chore(deps): bump the production group across 1 directory with 25 updates by dependabot[bot] · Pull Request #497 · tempoxyz/docs

dependabot · 2026-06-15T11:52:29Z

Bumps the production group with 25 updates in the / directory:

Package	From	To
@iconify-json/lucide	`1.2.102`	`1.2.111`
@iconify-json/simple-icons	`1.2.77`	`1.2.86`
@takumi-rs/image-response	`0.62.8`	`1.7.0`
@takumi-rs/wasm	`0.62.8`	`1.7.0`
@tanstack/react-query	`5.99.0`	`5.101.0`
@vercel/analytics	`1.6.1`	`2.0.1`
@vercel/speed-insights	`1.3.1`	`2.0.0`
@wagmi/core	`3.4.11`	`3.5.0`
abitype	`1.2.3`	`1.2.4`
accounts	`0.10.7`	`0.14.6`
ox	`0.14.20`	`0.14.29`
posthog-js	`1.367.0`	`1.382.0`
posthog-node	`5.29.2`	`5.36.4`
react	`19.2.6`	`19.2.7`
react-dom	`19.2.6`	`19.2.7`
react-server-dom-webpack	`19.2.6`	`19.2.7`
sql-formatter	`15.7.3`	`15.8.1`
tailwind-merge	`3.5.0`	`3.6.0`
tailwindcss	`4.2.2`	`4.3.0`
viem	`2.48.8`	`2.52.2`
vocs	`2.0.10`	`2.0.12`
wagmi	`3.6.14`	`3.6.16`
waku	`1.0.0-beta.0`	`1.0.0-beta.2`
webauthx	`0.1.1`	`0.1.2`
zod	`4.3.6`	`4.4.3`

Updates @iconify-json/lucide from 1.2.102 to 1.2.111

Commits

See full diff in compare view

Updates @iconify-json/simple-icons from 1.2.77 to 1.2.86

Commits

See full diff in compare view

Updates @takumi-rs/image-response from 0.62.8 to 1.7.0

Release notes

Sourced from @takumi-rs/image-response's releases.

@takumi-rs/image-response@1.7.0

Patch Changes

45a7f4a: Correct onError example in README

Updated dependencies [89a3088]

Updated dependencies [56579a2]

Updated dependencies [89a3088]

takumi-js@1.7.0

@takumi-rs/image-response@1.6.0

Patch Changes

takumi-js@1.6.0

@takumi-rs/image-response@1.5.1

Patch Changes

takumi-js@1.5.1

@takumi-rs/image-response@1.5.0

Patch Changes

takumi-js@1.5.0

@takumi-rs/image-response@1.4.1

Patch Changes

Updated dependencies [d6936e5]

takumi-js@1.4.1

@takumi-rs/image-response@1.4.0

Patch Changes

takumi-js@1.4.0

@takumi-rs/image-response@1.3.0

Patch Changes

takumi-js@1.3.0

@takumi-rs/image-response@1.2.1

Patch Changes

takumi-js@1.2.1

@takumi-rs/image-response@1.1.2

Patch Changes

takumi-js@1.1.2

... (truncated)

Commits

6512e45 Version Packages (#736)
b41405d Crate: fix SVG background/mask images with only a viewBox to scale to t...
b9b4359 Crate: fix tw arbitrary values broken by : and _ parsing (#743)
4da6635 Crate: rollback to parley 0.9
c561588 fix parley version
02c3c22 update dependencies
4748c22 Crate, Helpers: fixes #742 support the Tailwind mask- utility, collect urls...
ece3e03 Crate: add position: static and position: fixed (#741)
ef7e816 Crate: fix absolute positioning inside block-relative containers (#740)
80e29da Helpers: type the textFit style property (#730)
Additional commits viewable in compare view

Updates @takumi-rs/wasm from 0.62.8 to 1.7.0

Release notes

Sourced from @takumi-rs/wasm's releases.

@takumi-rs/wasm@1.7.0

Patch Changes

Updated dependencies [b908a4d]

Updated dependencies [4748c22]

Updated dependencies [42d0d03]

Updated dependencies [80e29da]

@takumi-rs/helpers@1.7.0

@takumi-rs/wasm@1.6.0

Patch Changes

@takumi-rs/helpers@1.6.0

@takumi-rs/wasm@1.5.1

Patch Changes

@takumi-rs/helpers@1.5.1

@takumi-rs/wasm@1.5.0

Patch Changes

@takumi-rs/helpers@1.5.0

@takumi-rs/wasm@1.4.1

Patch Changes

@takumi-rs/helpers@1.4.1

@takumi-rs/wasm@1.4.0

Patch Changes

Updated dependencies [e83ab19]

@takumi-rs/helpers@1.4.0

@takumi-rs/wasm@1.3.0

Patch Changes

@takumi-rs/helpers@1.3.0

@takumi-rs/wasm@1.2.1

Patch Changes

@takumi-rs/helpers@1.2.1

@takumi-rs/wasm@1.1.2

Patch Changes

@takumi-rs/helpers@1.1.2

... (truncated)

Commits

6512e45 Version Packages (#736)
b41405d Crate: fix SVG background/mask images with only a viewBox to scale to t...
b9b4359 Crate: fix tw arbitrary values broken by : and _ parsing (#743)
4da6635 Crate: rollback to parley 0.9
c561588 fix parley version
02c3c22 update dependencies
4748c22 Crate, Helpers: fixes #742 support the Tailwind mask- utility, collect urls...
ece3e03 Crate: add position: static and position: fixed (#741)
ef7e816 Crate: fix absolute positioning inside block-relative containers (#740)
80e29da Helpers: type the textFit style property (#730)
Additional commits viewable in compare view

Updates @tanstack/react-query from 5.99.0 to 5.101.0

Release notes

Sourced from @tanstack/react-query's releases.

@tanstack/react-query-devtools@5.101.0

Patch Changes

Updated dependencies [3042860, e631dc3]:

@tanstack/query-devtools@5.101.0

@tanstack/react-query@5.101.0

@tanstack/react-query-next-experimental@5.101.0

Patch Changes

#10857 7cf5923 - fix(react-query-next-experimental): replace deprecated 'isServer' with 'environmentManager.isServer()'

Updated dependencies []:

@tanstack/react-query@5.101.0

@tanstack/react-query-persist-client@5.101.0

Patch Changes

Updated dependencies []:

@tanstack/query-persist-client-core@5.101.0

@tanstack/react-query@5.101.0

@tanstack/react-query@5.101.0

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.101.0

@tanstack/react-query-devtools@5.100.14

Patch Changes

Updated dependencies [ed20b6d]:

@tanstack/react-query@5.100.14

@tanstack/query-devtools@5.100.14

@tanstack/react-query-next-experimental@5.100.14

Patch Changes

Updated dependencies [ed20b6d]:

@tanstack/react-query@5.100.14

@tanstack/react-query-persist-client@5.100.14

Patch Changes

Updated dependencies [ed20b6d]:

@tanstack/react-query@5.100.14

@tanstack/query-persist-client-core@5.100.14

@tanstack/react-query@5.100.14

Patch Changes

... (truncated)

Changelog

Sourced from @tanstack/react-query's changelog.

5.101.0

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.101.0

5.100.14

Patch Changes

fix(react-query): do not go into optimistic fetching state when not subscribed (#10759)

Updated dependencies []:

@tanstack/query-core@5.100.14

5.100.13

Patch Changes

Updated dependencies [d423168]:

@tanstack/query-core@5.100.13

5.100.12

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.100.12

5.100.11

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.100.11

5.100.10

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.100.10

5.100.9

Patch Changes

Updated dependencies [fcee7bd]:

@tanstack/query-core@5.100.9

... (truncated)

Commits

f3d8d2a ci: Version Packages (#10774)
532bb29 fix(tests): disable local coverage instrumentation (#10776)
ba6e7be ci: Version Packages (#10767)
ed20b6d fix(react): do not go into optimistic fetching state when not subscribed (#10...
05cf2bc ci: Version Packages (#10758)
d423168 fix(query-core): use built-in NoInfer for generic indexed-access types (#10593)
5ff4f69 ci: Version Packages (#10755)
3e85350 ci: Version Packages (#10706)
9d2692c ci: Version Packages (#10695)
74fa05e chore(tsconfig.json): narrow 'include' pattern to prevent TS6053 race conditi...
Additional commits viewable in compare view

Updates @vercel/analytics from 1.6.1 to 2.0.1

Release notes

Sourced from @vercel/analytics's releases.

v2.0.1

What's Changed

fix(nuxt): set nuxt as optional dependency by @CHC383 in vercel/analytics#193

New Contributors

@CHC383 made their first contribution in vercel/analytics#193

Full Changelog: vercel/analytics@v2.0.0...v2.0.1

v2.0.0

What's Changed

Breaking Changes

License changed from MPL-2.0 to MIT (#170)

Nuxt: introduce module support. If you need to configure it, load injectAnalytics() from @vercel/analytics/nuxt/runtime (#183)

Features

feat: load dynamic configuration (#184) — analytics config can now be loaded dynamically

Bug Fixes

fix: src and endpoint paths do not work when relative (#186)

Full Changelog: vercel/speed-insights@1.6.1...2.0.0

v2.0.0-canary.1

Canary release for testing 2.0.0 changes

Commits

0d69416 chore: bump version to v2.0.1 (#195)
c7f3c37 fix(nuxt): set nuxt as optional dependency (#193)
c3e3805 chore: bump version to v2.0.0
425a797 chore: bump version to v2.0.0-canary.1
22888e3 fix: src and endpoint paths do not work when relative (#186)
3879f57 feat: load dynamic configuration (#184)
95f8914 feat(nuxt)!: Add support for injectAnalytics() and Nuxt module (#183)
e407489 feat!: change license to MIT (#170)
See full diff in compare view

Updates @vercel/speed-insights from 1.3.1 to 2.0.0

Release notes

Sourced from @vercel/speed-insights's releases.

v2.0.0

What's Changed

Breaking Changes

License changed from Apache-2.0 to MIT (#111)

Nuxt: introduce module support (#110). In case you need to configure it, load injectSpeedInsights() from @vercel/speed-insights/nuxt/runtime

Features

feat: load dynamic configuration (#112) — speed insights config can now be loaded dynamically

Full Changelog: vercel/speed-insights@1.3.1...2.0.0

v2.0.0-canary.1

Canary release for testing 2.0.0 changes

1.5.0-canary.4

What's Changed

fix: next/jest does not support import.meta by @feugy in vercel/speed-insights#91

Full Changelog: vercel/speed-insights@1.2.0-canary.3...1.5.0-canary.4

Commits

828d10c chore: bump version to v2.0.0
15cb241 chore: bump version to v2.0.0-canary.1
b10a09c feat: load dynamic configuration (#112)
c6f4e37 feat(nuxt)!: Add support for injectSpeedInsights() and Nuxt module (#110)
See full diff in compare view

Updates @wagmi/core from 3.4.11 to 3.5.0

Release notes

Sourced from @wagmi/core's releases.

@wagmi/core@3.5.0

Minor Changes

Added discovered EIP-6963 providers to the connector setup config. (#5128)

@wagmi/core@3.4.12

Patch Changes
Handled malformed cookie state in cookieToInitialState. (#5116)
wagmi/tempo: Renamed Actions.wallet.send to Actions.wallet.transfer and Hooks.wallet.useSend to Hooks.wallet.useTransfer. (#5121)

Also bumps the accounts peer dependency to ~0.12.
- await Actions.wallet.send(config, {
-   to: '0x...',
-   token: '0x...',
-   value: '1.5',
- })
+ await Actions.wallet.transfer(config, {
+   amount: '1.5',
+   to: '0x...',
+   token: '0x...',
+ })
- const send = Hooks.wallet.useSend()
+ const transfer = Hooks.wallet.useTransfer()

Changelog

Sourced from @wagmi/core's changelog.

3.5.0

Minor Changes

Added discovered EIP-6963 providers to the connector setup config. (#5128)

3.4.12

Patch Changes
Handled malformed cookie state in cookieToInitialState. (#5116)
wagmi/tempo: Renamed Actions.wallet.send to Actions.wallet.transfer and Hooks.wallet.useSend to Hooks.wallet.useTransfer. (#5121)

Also bumps the accounts peer dependency to ~0.12.
- await Actions.wallet.send(config, {
-   to: '0x...',
-   token: '0x...',
-   value: '1.5',
- })
+ await Actions.wallet.transfer(config, {
+   amount: '1.5',
+   to: '0x...',
+   token: '0x...',
+ })
- const send = Hooks.wallet.useSend()
+ const transfer = Hooks.wallet.useTransfer()

Commits

2f77dbc chore: version packages (#5140)
c162248 chore: drop older TypeScript support (#5139)
f44f781 dev: bump viem version
de10ca2 chore: types
df7bd38 fix(connectors): metaMask — serve probe methods from EIP-6963 provider when S...
98f9a16 chore: version packages (#5122)
4c44cd0 refactor(tempo): rename wallet.send to wallet.transfer (#5121)
f1e6d70 Handle malformed SSR cookie state (#5116)
See full diff in compare view

Updates abitype from 1.2.3 to 1.2.4

Release notes

Sourced from abitype's releases.

abitype@1.2.4

Patch Changes

Fixed Zod identifier regex to anchor start and end, rejecting invalid identifiers like café, 2g, and hello👋. (#296)

Commits

942f0a6 chore: version packages (#301)
add0998 chore: fix typecheck
b39c7b9 fix: identifier should be alnum (#296)
6c33901 chore: up pnpm
76a9b65 chore(deps): bump actions/checkout from 6.0.1 to 6.0.2 (#295)
afb3657 chore(deps): bump changesets/action from 1.5.3 to 1.6.0 (#294)
965379d chore: fix pkg.pr.new version script
See full diff in compare view

Updates accounts from 0.10.7 to 0.14.6

Release notes

Sourced from accounts's releases.

accounts@0.14.6

Patch Changes

89a107f: Fixed getAccounts to respect signable.

accounts@0.14.5

Patch Changes

a33ed22: Added a strict option to Remote.validateSearch to let trusted wallet routes defer access-key policy validation.

b6fb206: Added showDeposit support to wallet_authorizeAccessKey requests.

accounts@0.14.4

Patch Changes

8afc239: Fix React Native auth token handling and mobile auth URL encoding.

accounts@0.14.3

Patch Changes

801e18a: Simplified Privy account loading and fixed stale wallet cache handling after failed account selection.

f176676: Point React Native mobile authentication at the remote manager route.

accounts@0.14.2

Patch Changes

022d947: Simplified Privy account loading and fixed stale wallet cache handling after failed account selection.

accounts@0.14.1

Patch Changes

62705cb: Added an on filter to the wallet_connect showDeposit capability to direct if the deposit screen should be shown on login or register.

accounts@0.14.0

Minor Changes

feb1ab6: Breaking: Updated Tempo chain imports to use scoped chain entrypoints. Bump your Viem version to >=2.50.4.

Patch Changes

7aeec48: Fixed access key authorization to reject requests that require external key material when none is provided.

78778cb: Added a Privy adapter for connecting and signing with app-provided Privy embedded wallet accounts.

e15757f: Added a showDeposit capability to wallet_connect.

accounts@0.13.0

Minor Changes
0666744: Breaking: Changed Handler.auth() to require callers to provide origin or domain, so SIWE challenge and verify flows pinned domain binding instead of deriving it from request Host headers.
f652ff2: Breaking: Updated wallet_deposit params to use amount and token and removed value.

... (truncated)

Changelog

Sourced from accounts's changelog.

0.14.6

Patch Changes

89a107f: Fixed getAccounts to respect signable.

0.14.5

Patch Changes

a33ed22: Added a strict option to Remote.validateSearch to let trusted wallet routes defer access-key policy validation.

b6fb206: Added showDeposit support to wallet_authorizeAccessKey requests.

0.14.4

Patch Changes

8afc239: Fix React Native auth token handling and mobile auth URL encoding.

0.14.3

Patch Changes

801e18a: Simplified Privy account loading and fixed stale wallet cache handling after failed account selection.

f176676: Point React Native mobile authentication at the remote manager route.

0.14.2

Patch Changes

022d947: Simplified Privy account loading and fixed stale wallet cache handling after failed account selection.

0.14.1

Patch Changes

62705cb: Added an on filter to the wallet_connect showDeposit capability to direct if the deposit screen should be shown on login or register.

0.14.0

Minor Changes

feb1ab6: Breaking: Updated Tempo chain imports to use scoped chain entrypoints. Bump your Viem version to >=2.50.4.

Patch Changes

7aeec48: Fixed access key authorization to reject requests that require external key material when none is provided.

78778cb: Added a Privy adapter for connecting and signing with app-provided Privy embedded wallet accounts.

e15757f: Added a showDeposit capability to wallet_connect.

... (truncated)

Commits

4644fb9 chore: version packages (#592)
42ef977 fix: validate persisted adapter accounts (#591)
89a107f fix(provider): honor signable getAccount option (#590)
3ff18b6 refactor(site): landing type scale + icon componentization (#587)
f76bfba fix(site): design tweaks for landing hero (#583)
b12b960 refactor: use viem managed access key authorization (#575)
5b7083c feat: add wallet_authorizeAccessKey deposit toggle to playground (#581)
9219d05 chore: version packages (#563)
b6fb206 feat: support showDeposit on wallet_authorizeAccessKey (#580)
7d1a114 docs(site): remove adapter demo todos (#579)
Additional commits viewable in compare view

Updates ox from 0.14.20 to 0.14.29

Release notes

Sourced from ox's releases.

ox@0.14.29

Patch Changes

#268 ed93945 Thanks @jxom! - viem/tempo: Added genesisConfig shorthand to TIP-1061 multisig helpers and renamed configId → genesisConfigId on the typed SignatureEnvelope.Multisig.

ox@0.14.28

Patch Changes

#265 f5328d2 Thanks @jxom! - viem/tempo: Added support for TIP-1061 native multisig accounts.

ox@0.14.27

Patch Changes

#263 451a442 Thanks @jxom! - ox/tempo: Added the ReceivePolicyReceipt module for encoding/decoding TIP-1028 receive-policy claim receipts (ClaimReceiptV1 witnesses) with decode, encode, from, fromLog, and fromTransactionReceipt (returns one receipt per TransferBlocked log).

ox@0.14.26

Patch Changes

#262 b1ac8c8 Thanks @jxom! - ox/tempo: Added support for TIP-1049 (admin access keys) via optional isAdmin and account fields on KeyAuthorization that bind into the signing hash.

#260 581ccee Thanks @jxom! - ox/tempo: Added support for TIP-1053 (witnesses in key authorizations) via an optional 32-byte witness field on KeyAuthorization that is included in the signing hash.

ox@0.14.25

Patch Changes

#256 ad7610b Thanks @jxom! - Renamed ChannelDescriptor.from to Channel.from, made Channel.Channel the descriptor type, and changed Channel.computeId to receive channel and options separately.

ox@0.14.24

Patch Changes

#254 d837628 Thanks @jxom! - Added ChannelDescriptor.from for normalizing TIP-20 channel reserve descriptors.

ox@0.14.23

Patch Changes

#252 19cd833 Thanks @jxom! - Added TIP-20 channel reserve constants, channel id computation, and voucher signing helpers.

ox@0.14.22

Patch Changes

#227 ffa64c0 Thanks @Genmin! - Fixed Secp256k1.verify narrowing signature branches before address recovery.

ox@0.14.21

Patch Changes

#246 32cf459 Thanks @0xrusowsky! - Added TxEnvelopeTempo.encodeForSigning to expose the raw Tempo sender-signing preimage bytes.

#248 e0474e9 Thanks @jxom! - Added blockTimestamp support to transaction RPC conversions.

Commits

58ca601 chore: version packages (#269)
ed93945 feat(tempo): add genesisConfig shorthand to multisig helpers (#268)
ad3330f chore: version packages (#267)
4b3fe3e chore: version packages (#266)
ef64a52 ci(tempo): use edge image (tracks main) instead of latest
b8a0714 test(tempo): skip TIP-1049 admin e2e until tempo release ships PR #4265
f5328d2 feat(tempo): native multisig (#265)
ae54345 ci: bump vitest hookTimeout to 60s for tempo localnet cold start
7bb96ea chore: version packages (#264)
451a442 feat(tempo): add ReceivePolicyReceipt module for TIP-1028 claim receipts (#263)
Additional commits viewable in compare view

Updates posthog-js from 1.367.0 to 1.382.0

Commits

d46f0b9 chore: update versions and lockfile [version bump]
9877710 feat(autocapture): ignore rageclicks on text inputs and steppers (#3749)
b3cd546 chore: update versions and lockfile [version bump]
be7c3c7 fix: preserve OpenAI API promise helpers (#3624)
e0ebad5 chore: update versions and lockfile [version bump]
a7bd828 feat(browser): add __preview_cookie_wins_on_conflict for multi-subdomain iden...
a1a1f6f chore: update versions and lockfile [version bump]
70c976e fix(react-native): surface full Xcode sourcemap upload errors (#3747)
a8fd228 chore: update versions and lockfile [version bump]
ced0039 fix(surveys): drop :has(.survey-question:empty) that crashes WebKit (#3743)
Additional commits viewable in compare view

Updates posthog-node from 5.29.2 to 5.36.4

Changelog

Sourced from posthog-node's changelog.

5.36.4

Patch Changes

Updated dependencies []:

@posthog/core@1.30.10

5.36.3

Patch Changes

Updated dependencies []:

@posthog/core@1.30.9

5.36.2

Patch Changes

Updated dependencies []:

@posthog/core@1.30.8

5.36.1

Patch Changes

Updated dependencies []:

@posthog/core@1.30.7

5.36.0

Minor Changes

#3728 9287c87 Thanks @turnipdabeets! - Add a configurable $is_server event property (default true) so PostHog can identify server-side events. Set isServer: false when using the SDK as a client/CLI so the device OS is attributed normally. (2026-06-04)

5.35.15

Patch Changes

Updated dependencies []:

@posthog/core@1.30.6

5.35.14

Patch Changes

Updated dependencies []:

@posthog/core@1.30.5

5.35.13

... (truncated)

Commits

d46f0b9 chore: update versions and lockfile [version bump]
e0ebad5 chore: update versions and lockfile [version bump]
a8fd228 chore: update versions and lockfile [version bump]
287ad9f chore: update versions and lockfile [version bump]
dc1e193 chore: update versions and lockfile [version bump]
9287c87 feat: emit $is_server property on captured events (#3728)
b539fcb chore: update versions and lockfile [version bump]
79de441 chore: update versions and lockfile [version bump]
4a8cacc chore: add Sentry attribution comments (#3738)
d385e2a chore: clarify error tracking comments (#3735)
Additional commits viewable in compare view

Updates react from 19.2.6 to 19.2.7

Release notes

Sourced from react's releases.

19.2.7 (June 1st, 2026)

React Server Components

Fixed missing FormData entries in Server Actions which regressed in 19.2.6 (#36566 by @unstubbable)

Commits

6117d7c Version 19.2.7 (#36591)
See full diff in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for react since your current version.

Updates react-dom from 19.2.6 to 19.2.7

Release notes

Sourced from react-dom's releases.

19.2.7 (June 1st, 2026)

React Server Components

Fixed missing FormData entries in Server Actions which regressed in 19.2.6 (#36566 by @unstubbable)

Commits

6117d7c Version 19.2.7 (#36591)
See full diff in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for react-dom since your current version.

Updates react-server-dom-webpack from 19.2.6 to 19.2.7

Release notes

Sourced from react-server-dom-webpack's releases.

19.2.7 (June 1st, 2026)

React Server Components

Fixed missing FormData entries in Server Actions which regressed in 19.2.6 (#36566 by @unstubbable)

Commits

6117d7c Version 19.2.7 (#36591)
02c444c [19.2.x][FlightReply] Don't drop FormData entries in decodeReplyFromBusboy ...
See full diff in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for react-server-dom-webpack since your current version.

Updates sql-formatter from 15.7.3 to 15.8.1

Release notes

Sourced from sql-formatter's releases.

15.8.1

Fix block-comment placement idempotency issue (#952) Thanks to @sarathfrancis90

15.8.0

PostgreSQL formatting

Add support for PostgreSQL keywords in CREATE CONSTRAINT TRIGGER (#948) (thanks to @karlhorky)

Internal changes

Switch from yarn to pnpm (#949)

View changes on GitHub

15.7.4

Bugfix

Support Tcl-style $param(...) syntax in SQLite (#944, #943) (thanks to @SAY-5)

Commits

f3707ba Release 15.8.1
b6f936d Turn off verifyDepsBeforeRun
502224c Merge branch 'fix-block-comment-idempotency'
f9304a6 Add Sarath Francis to AUTHORS
71c0835 Rewrite comment inside isStandaloneBlockComment()
953f228 Reorganize idempotent comment tests
54d4cf2 test: cover block comments in more clause positions
2b70a66 fix: keep leading block comment of clause item on its own line
a3bfeeb Release v15.8.0
a7f50d8 Add tagName config to release-it
Additional commits viewable in compare view

Updates tailwind-merge from 3.5.0 to 3.6.0

Release notes

Sourced from tailwind-merge's releases.

v3.6.0

New Features

Add support for Tailwind CSS v4.3 by @dcastil in dcastil/tailwind-merge#677

Add postfixLookupClassGroups option to config to support Tailwind utilities where a slash is part of the full class name, like named container queries

Add support for readonly array values by @unional in dcastil/tailwind-merge#652

Documentation

Fix broken links in README by @maurer2Description has been truncated

…ates Bumps the production group with 25 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@iconify-json/lucide](https://github.com/iconify/icon-sets) | `1.2.102` | `1.2.111` | | [@iconify-json/simple-icons](https://github.com/iconify/icon-sets) | `1.2.77` | `1.2.86` | | [@takumi-rs/image-response](https://github.com/kane50613/takumi) | `0.62.8` | `1.7.0` | | [@takumi-rs/wasm](https://github.com/kane50613/takumi) | `0.62.8` | `1.7.0` | | [@tanstack/react-query](https://github.com/TanStack/query/tree/HEAD/packages/react-query) | `5.99.0` | `5.101.0` | | [@vercel/analytics](https://github.com/vercel/analytics/tree/HEAD/packages/web) | `1.6.1` | `2.0.1` | | [@vercel/speed-insights](https://github.com/vercel/speed-insights/tree/HEAD/packages/web) | `1.3.1` | `2.0.0` | | [@wagmi/core](https://github.com/wevm/wagmi/tree/HEAD/packages/core) | `3.4.11` | `3.5.0` | | [abitype](https://github.com/wevm/abitype) | `1.2.3` | `1.2.4` | | [accounts](https://github.com/tempoxyz/accounts) | `0.10.7` | `0.14.6` | | [ox](https://github.com/wevm/ox) | `0.14.20` | `0.14.29` | | [posthog-js](https://github.com/PostHog/posthog-js) | `1.367.0` | `1.382.0` | | [posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node) | `5.29.2` | `5.36.4` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.6` | `19.2.7` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.6` | `19.2.7` | | [react-server-dom-webpack](https://github.com/facebook/react/tree/HEAD/packages/react-server-dom-webpack) | `19.2.6` | `19.2.7` | | [sql-formatter](https://github.com/sql-formatter-org/sql-formatter) | `15.7.3` | `15.8.1` | | [tailwind-merge](https://github.com/dcastil/tailwind-merge) | `3.5.0` | `3.6.0` | | [tailwindcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss) | `4.2.2` | `4.3.0` | | [viem](https://github.com/wevm/viem) | `2.48.8` | `2.52.2` | | [vocs](https://github.com/wevm/vocs) | `2.0.10` | `2.0.12` | | [wagmi](https://github.com/wevm/wagmi/tree/HEAD/packages/react) | `3.6.14` | `3.6.16` | | [waku](https://github.com/wakujs/waku/tree/HEAD/packages/waku) | `1.0.0-beta.0` | `1.0.0-beta.2` | | [webauthx](https://github.com/wevm/webauthx) | `0.1.1` | `0.1.2` | | [zod](https://github.com/colinhacks/zod) | `4.3.6` | `4.4.3` | Updates `@iconify-json/lucide` from 1.2.102 to 1.2.111 - [Commits](https://github.com/iconify/icon-sets/commits) Updates `@iconify-json/simple-icons` from 1.2.77 to 1.2.86 - [Commits](https://github.com/iconify/icon-sets/commits) Updates `@takumi-rs/image-response` from 0.62.8 to 1.7.0 - [Release notes](https://github.com/kane50613/takumi/releases) - [Commits](https://github.com/kane50613/takumi/compare/@takumi-rs/image-response@0.62.8...@takumi-rs/image-response@1.7.0) Updates `@takumi-rs/wasm` from 0.62.8 to 1.7.0 - [Release notes](https://github.com/kane50613/takumi/releases) - [Commits](https://github.com/kane50613/takumi/compare/@takumi-rs/wasm@0.62.8...@takumi-rs/wasm@1.7.0) Updates `@tanstack/react-query` from 5.99.0 to 5.101.0 - [Release notes](https://github.com/TanStack/query/releases) - [Changelog](https://github.com/TanStack/query/blob/main/packages/react-query/CHANGELOG.md) - [Commits](https://github.com/TanStack/query/commits/@tanstack/react-query@5.101.0/packages/react-query) Updates `@vercel/analytics` from 1.6.1 to 2.0.1 - [Release notes](https://github.com/vercel/analytics/releases) - [Commits](https://github.com/vercel/analytics/commits/v2.0.1/packages/web) Updates `@vercel/speed-insights` from 1.3.1 to 2.0.0 - [Release notes](https://github.com/vercel/speed-insights/releases) - [Commits](https://github.com/vercel/speed-insights/commits/v2.0.0/packages/web) Updates `@wagmi/core` from 3.4.11 to 3.5.0 - [Release notes](https://github.com/wevm/wagmi/releases) - [Changelog](https://github.com/wevm/wagmi/blob/main/packages/core/CHANGELOG.md) - [Commits](https://github.com/wevm/wagmi/commits/@wagmi/core@3.5.0/packages/core) Updates `abitype` from 1.2.3 to 1.2.4 - [Release notes](https://github.com/wevm/abitype/releases) - [Commits](https://github.com/wevm/abitype/compare/abitype@1.2.3...abitype@1.2.4) Updates `accounts` from 0.10.7 to 0.14.6 - [Release notes](https://github.com/tempoxyz/accounts/releases) - [Changelog](https://github.com/tempoxyz/accounts/blob/main/CHANGELOG.md) - [Commits](https://github.com/tempoxyz/accounts/compare/accounts@0.10.7...accounts@0.14.6) Updates `ox` from 0.14.20 to 0.14.29 - [Release notes](https://github.com/wevm/ox/releases) - [Commits](https://github.com/wevm/ox/compare/ox@0.14.20...ox@0.14.29) Updates `posthog-js` from 1.367.0 to 1.382.0 - [Release notes](https://github.com/PostHog/posthog-js/releases) - [Changelog](https://github.com/PostHog/posthog-js/blob/main/CHANGELOG.md) - [Commits](https://github.com/PostHog/posthog-js/compare/posthog-js@1.367.0...posthog-js@1.382.0) Updates `posthog-node` from 5.29.2 to 5.36.4 - [Release notes](https://github.com/PostHog/posthog-js/releases) - [Changelog](https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md) - [Commits](https://github.com/PostHog/posthog-js/commits/posthog-node@5.36.4/packages/node) Updates `react` from 19.2.6 to 19.2.7 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/react/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.7/packages/react) Updates `react-dom` from 19.2.6 to 19.2.7 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/react/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.7/packages/react-dom) Updates `react-server-dom-webpack` from 19.2.6 to 19.2.7 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/react/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.7/packages/react-server-dom-webpack) Updates `sql-formatter` from 15.7.3 to 15.8.1 - [Release notes](https://github.com/sql-formatter-org/sql-formatter/releases) - [Commits](sql-formatter-org/sql-formatter@v15.7.3...v15.8.1) Updates `tailwind-merge` from 3.5.0 to 3.6.0 - [Release notes](https://github.com/dcastil/tailwind-merge/releases) - [Commits](dcastil/tailwind-merge@v3.5.0...v3.6.0) Updates `tailwindcss` from 4.2.2 to 4.3.0 - [Release notes](https://github.com/tailwindlabs/tailwindcss/releases) - [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/tailwindlabs/tailwindcss/commits/v4.3.0/packages/tailwindcss) Updates `viem` from 2.48.8 to 2.52.2 - [Release notes](https://github.com/wevm/viem/releases) - [Commits](https://github.com/wevm/viem/compare/viem@2.48.8...viem@2.52.2) Updates `vocs` from 2.0.10 to 2.0.12 - [Release notes](https://github.com/wevm/vocs/releases) - [Changelog](https://github.com/wevm/vocs/blob/main/CHANGELOG.md) - [Commits](https://github.com/wevm/vocs/compare/vocs@2.0.10...vocs@2.0.12) Updates `wagmi` from 3.6.14 to 3.6.16 - [Release notes](https://github.com/wevm/wagmi/releases) - [Changelog](https://github.com/wevm/wagmi/blob/main/packages/react/CHANGELOG.md) - [Commits](https://github.com/wevm/wagmi/commits/wagmi@3.6.16/packages/react) Updates `waku` from 1.0.0-beta.0 to 1.0.0-beta.2 - [Release notes](https://github.com/wakujs/waku/releases) - [Changelog](https://github.com/wakujs/waku/blob/main/CHANGELOG.md) - [Commits](https://github.com/wakujs/waku/commits/v1.0.0-beta.2/packages/waku) Updates `webauthx` from 0.1.1 to 0.1.2 - [Release notes](https://github.com/wevm/webauthx/releases) - [Changelog](https://github.com/wevm/webauthx/blob/main/CHANGELOG.md) - [Commits](https://github.com/wevm/webauthx/compare/webauthx@0.1.1...webauthx@0.1.2) Updates `zod` from 4.3.6 to 4.4.3 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](colinhacks/zod@v4.3.6...v4.4.3) --- updated-dependencies: - dependency-name: "@iconify-json/lucide" dependency-version: 1.2.111 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: "@iconify-json/simple-icons" dependency-version: 1.2.86 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: "@takumi-rs/image-response" dependency-version: 1.7.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: production - dependency-name: "@takumi-rs/wasm" dependency-version: 1.7.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: production - dependency-name: "@tanstack/react-query" dependency-version: 5.101.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: "@vercel/analytics" dependency-version: 2.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: production - dependency-name: "@vercel/speed-insights" dependency-version: 2.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: production - dependency-name: "@wagmi/core" dependency-version: 3.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: abitype dependency-version: 1.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: accounts dependency-version: 0.14.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: ox dependency-version: 0.14.29 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: posthog-js dependency-version: 1.382.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: posthog-node dependency-version: 5.36.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: react dependency-version: 19.2.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: react-dom dependency-version: 19.2.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: react-server-dom-webpack dependency-version: 19.2.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: sql-formatter dependency-version: 15.8.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: tailwind-merge dependency-version: 3.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: tailwindcss dependency-version: 4.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: viem dependency-version: 2.52.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: vocs dependency-version: 2.0.12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: wagmi dependency-version: 3.6.16 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: waku dependency-version: 1.0.0-beta.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: webauthx dependency-version: 0.1.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: zod dependency-version: 4.4.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production ... Signed-off-by: dependabot[bot] <support@github.com>

vercel · 2026-06-15T11:52:33Z

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
tempo-docs	Ready	Preview, Comment	Jun 15, 2026 11:53am

socket-security · 2026-06-15T11:53:21Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Package	Supply Chain Security	Quality
@takumi-rs/wasm@1.7.0
posthog-js@1.382.0
@iconify-json/simple-icons@1.2.86
webauthx@0.1.2
accounts@0.10.7 ⏵ 0.14.6	^-2	⁺¹
posthog-node@5.36.4
react-server-dom-webpack@19.2.7
@types/react@19.2.17
wagmi@3.6.16
@iconify-json/lucide@1.2.111
@vercel/analytics@2.0.1
react@19.2.7
@takumi-rs/image-response@1.7.0
waku@1.0.0-beta.2
tailwind-merge@3.6.0
@vercel/speed-insights@2.0.0
@tanstack/react-query@5.101.0
abitype@1.2.4
vocs@2.0.12
react-dom@19.2.7
sql-formatter@15.8.1
ox@0.14.29
viem@2.52.2

View full report

socket-security · 2026-06-15T11:53:23Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		Obfuscated code: npm `js-yaml` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: pnpm-lock.yaml → `npm/unplugin-icons@23.0.1` → `npm/vocs@2.0.12` → `npm/js-yaml@4.2.0` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/js-yaml@4.2.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `posthog-js` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: package.json → `npm/posthog-js@1.382.0` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/posthog-js@1.382.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `posthog-js` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: package.json → `npm/posthog-js@1.382.0` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/posthog-js@1.382.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `posthog-js` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: package.json → `npm/posthog-js@1.382.0` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/posthog-js@1.382.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `preact` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: pnpm-lock.yaml → `npm/posthog-js@1.382.0` → `npm/preact@10.29.2` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/preact@10.29.2`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 15, 2026

vercel Bot deployed to Preview June 15, 2026 11:53 View deployment

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the production group across 1 directory with 25 updates#497

chore(deps): bump the production group across 1 directory with 25 updates#497
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-7520d29564

dependabot Bot commented on behalf of github Jun 15, 2026

Uh oh!

vercel Bot commented Jun 15, 2026 •

edited

Loading

Uh oh!

socket-security Bot commented Jun 15, 2026

Uh oh!

socket-security Bot commented Jun 15, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Jun 15, 2026

@​takumi-rs/image-response@​1.7.0

Patch Changes

@​takumi-rs/image-response@​1.6.0

Patch Changes

@​takumi-rs/image-response@​1.5.1

Patch Changes

@​takumi-rs/image-response@​1.5.0

Patch Changes

@​takumi-rs/image-response@​1.4.1

Patch Changes

@​takumi-rs/image-response@​1.4.0

Patch Changes

@​takumi-rs/image-response@​1.3.0

Patch Changes

@​takumi-rs/image-response@​1.2.1

Patch Changes

@​takumi-rs/image-response@​1.1.2

Patch Changes

@​takumi-rs/wasm@​1.7.0

Patch Changes

@​takumi-rs/wasm@​1.6.0

Patch Changes

@​takumi-rs/wasm@​1.5.1

Patch Changes

@​takumi-rs/wasm@​1.5.0

Patch Changes

@​takumi-rs/wasm@​1.4.1

Patch Changes

@​takumi-rs/wasm@​1.4.0

Patch Changes

@​takumi-rs/wasm@​1.3.0

Patch Changes

@​takumi-rs/wasm@​1.2.1

Patch Changes

@​takumi-rs/wasm@​1.1.2

Patch Changes

@​tanstack/react-query-devtools@​5.101.0

Patch Changes

@​tanstack/react-query-next-experimental@​5.101.0

Patch Changes

@​tanstack/react-query-persist-client@​5.101.0

Patch Changes

@​tanstack/react-query@​5.101.0

Patch Changes

@​tanstack/react-query-devtools@​5.100.14

Patch Changes

@​tanstack/react-query-next-experimental@​5.100.14

Patch Changes

@​tanstack/react-query-persist-client@​5.100.14

Patch Changes

@​tanstack/react-query@​5.100.14

Patch Changes

5.101.0

Patch Changes

5.100.14

Patch Changes

5.100.13

Patch Changes

5.100.12

Patch Changes

5.100.11

Patch Changes

5.100.10

Patch Changes

5.100.9

Patch Changes

v2.0.1

What's Changed

New Contributors

v2.0.0

What's Changed

Breaking Changes

Features

Bug Fixes

v2.0.0-canary.1

v2.0.0

What's Changed

Breaking Changes

`@takumi-rs/image-response@1`.7.0

`@takumi-rs/image-response@1`.6.0

`@takumi-rs/image-response@1`.5.1

`@takumi-rs/image-response@1`.5.0

`@takumi-rs/image-response@1`.4.1

`@takumi-rs/image-response@1`.4.0

`@takumi-rs/image-response@1`.3.0

`@takumi-rs/image-response@1`.2.1

`@takumi-rs/image-response@1`.1.2

`@takumi-rs/wasm@1`.7.0

`@takumi-rs/wasm@1`.6.0

`@takumi-rs/wasm@1`.5.1

`@takumi-rs/wasm@1`.5.0

`@takumi-rs/wasm@1`.4.1

`@takumi-rs/wasm@1`.4.0

`@takumi-rs/wasm@1`.3.0

`@takumi-rs/wasm@1`.2.1

`@takumi-rs/wasm@1`.1.2

`@tanstack/react-query-devtools@5`.101.0

`@tanstack/react-query-next-experimental@5`.101.0

`@tanstack/react-query-persist-client@5`.101.0

`@tanstack/react-query@5`.101.0

`@tanstack/react-query-devtools@5`.100.14

`@tanstack/react-query-next-experimental@5`.100.14

`@tanstack/react-query-persist-client@5`.100.14

`@tanstack/react-query@5`.100.14

`@wagmi/core@3`.5.0

`@wagmi/core@3`.4.12