chore(deps): bump the minor-patch group across 1 directory with 8 updates by dependabot[bot] · Pull Request #608 · tinyauthapp/tinyauth

dependabot · 2026-01-26T08:45:37Z

Bumps the minor-patch group with 8 updates in the /frontend directory:

Package	From	To
@tanstack/react-query	`5.90.19`	`5.90.20`
axios	`1.13.2`	`1.13.3`
lucide-react	`0.562.0`	`0.563.0`
react-router	`7.12.0`	`7.13.0`
zod	`4.3.5`	`4.3.6`
@types/node	`25.0.9`	`25.0.10`
globals	`17.0.0`	`17.1.0`
prettier	`3.8.0`	`3.8.1`

Updates @tanstack/react-query from 5.90.19 to 5.90.20

Release notes

Sourced from @tanstack/react-query's releases.

@tanstack/react-query-persist-client@5.90.20

Patch Changes

Updated dependencies []:

@tanstack/query-persist-client-core@5.91.17

@tanstack/react-query@5.90.18

@tanstack/react-query@5.90.20

Patch Changes

Updated dependencies [e7258c5]:

@tanstack/query-core@5.90.20

Changelog

Sourced from @tanstack/react-query's changelog.

5.90.20

Patch Changes

Updated dependencies [e7258c5]:

@tanstack/query-core@5.90.20

Commits

7ac4e20 ci: Version Packages (#10067)
9ff3de7 Upgrade to Vitest v4 (#9862)
See full diff in compare view

Updates axios from 1.13.2 to 1.13.3

Release notes

Sourced from axios's releases.

Release v1.13.3

Release notes:

Bug Fixes

http2: Use port 443 for HTTPS connections by default. (#7256) (d7e6065)

interceptor: handle the error in the same interceptor (#6269) (5945e40)

main field in package.json should correspond to cjs artifacts (#5756) (7373fbf)

package.json: add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (#5754) (b89217e)

silentJSONParsing=false should throw on invalid JSON (#7253) (#7257) (7d19335)

turn AxiosError into a native error (#5394) (#5558) (1c6a86d)

types: add handlers to AxiosInterceptorManager interface (#5551) (8d1271b)

types: restore AxiosError.cause type from unknown to Error (#7327) (d8233d9)

unclear error message is thrown when specifying an empty proxy authorization (#6314) (6ef867e)

Features

add undefined as a value in AxiosRequestConfig (#5560) (095033c)

add automatic minor and patch upgrades to dependabot (#6053) (65a7584)

add Node.js coverage script using c8 (closes #7289) (#7294) (ec9d94e)

added copilot instructions (3f83143)

compatibility with frozen prototypes (#6265) (860e033)

enhance pipeFileToResponse with error handling (#7169) (88d7884)

types: Intellisense for string literals in a widened union (#6134) (f73474d), closes microsoft/TypeScript#33471

Reverts

Revert "fix: silentJSONParsing=false should throw on invalid JSON (#7253) (#7…" (#7298) (a4230f5), closes #7253 #7 #7298

deps: bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (#7334) (2d6ad5e)

Contributors to this release

Ashvin Tiwari

Nikunj Mochi

Anchal Singh

jasonsaayman

Julian Dax

Akash Dhar Dubey

Madhumita

Tackoil

Justin Dhillon

Rudransh

WuMingDao

codenomnom

Nandan Acharya

Eric Dubé

Tibor Pilz

Gabriel Quaresma

Turadg Aleahmad

... (truncated)

Changelog

Sourced from axios's changelog.

1.13.3 (2026-01-20)

Bug Fixes

http2: Use port 443 for HTTPS connections by default. (#7256) (d7e6065)

interceptor: handle the error in the same interceptor (#6269) (5945e40)

main field in package.json should correspond to cjs artifacts (#5756) (7373fbf)

package.json: add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (#5754) (b89217e)

silentJSONParsing=false should throw on invalid JSON (#7253) (#7257) (7d19335)

turn AxiosError into a native error (#5394) (#5558) (1c6a86d)

types: add handlers to AxiosInterceptorManager interface (#5551) (8d1271b)

types: restore AxiosError.cause type from unknown to Error (#7327) (d8233d9)

unclear error message is thrown when specifying an empty proxy authorization (#6314) (6ef867e)

Features

add undefined as a value in AxiosRequestConfig (#5560) (095033c)

add automatic minor and patch upgrades to dependabot (#6053) (65a7584)

add Node.js coverage script using c8 (closes #7289) (#7294) (ec9d94e)

added copilot instructions (3f83143)

compatibility with frozen prototypes (#6265) (860e033)

enhance pipeFileToResponse with error handling (#7169) (88d7884)

types: Intellisense for string literals in a widened union (#6134) (f73474d), closes microsoft/TypeScript#33471

Reverts

Revert "fix: silentJSONParsing=false should throw on invalid JSON (#7253) (#7…" (#7298) (a4230f5), closes #7253 #7 #7298

deps: bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (#7334) (2d6ad5e)

Contributors to this release

Ashvin Tiwari

Nikunj Mochi

Anchal Singh

jasonsaayman

Julian Dax

Akash Dhar Dubey

Madhumita

Tackoil

Justin Dhillon

Rudransh

WuMingDao

codenomnom

Nandan Acharya

Eric Dubé

Tibor Pilz

Gabriel Quaresma

... (truncated)

Commits

ab06109 chore(release): v1.13.3 (#7335)
2d6ad5e revert(deps): bump peter-evans/create-pull-request from 7 to 8 in the github-...
cb49a6f chore(sponsor): update sponsor block (#7330)
d8233d9 fix(types): restore AxiosError.cause type from unknown to Error (#7327)
5945e40 fix(interceptor): handle the error in the same interceptor (#6269)
7373fbf fix: main field in package.json should correspond to cjs artifacts (#5756)
8d1271b fix(types): add handlers to AxiosInterceptorManager interface (#5551)
f869434 docs: refresh CDN URLs and example JSON headers (#7236)
46db331 doc: update deprecated var usage in documentation examples (#7246)
d6bbb3d docs: add async/await timeout handling example (#7250)
Additional commits viewable in compare view

Updates lucide-react from 0.562.0 to 0.563.0

Release notes

Sourced from lucide-react's releases.

Version 0.563.0

What's Changed

aria-hidden is by default added to icons components in all packages. This was already added to lucide-react before. Making icons accessible, you can add an aria-label or a title. See docs about accessibility.

All changes

chore(dev): Enable ligatures in font build configuration by @dcxo in lucide-icons/lucide#3876

chore(repo): add Android to brand stopwords by @karsa-mistmere in lucide-icons/lucide#3895

fix(site): add missing titles and a title template by @taimar in lucide-icons/lucide#3920

fix(site): unify and improve the styling of input fields by @taimar in lucide-icons/lucide#3919

fix(icons): changed star-off icon by @jguddas in lucide-icons/lucide#3952

fix(icons): changed tickets-plane icon by @jguddas in lucide-icons/lucide#3928

fix(icons): changed monitor-off icon by @jguddas in lucide-icons/lucide#3962

fix(icons): changed lasso icon by @jguddas in lucide-icons/lucide#3961

fix(icons): changed cloud-off icon by @jguddas in lucide-icons/lucide#3942

docs(site): added lucide-web-components third-party package by @midesweb in lucide-icons/lucide#3948

chore(deps-dev): bump preact from 10.27.2 to 10.27.3 by @dependabot[bot] in lucide-icons/lucide#3955

feat(icon): add globe-x icon with metadata by @Muhammad-Aqib-Bashir in lucide-icons/lucide#3827

fix(icons): changed waypoints icon by @karsa-mistmere in lucide-icons/lucide#3990

fix(icons): changed bookmark icon by @jguddas in lucide-icons/lucide#2906

fix(icons): changed message-square-dashed icon by @jguddas in lucide-icons/lucide#3959

fix(icons): changed cloudy icon by @jguddas in lucide-icons/lucide#3966

fix(github-actions): resolved spelling mistake in gh issue close command by @jguddas in lucide-icons/lucide#4000

Update LICENSE by @alxgraphy in lucide-icons/lucide#4009

feat(packages): Added aria-hidden fallback for decorative icons to all packages by @ericfennis in lucide-icons/lucide#3604

chore(deps): bump lodash from 4.17.21 to 4.17.23 by @dependabot[bot] in lucide-icons/lucide#4020

chore(deps): bump lodash-es from 4.17.21 to 4.17.23 by @dependabot[bot] in lucide-icons/lucide#4019

Suggest anchoring to a specific lucide version when using a cdn by @drago1520 in lucide-icons/lucide#3727

feat(docs): upgraded backers block by @karsa-mistmere in lucide-icons/lucide#4014

fix(site): hide native search input clear "X" icon by @epifaniofrancisco in lucide-icons/lucide#3933

feat(icons): added printer-x icon by @lt25106 in lucide-icons/lucide#3941

New Contributors

@dcxo made their first contribution in lucide-icons/lucide#3876

@midesweb made their first contribution in lucide-icons/lucide#3948

@alxgraphy made their first contribution in lucide-icons/lucide#4009

@drago1520 made their first contribution in lucide-icons/lucide#3727

@lt25106 made their first contribution in lucide-icons/lucide#3941

Full Changelog: lucide-icons/lucide@0.562.0...0.563.0

Commits

67c0485 feat(scripts): added helper script to automatically update OpenCollective bac...
b6ed43d feat(packages): Added aria-hidden fallback for decorative icons to all packag...
See full diff in compare view

Updates react-router from 7.12.0 to 7.13.0

Release notes

Sourced from react-router's releases.

v7.13.0

See the changelog for release notes: https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v7130

Changelog

Sourced from react-router's changelog.

7.13.0

Minor Changes

Add crossOrigin prop to Links component (#14687)

Patch Changes

Fix double slash normalization for useNavigate colon urls (#14718)

Update failed origin checks to return a 400 status instead of a 500 (#14737)

Bugfix #14666: Inline criticalCss is missing nonce (#14691)

Loosen allowedActionOrigins glob check so ** matches all domains (#14722)

Commits

5557ba3 chore: Update version for release (#14749)
62c6e0e chore: Update version for release (pre) (#14738)
3126264 Return 400 response on failed origin checks (#14737)
3a5b5ad Fix double slash normalization for useNavigate paths with colons (#14718)
f29c6c9 Add docs and loosen origins wildcard check (#14722)
0bb972b fix(react-router/dom/ssr): add nonce to inline critical css (#14691)
dd08f8d fix(react-router): add crossOrigin prop to Links component (#14687)
c38d76c chore: format
See full diff in compare view

Updates zod from 4.3.5 to 4.3.6

Release notes

Sourced from zod's releases.

v4.3.6

Commits:

9977fb0868432461de265a773319e80a90ba3e37 Add brand.dev to sponsors

f4b7bae3468f6188b8f004e007d722148fc91d77 Update pullfrog.yml (#5634)

251d7163a0ac7740fee741428d913e3c55702ace Clean up workflow_call

edd4132466da0f5065a8e051b599d01fdd1081d8 fix: add missing User-agent to robots.txt and allow all (#5646)

85db85e9091d0706910d60c7eb2e9c181edd87bd fix: typo in codec.test.ts file (#5628)

cbf77bb12bdfda2e054818e79001f5cb3798ce76 Avoid non null assertion (#5638)

dfbbf1c1ae0c224b8131d80ddf0a264262144086 Avoid re-exported star modules (#5656)

762e911e5773f949452fd6dd4e360f2362110e8e Generalize numeric key handling

ca3c8629c0c2715571f70b44c2433cad3db7fe4e v4.3.6

Commits

ca3c862 v4.3.6
762e911 Generalize numeric key handling
dfbbf1c Avoid re-exported star modules (#5656)
cbf77bb Avoid non null assertion (#5638)
85db85e fix: typo in codec.test.ts file (#5628)
edd4132 fix: add missing User-agent to robots.txt and allow all (#5646)
251d716 Clean up workflow_call
f4b7bae Update pullfrog.yml (#5634)
9977fb0 Add brand.dev to sponsors
See full diff in compare view

Updates @types/node from 25.0.9 to 25.0.10

Commits

See full diff in compare view

Updates globals from 17.0.0 to 17.1.0

Release notes

Sourced from globals's releases.

v17.1.0

Add webpack and rspack globals (#333) 65cae73

sindresorhus/globals@v17.0.0...v17.1.0

Commits

7a2f354 17.1.0
65cae73 Add webpack and rspack globals (#333)
3efe5aa Remove script transform (#332)
See full diff in compare view

Updates prettier from 3.8.0 to 3.8.1

Release notes

Sourced from prettier's releases.

3.8.1

Include available printers in plugin type declarations (#18706 by @porada)

🔗 Changelog

Changelog

Sourced from prettier's changelog.

3.8.1

diff

Include available `printers` in plugin type declarations (#18706 by `@porada`)

// Input
import * as prettierPluginEstree from "prettier/plugins/estree";
// Prettier 3.8.0
// Property 'printers' does not exist on type 'typeof import("prettier/plugins/estree")'. ts(2339)
prettierPluginEstree.printers.estree; //=> any
// Prettier 3.8.1
prettierPluginEstree.printers.estree; //=> Printer
prettierPluginEstree.printers["estree-json"]; //=> Printer

Commits

90983f4 Release 3.8.1
57f702f Include available printers in plugin type declarations (#18706)
bece827 Revert change in release script
82a4ab2 Bump Prettier dependency to 3.8.0
5213ee4 Clean changelog_unreleased
f95ad0f Comment out finished steps
b2034e8 Fix release script
5824b15 Release 3.8.0
0433601 Add blog post for v3.8.0 (#18639)
c45fef1 Fix LWC attribute with --embedded-language-formatting off (#18383)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…ates Bumps the minor-patch group with 8 updates in the /frontend directory: | Package | From | To | | --- | --- | --- | | [@tanstack/react-query](https://github.com/TanStack/query/tree/HEAD/packages/react-query) | `5.90.19` | `5.90.20` | | [axios](https://github.com/axios/axios) | `1.13.2` | `1.13.3` | | [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `0.562.0` | `0.563.0` | | [react-router](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router) | `7.12.0` | `7.13.0` | | [zod](https://github.com/colinhacks/zod) | `4.3.5` | `4.3.6` | | [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `25.0.9` | `25.0.10` | | [globals](https://github.com/sindresorhus/globals) | `17.0.0` | `17.1.0` | | [prettier](https://github.com/prettier/prettier) | `3.8.0` | `3.8.1` | Updates `@tanstack/react-query` from 5.90.19 to 5.90.20 - [Release notes](https://github.com/TanStack/query/releases) - [Changelog](https://github.com/TanStack/query/blob/main/packages/react-query/CHANGELOG.md) - [Commits](https://github.com/TanStack/query/commits/@tanstack/react-query@5.90.20/packages/react-query) Updates `axios` from 1.13.2 to 1.13.3 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.13.2...v1.13.3) Updates `lucide-react` from 0.562.0 to 0.563.0 - [Release notes](https://github.com/lucide-icons/lucide/releases) - [Commits](https://github.com/lucide-icons/lucide/commits/0.563.0/packages/lucide-react) Updates `react-router` from 7.12.0 to 7.13.0 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/react-router@7.13.0/packages/react-router) Updates `zod` from 4.3.5 to 4.3.6 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](colinhacks/zod@v4.3.5...v4.3.6) Updates `@types/node` from 25.0.9 to 25.0.10 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) Updates `globals` from 17.0.0 to 17.1.0 - [Release notes](https://github.com/sindresorhus/globals/releases) - [Commits](sindresorhus/globals@v17.0.0...v17.1.0) Updates `prettier` from 3.8.0 to 3.8.1 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](prettier/prettier@3.8.0...3.8.1) --- updated-dependencies: - dependency-name: "@tanstack/react-query" dependency-version: 5.90.20 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-patch - dependency-name: axios dependency-version: 1.13.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-patch - dependency-name: lucide-react dependency-version: 0.563.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-patch - dependency-name: react-router dependency-version: 7.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-patch - dependency-name: zod dependency-version: 4.3.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-patch - dependency-name: "@types/node" dependency-version: 25.0.10 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-patch - dependency-name: globals dependency-version: 17.1.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-patch - dependency-name: prettier dependency-version: 3.8.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-patch ... Signed-off-by: dependabot[bot] <support@github.com>

coderabbitai · 2026-01-26T08:45:55Z

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

dependabot · 2026-01-27T08:16:53Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jan 26, 2026

dependabot Bot closed this Jan 27, 2026

dependabot Bot deleted the dependabot/bun/frontend/minor-patch-0fc9fb93fc branch January 27, 2026 08:16

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump the minor-patch group across 1 directory with 8 updates#608

chore(deps): bump the minor-patch group across 1 directory with 8 updates#608
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bun/frontend/minor-patch-0fc9fb93fc

dependabot Bot commented on behalf of github Jan 26, 2026 •

edited

Loading

Uh oh!

coderabbitai Bot commented Jan 26, 2026

Review skipped

Uh oh!

dependabot Bot commented on behalf of github Jan 27, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Uh oh!

Conversation

dependabot Bot commented on behalf of github Jan 26, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

@​tanstack/react-query-persist-client@​5.90.20

Patch Changes

@​tanstack/react-query@​5.90.20

Patch Changes

5.90.20

Patch Changes

Release v1.13.3

Release notes:

Bug Fixes

Features

Reverts

Contributors to this release

1.13.3 (2026-01-20)

Bug Fixes

Features

Reverts

Contributors to this release

Version 0.563.0

What's Changed

All changes

New Contributors

v7.13.0

7.13.0

Minor Changes

Patch Changes

v4.3.6

Commits:

v17.1.0

3.8.1

3.8.1

Include available printers in plugin type declarations (#18706 by @​porada)

Uh oh!

coderabbitai Bot commented Jan 26, 2026

Review skipped

Uh oh!

dependabot Bot commented on behalf of github Jan 27, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github Jan 26, 2026 •

edited

Loading

`@tanstack/react-query-persist-client@5`.90.20

`@tanstack/react-query@5`.90.20

Include available `printers` in plugin type declarations (#18706 by `@porada`)