chore(deps): bump the production-dependencies group across 1 directory with 24 updates

[dependabot]

Bumps the production-dependencies group with 24 updates in the / directory:

Package	From	To
@hookform/resolvers	5.2.2	5.4.0
@langchain/community	1.1.27	1.1.28
@langchain/core	1.1.41	1.1.48
@langchain/groq	1.2.0	1.2.1
@langchain/openai	1.4.4	1.4.7
@mixedbread/sdk	0.62.0	0.71.0
@sentry/nextjs	10.50.0	10.53.1
@tavily/core	0.7.2	0.7.3
date-fns	4.1.0	4.3.0
express-rate-limit	8.4.1	8.5.2
inngest	4.2.4	4.4.0
langchain	1.3.4	1.4.2
lucide-react	1.11.0	1.16.0
mongoose	9.5.0	9.6.2
next	16.2.4	16.2.6
npm	11.13.0	11.15.0
posthog-js	1.372.1	1.376.0
react	19.2.5	19.2.6
react-day-picker	9.14.0	10.0.1
react-dom	19.2.5	19.2.6
react-hook-form	7.74.0	7.76.1
react-resizable-panels	4.10.0	4.11.2
tailwind-merge	3.5.0	3.6.0
zod	4.3.6	4.4.3

Updates @hookform/resolvers from 5.2.2 to 5.4.0

Release notes

Sourced from @​hookform/resolvers's releases.

v5.4.0

5.4.0 (2026-05-21)

Features

• feat: add ata-validator resolver (#845)

Fixes

• fix issue with toNestErrors.ts (#848)

• add guidance on passing context to yupResolver (useForm context) (#835) (3d29924)

Commits

• 3d29924 feat: add guidance on passing context to yupResolver (useForm context) (#835)
• 56b68f3 feat: 5.3.0
• cf8562d update readme on ata-validator
• 5e5b610 fix issue with toNestErrors.ts (#848)
• 72aacf8 Revise supported versions in SECURITY.md
• ad89a20 feat: add ata-validator resolver (#845)
• 02286db ci: updated publish workflow to use node 24 (#838)
• 2e9bc7c Fix(zodResolver): error paths in complex unions #787 (#819)
• See full diff in compare view

Updates @langchain/community from 1.1.27 to 1.1.28

Release notes

Sourced from @​langchain/community's releases.

@​langchain/community@​1.1.28

Patch Changes

• #44 f9a922e Thanks @​dependabot! - chore(deps): bump fast-xml-parser from 5.5.9 to 5.7.0

• #30 9cd006c Thanks @​christian-bromann! - fix(pdf-loader): support both pdf-parse v1 and v2

• #36 1e2e4bf Thanks @​hntrl! - Fix Milvus collection loading before delete operations (#9749) and partition name handling in search/delete (#9748)

  • Added loadCollectionSync() call in the delete() method to ensure collection is loaded before delete operations
  • Added partition_names parameter to search() call in similaritySearchVectorWithScore()
  • Added partition_name parameter to both deleteEntities() and delete() calls
  • Updated error message in delete method from "before search" to "before deletion"

• #41 5bd4246 Thanks @​RaschidJFR! - Expose basePath option in VoyageEmbeddings class

• #43 b835751 Thanks @​jkennedyvz! - chore(deps): bump transitive dependencies to patch 6 security alerts

  Updates pnpm overrides to resolve critical and high severity Dependabot alerts in transitive dependencies reached via optional peerDependencies and dev tooling:

  • protobufjs ^7.2.5 -> ^7.5.5 (CVE-2026-41242)
  • basic-ftp >=5.2.0 -> ^5.3.0 (CVE-2026-39983, GHSA-rp42-5vxx-qpwr, GHSA-6v7q-wjvx-w8wg)
  • vite new override ^7.3.2 (CVE-2026-39363, CVE-2026-39364, plus CVE-2026-39365 as a side effect)

  No workspace package has these as direct dependencies; overrides affect the monorepo lockfile only and do not change published package contents.

• #42 3657e90 Thanks @​RaschidJFR! - surface Voyage AI API errors in VoyageEmbeddings

Commits

• See full diff in compare view

Updates @langchain/core from 1.1.41 to 1.1.48

Release notes

Sourced from @​langchain/core's releases.

@​langchain/core@​1.1.48

Patch Changes

• #10832 1b24369 Thanks @​info-arnav! - fix(core, openrouter): make CJS default re-exports callable

• #10666 2bb55b0 Thanks @​hnustwjj! - feat(openrouter): surface reasoning content as v1 standard content blocks

  convertOpenRouterResponseToBaseMessage and convertOpenRouterDeltaToBaseMessageChunk now copy OpenRouter's reasoning (flat string) and reasoning_details (structured array) fields onto additional_kwargs.reasoning_content / additional_kwargs.reasoning_details. A new ChatOpenRouterTranslator is registered in @langchain/core under the "openrouter" provider key so AIMessage.contentBlocks emits standard {type: "reasoning"} blocks alongside text and tool calls.

  Previously, reasoning text returned by reasoning-capable models routed through OpenRouter (DeepSeek R1, Minimax M2, Claude extended thinking, o-series, etc.) was silently dropped: only the reasoning_tokens count was preserved via usage_metadata. Consumers using standard content blocks (including the frontend agent UI patterns shown in the docs) could not display the model's chain of thought.

• #10918 3999fab Thanks @​christian-bromann! - fix(openai): stream custom tool calls through Responses API chunks

@​langchain/core@​1.1.47

Patch Changes

• #10906 f61b345 Thanks @​hntrl! - feat(core): add uuid v6 utility support

  Add v6 UUID generation support to @langchain/core/utils/uuid by vendoring the upstream uuidjs v6 implementation and its v1ToV6 helper, exporting v6 from the UUID utils index, and adding tests for deterministic generation, buffer/offset behavior, validation/versioning, and ordering.

• #10872 a640079 Thanks @​hntrl! - chore(deps): remove redundant @​types/uuid declarations

  Remove @types/uuid from package manifests that rely on @langchain/core/utils/uuid or do not require uuid type stubs directly, and refresh the lockfile entries accordingly.

• #10792 3682268 Thanks @​Genmin! - fix(core): apply v1 message casting after implicit streaming aggregation

• #10901 f26fc4a Thanks @​christian-bromann! - fix(testing): share fakeModel invocation state across bindTools instances

@​langchain/core@​1.1.46

Patch Changes

• #10847 1659e7d Thanks @​hntrl! - chore(core): reduce transitive dependency exposure and tighten release hygiene

  Remove direct runtime dependencies on ansi-styles, camelcase, and decamelize by inlining equivalent logic in core internals, and enable npm provenance in the release workflow.

• #10790 ef78bc6 Thanks @​Genmin! - fix(core): keep different content block types separate when merging chunks

Commits

• caad091 chore: version packages (#10919)
• f4a6149 chore(deps): bump fast-uri from 3.1.0 to 3.1.2 (#10926)
• 7b12f6d chore(deps): bump protobufjs from 7.5.6 to 7.6.0 (#10930)
• 5c6c5fe chore(deps): bump ws from 5.2.4 to 8.20.0 (#10915)
• a8652ce docs: fix typos, add Ollama setup, update outdated references (#10922)
• 2bb55b0 feat(openrouter): surface reasoning as v1 standard content blocks (#10666)
• 4ecb660 fix(langchain): set name on todoListMiddleware ToolMessages (#10706)
• 20f27df fix(ibm): handle API errors in streaming responses (#10721)
• 4566873 feat(ibm): add integration test to IBM implementation (#10732)
• 6e4337f fix(aws): add claude-haiku-4 to supportedToolChoiceValuesForModel (#10743)
• Additional commits viewable in compare view

Updates @langchain/groq from 1.2.0 to 1.2.1

Release notes

Sourced from @​langchain/groq's releases.

@​langchain/groq@​1.2.1

Patch Changes

• #10872 a640079 Thanks @​hntrl! - chore(deps): remove redundant @​types/uuid declarations

  Remove @types/uuid from package manifests that rely on @langchain/core/utils/uuid or do not require uuid type stubs directly, and refresh the lockfile entries accordingly.

Commits

• 1b19e4f chore: version packages (#10899)
• 426e3ab chore: fix uuid changeset (#10916)
• 245c982 chore(deps): bump fast-xml-builder from 1.1.5 to 1.2.0 (#10914)
• 126dac5 chore(deps): bump brace-expansion from 5.0.5 to 5.0.6 (#10912)
• 1abe24b chore(deps): bump fast-uri from 3.1.0 to 3.1.2 (#10913)
• 229a7ad fix(openai): preserve v1 assistant tool calls (#10902)
• f26fc4a fix(core): share fakeModel invocation state across bindTools instances (#10901)
• a0cd747 chore(deps): bump fast-xml-builder from 1.1.5 to 1.1.9 (#10910)
• b208e62 chore(deps): bump ip-address from 10.1.0 to 10.2.0 (#10909)
• f7e50fb feat(google): Service tier and custom headers (#10704)
• Additional commits viewable in compare view

Updates @langchain/openai from 1.4.4 to 1.4.7

Release notes

Sourced from @​langchain/openai's releases.

@​langchain/openai@​1.4.7

Patch Changes

• #10918 3999fab Thanks @​christian-bromann! - fix(openai): stream custom tool calls through Responses API chunks

• #10791 fce9ab4 Thanks @​Genmin! - fix(openai): preserve top-level Responses API ids on AI messages

@​langchain/openai@​1.4.6

Patch Changes

• #10902 229a7ad Thanks @​christian-bromann! - fix(openai): preserve v1 assistant tool calls

• #10895 36fb0ef Thanks @​BertBR! - fix(openai): guard bare JSON.parse in Responses API converter against trailing non-whitespace characters

  convertResponsesDeltaToChatGenerationChunk previously called JSON.parse(msg.text) directly when response.text.format.type === "json_schema". Some models (observed with gpt-5-mini on service_tier: "auto") intermittently emit trailing non-whitespace characters (extra tokens, control characters) after a valid JSON object, causing a SyntaxError that propagates as an unhandled exception and kills the entire streaming response mid-flight. The parse is now wrapped in a try/catch: on failure, additional_kwargs.parsed is left undefined, the stream completes normally, and the existing withStructuredOutput pipeline handles the typed failure — includeRaw: true returns { raw, parsed: null } via its withFallbacks wrapper, includeRaw: false throws a typed OutputParserException that the caller can catch and retry. Closes #10894.

Commits

• caad091 chore: version packages (#10919)
• f4a6149 chore(deps): bump fast-uri from 3.1.0 to 3.1.2 (#10926)
• 7b12f6d chore(deps): bump protobufjs from 7.5.6 to 7.6.0 (#10930)
• 5c6c5fe chore(deps): bump ws from 5.2.4 to 8.20.0 (#10915)
• a8652ce docs: fix typos, add Ollama setup, update outdated references (#10922)
• 2bb55b0 feat(openrouter): surface reasoning as v1 standard content blocks (#10666)
• 4ecb660 fix(langchain): set name on todoListMiddleware ToolMessages (#10706)
• 20f27df fix(ibm): handle API errors in streaming responses (#10721)
• 4566873 feat(ibm): add integration test to IBM implementation (#10732)
• 6e4337f fix(aws): add claude-haiku-4 to supportedToolChoiceValuesForModel (#10743)
• Additional commits viewable in compare view

Updates @mixedbread/sdk from 0.62.0 to 0.71.0

Release notes

Sourced from @​mixedbread/sdk's releases.

v0.71.0

0.71.0 (2026-05-21)

Full Changelog: v0.70.0...v0.71.0

Features

• api: add list_chunks (bc46979)

v0.70.0

0.70.0 (2026-05-21)

Full Changelog: v0.69.0...v0.70.0

Features

• api: api update (ea57f65)

---

This pull request is managed by Stainless's GitHub App.

The semver version number is based on included commit messages. Alternatively, you can manually set the version number in the title of this pull request.

For a better experience, it is recommended to use either rebase-merge or squash-merge when merging this pull request.

🔗 Stainless website 📚 Read the docs 🙋 Reach out for help or questions

v0.69.0

0.69.0 (2026-05-20)

Full Changelog: v0.68.1...v0.69.0

Features

• api: add grep (9f8e517)

---

This pull request is managed by Stainless's GitHub App.

The semver version number is based on included commit messages. Alternatively, you can manually set the version number in the title of this pull request.

For a better experience, it is recommended to use either rebase-merge or squash-merge when merging this pull request.

🔗 Stainless website 📚 Read the docs 🙋 Reach out for help or questions

... (truncated)

Changelog

Sourced from @​mixedbread/sdk's changelog.

0.71.0 (2026-05-21)

Full Changelog: v0.70.0...v0.71.0

Features

• api: add list_chunks (bc46979)

0.70.0 (2026-05-21)

Full Changelog: v0.69.0...v0.70.0

Features

• api: api update (ea57f65)

0.69.0 (2026-05-20)

Full Changelog: v0.68.1...v0.69.0

Features

• api: add grep (9f8e517)

0.68.1 (2026-05-19)

Full Changelog: v0.68.0...v0.68.1

Bug Fixes

• typescript: upgrade tsc-multi so that it works with Node 26 (80b325b)

Chores

• tests: remove redundant File import (211753c)

0.68.0 (2026-05-16)

Full Changelog: v0.67.0...v0.68.0

Features

• api: api update (0181d19)

0.67.0 (2026-05-13)

Full Changelog: v0.66.0...v0.67.0

Features

... (truncated)

Commits

• 083bccf release: 0.71.0
• a106de4 feat(api): add list_chunks
• 23ae150 Merge pull request #279 from mixedbread-ai/release-please--branches--main--ch...
• 2bfc12b release: 0.70.0
• ea57f65 feat(api): api update
• cc129a7 Merge pull request #278 from mixedbread-ai/release-please--branches--main--ch...
• 2d3c8d5 release: 0.69.0
• 9f8e517 feat(api): add grep
• 255a7c2 codegen metadata
• c4c1b76 release: 0.68.1
• Additional commits viewable in compare view

Updates @sentry/nextjs from 10.50.0 to 10.53.1

Release notes

Sourced from @​sentry/nextjs's releases.

10.53.1

• fix(core): Don't gate user data for streamed spans at scope read time (#20827)
• fix(core): Include subpath type shims in published package (#20835)
• ref(hono): Consolidate route patching and add clarification comments (#20829)

• chore(deps): Bump next from 15.5.15 to 15.5.18 in /dev-packages/e2e-tests/test-applications/nextjs-15-intl (#20821)

Bundle size 📦

Path	Size
@​sentry/browser	26.22 KB
@​sentry/browser - with treeshaking flags	24.69 KB
@​sentry/browser (incl. Tracing)	43.69 KB
@​sentry/browser (incl. Tracing + Span Streaming)	45.62 KB
@​sentry/browser (incl. Tracing, Profiling)	48.56 KB
@​sentry/browser (incl. Tracing, Replay)	82.4 KB
@​sentry/browser (incl. Tracing, Replay) - with treeshaking flags	72.08 KB
@​sentry/browser (incl. Tracing, Replay with Canvas)	86.99 KB
@​sentry/browser (incl. Tracing, Replay, Feedback)	99.33 KB
@​sentry/browser (incl. Feedback)	43 KB
@​sentry/browser (incl. sendFeedback)	30.92 KB
@​sentry/browser (incl. FeedbackAsync)	35.91 KB
@​sentry/browser (incl. Metrics)	27.27 KB
@​sentry/browser (incl. Logs)	27.42 KB
@​sentry/browser (incl. Metrics & Logs)	28.08 KB
@​sentry/react	27.92 KB
@​sentry/react (incl. Tracing)	45.9 KB
@​sentry/vue	31.01 KB
@​sentry/vue (incl. Tracing)	45.5 KB
@​sentry/svelte	26.24 KB
CDN Bundle	28.55 KB
CDN Bundle (incl. Tracing)	46.04 KB
CDN Bundle (incl. Logs, Metrics)	29.89 KB
CDN Bundle (incl. Tracing, Logs, Metrics)	47.14 KB
CDN Bundle (incl. Replay, Logs, Metrics)	68.3 KB
CDN Bundle (incl. Tracing, Replay)	82.55 KB
CDN Bundle (incl. Tracing, Replay, Logs, Metrics)	83.6 KB
CDN Bundle (incl. Tracing, Replay, Feedback)	88.23 KB
CDN Bundle (incl. Tracing, Replay, Feedback, Logs, Metrics)	89.3 KB
CDN Bundle - uncompressed	83.97 KB
CDN Bundle (incl. Tracing) - uncompressed	138.12 KB
CDN Bundle (incl. Logs, Metrics) - uncompressed	88.07 KB
CDN Bundle (incl. Tracing, Logs, Metrics) - uncompressed	141.5 KB
CDN Bundle (incl. Replay, Logs, Metrics) - uncompressed	209.97 KB

... (truncated)

Changelog

Sourced from @​sentry/nextjs's changelog.

10.53.1

• fix(core): Don't gate user data for streamed spans at scope read time (#20827)
• fix(core): Include subpath type shims in published package (#20835)
• ref(hono): Consolidate route patching and add clarification comments (#20829)

• chore(deps): Bump next from 15.5.15 to 15.5.18 in /dev-packages/e2e-tests/test-applications/nextjs-15-intl (#20821)

10.53.0

Important Changes

• feat(core): Add streamGenAiSpans options to stream gen_ai spans (#20785)

  Adds a new streamGenAiSpans option that controls how gen_ai spans are sent to Sentry. When set, the SDK extracts all gen_ai spans out of a transaction and sends them as v2 envelope items.

  Enable this option if gen_ai spans are being dropped because the transaction payload exceeds size limits.

  Sentry.init({
    dsn: 'https://examplePublicKey@o0.ingest.sentry.io/0',
    streamGenAiSpans: true,
  });

Other Changes

• feat(browser): Migrate browser profiling thread data to span attributes (#20800)
• feat(core): Add addConsoleInstrumentationFilter utility (#20790)
• feat(core): Add applicationKey to BuildTimeOptionsBase (#20789)
• feat(core): split exports by browser/server for bundle size (#20435)
• feat(nextjs): Add top-level applicationKey option (#20794)
• feat(node): Support Node 26 (#20710)
• feat(profiling-node): Bump @sentry-internal/node-cpu-profiler to 2.4.0 (#20720)
• fix(cloudflare): avoid flush lock self-wait (#20719)
• fix(hono): Capture transaction name on request for correct culprit (#20801)
• fix(mcp): retroactively wrap handlers registered before wrapMcpServerWithSentry (#20699)
• fix(node-core): Guard against undefined util.getSystemErrorMap (#20660)
• fix(replay): Capture aborted/errored fetch requests in replay network tab (#20722)

... (truncated)

Commits

• cd97408 release: 10.53.1
• 66cfb25 Merge pull request #20838 from getsentry/prepare-release/10.53.1
• df8fd38 meta(changelog): Update changelog for 10.53.1
• 5881009 fix(core): Include subpath type shims in published package (#20835)
• 6a7d179 fix(core): Don't gate user data for streamed spans at scope read time (#20827)
• ad47c3c ref(hono): Consolidate route patching and add clarification comments (#20829)
• 28d6fe5 Merge pull request #20826 from getsentry/master
• 46aca45 Merge branch 'release/10.53.0'
• b5cbc9c chore(deps): Bump next from 15.5.15 to 15.5.18 in /dev-packages/e2e-tests/tes...
• 05489b8 release: 10.53.0
• Additional commits viewable in compare view

Updates @tavily/core from 0.7.2 to 0.7.3

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by tomer-yaacoby, a new releaser for @​tavily/core since your current version.

Updates date-fns from 4.1.0 to 4.3.0

Release notes

Sourced from date-fns's releases.

v4.3.0

Kudos to @​ImRodry and @​puneetdixit200 for their contributions.

Fixed

• Fixed missing modularized optimization fallback (for Next.js and others). See #4193.

• Fixed pt locale first day of week to be Sunday. See #4195 by @​ImRodry.

• Fixed zh-CN, zh-HK, and zh-TW locale month parsing for October, November, and December. See #4194 by @​puneetdixit200.

v4.2.1

Fixed

• Fixed type definitions missing in v4.2.0 due to TypeScript misconfiguration.

v4.2.0

This is a minor release in all senses, it only includes documentation updates (first of many) that points to the new You Don't Need date-fns* page.

* Not really

Changed

• Added Temporal API references to the JSDoc annotations of add, addBusinessDays, and addDays.

Commits

• f95bcf1 (docs): Add missing tsx dependency
• baaca11 Add //pkgs/core:release/docs task
• 8aa0373 Update docs website secrets location in scripts
• c7ad6eb Promote to v4.3.0
• da8c548 Add change log entry for Chinese locale fix (#4194)
• f8d8fa8 Split Chinese locale tests (#4194)
• b9c5865 Fix Chinese locale month parsing (#4194)
• 39d1e14 Add pt fix change log entry (#4195)
• f3f1963 Fix pt locale first day of week to be Sunday (#4195)
• cd6ebda Add basic AGENTS.md
• Additional commits viewable in compare view

Updates express-rate-limit from 8.4.1 to 8.5.2

Release notes

Sourced from express-rate-limit's releases.

v8.5.2

You can view the changelog here.

v8.5.1

You can view the changelog here.

v8.5.0

You can view the changelog here.

Commits

• 9774693 8.5.2
• 0e94cc0 v8.5.2 changelog
• 9a583c5 feat: simplify IPv6 key generation (#633)
• 4f4b3fb chore(deps-dev): bump lint-staged from 16.4.0 to 17.0.4 (#632)
• 3c1d6c5 chore(deps-dev): bump the development-dependencies group with 7 updates (#631)
• 18884b6 chore(deps): bump basic-ftp from 5.2.0 to 5.3.1 (#630)
• dacc980 chore(deps): bump handlebars from 4.7.8 to 4.7.9 (#629)
• 486d0c6 chore(deps): bump follow-redirects from 1.15.11 to 1.16.0 (#627)
• 50cc3f6 8.5.1
• 92c8e3e chore: bump ip-address library to latest (#626)
• Additional commits viewable in compare view

Updates inngest from 4.2.4 to 4.4.0

Release notes

Sourced from inngest's releases.

inngest@4.4.0

Minor Changes

• #1508 4771b424 Thanks @​amh4r! - Add experimental support for deferred functions

Patch Changes

• #1512 be675a3d Thanks @​amh4r! - Fix waitForSignal not in middleware StepType union

• #1513 cbad05c3 Thanks @​jakobevangelista! - Standardize variant naming to variant instead of variant_selected

• #1516 1bca44a8 Thanks @​BrunoScheufler! - - Add Request ID & Job ID to context and logs

inngest@4.3.0

Minor Changes

• #1504 5c8f50e1 Thanks @​scottnuma! - Accept Temporal.Duration, Temporal.Instant, and Temporal.ZonedDateTime (and their *Like variants) wherever a timeout or sleep duration is taken: step.sleep(), step.waitForEvent(), step.waitForSignal(), step.invoke(), and function-level cancelOn timeouts. Durations are treated as relative waits; instants and zoned date-times as absolute deadlines.

Patch Changes

• #1480 60cda73f Thanks @​mar-inngest! - Fix Connect shutdown getting stuck when a late lease-extension ACK recreates a stale in-flight lease entry after request completion or lease loss

inngest@4.2.6

Patch Changes

• #1492 68dcd8aa Thanks @​amh4r! - Reduce response info when unauthorized

• #1490 a8027116 Thanks @​amh4r! - Authed introspection returns partial signing key hash

inngest@4.2.5

Patch Changes

• #1479 6b9769ca Thanks @​scottnuma! - Fix step.sendSignal() return type to match runtime: Promise<InngestApi.SendSignalResponse> ({ runId: string | undefined }) instead of Promise<null>

• #1483 d0a59629 Thanks @​Linell! - Fix run IDs not URL encoded in Durable Endpoints

• #1481 970ded9b Thanks @​Linell! - Improves HMAC signature verification by using a constant-time comparison, which mitigates a potential timing-based signature-recovery attack against the request signature. Also improves handling of timestamps in signatures, including malformed or future-dated values.

• #1472 9df36dee Thanks @​Linell! - Fix empty body on Vercel serverless Node handlers

• #1482 e34972d3 Thanks @​Linell! - Hash the signing key used when exporting OTel traces

Changelog

Sourced from inngest's changelog.

4.4.0

Minor Changes

• #1508 4771b424 Thanks @​amh4r! - Add experimental support for deferred functions

Patch Changes

• #1512 be675a3d Thanks @​amh4r! - Fix waitForSignal not in middleware StepType union

• #1513 cbad05c3 Thanks @​jakobevangelista! - Standardize variant naming to variant instead of variant_selected

• #1516 1bca44a8 Thanks @​BrunoScheufler! - - Add Request ID & Job ID to context and logs

4.3.0

Minor Changes

• #1504 5c8f50e1 Thanks @​scottnuma! - Accept Temporal.Duration, Temporal.Instant, and Temporal.ZonedDateTime (and their *Like variants) wherever a timeout or sleep duration is taken: step.sleep(), step.waitForEvent(), step.waitForSignal(), step.invoke(), and function-level cancelOn timeouts. Durations are treated as relative waits; instants and zoned date-times as absolute deadlines.

Patch Changes

• #1480 60cda73f Thanks @​mar-inngest! - Fix Connect shutdown getting stuck when a late lease-extension ACK recreates a stale in-flight lease entry after request completion or lease loss

4.2.6

Patch Changes

• #1492 68dcd8aa Thanks @​amh4r! - Reduce response info when unauthorized

• #1490 a8027116 Thanks @​amh4r! - Authed introspection returns partial signing key hash

4.2.5

Patch Changes

• #1479 6b9769ca Thanks @​scottnuma! - Fix step.sendSignal() return type to match runtime: Promise<InngestApi.SendSignalResponse> ({ runId: string | undefined }) instead of Promise<null>

• #1483 d0a59629 Thanks @​Linell! - Fix run IDs not URL encoded in Durable Endpoints

• #1481 970ded9b Thanks @​Linell! - Improves HMAC signature verification by using a constant-time comparison, which mitigates a potential timing-based signat...

  Description has been truncated

[dependabot]

Assignees

The following users could not be added as assignees: vectorMindsAI. Either the username does not exist or it does not have the correct permissions to be added as an assignee.

Labels

The following labels could not be found: automated, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.