Bump the dev-deps group across 1 directory with 3 updates

[dependabot]

Bumps the dev-deps group with 3 updates in the / directory: @types/node, cypress and eslint-config-next.

Updates @types/node from 25.3.3 to 25.5.0

Commits

• See full diff in compare view

Updates cypress from 15.11.0 to 15.12.0

Release notes

Sourced from cypress's releases.

v15.12.0

Changelog: https://docs.cypress.io/app/references/changelog#15-12-0

Commits

• dbb806a chore: release v15.12.0 (#33459)
• 4931cf0 chore: bootstrap AI agent context files (AGENTS.md + CLAUDE.md) (#33429)
• 9546ee8 chore: removes changelog entries for sigint-related fixes that are still unre...
• fec7088 chore: updating v8 snapshot cache (#33453)
• 9b7ac44 chore: Update v8 snapshot cache - darwin (#33452)
• 9c8afaa chore: updating v8 snapshot cache (#33449)
• 3d2ca8a chore: Update Chrome (beta) to 146.0.7680.65 (#33443)
• abc6b2b fix: prevent hang when waiting on multiple intercepts and navigating (#33446)
• 32e95ed test: update coming soon test from app (#33448)
• aa56256 dependency: update fast-xml-parser to 4.5.4 (#33435)
• Additional commits viewable in compare view

Updates eslint-config-next from 16.1.6 to 16.1.7

Release notes

Sourced from eslint-config-next's releases.

v16.1.7

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• [Cache Components] Prevent streaming fetch calls from hanging in dev (#89194)
• Apply server actions transform to node_modules in route handlers (#89380)
• ensure maxPostponedStateSize is always respected (See: CVE-2026-27979)
• feat(next/image): add lru disk cache and images.maximumDiskCacheSize (See: CVE-2026-27980)
• Allow blocking cross-site dev-only websocket connections from privacy-sensitive origins (See: CVE-2026-27977)
• Disallow Server Action submissions from privacy-sensitive contexts by default (See: CVE-2026-27978)
• fix: patch http-proxy to prevent request smuggling in rewrites (See: CVE-2026-29057)

Credits

Huge thanks to @​unstubbable, @​styfle, @​eps1lon, and @​ztanner for helping!

Commits

• bdf3e35 v16.1.7
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
reports	Ready	Preview, Comment	Mar 17, 2026 9:20am