Bump the minor-and-patch group across 3 directories with 64 updates #2483

dependabot · 2026-01-04T02:33:55Z

Bumps the minor-and-patch group with 64 updates in the / directory:

Package	From	To
@babel/core	`7.25.8`	`7.28.5`
@babel/eslint-parser	`7.25.8`	`7.28.5`
@babel/plugin-proposal-optional-chaining	`7.18.9`	`7.21.0`
@babel/preset-env	`7.25.8`	`7.28.5`
@babel/preset-react	`7.26.3`	`7.28.5`
@babel/preset-typescript	`7.25.7`	`7.28.5`
@testing-library/dom	`10.4.0`	`10.4.1`
@testing-library/jest-dom	`6.6.3`	`6.9.1`
@typescript-eslint/eslint-plugin	`8.20.0`	`8.51.0`
@typescript-eslint/parser	`8.20.0`	`8.51.0`
@vercel/ncc	`0.38.3`	`0.38.4`
eslint	`9.18.0`	`9.39.2`
eslint-config-prettier	`10.0.1`	`10.1.8`
eslint-plugin-import	`2.31.0`	`2.32.0`
eslint-plugin-prettier	`5.2.3`	`5.5.4`
eslint-plugin-react	`7.37.4`	`7.37.5`
eslint-webpack-plugin	`5.0.0`	`5.0.2`
got	`14.4.5`	`14.6.6`
jest-localstorage-mock	`2.4.3`	`2.4.26`
prettier	`3.5.1`	`3.7.4`
pretty-quick	`4.0.0`	`4.2.2`
ts-loader	`9.5.1`	`9.5.4`
typescript	`5.7.3`	`5.9.3`
webpack	`5.97.1`	`5.104.1`
webpack-dev-server	`5.1.0`	`5.2.2`
@lavamoat/allow-scripts	`3.3.1`	`3.4.1`
@lavamoat/preinstall-always-fail	`2.1.0`	`2.1.1`
jest-fixed-jsdom	`0.0.9`	`0.0.11`
@blockaid/client	`0.31.0`	`0.65.0`
bignumber.js	`9.3.0`	`9.3.1`
@docusaurus/core	`3.6.3`	`3.9.2`
@docusaurus/preset-classic	`3.6.3`	`3.9.2`
react	`19.0.3`	`19.2.3`
@types/react	`19.0.12`	`19.2.7`
react-dom	`19.0.3`	`19.2.3`
@types/react-dom	`19.0.3`	`19.2.3`
react-is	`19.0.3`	`19.2.3`
styled-components	`6.1.14`	`6.1.19`
@ledgerhq/hw-app-str	`7.2.0`	`7.3.0`
@ledgerhq/hw-transport-webhid	`6.30.6`	`6.30.11`
@reduxjs/toolkit	`2.5.0`	`2.11.2`
@testing-library/react	`16.3.0`	`16.3.1`
@types/chrome	`0.0.287`	`0.1.32`
@types/lodash	`4.17.16`	`4.17.21`
@types/webextension-polyfill	`0.12.0`	`0.12.4`
concurrently	`9.1.2`	`9.2.1`
copy-webpack-plugin	`13.0.0`	`13.0.1`
dotenv-webpack	`8.1.0`	`8.1.1`
formik	`2.4.6`	`2.4.9`
html-webpack-plugin	`5.6.3`	`5.6.5`
i18next	`25.0.1`	`25.7.3`
i18next-browser-languagedetector	`8.0.5`	`8.2.0`
js-yaml	`4.1.0`	`4.1.1`
mini-css-extract-plugin	`2.9.2`	`2.9.4`
react-router-dom	`7.5.1`	`7.11.0`
sass	`1.86.3`	`1.97.1`
sass-loader	`16.0.5`	`16.0.6`
semver	`7.7.1`	`7.7.3`
@types/semver	`7.5.8`	`7.7.1`
ses	`1.12.0`	`1.14.0`
yup	`1.6.1`	`1.7.1`
@playwright/test	`1.49.0`	`1.57.0`
terser-webpack-plugin	`5.3.14`	`5.3.16`
url	`0.11.1`	`0.11.4`

Bumps the minor-and-patch group with 5 updates in the /@shared/api directory:

Package	From	To
prettier	`3.5.3`	`3.7.4`
typescript	`5.8.3`	`5.9.3`
@lavamoat/allow-scripts	`3.3.2`	`3.4.1`
@blockaid/client	`0.31.0`	`0.65.0`
bignumber.js	`9.3.0`	`9.3.1`

Bumps the minor-and-patch group with 33 updates in the /extension directory:

Package	From	To
prettier	`3.5.3`	`3.7.4`
pretty-quick	`4.1.1`	`4.2.2`
@lavamoat/allow-scripts	`3.3.2`	`3.4.1`
bignumber.js	`9.3.0`	`9.3.1`
react	`19.0.3`	`19.2.3`
@types/react	`19.0.12`	`19.2.7`
react-dom	`19.0.3`	`19.2.3`
@types/react-dom	`19.1.2`	`19.2.3`
@ledgerhq/hw-app-str	`7.2.0`	`7.3.0`
@ledgerhq/hw-transport-webhid	`6.30.6`	`6.30.11`
@reduxjs/toolkit	`2.5.0`	`2.11.2`
@testing-library/react	`16.3.0`	`16.3.1`
@types/chrome	`0.0.287`	`0.1.32`
@types/lodash	`4.17.16`	`4.17.21`
@types/webextension-polyfill	`0.12.0`	`0.12.4`
concurrently	`9.1.2`	`9.2.1`
copy-webpack-plugin	`13.0.0`	`13.0.1`
dotenv-webpack	`8.1.0`	`8.1.1`
formik	`2.4.6`	`2.4.9`
html-webpack-plugin	`5.6.3`	`5.6.5`
i18next	`25.0.1`	`25.7.3`
i18next-browser-languagedetector	`8.0.5`	`8.2.0`
mini-css-extract-plugin	`2.9.2`	`2.9.4`
react-router-dom	`7.5.1`	`7.11.0`
sass	`1.86.3`	`1.97.1`
sass-loader	`16.0.5`	`16.0.6`
semver	`7.7.1`	`7.7.3`
@types/semver	`7.5.8`	`7.7.1`
ses	`1.12.0`	`1.14.0`
yup	`1.6.1`	`1.7.1`
@playwright/test	`1.49.0`	`1.57.0`
terser-webpack-plugin	`5.3.14`	`5.3.16`
url	`0.11.1`	`0.11.4`

Updates @babel/core from 7.25.8 to 7.28.5

Release notes

Sourced from @babel/core's releases.

v7.28.5 (2025-10-23)

Thank you @CO0Ki3, @Olexandr88, and @youthfulhps for your first PRs!

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

🏃‍♀️ Performance

babel-core

#17490 Faster finding of locations in buildCodeFrameError (@liuxingbaoyu)

Committers: 8

Babel Bot (@babel-bot)

Byeongho Yoo (@youthfulhps)

Huáng Jùnliàng (@JLHwung)

Hyeon Dokko (@CO0Ki3)

Nicolò Ribaudo (@nicolo-ribaudo)

@Olexandr88

@liuxingbaoyu

fisker Cheung (@fisker)

v7.28.4 (2025-09-05)

Thanks @gwillen and @mrginglymus for your first PRs!

🏠 Internal

babel-core, babel-helper-check-duplicate-nodes, babel-traverse, babel-types

#17493 Update Jest to v30.1.1 (@JLHwung)

babel-plugin-transform-regenerator

#17455 chore: Clean up transform-regenerator (@liuxingbaoyu)

... (truncated)

Changelog

Sourced from @babel/core's changelog.

v7.28.5 (2025-10-23)

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

🏃‍♀️ Performance

babel-core

#17490 Faster finding of locations in buildCodeFrameError (@liuxingbaoyu)

v7.28.4 (2025-09-05)

🏠 Internal

babel-core, babel-helper-check-duplicate-nodes, babel-traverse, babel-types

#17493 Update Jest to v30.1.1 (@JLHwung)

babel-plugin-transform-regenerator

#17455 chore: Clean up transform-regenerator (@liuxingbaoyu)

babel-core

#17474 Switch to @jridgewell/remapping (@mrginglymus)

v7.28.3 (2025-08-14)

👓 Spec Compliance

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-transform-class-static-block, babel-preset-env

#17443 [static blocks] Do not inject new static fields after static code (@nicolo-ribaudo)

🐛 Bug Fix

babel-parser

#17465 fix(parser/typescript): parse import("./a", {with:{},}) (@easrng)

#17478 fix(parser): stop subscript parsing on async arrow (@JLHwung)

💅 Polish

babel-plugin-transform-regenerator, babel-plugin-transform-runtime

... (truncated)

Commits

61647ae v7.28.5
42cb285 Improve @babel/core types (#17404)
da0d1ad Faster finding of locations in buildCodeFrameError (#17490)
35055e3 v7.28.4
b41f8cd Update Jest to v30.1.1 (#17493)
18d88b8 Improve @babel/core typings (#17471)
453b068 Switch to @jridgewell/remapping (#17474)
ef155f5 v7.28.3
98d18aa Misc: Cleanup Babel 8 tasks (#17429)
64ec61e export PartialConfig and NormalizedOptions (#17470)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @babel/core since your current version.

Updates @babel/eslint-parser from 7.25.8 to 7.28.5

Release notes

Sourced from @babel/eslint-parser's releases.

v7.28.5 (2025-10-23)

Thank you @CO0Ki3, @Olexandr88, and @youthfulhps for your first PRs!

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

🏃‍♀️ Performance

babel-core

#17490 Faster finding of locations in buildCodeFrameError (@liuxingbaoyu)

Committers: 8

Babel Bot (@babel-bot)

Byeongho Yoo (@youthfulhps)

Huáng Jùnliàng (@JLHwung)

Hyeon Dokko (@CO0Ki3)

Nicolò Ribaudo (@nicolo-ribaudo)

@Olexandr88

@liuxingbaoyu

fisker Cheung (@fisker)

v7.28.4 (2025-09-05)

Thanks @gwillen and @mrginglymus for your first PRs!

🏠 Internal

babel-core, babel-helper-check-duplicate-nodes, babel-traverse, babel-types

#17493 Update Jest to v30.1.1 (@JLHwung)

babel-plugin-transform-regenerator

#17455 chore: Clean up transform-regenerator (@liuxingbaoyu)

... (truncated)

Changelog

Sourced from @babel/eslint-parser's changelog.

v7.28.5 (2025-10-23)

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

🏃‍♀️ Performance

babel-core

#17490 Faster finding of locations in buildCodeFrameError (@liuxingbaoyu)

v7.28.4 (2025-09-05)

🏠 Internal

babel-core, babel-helper-check-duplicate-nodes, babel-traverse, babel-types

#17493 Update Jest to v30.1.1 (@JLHwung)

babel-plugin-transform-regenerator

#17455 chore: Clean up transform-regenerator (@liuxingbaoyu)

babel-core

#17474 Switch to @jridgewell/remapping (@mrginglymus)

v7.28.3 (2025-08-14)

👓 Spec Compliance

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-transform-class-static-block, babel-preset-env

#17443 [static blocks] Do not inject new static fields after static code (@nicolo-ribaudo)

🐛 Bug Fix

babel-parser

#17465 fix(parser/typescript): parse import("./a", {with:{},}) (@easrng)

#17478 fix(parser): stop subscript parsing on async arrow (@JLHwung)

💅 Polish

babel-plugin-transform-regenerator, babel-plugin-transform-runtime

... (truncated)

Commits

61647ae v7.28.5
42cb285 Improve @babel/core types (#17404)
e7031b7 [Babel 8] Treat allowSuperOutsideMethod as top-level only (#17505)
35055e3 v7.28.4
f04083a [Babel 8] Align TSMappedType AST (#17479)
432a7ff fix(parser/typescript): parse import("./a", {with:{},}) (#17465)
e77e3b0 move eslint-{parser,plugin} docs to the website (#17448)
ccc5fae v7.28.0
7896ed7 Support sourceType: "commonjs" (#17390)
1b9aba4 Materialize explicitResourceManagement parser plugin (#17346)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @babel/eslint-parser since your current version.

Updates @babel/plugin-proposal-optional-chaining from 7.18.9 to 7.21.0

Commits

de7d75a v7.21.0
34136c5 docs: fix typos (#15432)
d414940 v7.20.7
362451b chore: Enable eslint rule no-unnecessary-type-assertion (#15260)
67cb9f1 fix: Correctly generate (a ?? b) as T (#15258)
d45d59a Improve comments generation (#14979)
See full diff in compare view

Updates @babel/preset-env from 7.25.8 to 7.28.5

Release notes

Sourced from @babel/preset-env's releases.

v7.28.5 (2025-10-23)

Thank you @CO0Ki3, @Olexandr88, and @youthfulhps for your first PRs!

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

🏃‍♀️ Performance

babel-core

#17490 Faster finding of locations in buildCodeFrameError (@liuxingbaoyu)

Committers: 8

Babel Bot (@babel-bot)

Byeongho Yoo (@youthfulhps)

Huáng Jùnliàng (@JLHwung)

Hyeon Dokko (@CO0Ki3)

Nicolò Ribaudo (@nicolo-ribaudo)

@Olexandr88

@liuxingbaoyu

fisker Cheung (@fisker)

v7.28.4 (2025-09-05)

Thanks @gwillen and @mrginglymus for your first PRs!

🏠 Internal

babel-core, babel-helper-check-duplicate-nodes, babel-traverse, babel-types

#17493 Update Jest to v30.1.1 (@JLHwung)

babel-plugin-transform-regenerator

#17455 chore: Clean up transform-regenerator (@liuxingbaoyu)

... (truncated)

Changelog

Sourced from @babel/preset-env's changelog.

v7.28.5 (2025-10-23)

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

🏃‍♀️ Performance

babel-core

#17490 Faster finding of locations in buildCodeFrameError (@liuxingbaoyu)

v7.28.4 (2025-09-05)

🏠 Internal

babel-core, babel-helper-check-duplicate-nodes, babel-traverse, babel-types

#17493 Update Jest to v30.1.1 (@JLHwung)

babel-plugin-transform-regenerator

#17455 chore: Clean up transform-regenerator (@liuxingbaoyu)

babel-core

#17474 Switch to @jridgewell/remapping (@mrginglymus)

v7.28.3 (2025-08-14)

👓 Spec Compliance

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-transform-class-static-block, babel-preset-env

#17443 [static blocks] Do not inject new static fields after static code (@nicolo-ribaudo)

🐛 Bug Fix

babel-parser

#17465 fix(parser/typescript): parse import("./a", {with:{},}) (@easrng)

#17478 fix(parser): stop subscript parsing on async arrow (@JLHwung)

💅 Polish

babel-plugin-transform-regenerator, babel-plugin-transform-runtime

... (truncated)

Commits

61647ae v7.28.5
42cb285 Improve @babel/core types (#17404)
ae363ae chore: Fix typo in variable name (#17535)
1edfcaa Update compat data (#17487)
ef155f5 v7.28.3
98d18aa Misc: Cleanup Babel 8 tasks (#17429)
fb57f26 chore: update browser compat libs (#17469)
f4a9616 [static blocks] Do not inject new static fields after static code (#17443)
f743094 fix: regeneratorDefine compatibility with es5 strict mode (#17441)
ccc5fae v7.28.0
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @babel/preset-env since your current version.

Updates @babel/preset-react from 7.26.3 to 7.28.5

Release notes

Sourced from @babel/preset-react's releases.

v7.28.5 (2025-10-23)

Thank you @CO0Ki3, @Olexandr88, and @youthfulhps for your first PRs!

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

🏃‍♀️ Performance

babel-core

#17490 Faster finding of locations in buildCodeFrameError (@liuxingbaoyu)

Committers: 8

Babel Bot (@babel-bot)

Byeongho Yoo (@youthfulhps)

Huáng Jùnliàng (@JLHwung)

Hyeon Dokko (@CO0Ki3)

Nicolò Ribaudo (@nicolo-ribaudo)

@Olexandr88

@liuxingbaoyu

fisker Cheung (@fisker)

v7.28.4 (2025-09-05)

Thanks @gwillen and @mrginglymus for your first PRs!

🏠 Internal

babel-core, babel-helper-check-duplicate-nodes, babel-traverse, babel-types

#17493 Update Jest to v30.1.1 (@JLHwung)

babel-plugin-transform-regenerator

#17455 chore: Clean up transform-regenerator (@liuxingbaoyu)

... (truncated)

Changelog

Sourced from @babel/preset-react's changelog.

v7.28.5 (2025-10-23)

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

🏃‍♀️ Performance

babel-core

#17490 Faster finding of locations in buildCodeFrameError (@liuxingbaoyu)

v7.28.4 (2025-09-05)

🏠 Internal

babel-core, babel-helper-check-duplicate-nodes, babel-traverse, babel-types

#17493 Update Jest to v30.1.1 (@JLHwung)

babel-plugin-transform-regenerator

#17455 chore: Clean up transform-regenerator (@liuxingbaoyu)

babel-core

#17474 Switch to @jridgewell/remapping (@mrginglymus)

v7.28.3 (2025-08-14)

👓 Spec Compliance

babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators, babel-plugin-transform-class-static-block, babel-preset-env

#17443 [static blocks] Do not inject new static fields after static code (@nicolo-ribaudo)

🐛 Bug Fix

babel-parser

#17465 fix(parser/typescript): parse import("./a", {with:{},}) (@easrng)

#17478 fix(parser): stop subscript parsing on async arrow (@JLHwung)

💅 Polish

babel-plugin-transform-regenerator, babel-plugin-transform-runtime

... (truncated)

Commits

61647ae v7.28.5
42cb285 Improve @babel/core types (#17404)
eebd3a0 v7.27.1
fdc0fb5 [Babel 8] Bump nodejs requirements to ^20.19.0 || >= 22.12.0 (#17204)
cd24cc0 chore: Update TS 5.7 (#17053)
See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @babel/preset-react since your current version.

Updates @babel/preset-typescript from 7.25.7 to 7.28.5

Release notes

Sourced from @babel/preset-typescript's releases.

v7.28.5 (2025-10-23)

Thank you @CO0Ki3, @Olexandr88, and @youthfulhps for your first PRs!

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (

socket-security · 2026-01-04T02:34:33Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Quality	Maintenance
	npm/@lavamoat/preinstall-always-fail@2.1.0 ⏵ 2.1.1
	npm/@babel/plugin-proposal-optional-chaining@7.18.9 ⏵ 7.21.0
	npm/react-router-dom@7.5.1 ⏵ 7.12.0			⁺¹
	npm/@docusaurus/preset-classic@3.6.3 ⏵ 3.9.2	⁺¹	⁺¹
	npm/@typescript-eslint/parser@8.20.0 ⏵ 8.52.0	⁺¹
	npm/@babel/preset-react@7.26.3 ⏵ 7.28.5
	npm/@babel/preset-typescript@7.25.7 ⏵ 7.28.5
	npm/@types/semver@7.5.8 ⏵ 7.7.1	⁺¹	⁺¹
	npm/@docusaurus/core@3.6.3 ⏵ 3.9.2	⁺¹	⁺¹
	npm/@types/react-dom@19.1.2 ⏵ 19.2.3	⁺¹	⁺¹
	npm/@babel/preset-env@7.25.8 ⏵ 7.28.5
	npm/@babel/eslint-parser@7.25.8 ⏵ 7.28.5		^-23	^-2
	npm/@types/react@19.0.12 ⏵ 19.2.8			⁺³
	npm/@types/webextension-polyfill@0.12.0 ⏵ 0.12.4		⁺¹	^-2
	npm/@types/chrome@0.0.287 ⏵ 0.1.33		⁺¹	⁺⁴
	npm/@babel/core@7.25.8 ⏵ 7.28.5	⁺¹
	npm/@types/lodash@4.17.16 ⏵ 4.17.23	⁺¹	⁺¹
	npm/@typescript-eslint/eslint-plugin@8.20.0 ⏵ 8.52.0	⁺¹	⁺¹
	npm/jest-localstorage-mock@2.4.3 ⏵ 2.4.26			⁺³
	npm/dotenv-webpack@8.1.0 ⏵ 8.1.1
	npm/formik@2.4.6 ⏵ 2.4.9	⁺¹	⁺¹	^-2
	npm/yup@1.6.1 ⏵ 1.7.1	⁺³
	npm/url@0.11.1 ⏵ 0.11.4	⁺¹	⁺¹
	npm/jest-fixed-jsdom@0.0.9 ⏵ 0.0.11	⁺¹	⁺¹
	npm/concurrently@9.1.2 ⏵ 9.2.1	⁺¹	⁺¹
	npm/eslint-plugin-react@7.37.4 ⏵ 7.37.5	⁺¹
	npm/eslint-plugin-import@2.31.0 ⏵ 2.32.0	⁺¹
	npm/react@19.0.3 ⏵ 19.2.3	⁺¹
	npm/copy-webpack-plugin@13.0.0 ⏵ 13.0.1
	npm/sass-loader@16.0.5 ⏵ 16.0.6
	npm/@vercel/ncc@0.38.3 ⏵ 0.38.4
	npm/ts-loader@9.5.1 ⏵ 9.5.4
See 29 more rows in the dashboard

View full report

Bumps the minor-and-patch group with 64 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) | `7.25.8` | `7.28.5` | | [@babel/eslint-parser](https://github.com/babel/babel/tree/HEAD/eslint/babel-eslint-parser) | `7.25.8` | `7.28.5` | | [@babel/plugin-proposal-optional-chaining](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-proposal-optional-chaining) | `7.18.9` | `7.21.0` | | [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) | `7.25.8` | `7.28.5` | | [@babel/preset-react](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-react) | `7.26.3` | `7.28.5` | | [@babel/preset-typescript](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-typescript) | `7.25.7` | `7.28.5` | | [@testing-library/dom](https://github.com/testing-library/dom-testing-library) | `10.4.0` | `10.4.1` | | [@testing-library/jest-dom](https://github.com/testing-library/jest-dom) | `6.6.3` | `6.9.1` | | [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.20.0` | `8.51.0` | | [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.20.0` | `8.51.0` | | [@vercel/ncc](https://github.com/vercel/ncc) | `0.38.3` | `0.38.4` | | [eslint](https://github.com/eslint/eslint) | `9.18.0` | `9.39.2` | | [eslint-config-prettier](https://github.com/prettier/eslint-config-prettier) | `10.0.1` | `10.1.8` | | [eslint-plugin-import](https://github.com/import-js/eslint-plugin-import) | `2.31.0` | `2.32.0` | | [eslint-plugin-prettier](https://github.com/prettier/eslint-plugin-prettier) | `5.2.3` | `5.5.4` | | [eslint-plugin-react](https://github.com/jsx-eslint/eslint-plugin-react) | `7.37.4` | `7.37.5` | | [eslint-webpack-plugin](https://github.com/webpack-contrib/eslint-webpack-plugin) | `5.0.0` | `5.0.2` | | [got](https://github.com/sindresorhus/got) | `14.4.5` | `14.6.6` | | [jest-localstorage-mock](https://github.com/clarkbw/jest-localstorage-mock) | `2.4.3` | `2.4.26` | | [prettier](https://github.com/prettier/prettier) | `3.5.1` | `3.7.4` | | [pretty-quick](https://github.com/prettier/pretty-quick) | `4.0.0` | `4.2.2` | | [ts-loader](https://github.com/TypeStrong/ts-loader) | `9.5.1` | `9.5.4` | | [typescript](https://github.com/microsoft/TypeScript) | `5.7.3` | `5.9.3` | | [webpack](https://github.com/webpack/webpack) | `5.97.1` | `5.104.1` | | [webpack-dev-server](https://github.com/webpack/webpack-dev-server) | `5.1.0` | `5.2.2` | | [@lavamoat/allow-scripts](https://github.com/LavaMoat/LavaMoat/tree/HEAD/packages/allow-scripts) | `3.3.1` | `3.4.1` | | [@lavamoat/preinstall-always-fail](https://github.com/LavaMoat/LavaMoat/tree/HEAD/packages/preinstall-always-fail) | `2.1.0` | `2.1.1` | | [jest-fixed-jsdom](https://github.com/mswjs/jest-fixed-jsdom) | `0.0.9` | `0.0.11` | | [@blockaid/client](https://github.com/blockaid-official/blockaid-client-node) | `0.31.0` | `0.65.0` | | [bignumber.js](https://github.com/MikeMcl/bignumber.js) | `9.3.0` | `9.3.1` | | [@docusaurus/core](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus) | `3.6.3` | `3.9.2` | | [@docusaurus/preset-classic](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-preset-classic) | `3.6.3` | `3.9.2` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.0.3` | `19.2.3` | | [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.0.12` | `19.2.7` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.0.3` | `19.2.3` | | [@types/react-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-dom) | `19.0.3` | `19.2.3` | | [react-is](https://github.com/facebook/react/tree/HEAD/packages/react-is) | `19.0.3` | `19.2.3` | | [styled-components](https://github.com/styled-components/styled-components) | `6.1.14` | `6.1.19` | | [@ledgerhq/hw-app-str](https://github.com/LedgerHQ/ledger-live) | `7.2.0` | `7.3.0` | | [@ledgerhq/hw-transport-webhid](https://github.com/LedgerHQ/ledger-live) | `6.30.6` | `6.30.11` | | [@reduxjs/toolkit](https://github.com/reduxjs/redux-toolkit) | `2.5.0` | `2.11.2` | | [@testing-library/react](https://github.com/testing-library/react-testing-library) | `16.3.0` | `16.3.1` | | [@types/chrome](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/chrome) | `0.0.287` | `0.1.32` | | [@types/lodash](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/lodash) | `4.17.16` | `4.17.21` | | [@types/webextension-polyfill](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/webextension-polyfill) | `0.12.0` | `0.12.4` | | [concurrently](https://github.com/open-cli-tools/concurrently) | `9.1.2` | `9.2.1` | | [copy-webpack-plugin](https://github.com/webpack-contrib/copy-webpack-plugin) | `13.0.0` | `13.0.1` | | [dotenv-webpack](https://github.com/mrsteele/dotenv-webpack) | `8.1.0` | `8.1.1` | | [formik](https://github.com/jaredpalmer/formik) | `2.4.6` | `2.4.9` | | [html-webpack-plugin](https://github.com/jantimon/html-webpack-plugin) | `5.6.3` | `5.6.5` | | [i18next](https://github.com/i18next/i18next) | `25.0.1` | `25.7.3` | | [i18next-browser-languagedetector](https://github.com/i18next/i18next-browser-languageDetector) | `8.0.5` | `8.2.0` | | [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` | | [mini-css-extract-plugin](https://github.com/webpack-contrib/mini-css-extract-plugin) | `2.9.2` | `2.9.4` | | [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom) | `7.5.1` | `7.11.0` | | [sass](https://github.com/sass/dart-sass) | `1.86.3` | `1.97.1` | | [sass-loader](https://github.com/webpack/sass-loader) | `16.0.5` | `16.0.6` | | [semver](https://github.com/npm/node-semver) | `7.7.1` | `7.7.3` | | [@types/semver](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/semver) | `7.5.8` | `7.7.1` | | [ses](https://github.com/endojs/endo/tree/HEAD/packages/ses) | `1.12.0` | `1.14.0` | | [yup](https://github.com/jquense/yup) | `1.6.1` | `1.7.1` | | [@playwright/test](https://github.com/microsoft/playwright) | `1.49.0` | `1.57.0` | | [terser-webpack-plugin](https://github.com/webpack/terser-webpack-plugin) | `5.3.14` | `5.3.16` | | [url](https://github.com/defunctzombie/node-url) | `0.11.1` | `0.11.4` | Bumps the minor-and-patch group with 5 updates in the /@shared/api directory: | Package | From | To | | --- | --- | --- | | [prettier](https://github.com/prettier/prettier) | `3.5.3` | `3.7.4` | | [typescript](https://github.com/microsoft/TypeScript) | `5.8.3` | `5.9.3` | | [@lavamoat/allow-scripts](https://github.com/LavaMoat/LavaMoat/tree/HEAD/packages/allow-scripts) | `3.3.2` | `3.4.1` | | [@blockaid/client](https://github.com/blockaid-official/blockaid-client-node) | `0.31.0` | `0.65.0` | | [bignumber.js](https://github.com/MikeMcl/bignumber.js) | `9.3.0` | `9.3.1` | Bumps the minor-and-patch group with 33 updates in the /extension directory: | Package | From | To | | --- | --- | --- | | [prettier](https://github.com/prettier/prettier) | `3.5.3` | `3.7.4` | | [pretty-quick](https://github.com/prettier/pretty-quick) | `4.1.1` | `4.2.2` | | [@lavamoat/allow-scripts](https://github.com/LavaMoat/LavaMoat/tree/HEAD/packages/allow-scripts) | `3.3.2` | `3.4.1` | | [bignumber.js](https://github.com/MikeMcl/bignumber.js) | `9.3.0` | `9.3.1` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.0.3` | `19.2.3` | | [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.0.12` | `19.2.7` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.0.3` | `19.2.3` | | [@types/react-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-dom) | `19.1.2` | `19.2.3` | | [@ledgerhq/hw-app-str](https://github.com/LedgerHQ/ledger-live) | `7.2.0` | `7.3.0` | | [@ledgerhq/hw-transport-webhid](https://github.com/LedgerHQ/ledger-live) | `6.30.6` | `6.30.11` | | [@reduxjs/toolkit](https://github.com/reduxjs/redux-toolkit) | `2.5.0` | `2.11.2` | | [@testing-library/react](https://github.com/testing-library/react-testing-library) | `16.3.0` | `16.3.1` | | [@types/chrome](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/chrome) | `0.0.287` | `0.1.32` | | [@types/lodash](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/lodash) | `4.17.16` | `4.17.21` | | [@types/webextension-polyfill](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/webextension-polyfill) | `0.12.0` | `0.12.4` | | [concurrently](https://github.com/open-cli-tools/concurrently) | `9.1.2` | `9.2.1` | | [copy-webpack-plugin](https://github.com/webpack-contrib/copy-webpack-plugin) | `13.0.0` | `13.0.1` | | [dotenv-webpack](https://github.com/mrsteele/dotenv-webpack) | `8.1.0` | `8.1.1` | | [formik](https://github.com/jaredpalmer/formik) | `2.4.6` | `2.4.9` | | [html-webpack-plugin](https://github.com/jantimon/html-webpack-plugin) | `5.6.3` | `5.6.5` | | [i18next](https://github.com/i18next/i18next) | `25.0.1` | `25.7.3` | | [i18next-browser-languagedetector](https://github.com/i18next/i18next-browser-languageDetector) | `8.0.5` | `8.2.0` | | [mini-css-extract-plugin](https://github.com/webpack-contrib/mini-css-extract-plugin) | `2.9.2` | `2.9.4` | | [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom) | `7.5.1` | `7.11.0` | | [sass](https://github.com/sass/dart-sass) | `1.86.3` | `1.97.1` | | [sass-loader](https://github.com/webpack/sass-loader) | `16.0.5` | `16.0.6` | | [semver](https://github.com/npm/node-semver) | `7.7.1` | `7.7.3` | | [@types/semver](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/semver) | `7.5.8` | `7.7.1` | | [ses](https://github.com/endojs/endo/tree/HEAD/packages/ses) | `1.12.0` | `1.14.0` | | [yup](https://github.com/jquense/yup) | `1.6.1` | `1.7.1` | | [@playwright/test](https://github.com/microsoft/playwright) | `1.49.0` | `1.57.0` | | [terser-webpack-plugin](https://github.com/webpack/terser-webpack-plugin) | `5.3.14` | `5.3.16` | | [url](https://github.com/defunctzombie/node-url) | `0.11.1` | `0.11.4` | Updates `@babel/core` from 7.25.8 to 7.28.5 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.28.5/packages/babel-core) Updates `@babel/eslint-parser` from 7.25.8 to 7.28.5 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.28.5/eslint/babel-eslint-parser) Updates `@babel/plugin-proposal-optional-chaining` from 7.18.9 to 7.21.0 - [Release notes](https://github.com/babel/babel/releases) - [Commits](https://github.com/babel/babel/commits/v7.21.0/packages/babel-plugin-proposal-optional-chaining) Updates `@babel/preset-env` from 7.25.8 to 7.28.5 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.28.5/packages/babel-preset-env) Updates `@babel/preset-react` from 7.26.3 to 7.28.5 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.28.5/packages/babel-preset-react) Updates `@babel/preset-typescript` from 7.25.7 to 7.28.5 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.28.5/packages/babel-preset-typescript) Updates `@testing-library/dom` from 10.4.0 to 10.4.1 - [Release notes](https://github.com/testing-library/dom-testing-library/releases) - [Changelog](https://github.com/testing-library/dom-testing-library/blob/main/CHANGELOG.md) - [Commits](https://github.com/testing-library/dom-testing-library/compare/v10.4.0...v10.4.1) Updates `@testing-library/jest-dom` from 6.6.3 to 6.9.1 - [Release notes](https://github.com/testing-library/jest-dom/releases) - [Changelog](https://github.com/testing-library/jest-dom/blob/main/CHANGELOG.md) - [Commits](https://github.com/testing-library/jest-dom/compare/v6.6.3...v6.9.1) Updates `@typescript-eslint/eslint-plugin` from 8.20.0 to 8.51.0 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.51.0/packages/eslint-plugin) Updates `@typescript-eslint/parser` from 8.20.0 to 8.51.0 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.51.0/packages/parser) Updates `@vercel/ncc` from 0.38.3 to 0.38.4 - [Release notes](https://github.com/vercel/ncc/releases) - [Commits](https://github.com/vercel/ncc/compare/0.38.3...0.38.4) Updates `eslint` from 9.18.0 to 9.39.2 - [Release notes](https://github.com/eslint/eslint/releases) - [Commits](https://github.com/eslint/eslint/compare/v9.18.0...v9.39.2) Updates `eslint-config-prettier` from 10.0.1 to 10.1.8 - [Release notes](https://github.com/prettier/eslint-config-prettier/releases) - [Changelog](https://github.com/prettier/eslint-config-prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/eslint-config-prettier/compare/v10.0.1...v10.1.8) Updates `eslint-plugin-import` from 2.31.0 to 2.32.0 - [Release notes](https://github.com/import-js/eslint-plugin-import/releases) - [Changelog](https://github.com/import-js/eslint-plugin-import/blob/main/CHANGELOG.md) - [Commits](https://github.com/import-js/eslint-plugin-import/compare/v2.31.0...v2.32.0) Updates `eslint-plugin-prettier` from 5.2.3 to 5.5.4 - [Release notes](https://github.com/prettier/eslint-plugin-prettier/releases) - [Changelog](https://github.com/prettier/eslint-plugin-prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/eslint-plugin-prettier/compare/v5.2.3...v5.5.4) Updates `eslint-plugin-react` from 7.37.4 to 7.37.5 - [Release notes](https://github.com/jsx-eslint/eslint-plugin-react/releases) - [Changelog](https://github.com/jsx-eslint/eslint-plugin-react/blob/master/CHANGELOG.md) - [Commits](https://github.com/jsx-eslint/eslint-plugin-react/compare/v7.37.4...v7.37.5) Updates `eslint-webpack-plugin` from 5.0.0 to 5.0.2 - [Release notes](https://github.com/webpack-contrib/eslint-webpack-plugin/releases) - [Changelog](https://github.com/webpack/eslint-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/eslint-webpack-plugin/compare/v5.0.0...v5.0.2) Updates `got` from 14.4.5 to 14.6.6 - [Release notes](https://github.com/sindresorhus/got/releases) - [Commits](https://github.com/sindresorhus/got/compare/v14.4.5...v14.6.6) Updates `jest-localstorage-mock` from 2.4.3 to 2.4.26 - [Release notes](https://github.com/clarkbw/jest-localstorage-mock/releases) - [Commits](https://github.com/clarkbw/jest-localstorage-mock/compare/v2.4.3...v2.4.26) Updates `prettier` from 3.5.1 to 3.7.4 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.7.4) Updates `pretty-quick` from 4.0.0 to 4.2.2 - [Release notes](https://github.com/prettier/pretty-quick/releases) - [Changelog](https://github.com/prettier/pretty-quick/blob/v4.2.2/CHANGELOG.md) - [Commits](https://github.com/prettier/pretty-quick/compare/v4.0.0...v4.2.2) Updates `ts-loader` from 9.5.1 to 9.5.4 - [Release notes](https://github.com/TypeStrong/ts-loader/releases) - [Changelog](https://github.com/TypeStrong/ts-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/TypeStrong/ts-loader/compare/v9.5.1...v9.5.4) Updates `typescript` from 5.7.3 to 5.9.3 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Commits](https://github.com/microsoft/TypeScript/compare/v5.7.3...v5.9.3) Updates `webpack` from 5.97.1 to 5.104.1 - [Release notes](https://github.com/webpack/webpack/releases) - [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/webpack/compare/v5.97.1...v5.104.1) Updates `webpack-dev-server` from 5.1.0 to 5.2.2 - [Release notes](https://github.com/webpack/webpack-dev-server/releases) - [Changelog](https://github.com/webpack/webpack-dev-server/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/webpack-dev-server/compare/v5.1.0...v5.2.2) Updates `@lavamoat/allow-scripts` from 3.3.1 to 3.4.1 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.1/packages/allow-scripts) Updates `@lavamoat/preinstall-always-fail` from 2.1.0 to 2.1.1 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/preinstall-always-fail/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/preinstall-always-fail-v2.1.1/packages/preinstall-always-fail) Updates `jest-fixed-jsdom` from 0.0.9 to 0.0.11 - [Release notes](https://github.com/mswjs/jest-fixed-jsdom/releases) - [Changelog](https://github.com/mswjs/jest-fixed-jsdom/blob/main/release.config.json) - [Commits](https://github.com/mswjs/jest-fixed-jsdom/compare/v0.0.9...v0.0.11) Updates `@blockaid/client` from 0.31.0 to 0.65.0 - [Release notes](https://github.com/blockaid-official/blockaid-client-node/releases) - [Changelog](https://github.com/blockaid-official/blockaid-client-node/blob/main/CHANGELOG.md) - [Commits](https://github.com/blockaid-official/blockaid-client-node/compare/v0.31.0...v0.65.0) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `@docusaurus/core` from 3.6.3 to 3.9.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.9.2/packages/docusaurus) Updates `@docusaurus/preset-classic` from 3.6.3 to 3.9.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.9.2/packages/docusaurus-preset-classic) Updates `react` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.3/packages/react) Updates `@types/react` from 19.0.12 to 19.2.7 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `react-dom` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.3/packages/react-dom) Updates `@types/react-dom` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `react-is` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.3/packages/react-is) Updates `styled-components` from 6.1.14 to 6.1.19 - [Release notes](https://github.com/styled-components/styled-components/releases) - [Commits](https://github.com/styled-components/styled-components/compare/styled-components@6.1.14...styled-components@6.1.19) Updates `@ledgerhq/hw-app-str` from 7.2.0 to 7.3.0 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-app-str@7.2.0...@ledgerhq/hw-app-str@7.3.0) Updates `@ledgerhq/hw-transport-webhid` from 6.30.6 to 6.30.11 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-transport-webhid@6.30.6...@ledgerhq/hw-transport-webhid@6.30.11) Updates `@reduxjs/toolkit` from 2.5.0 to 2.11.2 - [Release notes](https://github.com/reduxjs/redux-toolkit/releases) - [Commits](https://github.com/reduxjs/redux-toolkit/compare/v2.5.0...v2.11.2) Updates `@testing-library/react` from 16.3.0 to 16.3.1 - [Release notes](https://github.com/testing-library/react-testing-library/releases) - [Changelog](https://github.com/testing-library/react-testing-library/blob/main/CHANGELOG.md) - [Commits](https://github.com/testing-library/react-testing-library/compare/v16.3.0...v16.3.1) Updates `@types/chrome` from 0.0.287 to 0.1.32 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/chrome) Updates `@types/lodash` from 4.17.16 to 4.17.21 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/lodash) Updates `@types/webextension-polyfill` from 0.12.0 to 0.12.4 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/webextension-polyfill) Updates `concurrently` from 9.1.2 to 9.2.1 - [Release notes](https://github.com/open-cli-tools/concurrently/releases) - [Commits](https://github.com/open-cli-tools/concurrently/compare/v9.1.2...v9.2.1) Updates `copy-webpack-plugin` from 13.0.0 to 13.0.1 - [Release notes](https://github.com/webpack-contrib/copy-webpack-plugin/releases) - [Changelog](https://github.com/webpack/copy-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/copy-webpack-plugin/compare/v13.0.0...v13.0.1) Updates `dotenv-webpack` from 8.1.0 to 8.1.1 - [Release notes](https://github.com/mrsteele/dotenv-webpack/releases) - [Commits](https://github.com/mrsteele/dotenv-webpack/compare/v8.1.0...v8.1.1) Updates `formik` from 2.4.6 to 2.4.9 - [Release notes](https://github.com/jaredpalmer/formik/releases) - [Commits](https://github.com/jaredpalmer/formik/compare/formik@2.4.6...formik@2.4.9) Updates `html-webpack-plugin` from 5.6.3 to 5.6.5 - [Release notes](https://github.com/jantimon/html-webpack-plugin/releases) - [Changelog](https://github.com/jantimon/html-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/jantimon/html-webpack-plugin/compare/v5.6.3...v5.6.5) Updates `i18next` from 25.0.1 to 25.7.3 - [Release notes](https://github.com/i18next/i18next/releases) - [Changelog](https://github.com/i18next/i18next/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next/compare/v25.0.1...v25.7.3) Updates `i18next-browser-languagedetector` from 8.0.5 to 8.2.0 - [Changelog](https://github.com/i18next/i18next-browser-languageDetector/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next-browser-languageDetector/compare/v8.0.5...v8.2.0) Updates `js-yaml` from 4.1.0 to 4.1.1 - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1) Updates `mini-css-extract-plugin` from 2.9.2 to 2.9.4 - [Release notes](https://github.com/webpack-contrib/mini-css-extract-plugin/releases) - [Changelog](https://github.com/webpack/mini-css-extract-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/mini-css-extract-plugin/compare/v2.9.2...v2.9.4) Updates `react-router-dom` from 7.5.1 to 7.11.0 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@7.11.0/packages/react-router-dom) Updates `sass` from 1.86.3 to 1.97.1 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.86.3...1.97.1) Updates `sass-loader` from 16.0.5 to 16.0.6 - [Release notes](https://github.com/webpack/sass-loader/releases) - [Changelog](https://github.com/webpack/sass-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/sass-loader/compare/v16.0.5...v16.0.6) Updates `semver` from 7.7.1 to 7.7.3 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](https://github.com/npm/node-semver/compare/v7.7.1...v7.7.3) Updates `@types/semver` from 7.5.8 to 7.7.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver) Updates `ses` from 1.12.0 to 1.14.0 - [Release notes](https://github.com/endojs/endo/releases) - [Changelog](https://github.com/endojs/endo/blob/master/packages/ses/CHANGELOG.md) - [Commits](https://github.com/endojs/endo/commits/ses@1.14.0/packages/ses) Updates `yup` from 1.6.1 to 1.7.1 - [Release notes](https://github.com/jquense/yup/releases) - [Changelog](https://github.com/jquense/yup/blob/master/CHANGELOG.md) - [Commits](https://github.com/jquense/yup/commits) Updates `@playwright/test` from 1.49.0 to 1.57.0 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.49.0...v1.57.0) Updates `@types/semver` from 7.5.8 to 7.7.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver) Updates `terser-webpack-plugin` from 5.3.14 to 5.3.16 - [Release notes](https://github.com/webpack/terser-webpack-plugin/releases) - [Changelog](https://github.com/webpack/terser-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/terser-webpack-plugin/compare/v5.3.14...v5.3.16) Updates `url` from 0.11.1 to 0.11.4 - [Commits](https://github.com/defunctzombie/node-url/compare/v0.11.1...v0.11.4) Updates `@blockaid/client` from 0.31.0 to 0.65.0 - [Release notes](https://github.com/blockaid-official/blockaid-client-node/releases) - [Changelog](https://github.com/blockaid-official/blockaid-client-node/blob/main/CHANGELOG.md) - [Commits](https://github.com/blockaid-official/blockaid-client-node/compare/v0.31.0...v0.65.0) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `prettier` from 3.5.1 to 3.7.4 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.7.4) Updates `typescript` from 5.7.3 to 5.9.3 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Commits](https://github.com/microsoft/TypeScript/compare/v5.7.3...v5.9.3) Updates `@lavamoat/allow-scripts` from 3.3.1 to 3.4.1 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.1/packages/allow-scripts) Updates `@ledgerhq/hw-app-str` from 7.2.0 to 7.3.0 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-app-str@7.2.0...@ledgerhq/hw-app-str@7.3.0) Updates `@ledgerhq/hw-transport-webhid` from 6.30.6 to 6.30.11 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-transport-webhid@6.30.6...@ledgerhq/hw-transport-webhid@6.30.11) Updates `@reduxjs/toolkit` from 2.5.0 to 2.11.2 - [Release notes](https://github.com/reduxjs/redux-toolkit/releases) - [Commits](https://github.com/reduxjs/redux-toolkit/compare/v2.5.0...v2.11.2) Updates `@testing-library/react` from 16.3.0 to 16.3.1 - [Release notes](https://github.com/testing-library/react-testing-library/releases) - [Changelog](https://github.com/testing-library/react-testing-library/blob/main/CHANGELOG.md) - [Commits](https://github.com/testing-library/react-testing-library/compare/v16.3.0...v16.3.1) Updates `@types/chrome` from 0.0.287 to 0.1.32 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/chrome) Updates `@types/lodash` from 4.17.16 to 4.17.21 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/lodash) Updates `@types/react` from 19.0.12 to 19.2.7 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `@types/react-dom` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `@types/webextension-polyfill` from 0.12.0 to 0.12.4 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/webextension-polyfill) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `concurrently` from 9.1.2 to 9.2.1 - [Release notes](https://github.com/open-cli-tools/concurrently/releases) - [Commits](https://github.com/open-cli-tools/concurrently/compare/v9.1.2...v9.2.1) Updates `copy-webpack-plugin` from 13.0.0 to 13.0.1 - [Release notes](https://github.com/webpack-contrib/copy-webpack-plugin/releases) - [Changelog](https://github.com/webpack/copy-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/copy-webpack-plugin/compare/v13.0.0...v13.0.1) Updates `dotenv-webpack` from 8.1.0 to 8.1.1 - [Release notes](https://github.com/mrsteele/dotenv-webpack/releases) - [Commits](https://github.com/mrsteele/dotenv-webpack/compare/v8.1.0...v8.1.1) Updates `formik` from 2.4.6 to 2.4.9 - [Release notes](https://github.com/jaredpalmer/formik/releases) - [Commits](https://github.com/jaredpalmer/formik/compare/formik@2.4.6...formik@2.4.9) Updates `html-webpack-plugin` from 5.6.3 to 5.6.5 - [Release notes](https://github.com/jantimon/html-webpack-plugin/releases) - [Changelog](https://github.com/jantimon/html-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/jantimon/html-webpack-plugin/compare/v5.6.3...v5.6.5) Updates `i18next` from 25.0.1 to 25.7.3 - [Release notes](https://github.com/i18next/i18next/releases) - [Changelog](https://github.com/i18next/i18next/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next/compare/v25.0.1...v25.7.3) Updates `i18next-browser-languagedetector` from 8.0.5 to 8.2.0 - [Changelog](https://github.com/i18next/i18next-browser-languageDetector/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next-browser-languageDetector/compare/v8.0.5...v8.2.0) Updates `js-yaml` from 4.1.0 to 4.1.1 - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1) Updates `mini-css-extract-plugin` from 2.9.2 to 2.9.4 - [Release notes](https://github.com/webpack-contrib/mini-css-extract-plugin/releases) - [Changelog](https://github.com/webpack/mini-css-extract-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/mini-css-extract-plugin/compare/v2.9.2...v2.9.4) Updates `prettier` from 3.5.1 to 3.7.4 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.7.4) Updates `pretty-quick` from 4.0.0 to 4.2.2 - [Release notes](https://github.com/prettier/pretty-quick/releases) - [Changelog](https://github.com/prettier/pretty-quick/blob/v4.2.2/CHANGELOG.md) - [Commits](https://github.com/prettier/pretty-quick/compare/v4.0.0...v4.2.2) Updates `react` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.3/packages/react) Updates `react-dom` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.3/packages/react-dom) Updates `react-router-dom` from 7.5.1 to 7.11.0 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@7.11.0/packages/react-router-dom) Updates `sass` from 1.86.3 to 1.97.1 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.86.3...1.97.1) Updates `sass-loader` from 16.0.5 to 16.0.6 - [Release notes](https://github.com/webpack/sass-loader/releases) - [Changelog](https://github.com/webpack/sass-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/sass-loader/compare/v16.0.5...v16.0.6) Updates `semver` from 7.7.1 to 7.7.3 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](https://github.com/npm/node-semver/compare/v7.7.1...v7.7.3) Updates `ses` from 1.12.0 to 1.14.0 - [Release notes](https://github.com/endojs/endo/releases) - [Changelog](https://github.com/endojs/endo/blob/master/packages/ses/CHANGELOG.md) - [Commits](https://github.com/endojs/endo/commits/ses@1.14.0/packages/ses) Updates `yup` from 1.6.1 to 1.7.1 - [Release notes](https://github.com/jquense/yup/releases) - [Changelog](https://github.com/jquense/yup/blob/master/CHANGELOG.md) - [Commits](https://github.com/jquense/yup/commits) Updates `@lavamoat/allow-scripts` from 3.3.1 to 3.4.1 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.1/packages/allow-scripts) Updates `@playwright/test` from 1.49.0 to 1.57.0 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.49.0...v1.57.0) Updates `@types/semver` from 7.5.8 to 7.7.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver) Updates `terser-webpack-plugin` from 5.3.14 to 5.3.16 - [Release notes](https://github.com/webpack/terser-webpack-plugin/releases) - [Changelog](https://github.com/webpack/terser-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/terser-webpack-plugin/compare/v5.3.14...v5.3.16) Updates `url` from 0.11.1 to 0.11.4 - [Commits](https://github.com/defunctzombie/node-url/compare/v0.11.1...v0.11.4) Updates `prettier` from 3.5.3 to 3.7.4 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.7.4) Updates `typescript` from 5.8.3 to 5.9.3 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Commits](https://github.com/microsoft/TypeScript/compare/v5.7.3...v5.9.3) Updates `@lavamoat/allow-scripts` from 3.3.2 to 3.4.1 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.1/packages/allow-scripts) Updates `@blockaid/client` from 0.31.0 to 0.65.0 - [Release notes](https://github.com/blockaid-official/blockaid-client-node/releases) - [Changelog](https://github.com/blockaid-official/blockaid-client-node/blob/main/CHANGELOG.md) - [Commits](https://github.com/blockaid-official/blockaid-client-node/compare/v0.31.0...v0.65.0) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `@blockaid/client` from 0.31.0 to 0.65.0 - [Release notes](https://github.com/blockaid-official/blockaid-client-node/releases) - [Changelog](https://github.com/blockaid-official/blockaid-client-node/blob/main/CHANGELOG.md) - [Commits](https://github.com/blockaid-official/blockaid-client-node/compare/v0.31.0...v0.65.0) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `prettier` from 3.5.3 to 3.7.4 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.7.4) Updates `typescript` from 5.8.3 to 5.9.3 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Commits](https://github.com/microsoft/TypeScript/compare/v5.7.3...v5.9.3) Updates `@lavamoat/allow-scripts` from 3.3.2 to 3.4.1 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.1/packages/allow-scripts) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `prettier` from 3.5.3 to 3.7.4 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.7.4) Updates `@lavamoat/allow-scripts` from 3.3.2 to 3.4.1 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.1/packages/allow-scripts) Updates `prettier` from 3.5.3 to 3.7.4 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.7.4) Updates `pretty-quick` from 4.1.1 to 4.2.2 - [Release notes](https://github.com/prettier/pretty-quick/releases) - [Changelog](https://github.com/prettier/pretty-quick/blob/v4.2.2/CHANGELOG.md) - [Commits](https://github.com/prettier/pretty-quick/compare/v4.0.0...v4.2.2) Updates `@lavamoat/allow-scripts` from 3.3.2 to 3.4.1 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.1/packages/allow-scripts) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `react` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.3/packages/react) Updates `@types/react` from 19.0.12 to 19.2.7 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `react-dom` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.3/packages/react-dom) Updates `@types/react-dom` from 19.1.2 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `@ledgerhq/hw-app-str` from 7.2.0 to 7.3.0 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-app-str@7.2.0...@ledgerhq/hw-app-str@7.3.0) Updates `@ledgerhq/hw-transport-webhid` from 6.30.6 to 6.30.11 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-transport-webhid@6.30.6...@ledgerhq/hw-transport-webhid@6.30.11) Updates `@reduxjs/toolkit` from 2.5.0 to 2.11.2 - [Release notes](https://github.com/reduxjs/redux-toolkit/releases) - [Commits](https://github.com/reduxjs/redux-toolkit/compare/v2.5.0...v2.11.2) Updates `@testing-library/react` from 16.3.0 to 16.3.1 - [Release notes](https://github.com/testing-library/react-testing-library/releases) - [Changelog](https://github.com/testing-library/react-testing-library/blob/main/CHANGELOG.md) - [Commits](https://github.com/testing-library/react-testing-library/compare/v16.3.0...v16.3.1) Updates `@types/chrome` from 0.0.287 to 0.1.32 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/chrome) Updates `@types/lodash` from 4.17.16 to 4.17.21 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/lodash) Updates `@types/webextension-polyfill` from 0.12.0 to 0.12.4 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/webextension-polyfill) Updates `concurrently` from 9.1.2 to 9.2.1 - [Release notes](https://github.com/open-cli-tools/concurrently/releases) - [Commits](https://github.com/open-cli-tools/concurrently/compare/v9.1.2...v9.2.1) Updates `copy-webpack-plugin` from 13.0.0 to 13.0.1 - [Release notes](https://github.com/webpack-contrib/copy-webpack-plugin/releases) - [Changelog](https://github.com/webpack/copy-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/copy-webpack-plugin/compare/v13.0.0...v13.0.1) Updates `dotenv-webpack` from 8.1.0 to 8.1.1 - [Release notes](https://github.com/mrsteele/dotenv-webpack/releases) - [Commits](https://github.com/mrsteele/dotenv-webpack/compare/v8.1.0...v8.1.1) Updates `formik` from 2.4.6 to 2.4.9 - [Release notes](https://github.com/jaredpalmer/formik/releases) - [Commits](https://github.com/jaredpalmer/formik/compare/formik@2.4.6...formik@2.4.9) Updates `html-webpack-plugin` from 5.6.3 to 5.6.5 - [Release notes](https://github.com/jantimon/html-webpack-plugin/releases) - [Changelog](https://github.com/jantimon/html-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/jantimon/html-webpack-plugin/compare/v5.6.3...v5.6.5) Updates `i18next` from 25.0.1 to 25.7.3 - [Release notes](https://github.com/i18next/i18next/releases) - [Changelog](https://github.com/i18next/i18next/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next/compare/v25.0.1...v25.7.3) Updates `i18next-browser-languagedetector` from 8.0.5 to 8.2.0 - [Changelog](https://github.com/i18next/i18next-browser-languageDetector/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next-browser-languageDetector/compare/v8.0.5...v8.2.0) Updates `mini-css-extract-plugin` from 2.9.2 to 2.9.4 - [Release notes](https://github.com/webpack-contrib/mini-css-extract-plugin/releases) - [Changelog](https://github.com/webpack/mini-css-extract-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/mini-css-extract-plugin/compare/v2.9.2...v2.9.4) Updates `react-router-dom` from 7.5.1 to 7.11.0 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@7.11.0/packages/react-router-dom) Updates `sass` from 1.86.3 to 1.97.1 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.86.3...1.97.1) Updates `sass-loader` from 16.0.5 to 16.0.6 - [Release notes](https://github.com/webpack/sass-loader/releases) - [Changelog](https://github.com/webpack/sass-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/sass-loader/compare/v16.0.5...v16.0.6) Updates `semver` from 7.7.1 to 7.7.3 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](https://github.com/npm/node-semver/compare/v7.7.1...v7.7.3) Updates `@types/semver` from 7.5.8 to 7.7.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver) Updates `ses` from 1.12.0 to 1.14.0 - [Release notes](https://github.com/endojs/endo/releases) - [Changelog](https://github.com/endojs/endo/blob/master/packages/ses/CHANGELOG.md) - [Commits](https://github.com/endojs/endo/commits/ses@1.14.0/packages/ses) Updates `yup` from 1.6.1 to 1.7.1 - [Release notes](https://github.com/jquense/yup/releases) - [Changelog](https://github.com/jquense/yup/blob/master/CHANGELOG.md) - [Commits](https://github.com/jquense/yup/commits) Updates `@playwright/test` from 1.49.0 to 1.57.0 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.49.0...v1.57.0) Updates `@types/semver` from 7.5.8 to 7.7.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver) Updates `terser-webpack-plugin` from 5.3.14 to 5.3.16 - [Release notes](https://github.com/webpack/terser-webpack-plugin/releases) - [Changelog](https://github.com/webpack/terser-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/terser-webpack-plugin/compare/v5.3.14...v5.3.16) Updates `url` from 0.11.1 to 0.11.4 - [Commits](https://github.com/defunctzombie/node-url/compare/v0.11.1...v0.11.4) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `prettier` from 3.5.3 to 3.7.4 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.7.4) Updates `@lavamoat/allow-scripts` from 3.3.2 to 3.4.1 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.1/packages/allow-scripts) Updates `@ledgerhq/hw-app-str` from 7.2.0 to 7.3.0 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-app-str@7.2.0...@ledgerhq/hw-app-str@7.3.0) Updates `@ledgerhq/hw-transport-webhid` from 6.30.6 to 6.30.11 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-transport-webhid@6.30.6...@ledgerhq/hw-transport-webhid@6.30.11) Updates `@reduxjs/toolkit` from 2.5.0 to 2.11.2 - [Release notes](https://github.com/reduxjs/redux-toolkit/releases) - [Commits](https://github.com/reduxjs/redux-toolkit/compare/v2.5.0...v2.11.2) Updates `@testing-library/react` from 16.3.0 to 16.3.1 - [Release notes](https://github.com/testing-library/react-testing-library/releases) - [Changelog](https://github.com/testing-library/react-testing-library/blob/main/CHANGELOG.md) - [Commits](https://github.com/testing-library/react-testing-library/compare/v16.3.0...v16.3.1) Updates `@types/chrome` from 0.0.287 to 0.1.32 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/chrome) Updates `@types/lodash` from 4.17.16 to 4.17.21 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/lodash) Updates `@types/react` from 19.0.12 to 19.2.7 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `@types/react-dom` from 19.1.2 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `@types/webextension-polyfill` from 0.12.0 to 0.12.4 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/webextension-polyfill) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `concurrently` from 9.1.2 to 9.2.1 - [Release notes](https://github.com/open-cli-tools/concurrently/releases) - [Commits](https://github.com/open-cli-tools/concurrently/compare/v9.1.2...v9.2.1) Updates `copy-webpack-plugin` from 13.0.0 to 13.0.1 - [Release notes](https://github.com/webpack-contrib/copy-webpack-plugin/releases) - [Changelog](https://github.com/webpack/copy-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/copy-webpack-plugin/compare/v13.0.0...v13.0.1) Updates `dotenv-webpack` from 8.1.0 to 8.1.1 - [Release notes](https://github.com/mrsteele/dotenv-webpack/releases) - [Commits](https://github.com/mrsteele/dotenv-webpack/compare/v8.1.0...v8.1.1) Updates `formik` from 2.4.6 to 2.4.9 - [Release notes](https://github.com/jaredpalmer/formik/releases) - [Commits](https://github.com/jaredpalmer/formik/compare/formik@2.4.6...formik@2.4.9) Updates `html-webpack-plugin` from 5.6.3 to 5.6.5 - [Release notes](https://github.com/jantimon/html-webpack-plugin/releases) - [Changelog](https://github.com/jantimon/html-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/jantimon/html-webpack-plugin/compare/v5.6.3...v5.6.5) Updates `i18next` from 25.0.1 to 25.7.3 - [Release notes](https://github.com/i18next/i18next/releases) - [Changelog](https://github.com/i18next/i18next/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next/compare/v25.0.1...v25.7.3) Updates `i18next-browser-languagedetector` from 8.0.5 to 8.2.0 - [Changelog](https://github.com/i18next/i18next-browser-languageDetector/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next-browser-languageDetector/compare/v8.0.5...v8.2.0) Updates `mini-css-extract-plugin` from 2.9.2 to 2.9.4 - [Release notes](https://github.com/webpack-contrib/mini-css-extract-plugin/releases) - [Changelog](https://github.com/webpack/mini-css-extract-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/mini-css-extract-plugin/compare/v2.9.2...v2.9.4) Updates `prettier` from 3.5.3 to 3.7.4 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.7.4) Updates `pretty-quick` from 4.1.1 to 4.2.2 - [Release notes](https://github.com/prettier/pretty-quick/releases) - [Changelog](https://github.com/prettier/pretty-quick/blob/v4.2.2/CHANGELOG.md) - [Commits](https://github.com/prettier/pretty-quick/compare/v4.0.0...v4.2.2) Updates `react` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.3/packages/react) Updates `react-dom` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.3/packages/react-dom) Updates `react-router-dom` from 7.5.1 to 7.11.0 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@7.11.0/packages/react-router-dom) Updates `sass` from 1.86.3 to 1.97.1 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.86.3...1.97.1) Updates `sass-loader` from 16.0.5 to 16.0.6 - [Release notes](https://github.com/webpack/sass-loader/releases) - [Changelog](https://github.com/webpack/sass-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/sass-loader/compare/v16.0.5...v16.0.6) Updates `semver` from 7.7.1 to 7.7.3 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](https://github.com/npm/node-semver/compare/v7.7.1...v7.7.3) Updates `ses` from 1.12.0 to 1.14.0 - [Release notes](https://github.com/endojs/endo/releases) - [Changelog](https://github.com/endojs/endo/blob/master/packages/ses/CHANGELOG.md) - [Commits](https://github.com/endojs/endo/commits/ses@1.14.0/packages/ses) Updates `yup` from 1.6.1 to 1.7.1 - [Release notes](https://github.com/jquense/yup/releases) - [Changelog](https://github.com/jquense/yup/blob/master/CHANGELOG.md) - [Commits](https://github.com/jquense/yup/commits) Updates `@lavamoat/allow-scripts` from 3.3.2 to 3.4.1 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.1/packages/allow-scripts) Updates `@playwright/test` from 1.49.0 to 1.57.0 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.49.0...v1.57.0) Updates `@types/semver` from 7.5.8 to 7.7.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver) Updates `terser-webpack-plugin` from 5.3.14 to 5.3.16 - [Release notes](https://github.com/webpack/terser-webpack-plugin/releases) - [Changelog](https://github.com/webpack/terser-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/terser-webpack-plugin/compare/v5.3.14...v5.3.16) Updates `url` from 0.11.1 to 0.11.4 - [Commits](https://github.com/defunctzombie/node-url/compare/v0.11.1...v0.11.4) --- updated-dependencies: - dependency-name: "@babel/core" dependency-version: 7.28.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@babel/eslint-parser" dependency-version: 7.28.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@babel/plugin-proposal-optional-chaining" dependency-version: 7.21.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@babel/preset-env" dependency-version: 7.28.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@babel/preset-react" dependency-version: 7.28.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@babel/preset-typescript" dependency-version: 7.28.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@testing-library/dom" dependency-version: 10.4.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@testing-library/jest-dom" dependency-version: 6.9.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@typescript-eslint/eslint-plugin" dependency-version: 8.51.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@typescript-eslint/parser" dependency-version: 8.51.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@vercel/ncc" dependency-version: 0.38.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: eslint dependency-version: 9.39.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: eslint-config-prettier dependency-version: 10.1.8 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: eslint-plugin-import dependency-version: 2.32.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: eslint-plugin-prettier dependency-version: 5.5.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: eslint-plugin-react dependency-version: 7.37.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: eslint-webpack-plugin dependency-version: 5.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: got dependency-version: 14.6.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: jest-localstorage-mock dependency-version: 2.4.26 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: prettier dependency-version: 3.7.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: pretty-quick dependency-version: 4.2.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: ts-loader dependency-version: 9.5.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: typescript dependency-version: 5.9.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: webpack dependency-version: 5.104.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: webpack-dev-server dependency-version: 5.2.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@lavamoat/allow-scripts" dependency-version: 3.4.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@lavamoat/preinstall-always-fail" dependency-version: 2.1.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: jest-fixed-jsdom dependency-version: 0.0.11 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@blockaid/client" dependency-version: 0.65.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: bignumber.js dependency-version: 9.3.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@docusaurus/core" dependency-version: 3.9.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@docusaurus/preset-classic" dependency-version: 3.9.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: react dependency-version: 19.2.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@types/react" dependency-version: 19.2.7 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: react-dom dependency-version: 19.2.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@types/react-dom" dependency-version: 19.2.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: react-is dependency-version: 19.2.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: styled-components dependency-version: 6.1.19 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@ledgerhq/hw-app-str" dependency-version: 7.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@ledgerhq/hw-transport-webhid" dependency-version: 6.30.11 dependency-type: direct:production update-type: version-update:semver-patch de... Signed-off-by: dependabot[bot] <support@github.com>

socket-security · 2026-01-11T02:35:55Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		License policy violation: npm `@csstools/postcss-alpha-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-alpha-function@1.0.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-alpha-function@1.0.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-color-function-display-p3-linear` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-color-function-display-p3-linear@1.0.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-color-function-display-p3-linear@1.0.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-color-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-color-function@4.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-color-function@4.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-color-mix-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-color-mix-function@3.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-color-mix-function@3.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-color-mix-variadic-function-arguments` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-color-mix-variadic-function-arguments@1.0.2` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-color-mix-variadic-function-arguments@1.0.2`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-content-alt-text` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-content-alt-text@2.0.8` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-content-alt-text@2.0.8`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-contrast-color-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-contrast-color-function@2.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-contrast-color-function@2.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-gradients-interpolation-method` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-gradients-interpolation-method@5.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-gradients-interpolation-method@5.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-hwb-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-hwb-function@4.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-hwb-function@4.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-ic-unit` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-ic-unit@4.0.4` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-ic-unit@4.0.4`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-light-dark-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-light-dark-function@2.0.11` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-light-dark-function@2.0.11`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-normalize-display-values` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-normalize-display-values@4.0.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-normalize-display-values@4.0.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-oklab-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-oklab-function@4.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-oklab-function@4.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-position-area-property` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-position-area-property@1.0.0` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-position-area-property@1.0.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-progressive-custom-properties` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-progressive-custom-properties@4.2.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-progressive-custom-properties@4.2.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-property-rule-prelude-list` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-property-rule-prelude-list@1.0.0` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-property-rule-prelude-list@1.0.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-relative-color-syntax` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-relative-color-syntax@3.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-relative-color-syntax@3.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-syntax-descriptor-syntax-production` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-syntax-descriptor-syntax-production@1.0.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-syntax-descriptor-syntax-production@1.0.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-system-ui-font-family` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-system-ui-font-family@1.0.0` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-system-ui-font-family@1.0.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `caniuse-lite` under CC-BY-4.0 License: CC-BY-4.0 - the applicable license policy does not allow this license (4) (npm metadata) License: CC-BY-4.0 - the applicable license policy does not allow this license (4) (package/LICENSE) License: CC-BY-4.0 - the applicable license policy does not allow this license (4) (package/package.json) From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/caniuse-lite@1.0.30001763` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/caniuse-lite@1.0.30001763`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `cssdb` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/cssdb@8.6.0` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/cssdb@8.6.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `jest-localstorage-mock` under BSD-3-Clause Location: Package overview From: package.json → `npm/jest-localstorage-mock@2.4.26` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/jest-localstorage-mock@2.4.26`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `json-schema` Location: Package overview From: `?` → `npm/@docusaurus/preset-classic@3.9.2` → `npm/json-schema@0.4.0` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/json-schema@0.4.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `marked` under BSD-3-Clause AND MIT Location: Package overview From: `?` → `npm/@docusaurus/preset-classic@3.9.2` → `npm/marked@16.4.2` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/marked@16.4.2`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `node-gyp` Location: Package overview From: `?` → `npm/@lavamoat/allow-scripts@3.4.1` → `npm/node-gyp@12.1.0` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/node-gyp@12.1.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `playwright-core` Location: Package overview From: `?` → `npm/@playwright/test@1.57.0` → `npm/playwright-core@1.57.0` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/playwright-core@1.57.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `postcss-color-functional-notation` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/postcss-color-functional-notation@7.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/postcss-color-functional-notation@7.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
See 7 more rows in the dashboard

View full report

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jan 4, 2026

dependabot bot force-pushed the dependabot/npm_and_yarn/minor-and-patch-5d1547f645 branch from b413acb to 838bc62 Compare January 8, 2026 01:28

dependabot bot force-pushed the dependabot/npm_and_yarn/minor-and-patch-5d1547f645 branch from 838bc62 to ffa195f Compare January 11, 2026 02:35

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the minor-and-patch group across 3 directories with 64 updates #2483

Bump the minor-and-patch group across 3 directories with 64 updates #2483

dependabot bot commented on behalf of github Jan 4, 2026 •

edited

Loading

Uh oh!

socket-security bot commented Jan 4, 2026 •

edited

Loading

Uh oh!

socket-security bot commented Jan 11, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Bump the minor-and-patch group across 3 directories with 64 updates #2483

Are you sure you want to change the base?

Bump the minor-and-patch group across 3 directories with 64 updates #2483

Conversation

dependabot bot commented on behalf of github Jan 4, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

Committers: 8

v7.28.4 (2025-09-05)

🏠 Internal

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

v7.28.4 (2025-09-05)

🏠 Internal

v7.28.3 (2025-08-14)

👓 Spec Compliance

🐛 Bug Fix

💅 Polish

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

Committers: 8

v7.28.4 (2025-09-05)

🏠 Internal

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

v7.28.4 (2025-09-05)

🏠 Internal

v7.28.3 (2025-08-14)

👓 Spec Compliance

🐛 Bug Fix

💅 Polish

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

Committers: 8

v7.28.4 (2025-09-05)

🏠 Internal

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

v7.28.4 (2025-09-05)

🏠 Internal

v7.28.3 (2025-08-14)

👓 Spec Compliance

🐛 Bug Fix

💅 Polish

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

Committers: 8

v7.28.4 (2025-09-05)

🏠 Internal

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

v7.28.4 (2025-09-05)

🏠 Internal

v7.28.3 (2025-08-14)

👓 Spec Compliance

dependabot bot commented on behalf of github Jan 4, 2026 •

edited

Loading

socket-security bot commented Jan 4, 2026 •

edited

Loading