Skip to content

chore(deps): Bump the dependencies group with 9 updates#443

Open
dependabot[bot] wants to merge 1 commit intostagingfrom
dependabot/npm_and_yarn/dependencies-b7378c285b
Open

chore(deps): Bump the dependencies group with 9 updates#443
dependabot[bot] wants to merge 1 commit intostagingfrom
dependabot/npm_and_yarn/dependencies-b7378c285b

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 30, 2026

Bumps the dependencies group with 9 updates:

Package From To
undici 7.24.5 7.24.6
vite 8.0.2 8.0.3
vitest 4.1.0 4.1.2
graphql 16.13.1 16.13.2
graphql-ws 6.0.7 6.0.8
@vitest/coverage-v8 4.1.0 4.1.2
@vitest/ui 4.1.0 4.1.2
@percy/playwright 1.0.10 1.1.0
@docsearch/js 4.6.0 4.6.2

Updates undici from 7.24.5 to 7.24.6

Release notes

Sourced from undici's releases.

v7.24.6

What's Changed

New Contributors

Full Changelog: nodejs/undici@v7.24.5...v7.24.6

Commits
  • 38eab36 Bumped v7.24.6 (#4931)
  • 993609d test: auto-init WPT submodule (#4930)
  • 1eacc49 build(deps-dev): bump typescript from 5.9.3 to 6.0.2 (#4926)
  • b64e7e4 fix: avoid prototype collisions in parseHeaders (#4923)
  • deba679 Revert "fix: assume http/https scheme for scheme-less proxy env vars (#4914)"
  • feef62b fix: support Connection header with connection-specific header names per RFC ...
  • a613d9a docs: clarify fetch and FormData pairing (#4922)
  • 2ba99a3 fix: wrap kConnector call in try/catch to prevent client hang (#4834)
  • a7398c0 fix(cache): check Authorization on request headers per RFC 9111 §3.5 (#4911)
  • 2b2afbc fix: assume http/https scheme for scheme-less proxy env vars (#4914)
  • Additional commits viewable in compare view

Updates vite from 8.0.2 to 8.0.3

Release notes

Sourced from vite's releases.

create-vite@8.0.3

Please refer to CHANGELOG.md for details.

v8.0.3

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

8.0.3 (2026-03-26)

Features

Bug Fixes

  • html: cache unfiltered CSS list to prevent missing styles across entries (#22017) (5464190)
  • module-runner: handle non-ascii characters in base64 sourcemaps (#21985) (77c95bf)
  • module-runner: skip re-import if the runner is closed (#22020) (ee2c2cd)
  • optimizer: scan is not resolving sub path import if used in a glob import (#22018) (ddfe20d)
  • ssr: ssrTransform incorrectly rewrites meta identifier inside import.meta when a binding named meta exists (#22019) (cff5f0c)

Miscellaneous Chores

Tests

Commits
  • 6a34ac3 fix(deps): update all non-major dependencies (#21096)
  • 02ceaec chore(deps): update dependency @​rollup/plugin-commonjs to v29 (#21099)
  • 572aaca release: v7.2.2
  • 728c8ee fix: revert "refactor: use fs.cpSync (#21019)" (#21081)
  • a532e68 release: v7.2.1
  • 82d2d6c fix(worker): some worker asset was missing (#21074)
  • f83264f refactor(build): rename indexOfMatchInSlice to findPreloadMarker (#21054)
  • 8293de0 release: v7.2.0
  • 2833c55 fix(types): add undefined to optional properties for exactOptionalProperties ...
  • e3a6a83 chore(deps): update rolldown-related dependencies (#21047)
  • Additional commits viewable in compare view

Updates vitest from 4.1.0 to 4.1.2

Release notes

Sourced from vitest's releases.

v4.1.2

This release bumps Vitest's flatted version and removes version pinning to resolve flatted's CVE related issues (vitest-dev/vitest#9975).

   🐞 Bug Fixes

    View changes on GitHub

v4.1.1

   🚀 Features

   🐞 Bug Fixes

    View changes on GitHub
Commits
  • fc6f482 chore: release v4.1.2
  • 6f97b55 feat: disable colors if agent is detected (#9851)
  • b3c992c fix(coverage): correct coverageConfigDefaults values and types (#9940)
  • 7c06598 fix: ensure sequential mock/unmock resolution (#9830)
  • f54abad chore: add typo-checker skill and fix typos (#9963)
  • 7aa9377 fix: don't resolve setupFiles from parent directory (#9960)
  • 1f2d318 chore: release v4.1.1
  • ebfde79 refactor: rename matchesTagsFilter to matchesTags (#9956)
  • 5611500 feat(experimental): introduce experimental.vcsProvider (#9928)
  • eec53d9 feat(experimental): expose matchesTagsFilter to test if the current filter ...
  • Additional commits viewable in compare view

Updates graphql from 16.13.1 to 16.13.2

Release notes

Sourced from graphql's releases.

v16.13.2 (2026-03-24)

Docs 📝

Polish 💅

  • #4631 Use Object.create(null) over {} to avoid prototype issues - v16 (@​benjie)

Internal 🏠

Committers: 2

Commits

Updates graphql-ws from 6.0.7 to 6.0.8

Release notes

Sourced from graphql-ws's releases.

v6.0.8

Patch Changes

  • #667 fc03004 Thanks @​endigma! - Fix the server sending a Complete message after an Error message for subscriptions.

    Previously, when a subscription's async iterable threw an error, the server would send:

    {"id":"1","type":"error","payload":[{"message":"..."}]}
{"id":"1","type":"complete"}

    Per the protocol spec:

    Error: This message terminates the operation and no further messages will be sent.

    Complete (Server → Client): If the server dispatched the Error message relative to the original Subscribe message, no Complete message will be emitted.

    The server now correctly sends only the Error message:

    {"id":"1","type":"error","payload":[{"message":"..."}]}

    Clients that correctly follow the spec should be unaffected, as they are expected to ignore messages for operations they consider already completed.

Changelog

Sourced from graphql-ws's changelog.

6.0.8

Patch Changes

  • #667 fc03004 Thanks @​endigma! - Fix the server sending a Complete message after an Error message for subscriptions.

    Previously, when a subscription's async iterable threw an error, the server would send:

    {"id":"1","type":"error","payload":[{"message":"..."}]}
{"id":"1","type":"complete"}

    Per the protocol spec:

    Error: This message terminates the operation and no further messages will be sent.

    Complete (Server → Client): If the server dispatched the Error message relative to the original Subscribe message, no Complete message will be emitted.

    The server now correctly sends only the Error message:

    {"id":"1","type":"error","payload":[{"message":"..."}]}

    Clients that correctly follow the spec should be unaffected, as they are expected to ignore messages for operations they consider already completed.

Commits

Updates @vitest/coverage-v8 from 4.1.0 to 4.1.2

Release notes

Sourced from @​vitest/coverage-v8's releases.

v4.1.2

This release bumps Vitest's flatted version and removes version pinning to resolve flatted's CVE related issues (vitest-dev/vitest#9975).

   🐞 Bug Fixes

    View changes on GitHub

v4.1.1

   🚀 Features

   🐞 Bug Fixes

    View changes on GitHub
Commits

Updates @vitest/ui from 4.1.0 to 4.1.2

Release notes

Sourced from @​vitest/ui's releases.

v4.1.2

This release bumps Vitest's flatted version and removes version pinning to resolve flatted's CVE related issues (vitest-dev/vitest#9975).

   🐞 Bug Fixes

    View changes on GitHub

v4.1.1

   🚀 Features

   🐞 Bug Fixes

    View changes on GitHub
Commits

Updates @percy/playwright from 1.0.10 to 1.1.0

Release notes

Sourced from @​percy/playwright's releases.

v1.1.0

✨ New Features

Responsive Snapshot Capture

  • Added responsiveSnapshotCapture option to capture DOM across multiple viewport widths in a single snapshot operation
  • Automatically captures snapshots at configured mobile and desktop breakpoints
  • Original viewport is preserved and restored after capture
  • Each snapshot is tagged with its capture width for accurate comparison

New Environment Variables

Variable Description
PERCY_RESPONSIVE_CAPTURE_MIN_HEIGHT Enable minimum height calculation for non-mobile widths
PERCY_RESPONSIVE_CAPTURE_RELOAD_PAGE Reload page between viewport changes
RESPONSIVE_CAPTURE_SLEEP_TIME Add delay (in seconds) between captures

🔧 Enhancements

CORS Iframe Handling Improvements

  • Added error handling for cross-origin iframe processing to prevent failures from breaking snapshot capture (#592)
  • Delegated resource merging and iframe HTML manipulation to Percy CLI for improved performance (#593)
  • CORS iframe data now stored in domSnapshot.corsIframes field
  • Reduced client-side processing overhead

📋 Requirements

[!IMPORTANT] This release requires updates to your Percy CLI version. Please ensure compatibility before upgrading.

