Skip to content

chore(deps): bump undici and @smithery/cli#10

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/multi-bfe6353517
Open

chore(deps): bump undici and @smithery/cli#10
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/multi-bfe6353517

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot bot commented on behalf of github Mar 13, 2026

Removes undici. It's no longer used after updating ancestor dependency @smithery/cli. These dependencies need to be updated together.

Removes undici

Updates @smithery/cli from 3.3.0 to 4.7.0

Release notes

Sourced from @​smithery/cli's releases.

v4.7.0

4.7.0 (2026-03-13)

Features

Refactors

v4.6.0

4.6.0 (2026-03-08)

Features

  • automation: add zod schema validation and improve DX (#692) (4840995)

v4.5.0

4.5.0 (2026-03-03)

Features

  • SMI-1564: tree-based tool browsing with required connection arg (#684) (7562772)

Bug Fixes

  • disable minification for shttp bundles to improve debuggability (#685) (64de162)
  • restore whoami behavior, metadata filtering, and flat pagination (#687) (c9ed674)
  • show error message when tool list gets invalid connection name (#681) (50ecb00)

Refactors

  • auth: remove whoami token mint/server flow (#686) (b8a9805)

v4.4.0

4.4.0 (2026-02-27)

Features

  • surface tool annotations in tool list output (#679) (b949eb2)

... (truncated)

Changelog

Sourced from @​smithery/cli's changelog.

4.7.0 (2026-03-13)

Features

Refactors

4.6.0 (2026-03-08)

Features

  • automation: add zod schema validation and improve DX (#692) (4840995)

4.5.0 (2026-03-03)

Features

  • SMI-1564: tree-based tool browsing with required connection arg (#684) (7562772)

Bug Fixes

  • disable minification for shttp bundles to improve debuggability (#685) (64de162)
  • restore whoami behavior, metadata filtering, and flat pagination (#687) (c9ed674)
  • show error message when tool list gets invalid connection name (#681) (50ecb00)

Refactors

  • auth: remove whoami token mint/server flow (#686) (b8a9805)

4.4.0 (2026-02-27)

Features

  • surface tool annotations in tool list output (#679) (b949eb2)

Chores

  • SMI-1567: add prefix filtering to tool list and event topics (#678) (cdb28e8)
  • update dev bootstrap for SDK v4.1.0 (#676) (7a105de)

... (truncated)

Commits
  • 0c8a8e2 release: 4.7.0 (#697)
  • 5413f9b refactor: remove automation commands feature (#698)
  • 2b8c592 feat(skill): add publish command (#696)
  • bb92c5c release: 4.6.0 (#693)
  • 4840995 feat(automation): add zod schema validation and improve DX (#692)
  • a965b34 Add automation commands for deterministic MCP tool scripting (#691)
  • 47d7320 release: 4.5.0 (#682)
  • c9ed674 fix: restore whoami behavior, metadata filtering, and flat pagination (#687)
  • 7562772 feat(SMI-1564): tree-based tool browsing with required connection arg (#684)
  • b8a9805 refactor(auth): remove whoami token mint/server flow (#686)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​smithery/cli since your current version.

Install script changes

This version adds postinstall script and modifies prepare script that run during installation. Review the package contents before updating.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps): bump undici and @smithery/cli
81050aa 
Removes [undici](https://github.com/nodejs/undici). It's no longer used after updating ancestor dependency [@smithery/cli](https://github.com/smithery-ai/cli). These dependencies need to be updated together.


Removes `undici`

Updates `@smithery/cli` from 3.3.0 to 4.7.0
- [Release notes](https://github.com/smithery-ai/cli/releases)
- [Changelog](https://github.com/smithery-ai/cli/blob/main/CHANGELOG.md)
- [Commits](smithery-ai/cli@v3.3.0...v4.7.0)

---
updated-dependencies:
- dependency-name: undici
  dependency-version: 
  dependency-type: indirect
- dependency-name: "@smithery/cli"
  dependency-version: 4.7.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 13, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants