Skip to content

Update non-major dependencies #36

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
renovate merged 1 commit into from
Aug 9, 2025
Merged

Update non-major dependencies #36

renovate merged 1 commit into from
Aug 9, 2025

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Aug 9, 2025

This PR contains the following updates:

Package Change Age Confidence
@eslint/js (source) 9.32.0 -> 9.33.0 age confidence
@types/node (source) 22.17.0 -> 22.17.1 age confidence
eslint (source) 9.32.0 -> 9.33.0 age confidence
typescript (source) 5.8.3 -> 5.9.2 age confidence
typescript-eslint (source) 8.38.0 -> 8.39.0 age confidence
yaml (source) 2.8.0 -> 2.8.1 age confidence
zod (source) 4.0.14 -> 4.0.16 age confidence

Release Notes

eslint/eslint (@​eslint/js)

v9.33.0

Compare Source

eslint/eslint (eslint)

v9.33.0

Compare Source

microsoft/TypeScript (typescript)

v5.9.2

Compare Source

typescript-eslint/typescript-eslint (typescript-eslint)

v8.39.0

Compare Source

🚀 Features
❤️ Thank You

You can read about our versioning strategy and releases on our website.

eemeli/yaml (yaml)

v2.8.1

Compare Source

  • Preserve empty block literals (#​634)
colinhacks/zod (zod)

v4.0.16

Compare Source

v4.0.15

Compare Source

Commits:

Configuration

📅 Schedule: Branch creation - "every weekend" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the renovate label Aug 9, 2025
@renovate renovate bot enabled auto-merge (squash) August 9, 2025 00:24
@renovate renovate bot added the renovate label Aug 9, 2025
@github-actions
Copy link

github-actions bot commented Aug 9, 2025

This change updates both pr-review and pr-summary modules to use the latest patch versions of core libraries and development tooling, ensuring compatibility, security, and improved stability without altering end-user functionality.

Walkthrough

  • Chore: Upgraded several runtime dependencies (Zod) and development tools (ESLint, TypeScript, YAML, and related plugins) across both packages to their newest patch releases for maintenance and consistency.

Model: o4-mini | Prompt Tokens: 832 | Completion Tokens: 427

github-actions[bot]
github-actions bot reviewed Aug 9, 2025
View reviewed changes
Copy link

@github-actions github-actions bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Here’s a supportive AI-powered code review. Some suggestions explore possibilities rather than hard rules, so choose what aligns with your approach. You set the direction—AI is here to help along the way.
Model: o4-mini | Prompt Tokens: 1428 | Completion Tokens: 3137

pr-review/package.json
"octokit": "5.0.3",
"parse-diff": "0.11.1",
"zod": "4.0.14"
"zod": "4.0.16"
Copy link

@github-actions github-actions bot Aug 9, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You’re currently pinning zod to an exact patch version. Pinning exact versions can lead to stale dependencies and missed patches. Consider using a caret range to automatically include future patch and minor fixes:

"zod": "^4.0.16"

pr-review/package.json
Comment on lines -33 to +34
"@eslint/js": "9.32.0",
"@types/node": "22.17.0",
"@eslint/js": "9.33.0",
"@types/node": "22.17.1",
Copy link

@github-actions github-actions bot Aug 9, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Dev dependencies are also pinned to exact versions here. To streamline future maintenance and ensure you get backward-compatible updates, use caret ranges for these packages. For example:

"typescript": "^5.9.2",
"typescript-eslint": "^8.39.0",
"yaml": "^2.8.1"

pr-review/package.json
Comment on lines 27 to 46
"mollitia": "0.2.0",
"octokit": "5.0.3",
"parse-diff": "0.11.1",
"zod": "4.0.14"
"zod": "4.0.16"
},
"devDependencies": {
"@eslint/js": "9.32.0",
"@types/node": "22.17.0",
"@eslint/js": "9.33.0",
"@types/node": "22.17.1",
"@vercel/ncc": "0.38.3",
"eslint": "9.32.0",
"eslint": "9.33.0",
"eslint-plugin-import": "2.32.0",
"eslint-plugin-sonarjs": "3.0.4",
"eslint-plugin-unicorn": "60.0.0",
"prettier": "3.6.2",
"tsx": "4.20.3",
"typescript": "5.8.3",
"typescript-eslint": "8.38.0",
"yaml": "2.8.0"
"typescript": "5.9.2",
"typescript-eslint": "8.39.0",
"yaml": "2.8.1"
}
}
Copy link

@github-actions github-actions bot Aug 9, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I notice the same dependency bumps are applied in both pr-review and pr-summary package files. Maintaining duplicate version updates across multiple files is error-prone. Consider consolidating shared dependencies into a root package.json or adopting a monorepo solution (e.g., npm workspaces or Yarn workspaces) to keep versions in sync automatically.

pr-summary/package.json
"octokit": "5.0.3",
"parse-diff": "0.11.1",
"zod": "4.0.14"
"zod": "4.0.16"
Copy link

@github-actions github-actions bot Aug 9, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You’re pinning zod to an exact version here as well. Use a caret range to allow automatic patch and minor updates:

"zod": "^4.0.16"

pr-summary/package.json
Comment on lines -32 to +33
"@eslint/js": "9.32.0",
"@types/node": "22.17.0",
"@eslint/js": "9.33.0",
"@types/node": "22.17.1",
Copy link

@github-actions github-actions bot Aug 9, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Dev dependencies are locked to exact versions. Switching to caret ranges helps you receive non-breaking updates without manual bumps. For example:

"@eslint/js": "^9.33.0",
"@types/node": "^22.17.1",
"eslint": "^9.33.0",
"typescript": "^5.9.2"

@renovate renovate bot merged commit 5bd00fe into main Aug 9, 2025
13 checks passed
@renovate renovate bot deleted the renovate/non-major-dependencies branch August 9, 2025 00:25
github-actions bot pushed a commit that referenced this pull request Aug 9, 2025
@renovate
Update non-major dependencies (#36)
fe54cb5 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] left review comments

Assignees

No one assigned

Labels

renovate

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant