Update dependencies to stable versions

[nicknisi]

Summary

• Upgrade @workos-inc/node from 8.0.0-rc.5 to stable 8.0.0
• Update vitest and coverage from 4.0.10 to 4.0.17
• Update prettier from 3.6.2 to 3.7.4

[greptile-apps]

Greptile Overview

Greptile Summary

This PR upgrades dependencies to their stable versions with minimal risk:

Key Changes

• @workos-inc/node: Upgraded from RC candidate (8.0.0-rc.5) to stable release (8.0.0). The codebase has been using 8.0.0 RC versions since earlier commits, making this a low-risk stabilization update. All API calls (authenticateWithRefreshToken, authenticateWithCode, getAuthorizationUrl, getLogoutUrl, getJwksUrl) remain compatible.

• vitest & @vitest/coverage-v8: Updated from 4.0.10 to 4.0.17 (patch updates). These are bug fixes and minor improvements. Notable internal change: vitest now uses obug instead of debug for logging, and changed peer dependency from @types/debug to @opentelemetry/api.

• prettier: Updated from 3.6.2 to 3.7.4 (minor version). Caused formatting changes in two TypeScript files:

  • src/core/client/types.ts: Interface extends clauses now on single lines
  • src/core/session/CookieSessionStorage.ts: Generic type parameters reformatted across multiple lines

Security Review

• ✅ No SQL injection risks (no SQL usage in codebase)
• ✅ No CORS configuration issues
• ✅ No TLS verification disabled
• ✅ No sensitive field logging (access_token, refresh_token, password, secret)
• ✅ All custom security instructions followed

Impact Assessment

• Runtime Impact: None - these are compatible version updates
• API Compatibility: Fully maintained
• Type Safety: Preserved (TypeScript definitions compatible)
• Test Coverage: Unchanged test suite should pass

The formatting changes are purely cosmetic and don't affect functionality.

Confidence Score: 5/5

• This PR is safe to merge with minimal risk - all changes are dependency updates to stable versions with no breaking changes.
• Score of 5 reflects: (1) upgrading from RC to stable release of @workos-inc/node with proven API compatibility, (2) patch-level vitest updates containing only bug fixes, (3) minor prettier update causing only formatting changes with no functional impact, (4) comprehensive security review showing no violations of custom instructions, and (5) all changes are backward-compatible with existing code patterns.
• No files require special attention - all changes are low-risk dependency updates and formatting changes.

Important Files Changed

File Analysis

Filename	Score	Overview
package.json	5/5	Updated dependencies to stable versions: @workos-inc/node 8.0.0-rc.5→8.0.0, vitest 4.0.10→4.0.17, prettier 3.6.2→3.7.4. All updates are low-risk.
pnpm-lock.yaml	5/5	Lock file updated with new dependency versions. Notable changes: vitest now uses obug instead of debug, @opentelemetry/api peer dependency added. All transitive updates look safe.
src/core/client/types.ts	5/5	Formatting-only changes from prettier 3.7.4 update. Interface extends clauses now on single lines. No functional changes.
src/core/session/CookieSessionStorage.ts	5/5	Formatting-only changes from prettier 3.7.4 update. Generic type parameters reformatted across multiple lines. No functional changes.

Sequence Diagram

sequenceDiagram
    participant Dev as Developer
    participant PKG as package.json
    participant PNPM as pnpm-lock.yaml
    participant WOS as @workos-inc/node
    participant VT as vitest
    participant PR as prettier
    
    Note over Dev,PR: Dependency Update Flow
    
    Dev->>PKG: Update @workos-inc/node: 8.0.0-rc.5 → 8.0.0
    Dev->>PKG: Update vitest: 4.0.10 → 4.0.17
    Dev->>PKG: Update @vitest/coverage-v8: 4.0.10 → 4.0.17
    Dev->>PKG: Update prettier: 3.6.2 → 3.7.4
    
    Dev->>PNPM: Run pnpm install
    PNPM->>WOS: Resolve @workos-inc/node@8.0.0
    WOS-->>PNPM: Return stable package (iron-webcrypto, jose)
    
    PNPM->>VT: Resolve vitest@4.0.17
    Note over VT: Replace debug with obug
    Note over VT: Replace @types/debug with @opentelemetry/api
    VT-->>PNPM: Return updated test framework
    
    PNPM->>PR: Resolve prettier@3.7.4
    PR-->>PNPM: Return formatter with new rules
    
    PNPM->>PNPM: Update lock file with new integrity hashes
    
    Dev->>PR: Run prettier format
    PR->>PKG: Format src/core/client/types.ts
    Note over PKG: Reformat interface extends to single line
    PR->>PKG: Format src/core/session/CookieSessionStorage.ts
    Note over PKG: Reformat generic parameters across multiple lines
    
    Note over Dev,PR: All changes applied successfully

Loading

[greptile-apps]

_{No files reviewed, no comments}

_{Edit Code Review Agent Settings | Greptile}