Skip to content

chore(deps): bump the production-dependencies group across 1 directory with 4 updates#56

Open
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/npm_and_yarn/production-dependencies-c29910a2d7
Open

chore(deps): bump the production-dependencies group across 1 directory with 4 updates#56
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/npm_and_yarn/production-dependencies-c29910a2d7

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Jun 2, 2026

Bumps the production-dependencies group with 4 updates in the / directory: @inquirer/prompts, ink, react and fuse.js.

Updates @inquirer/prompts from 8.4.2 to 8.5.2

Release notes

Sourced from @​inquirer/prompts's releases.

@​inquirer/prompts@​8.5.2

  • Fix security warnings in external-editor

@​inquirer/prompts@​8.5.1

  • Rolled back mute-stream dependency from v4 to v3 to undo breaking compatible engines.
  • Added tooling to prevent regression of the above in the future. This surfaced our min engines already enforced a higher limit, so adjusted the explicit limits to match the current state.

@​inquirer/prompts@​8.5.0

  • Feat: Read env variable INQUIRER_KEYBINDINGS to enable vim or emacs keybindings; making this a user preference instead of a library author preference. One caveat is doing so disable the search feature in the select prompt. Syntax: INQUIRER_KEYBINDINGS=vim,emacs.
  • Fix: Line wraps would sometime cause the cursor to be mispositioned relative to the input.
  • Chore: Bump dependencies.

@​inquirer/prompts@​8.4.3

  • Fix: Windows rendering bug
  • Fix: Preserve exact literal types in choices array (Typescript only)
  • Fix: Allow input default value to be of type undefined (Typescript only)
  • Bump dependencies
Commits
  • bfd8710 chore: Publish new release
  • 55cc5f3 feat: add reusable package lint CLI
  • 3af9ed0 test(inquirer): capture prompt runner output
  • 4381857 fix(@​inquirer/input): remove stale lint suppression
  • 45df331 fix(@​inquirer/external-editor): harden editor temp files
  • adef323 chore: limit CI token permissions
  • b43359d chore: Publish new release
  • 24ecae2 chore: fix yarn.lock
  • b078d97 fix: validate package engine compatibility
  • 3a49f9f chore(deps-dev): Bump oxfmt in the formatting group (#2143)
  • Additional commits viewable in compare view

Updates ink from 7.0.1 to 7.0.5

Release notes

Sourced from ink's releases.

v7.0.5

  • Fix: Handle incomplete stack frames in error overview (#965) b2350c1

vadimdemedes/ink@v7.0.4...v7.0.5

v7.0.4

  • Fix: Share resize listener via emitLayoutListeners instead of per-hook listeners (#952) 89d43d8
  • Fix: Remove useEffectEvent functions from useEffect dependency arrays (#960) 9d534f7

vadimdemedes/ink@v7.0.3...v7.0.4

v7.0.3

  • Fix: Drop stale <Static> output from fullStaticOutput on identity change (#950) 669c438
  • Fix: <Static> remount via key change drops new items (#948) be9f44c
  • Fix useBoxMetrics not accepting ref objects with an initial null value (#945) 7c2267c

vadimdemedes/ink@v7.0.2...v7.0.3

v7.0.2

  • Fix: Defer raw mode disable to prevent process hang on component swap dd052ea

vadimdemedes/ink@v7.0.1...v7.0.2

Commits
  • cb222fe 7.0.5
  • dca5c06 Fix: Update to xo 2 (#962)
  • b2350c1 Fix: Handle incomplete stack frames in error overview (#965)
  • 40b3a75 7.0.4
  • 89d43d8 Fix: Share resize listener via emitLayoutListeners instead of per-hook list...
  • 9d534f7 Fix: Remove useEffectEvent functions from useEffect dependency arrays (#960)
  • 3d30345 7.0.3
  • 34a4990 Tweaks
  • 669c438 Fix: Drop stale \<Static> output from fullStaticOutput on identity change (#...
  • be9f44c Fix: <Static> remount via key change drops new items (#948)
  • Additional commits viewable in compare view

Updates react from 19.2.6 to 19.2.7

Release notes

Sourced from react's releases.

19.2.7 (June 1st, 2026)

React Server Components

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for react since your current version.


Updates fuse.js from 7.3.0 to 7.4.1

Release notes

Sourced from fuse.js's releases.

v7.4.1

Bug Fixes

  • types: ship TypeScript declarations for fuse.js/worker (572ad1e), closes #828
  • types: add TypeScript declarations for fuse.js/worker-script (6ef6c33), closes #828

Both worker subpaths now resolve types under node16/nodenext and bundler module resolution.

v7.4.0

First stable on the 7.4 line. Aggregates everything from the 7.4.0-beta.17.4.0-beta.8 cycle. See CHANGELOG.md for the per-beta breakdown.

Features

  • FuseWorker — parallel search via Web Workers (9ba192c). New FuseWorker class shards the collection across workers, runs searches in parallel, and preserves the same result ordering as Fuse. See the Web Workers guide.
  • token-search: tokenMatch: 'all' | 'any' option for AND/OR semantics (#827, 9f979d0). Default 'any' preserves existing behavior; 'all' requires every query word to match somewhere in a record (term-centric AND), useful for filter-style queries.
  • token-search: customizable tokenizer with unicode-aware default (#821, 8e55cae). New tokenize?: RegExp | (text: string) => string[] option; the default regex now segments CJK, Cyrillic, Greek, Arabic, etc. out of the box.

Bug Fixes

  • matches: report array-path keys as dotted strings (acd54e8). Previously match.key leaked a raw string[] for keys declared as path arrays (e.g. keys: [['author', 'firstName']]), contradicting the documented FuseResultMatch.key: string type. Now emits the canonical dotted string ('author.firstName'). Behavior change: consumers relying on the array shape need to update.
  • bitap: restrict highlight indices to matched window (#792, 622f105). Closes #505, #611, #691, #793.
  • index: correct doc-index alignment for Fuse<string> with blank docs (0b8e3ca).
  • core: invalidate searcher cache on collection mutation (fcf4228).
  • token-search: renumber inverted index after doc removal (ea9356d).
  • workers: preserve global refIndex across shards (e4217f9), match Fuse ordering and reject non-cloneable options (d571390), reject useTokenSearch in FuseWorker (8c6183d).
  • match: explicitly reject useTokenSearch in Fuse.match (3959d91).
  • correct fieldCount accounting and add reverse lookup in inverted index (54e702c).
  • guard against empty-string crash in fieldNorm (e550ab1); skip consecutive spaces in fieldNorm word counting (5929af6).
  • types: resolve typecheck errors and align KeyStore types (dbc115d).
  • docs: reflect data edits in playground demo (#825, 6eff909).

Performance

  • reuse bit arrays in Bitap search instead of allocating per error level (ec9b446)
  • replace forEach with for loops in search hot paths (1945f49)
  • fast-path Math.pow when exponent is 1 in computeScore (c82de57)
  • pre-allocate records array and use for loops in FuseIndex.create (5800036)
  • replace regex with loop for word counting in fieldNorm (5517a9b)
  • use filter instead of reverse-splice in removeAll / remove (c74823b, 8372b0a)
  • token-search: drop unused postings from inverted index (5ea216f)

Internal

  • refactor: replace extended-search matcher classes with plain functions (f8d61c9)
  • bench: consolidate benchmark/ into bench/ and add npm scripts (3b3a4c6)
  • ci: update Node matrix to 20, 22, 24 (b906906)
  • chore(deps): pin secure versions via npm overrides (3a1b118)

Docs

... (truncated)

Changelog

Sourced from fuse.js's changelog.

7.4.1 (2026-06-02)

Bug Fixes

  • types: add TypeScript declarations for fuse.js/worker-script (6ef6c33), closes #828
  • types: ship TypeScript declarations for fuse.js/worker (572ad1e), closes #828

7.4.0 (2026-05-30)

7.4.0-beta.8 (2026-05-25)

Bug Fixes

  • matches: report array-path keys as dotted strings (acd54e8)

7.4.0-beta.7 (2026-05-22)

Features

  • token-search: add tokenMatch 'all' | 'any' for AND/OR (#827) (9f979d0)

Bug Fixes

  • docs: reflect data edits in playground demo (#825) (6eff909)

7.4.0-beta.6 (2026-05-14)

Bug Fixes

7.4.0-beta.5 (2026-05-10)

Features

  • token-search: add customizable tokenizer with unicode-aware default (8e55cae), closes #821

Bug Fixes

  • index: correct doc-index alignment for Fuse with blank docs (0b8e3ca)

7.4.0-beta.4 (2026-04-28)

... (truncated)

Commits
  • ce75998 chore(release): 7.4.1
  • e842baf test(types): guard that every exports subpath resolves to declarations
  • 6ef6c33 fix(types): add TypeScript declarations for fuse.js/worker-script
  • ef3e96d refactor(workers): type workerUrl as string | URL
  • 572ad1e fix(types): ship TypeScript declarations for fuse.js/worker
  • 0db224b chore: ignore .antigravitycli/
  • 6f40ee5 docs(site): show current version in navbar
  • c83a9c2 docs: drop stale TOKEN_SEARCH.md, link README to fusejs.io/token-search
  • 7e16249 docs: drop beta callouts after 7.4.0 stable release
  • b576446 chore: bump doc versions to 7.4.0
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the production-dependencies group across 1 director…
34273ee 
…y with 4 updates

Bumps the production-dependencies group with 4 updates in the / directory: [@inquirer/prompts](https://github.com/SBoudrias/Inquirer.js), [ink](https://github.com/vadimdemedes/ink), [react](https://github.com/facebook/react/tree/HEAD/packages/react) and [fuse.js](https://github.com/krisk/Fuse).


Updates `@inquirer/prompts` from 8.4.2 to 8.5.2
- [Release notes](https://github.com/SBoudrias/Inquirer.js/releases)
- [Commits](https://github.com/SBoudrias/Inquirer.js/compare/@inquirer/prompts@8.4.2...@inquirer/prompts@8.5.2)

Updates `ink` from 7.0.1 to 7.0.5
- [Release notes](https://github.com/vadimdemedes/ink/releases)
- [Commits](vadimdemedes/ink@v7.0.1...v7.0.5)

Updates `react` from 19.2.6 to 19.2.7
- [Release notes](https://github.com/facebook/react/releases)
- [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/react/commits/v19.2.7/packages/react)

Updates `fuse.js` from 7.3.0 to 7.4.1
- [Release notes](https://github.com/krisk/Fuse/releases)
- [Changelog](https://github.com/krisk/Fuse/blob/main/CHANGELOG.md)
- [Commits](krisk/Fuse@v7.3.0...v7.4.1)

---
updated-dependencies:
- dependency-name: "@inquirer/prompts"
  dependency-version: 8.5.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: ink
  dependency-version: 7.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: react
  dependency-version: 19.2.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: fuse.js
  dependency-version: 7.4.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Jun 2, 2026

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot Bot requested a review from sairam0424 as a code owner June 2, 2026 10:51
@github-actions github-actions Bot added the size/M label Jun 2, 2026
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Jun 2, 2026

📦 Bundle Sizes

Package Size
VS Code extension 1830201 bytes
Core 317182 bytes
CLI 185602 bytes

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sairam0424 sairam0424 Awaiting requested review from sairam0424 sairam0424 is a code owner

Assignees

No one assigned

Labels

size/M

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants