Update all non-major dependencies

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence
@opennextjs/cloudflare (source)	^1.16.3 → ^1.18.0
@tailwindcss/postcss (source)	^4.1.18 → ^4.2.2
@types/node (source)	^25.2.2 → ^25.5.0
@types/react (source)	^19.2.13 → ^19.2.14
lucide-react (source)	^0.563.0 → ^0.577.0
pnpm (source)	10.29.2 → 10.33.0
postcss (source)	^8.5.6 → ^8.5.8
tailwind-merge	^3.4.0 → ^3.5.0
tailwindcss (source)	^4.1.18 → ^4.2.2
wrangler (source)	^4.63.0 → ^4.78.0

---

Release Notes

opennextjs/opennextjs-cloudflare (@​opennextjs/cloudflare)

v1.18.0

Compare Source

Minor Changes

• #​1159 75f5f0a Thanks @​edmundhung! - Use remote dev for R2 cache population

  Using remote dev is not subject to the Cloudflare API rate limit of 1,200 requests per 5 minutes that caused failures for large applications with thousands of prerendered pages.

v1.17.3

Compare Source

Patch Changes

• #​1160 161e726 Thanks @​matthewvolk! - fix(patches): include prefetch-hints.json in loadManifest build-time inlining

  Next.js 16.2.0 introduced prefetch-hints.json as a new server manifest loaded unconditionally
  by NextNodeServer.getPrefetchHints(). The file exists in the build output but wasn't matched by
  the glob pattern *-manifest.json, causing the patched loadManifest() to throw at runtime.

v1.17.2

Compare Source

Patch Changes

• #​1151 a143282 Thanks @​nathanschram! - fix: handle known optional manifests gracefully in loadManifest/evalManifest patches

  Next.js loads certain manifests with handleMissing: true (returning {} when the file doesn't
  exist). The adapter's build-time glob scan doesn't find these files when they're conditionally
  generated, so the patched function threw at runtime, crashing dynamic routes with 500.

  Instead of a blanket catch-all, handle only the specific optional manifests from Next.js
  route-module.ts:

  • react-loadable-manifest (Turbopack per-route, not all routes have dynamic imports)
  • subresource-integrity-manifest (only when experimental.sri configured)
  • server-reference-manifest (App Router only)
  • dynamic-css-manifest (Pages Router + Webpack only)
  • fallback-build-manifest (only for /_error page)
  • prefetch-hints (new in Next.js 16.2)
  • _client-reference-manifest.js (optional for static metadata routes, evalManifest)

  Manifest matching strips .json before comparison since some Next.js constants omit
  the extension (SUBRESOURCE_INTEGRITY_MANIFEST, DYNAMIC_CSS_MANIFEST, etc.).

  Unknown manifests still throw to surface genuine errors.

  Fixes #​1141.

tailwindlabs/tailwindcss (@​tailwindcss/postcss)

v4.2.2

Compare Source

Fixed

• Don't crash when candidates contain prototype properties like row-constructor (#​19725)
• Canonicalize calc(var(--spacing)*…) expressions into --spacing(…) (#​19769)
• Fix crash in canonicalization step when handling utilities containing @property at-rules (e.g. shadow-sm border) (#​19727)
• Skip full reload for server only modules scanned by client CSS when using @tailwindcss/vite (#​19745)
• Add support for Vite 8 in @tailwindcss/vite (#​19790)
• Improve canonicalization for bare values exceeding default spacing scale suggestions (e.g. w-1234 h-1234 → size-1234) (#​19809)
• Fix canonicalization resulting in empty list (e.g. w-5 h-5 size-5 → '' instead of size-5) (#​19812)

v4.2.1

Compare Source

Fixed

• Allow trailing dash in functional utility names for backwards compatibility (#​19696)
• Properly detect classes containing . characters within curly braces in MDX files (#​19711)

v4.2.0

Compare Source

Added

• Add mauve, olive, mist, and taupe color palettes to the default theme (#​19627)
• Add @tailwindcss/webpack package to run Tailwind CSS as a webpack plugin (#​19610)
• Add pbs-* and pbe-* utilities for padding-block-start and padding-block-end (#​19601)
• Add mbs-* and mbe-* utilities for margin-block-start and margin-block-end (#​19601)
• Add scroll-pbs-* and scroll-pbe-* utilities for scroll-padding-block-start and scroll-padding-block-end (#​19601)
• Add scroll-mbs-* and scroll-mbe-* utilities for scroll-margin-block-start and scroll-margin-block-end (#​19601)
• Add border-bs-* and border-be-* utilities for border-block-start and border-block-end (#​19601)
• Add inline-*, min-inline-*, max-inline-* utilities for inline-size, min-inline-size, and max-inline-size (#​19612)
• Add block-*, min-block-*, max-block-* utilities for block-size, min-block-size, and max-block-size (#​19612)
• Add inset-s-*, inset-e-*, inset-bs-*, inset-be-* utilities for inset-inline-start, inset-inline-end, inset-block-start, and inset-block-end (#​19613)
• Add font-features-* utility for font-feature-settings (#​19623)

Fixed

• Prevent double @supports wrapper for color-mix values (#​19450)
• Allow whitespace around @source inline() argument (#​19461)
• Emit comment when source maps are saved to files when using @tailwindcss/cli (#​19447)
• Detect utilities containing capital letters followed by numbers (#​19465)
• Fix class extraction for Rails' strict locals (#​19525)
• Align @utility name validation with Oxide scanner rules (#​19524)
• Fix infinite loop when using @variant inside @custom-variant (#​19633)
• Allow multiples of .25 in aspect-* fractions (e.g. aspect-8.5/11) (#​19688)
• Ensure changes to external files listed via @source trigger a full page reload when using @tailwindcss/vite (#​19670)
• Improve performance of Oxide scanner in bigger projects by reducing file system walks (#​19632)
• Ensure import aliases in Astro v5 work without crashing when using @tailwindcss/vite (#​19677)
• Allow escape characters in @utility names to improve support with formatters such as Biome (#​19626)
• Fix incorrect canonicalization results when canonicalizing multiple times (#​19675)
• Add .jj to default ignored content directories (#​19687)

Deprecated

• Deprecate start-* and end-* utilities in favor of inset-s-* and inset-e-* utilities (#​19613)

lucide-icons/lucide (lucide-react)

v0.577.0: Version 0.577.0

Compare Source

What's Changed

• chore(deps): bump rollup from 4.53.3 to 4.59.0 by @​dependabot[bot] in #​4106
• fix(repo): correctly ignore docs/releaseMetadata via .gitignore by @​bhavberi in #​4100
• feat(icons): added ellipse icon by @​KISHORE-KUMAR-S in #​3749

New Contributors

• @​bhavberi made their first contribution in #​4100
• @​KISHORE-KUMAR-S made their first contribution in #​3749

Full Changelog: lucide-icons/lucide@0.576.0...0.577.0

v0.576.0: Version 0.576.0

Compare Source

What's Changed

• Added zodiac signs by @​karsa-mistmere in #​712
• fix(icons): fixes guideline violations in package-* icons. by @​karsa-mistmere in #​4074
• fix(icons): changed receipt icon by @​karsa-mistmere in #​4075
• fix(icons): updated cuboid icon tags and categories by @​karsa-mistmere in #​4095
• fix(icons): changed cuboid icon by @​jamiemlaw in #​4098
• fix(lucide-font, lucide-static): Fixing stable code points by @​ericfennis in #​3894
• feat(icons): added fishing-rod icon by @​7ender in #​3839

Full Changelog: lucide-icons/lucide@0.575.0...0.576.0

v0.575.0: Version 0.575.0

Compare Source

What's Changed

• feat(icons): added message-square-check icon by @​karsa-mistmere in #​4076
• fix(lucide): Fix ESM Module output path in build by @​ericfennis in #​4084
• feat(icons): added metronome icon by @​edwloef in #​4063
• fix(icons): remove execution permission of SVG files by @​duckafire in #​4053
• fix(icons): changed file-pen-line icon by @​jguddas in #​3970
• feat(icons): added square-arrow-right-exit and square-arrow-right-enter icons by @​EthanHazel in #​3958
• fix(icons): renamed flip-* to square-centerline-dashed-* by @​jguddas in #​3945

New Contributors

• @​edwloef made their first contribution in #​4063
• @​duckafire made their first contribution in #​4053

Full Changelog: lucide-icons/lucide@0.573.0...0.575.0

v0.574.0: Version 0.574.0

Compare Source

What's Changed

• fix(icons): changed rocking-chair icon by @​jamiemlaw in #​3445
• fix(icons): flipped coins icon by @​jguddas in #​3158
• feat(icons): added x-line-top icon by @​jguddas in #​2838
• feat(icons): added mouse-left icon by @​marvfash in #​2788
• feat(icons): added mouse-right icon by @​marvfash in #​2787

New Contributors

• @​marvfash made their first contribution in #​2788

Full Changelog: lucide-icons/lucide@0.572.0...0.574.0

v0.573.0: Version 0.573.0

Compare Source

What's Changed

• fix(icons): changed rocking-chair icon by @​jamiemlaw in #​3445
• fix(icons): flipped coins icon by @​jguddas in #​3158
• feat(icons): added x-line-top icon by @​jguddas in #​2838
• feat(icons): added mouse-left icon by @​marvfash in #​2788
• feat(icons): added mouse-right icon by @​marvfash in #​2787

New Contributors

• @​marvfash made their first contribution in #​2788

Full Changelog: lucide-icons/lucide@0.572.0...0.573.0

v0.572.0: Version 0.572.0

Compare Source

What's Changed

• feat(icons): added message-circle-check icon by @​Shrinks99 in #​3770

New Contributors

• @​Shrinks99 made their first contribution in #​3770

Full Changelog: lucide-icons/lucide@0.571.0...0.572.0

v0.571.0: Version 0.571.0

Compare Source

What's Changed

• fix(icons): rearange circle-icons path and circle order by @​adamlindqvist in #​3746
• feat(icons): added shelving-unit icon by @​karsa-mistmere in #​3041

New Contributors

• @​adamlindqvist made their first contribution in #​3746

Full Changelog: lucide-icons/lucide@0.570.0...0.571.0

v0.570.0: Version 0.570.0

Compare Source

What's Changed

• feat(icons): added towel-rack icon by @​jguddas in #​3350

Full Changelog: lucide-icons/lucide@0.569.0...0.570.0

v0.569.0: Version 0.569.0

Compare Source

What's Changed

• fix(icons): changed clipboard-pen icon by @​Spleefies in #​4006
• feat(icons): add mirror-round and mirror-rectangular by @​Muhammad-Aqib-Bashir in #​3832

Full Changelog: lucide-icons/lucide@0.568.0...0.569.0

v0.568.0: Version 0.568.0

Compare Source

What's Changed

• fix(icons): adjusted clapperboard so slash is no longer protruding by @​torfmuer in #​3764
• feat(icons): Add git-merge-conflict icon by @​timmy471 in #​3008

New Contributors

• @​torfmuer made their first contribution in #​3764
• @​timmy471 made their first contribution in #​3008

Full Changelog: lucide-icons/lucide@0.567.0...0.568.0

v0.567.0: Version 0.567.0

Compare Source

What's Changed

• chore(tags): added tags to info by @​jamiemlaw in #​4047
• fix(icons): changed gift icon by @​jguddas in #​3977
• feat(icons): added line-dot-right-horizontal icon by @​nathan-de-pachtere in #​3742

Full Changelog: lucide-icons/lucide@0.566.0...0.567.0

v0.566.0: Version 0.566.0

Compare Source

What's Changed

• fix(icons): changed forklift icon by @​jguddas in #​4069
• fix(icons): changed rocket icon by @​jguddas in #​4067
• feat(icons): added globe-off icon by @​TimNekk in #​4051

New Contributors

• @​TimNekk made their first contribution in #​4051

Full Changelog: lucide-icons/lucide@0.565.0...0.566.0

v0.565.0: Version 0.565.0

Compare Source

What's Changed

• feat(icons): add lens-concave and lens-convex by @​Muhammad-Aqib-Bashir in #​3831

Full Changelog: lucide-icons/lucide@0.564.0...0.565.0

v0.564.0: Version 0.564.0

Compare Source

What's Changed

• chore(docs): Improve SEO icon detail pages by @​ericfennis in #​4040
• feat(icons): added database-search icon by @​Spleefies in #​4003
• fix(icons): changed user-lock icon by @​jguddas in #​3971
• fix(icons): changed bug-off icon by @​jguddas in #​3972
• fix(icons): changed bell-dot icon by @​jguddas in #​3973
• fix(icons): changed bandage icon by @​jguddas in #​3967
• fix(icons): changed hard-drive icon by @​jguddas in #​3622
• fix(icons): changed git-branch icon by @​jguddas in #​3938
• fix(icons): changed file-cog icon by @​jguddas in #​3965
• fix(icons): changed cloud-alert and cloud-check icon by @​jguddas in #​3976
• feat(icons): adds user-key and user-round-key, updates other -key icons to match by @​karsa-mistmere in #​4044

New Contributors

• @​Spleefies made their first contribution in #​4003

Full Changelog: lucide-icons/lucide@0.563.1...0.564.0

pnpm/pnpm (pnpm)

v10.33.0

Compare Source

v10.32.1: pnpm 10.32.1

Compare Source

Patch Changes

• Fix a regression where pnpm-workspace.yaml without a packages field caused all directories to be treated as workspace projects. This broke projects that use pnpm-workspace.yaml only for settings (e.g. minimumReleaseAge) without defining workspace packages #​10909.

Platinum Sponsors

Gold Sponsors

v10.32.0: pnpm 10.32

Compare Source

Minor Changes

• Added --all flag to pnpm approve-builds that approves all pending builds without interactive prompts #​10136.

Patch Changes

• Reverted change related to setting explicitly the npm config file path, which caused regressions.
• Reverted fix related to lockfile-include-tarball-url. Fixes #​10915.

Platinum Sponsors

Gold Sponsors

v10.31.0

Compare Source

v10.30.3

Compare Source

v10.30.2

Compare Source

v10.30.1: pnpm 10.30.1

Compare Source

Patch Changes

• Use the /-/npm/v1/security/audits/quick endpoint as the primary audit endpoint, falling back to /-/npm/v1/security/audits when it fails #​10649.

Platinum Sponsors

Gold Sponsors

v10.30.0: pnpm 10.30

Compare Source

Minor Changes

• pnpm why now shows a reverse dependency tree. The searched package appears at the root with its dependents as branches, walking back to workspace roots. This replaces the previous forward-tree output which was noisy and hard to read for deeply nested dependencies.

Patch Changes

• Revert pnpm why dependency pruning to prefer correctness over memory consumption. Reverted PR: #​7122.
• Optimize pnpm why and pnpm list performance in workspaces with many importers by sharing the dependency graph and materialization cache across all importers instead of rebuilding them independently for each one #​10596.

Platinum Sponsors

Gold Sponsors

v10.29.3

Compare Source

postcss/postcss (postcss)

v8.5.8

Compare Source

• Fixed Processor#version.

v8.5.7

Compare Source

• Improved source map annotation cleaning performance (by CodeAnt AI).

dcastil/tailwind-merge (tailwind-merge)

v3.5.0

Compare Source

New Features

• Add support for Tailwind CSS v4.2 by @​dcastil in #​651

Full Changelog: dcastil/tailwind-merge@v3.4.1...v3.5.0

Thanks to @​brandonmcconnell, @​manavm1990, @​langy, @​roboflow, @​syntaxfm, @​getsentry, @​codecov, a private sponsor, @​block, @​openclaw, @​sourcegraph and more via @​thnxdev for sponsoring tailwind-merge! ❤️

v3.4.1

Compare Source

Bug Fixes

• Prevent arbitrary font-family and font-weight from merging by @​roneymoon in #​635

Full Changelog: dcastil/tailwind-merge@v3.4.0...v3.4.1

Thanks to @​brandonmcconnell, @​manavm1990, @​langy, @​roboflow, @​syntaxfm, @​getsentry, @​codecov, a private sponsor, @​block, @​openclaw, @​sourcegraph and more via @​thnxdev for sponsoring tailwind-merge! ❤️

cloudflare/workers-sdk (wrangler)

v4.78.0

Compare Source

Minor Changes

• #​13031 eeaa473 Thanks @​WalshyDev! - Add support for Cloudflare Access Service Token authentication via environment variables

  When running wrangler dev with remote bindings behind a Cloudflare Access-protected domain, Wrangler previously required cloudflared access login which opens a browser for interactive authentication. This does not work in CI/CD environments.

  You can now set the CLOUDFLARE_ACCESS_CLIENT_ID and CLOUDFLARE_ACCESS_CLIENT_SECRET environment variables to authenticate using an Access Service Token instead:

  export CLOUDFLARE_ACCESS_CLIENT_ID="<your-client-id>.access"
  export CLOUDFLARE_ACCESS_CLIENT_SECRET="<your-client-secret>"
  wrangler dev

  Additionally, when running in a non-interactive environment (CI) without these credentials, Wrangler now throws a clear, actionable error instead of hanging on cloudflared access login.

• #​13027 9fcdfca Thanks @​G4brym! - feat: Add ai_search_namespaces and ai_search binding types

  Two new binding types for AI Search:

  • ai_search_namespaces: Namespace binding — namespace is required and auto-provisioned at deploy time if it doesn't exist (like R2 buckets)
  • ai_search: Single instance binding boun

---

Configuration

📅 Schedule: Branch creation - Only on Monday ( * * * * 1 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.