chore(deps)(deps): bump the minor-patch-updates group across 1 directory with 12 updates

[dependabot]

Bumps the minor-patch-updates group with 12 updates in the / directory:

Package	From	To
@next/env	16.0.10	16.1.1
@react-email/components	1.0.1	1.0.2
@sentry/nextjs	10.31.0	10.32.1
@supabase/supabase-js	2.88.0	2.89.0
lucide-react	0.561.0	0.562.0
next	16.0.10	16.1.1
nodemailer	7.0.11	7.0.12
react-hook-form	7.68.0	7.69.0
@typescript-eslint/eslint-plugin	8.50.0	8.50.1
baseline-browser-mapping	2.9.9	2.9.11
eslint-config-next	16.0.10	16.1.1
vite	7.2.2	7.3.0

Updates @next/env from 16.0.10 to 16.1.1

Release notes

Sourced from @​next/env's releases.

v16.1.1

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• Turbopack: Create junction points instead of symlinks on Windows (#87606)

Credits

Huge thanks to @​sokra and @​ztanner for helping!

v16.1.1-canary.17

Core Changes

• fix overlay frames cannot be opened sometimes: #88210
• Handle pnpm-workspace.yaml while searching for monorepo root: #74818
• Add more debug logs to 'use cache' wrapper: #88219
• Omit unused arguments from 'use cache' function calls: #86920
• Only log pending revalidates... debug log if applicable: #88221
• fix(next/image): bump [email protected]: #88238
• Disallow javascript urls in router methods and redirects: #88185

Misc Changes

• Turbopack: Use batch get request to read more efficient from database: #87106
• Turbopack: improve aggregation update performance: #87317
• Add test creation instructions to agents.md: #88215
• Turbopack: report changed env vars in tracing: #88195
• Turbopack: get rid of some manual self.await-s: #88236
• Guard against Object/Array shadowing in 'use cache' transform: #88229
• feat(turbo-tasks-fs): support multi denied_paths: #88186
• Upgrade to swc 54: #88207

Credits

Huge thanks to @​huozhi, @​sokra, @​timneutkens, @​unstubbable, @​styfle, @​mischnic, @​lubieowoce, @​xusd320, and @​gnoff for helping!

v16.1.1-canary.16

Core Changes

• Add maximum size limit for postponed body parsing: #88175
• metadata: use fixed segment in dynamic routes with static metadata files: #88113
• feat: add --experimental-cpu-prof flag for dev, build, and start: #87946
• Add experimental option to use no-cache instead of no-store in dev: #88182

Misc Changes

• fix: move conductor.json to repo root for proper detection: #88184
• Turbopack: Update to swc_core v50.2.3: #87841

... (truncated)

Commits

• 3aa5398 v16.1.1
• 3491676 v16.1.0
• 58e8f8c v16.1.0-canary.34
• 3284587 v16.1.0-canary.33
• 04290ab v16.1.0-canary.32
• d36c03e v16.1.0-canary.31
• b174155 v16.1.0-canary.30
• 20da8ea v16.1.0-canary.29
• 7a856fc v16.1.0-canary.28
• 80fb15c v16.1.0-canary.27
• Additional commits viewable in compare view

Updates @react-email/components from 1.0.1 to 1.0.2

Release notes

Sourced from @​react-email/components's releases.

@​react-email/components@​1.0.2

Patch Changes

• Updated dependencies [0e57e2a]
  • @​react-email/tailwind@​2.0.2

Changelog

Sourced from @​react-email/components's changelog.

1.0.2

Patch Changes

• Updated dependencies [0e57e2a]
  • @​react-email/tailwind@​2.0.2

Commits

• 42a72f1 chore(root): version packages (#2741)
• ca5f650 fix: use devEngines for node >=22 instead of engines (#2694)
• See full diff in compare view

Updates @sentry/nextjs from 10.31.0 to 10.32.1

Release notes

Sourced from @​sentry/nextjs's releases.

10.32.1

• fix(cloudflare): Add hono transaction name when error is thrown (#18529)
• fix(ember): Make implementation field optional (hash routes) (#18564)
• fix(vercelai): Fix input token count (#18574)

• chore(lint): prefer 'unknown' to 'any', fix lint warnings
• chore(test): Remove cloudflare-astro e2e test (#18567)

Bundle size 📦

Path	Size
@​sentry/browser	24.24 KB
@​sentry/browser - with treeshaking flags	22.77 KB
@​sentry/browser (incl. Tracing)	40.62 KB
@​sentry/browser (incl. Tracing, Profiling)	45.12 KB
@​sentry/browser (incl. Tracing, Replay)	78.3 KB
@​sentry/browser (incl. Tracing, Replay) - with treeshaking flags	68.28 KB
@​sentry/browser (incl. Tracing, Replay with Canvas)	82.88 KB
@​sentry/browser (incl. Tracing, Replay, Feedback)	94.83 KB
@​sentry/browser (incl. Feedback)	40.57 KB
@​sentry/browser (incl. sendFeedback)	28.82 KB
@​sentry/browser (incl. FeedbackAsync)	33.7 KB
@​sentry/react	25.92 KB
@​sentry/react (incl. Tracing)	42.77 KB
@​sentry/vue	28.6 KB
@​sentry/vue (incl. Tracing)	42.39 KB
@​sentry/svelte	24.25 KB
CDN Bundle	26.62 KB
CDN Bundle (incl. Tracing)	41.25 KB
CDN Bundle (incl. Tracing, Replay)	77.1 KB
CDN Bundle (incl. Tracing, Replay, Feedback)	82.44 KB
CDN Bundle - uncompressed	78.18 KB
CDN Bundle (incl. Tracing) - uncompressed	122.47 KB
CDN Bundle (incl. Tracing, Replay) - uncompressed	236.27 KB
CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	248.74 KB
@​sentry/nextjs (client)	44.94 KB
@​sentry/sveltekit (client)	40.98 KB
@​sentry/node-core	50.4 KB
@​sentry/node	157.73 KB
@​sentry/node - without tracing	90.87 KB
@​sentry/aws-serverless	106.02 KB

10.32.0

Important Changes

... (truncated)

Changelog

Sourced from @​sentry/nextjs's changelog.

10.32.1

• fix(cloudflare): Add hono transaction name when error is thrown (#18529)
• fix(ember): Make implementation field optional (hash routes) (#18564)
• fix(vercelai): Fix input token count (#18574)

• chore(lint): prefer 'unknown' to 'any', fix lint warnings
• chore(test): Remove cloudflare-astro e2e test (#18567)

10.32.0

Important Changes

• feat(core): Apply scope attributes to logs (#18184)

  You can now set attributes on the SDK's scopes which will be applied to all logs as long as the respective scopes are active. For the time being, only string, number and boolean attribute values are supported.

  Sentry.getGlobalScope().setAttributes({ is_admin: true, auth_provider: 'google' });
  Sentry.withScope(scope => {
  scope.setAttribute('step', 'authentication');
  // scope attributes is_admin, auth_provider and step are added
  Sentry.logger.info(user ${user.id} logged in, { activeSince: 100 });
  Sentry.logger.info(updated ${user.id} last activity);
  });
  // scope attributes is_admin and auth_provider are added
  Sentry.logger.warn('stale website version, reloading page');

• feat(replay): Add Request body with attachRawBodyFromRequest option (#18501)

  To attach the raw request body (from Request objects passed as the first fetch argument) to replay events, you can now use the attachRawBodyFromRequest option in the Replay integration:

  Sentry.init({
    integrations: [
      Sentry.replayIntegration({
        attachRawBodyFromRequest: true,
      }),
    ],
  });

... (truncated)

Commits

• 528ade2 release: 10.32.1
• 25f695d Merge pull request #18578 from getsentry/prepare-release/10.32.1
• a981a3d meta(changelog): Update changelog for 10.32.1
• 0d8547c fix(vercelai): Fix input token count (#18574)
• 71384a2 chore(lint): prefer 'unknown' to 'any', fix lint warnings
• d1dd308 chore(test): Remove cloudflare-astro e2e test (#18567)
• 12f3007 fix(ember): Make implementation field optional (hash routes) (#18564)
• 3fda84d fix(cloudflare): Add hono transaction name when error is thrown (#18529)
• a538901 Merge pull request #18563 from getsentry/master
• 063c4dc Merge pull request #18562 from getsentry/ab/skip-ci-when-no-code-changes
• Additional commits viewable in compare view

Updates @supabase/supabase-js from 2.88.0 to 2.89.0

Release notes

Sourced from @​supabase/supabase-js's releases.

v2.89.0

2.89.0 (2025-12-18)

🚀 Features

• auth: add X (OAuth 2.0) provider (#1960)
• auth: add string array support for AMR claims (#1967)
• supabase: export DatabaseWithoutInternals utility type (#1935)

❤️ Thank You

• Cemal Kılıç @​cemalkilic
• issuedat @​issuedat
• Vaibhav @​7ttp

v2.88.1-canary.2

2.88.1-canary.2 (2025-12-18)

🚀 Features

• supabase: export DatabaseWithoutInternals utility type (#1935)

❤️ Thank You

• Vaibhav @​7ttp

v2.88.1-canary.1

2.88.1-canary.1 (2025-12-17)

🚀 Features

• auth: add string array support for AMR claims (#1967)

❤️ Thank You

• Cemal Kılıç @​cemalkilic

v2.88.1-canary.0

2.88.1-canary.0 (2025-12-17)

🚀 Features

• auth: add X (OAuth 2.0) provider (#1960)

❤️ Thank You

• issuedat @​issuedat

Changelog

Sourced from @​supabase/supabase-js's changelog.

2.89.0 (2025-12-18)

🚀 Features

• supabase: export DatabaseWithoutInternals utility type (#1935)

❤️ Thank You

• Vaibhav @​7ttp

Commits

• e953e71 feat(supabase): export DatabaseWithoutInternals utility type (#1935)
• ba17c2f chore(release): version 2.88.0 changelogs (#1965)
• See full diff in compare view

Updates lucide-react from 0.561.0 to 0.562.0

Release notes

Sourced from lucide-react's releases.

Version 0.562.0

What's Changed

• fix(icons): changed paint-bucket icon by @​jguddas in lucide-icons/lucide#3880
• fix(site): Fix and unify color-picker font-size by @​taimar in lucide-icons/lucide#3889
• fix(react-native-web): only add className prop to parent Icon component by @​jguddas in lucide-icons/lucide#3892
• fix(lucide-react-native): remove icons namespace export to enable tree-shaking by @​jtomaszewski in lucide-icons/lucide#3868
• feat(icons): added toolbox icon by @​karsa-mistmere in lucide-icons/lucide#3871

New Contributors

• @​taimar made their first contribution in lucide-icons/lucide#3889
• @​jtomaszewski made their first contribution in lucide-icons/lucide#3868

Full Changelog: lucide-icons/lucide@0.561.0...0.562.0

Commits

• See full diff in compare view

Updates next from 16.0.10 to 16.1.1

Release notes

Sourced from next's releases.

v16.1.1

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• Turbopack: Create junction points instead of symlinks on Windows (#87606)

Credits

Huge thanks to @​sokra and @​ztanner for helping!

v16.1.1-canary.17

Core Changes

• fix overlay frames cannot be opened sometimes: #88210
• Handle pnpm-workspace.yaml while searching for monorepo root: #74818
• Add more debug logs to 'use cache' wrapper: #88219
• Omit unused arguments from 'use cache' function calls: #86920
• Only log pending revalidates... debug log if applicable: #88221
• fix(next/image): bump [email protected]: #88238
• Disallow javascript urls in router methods and redirects: #88185

Misc Changes

• Turbopack: Use batch get request to read more efficient from database: #87106
• Turbopack: improve aggregation update performance: #87317
• Add test creation instructions to agents.md: #88215
• Turbopack: report changed env vars in tracing: #88195
• Turbopack: get rid of some manual self.await-s: #88236
• Guard against Object/Array shadowing in 'use cache' transform: #88229
• feat(turbo-tasks-fs): support multi denied_paths: #88186
• Upgrade to swc 54: #88207

Credits

Huge thanks to @​huozhi, @​sokra, @​timneutkens, @​unstubbable, @​styfle, @​mischnic, @​lubieowoce, @​xusd320, and @​gnoff for helping!

v16.1.1-canary.16

Core Changes

• Add maximum size limit for postponed body parsing: #88175
• metadata: use fixed segment in dynamic routes with static metadata files: #88113
• feat: add --experimental-cpu-prof flag for dev, build, and start: #87946
• Add experimental option to use no-cache instead of no-store in dev: #88182

Misc Changes

• fix: move conductor.json to repo root for proper detection: #88184
• Turbopack: Update to swc_core v50.2.3: #87841

... (truncated)

Commits

• 3aa5398 v16.1.1
• d1bd5b5 Turbopack: Create junction points instead of symlinks on Windows (#87606)
• a67ee72 setup release branch
• 3491676 v16.1.0
• 58e8f8c v16.1.0-canary.34
• 8a8a00d Revert "Move next-env.d.ts to dist dir" (#87311)
• 3284587 v16.1.0-canary.33
• 25da5f0 Move next-env.d.ts to dist dir (#86752)
• aa8a243 feat: use Rspack persistent cache by default (#81399)
• 754db28 bundle analyzer: remove geist font in favor of system ui fonts (#87292)
• Additional commits viewable in compare view

Updates nodemailer from 7.0.11 to 7.0.12

Release notes

Sourced from nodemailer's releases.

v7.0.12

7.0.12 (2025-12-22)

Bug Fixes

• added support for REQUIRETLS (#1793) (053ce6a)
• use 8bit encoding for message/rfc822 attachments (adf8611)

Changelog

Sourced from nodemailer's changelog.

7.0.12 (2025-12-22)

Bug Fixes

• added support for REQUIRETLS (#1793) (053ce6a)
• use 8bit encoding for message/rfc822 attachments (adf8611)

Commits

• a208a0b chore(master): release 7.0.12 (#1785)
• 053ce6a fix: added support for REQUIRETLS (#1793)
• adf8611 fix: use 8bit encoding for message/rfc822 attachments
• See full diff in compare view

Updates react-hook-form from 7.68.0 to 7.69.0

Release notes

Sourced from react-hook-form's releases.

🎄 Version 7.69.0

📏 feat: align API with useWatch (#13192) 🤦🏻‍♂️ chore: update @​deprecated names prop on (#13198) 🏥 chore: safely call function methods on elements (#13190) 🪖 chore: cve-2025-67779 (#13196) 🪖 chore: cve-2025-55184 & cve-2025-55183 (#13194) 🪖 chore: CVE-2025-55182 Critical RCE vulnerabilty (#13175) 🔬 test: add regression tests for #12837 and #13136 (#13187) 🐞 fix(reset): preserve isValid state when keepIsValid option is used (#13173) 🐞 fix: ensure each createFormControl.subscribe subscription listens only to the changes it subscribes to (#12968) 🐞 fix(validation): batch isValidating state updates with validation result (#13181) 🐞 fix(createFormControl): resolve race condition between setError and setFocus (#13138) (#13169) 🧿 fix control prop type (#13189) 🔔 chore: clean cloneObject logic (#13179)

thanks to @​PierreCrb, @​a28689604, @​AnuragM7666, @​ap0nia, @​dusan233 & @​hlongc

Commits

• 3e6f681 7.69.0
• 0fa39b4 👌 chore: update dev deps (#13200)
• 5c5f710 🤦🏻‍♂️ chore: update @​deprecated names prop on \<Watch /> (#13198)
• 1e27637 🪖 fix: cve-2025-67779 (#13196)
• 0676cc7 🔬 test: add regression tests for #12837 and #13136 (#13187)
• 2a681a9 📏 feat: align \<Watch /> API with useWatch (#13192)
• 1eabdc6 🪖 fix: cve-2025-55184 & cve-2025-55183 (#13194)
• aa79ac9 🏥 chore: safely call function methods on elements (#13190)
• 3f821ac 🧿 fix \<Watch /> control prop type (#13189)
• 64eec9b 🐞 fix(reset): preserve isValid state when keepIsValid option is used (#13173)
• Additional commits viewable in compare view

Updates @typescript-eslint/eslint-plugin from 8.50.0 to 8.50.1

Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.50.1

8.50.1 (2025-12-22)

🩹 Fixes

• eslint-plugin: [method-signature-style] ignore methods that return this (#11813)
• eslint-plugin: [no-unnecessary-type-assertion] correct handling of undefined vs. void (#11826)

❤️ Thank You

• Josh Goldberg ✨
• Tamashoo @​Tamashoo

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.50.1 (2025-12-22)

🩹 Fixes

• eslint-plugin: [no-unnecessary-type-assertion] correct handling of undefined vs. void (#11826)
• eslint-plugin: [method-signature-style] ignore methods that return this (#11813)

❤️ Thank You

• Josh Goldberg ✨
• Tamashoo @​Tamashoo

You can read about our versioning strategy and releases on our website.

Commits

• d520b88 chore(release): publish 8.50.1
• 46171f0 fix(eslint-plugin): [no-unnecessary-type-assertion] correct handling of undef...
• 6882a09 fix(eslint-plugin): [method-signature-style] ignore methods that return `this...
• See full diff in compare view

Updates baseline-browser-mapping from 2.9.9 to 2.9.11

Release notes

Sourced from baseline-browser-mapping's releases.

v2.9.3 - remove process.loadEnvFile()

What's Changed

• Remove process.loadEnfFile() from main script by @​tonypconway in web-platform-dx/baseline-browser-mapping#112

Full Changelog: web-platform-dx/baseline-browser-mapping@v2.9.2...v2.9.3

Commits

• 51d4700 Patch to 2.9.11 because browser or feature data changed
• 168883e Browser or feature data changed
• 429dc08 Updating static site
• 6c61d6e Patch to 2.9.10 because browser or feature data changed
• 5a36884 Browser or feature data changed
• 11f6bf8 Updating static site
• See full diff in compare view

Updates eslint-config-next from 16.0.10 to 16.1.1

Release notes

Sourced from eslint-config-next's releases.

v16.1.1

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• Turbopack: Create junction points instead of symlinks on Windows (#87606)

Credits

Huge thanks to @​sokra and @​ztanner for helping!

v16.1.1-canary.17

Core Changes

• fix overlay frames cannot be opened sometimes: #88210
• Handle pnpm-workspace.yaml while searching for monorepo root: #74818
• Add more debug logs to 'use cache' wrapper: #88219
• Omit unused arguments from 'use cache' function calls: #86920
• Only log pending revalidates... debug log if applicable: #88221
• fix(next/image): bump [email protected]: #88238
• Disallow javascript urls in router methods and redirects: #88185

Misc Changes

• Turbopack: Use batch get request to read more efficient from database: #87106
• Turbopack: improve aggregation update performance: #87317
• Add test creation instructions to agents.md: #88215
• Turbopack: report changed env vars in tracing: #88195
• Turbopack: get rid of some manual self.await-s: #88236
• Guard against Object/Array shadowing in 'use cache' transform: #88229
• feat(turbo-tasks-fs): support multi denied_paths: #88186
• Upgrade to swc 54: #88207

Credits

Huge thanks to @​huozhi, @​sokra, @​timneutkens, @​unstubbable, @​styfle, @​mischnic, @​lubieowoce, @​xusd320, and @​gnoff for helping!

v16.1.1-canary.16

Core Changes

• Add maximum size limit for postponed body parsing: #88175
• metadata: use fixed segment in dynamic routes with static metadata files: #88113
• feat: add --experimental-cpu-prof flag for dev, build, and start: #87946
• Add experimental option to use no-cache instead of no-store in dev: #88182

Misc Changes

• fix: move conductor.json to repo root for proper detection: #88184
• Turbopack: Update to swc_core v50.2.3: #87841

... (truncated)

Commits

• 3aa5398 v16.1.1
• 3491676 v16.1.0
• 58e8f8c v16.1.0-canary.34
• 3284587 v16.1.0-canary.33
• 04290ab v16.1.0-canary.32
• d36c03e v16.1.0-canary.31
• b174155 v16.1.0-canary.30
• 20da8ea v16.1.0-canary.29
• 7a856fc v16.1.0-canary.28
• 80fb15c v16.1.0-canary.27
• Additional commits viewable in compare view

Updates vite from 7.2.2 to 7.3.0

Release notes

Sourced from vite's releases.

v7.3.0

Please refer to CHANGELOG.md for details.

v7.2.7

Please refer to CHANGELOG.md for details.

v7.2.6

Please refer to CHANGELOG.md for details.

v7.2.5

Please refer to CHANGELOG.md for details.

Note: 7.2.5 failed to publish so it is skipped on npm

v7.2.4

Please refer to CHANGELOG.md for details.

v7.2.3

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

7.3.0 (2025-12-15)

Features

• deps: update esbuild from ^0.25.0 to ^0.27.0 (#21183) (cff26ec)

7.2.7 (2025-12-08)

Bug Fixes

• plugin shortcut support (#21211) (721f163)

7.2.6 (2025-12-01)

7.2.5 (2025-12-01)

Bug Fixes

• config: handle shebang properly (#21158) (df5a30d)
• deps: update all non-major dependencies (#21146) (a3cd262)
• deps: update all non-major dependencies (#21175) (72e398a)
• fix external: true merging (#21164) (5ef557a)
• shortcuts not rebound after server restart (#21166) (3765f7b)

Performance Improvements

• deps: replace debug with obug (#21137) (203a551)

Documentation

• clarify manifest.json imports field is JS chunks only (#21136) (46d3077)

Miscellaneous Chores

• deps: update rolldown-related dependencies (#21174) (74559c9)

7.2.4 (2025-11-20)

Bug Fixes

• revert "perf(deps): replace debug with obug (#21107)" (2d66b7b)

7.2.3 (2025-11-20)

Bug Fixes

• allow multiple bindCLIShortcuts calls with shortcut merging (#21103) (5909efd)
• deps: update all non-major dependencies (#21096) (6a34ac3)
• deps: update all non-major dependencies (#21128) (4f8171e)

Performance Improvements

• deps: replace debug with obug (#21107) (acfe939)

Miscellaneous Chores

... (truncated)

Commits

• acf7e05 release: v7.3.0
• cff26ec feat(deps): update esbuild from ^0.25.0 to ^0.27.0 (#21183)
• 317b3b2 release: v7.2.7
• 721f163 fix: plugin shortcut support (#21211)
• bda5dbb release: v7.2.6
• 3aa7527 release: v7.2.5
• 72e398a fix(deps): update all non-major dependencies (#21175)
• 3765f7b fix: shortcuts not rebound after server restart (#21166)
• 5ef557a fix: fix external: true merging (#21164)
• 74559c9 chore(deps): update rolldown-related dependencies (#21174)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: npm. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Review	Updated (UTC)
pin-point	Ready	Preview, Comment	Jan 8, 2026 0:53am