Skip to content

chore(deps): bump the version-update-semver-minor group across 1 directory with 5 updates#201

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/version-update-semver-minor-aec52fdc64
Open

chore(deps): bump the version-update-semver-minor group across 1 directory with 5 updates#201
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/version-update-semver-minor-aec52fdc64

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor

Bumps the version-update-semver-minor group with 5 updates in the / directory:

Package From To
@sentry/nextjs 10.63.0 10.65.0
lucide-react 1.23.0 1.24.0
mongodb 7.4.0 7.5.0
react-hook-form 7.80.0 7.81.0
typescript-eslint 8.62.1 8.63.0

Updates @sentry/nextjs from 10.63.0 to 10.65.0

Release notes

Sourced from @​sentry/nextjs's releases.

10.65.0

  • feat(angular): Set url attributes on pageload and navigation spans (#21985)
  • feat(astro): Set url.template on pageload spans (#22011)
  • feat(aws-serverless): Replace OTel Lambda instrumentation with handler redirection (#22079)
  • feat(browser): Set url.path and url.full on pageload and navigation spans (#21952)
  • feat(bun): warn when externalizing instrumented deps (#21999)
  • feat(core): Require attributes on SerializedStreamedSpan (#22052)
  • feat(ember): Set url.template, url.path and url.full on router spans (#22095)
  • feat(mysql2): Instrument mysql2 >= 3.20.0 via native tracing channels (#21824)
  • feat(nextjs): Set url attributes on pageload and navigation spans (#22006)
  • feat(react): Set url.template, url.path and url.full on routing spans (#22087)
  • feat(react-router): Set url.template, url.path and url.full on pageload and navigation spans (#22018)
  • feat(remix): Set url.template on pageload and navigation spans (#22025)
  • feat(server-utils): Add orchestrion support for Vercel AI v4 (#22139)
  • feat(server-utils): Add requiresParentSpan option to bindTracingChannelToSpan (#22113)
  • feat(server-utils): Capture usage and output on streamed Vercel AI v7 spans (#22000)
  • feat(server-utils): Implement orchestrion-based express integration (#21889)
  • feat(server-utils): Instrument graphql v17 via native tracing channels (#21804)
  • feat(solid): Set url attributes on solid router and tanstack router spans (#22090)
  • feat(sveltekit): Set url.template, url.path and url.full on pageload and navigation spans (#22027)
  • feat(vue, nuxt): Set url.template and URL attributes on router spans (#22063)
  • fix(browser): Send web vital span sentry.segment.name attribute (#22024)
  • fix(cloudflare): Honor newTarget in instrumentDurableObjectWithSentry construct trap (#22104)
  • fix(opentelemetry): Fall back to 'sentry.origin': manual when backfilling OTel data (#22102)
  • fix(replay): Prevent rrweb recording from dying when the emit callback throws (#21409)
  • fix(replay): Skip client reports for replay failures after stop (#22177)
  • perf(vite): add fast component annotation transform (#22089)
  • ref(server-utils): Add orchestrion support for Vercel AI v5 (#21979)
  • chore: Add external contributor to CHANGELOG.md (#22111)
  • chore: Reinstate changelog anchor (#22022)
  • chore(cloudflare): Ignore import patterns (#22008)
  • chore(deps-dev): bump vite from 7.3.2 to 7.3.5 in /dev-packages/e2e-tests/test-applications/tanstackstart-react-orchestrion (#22041)
  • chore(deps): bump vite from 8.0.1 to 8.0.16 in /dev-packages/bundler-plugin-integration-tests/fixtures/vite8 (#21664)
  • chore(opentelemetry): Add worker as export | sort exports (#21859)
  • chore(size-limit): weekly auto-bump (#21812)
  • ci: Only run cloudflare & bundler plugin tests when necessary (#22130)
  • ci(deps): bump actions/checkout from 6 to 7 (#21898)
  • ci(deps): Bump anthropics/claude-code-action from 1.0.124 to 1.0.161 (#21896)
  • ci(deps): Bump getsentry/craft from 2.26.9 to 2.26.14 (#21900)
  • ci(deps): Bump getsentry/github-workflows/validate-pr from 71588ddf95134f804e82c5970a8098588e2eaecd to 4013fc6e1aeb1be1f9d3b4d232624f0ec1afa613 (#21897)
  • ci(deps): bump pnpm/action-setup from 5.0.0 to 6.0.9 (#21899)
  • feat(core): add isObjectLike guard and consolidate non-null-object checks (#22155)
  • feat(core): add uniq array util and consolidate call sites (#22152)
  • feat(deps): Bump @​growthbook/growthbook from 1.6.1 to 1.6.5 (#21940)
  • feat(deps): Bump @​opentelemetry/semantic-conventions from 1.41.1 to 1.42.0 in the opentelemetry group (#22147)
  • feat(deps): Bump dotenv from 16.0.3 to 17.4.2 (#22150)

... (truncated)

Changelog

Sourced from @​sentry/nextjs's changelog.

10.65.0

  • feat(angular): Set url attributes on pageload and navigation spans (#21985)
  • feat(astro): Set url.template on pageload spans (#22011)
  • feat(aws-serverless): Replace OTel Lambda instrumentation with handler redirection (#22079)
  • feat(browser): Set url.path and url.full on pageload and navigation spans (#21952)
  • feat(bun): warn when externalizing instrumented deps (#21999)
  • feat(core): Require attributes on SerializedStreamedSpan (#22052)
  • feat(ember): Set url.template, url.path and url.full on router spans (#22095)
  • feat(mysql2): Instrument mysql2 >= 3.20.0 via native tracing channels (#21824)
  • feat(nextjs): Set url attributes on pageload and navigation spans (#22006)
  • feat(react): Set url.template, url.path and url.full on routing spans (#22087)
  • feat(react-router): Set url.template, url.path and url.full on pageload and navigation spans (#22018)
  • feat(remix): Set url.template on pageload and navigation spans (#22025)
  • feat(server-utils): Add orchestrion support for Vercel AI v4 (#22139)
  • feat(server-utils): Add requiresParentSpan option to bindTracingChannelToSpan (#22113)
  • feat(server-utils): Capture usage and output on streamed Vercel AI v7 spans (#22000)
  • feat(server-utils): Implement orchestrion-based express integration (#21889)
  • feat(server-utils): Instrument graphql v17 via native tracing channels (#21804)
  • feat(solid): Set url attributes on solid router and tanstack router spans (#22090)
  • feat(sveltekit): Set url.template, url.path and url.full on pageload and navigation spans (#22027)
  • feat(vue, nuxt): Set url.template and URL attributes on router spans (#22063)
  • fix(browser): Send web vital span sentry.segment.name attribute (#22024)
  • fix(cloudflare): Honor newTarget in instrumentDurableObjectWithSentry construct trap (#22104)
  • fix(opentelemetry): Fall back to 'sentry.origin': manual when backfilling OTel data (#22102)
  • fix(replay): Prevent rrweb recording from dying when the emit callback throws (#21409)
  • fix(replay): Skip client reports for replay failures after stop (#22177)
  • perf(vite): add fast component annotation transform (#22089)
  • ref(server-utils): Add orchestrion support for Vercel AI v5 (#21979)
  • chore: Add external contributor to CHANGELOG.md (#22111)
  • chore: Reinstate changelog anchor (#22022)
  • chore(cloudflare): Ignore import patterns (#22008)
  • chore(deps-dev): bump vite from 7.3.2 to 7.3.5 in /dev-packages/e2e-tests/test-applications/tanstackstart-react-orchestrion (#22041)
  • chore(deps): bump vite from 8.0.1 to 8.0.16 in /dev-packages/bundler-plugin-integration-tests/fixtures/vite8 (#21664)
  • chore(opentelemetry): Add worker as export | sort exports (#21859)
  • chore(size-limit): weekly auto-bump (#21812)
  • ci: Only run cloudflare & bundler plugin tests when necessary (#22130)
  • ci(deps): bump actions/checkout from 6 to 7 (#21898)
  • ci(deps): Bump anthropics/claude-code-action from 1.0.124 to 1.0.161 (#21896)
  • ci(deps): Bump getsentry/craft from 2.26.9 to 2.26.14 (#21900)
  • ci(deps): Bump getsentry/github-workflows/validate-pr from 71588ddf95134f804e82c5970a8098588e2eaecd to 4013fc6e1aeb1be1f9d3b4d232624f0ec1afa613 (#21897)
  • ci(deps): bump pnpm/action-setup from 5.0.0 to 6.0.9 (#21899)
  • feat(core): add isObjectLike guard and consolidate non-null-object checks (#22155)
  • feat(core): add uniq array util and consolidate call sites (#22152)
  • feat(deps): Bump @​growthbook/growthbook from 1.6.1 to 1.6.5 (#21940)
  • feat(deps): Bump @​opentelemetry/semantic-conventions from 1.41.1 to 1.42.0 in the opentelemetry group (#22147)

... (truncated)

Commits
  • c66a815 release: 10.65.0
  • 018c570 Merge pull request #22179 from getsentry/prepare-release/10.65.0
  • 5a1e331 meta(changelog): Update changelog for 10.65.0
  • e934b44 feat(server-utils): Add orchestrion support for Vercel AI v4 (#22139)
  • 04bbb79 fix(replay): Skip client reports for replay failures after stop (#22177)
  • cb77f42 test: Remove fixed container_name from node integration test docker-compose f...
  • a84cc9d test(node-integration-tests): Surface early scenario exit instead of hanging ...
  • 88e3b32 feat(core): add isObjectLike guard and consolidate non-null-object checks (#2...
  • 7565c90 ref(nitro, nuxt): inline == null checks for nullish detection (#22154)
  • 256b9b9 feat(ember): Set url.template, url.path and url.full on router spans (#22095)
  • Additional commits viewable in compare view

Updates lucide-react from 1.23.0 to 1.24.0

Release notes

Sourced from lucide-react's releases.

Version 1.24.0

What's Changed

New Contributors

Full Changelog: lucide-icons/lucide@1.23.0...1.24.0

Commits

Updates mongodb from 7.4.0 to 7.5.0

Release notes

Sourced from mongodb's releases.

v7.5.0

7.5.0 (2026-07-07)

The MongoDB Node.js team is pleased to announce version 7.5.0 of the mongodb package!

Release Notes

Support for Queryable Encryption String Query GA in MongoDB 9.0

Queryable Encryption string queries are now available for MongoDB 9.0. Building on the technical preview introduced in earlier releases, this feature lets you run exact and range-style string matching against encrypted fields. As part of the promotion to GA, the API has been renamed:

  • The TextOpts API is replaced with StringOpts.
  • The TextPreview algorithm is replaced with String.
  • The prefix, suffix, and substring query types are now generally available.
  • The prefixPreview, suffixPreview, and substringPreview query types are deprecated and will be removed in a future release.

MongoClient.close() now closes in-use connections on all servers

Since v6.17.0, MongoClient.close() has eagerly closed checked-out (in-use) connections so that in-flight operations are interrupted promptly with a MongoClientClosedError instead of holding the client open. However, due to a bug, on replica sets and sharded clusters operations in flight on other servers were not interrupted, and their connections stayed open until the operations completed on their own. Calls to closeCheckedOutConnections() will now ensure all checked out connections are closed across all servers.

Thank you to @​Nepomuk5665 and @​sarthaksoni25 for bringing this to our attention/providing an initial implementation!

Features

  • NODE-7537: promote QE string queries (prefix/suffix/substring) (#4996) (dc4900c)

Bug Fixes

Documentation

We invite you to try the mongodb library immediately, and report any issues to the NODE project.

Changelog

Sourced from mongodb's changelog.

7.5.0 (2026-07-07)

Features

  • NODE-7537: promote QE string queries (prefix/suffix/substring) (#4996) (dc4900c)

Bug Fixes

Commits
  • c436831 chore(main): release 7.5.0 (#4978)
  • 910f9da docs(NODE-7635): clarify IWM options documentation (#4997)
  • 95572f3 chore(deps): bump drivers-evergreen-tools from 4b02eb0 to ea6e66a (#4995)
  • dc4900c feat(NODE-7537): promote QE string queries (prefix/suffix/substring) (#4996)
  • 72c0296 fix(NODE-7411): iterate all servers on close (#4967)
  • b6c60da chore(NODE-7520): update dependencies (#4962)
  • 88990e6 test(NODE-7028): fix flaky AbortSignal timing assertions (#4981)
  • 371579d fix(NODE-7171): capture resume token before resumeTokenChanged fires (#4973)
  • de45b94 test(NODE-7590): use connectionReady in waitUntilPoolsFilled (#4975)
  • 53e73a9 docs: add 7.4 docs (#4977)
  • See full diff in compare view

Updates react-hook-form from 7.80.0 to 7.81.0

Release notes

Sourced from react-hook-form's releases.

Version 7.81.0

⚜️ feat: FieldArray component (#13394)

<FieldArray
  control={control}
  name="test"
  render={({ fields }) => null}
/>

🐞 fix #13538 useFieldArray min 1 item validation error changes its location in the errors object (#13539) 🐞 fix #13569 calling reset triggers subscribe with latest name instead of undefined (#13574) 🐞 fix(useController): reflect cleared parent object in controlled fields (#13550) (#13553) 🐞 fix(flatten): preserve Date values as leaf nodes (#13566) 🐛 fix(unset): guard against prototype keyword path traversal (#13559) (#13560) 🏸 improve setValue api with shrink value (#13576) 👝 close #13577 improve re-render with useFieldArray reset (#13578) 🐞 fix #13575 issue: clearErrors changes the name value from form.subscribe (#13579)

thanks to @​DakshSinghDhami, @​JSap0914, @​tran-simon & @​EduardF1

Changelog

Sourced from react-hook-form's changelog.

[7.81.0] - 2026-07-05

Added

  • FieldArray component built on useFieldArray for controlled field-array rendering

Fixed

  • clearErrors changing the name value from form.subscribe
  • reset triggering subscribe with the latest name instead of undefined
  • setValues leaving stale elements behind when shrinking a field array
  • flatten preserving Date values as leaf nodes
  • useFieldArray min length validation error changing location in the errors object
  • useController not reflecting a cleared parent object in controlled fields

Security

  • Harden unset() against prototype-path traversal (__proto__ / constructor / prototype), matching the existing set() guard

Performance

  • Improve re-render with useFieldArray reset
Commits

Updates typescript-eslint from 8.62.1 to 8.63.0

Release notes

Sourced from typescript-eslint's releases.

v8.63.0

8.63.0 (2026-07-06)

🚀 Features

  • eslint-plugin: [no-misused-promises] detect async usage of a sync dispose usage (#12426)

🩹 Fixes

  • eslint-plugin: [method-signature-style] suggest converting readonly function properties instead of emitting invalid syntax (#12447, #12446)
  • eslint-plugin: [no-unnecessary-type-assertion] handle optional-chained calls to overloaded functions (#12491, #12485)
  • eslint-plugin: [no-base-to-string] don't flag a shadowed String() call (#12492)
  • scope-manager: export ClassStaticBlockScope (#12460)

❤️ Thank You

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from typescript-eslint's changelog.

8.63.0 (2026-07-06)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Summary by cubic

Upgrade five dependencies to the latest minor versions to pick up fixes and small features. No breaking changes expected.

  • Dependencies
    • @sentry/nextjs: 10.63.0 → 10.65.0 (better URL attributes in tracing, replay fixes)
    • lucide-react: 1.23.0 → 1.24.0 (new icons and small fixes)
    • mongodb: 7.4.0 → 7.5.0 (QE string query GA; MongoClient.close() now closes in-use connections across all servers)
    • react-hook-form: 7.80.0 → 7.81.0 (adds FieldArray; bug and perf fixes)
    • typescript-eslint: 8.62.1 → 8.63.0 (rule fixes and improvements)

Written for commit 44cacbf. Summary will update on new commits.

Review in cubic

…ctory with 5 updates

Bumps the version-update-semver-minor group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@sentry/nextjs](https://github.com/getsentry/sentry-javascript) | `10.63.0` | `10.65.0` |
| [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `1.23.0` | `1.24.0` |
| [mongodb](https://github.com/mongodb/node-mongodb-native) | `7.4.0` | `7.5.0` |
| [react-hook-form](https://github.com/react-hook-form/react-hook-form) | `7.80.0` | `7.81.0` |
| [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) | `8.62.1` | `8.63.0` |



Updates `@sentry/nextjs` from 10.63.0 to 10.65.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases)
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md)
- [Commits](getsentry/sentry-javascript@10.63.0...10.65.0)

Updates `lucide-react` from 1.23.0 to 1.24.0
- [Release notes](https://github.com/lucide-icons/lucide/releases)
- [Commits](https://github.com/lucide-icons/lucide/commits/1.24.0/packages/lucide-react)

Updates `mongodb` from 7.4.0 to 7.5.0
- [Release notes](https://github.com/mongodb/node-mongodb-native/releases)
- [Changelog](https://github.com/mongodb/node-mongodb-native/blob/main/HISTORY.md)
- [Commits](mongodb/node-mongodb-native@v7.4.0...v7.5.0)

Updates `react-hook-form` from 7.80.0 to 7.81.0
- [Release notes](https://github.com/react-hook-form/react-hook-form/releases)
- [Changelog](https://github.com/react-hook-form/react-hook-form/blob/master/CHANGELOG.md)
- [Commits](react-hook-form/react-hook-form@v7.80.0...v7.81.0)

Updates `typescript-eslint` from 8.62.1 to 8.63.0
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.63.0/packages/typescript-eslint)

---
updated-dependencies:
- dependency-name: "@sentry/nextjs"
  dependency-version: 10.65.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: version-update-semver-minor
- dependency-name: lucide-react
  dependency-version: 1.24.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: version-update-semver-minor
- dependency-name: mongodb
  dependency-version: 7.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: version-update-semver-minor
- dependency-name: react-hook-form
  dependency-version: 7.81.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: version-update-semver-minor
- dependency-name: typescript-eslint
  dependency-version: 8.63.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: version-update-semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Dependency upgrades, bump tracking, supply-chain label Jul 13, 2026
@vercel

vercel Bot commented Jul 13, 2026

Copy link
Copy Markdown
Contributor

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
smartmanagementsystem Ready Ready Preview, Comment Jul 13, 2026 2:30am

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Dependency upgrades, bump tracking, supply-chain

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants