chore(deps): bump the patch-updates group across 1 directory with 7 updates by dependabot[bot] · Pull Request #61 · vladimircuriel/cloudnext

dependabot · 2026-03-23T10:28:59Z

Bumps the patch-updates group with 7 updates in the / directory:

Package	From	To
@heroui/react	`2.8.7`	`2.8.10`
next	`15.5.9`	`15.5.14`
postcss	`8.5.6`	`8.5.8`
react	`19.2.3`	`19.2.4`
@types/react	`19.2.7`	`19.2.14`
react-dom	`19.2.3`	`19.2.4`
zod	`4.3.5`	`4.3.6`

Updates @heroui/react from 2.8.7 to 2.8.10

Release notes

Sourced from @heroui/react's releases.

@heroui/react@2.8.10

What's Changed

fix(use-draggable): persist transform position across renders by @wingkwong in heroui-inc/heroui#6287

fix(select): scroll to selected item when reopening dropdown by @deepansh946 in heroui-inc/heroui#6269

chore(deps): bump react-aria versions (release v1.16.0) by @wingkwong in heroui-inc/heroui#6281

fix(docs): typo in AutocompleteItem by @muhammad-paksi in heroui-inc/heroui#6247

fix(docs): broken example in autocomplete by @wingkwong in heroui-inc/heroui#6292

ci(changesets): 📦 version packages by @github-actions[bot] in heroui-inc/heroui#6288

New Contributors

@muhammad-paksi made their first contribution in heroui-inc/heroui#6247

Full Changelog: https://github.com/heroui-inc/heroui/compare/@heroui/react@2.8.9...@heroui/react@2.8.10

@heroui/react@2.8.9

What's Changed

fix(system-rsc): extendVariants rendering behavior with as by @ITBoomBKStudio in heroui-inc/heroui#6215

chore(deps): bump RA dependencies by @wingkwong in heroui-inc/heroui#6221

fix(button): correct disableRipple prop precedence by @KMNowak in heroui-inc/heroui#6199

ci(changesets): 📦 version packages by @github-actions[bot] in heroui-inc/heroui#6227

New Contributors

@KMNowak made their first contribution in heroui-inc/heroui#6199

Full Changelog: https://github.com/heroui-inc/heroui/compare/@heroui/react@2.8.8...@heroui/react@2.8.9

Commits

See full diff in compare view

Updates next from 15.5.9 to 15.5.14

Release notes

Sourced from next's releases.

v15.5.14

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

feat(next/image): add lru disk cache and images.maximumDiskCacheSize (#91660)

Fix(pages-router): restore Content-Length and ETag for /_next/data/ JSON responses (#90304)

Credits

Huge thanks to @styfle and @lllomh for helping!

v15.5.13

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

fix: patch http-proxy to prevent request smuggling in rewrites (See: CVE-2026-29057)

Credits

Huge thanks to @ztanner for helping!

v15.5.12

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

fix unlock in publish-native

This is a re-release of v15.5.11 applying the turbopack changes.

v15.5.11

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Tracing: Fix memory leak in span map (#85529)

fix: ensure LRU cache items have minimum size of 1 to prevent unbounded growth (#89134)

Turbopack: fix NFT tracing of sharp 0.34 (#82340)

Turbopack: support pattern into exports field (#82757)

NFT tracing fixes (#84155 and #85323)

Turbopack: validate CSS without computing all paths (#83810)

feat: implement LRU cache with invocation ID scoping for minimal mode response cache (#89129)

Credits

Huge thanks to @timneutkens, @mischnic, @ztanner, and @wyattjoh for helping!

Commits

d7b012d v15.5.14
2b05251 [backport] feat(next/image): add lru disk cache and `images.maximumDiskCacheS...
f88cee9 Backport: Fix(pages-router): restore Content-Length and ETag for /_next/data/...
cfd5f53 v15.5.13
15f2891 [backport]: fix: patch http-proxy to prevent request smuggling in rewrites (#...
d23f41c v15.5.12
8e75765 fix unlock in publish-native
6cef992 [backport] normalize CRLF line endings in jscodeshift tests on Windows (#8800...
7a94645 Apply needs for publishRelease
bbfd4e3 v15.5.11
Additional commits viewable in compare view

Updates postcss from 8.5.6 to 8.5.8

Release notes

Sourced from postcss's releases.

8.5.8

Fixed Processor#version.

8.5.7

Improved source map annotation cleaning performance (by CodeAnt AI).

Changelog

Sourced from postcss's changelog.

8.5.8

Fixed Processor#version.

8.5.7

Improved source map annotation cleaning performance (by CodeAnt AI).

Commits

65de537 Release 8.5.8 version
b2c6d97 Run git hook register
0ae0a49 Update Processor#version
6ee9f14 Release 8.5.7 version
3fbc951 Fix uvu Node.js 25 support
52db53e Update dependencies
497daef Speed up source map annotation cleaning by moving from RegExp
41e739a Remove banner
1329142 chore: speed up space-only string check in lib/parser.js (#2064)
23beff9 Update dependencies
Additional commits viewable in compare view

Updates react from 19.2.3 to 19.2.4

Release notes

Sourced from react's releases.

19.2.4 (January 26th, 2026)

React Server Components

Add more DoS mitigations to Server Actions, and harden Server Components (#35632 by @gnoff, @lubieowoce, @sebmarkbage, @unstubbable)

Commits

90ab3f8 Version 19.2.4
See full diff in compare view

Updates @types/react from 19.2.7 to 19.2.14

Commits

See full diff in compare view

Updates react-dom from 19.2.3 to 19.2.4

Release notes

Sourced from react-dom's releases.

19.2.4 (January 26th, 2026)

React Server Components

Add more DoS mitigations to Server Actions, and harden Server Components (#35632 by @gnoff, @lubieowoce, @sebmarkbage, @unstubbable)

Commits

90ab3f8 Version 19.2.4
See full diff in compare view

Updates zod from 4.3.5 to 4.3.6

Release notes

Sourced from zod's releases.

v4.3.6

Commits:

9977fb0868432461de265a773319e80a90ba3e37 Add brand.dev to sponsors

f4b7bae3468f6188b8f004e007d722148fc91d77 Update pullfrog.yml (#5634)

251d7163a0ac7740fee741428d913e3c55702ace Clean up workflow_call

edd4132466da0f5065a8e051b599d01fdd1081d8 fix: add missing User-agent to robots.txt and allow all (#5646)

85db85e9091d0706910d60c7eb2e9c181edd87bd fix: typo in codec.test.ts file (#5628)

cbf77bb12bdfda2e054818e79001f5cb3798ce76 Avoid non null assertion (#5638)

dfbbf1c1ae0c224b8131d80ddf0a264262144086 Avoid re-exported star modules (#5656)

762e911e5773f949452fd6dd4e360f2362110e8e Generalize numeric key handling

ca3c8629c0c2715571f70b44c2433cad3db7fe4e v4.3.6

Commits

ca3c862 v4.3.6
762e911 Generalize numeric key handling
dfbbf1c Avoid re-exported star modules (#5656)
cbf77bb Avoid non null assertion (#5638)
85db85e fix: typo in codec.test.ts file (#5628)
edd4132 fix: add missing User-agent to robots.txt and allow all (#5646)
251d716 Clean up workflow_call
f4b7bae Update pullfrog.yml (#5634)
9977fb0 Add brand.dev to sponsors
See full diff in compare view

Updates @types/react from 19.2.7 to 19.2.14

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…pdates Bumps the patch-updates group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@heroui/react](https://github.com/heroui-inc/heroui/tree/HEAD/packages/react) | `2.8.7` | `2.8.10` | | [next](https://github.com/vercel/next.js) | `15.5.9` | `15.5.14` | | [postcss](https://github.com/postcss/postcss) | `8.5.6` | `8.5.8` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.3` | `19.2.4` | | [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.2.7` | `19.2.14` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.3` | `19.2.4` | | [zod](https://github.com/colinhacks/zod) | `4.3.5` | `4.3.6` | Updates `@heroui/react` from 2.8.7 to 2.8.10 - [Release notes](https://github.com/heroui-inc/heroui/releases) - [Changelog](https://github.com/heroui-inc/heroui/blob/v3/packages/react/CHANGELOG.md) - [Commits](https://github.com/heroui-inc/heroui/commits/@heroui/react@2.8.10/packages/react) Updates `next` from 15.5.9 to 15.5.14 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v15.5.9...v15.5.14) Updates `postcss` from 8.5.6 to 8.5.8 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.5.6...8.5.8) Updates `react` from 19.2.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react) Updates `@types/react` from 19.2.7 to 19.2.14 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `react-dom` from 19.2.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom) Updates `zod` from 4.3.5 to 4.3.6 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](colinhacks/zod@v4.3.5...v4.3.6) Updates `@types/react` from 19.2.7 to 19.2.14 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) --- updated-dependencies: - dependency-name: "@heroui/react" dependency-version: 2.8.10 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-updates - dependency-name: next dependency-version: 15.5.14 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-updates - dependency-name: postcss dependency-version: 8.5.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-updates - dependency-name: react dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-updates - dependency-name: "@types/react" dependency-version: 19.2.14 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: patch-updates - dependency-name: react-dom dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-updates - dependency-name: zod dependency-version: 4.3.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-updates - dependency-name: "@types/react" dependency-version: 19.2.14 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: patch-updates ... Signed-off-by: dependabot[bot] <support@github.com>

vercel · 2026-03-23T10:29:02Z

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
cloudnext	Ready	Preview, Comment	Mar 23, 2026 10:30am

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 23, 2026

vercel bot deployed to Preview March 23, 2026 10:30 View deployment

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the patch-updates group across 1 directory with 7 updates#61

chore(deps): bump the patch-updates group across 1 directory with 7 updates#61
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot-npm_and_yarn-patch-updates-2ba82fe01d

dependabot bot commented on behalf of github Mar 23, 2026 •

edited

Loading

Uh oh!

vercel bot commented Mar 23, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Mar 23, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

@​heroui/react@​2.8.10

What's Changed

New Contributors

@​heroui/react@​2.8.9

What's Changed

New Contributors

v15.5.14

Core Changes

Credits

v15.5.13

Core Changes

Credits

v15.5.12

v15.5.11

Core Changes

Credits

8.5.8

8.5.7

8.5.8

8.5.7

19.2.4 (January 26th, 2026)

React Server Components

19.2.4 (January 26th, 2026)

React Server Components

v4.3.6

Commits:

Uh oh!

vercel bot commented Mar 23, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot bot commented on behalf of github Mar 23, 2026 •

edited

Loading

`@heroui/react@2`.8.10

`@heroui/react@2`.8.9

vercel bot commented Mar 23, 2026 •

edited

Loading