sfc](https://redirect.github.com/vuejs/core/tree/main/packages/compiler-sfc#readme) ([source](https://redirect.github.com/vuejs/core/tree/HEAD/packages/compiler-sfc)) | [`^3.5.27` → `^3.5.28`](https://renovatebot.com/diffs/npm/@vue%2fcompiler-sfc/3.5.27/3.5.28) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vue%2fcompiler-sfc/3.5.28?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vue%2fcompiler-sfc/3.5.27/3.5.28?slim=true) | pnpm.catalog.default | patch | | [@vue/compiler-sfc](https://redirect.github.com/vuejs/core/tree/main/packages/compiler-sfc#readme) ([source](https://redirect.github.com/vuejs/core/tree/HEAD/packages/compiler-sfc)) | [`^3.5.27` → `^3.5.28`](https://renovatebot.com/diffs/npm/@vue%2fcompiler-sfc/3.5.27/3.5.28) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vue%2fcompiler-sfc/3.5.28?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vue%2fcompiler-sfc/3.5.27/3.5.28?slim=true) | devDependencies | patch | | [@vue/reactivity](https://redirect.github.com/vuejs/core/tree/main/packages/reactivity#readme) ([source](https://redirect.github.com/vuejs/core/tree/HEAD/packages/reactivity)) | [`^3.5.27` → `^3.5.28`](https://renovatebot.com/diffs/npm/@vue%2freactivity/3.5.27/3.5.28) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vue%2freactivity/3.5.28?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vue%2freactivity/3.5.27/3.5.28?slim=true) | pnpm.catalog.default | patch | | [@vue/reactivity](https://redirect.github.com/vuejs/core/tree/main/packages/reactivity#readme) ([source](https://redirect.github.com/vuejs/core/tree/HEAD/packages/reactivity)) | [`^3.5.27` → `^3.5.28`](https://renovatebot.com/diffs/npm/@vue%2freactivity/3.5.27/3.5.28) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vue%2freactivity/3.5.28?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vue%2freactivity/3.5.27/3.5.28?slim=true) | dependencies | patch | | [@vue/shared](https://redirect.github.com/vuejs/core/tree/main/packages/shared#readme) ([source](https://redirect.github.com/vuejs/core/tree/HEAD/packages/shared)) | [`^3.5.27` → `^3.5.28`](https://renovatebot.com/diffs/npm/@vue%2fshared/3.5.27/3.5.28) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vue%2fshared/3.5.28?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vue%2fshared/3.5.27/3.5.28?slim=true) | pnpm.catalog.default | patch | | [@vue/shared](https://redirect.github.com/vuejs/core/tree/main/packages/shared#readme) ([source](https://redirect.github.com/vuejs/core/tree/HEAD/packages/shared)) | [`^3.5.27` → `^3.5.28`](https://renovatebot.com/diffs/npm/@vue%2fshared/3.5.27/3.5.28) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vue%2fshared/3.5.28?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vue%2fshared/3.5.27/3.5.28?slim=true) | dependencies | patch | | [@vueuse/components](https://redirect.github.com/vueuse/vueuse/tree/main/packages/components#readme) ([source](https://redirect.github.com/vueuse/vueuse/tree/HEAD/packages/components)) | [`^14.2.0` → `^14.2.1`](https://renovatebot.com/diffs/npm/@vueuse%2fcomponents/14.2.0/14.2.1) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vueuse%2fcomponents/14.2.1?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vueuse%2fcomponents/14.2.0/14.2.1?slim=true) | pnpm.catalog.default | patch | | [@vueuse/components](https://redirect.github.com/vueuse/vueuse/tree/main/packages/components#readme) ([source](https://redirect.github.com/vueuse/vueuse/tree/HEAD/packages/components)) | [`^14.2.0` → `^14.2.1`](https://renovatebot.com/diffs/npm/@vueuse%2fcomponents/14.2.0/14.2.1) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vueuse%2fcomponents/14.2.1?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vueuse%2fcomponents/14.2.0/14.2.1?slim=true) | dependencies | patch | | [@vueuse/core](https://redirect.github.com/vueuse/vueuse) ([source](https://redirect.github.com/vueuse/vueuse/tree/HEAD/packages/core)) | [`^14.2.0` → `^14.2.1`](https://renovatebot.com/diffs/npm/@vueuse%2fcore/14.2.0/14.2.1) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vueuse%2fcore/14.2.1?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vueuse%2fcore/14.2.0/14.2.1?slim=true) | pnpm.catalog.default | patch | | [@vueuse/core](https://redirect.github.com/vueuse/vueuse) ([source](https://redirect.github.com/vueuse/vueuse/tree/HEAD/packages/core)) | [`^14.2.0` → `^14.2.1`](https://renovatebot.com/diffs/npm/@vueuse%2fcore/14.2.0/14.2.1) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vueuse%2fcore/14.2.1?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vueuse%2fcore/14.2.0/14.2.1?slim=true) | dependencies | patch | | [@vueuse/integrations](https://redirect.github.com/vueuse/vueuse/tree/main/packages/integrations#readme) ([source](https://redirect.github.com/vueuse/vueuse/tree/HEAD/packages/integrations)) | [`^14.2.0` → `^14.2.1`](https://renovatebot.com/diffs/npm/@vueuse%2fintegrations/14.2.0/14.2.1) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vueuse%2fintegrations/14.2.1?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vueuse%2fintegrations/14.2.0/14.2.1?slim=true) | pnpm.catalog.default | patch | | [@vueuse/integrations](https://redirect.github.com/vueuse/vueuse/tree/main/packages/integrations#readme) ([source](https://redirect.github.com/vueuse/vueuse/tree/HEAD/packages/integrations)) | [`^14.2.0` → `^14.2.1`](https://renovatebot.com/diffs/npm/@vueuse%2fintegrations/14.2.0/14.2.1) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vueuse%2fintegrations/14.2.1?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vueuse%2fintegrations/14.2.0/14.2.1?slim=true) | dependencies | patch | | [@vueuse/router](https://redirect.github.com/vueuse/vueuse/tree/main/packages/router#readme) ([source](https://redirect.github.com/vueuse/vueuse/tree/HEAD/packages/router)) | [`^14.2.0` → `^14.2.1`](https://renovatebot.com/diffs/npm/@vueuse%2frouter/14.2.0/14.2.1) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vueuse%2frouter/14.2.1?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vueuse%2frouter/14.2.0/14.2.1?slim=true) | pnpm.catalog.default | patch | | [@vueuse/router](https://redirect.github.com/vueuse/vueuse/tree/main/packages/router#readme) ([source](https://redirect.github.com/vueuse/vueuse/tree/HEAD/packages/router)) | [`^14.2.0` → `^14.2.1`](https://renovatebot.com/diffs/npm/@vueuse%2frouter/14.2.0/14.2.1) | ![age](https://developer.mend.io/api/mc/badges/age/npm/@vueuse%2frouter/14.2.1?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vueuse%2frouter/14.2.0/14.2.1?slim=true) | dependencies | patch | | [axios](https://axios-http.com) ([source](https://redirect.github.com/axios/axios)) | [`^1.13.4` → `^1.13.5`](https://renovatebot.com/diffs/npm/axios/1.13.4/1.13.5) | ![age](https://developer.mend.io/api/mc/badges/age/npm/axios/1.13.5?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/axios/1.13.4/1.13.5?slim=true) | pnpm.catalog.default | patch | | [axios](https://axios-http.com) ([source](https://redirect.github.com/axios/axios)) | [`^1.13.4` → `^1.13.5`](https://renovatebot.com/diffs/npm/axios/1.13.4/1.13.5) | ![age](https://developer.mend.io/api/mc/badges/age/npm/axios/1.13.5?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/axios/1.13.4/1.13.5?slim=true) | dependencies | patch | | [eslint-plugin-sonarjs](https://redirect.github.com/SonarSource/SonarJS/blob/master/packages/jsts/src/rules/README.md) ([source](https://redirect.github.com/SonarSource/SonarJS)) | [`^3.0.6` → `^3.0.7`](https://renovatebot.com/diffs/npm/eslint-plugin-sonarjs/3.0.6/3.0.7) | ![age](https://developer.mend.io/api/mc/badges/age/npm/eslint-plugin-sonarjs/3.0.7?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/eslint-plugin-sonarjs/3.0.6/3.0.7?slim=true) | pnpm.catalog.default | patch | | [eslint-plugin-sonarjs](https://redirect.github.com/SonarSource/SonarJS/blob/master/packages/jsts/src/rules/README.md) ([source](https://redirect.github.com/SonarSource/SonarJS)) | [`^3.0.6` → `^3.0.7`](https://renovatebot.com/diffs/npm/eslint-plugin-sonarjs/3.0.6/3.0.7) | ![age](https://developer.mend.io/api/mc/badges/age/npm/eslint-plugin-sonarjs/3.0.7?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/eslint-plugin-sonarjs/3.0.6/3.0.7?slim=true) | devDependencies | patch | | [github.com/alibabacloud-go/darabonba-openapi/v2](https://redirect.github.com/alibabacloud-go/darabonba-openapi) | `v2.1.14` → `v2.1.15` | ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2falibabacloud-go%2fdarabonba-openapi%2fv2/v2.1.15?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2falibabacloud-go%2fdarabonba-openapi%2fv2/v2.1.14/v2.1.15?slim=true) | require | patch | | [github.com/cloudflare/cloudflare-go/v6](https://redirect.github.com/cloudflare/cloudflare-go) | `v6.6.0` → `v6.7.0` | ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fcloudflare%2fcloudflare-go%2fv6/v6.7.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fcloudflare%2fcloudflare-go%2fv6/v6.6.0/v6.7.0?slim=true) | require | minor | | [github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common](https://redirect.github.com/tencentcloud/tencentcloud-sdk-go) | `v1.3.45` → `v1.3.48` | ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2ftencentcloud%2ftencentcloud-sdk-go%2ftencentcloud%2fcommon/v1.3.48?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2ftencentcloud%2ftencentcloud-sdk-go%2ftencentcloud%2fcommon/v1.3.45/v1.3.48?slim=true) | require | patch | | [go](https://go.dev/) ([source](https://redirect.github.com/golang/go)) | `1.25.7` → `1.26.0` | ![age](https://developer.mend.io/api/mc/badges/age/golang-version/go/1.26.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/golang-version/go/1.25.7/1.26.0?slim=true) | golang | minor | | [go](https://redirect.github.com/actions/go-versions) | `^1.25.7` → `^1.26.0` | ![age](https://developer.mend.io/api/mc/badges/age/github-releases/actions%2fgo-versions/1.26.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/github-releases/actions%2fgo-versions/1.25.7/1.26.0?slim=true) | uses-with | minor | | [golang.org/x/crypto](https://pkg.go.dev/golang.org/x/crypto) | [`v0.47.0` → `v0.48.0`](https://cs.opensource.google/go/x/crypto/+/refs/tags/v0.47.0...refs/tags/v0.48.0) | ![age](https://developer.mend.io/api/mc/badges/age/go/golang.org%2fx%2fcrypto/v0.48.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/golang.org%2fx%2fcrypto/v0.47.0/v0.48.0?slim=true) | require | minor | | [golang.org/x/net](https://pkg.go.dev/golang.org/x/net) | [`v0.49.0` → `v0.50.0`](https://cs.opensource.google/go/x/net/+/refs/tags/v0.49.0...refs/tags/v0.50.0) | ![age](https://developer.mend.io/api/mc/badges/age/go/golang.org%2fx%2fnet/v0.50.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/golang.org%2fx%2fnet/v0.49.0/v0.50.0?slim=true) | require | minor | | [golang.org/x/oauth2](https://pkg.go.dev/golang.org/x/oauth2) | [`v0.34.0` → `v0.35.0`](https://cs.opensource.google/go/x/oauth2/+/refs/tags/v0.34.0...refs/tags/v0.35.0) | ![age](https://developer.mend.io/api/mc/badges/age/go/golang.org%2fx%2foauth2/v0.35.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/golang.org%2fx%2foauth2/v0.34.0/v0.35.0?slim=true) | require | minor | | [google.golang.org/grpc](https://redirect.github.com/grpc/grpc-go) | `v1.78.0` → `v1.79.0` | ![age](https://developer.mend.io/api/mc/badges/age/go/google.golang.org%2fgrpc/v1.79.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/google.golang.org%2fgrpc/v1.78.0/v1.79.0?slim=true) | require | minor | | [marked](https://marked.js.org) ([source](https://redirect.github.com/markedjs/marked)) | [`^17.0.1` → `^17.0.2`](https://renovatebot.com/diffs/npm/marked/17.0.1/17.0.2) | ![age](https://developer.mend.io/api/mc/badges/age/npm/marked/17.0.2?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/marked/17.0.1/17.0.2?slim=true) | pnpm.catalog.default | patch | | [marked](https://marked.js.org) ([source](https://redirect.github.com/markedjs/marked)) | [`^17.0.1` → `^17.0.2`](https://renovatebot.com/diffs/npm/marked/17.0.1/17.0.2) | ![age](https://developer.mend.io/api/mc/badges/age/npm/marked/17.0.2?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/marked/17.0.1/17.0.2?slim=true) | dependencies | patch | | [pnpm](https://pnpm.io) ([source](https://redirect.github.com/pnpm/pnpm/tree/HEAD/pnpm)) | [`10.28.2+sha512.41872f037ad22f7348e3b1debbaf7e867cfd448f2726d9cf74c08f19507c31d2c8e7a11525b983febc2df640b5438dee6023ebb1f84ed43cc2d654d2bc326264` → `10.29.3`](https://renovatebot.com/diffs/npm/pnpm/10.28.2/10.29.3) | ![age](https://developer.mend.io/api/mc/badges/age/npm/pnpm/10.29.3?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/pnpm/10.28.2/10.29.3?slim=true) | packageManager | minor | | [sortablejs](https://redirect.github.com/SortableJS/Sortable) | [`^1.15.6` → `^1.15.7`](https://renovatebot.com/diffs/npm/sortablejs/1.15.6/1.15.7) | ![age](https://developer.mend.io/api/mc/badges/age/npm/sortablejs/1.15.7?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/sortablejs/1.15.6/1.15.7?slim=true) | pnpm.catalog.default | patch | | [sortablejs](https://redirect.github.com/SortableJS/Sortable) | [`^1.15.6` → `^1.15.7`](https://renovatebot.com/diffs/npm/sortablejs/1.15.6/1.15.7) | ![age](https://developer.mend.io/api/mc/badges/age/npm/sortablejs/1.15.7?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/sortablejs/1.15.6/1.15.7?slim=true) | dependencies | patch | | [sse.js](https://redirect.github.com/mpetazzoni/sse.js) | [`^2.7.2` → `^2.8.0`](https://renovatebot.com/diffs/npm/sse.js/2.7.2/2.8.0) | ![age](https://developer.mend.io/api/mc/badges/age/npm/sse.js/2.8.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/sse.js/2.7.2/2.8.0?slim=true) | pnpm.catalog.default | minor | | [sse.js](https://redirect.github.com/mpetazzoni/sse.js) | [`^2.7.2` → `^2.8.0`](https://renovatebot.com/diffs/npm/sse.js/2.7.2/2.8.0) | ![age](https://developer.mend.io/api/mc/badges/age/npm/sse.js/2.8.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/sse.js/2.7.2/2.8.0?slim=true) | dependencies | minor | | [vue](https://redirect.github.com/vuejs/core/tree/main/packages/vue#readme) ([source](https://redirect.github.com/vuejs/core)) | [`^3.5.27` → `^3.5.28`](https://renovatebot.com/diffs/npm/vue/3.5.27/3.5.28) | ![age](https://developer.mend.io/api/mc/badges/age/npm/vue/3.5.28?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/vue/3.5.27/3.5.28?slim=true) | pnpm.catalog.default | patch | | [vue](https://redirect.github.com/vuejs/core/tree/main/packages/vue#readme) ([source](https://redirect.github.com/vuejs/core)) | [`^3.5.27` → `^3.5.28`](https://renovatebot.com/diffs/npm/vue/3.5.27/3.5.28) | ![age](https://developer.mend.io/api/mc/badges/age/npm/vue/3.5.28?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/vue/3.5.27/3.5.28?slim=true) | dependencies | patch | --- ### Release Notes <details> <summary>antfu/eslint-config (@antfu/eslint-config)</summary> ### [`v7.4.3`](https://redirect.github.com/antfu/eslint-config/releases/tag/v7.4.3) [Compare Source](https://redirect.github.com/antfu/eslint-config/compare/v7.4.2...v7.4.3) ##### 🐞 Bug Fixes - Formating regression - by [@antfu](https://redirect.github.com/antfu) [<samp>(2ef8a)</samp>](https://redirect.github.com/antfu/eslint-config/commit/2ef8a00) ##### [View changes on GitHub](https://redirect.github.com/antfu/eslint-config/compare/v7.4.2...v7.4.3) ### [`v7.4.2`](https://redirect.github.com/antfu/eslint-config/releases/tag/v7.4.2) [Compare Source](https://redirect.github.com/antfu/eslint-config/compare/v7.4.1...v7.4.2) ##### 🐞 Bug Fixes - Relax eslint peer deps range - by [@antfu](https://redirect.github.com/antfu) [<samp>(b5f53)</samp>](https://redirect.github.com/antfu/eslint-config/commit/b5f53dc) ##### [View changes on GitHub](https://redirect.github.com/antfu/eslint-config/compare/v7.4.1...v7.4.2) ### [`v7.4.1`](https://redirect.github.com/antfu/eslint-config/releases/tag/v7.4.1) [Compare Source](https://redirect.github.com/antfu/eslint-config/compare/v7.4.0...v7.4.1) ##### 🐞 Bug Fixes - Ignore typescript files when `typescript` is off - by [@antfu](https://redirect.github.com/antfu) [<samp>(bda75)</samp>](https://redirect.github.com/antfu/eslint-config/commit/bda75b8) ##### [View changes on GitHub](https://redirect.github.com/antfu/eslint-config/compare/v7.4.0...v7.4.1) ### [`v7.4.0`](https://redirect.github.com/antfu/eslint-config/releases/tag/v7.4.0) [Compare Source](https://redirect.github.com/antfu/eslint-config/compare/v7.3.0...v7.4.0) ##### 🚀 Features - Angular support - by [@St2r](https://redirect.github.com/St2r) and [@antfu](https://redirect.github.com/antfu) in [#804](https://redirect.github.com/antfu/eslint-config/issues/804) [<samp>(67b1b)</samp>](https://redirect.github.com/antfu/eslint-config/commit/67b1be4) ##### 🐞 Bug Fixes - Update peer dependency requirement for eslint-plugin-react-refresh - by [@hyoban](https://redirect.github.com/hyoban) in [#813](https://redirect.github.com/antfu/eslint-config/issues/813) [<samp>(19a43)</samp>](https://redirect.github.com/antfu/eslint-config/commit/19a4312) ##### [View changes on GitHub](https://redirect.github.com/antfu/eslint-config/compare/v7.3.0...v7.4.0) ### [`v7.3.0`](https://redirect.github.com/antfu/eslint-config/releases/tag/v7.3.0) [Compare Source](https://redirect.github.com/antfu/eslint-config/compare/v7.2.0...v7.3.0) ##### 🚀 Features - Upgrade `eslint-plugin-react-refresh`, `eslint-plugin-regexp` - by [@antfu](https://redirect.github.com/antfu) [<samp>(610e7)</samp>](https://redirect.github.com/antfu/eslint-config/commit/610e7b0) - **react**: Sync recommend rules - by [@hyoban](https://redirect.github.com/hyoban) in [#810](https://redirect.github.com/antfu/eslint-config/issues/810) [<samp>(1b870)</samp>](https://redirect.github.com/antfu/eslint-config/commit/1b87085) ##### 🐞 Bug Fixes - Use ConfigWithExtends instead of Linter.Config - by [@hyoban](https://redirect.github.com/hyoban) in [#809](https://redirect.github.com/antfu/eslint-config/issues/809) [<samp>(ad4e5)</samp>](https://redirect.github.com/antfu/eslint-config/commit/ad4e54e) ##### [View changes on GitHub](https://redirect.github.com/antfu/eslint-config/compare/v7.2.0...v7.3.0) </details> <details> <summary>vuejs/core (@vue/compiler-sfc)</summary> ### [`v3.5.28`](https://redirect.github.com/vuejs/core/blob/HEAD/CHANGELOG.md#3528-2026-02-09) [Compare Source](https://redirect.github.com/vuejs/core/compare/v3.5.27...v3.5.28) ##### Bug Fixes - **transition:** avoid unexpected `cancelled` parameter in transition `done` callback ([#14391](https://redirect.github.com/vuejs/core/issues/14391)) ([6798853](https://redirect.github.com/vuejs/core/commit/67988530f6a3cfdd0d80bf967033cb9abf377174)) - **compiler-sfc:** add resolution trying for `.mts/.cts` files ([#14402](https://redirect.github.com/vuejs/core/issues/14402)) ([c09d41f](https://redirect.github.com/vuejs/core/commit/c09d41ffe150903b1fcd69a6f6bdeea2d2c6c243)), closes [vuejs/router#2611](https://redirect.github.com/vuejs/router/issues/2611) - **compiler-sfc:** no params were generated when using withDefaults ([#12823](https://redirect.github.com/vuejs/core/issues/12823)) ([b0a1f05](https://redirect.github.com/vuejs/core/commit/b0a1f0504a67fb1a6a110a5d05cdec0b878dde29)), closes [#12822](https://redirect.github.com/vuejs/core/issues/12822) - **reactivity:** add `__v_skip` flag to `EffectScope` to prevent reactive conversion ([#14359](https://redirect.github.com/vuejs/core/issues/14359)) ([48b7552](https://redirect.github.com/vuejs/core/commit/48b7552cce784725376a4fab078272676ce02d69)), closes [#14357](https://redirect.github.com/vuejs/core/issues/14357) - **runtime-core:** avoid retaining el on cached text vnodes during static traversal ([#14419](https://redirect.github.com/vuejs/core/issues/14419)) ([4ace79a](https://redirect.github.com/vuejs/core/commit/4ace79ac4c66a4f96cd330b47474ce117bc851ab)), closes [#14134](https://redirect.github.com/vuejs/core/issues/14134) - **runtime-core:** prevent child component updates when style remains unchanged ([#12825](https://redirect.github.com/vuejs/core/issues/12825)) ([57866b5](https://redirect.github.com/vuejs/core/commit/57866b5af1aff7ce1026b529443b81465c56f802)), closes [#12826](https://redirect.github.com/vuejs/core/issues/12826) - **runtime-core:** properly handle async component update before resolve ([#11619](https://redirect.github.com/vuejs/core/issues/11619)) ([e71c26c](https://redirect.github.com/vuejs/core/commit/e71c26c03d44c9c93569ed7ebfe7dabaf3bbdb06)), closes [#11617](https://redirect.github.com/vuejs/core/issues/11617) - **runtime-dom:** handle null/undefined handler in withModifiers ([#14362](https://redirect.github.com/vuejs/core/issues/14362)) ([261de54](https://redirect.github.com/vuejs/core/commit/261de547cd6685fc8862679941d93b530d504731)), closes [#14361](https://redirect.github.com/vuejs/core/issues/14361) - **teleport:** properly handling disabled teleport target anchor ([#14417](https://redirect.github.com/vuejs/core/issues/14417)) ([d7bcd85](https://redirect.github.com/vuejs/core/commit/d7bcd858883d90a1593b45cdc43f9fa55bc790bc)), closes [#14412](https://redirect.github.com/vuejs/core/issues/14412) - **transition-group:** correct move translation under scale via element rect ([#14360](https://redirect.github.com/vuejs/core/issues/14360)) ([0243a79](https://redirect.github.com/vuejs/core/commit/0243a792ac1cf8b0308f552927ed2ecd8627b839)), closes [#14356](https://redirect.github.com/vuejs/core/issues/14356) - **useTemplateRef:** don't update setup ref for useTemplateRef key ([#12756](https://redirect.github.com/vuejs/core/issues/12756)) ([fc40ca0](https://redirect.github.com/vuejs/core/commit/fc40ca0216a7028f6ec0195344c976423e239ef3)), closes [#12749](https://redirect.github.com/vuejs/core/issues/12749) </details> <details> <summary>vueuse/vueuse (@vueuse/components)</summary> ### [`v14.2.1`](https://redirect.github.com/vueuse/vueuse/releases/tag/v14.2.1) [Compare Source](https://redirect.github.com/vueuse/vueuse/compare/v14.2.0...v14.2.1) ##### 🚀 Features - Add skills at the root directory for skills cli - by [@antfu](https://redirect.github.com/antfu) [<samp>(c005d)</samp>](https://redirect.github.com/vueuse/vueuse/commit/c005dbef) - **skills**: Transfer `@vueuse/skills` - by [@serkodev](https://redirect.github.com/serkodev) in [#5286](https://redirect.github.com/vueuse/vueuse/issues/5286) [<samp>(532ac)</samp>](https://redirect.github.com/vueuse/vueuse/commit/532acd2d) ##### 🐞 Bug Fixes - **useRafFn**: Resolve reactive null fpsLimit not being handled - by [@nemanjamalesija](https://redirect.github.com/nemanjamalesija) in [#5284](https://redirect.github.com/vueuse/vueuse/issues/5284) [<samp>(8ce0d)</samp>](https://redirect.github.com/vueuse/vueuse/commit/8ce0dae1) ##### [View changes on GitHub](https://redirect.github.com/vueuse/vueuse/compare/v14.2.0...v14.2.1) </details> <details> <summary>axios/axios (axios)</summary> ### [`v1.13.5`](https://redirect.github.com/axios/axios/releases/tag/v1.13.5) [Compare Source](https://redirect.github.com/axios/axios/compare/v1.13.4...v1.13.5) #### Release 1.13.5 ##### Highlights - **Security:** Fixed a potential **Denial of Service** issue involving the `__proto__` key in `mergeConfig`. (PR [#7369](https://redirect.github.com/axios/axios/pull/7369)) - **Bug fix:** Resolved an issue where `AxiosError` could be missing the `status` field on and after **v1.13.3**. (PR [#7368](https://redirect.github.com/axios/axios/pull/7368)) ##### Changes ##### Security - Fix Denial of Service via `__proto__` key in `mergeConfig`. (PR [#7369](https://redirect.github.com/axios/axios/pull/7369)) ##### Fixes - Fix/5657. (PR [#7313](https://redirect.github.com/axios/axios/pull/7313)) - Ensure `status` is present in `AxiosError` on and after v1.13.3. (PR [#7368](https://redirect.github.com/axios/axios/pull/7368)) ##### Features / Improvements - Add input validation to `isAbsoluteURL`. (PR [#7326](https://redirect.github.com/axios/axios/pull/7326)) - Refactor: bump minor package versions. (PR [#7356](https://redirect.github.com/axios/axios/pull/7356)) ##### Documentation - Clarify object-check comment. (PR [#7323](https://redirect.github.com/axios/axios/pull/7323)) - Fix deprecated `Buffer` constructor usage and README formatting. (PR [#7371](https://redirect.github.com/axios/axios/pull/7371)) ##### CI / Maintenance - Chore: fix issues with YAML. (PR [#7355](https://redirect.github.com/axios/axios/pull/7355)) - CI: update workflow YAMLs. (PR [#7372](https://redirect.github.com/axios/axios/pull/7372)) - CI: fix run condition. (PR [#7373](https://redirect.github.com/axios/axios/pull/7373)) - Dev deps: bump `karma-sourcemap-loader` from 0.3.8 to 0.4.0. (PR [#7360](https://redirect.github.com/axios/axios/pull/7360)) - Chore(release): prepare release 1.13.5. (PR [#7379](https://redirect.github.com/axios/axios/pull/7379)) ##### New Contributors - [@sachin11063](https://redirect.github.com/sachin11063) (first contribution — PR [#7323](https://redirect.github.com/axios/axios/pull/7323)) - [@asmitha-16](https://redirect.github.com/asmitha-16) (first contribution — PR [#7326](https://redirect.github.com/axios/axios/pull/7326)) **Full Changelog:** <https://github.com/axios/axios/compare/v1.13.4...v1.13.5> </details> <details> <summary>SonarSource/SonarJS (eslint-plugin-sonarjs)</summary> ### [`v3.0.7`](https://redirect.github.com/SonarSource/SonarJS/compare/858954f8762d01ad7d05db4e1ab09adf94f20e3c...ec9fc32d84fcb80aa65892b1ddec3056234ff10e) [Compare Source](https://redirect.github.com/SonarSource/SonarJS/compare/858954f8762d01ad7d05db4e1ab09adf94f20e3c...ec9fc32d84fcb80aa65892b1ddec3056234ff10e) </details> <details> <summary>alibabacloud-go/darabonba-openapi (github.com/alibabacloud-go/darabonba-openapi/v2)</summary> ### [`v2.1.15`](https://redirect.github.com/alibabacloud-go/darabonba-openapi/compare/v2.1.14...v2.1.15) [Compare Source](https://redirect.github.com/alibabacloud-go/darabonba-openapi/compare/v2.1.14...v2.1.15) </details> <details> <summary>cloudflare/cloudflare-go (github.com/cloudflare/cloudflare-go/v6)</summary> ### [`v6.7.0`](https://redirect.github.com/cloudflare/cloudflare-go/releases/tag/v6.7.0) [Compare Source](https://redirect.github.com/cloudflare/cloudflare-go/compare/v6.6.0...v6.7.0) #### 6.7.0 (2026-02-10) Full Changelog: [v6.6.0...v6.7.0](https://redirect.github.com/cloudflare/cloudflare-go/compare/v6.6.0...v6.7.0) ##### Features - **fraud:** add new fraud detection API package - **ai\_gateway:** add dynamic routing endpoints for AI Gateway - **ai\_gateway:** add provider configuration management - **ai\_search:** add chat completions endpoint - **ai\_search:** add search endpoint - **ai\_search:** add custom metadata field support - **ai\_search:** add specific sitemaps configuration for web crawler - **acm:** add Update method for Total TLS settings (upsert pattern) - **images:** add metadata filtering support for image listings with operators (eq, in) and nested fields - **magic\_transit:** add bond\_id field to site LAN configuration - **cloudforce\_one:** add cursor-based pagination for threat events (for deep pagination beyond 100k records) - **cloudforce\_one:** add includeCreatedEvents option to bulk threat event creation - **cloudforce\_one:** add datasetId field to threat event responses - **zero\_trust:** add secure\_web\_gateway field to MCP portal configuration - **email\_security:** add ids field for bulk move operations (replaces postfix\_ids) ##### Bug Fixes - **acm:** rename New method to Edit for Total TLS settings to match API semantics - **ai:** add missing string union variants for AI run response types - **ai:** correct ToMarkdown transform method signature to use params instead of separate file parameter - **custom\_certificates:** make bundle\_method and other fields optional in response - **custom\_certificates:** restructure edit params with proper union types - **kv:** change value field to support binary data in namespace value updates - **d1:** mark batch field as required for multiple queries - **email\_security:** update bulk move documentation to specify 100 message limit - **origin\_tls\_client\_auth:** restructure to use proper subresource pattern - **workflows:** properly type timeout and delay fields as unions (string or number) - **workers:** correct Mode types - **browser\_rendering:** correct test URLs - **cloudforce\_one:** remove preserveUuid parameter (replaced by includeCreatedEvents) - **cloudforce\_one:** remove uuid field from threat event creation parameters - **radar:** correct CT data source constant name casing ##### Chores - **intel:** remove deprecated IP list endpoint and associated types - update version to 6.7.0 - **tests:** skip problematic AI ToMarkdown transform tests - **api:** extensive API specification updates across all packages </details> <details> <summary>tencentcloud/tencentcloud-sdk-go (github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common)</summary> ### [`v1.3.48`](https://redirect.github.com/tencentcloud/tencentcloud-sdk-go/compare/v1.3.47...v1.3.48) [Compare Source](https://redirect.github.com/tencentcloud/tencentcloud-sdk-go/compare/v1.3.47...v1.3.48) ### [`v1.3.47`](https://redirect.github.com/tencentcloud/tencentcloud-sdk-go/compare/v1.3.46...v1.3.47) [Compare Source](https://redirect.github.com/tencentcloud/tencentcloud-sdk-go/compare/v1.3.46...v1.3.47) ### [`v1.3.46`](https://redirect.github.com/tencentcloud/tencentcloud-sdk-go/compare/v1.3.45...v1.3.46) [Compare Source](https://redirect.github.com/tencentcloud/tencentcloud-sdk-go/compare/v1.3.45...v1.3.46) </details> <details> <summary>golang/go (go)</summary> ### [`v1.26.0`](https://redirect.github.com/golang/go/compare/go1.25.7...go1.26rc2) </details> <details> <summary>actions/go-versions (go)</summary> ### [`v1.26.0`](https://redirect.github.com/actions/go-versions/releases/tag/1.26.0-21889650668): 1.26.0 [Compare Source](https://redirect.github.com/actions/go-versions/compare/1.25.7-21696103256...1.26.0-21889650668) Go 1.26.0 </details> <details> <summary>grpc/grpc-go (google.golang.org/grpc)</summary> ### [`v1.79.0`](https://redirect.github.com/grpc/grpc-go/releases/tag/v1.79.0): Release 1.79.0 [Compare Source](https://redirect.github.com/grpc/grpc-go/compare/v1.78.0...v1.79.0) ### API Changes - mem: Add experimental API `SetDefaultBufferPool` to change the default buffer pool. ([#8806](https://redirect.github.com/grpc/grpc-go/issues/8806)) - Special Thanks: [@vanja-p](https://redirect.github.com/vanja-p) - experimental/stats: Update `MetricsRecorder` to require embedding the new `UnimplementedMetricsRecorder` (a no-op struct) in all implementations for forward compatibility. ([#8780](https://redirect.github.com/grpc/grpc-go/issues/8780)) ### Behavior Changes - balancer/weightedtarget: Remove handling of `Addresses` and only handle `Endpoints` in resolver updates. ([#8841](https://redirect.github.com/grpc/grpc-go/issues/8841)) ### New Features - experimental/stats: Add support for asynchronous gauge metrics through the new `AsyncMetricReporter` and `RegisterAsyncReporter` APIs. ([#8780](https://redirect.github.com/grpc/grpc-go/issues/8780)) - pickfirst: Add support for weighted random shuffling of endpoints, as described in [gRFC A113](https://redirect.github.com/grpc/proposal/pull/535). - This is enabled by default, and can be turned off using the environment variable `GRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING`. ([#8864](https://redirect.github.com/grpc/grpc-go/issues/8864)) - xds: Implement `:authority` rewriting, as specified in [gRFC A81](https://redirect.github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md). ([#8779](https://redirect.github.com/grpc/grpc-go/issues/8779)) - balancer/randomsubsetting: Implement the `random_subsetting` LB policy, as specified in [gRFC A68](https://redirect.github.com/grpc/proposal/blob/master/A68-random-subsetting.md). ([#8650](https://redirect.github.com/grpc/grpc-go/issues/8650)) - Special Thanks: [@marek-szews](https://redirect.github.com/marek-szews) - server: Include status detail headers, if available, when terminating a stream during request header processing. ([#8754](https://redirect.github.com/grpc/grpc-go/issues/8754)) - Special Thanks: [@joybestourous](https://redirect.github.com/joybestourous) ### Bug Fixes - credentials/tls: Fix a bug where the port was not stripped from the authority override before validation. ([#8726](https://redirect.github.com/grpc/grpc-go/issues/8726)) - Special Thanks: [@Atul1710](https://redirect.github.com/Atul1710) - xds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in `CONNECTING` state. ([#8813](https://redirect.github.com/grpc/grpc-go/issues/8813)) - health: Fix a bug where health checks failed for clients using legacy compression options (`WithDecompressor` or `RPCDecompressor`). ([#8765](https://redirect.github.com/grpc/grpc-go/issues/8765)) - Special Thanks: [@sanki92](https://redirect.github.com/sanki92) - transport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. ([#8769](https://redirect.github.com/grpc/grpc-go/issues/8769)) - Special Thanks: [@joybestourous](https://redirect.github.com/joybestourous) ### Performance Improvements - credentials/alts: Optimize read buffer alignment to reduce copies. ([#8791](https://redirect.github.com/grpc/grpc-go/issues/8791)) - mem: Optimize pooling and creation of `buffer` objects. ([#8784](https://redirect.github.com/grpc/grpc-go/issues/8784)) - transport: Reduce slice re-allocations by reserving slice capacity. ([#8797](https://redirect.github.com/grpc/grpc-go/issues/8797)) </details> <details> <summary>markedjs/marked (marked)</summary> ### [`v17.0.2`](https://redirect.github.com/markedjs/marked/compare/v17.0.1...e8246208bc9dffcf550d5d3744746c6809ad2bdf) [Compare Source](https://redirect.github.com/markedjs/marked/compare/v17.0.1...v17.0.2) </details> <details> <summary>pnpm/pnpm (pnpm)</summary> ### [`v10.29.3`](https://redirect.github.com/pnpm/pnpm/compare/v10.29.2...v10.29.3) [Compare Source](https://redirect.github.com/pnpm/pnpm/compare/v10.29.2...v10.29.3) ### [`v10.29.2`](https://redirect.github.com/pnpm/pnpm/compare/v10.29.1...v10.29.2) [Compare Source](https://redirect.github.com/pnpm/pnpm/compare/v10.29.1...v10.29.2) ### [`v10.29.1`](https://redirect.github.com/pnpm/pnpm/releases/tag/v10.29.1): pnpm 10.29.1 [Compare Source](https://redirect.github.com/pnpm/pnpm/compare/v10.28.2...v10.29.1) #### Minor Changes - The `pnpm dlx` / `pnpx` command now supports the `catalog:` protocol. Example: `pnpm dlx shx@catalog:`. - Support configuring `auditLevel` in the `pnpm-workspace.yaml` file [#10540](https://redirect.github.com/pnpm/pnpm/issues/10540). - Support bare `workspace:` protocol without version specifier. It is now treated as `workspace:*` and resolves to the concrete version during publish [#10436](https://redirect.github.com/pnpm/pnpm/pull/10436). #### Patch Changes - Fixed `pnpm list --json` returning incorrect paths when using global virtual store [#10187](https://redirect.github.com/pnpm/pnpm/issues/10187). - Fix `pnpm store path` and `pnpm store status` using workspace root for path resolution when `storeDir` is relative [#10290](https://redirect.github.com/pnpm/pnpm/issues/10290). - Fixed `pnpm run -r` failing with "No projects matched the filters" when an empty `pnpm-workspace.yaml` exists [#10497](https://redirect.github.com/pnpm/pnpm/issues/10497). - Fixed a bug where `catalogMode: strict` would write the literal string `"catalog:"` to `pnpm-workspace.yaml` instead of the resolved version specifier when re-adding an existing catalog dependency [#10176](https://redirect.github.com/pnpm/pnpm/issues/10176). - Fixed the documentation URL shown in `pnpm completion --help` to point to the correct page at <https://pnpm.io/completion> [#10281](https://redirect.github.com/pnpm/pnpm/issues/10281). - Skip local `file:` protocol dependencies during `pnpm fetch`. This fixes an issue where `pnpm fetch` would fail in Docker builds when local directory dependencies were not available [#10460](https://redirect.github.com/pnpm/pnpm/issues/10460). - Fixed `pnpm audit --json` to respect the `--audit-level` setting for both exit code and output filtering [#10540](https://redirect.github.com/pnpm/pnpm/issues/10540). - update tar to version 7.5.7 to fix security issue Updating the version of dependency tar to 7.5.7 because the previous one have a security vulnerability reported here: <a href="https://redirect.github.com/advisories/GHSA-34x7-hfp2-rc4v">CVE-2026-24842</a> - Fix `pnpm audit --fix` replacing reference overrides (e.g. `$foo`) with concrete versions [#10325](https://redirect.github.com/pnpm/pnpm/issues/10325). - Fix `shamefullyHoist` set via `updateConfig` in `.pnpmfile.cjs` not being converted to `publicHoistPattern` [#10271](https://redirect.github.com/pnpm/pnpm/issues/10271). - `pnpm help` should correctly report if the currently running pnpm CLI is bundled with Node.js [#10561](https://redirect.github.com/pnpm/pnpm/issues/10561). - Add a warning when the current directory contains the PATH delimiter character. On macOS, folder names containing forward slashes (/) appear as colons (:) at the Unix layer. Since colons are PATH separators in POSIX systems, this breaks PATH injection for `node_modules/.bin`, causing binaries to not be found when running commands like `pnpm exec` [#10457](https://redirect.github.com/pnpm/pnpm/issues/10457). #### Platinum Sponsors <table> <tbody> <tr> <td align="center" valign="middle"> <a href="https://bit.dev/?utm_source=pnpm&utm_medium=release_notes" target="_blank"><img src="https://pnpm.io/img/users/bit.svg" width="80" alt="Bit"></a> </td> </tr> </tbody> </table> #### Gold Sponsors <table> <tbody> <tr> <td align="center" valign="middle"> <a href="https://discord.com/?utm_source=pnpm&utm_medium=release_notes" target="_blank"> <picture> <source media="(prefers-color-scheme: light)" srcset="https://pnpm.io/img/users/discord.svg" /> <source media="(prefers-color-scheme: dark)" srcset="https://pnpm.io/img/users/discord_light.svg" /> <img src="https://pnpm.io/img/users/discord.svg" width="220" alt="Discord" /> </picture> </a> </td> <td align="center" valign="middle"> <a href="https://coderabbit.ai/?utm_source=pnpm&utm_medium=release_notes" target="_blank"> <picture> <source media="(prefers-color-scheme: light)" srcset="https://pnpm.io/img/users/coderabbit.svg" /> <source media="(prefers-color-scheme: dark)" srcset="https://pnpm.io/img/users/coderabbit_light.svg" /> <img src="https://pnpm.io/img/users/coderabbit.svg" width="220" alt="CodeRabbit" /> </picture> </a> </td> <td align="center" valign="middle"> <a href="https://workleap.com/?utm_source=pnpm&utm_medium=release_notes" target="_blank"> <picture> <source media="(prefers-color-scheme: light)" srcset="https://pnpm.io/img/users/workleap.svg" /> <source media="(prefers-color-scheme: dark)" srcset="https://pnpm.io/img/users/workleap_light.svg" /> <img src="https://pnpm.io/img/users/workleap.svg" width="190" alt="Workleap" /> </picture> </a> </td> </tr> <tr> <td align="center" valign="middle"> <a href="https://stackblitz.com/?utm_source=pnpm&utm_medium=release_notes" target="_blank"> <picture> <source media="(prefers-color-scheme: light)" srcset="https://pnpm.io/img/users/stackblitz.svg" /> <source media="(prefers-color-scheme: dark)" srcset="https://pnpm.io/img/users/stackblitz_light.svg" /> <img src="https://pnpm.io/img/users/stackblitz.svg" width="190" alt="Stackblitz" /> </picture> </a> </td> <td align="center" valign="middle"> <a href="https://vite.dev/?utm_source=pnpm&utm_medium=release_notes" target="_blank"> <img src="https://pnpm.io/img/users/vitejs.svg" width="42" alt="Vite"> </a> </td> </tr> </tbody> </table> </details> <details> <summary>SortableJS/Sortable (sortablejs)</summary> ### [`v1.15.7`](https://redirect.github.com/SortableJS/Sortable/releases/tag/1.15.7) [Compare Source](https://redirect.github.com/SortableJS/Sortable/compare/1.15.6...1.15.7) [#2431](https://redirect.github.com/SortableJS/Sortable/issues/2431): Fix potential browser freezing bug [#2369](https://redirect.github.com/SortableJS/Sortable/issues/2369): Fix edge-case where inputs being erroneously re-checked when another sortable is destroyed </details> <details> <summary>mpetazzoni/sse.js (sse.js)</summary> ### [`v2.8.0`](https://redirect.github.com/mpetazzoni/sse.js/releases/tag/v2.8.0): sse.js v2.8.0 [Compare Source](https://redirect.github.com/mpetazzoni/sse.js/compare/v2.7.2...v2.8.0) This release improves SSE specification compliance: `retry` field now updates reconnect delay, `id` fields containing NULL are ignored, UTF-8 BOM at stream start is stripped, and `lastEventId` is updated even when no event is dispatched. Also includes comprehensive spec compliance tests. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 2am and before 3am" (UTC), Automerge - "after 1am and before 2am" (UTC). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/0xJacky/nginx-ui).  --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>