chore(deps): update dependency posthog-js to v1.372.3

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Type	Update	Change	OpenSSF
posthog-js (source)	dependencies	minor	1.312.0 → 1.372.3

---

Release Notes

PostHog/posthog-js (posthog-js)

v1.372.3

Compare Source

1.372.3

Patch Changes

• #​3488 5b8efc3 Thanks @​lucasheriques! - Add browser survey translation rendering and language tracking.
  (2026-04-27)
• Updated dependencies []:
  • @​posthog/types@​1.372.3
  • @​posthog/core@​1.27.7

v1.372.2

Compare Source

1.372.2

Patch Changes

• #​3484 cba2570 Thanks @​veryayskiy! - Fix autofocus
  (2026-04-27)
• Updated dependencies []:
  • @​posthog/types@​1.372.2
  • @​posthog/core@​1.27.6

v1.372.1

Compare Source

1.372.1

Patch Changes

• #​3464 70508df Thanks @​dustinbyrne! - Avoid using Blob.stream() for native async gzip compression to prevent Safari NotReadableError stream failures.
  (2026-04-24)
• Updated dependencies [70508df]:
  • @​posthog/core@​1.27.5
  • @​posthog/types@​1.372.1

v1.372.0

Compare Source

1.372.0

Minor Changes

• #​3470 eaa1322 Thanks @​veryayskiy! - You cannot write to a resolve ticket. Start a new one.
  (2026-04-24)

Patch Changes

• Updated dependencies []:
  • @​posthog/types@​1.372.0
  • @​posthog/core@​1.27.4

v1.371.4

Compare Source

1.371.4

Patch Changes

• #​3469 3c4fc1e Thanks @​fasyy612! - bump rrweb to 0.0.60
  (2026-04-24)
• Updated dependencies []:
  • @​posthog/types@​1.371.4
  • @​posthog/core@​1.27.3

v1.371.3

Compare Source

1.371.3

Patch Changes

• #​3445 61cf83e Thanks @​dustinbyrne! - Fix session recording in the full no-external browser bundles
  (2026-04-24)
• Updated dependencies [daf028d]:
  • @​posthog/core@​1.27.2
  • @​posthog/types@​1.371.3

v1.371.2

Compare Source

1.371.2

Patch Changes

• #​3453 96f19b7 Thanks @​turnipdabeets! - Lift OTLP log serialization helpers from posthog-js into @​posthog/core so the
  upcoming React Native logs feature consumes the same builders. Browser gains
  two fixes as a side effect: NaN and ±Infinity attribute values no longer get
  silently dropped during JSON encoding, and the scope.version OTLP field is
  now populated with the SDK version (changes the server's instrumentation_scope
  column from "posthog-js@" to "posthog-js@"). (2026-04-23)
• Updated dependencies [96f19b7]:
  • @​posthog/types@​1.371.2
  • @​posthog/core@​1.27.1

v1.371.1

Compare Source

1.371.1

Patch Changes

• #​3425 2da17e8 Thanks @​marandaneto! - Classify SDK-owned persistence keys with an explicit event exposure policy so new internal persistence state must be intentionally marked as event-visible, hidden, or derived.
  (2026-04-23)
• Updated dependencies []:
  • @​posthog/types@​1.371.1

v1.371.0

Compare Source

1.371.0

Patch Changes

• #​3432 1a8b727 Thanks @​richardsolomou! - refactor: rename __add_tracing_headers to addTracingHeaders. The __ prefix signalled an internal/experimental option, but the config is a public API (documented for linking LLM traces to session replays). __add_tracing_headers continues to work as a deprecated alias on the browser SDK.

  Also exposes patchFetchForTracingHeaders from @posthog/core so non-browser SDKs can reuse the implementation. (2026-04-23)

• Updated dependencies [1a8b727]:

  • @​posthog/core@​1.27.0
  • @​posthog/types@​1.371.0

v1.370.1

Compare Source

1.370.1

Patch Changes

• #​3442 6f19ce8 Thanks @​marandaneto! - fix(surveys): guard survey seen localStorage access
  (2026-04-22)
• Updated dependencies []:
  • @​posthog/types@​1.370.1

v1.370.0

Compare Source

1.370.0

Minor Changes

• #​3389 922a1c1 Thanks @​hpouillot! - Add exception steps to error tracking (aka breadcrumbs)
  (2026-04-22)

Patch Changes

• Updated dependencies [922a1c1]:
  • @​posthog/types@​1.370.0
  • @​posthog/core@​1.26.0

v1.369.5

Compare Source

1.369.5

Patch Changes

• Updated dependencies [1a0b58d]:
  • @​posthog/core@​1.25.3
  • @​posthog/types@​1.369.5

v1.369.4

Compare Source

1.369.4

Patch Changes

• #​3362 d61bce1 Thanks @​sampennington! - fix(cookieless): start in cookieless mode when opt_out_capturing_by_default is set
  (2026-04-21)
• Updated dependencies []:
  • @​posthog/types@​1.369.4

v1.369.3

Compare Source

1.369.3

Patch Changes

• #​3419 ea08727 Thanks @​haacked! - Reinstate $feature_flag_payloads and $surveys_activated in captured event properties.
  (2026-04-18)

• #​3416 3d8b2e2 Thanks @​feliperalmeida! - Updated dependencies: - protobufjs@​7.5.5
  (2026-04-18)

• Updated dependencies []:

  • @​posthog/types@​1.369.3

v1.369.2

Compare Source

1.369.2

Patch Changes

• #​3386 4a65604 Thanks @​dustinbyrne! - Add a preview flag for versioned browser lazy bundle asset paths.
  (2026-04-16)
• Updated dependencies [4a65604]:
  • @​posthog/types@​1.369.2

v1.369.1

Compare Source

1.369.1

Patch Changes

• #​3393 85ae4d9 Thanks @​haacked! - Exclude active feature flag payloads from event properties
  (2026-04-16)

• #​3392 00cd1ce Thanks @​haacked! - Fix unnecessary persisted config and activation properties (including product tours, surveys, and session recording config) added to captured events
  (2026-04-16)

• Updated dependencies []:

  • @​posthog/types@​1.369.1

v1.369.0

Compare Source

1.369.0

Minor Changes

• #​3342 eea5260 Thanks @​ksvat! - Account for property filters on events in recording triggers for v2 triggers
  (2026-04-14)

• #​3281 b1fd228 Thanks @​ksvat! - Add session replay trigger groups handling (V2)
  (2026-04-14)

Patch Changes

• Updated dependencies []:
  • @​posthog/types@​1.369.0

v1.368.2

Compare Source

1.368.2

Patch Changes

• #​3378 f1bea33 Thanks @​marandaneto! - Disable native gzip compression after a NotReadableError in the browser SDK
  (2026-04-14)
• Updated dependencies []:
  • @​posthog/types@​1.368.2

v1.368.1

Compare Source

1.368.1

Patch Changes

• #​3379 d7c71b1 Thanks @​dmarticus! - Fix bootstrapped feature flags being overwritten by partial /flags response when advanced_only_evaluate_survey_feature_flags is enabled
  (2026-04-14)
• Updated dependencies []:
  • @​posthog/types@​1.368.1

v1.368.0

Compare Source

1.368.0

Minor Changes

• #​3345 3fcf5c4 Thanks @​jonmcwest! - Add posthog.captureLog() API for sending structured log entries to PostHog logs
  (2026-04-13)

Patch Changes

• #​3373 f5fe0a8 Thanks @​ksvat! - bump rrweb version
  (2026-04-13)
• Updated dependencies [3fcf5c4]:
  • @​posthog/types@​1.368.0

v1.367.0

Compare Source

1.367.0

Minor Changes

• #​3242 353be9a Thanks @​dustinbyrne! - feat: Add support for pre-loaded remote-config
  (2026-04-09)

Patch Changes

• Updated dependencies []:
  • @​posthog/types@​1.367.0

v1.366.2

Compare Source

1.366.2

Patch Changes

• #​3364 575e354 Thanks @​lucasheriques! - Add a hover state to numeric survey rating options so they provide clearer pointer feedback before selection.
  (2026-04-09)
• Updated dependencies []:
  • @​posthog/types@​1.366.2

v1.366.1

Compare Source

1.366.1

Patch Changes

• #​3360 802bf39 Thanks @​jabahamondes! - Re-evaluate consent persistent store when config changes to support cross-subdomain consent sharing
  (2026-04-09)
• Updated dependencies []:
  • @​posthog/types@​1.366.1

v1.366.0

Compare Source

1.366.0

Minor Changes

• #​3305 b599672 Thanks @​veryayskiy! - Add customer side identification
  (2026-04-09)

Patch Changes

• Updated dependencies []:
  • @​posthog/types@​1.366.0

v1.365.5

Compare Source

1.365.5

Patch Changes

• Updated dependencies [c735b08]:
  • @​posthog/core@​1.25.2
  • @​posthog/types@​1.365.5

v1.365.4

Compare Source

1.365.4

Patch Changes

• #​3353 3939856 Thanks @​lucasheriques! - Expose the current question index on .survey-box via a data-question-index attribute. This gives consumers rendering surveys via the API a reliable way to know which question is currently displayed without parsing input ids or class names — works for every question type, including link questions which render no input or rating element.
  (2026-04-08)
• Updated dependencies []:
  • @​posthog/types@​1.365.4

v1.365.3

Compare Source

1.365.3

Patch Changes

• #​3357 dbdddca Thanks @​pauldambra! - Bump @​posthog/rrweb packages to 0.0.56, which includes:
  • PostHog/posthog-rrweb#157: fix: clear mutation buffer on iframe pagehide to prevent recording corruption
  • PostHog/posthog-rrweb#158: fix: skip unchanged setAttribute calls to prevent replay flicker
  • PostHog/posthog-rrweb#159: fix: prevent iframe leak in untainted prototype and avoid unnecessary iframe creation
  • PostHog/posthog-rrweb#163: fix: handle SecurityError in IframeManager destroy and removeIframeById
  • PostHog/posthog-rrweb#166: fix: remove postcss from @​posthog/rrweb-record bundle (420KB → 170KB) (2026-04-08)
• Updated dependencies []:
  • @​posthog/types@​1.365.3