  • Percy CLI v1.31.10 or higher is required for utils.getResponsiveWidths() support
  • Percy CLI must handle the domSnapshot.corsIframes field for CORS iframe processing
  • Projects using CORS iframes must update Percy CLI to the latest version before upgrading to this SDK version

💥 Impact

[!CAUTION] Breaking Change — Projects using CORS iframes must update Percy CLI to the latest version. Failing to do so will result in CORS iframe data not being processed correctly.

Area Detail
Breaking CORS iframe handling now delegates processing to Percy CLI. Older CLI versions will not process domSnapshot.corsIframes correctly.
Performance Improved snapshot capture efficiency — resource merging and iframe HTML manipulation moved server-side to Percy CLI, reducing client-side overhead.
Compatibility Responsive snapshot capture is automatically disabled when deferUploads is enabled.

... (truncated)

Commits

Updates @docsearch/js from 4.6.0 to 4.6.2

Release notes

Sourced from @​docsearch/js's releases.

v4.6.2

4.6.2 (2026-03-26)

Bug Fixes

Features

  • agent studio feedback integration (#2868) (f83f5a9)
  • askai: add compatibility with algolia mcp search tool [DASH-2294] (#2862) (e20d30d)

v4.6.1

4.6.1 (2026-03-24)

Changelog

Sourced from @​docsearch/js's changelog.

4.6.2 (2026-03-26)

Bug Fixes

Features

  • agent studio feedback integration (#2868) (f83f5a9)
  • askai: add compatibility with algolia mcp search tool [DASH-2294] (#2862) (e20d30d)

4.6.1 (2026-03-24)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specif...

Description has been truncated

@dependabot
chore(deps): Bump the dependencies group with 9 updates
88dd8bb 
Bumps the dependencies group with 9 updates:

| Package | From | To |
| --- | --- | --- |
| [undici](https://github.com/nodejs/undici) | `7.24.5` | `7.24.6` |
| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `8.0.2` | `8.0.3` |
| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `4.1.0` | `4.1.2` |
| [graphql](https://github.com/graphql/graphql-js) | `16.13.1` | `16.13.2` |
| [graphql-ws](https://github.com/enisdenjo/graphql-ws) | `6.0.7` | `6.0.8` |
| [@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8) | `4.1.0` | `4.1.2` |
| [@vitest/ui](https://github.com/vitest-dev/vitest/tree/HEAD/packages/ui) | `4.1.0` | `4.1.2` |
| [@percy/playwright](https://github.com/percy/percy-playwright) | `1.0.10` | `1.1.0` |
| [@docsearch/js](https://github.com/algolia/docsearch/tree/HEAD/packages/docsearch-js) | `4.6.0` | `4.6.2` |


Updates `undici` from 7.24.5 to 7.24.6
- [Release notes](https://github.com/nodejs/undici/releases)
- [Commits](nodejs/undici@v7.24.5...v7.24.6)

Updates `vite` from 8.0.2 to 8.0.3
- [Release notes](https://github.com/vitejs/vite/releases)
- [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite/commits/create-vite@8.0.3/packages/vite)

Updates `vitest` from 4.1.0 to 4.1.2
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.2/packages/vitest)

Updates `graphql` from 16.13.1 to 16.13.2
- [Release notes](https://github.com/graphql/graphql-js/releases)
- [Commits](graphql/graphql-js@v16.13.1...v16.13.2)

Updates `graphql-ws` from 6.0.7 to 6.0.8
- [Release notes](https://github.com/enisdenjo/graphql-ws/releases)
- [Changelog](https://github.com/enisdenjo/graphql-ws/blob/master/CHANGELOG.md)
- [Commits](enisdenjo/graphql-ws@v6.0.7...v6.0.8)

Updates `@vitest/coverage-v8` from 4.1.0 to 4.1.2
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.2/packages/coverage-v8)

Updates `@vitest/ui` from 4.1.0 to 4.1.2
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.2/packages/ui)

Updates `@percy/playwright` from 1.0.10 to 1.1.0
- [Release notes](https://github.com/percy/percy-playwright/releases)
- [Commits](percy/percy-playwright@v1.0.10...v1.1.0)

Updates `@docsearch/js` from 4.6.0 to 4.6.2
- [Release notes](https://github.com/algolia/docsearch/releases)
- [Changelog](https://github.com/algolia/docsearch/blob/main/CHANGELOG.md)
- [Commits](https://github.com/algolia/docsearch/commits/v4.6.2/packages/docsearch-js)

---
updated-dependencies:
- dependency-name: undici
  dependency-version: 7.24.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: vite
  dependency-version: 8.0.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: vitest
  dependency-version: 4.1.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: graphql
  dependency-version: 16.13.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: graphql-ws
  dependency-version: 6.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: "@vitest/coverage-v8"
  dependency-version: 4.1.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: "@vitest/ui"
  dependency-version: 4.1.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: "@percy/playwright"
  dependency-version: 1.1.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: "@docsearch/js"
  dependency-version: 4.6.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Mar 30, 2026

Assignees

The following users could not be added as assignees: equaltoai/devops. Either the username does not exist or it does not have the correct permissions to be added as an assignee.

Labels

The following labels could not be found: dependencies, security. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Mar 30, 2026

⚠️ Test Coverage Report

Overall Score (Code Packages): 87.8%
Timestamp: 3/30/2026, 4:35:39 AM

Package Coverage (Code Only)

adapters

  • Lines: ❌ 70.2% (2928/4170)
  • Functions: ❌ 70.2% (642/914)
  • Statements: ❌ 70.2% (2928/4170)
  • Branches: ❌ 62.6% (1935/3092)

cli

  • Lines: ⚠️ 85.6% (3513/4103)
  • Functions: ✅ 91.2% (458/502)
  • Statements: ⚠️ 85.6% (3513/4103)
  • Branches: ❌ 74.3% (1823/2453)

headless

  • Lines: ✅ 91.6% (1723/1881)
  • Functions: ✅ 92.6% (327/353)
  • Statements: ✅ 91.6% (1723/1881)
  • Branches: ⚠️ 81.1% (1070/1319)

icons

  • Lines: ✅ 100.0% (2138/2138)
  • Functions: ✅ 100.0% (611/611)
  • Statements: ✅ 100.0% (2138/2138)
  • Branches: ❌ 50.3% (309/614)

shared/agent

  • Lines: ❌ 79.6% (437/549)
  • Functions: ❌ 77.8% (105/135)
  • Statements: ❌ 79.6% (437/549)
  • Branches: ❌ 51.2% (87/170)

tokens

  • Lines: ✅ 99.0% (101/102)
  • Functions: ✅ 100.0% (22/22)
  • Statements: ✅ 99.0% (101/102)
  • Branches: ✅ 96.0% (48/50)

utils

  • Lines: ⚠️ 88.5% (598/676)
  • Functions: ✅ 96.6% (113/117)
  • Statements: ⚠️ 88.5% (598/676)
  • Branches: ❌ 75.0% (349/465)

Template/Data Packages

View detailed coverage breakdown

All Packages Combined:

  • Lines: ⚠️ 84.0% (11438/13619)
  • Functions: ⚠️ 85.8% (2278/2654)
  • Statements: ⚠️ 84.0% (11438/13619)
  • Branches: ❌ 68.9% (5621/8163)

Coverage Thresholds:

  • Lines: 75%
  • Functions: 75%
  • Statements: 75%
  • Branches: 60%

📊 View the full coverage report in the CI artifacts.

@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Mar 30, 2026

✅ Accessibility Test Results

Overall Status: PASS (Score: 100%)
WCAG 2.1 AA Compliance: ⚠️ No components detected
Issues: No issues detected

Component Scores (Top 10 by violations)

No component scores available

Recommendations

No recommendations available

View detailed results

Test Coverage:

  • Axe Results: 100
  • Contrast Results: 0

📊 View full accessibility report in the CI artifacts.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants