Bump @mantine/form from 7.3.2 to 7.13.5

[dependabot]

Bumps @mantine/form from 7.3.2 to 7.13.5.

Release notes

Sourced from @​mantine/form's releases.

7.13.5

What's Changed

• [@mantine/core] Update peer dependencies range for react to allow react and react-dom 19 as dependcy
• [@mantine/core] Fix error in Next.js with React 19 related to ref prop usage in Tooltip, Popover and Combobox components (#7028)
• [@mantine/core] FileButton: Fix resetRef throwing error if the component is contidionally rendered (#7025)
• [@mantine/core] Button: Fix incorrect focus styles of Button.Group (#6992)
• [@mantine/charts] CompositeCharts: Fix missing key prop error (#7020)
• [@mantine/core] NumberInput: Fix min/max value being bypassed if 0 has been entered as the first digit (#7021)
• [@mantine/form] Add useCallback wrapper to form.resetDirty (#7029)
• [@mantine/core] Combobox: Fix incorrect logic of selected options when the dropdown is closed without selecting value (#7039)
• [@mantine/charts] BarChart: Add barLabelColor prop support
• [@mantine/charts] BarChart: Fix bar label being positioned incorrectly with horizontal orientation (#7042)
• [@mantine/charts] RadarChart: Fix incorrect series prop type (#7046)
• [@mantine/form] Add additional type exports from the package (#7062)
• [@mantine/core] Tabs: Fix tabIndex not being overridden by Tabs.Tab props (#7081)
• [@mantine/dates] DatePickerInput: Fix nextLabel and previousLabel props not being handled correctly (#7082)
• [@mantine/charts] Update recharts dependency to the latest version to improve Next.js 15 and React 19 support

New Contributors

• @​pfo-omicsstudio made their first contribution in mantinedev/mantine#7062
• @​zaphire12 made their first contribution in mantinedev/mantine#7046
• @​fsd-niraj made their first contribution in mantinedev/mantine#7042
• @​MariaBanaszkiewicz made their first contribution in mantinedev/mantine#7039
• @​anthony-dandrea made their first contribution in mantinedev/mantine#7029
• @​owenmoogk made their first contribution in mantinedev/mantine#7021
• @​mariakax3 made their first contribution in mantinedev/mantine#7020

Full Changelog: mantinedev/mantine@7.13.4...7.13.5

7.13.4

Next.js 15 support

The documentation and templates have been updated to support Next.js 15 release, for more information visit – https://mantine.dev/guides/next/

Other changes

• [@mantine/dates] DatePickerInput: Fix dropdown staying opened after the disabled prop has been set (#7017)
• [@mantine/core] NumberInput: Fix incorrect ref node type
• [@mantine/core] Popover: Fix onClose event firing incorrectly

Full Changelog: mantinedev/mantine@7.13.3...7.13.4

7.13.3

What's Changed

• [@mantine/core] Fix cqw, cqh, cqi, cqb, cqmax and cqmin size units not being handled correctly in style props
• [@mantine/dates] DateTimePicker: Remove defaultValue and value props from timeInputProps types to avoid confusion (#6959)
• [@mantine/dropzone] Set data-disabled attribute on the root element if disabled prop is set (#6946)
• [@mantine/core] Modal: Fix default Modal.Root transition being different from Modal component (#6967)
• [@mantine/core] ColorInput: Fix popoverProps={{ opned: true }} not working (#6968)

... (truncated)

Commits

• 1d07a31 [release] Version: 7.13.5
• a56501b [release] Version: 7.13.5-alpha.2
• 34ee3cd [release] Version: 7.13.5-alpha.1
• f34ab08 [core] Replace versions for alpha patch release
• e5a8d4f [@​mantine/core] Update peer dependencies range for react to allow react and r...
• a58f00b [@​mantine/form] Add useCallback wrapper to form.resetDirty (#7029)
• d60e538 [@​mantine/form] Add additional type exports from the package (#7062)
• fbcee92 [release] Version: 7.13.4
• b6767c8 [release] Version: 7.13.3
• e0721af [release] Version: 7.13.2
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dryrunsecurity]

DryRun Security Summary

The code change in this pull request updates the "@mantine/form" package version, and as an application security engineer, it's important to review the changelog, release notes, and the entire package.json file to identify and address any potential security risks, even in routine package updates.

Expand for full summary

Summary:

The code change in this pull request updates the version of the "@mantine/form" package from "^7.3.2" to "^7.13.5". While version upgrades can sometimes introduce security vulnerabilities, especially for popular and widely-used libraries, the "@mantine/form" library is a UI component library and is unlikely to have a direct impact on the application's security. However, it's still a good practice to review the changelog and release notes for the new version to understand any security-related changes or fixes.

Additionally, it's important to review the entire package.json file to ensure that all the project dependencies, including other libraries and tools like React, React Router, Mantine, and Storybook, are up-to-date and secure. As an application security engineer, it's crucial to stay vigilant and proactively identify and address any potential security risks, even in routine package updates.

Files Changed:

• package.json: The code change updates the version of the "@mantine/form" package from "^7.3.2" to "^7.13.5". While this is a routine package update, it's important to review the changes and the overall project dependencies to ensure that there are no unintended security implications.

Code Analysis

We ran 9 analyzers against 2 files and 1 analyzer had findings. 8 analyzers had no findings.

Analyzer	Findings
Sensitive Files Analyzer	1 finding

Riskiness

🟢 Risk threshold not exceeded.

View PR in the DryRun Dashboard.

[dependabot]

Superseded by #117.