chore(dev-deps): bump @langchain/core from 0.3.80 to 1.1.32

[dependabot]

Bumps @langchain/core from 0.3.80 to 1.1.32.

Release notes

Sourced from @​langchain/core's releases.

@​langchain/core@​1.1.32

Patch Changes

• #10330 26488b5 Thanks @​hntrl! - fix(core): treat empty string tool call chunk IDs as missing during merge

  Fixed _mergeLists in message base to treat empty string "" IDs the same as null/undefined when merging tool call chunks. This fixes old completions-style streaming where follow-up chunks carry id: "" instead of undefined, which previously prevented chunks from being merged by index.

• #10167 ca826f6 Thanks @​colifran! - feat: implement type inference for tool streams

• #10334 a602c42 Thanks @​maahir30! - fix(core): add JSDoc docstrings to fakeModel builder API and export FakeBuiltModel

• #10254 db7d017 Thanks @​pawel-twardziak! - fix(core): preserve thoughtSignature in array content during streaming with thinking models

@​langchain/core@​1.1.31

Patch Changes

• #10271 7373b4c Thanks @​jacoblee93! - feat(core): Use uuid7 instead of v4 for generating run ids

• #10262 b0175a5 Thanks @​maahir30! - fix: Move fakeModel from utils/testing to testing namespace move to updated namespace

• #10185 414f6ed Thanks @​maahir30! - feat: add custom Vitest matchers for LangChain message and tool call assertions

  Adds a new @langchain/core/testing/matchers export containing custom Vitest matchers (toBeHumanMessage, toBeAIMessage, toBeSystemMessage, toBeToolMessage, toHaveToolCalls, toHaveToolCallCount, toContainToolCall, toHaveToolMessages, toHaveBeenInterrupted, toHaveStructuredResponse) that external users can register via expect.extend(langchainMatchers) in their Vitest setup files. Re-exported from langchain for convenience.

@​langchain/core@​1.1.30

Patch Changes

• #10243 96c630d Thanks @​hntrl! - fix: add explicit : symbol type annotations to Symbol.for() declarations for cross-version compatibility

  TypeScript infers unique symbol type when Symbol.for() is used without an explicit type annotation, causing type incompatibility when multiple versions of the same package are present in a dependency tree. By adding explicit : symbol annotations, all declarations now use the general symbol type, making them compatible across versions while maintaining identical runtime behavior.

  Changes:

  • Added : symbol to MESSAGE_SYMBOL in messages/base.ts
  • Added : symbol to MIDDLEWARE_BRAND in agents/middleware/types.ts (also changed from Symbol() to Symbol.for() for cross-realm compatibility)

• #10256 a8b9ccc Thanks @​colifran! - fix(core): standard schema type guards don't support callable schemas

• #10204 a1f22bb Thanks @​colifran! - feat(core): implement standard schema support for structured output

@​langchain/core@​1.1.29

Patch Changes

• #10106 9f30267 Thanks @​hntrl! - Add package version metadata to runnable traces. Each package now stamps its version in this.metadata.versions at construction time, making version info available in LangSmith trace metadata.

• #10154 403a99f Thanks @​kanweiwei! - fix(core): add usage_metadata to AIMessage lc_aliases

• #10169 3b1fd54 Thanks @​hntrl! - fix(core, langchain): bump uuid dependency from ^10.0.0 to ^11.0.0 to fix Metro bundler error

... (truncated)

Commits

• b5b1eec chore: version packages (#10273)
• 59aed4c chore: fix dependabot config (#10346)
• 08ee4c6 chore: reorganize community packages into libs/community/ (#10324)
• b7f63ea chore: replace claude 3 haiku with claude haiku 4.5 in tests (#10322)
• d6535ca chore(deps): patch CVE-2025-68665 — override langchain to workspace version (...
• 8740fe4 chore: update changeset (#10344)
• baedc05 fix: bump underscore to resolve CVE-2026-27601 (#10336)
• 2418c6f fix: bump tar override to >=7.5.11 to resolve CVE-2026-29786, CVE-2026-31802 ...
• c8c5840 Fix optional chaining for candidateContent in reduce (#10319)
• bb00b82 chore: bump simple-git to fix CVE-2026-28292 (#10331)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[dependabot]

Superseded by #15.