Skip to content

deps: Bump convex from 1.31.3 to 1.42.1 in the convex group across 1 directory#44

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bun/convex-2cdee10193
Open

deps: Bump convex from 1.31.3 to 1.42.1 in the convex group across 1 directory#44
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bun/convex-2cdee10193

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor

Bumps the convex group with 1 update: convex.

Updates convex from 1.31.3 to 1.42.1

Changelog

Sourced from convex's changelog.

1.42.1

  • Fixed an issue where the CLI would be unable to find the tsgo binary in newer versions of @typescript/native-preview.
  • Added a new initialAuthTokenReuse option to ConvexReactClient that prevents extra function calls when users re-authenticate.

1.42.0

  • Added a new npx convex project create command that can be used to create new projects programmatically.
  • Added a new --names-only flag to npx convex env list (and npx convex env default list). This flag shows the names of the env vars that are set, without the values. It can be useful to let AI coding agents know the variables that are set on a deployment, without giving them the actual values.
  • Added a new useStaleSnapshot option to the arguments for runQuery. This is an advanced feature that can be used to allow mutations to avoid optimistic concurrency control (OCC) conflicts in some cases where they can commit even though they depend on conflicting reads. This change allows us to improve the performance of some of the official Convex components, including Workpool.
  • Improved the documentation of db.* methods to more clearly explain the difference between the old APIs without table names (e.g. db.get(userId)) and the new APIs with table names (e.g. db.get("users", userId)).
  • Fixed an issue where the CLI would not surface permission errors correctly when the user or token doesn’t have permission to do something.
  • Exposes the current scheduled function's ID as scheduledFunctionId in ctx.meta.getRequestMetadata().
  • npx convex insights has a new --json flag that makes the command output easier to parse programmatically.
  • File storage: marked a few TypeScript types in convex/server as @deprecated (FileMetadata, FileStorageId, StorageId). These types are used only by file storage APIs that were deprecated in convex@1.6.0, so we also marked them as @deprecated for clarity.
  • Bumps the ws peer dependency to avoid a vulnerable range.

1.41.0

  • It is now possible to set limits on nested queries and mutations with the new transactionLimits option in runQuery/runMutation.
  • npx convex ai-files now installs skills with separate copies of each skill for each coding agent instead of using symlinks. We made this change to avoid known issues with symlinks on Windows.
  • When using Convex in anonymous mode (without a Convex account), npx convex dev now starts a different dashboard server for each deployment. This ensures the dashboard always connects to the right deployment when multiple deployments are running at the same time.

1.40.0

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

View with Codesmith Autofix with Codesmith
Need help on this PR? Tag /codesmith with what you need. Autofix is disabled.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 13, 2026
---
updated-dependencies:
- dependency-name: convex
  dependency-version: 1.42.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: convex
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title deps: Bump convex from 1.31.3 to 1.42.1 in the convex group deps: Bump convex from 1.31.3 to 1.42.1 in the convex group across 1 directory Jul 13, 2026
@dependabot
dependabot Bot force-pushed the dependabot/bun/convex-2cdee10193 branch from 5ff2c90 to fc606c0 Compare July 13, 2026 11:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants