Skip to content

Bump the all-dependencies group across 1 directory with 9 updates #31

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump the all-dependencies group across 1 directory with 9 updates #31

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 4, 2025

Bumps the all-dependencies group with 9 updates in the / directory:

Package From To
@modelcontextprotocol/sdk 1.12.3 1.17.1
@types/glob 8.1.0 9.0.0
dotenv 16.5.0 17.2.1
zod 3.25.64 4.0.14
@biomejs/biome 1.9.4 2.1.3
@types/node 24.0.3 24.2.0
jest 30.0.0 30.0.5
ts-jest 29.4.0 29.4.1
typescript 5.8.3 5.9.2

Updates @modelcontextprotocol/sdk from 1.12.3 to 1.17.1

Release notes

Sourced from @​modelcontextprotocol/sdk's releases.

1.17.1

What's Changed

Full Changelog: modelcontextprotocol/typescript-sdk@1.17.0...1.17.1

1.17.0

What's Changed

New Contributors 🙏

Full Changelog: modelcontextprotocol/typescript-sdk@1.16.0...1.17.0

1.16.0

What's Changed

New Contributors 🙏

... (truncated)

Commits
  • 0551cc5 1.17.1 (#831)
  • 31acdcb fix: prevent responses being sent to wrong client when multiple transports co...
  • ee16173 (fix): Update fallbackRequestHandler type to match _requestHandlers leaves ty...
  • 222db4a Bump version 1.17.0 (#810)
  • b8ec665 Bump form-data from 4.0.2 to 4.0.4 in the npm_and_yarn group across 1 directo...
  • 1fc452e fix: remove extraneous code block in README.md (#791)
  • bb7cccc feat: support oidc discovery in client sdk (#652)
  • 62c608d fix: Explicitly declare accpet type to json when exchanging oauth token (#801)
  • 8316825 Fix indent (#807)
  • 8e15edc update codeowners (#803)
  • Additional commits viewable in compare view

Updates @types/glob from 8.1.0 to 9.0.0

Commits

Updates dotenv from 16.5.0 to 17.2.1

Changelog

Sourced from dotenv's changelog.

17.2.1 (2025-07-24)

Changed

  • Fix clickable tip links by removing parentheses (#897)

17.2.0 (2025-07-09)

Added

  • Optionally specify DOTENV_CONFIG_QUIET=true in your environment or .env file to quiet the runtime log (#889)
  • Just like dotenv any DOTENV_CONFIG_ environment variables take precedence over any code set options like ({quiet: false})
# .env
DOTENV_CONFIG_QUIET=true
HELLO="World"
// index.js
require('dotenv').config()
console.log(`Hello ${process.env.HELLO}`)
$ node index.js
Hello World
or
$ DOTENV_CONFIG_QUIET=true node index.js

17.1.0 (2025-07-07)

Added

  • Add additional security and configuration tips to the runtime log (#884)
  • Dim the tips text from the main injection information text
const TIPS = [
  '🔐 encrypt with dotenvx: https://dotenvx.com',
  '🔐 prevent committing .env to code: https://dotenvx.com/precommit',
  '🔐 prevent building .env in docker: https://dotenvx.com/prebuild',
  '🛠️  run anywhere with `dotenvx run -- yourcommand`',
  '⚙️  specify custom .env file path with { path: \'/custom/path/.env\' }',
  '⚙️  enable debug logging with { debug: true }',
  '⚙️  override existing env vars with { override: true }',
  '⚙️  suppress all logs with { quiet: true }',
  '⚙️  write to custom object with { processEnv: myObject }',
</tr></table>

... (truncated)

Commits

Updates zod from 3.25.64 to 4.0.14

Release notes

Sourced from zod's releases.

v4.0.14

Commits:

  • 99391a844271558e0f1736c9550375e82e630bbd Docs: Fix typo (#5005)
  • e25303e98c8d13ea96c3296507c564011f403ffe Docs: fix typo (#5008)
  • dbb05ef990c86ec6b1f6eac11b91ec7572e29c89 Add JSON Schema draft-04 output (#4811)
  • b8257d7d1f51dd3cb4033a58271bb6ac8e3678c7 Improve tuple recursive inference.
  • 9bdbc2f10d466050421a8e28c4b95a8a5776d150 Avoid infinite loops in defineLazy. Fixes #4994.
  • af96ad4700879b0d6e390a0c65ded4e700049cb9 4.0.14

v4.0.13

Commits:

  • 362eb33093e9c5f306eeec95e36985a99aba8fc7 Fix optional + pipe handling. Closes #5002. v4.0.13

v4.0.12

Commits:

  • ff83fc916ec2b35c0008a48782fa14f84293149d Add eslint-plugin-import-zod (#4848)
  • 7c9ce388ae39b2324c5ad05420ecf4732ebca6fe Update docs for z.property check (#4863)
  • c432577ad1a7201631ae0a4d80e945fc4937bcc9 docs: add jwt schema docs (#4867)
  • 35e6a6f6d64d7d5ba58c4cb8c80105759b977c9b Add llms.txt (#4915)
  • 3ac7bf00d0d924d1afa1031b798bdd72b59117db Clean up Edit this Page
  • 60a9372414955094b84aae2f30b491a039780b7c Implement llms-full.txt (#5004)
  • 73a1970e7fd0cdcb2ffac3f6f7db85da849ee3d8 4.0.12

v4.0.11

Commits:

  • 8e6a5f8e48837fb403deb4025935e97a758ad6ca Fix “Edit on Github” link (#4997)
  • 930a2f68d799889df4c1f662dfe61934db84fdd1 Fix number of errors in doc (#4993)
  • c762dbb4fdb249cfddccdd69812da3f4b659df67 feat(locale): Add Yoruba (yo) locale (#4996)
  • 9a34a3a60d92c44f695b08e4c665209aa7160e24 Zod 4.0.11 (#4981)

v4.0.10

Commits:

  • 291c1ca9864570e68a6c104d869de467f665da86 Add should-build script
  • e32d99b54fff920c4b0b451e9099b472d20a3c4b Move should-build script
  • d4faf71b8cc156a49bae23fc09c4d54b88f22bd5 Add v3 docs (#4972)
  • dfae37195bed15dce84af0b17ef04cdc3704ef5e Update Jazz img on v3 docs
  • d6cd30d3898aaf592c6077464c1a45fd0f6f66d3 fix #4973 (#4974)
  • 18504960cdce29529e37415b87fed1732facf1ef Fix typo in valype (#4960)
  • 4ec2f8776193642d91814521d8a4c22bbb766cb1 Add Zod Playground to zod 4 ecosystem (#4975)
  • 2b571a21875e9e3299de261e512dad300878c3a1 Update docs z.enum with object literal example (#4967)
  • 813451db7fcf64c5322835984eded9bfe95be1da v4.0.10 (#4978)

v4.0.9

Commits:

... (truncated)

Commits

Updates @biomejs/biome from 1.9.4 to 2.1.3

Release notes

Sourced from @​biomejs/biome's releases.

Biome CLI v2.1.3

2.1.3

Patch Changes

  • #7057 634a667 Thanks @​mdevils! - Added the rule noVueReservedKeys, which prevents the use of reserved Vue keys.

    It prevents the use of Vue reserved keys such as those starting with # @biomejs/biome (like $el, $data, $props) and keys starting with _` in data properties, which can cause conflicts and unexpected behavior in Vue components.

    Invalid example
    <script>
export default {
  data: {
    $el: "",
    _foo: "bar",
  },
};
</script>
    <script>
export default {
  computed: {
    $data() {
      return this.someData;
    },
  },
};
</script>
    Valid examples
    <script>
export default {
  data() {
    return {
      message: "Hello Vue!",
      count: 0,
    };
  },
};
</script>

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

2.1.3

Patch Changes

  • #7057 634a667 Thanks @​mdevils! - Added the rule noVueReservedKeys, which prevents the use of reserved Vue keys.

    It prevents the use of Vue reserved keys such as those starting with like $el, $data, $props) and keys starting with \_ in data properties, which can cause conflicts and unexpected behavior in Vue components.

    Invalid example
    <script>
export default {
  data: {
    $el: "",
    _foo: "bar",
  },
};
</script>
    <script>
export default {
  computed: {
    $data() {
      return this.someData;
    },
  },
};
</script>
    Valid examples
    <script>
export default {
  data() {
    return {
      message: "Hello Vue!",
      count: 0,
    };
  },
};
</script>
    <script>

... (truncated)

Commits

Updates @types/node from 24.0.3 to 24.2.0

Commits

Updates jest from 30.0.0 to 30.0.5

Release notes

Sourced from jest's releases.

30.0.2

What's Changed

Fixes

  • [jest-matcher-utils] Make 'deepCyclicCopyObject' safer by setting descriptors to a null-prototype object (#15689)
  • [jest-util] Make garbage collection protection property writable (#15689)

Full Changelog: https://github.com/jestjs/jest/blob/main/CHANGELOG.md

Jest 30.0.1

What's Changed

Features

  • [jest-resolver] Implement the defaultAsyncResolver (#15679)

Fixes

  • [jest-resolver] Resolve builtin modules correctly (#15683)
  • [jest-environment-node, jest-util] Avoid setting globals cleanup protection symbol when feature is off (#15684)

Chore & Maintenance

  • [*] Remove and deprecate jest-repl package (#15673)
  • [jest-resolver] Replace custom isBuiltinModule with node's isBuiltin (#15685)

New Contributors

Full Changelog: https://github.com/jestjs/jest/blob/main/CHANGELOG.md

Changelog

Sourced from jest's changelog.

30.0.5

Features

  • [jest-config] Allow testMatch to take a string value
  • [jest-worker] Let workerIdleMemoryLimit accept 0 to always restart worker child processes

Fixes

  • [expect] Fix bigint error (#15702)

30.0.4

Features

  • [expect] The Inverse type is now exported (#15714)
  • [expect] feat: support async functions in toBe (#15704)

Fixes

  • [jest] jest --onlyFailures --listTests now correctly lists only failed tests (#15700)
  • [jest-snapshot] Handle line endings in snapshots (#15708)

30.0.3

Fixes

  • [jest-config] Fix ESM TS config loading in a CJS project (#15694)
  • [jest-core] jest --onlyFailures --listTests now correctly lists only failed tests(#15700)

Features

  • [jest-diff] Show non-printable control characters to diffs (#15696)

30.0.2

Fixes

  • [jest-matcher-utils] Make 'deepCyclicCopyObject' safer by setting descriptors to a null-prototype object (#15689)
  • [jest-util] Make garbage collection protection property writable (#15689)

30.0.1

Features

  • [jest-resolver] Implement the defaultAsyncResolver (#15679)

Fixes

  • [jest-resolver] Resolve builtin modules correctly (#15683)

... (truncated)

Commits

Updates ts-jest from 29.4.0 to 29.4.1

Release notes

Sourced from ts-jest's releases.

v29.4.1

Please refer to CHANGELOG.md for details.

Changelog

Sourced from ts-jest's changelog.

29.4.1 (2025-08-03)

Bug Fixes

  • fix: replace ejs with handlebars due to security issues (899c9b7), closes #4969
Commits
  • 9099745 chore(release): 29.4.1
  • 9f0b9f2 build(deps): Update dependency @​types/handlebars to ^4.1.0
  • 322a3c7 ci: add code scanning workflow
  • 899c9b7 fix: replace ejs with handlebars due to security issues
  • 953f239 build(deps): Update dependency memfs to ^4.36.0
  • 8459897 build(deps): Update dependency memfs to ^4.35.0
  • 3c41410 build(deps): Update dependency memfs to ^4.34.0
  • d50ff1e build(deps): Update dependency memfs to ^4.32.0
  • 5984f70 build(deps): Update dependency memfs to ^4.30.1
  • 18b9665 build(deps): Update Jest packages to ^30.0.5
  • Additional commits viewable in compare view

Updates typescript from 5.8.3 to 5.9.2

Release notes

Sourced from typescript's releases.

TypeScript 5.9

For release notes, check out the release announcement

Downloads are available on:

TypeScript 5.9 RC

For release notes, check out the release announcement

Downloads are available on:

TypeScript 5.9 Beta

For release notes, check out the release announcement.

Downloads are available on:

Commits
  • be86783 Give more specific errors for verbatimModuleSyntax (#62113)
  • 22ef577 LEGO: Pull request from lego/hb_5378966c-b857-470a-8675-daebef4a6da1_20250714...
  • d5a414c Don't use noErrorTruncation when printing types with maximumLength set (#...
  • f14b5c8 Remove unused and confusing dom.iterable.d.ts file (#62037)
  • 2778e84 Restore AbortSignal.abort (#62086)
  • 65cb4bd LEGO: Pull request from lego/hb_5378966c-b857-470a-8675-daebef4a6da1_20250710...
  • 9e20e03 Clear out checker-level stacks on pop (#62016)
  • 87740bc Fix for Issue 61081 (#61221)
  • 833a8d4 Fix Symbol completion priority and cursor positioning (#61945)
  • 0018c9f LEGO: Pull request from lego/hb_5378966c-b857-470a-8675-daebef4a6da1_20250702...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the all-dependencies group across 1 directory with 9 updates
71fdf0e 
Bumps the all-dependencies group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk) | `1.12.3` | `1.17.1` |
| [@types/glob](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/glob) | `8.1.0` | `9.0.0` |
| [dotenv](https://github.com/motdotla/dotenv) | `16.5.0` | `17.2.1` |
| [zod](https://github.com/colinhacks/zod) | `3.25.64` | `4.0.14` |
| [@biomejs/biome](https://github.com/biomejs/biome/tree/HEAD/packages/@biomejs/biome) | `1.9.4` | `2.1.3` |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `24.0.3` | `24.2.0` |
| [jest](https://github.com/jestjs/jest/tree/HEAD/packages/jest) | `30.0.0` | `30.0.5` |
| [ts-jest](https://github.com/kulshekhar/ts-jest) | `29.4.0` | `29.4.1` |
| [typescript](https://github.com/microsoft/TypeScript) | `5.8.3` | `5.9.2` |



Updates `@modelcontextprotocol/sdk` from 1.12.3 to 1.17.1
- [Release notes](https://github.com/modelcontextprotocol/typescript-sdk/releases)
- [Commits](modelcontextprotocol/typescript-sdk@1.12.3...1.17.1)

Updates `@types/glob` from 8.1.0 to 9.0.0
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/glob)

Updates `dotenv` from 16.5.0 to 17.2.1
- [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md)
- [Commits](motdotla/dotenv@v16.5.0...v17.2.1)

Updates `zod` from 3.25.64 to 4.0.14
- [Release notes](https://github.com/colinhacks/zod/releases)
- [Commits](colinhacks/zod@v3.25.64...v4.0.14)

Updates `@biomejs/biome` from 1.9.4 to 2.1.3
- [Release notes](https://github.com/biomejs/biome/releases)
- [Changelog](https://github.com/biomejs/biome/blob/main/packages/@biomejs/biome/CHANGELOG.md)
- [Commits](https://github.com/biomejs/biome/commits/@biomejs/[email protected]/packages/@biomejs/biome)

Updates `@types/node` from 24.0.3 to 24.2.0
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Updates `jest` from 30.0.0 to 30.0.5
- [Release notes](https://github.com/jestjs/jest/releases)
- [Changelog](https://github.com/jestjs/jest/blob/main/CHANGELOG.md)
- [Commits](https://github.com/jestjs/jest/commits/v30.0.5/packages/jest)

Updates `ts-jest` from 29.4.0 to 29.4.1
- [Release notes](https://github.com/kulshekhar/ts-jest/releases)
- [Changelog](https://github.com/kulshekhar/ts-jest/blob/main/CHANGELOG.md)
- [Commits](kulshekhar/ts-jest@v29.4.0...v29.4.1)

Updates `typescript` from 5.8.3 to 5.9.2
- [Release notes](https://github.com/microsoft/TypeScript/releases)
- [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release-publish.yml)
- [Commits](microsoft/TypeScript@v5.8.3...v5.9.2)

---
updated-dependencies:
- dependency-name: "@modelcontextprotocol/sdk"
  dependency-version: 1.17.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: "@types/glob"
  dependency-version: 9.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: dotenv
  dependency-version: 17.2.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: zod
  dependency-version: 4.0.14
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: "@biomejs/biome"
  dependency-version: 2.1.3
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: all-dependencies
- dependency-name: "@types/node"
  dependency-version: 24.2.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: jest
  dependency-version: 30.0.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: ts-jest
  dependency-version: 29.4.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: typescript
  dependency-version: 5.9.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Aug 4, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants