Skip to content

build(deps): bump @astrojs/starlight from 0.38.4 to 0.39.2#101

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/astrojs/starlight-0.39.2
Closed

build(deps): bump @astrojs/starlight from 0.38.4 to 0.39.2#101
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/astrojs/starlight-0.39.2

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 13, 2026
edited
Loading

Bumps @astrojs/starlight from 0.38.4 to 0.39.2.

Release notes

Sourced from @​astrojs/starlight's releases.

@​astrojs/starlight@​0.39.2

Patch Changes

@​astrojs/starlight@​0.39.1

Patch Changes

  • #3885 010eed1 Thanks @​ArmandPhilippot! - Fixes the version mentioned in an error message related to autogenerated sidebar groups support.

  • #3887 b3c6990 Thanks @​delucis! - Adds 13 new icons: clock, desktop, mobile-android, window, database, server, code-branch, notes, question, question-circle, analytics, padlock, and solidjs.

@​astrojs/starlight@​0.39.0

Minor Changes

  • #3618 dcf6d09 Thanks @​HiDeoo! - ⚠️ BREAKING CHANGE: This release changes how autogenerated links work in Starlight’s sidebar configuration.

    If you have sidebar groups using the autogenerate key, you must now wrap that configuration in an items array:

    {
    label: 'My group',
-   autogenerate: { directory: 'some-dir' },
+   items: [{ autogenerate: { directory: 'some-dir' } }],
}

    This change unlocks the possibility to mix autogenerated links and other links in a single group, for example:

    {
  label: 'Mixed group',
  items: [
    'example-page',
    { autogenerate: { directory: 'examples' } },
    { label: 'More examples', link: 'https://example.com' },
  ],
}

    This release also updates the shape of autogenerated sidebar entries in route data. Autogenerated links and groups in Astro.locals.starlightRoute.sidebar now include an autogenerate object with the configured directory value:

    {
  type: 'link',
  label: 'Example',
  href: '/examples/example/',
  isCurrent: false,
  autogenerate: { directory: 'examples' }
}

... (truncated)

Changelog

Sourced from @​astrojs/starlight's changelog.

0.39.2

Patch Changes

0.39.1

Patch Changes

  • #3885 010eed1 Thanks @​ArmandPhilippot! - Fixes the version mentioned in an error message related to autogenerated sidebar groups support.

  • #3887 b3c6990 Thanks @​delucis! - Adds 13 new icons: clock, desktop, mobile-android, window, database, server, code-branch, notes, question, question-circle, analytics, padlock, and solidjs.

0.39.0

Minor Changes

  • #3618 dcf6d09 Thanks @​HiDeoo! - ⚠️ BREAKING CHANGE: This release changes how autogenerated links work in Starlight’s sidebar configuration.

    If you have sidebar groups using the autogenerate key, you must now wrap that configuration in an items array:

    {
    label: 'My group',
-   autogenerate: { directory: 'some-dir' },
+   items: [{ autogenerate: { directory: 'some-dir' } }],
}

    This change unlocks the possibility to mix autogenerated links and other links in a single group, for example:

    {
  label: 'Mixed group',
  items: [
    'example-page',
    { autogenerate: { directory: 'examples' } },
    { label: 'More examples', link: 'https://example.com' },
  ],
}

    This release also updates the shape of autogenerated sidebar entries in route data. Autogenerated links and groups in Astro.locals.starlightRoute.sidebar now include an autogenerate object with the configured directory value:

    {
  type: 'link',
  label: 'Example',
  href: '/examples/example/',

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump @astrojs/starlight from 0.38.4 to 0.39.2
e983ce9 
Bumps [@astrojs/starlight](https://github.com/withastro/starlight/tree/HEAD/packages/starlight) from 0.38.4 to 0.39.2.
- [Release notes](https://github.com/withastro/starlight/releases)
- [Changelog](https://github.com/withastro/starlight/blob/main/packages/starlight/CHANGELOG.md)
- [Commits](https://github.com/withastro/starlight/commits/@astrojs/starlight@0.39.2/packages/starlight)

---
updated-dependencies:
- dependency-name: "@astrojs/starlight"
  dependency-version: 0.39.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 13, 2026
@dependabot dependabot Bot requested a review from theagenticguy as a code owner May 13, 2026 08:34
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 13, 2026
@theagenticguy theagenticguy mentioned this pull request May 14, 2026
Merged
7 tasks
theagenticguy added a commit that referenced this pull request May 14, 2026
@theagenticguy
build(deps): unify dependabot bumps for npm + GitHub Actions (#109)
86bfc62 
## Summary

Consolidates all 11 open Dependabot PRs into one unified update so the
lockfile resolves once, CI runs once, and review is a single place.

**Supersedes:** #98, #99, #100, #101, #102, #103, #104, #105, #106,
#107, #108.

### npm_and_yarn group

- `@biomejs/biome` 2.4.14 → 2.4.15 (root)
- `@commitlint/cli` 21.0.0 → 21.0.1 (root)
- `@commitlint/config-conventional` 20.5.3 → 21.0.1 (root)
- `@types/node` 25.6.0 / 25.6.2 → 25.7.0 (root + 17 workspace packages)
- `@astrojs/starlight` ^0.38.4 → ^0.39.2 (packages/docs)
- `astro` ^6.2.1 → ^6.3.1 (packages/docs)
- `playwright` ^1.59.1 → ^1.60.0 (packages/docs)
- `starlight-llms-txt` ^0.8.1 → ^0.9.0 (packages/docs)
- `fast-xml-parser` 5.7.3 → 5.8.0 (packages/ingestion)
- `yaml` 2.8.4 → 2.9.0 (cli, frameworks, policy, sarif)
- `@chonkiejs/core` ^0.0.9 → ^0.0.10 (packages/pack)

### github_actions group

- `actions/cache` v4.2.3 → v5.0.5
(`.github/workflows/och-self-scan.yml`)
- `sigstore/cosign-installer` v3.7.0 → v4.1.2
(`.github/workflows/release.yml`)

### Follow-ups (required for Starlight 0.39)

- `biome.json`: bump `$schema` URL to `2.4.15` so Biome stops emitting
the
  mismatch info diagnostic.
- `packages/docs/astro.config.mjs`: migrate sidebar groups to the
  v0.39 shape (`items: [{ autogenerate: { directory: ... } }]`).
  Starlight 0.39 removed support for `autogenerate` on a label-only
  group; the docs build fails without this change.

## Test plan

- [x] `pnpm install --lockfile-only` regenerates the lockfile cleanly.
- [x] `pnpm install` succeeds (no peer-dep breakage).
- [x] `pnpm typecheck` passes across all 19 workspace projects.
- [x] `pnpm lint` passes (Biome 2.4.15 — 0 findings after `$schema`
bump).
- [x] `pnpm -r build` passes, including `@opencodehub/docs` on Starlight
0.39.2.
- [x] `pnpm -r test` passes (full suite green; the earlier storage
failure
  was stale `dist/` from the prior lockfile — rebuilt and re-tested).
- [x] Pre-push hook (`verdict` + `typecheck` + `test`) passed on the
final push.
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github May 14, 2026

Looks like @astrojs/starlight is up-to-date now, so this is no longer needed.

@dependabot dependabot Bot closed this May 14, 2026
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/astrojs/starlight-0.39.2 branch May 14, 2026 14:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@theagenticguy theagenticguy Awaiting requested review from theagenticguy theagenticguy is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants