Upgrade: [dependabot] - bump nhsuk-frontend from 9.6.4 to 10.2.2 by dependabot[bot] · Pull Request #1560 · NHSDigital/eps-prescription-tracker-ui

dependabot · 2025-12-05T18:05:06Z

Bumps nhsuk-frontend from 9.6.4 to 10.2.2.

Release notes

Sourced from nhsuk-frontend's releases.

v10.2.2

10.2.2 - 4 December 2025

Note: This release was created from the support/10.x branch.

🔧 Fixes

#1731: Fix Nunjucks describedBy empty string handling

v10.2.1

10.2.1 - 2 December 2025

Note: This release was created from the support/10.x branch.

🔧 Fixes

#1726: Fix card modifier scope to allow nested cards

v10.2.0

10.2.0 - 1 December 2025

🆕 New features

Use the password input component to help users accessibly enter passwords

The password input component allows users to choose:

whether their passwords are visible or not

to enter their passwords in plain text

This helps users use longer and more complex passwords without needing to remember what they've already typed.

This was added in [pull request #1574: Uplift GOV.UK Frontend password input component](nhsuk/nhsuk-frontend#1574).

Smaller versions of buttons

You can now use smaller versions of buttons by adding the nhsuk-button--small class.

This was added in [pull request #1643: Add small buttons and inline form groups](nhsuk/nhsuk-frontend#1643).

Add inline buttons to text inputs and select menus

You can now add inline buttons to text inputs and select menus using the formGroup.afterInput Nunjucks options.
{{ input({
  formGroup: {
    afterInput: {
      html: button({
        text: "Search",
</tr></table> 

... (truncated)

Changelog

Sourced from nhsuk-frontend's changelog.

10.2.2 - 4 December 2025

Note: This release was created from the support/10.x branch.

🔧 Fixes

#1731: Fix Nunjucks describedBy empty string handling

10.2.1 - 2 December 2025

Note: This release was created from the support/10.x branch.

🔧 Fixes

#1726: Fix card modifier scope to allow nested cards

10.2.0 - 1 December 2025

🆕 New features

Use the password input component to help users accessibly enter passwords

The password input component allows users to choose:

whether their passwords are visible or not

to enter their passwords in plain text

This helps users use longer and more complex passwords without needing to remember what they've already typed.

This was added in [pull request #1574: Uplift GOV.UK Frontend password input component](nhsuk/nhsuk-frontend#1574).

Smaller versions of buttons

You can now use smaller versions of buttons by adding the nhsuk-button--small class.

This was added in [pull request #1643: Add small buttons and inline form groups](nhsuk/nhsuk-frontend#1643).

Add inline buttons to text inputs and select menus

You can now add inline buttons to text inputs and select menus using the formGroup.afterInput Nunjucks options.
{{ input({
  formGroup: {
    afterInput: {
      html: button({
        text: "Search",
        classes: "nhsuk-button--small"
      })
    }
</tr></table> 

... (truncated)

Commits

4acba61 Merge pull request #1732 from nhsuk/release-v10.2.2
9e14069 Merge pull request #1731 from nhsuk/aria-describedby-empty
e49d21a Update package version to v10.2.2
c138c0c Add changelog entry
bf519f1 Move attribute loops to nhsukAttributes() macro
2b17a3f Fix Nunjucks describedBy empty string handling
fe97646 Trim Nunjucks describedBy empty spaces
4fc7e4e Always set Nunjucks describedBy as a string
771b62c Merge pull request #1727 from nhsuk/release-v10.2.1
ddced12 Update package version to v10.2.1
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for nhsuk-frontend since your current version.

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

github-actions · 2025-12-05T18:05:15Z

This PR is raised by Dependabot to update a dependency.

eps-autoapprove-dependabot · 2025-12-05T18:15:33Z