chore: bump the dependencies group with 12 updates

[dependabot]

Bumps the dependencies group with 12 updates:

Package	From	To
@datadog/browser-rum	5.28.1	5.29.0
@prisma/client	5.20.0	5.21.1
@tanstack/react-query	5.59.13	5.59.15
@tanstack/react-query-devtools	5.59.13	5.59.15
dd-trace	5.23.1	5.24.0
lucide-react	0.452.0	0.453.0
playwright	1.48.0	1.48.1
tailwindcss	3.4.13	3.4.14
@playwright/test	1.48.0	1.48.1
@testing-library/jest-dom	6.5.0	6.6.2
@types/node	22.7.5	22.7.7
prisma	5.20.0	5.21.1

Updates @datadog/browser-rum from 5.28.1 to 5.29.0

Changelog

Sourced from @​datadog/browser-rum's changelog.

v5.29.0

Public Changes:

• 🐛 [RUM-6483] Investigate reducing the batch time limit for Replay (#3077) [LOGS] [RUM] [RUM-REACT] [RUM-SLIM] [WORKER]

Internal Changes:

• 👷 Bump chrome to 130.0.6723.58-1 (#3074)
• 👷 skip merge into next major on scheduled pipelines (#3075)
• 👷 Update all non-major dependencies (#3070) [RUM-REACT]
• 👷 Update dependency eslint-plugin-unicorn to v56 (#3071)
• 👷 Bump staging to staging-42
• 🔧 [RUM-6226] tweak rum-react dependencies (#3054) [RUM-REACT]
• ♻️ Use registerCleanupTask for mock cleanups (#3069) [LOGS] [RUM] [RUM-REACT] [RUM-SLIM] [WORKER]
• ♻️ [RUM-5101] Use registerCleanupTask for interceptor cleanup (#3065) [LOGS] [RUM] [RUM-REACT] [RUM-SLIM] [WORKER]
• [RUM 5088] Reduce INP Null Target (#2950) [LOGS] [RUM] [RUM-REACT] [RUM-SLIM] [WORKER]
• ♻️ [RUM-5101] Use registerCleanupTask for fetch and report cleanups (#3066) [LOGS] [RUM] [RUM-REACT] [RUM-SLIM] [WORKER]
• ♻️ Use registerCleanupTask for zonejs cleanup (#3060) [LOGS] [RUM] [RUM-REACT] [RUM-SLIM] [WORKER]

Commits

• 86a148b v5.29.0
• 6e435ff 🐛 [RUM-6483] Investigate reducing the batch time limit for Replay (#3077)
• 40246d0 v5.28.1 (#3061)
• See full diff in compare view

Updates @prisma/client from 5.20.0 to 5.21.1

Release notes

Sourced from @​prisma/client's releases.

5.21.1

• Fixed a bug where migrations were not using shadow database correctly in some edge cases

5.21.0

Today, we are excited to share the 5.21.0 release 🎉

🌟 Help us spread the word about Prisma by starring the repo ☝️ or posting on X about the release.

Highlights

Better support for tracing in MongoDB

The tracing Preview feature now has full support for MongoDB with previously missing functionality now implemented. This is a part of the ongoing effort to stabilize this Preview feature and release it in General Availability.

tracing is a Preview feature that enables built-in support for OpenTelemetry instrumentation inside the Prisma Client and provides deep insights into the performance and timing of your queries. See our documentation for more information.

For an easy to use and zero-configuration tracing instrumentation tool with a dashboard that provides an overview of your queries, statistics, and AI-powered recommendations, try Prisma Optimize.

WebAssembly engine size decrease for edge functions

Due to recent changes, some users experienced a steep increase of the bundle size in Prisma 5.20 when using the driverAdapters Preview feature, going over the 1 MB limit on the free tier of Cloudflare Workers. This has now been fixed.

Fixes and improvements

Prisma Engines

• Avoid regex crate for wasm bundle size (to keep cloudflare free plan)

Credits

Huge thanks to @​austin-tildei, @​LucianBuzzo, @​mcuelenaere, @​pagewang0, @​key-moon, @​pranayat, @​yubrot, @​skyzh for helping!

Commits

• a9dd792 chore(deps): patch 5.21.x 5.21.1-1.bf0e5e8a04cada8225617067eaa03d041e2bba36 (...
• 6819678 chore(deps): update engines to 5.21.0-36.08713a93b99d58f31485621c634b04983ae0...
• b11a6c2 feat(client): Support prisma+postgres URL scheme for postgres migrations (#25...
• 5c59fac chore(deps): update engines to 5.21.0-33.edd552ca6fe6bb4ebbfe57bafc00a55aef8e...
• 6792f13 test(e2e): bumped "@​prisma/extension-accelerate" to 1.2.1, fix failing e2e te...
• 7aae7ec chore(deps): update engines to 5.21.0-32.6a192e231962f2731353b2df0d76ad5a1227...
• 9952c28 test(client): add count and aggregate tracing tests (#25385)
• d43178a chore(deps): update engines to 5.21.0-31.00f0d739277ee51ca227615ad3f1c4c36eea...
• 4c6498f chore(client): remove dead code in fixtures/generate.ts (#25351)
• f19a3e2 chore(deps): update engines to 5.21.0-8.031f4d3fc290d071071bf02083dc6e7b78346...
• See full diff in compare view

Updates @tanstack/react-query from 5.59.13 to 5.59.15

Release notes

Sourced from @​tanstack/react-query's releases.

v5.59.15

Version 5.59.15 - 10/15/24, 5:12 PM

Changes

Fix

• react-query: resolve overload matches error with exactOptionalPropertyTypes in queryOptions (#8186) (6c06781) by @​gwansikk

Packages

• @​tanstack/react-query@​5.59.15
• @​tanstack/react-query-devtools@​5.59.15
• @​tanstack/react-query-persist-client@​5.59.15
• @​tanstack/react-query-next-experimental@​5.59.15

v5.59.14

Version 5.59.14 - 10/15/24, 7:20 AM

Changes

Fix

• react-query: make queryFn optional again (#8176) (a085c92) by Julius Marminge
• react-query: do not overwrite staleTime with the suspense default value if it"s a function (#8174) (d409854) by Dominik Dorfmeister

Packages

• @​tanstack/react-query@​5.59.14
• @​tanstack/react-query-devtools@​5.59.14
• @​tanstack/react-query-persist-client@​5.59.14
• @​tanstack/react-query-next-experimental@​5.59.14

Commits

• 0c720e1 release: v5.59.15
• 6c06781 fix(react-query): resolve overload matches error with exactOptionalPropertyTy...
• 1adaf3f release: v5.59.14
• a085c92 fix(react-query): make queryFn optional again (#8176)
• d409854 fix(react-query): do not overwrite staleTime with the suspense default value ...
• See full diff in compare view

Updates @tanstack/react-query-devtools from 5.59.13 to 5.59.15

Release notes

Sourced from @​tanstack/react-query-devtools's releases.

v5.59.15

Version 5.59.15 - 10/15/24, 5:12 PM

Changes

Fix

• react-query: resolve overload matches error with exactOptionalPropertyTypes in queryOptions (#8186) (6c06781) by @​gwansikk

Packages

• @​tanstack/react-query@​5.59.15
• @​tanstack/react-query-devtools@​5.59.15
• @​tanstack/react-query-persist-client@​5.59.15
• @​tanstack/react-query-next-experimental@​5.59.15

v5.59.14

Version 5.59.14 - 10/15/24, 7:20 AM

Changes

Fix

• react-query: make queryFn optional again (#8176) (a085c92) by Julius Marminge
• react-query: do not overwrite staleTime with the suspense default value if it"s a function (#8174) (d409854) by Dominik Dorfmeister

Packages

• @​tanstack/react-query@​5.59.14
• @​tanstack/react-query-devtools@​5.59.14
• @​tanstack/react-query-persist-client@​5.59.14
• @​tanstack/react-query-next-experimental@​5.59.14

Commits

• 0c720e1 release: v5.59.15
• 1adaf3f release: v5.59.14
• See full diff in compare view

Updates dd-trace from 5.23.1 to 5.24.0

Release notes

Sourced from dd-trace's releases.

v5.24.0

• [89619bdf46] - (SEMVER-PATCH) update body-parser (Bryan English) #4790
• [d7b1dad805] - (SEMVER-PATCH) pin latest to 22 (Bryan English) #4793
• [f8515ec28b] - (SEMVER-PATCH) Remove old debug option from docs (simon-id) #4786
• [59eb9a724a] - (SEMVER-PATCH) Don't stop the profiler if encoding a profile fails (Attila Szegedi) #4779
• [8969e05336] - (SEMVER-PATCH) vendor jsonpath-plus (Bryan English) #4785
• [501ff2fbfb] - (SEMVER-MINOR) Suspicious request blocking - Express Path Parameters (Carles Capell) #4769
• [e4532439c2] - (SEMVER-PATCH) Upgrading jsonpath-plus to v10 to resolve CVE-2024-21534 (Thomas Watson) #4782
• [944f57d5d4] - (SEMVER-PATCH) [DI] Refactor unit tests (Thomas Watson) #4777
• [f62cbfadc7] - (SEMVER-PATCH) Unsubscribe NextJS body and query channels on appsec disable (Carles Capell) #4776
• [c085df1eae] - (SEMVER-MINOR) Add support for Fastify entry spans for Code Origin for Spans (Thomas Watson) #4449
• [bd4aff563f] - (SEMVER-MINOR) Update waf rules to 1.13.1 (Ugaitz Urien) #4768
• [5a113b2bcd] - (SEMVER-MINOR) Add Plugin for @​azure/functions (Duncan Harvey) #4716
• [ce0bdcea6e] - (SEMVER-MINOR) Fix capability identifier (Igor Unanua) #4767
• [60529442d2] - (SEMVER-MINOR) Use static vulnerability hash source when the cookie name is too long (Ugaitz Urien) #4764
• [5eea208392] - (SEMVER-MINOR) [test visibility] Add option to automatically report logs within tests when using winston (Juan Antonio Fernández de Alba) #4762
• [2d175d30d5] - (SEMVER-MINOR) Keep a profiling context object in spans (Attila Szegedi) #4763
• [a2b318df27] - (SEMVER-MINOR) [ASM] Add support for attacker fingerprinting (Carles Capell) #4698
• [111a156693] - (SEMVER-PATCH) Exploit Prevention LFI (Igor Unanua) #4715
• [a11a1fd20e] - (SEMVER-MINOR) Upgrade iast rewriter to 2.5.0 (Igor Unanua) #4761
• [7f93d36b79] - (SEMVER-PATCH) use AsyncLocalStorage instead of our home-grown solutions (Bryan English) #4201
• [bba5f3ddb3] - (SEMVER-MINOR) feat(dsm): implement avro schemas for avsc package (William Conti) #4726
• [08525d4c3c] - (SEMVER-MINOR) feat(tracing): implement protobufjs DSM schema support (William Conti) #4701
• [d024777515] - (SEMVER-MINOR) [DI] Add ability to take state snapshot feature (Thomas Watson) #4549
• [a00c9c8361] - (SEMVER-MINOR) Sql injection Exploit Prevention implementation for mysql2 library (Ugaitz Urien) #4712
• [d1abcab7a1] - (SEMVER-MINOR) [DI] Add hostname to probe result (Thomas Watson) #4756
• [d1f29dba99] - (SEMVER-PATCH) Fix appsec rate limiter flaky test (Ugaitz Urien) #4754
• [eef6711411] - (SEMVER-PATCH) Fix child process not maintaining previous parent span after execution (Ugaitz Urien) #4752
• [c700341689] - (SEMVER-PATCH) prefix system-tests env var names (William Conti) #4746
• [f988e003bf] - (SEMVER-MINOR) [DI] Add GitHub repo and SHA tags to probe results (Thomas Watson) #4751
• [e09305d366] - (SEMVER-PATCH) [DI] Fix probe.location.lines to be string[] instead of number[] (Thomas Watson) #4750
• [748ef616c3] - (SEMVER-PATCH) [DI] Switch unit tests to Mocha instead of Tap (Thomas Watson) #4728
• [70d5591d9b] - (SEMVER-MINOR) [test visibility] Read pull_request and pull_request_target event info from GHA (Juan Antonio Fernández de Alba) #4745
• [4d2f5b86a0] - (SEMVER-PATCH) Don't use deprecated url.parse function (Thomas Watson) #4743
• [92515a65e3] - (SEMVER-MINOR) [DI] Add stack trace to log probe results (Thomas Watson) #4727

Commits

• 2372a79 v5.24.0
• ae60879 update sinon (#4794)
• 486a465 update body-parser (#4790)
• b7e3108 pin latest to 22 (#4793)
• 05e80c6 Remove old debug option from docs (#4786)
• 9164d18 Don't stop the profiler if encoding a profile fails (#4779)
• 8749fa8 vendor jsonpath-plus (#4785)
• 0c0b8ec [test visibility] Fix num tests reported by EFD (#4783)
• 7644a7e Suspicious request blocking - Express Path Parameters (#4769)
• 74f6dc6 Upgrading jsonpath-plus to v10 to resolve CVE-2024-21534 (#4782)
• Additional commits viewable in compare view

Updates lucide-react from 0.452.0 to 0.453.0

Release notes

Sourced from lucide-react's releases.

New icons 0.453.0

New icons 🎨

• calendar-1 (#2520) by @​peteruithoven

Commits

• See full diff in compare view

Updates playwright from 1.48.0 to 1.48.1

Release notes

Sourced from playwright's releases.

v1.48.1

Highlights

microsoft/playwright#33023 - [Bug]: command line flag --headed has no effect in ui mode microsoft/playwright#33107 - [REGRESSION]: page.waitForRequest does not get resolved since 1.48.0 microsoft/playwright#33085 - [Bug]: WebSocket route does not handle full URLs in Playwright microsoft/playwright#33052 - [Regression]: Inspector not showing recorded steps microsoft/playwright#33132 - [Bug]: Wrong Ubuntu release name in Dockerfile.noble microsoft/playwright#32996 - [BUG] Trace attachments have small unusable height

Browser Versions

• Chromium 130.0.6723.19
• Mozilla Firefox 130.0
• WebKit 18.0

This version was also tested against the following stable channels:

• Google Chrome 129
• Microsoft Edge 129

Commits

• ceb756d chore: mark v1.48.1 (#33136)
• c3740d3 cherry-pick(#33133): (docker): correct Ubuntu Noble name in name template
• 2ec0c86 cherry-pick(#33124): test: unflake ff debugger test
• 8ef381f cherry-pick(#33122): chore: fix ff test for codegen
• c72a253 cherry-pick(#33110): fix(chromium): disable PlzDedicatedWorker again (#33113)
• 3d7ef3c cherry-pick(#33095): fix(routeWebSocket): make sure ws url without trailing s...
• 78c43bc cherry-pick(#33097): docs: improve docs for WebSocketRoute
• 6dc9ec7 cherry-pick(#33099): chore: fix codegen selector while debugging
• e5bbd5e cherry-pick(#33096): chore: various v1.48.0 roll fixes for .NET
• daff1a9 cherry-pick(#33030): fix(ui): bring back the headed param
• Additional commits viewable in compare view

Updates tailwindcss from 3.4.13 to 3.4.14

Release notes

Sourced from tailwindcss's releases.

v3.4.14

Fixed

• Don't set display: none on elements that use hidden="until-found" (#14625)

Changelog

Sourced from tailwindcss's changelog.

[3.4.14] - 2024-10-15

Fixed

• Don't set display: none on elements that use hidden="until-found" (#14625)

Commits

• c616fb9 3.4.14
• b570e2b Don't set display: none on elements that use hidden="until-found" (#14625)
• See full diff in compare view

Updates @playwright/test from 1.48.0 to 1.48.1

Release notes

Sourced from @​playwright/test's releases.

v1.48.1

Highlights

microsoft/playwright#33023 - [Bug]: command line flag --headed has no effect in ui mode microsoft/playwright#33107 - [REGRESSION]: page.waitForRequest does not get resolved since 1.48.0 microsoft/playwright#33085 - [Bug]: WebSocket route does not handle full URLs in Playwright microsoft/playwright#33052 - [Regression]: Inspector not showing recorded steps microsoft/playwright#33132 - [Bug]: Wrong Ubuntu release name in Dockerfile.noble microsoft/playwright#32996 - [BUG] Trace attachments have small unusable height

Browser Versions

• Chromium 130.0.6723.19
• Mozilla Firefox 130.0
• WebKit 18.0

This version was also tested against the following stable channels:

• Google Chrome 129
• Microsoft Edge 129

Commits

• ceb756d chore: mark v1.48.1 (#33136)
• c3740d3 cherry-pick(#33133): (docker): correct Ubuntu Noble name in name template
• 2ec0c86 cherry-pick(#33124): test: unflake ff debugger test
• 8ef381f cherry-pick(#33122): chore: fix ff test for codegen
• c72a253 cherry-pick(#33110): fix(chromium): disable PlzDedicatedWorker again (#33113)
• 3d7ef3c cherry-pick(#33095): fix(routeWebSocket): make sure ws url without trailing s...
• 78c43bc cherry-pick(#33097): docs: improve docs for WebSocketRoute
• 6dc9ec7 cherry-pick(#33099): chore: fix codegen selector while debugging
• e5bbd5e cherry-pick(#33096): chore: various v1.48.0 roll fixes for .NET
• daff1a9 cherry-pick(#33030): fix(ui): bring back the headed param
• Additional commits viewable in compare view

Updates @testing-library/jest-dom from 6.5.0 to 6.6.2

Release notes

Sourced from @​testing-library/jest-dom's releases.

v6.6.2

6.6.2 (2024-10-17)

Bug Fixes

• remove recursive type reference in vitest types (#636) (4468378)

v6.6.1

6.6.1 (2024-10-16)

Bug Fixes

• fix lodash import in to-have-selection.js (#642) (ced792e)

v6.6.0

6.6.0 (2024-10-16)

Features

• implement toHaveSelection (#637) (9b14804)

Commits

• 4468378 fix: remove recursive type reference in vitest types (#636)
• abba961 docs: add billyjanitsch as a contributor for bug (#644)
• 9490615 docs: add G-Rath as a contributor for code (#643)
• ced792e fix: fix lodash import in to-have-selection.js (#642)
• 9b14804 feat: implement toHaveSelection (#637)
• f5b0e94 docs: add diegohaz as a contributor for ideas (#640)
• 68e927e docs: add pwolaq as a contributor for code, and test (#639)
• 04005db docs: add silviuaavram as a contributor for code, and test (#638)
• 4723de3 docs: add mibcadet as a contributor for doc (#628)
• 8fd402a docs: how to update tsconfig for vitest matchers extension (#624)
• Additional commits viewable in compare view

Updates @types/node from 22.7.5 to 22.7.7

Commits

• See full diff in compare view

Updates prisma from 5.20.0 to 5.21.1

Release notes

Sourced from prisma's releases.

5.21.1

• Fixed a bug where migrations were not using shadow database correctly in some edge cases

5.21.0

Today, we are excited to share the 5.21.0 release 🎉

🌟 Help us spread the word about Prisma by starring the repo ☝️ or posting on X about the release.

Highlights

Better support for tracing in MongoDB

The tracing Preview feature now has full support for MongoDB with previously missing functionality now implemented. This is a part of the ongoing effort to stabilize this Preview feature and release it in General Availability.

tracing is a Preview feature that enables built-in support for OpenTelemetry instrumentation inside the Prisma Client and provides deep insights into the performance and timing of your queries. See our documentation for more information.

For an easy to use and zero-configuration tracing instrumentation tool with a dashboard that provides an overview of your queries, statistics, and AI-powered recommendations, try Prisma Optimize.

WebAssembly engine size decrease for edge functions

Due to recent changes, some users experienced a steep increase of the bundle size in Prisma 5.20 when using the driverAdapters Preview feature, going over the 1 MB limit on the free tier of Cloudflare Workers. This has now been fixed.

Fixes and improvements

Prisma Engines

• Avoid regex crate for wasm bundle size (to keep cloudflare free plan)

Credits

Huge thanks to @​austin-tildei, @​LucianBuzzo, @​mcuelenaere, @​pagewang0, @​key-moon, @​pranayat, @​yubrot, @​skyzh for helping!

Commits

• 252920b chore(cli): Bump prisma studio (#25431)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
100-cims	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Oct 21, 2024 10:48pm