v1.365.2

Compare Source

1.365.2

Patch Changes

• #​3323 c387f6d Thanks @​pauldambra! - perf(replay): reduce memory and CPU cost of event compression by caching gzipped empty arrays and eliminating redundant JSON.stringify for size estimation
  (2026-04-08)
• Updated dependencies [c387f6d]:
  • @​posthog/types@​1.365.2

v1.365.1

Compare Source

1.365.1

Patch Changes

• Updated dependencies [57ee5b2]:
  • @​posthog/core@​1.25.1
  • @​posthog/types@​1.365.1

v1.365.0

Compare Source

1.365.0

Minor Changes

• #​3302 fc5589f Thanks @​dmarticus! - preserve $set_once semantics in local flag evaluation cache
  (2026-04-07)

Patch Changes

• Updated dependencies [fc5589f]:
  • @​posthog/core@​1.25.0
  • @​posthog/types@​1.365.0

v1.364.7

Compare Source

1.364.7

Patch Changes

• #​3319 b25b689 Thanks @​dustinbyrne! - fix: send $groupidentify for new groups even when no properties are provided
  (2026-04-03)
• Updated dependencies []:
  • @​posthog/types@​1.364.7

v1.364.6

Compare Source

1.364.6

Patch Changes

• #​3316 68cd4e5 Thanks @​dustinbyrne! - Fix slim bundle + extension bundles crash caused by inconsistent property mangling
  (2026-04-02)
• Updated dependencies [a01a3d5]:
  • @​posthog/core@​1.24.6
  • @​posthog/types@​1.364.6

v1.364.5

Compare Source

1.364.5

Patch Changes

• #​3309 197eeda Thanks @​marandaneto! - Extract CLI and sourcemap utilities from @​posthog/core into @​posthog/plugin-utils to remove cross-spawn from React Native dependencies
  (2026-04-01)

• #​3312 c5feb5c Thanks @​TueHaulund! - Bump @​posthog/rrweb-* to 0.0.52 — adds error recovery to the canvas FPS snapshot pipeline, preventing canvas recording from permanently stopping when createImageBitmap or the worker encounters an error
  (2026-04-01)

• #​3315 7b944fc Thanks @​TueHaulund! - Bump @​posthog/rrweb-* to 0.0.53 — fixes infinite recursion crash ("Maximum call stack size exceeded") when calling posthog.reset() or restarting the recorder on pages with shadow DOM elements (e.g. CometChat)
  (2026-04-01)

• Updated dependencies [197eeda]:

  • @​posthog/core@​1.24.5
  • @​posthog/types@​1.364.5

v1.364.4

Compare Source

1.364.4

Patch Changes

• #​3298 2365df5 Thanks @​TueHaulund! - fix: skip deep copy for snapshot/exception events to prevent stack overflow on deeply nested DOM trees
  (2026-03-31)
• Updated dependencies []:
  • @​posthog/types@​1.364.4

v1.364.3

Compare Source

1.364.3

Patch Changes

• #​3300 bab5f3a Thanks @​dustinbyrne! - Strip workspace:* references from lib/package.json after build
  (2026-03-31)
• Updated dependencies []:
  • @​posthog/types@​1.364.3

v1.364.2

Compare Source

1.364.2

Patch Changes

• #​3297 341caaf Thanks @​marandaneto! - fix: wrap sendBeacon body in Blob to ensure Content-Type header is set
  (2026-03-30)
• Updated dependencies [a863914]:
  • @​posthog/core@​1.24.4
  • @​posthog/types@​1.364.2

v1.364.1

Compare Source

1.364.1

Patch Changes

• Updated dependencies [4bdfdbc]:
  • @​posthog/core@​1.24.3
  • @​posthog/types@​1.364.1

v1.364.0

Compare Source

1.364.0

Minor Changes

• #​3285 00a5079 Thanks @​pauldambra! - Reject the strings "undefined" and "null" in posthog.identify(). All invalid distinct IDs now log a critical console error (always visible, not debug-only).
  (2026-03-27)

Patch Changes

• #​3286 8d34289 Thanks @​marandaneto! - Use async native CompressionStream for gzip compression to avoid blocking the main thread
  (2026-03-27)
• Updated dependencies [8d34289]:
  • @​posthog/core@​1.24.2
  • @​posthog/types@​1.364.0

v1.363.6

Compare Source

1.363.6

Patch Changes

• #​3279 32edaad Thanks @​pauldambra! - Bump @​posthog/rrweb packages to 0.0.51, which includes:
  • PostHog/posthog-rrweb#145: fix: handle cross-origin iframe errors during stop handler cleanup
  • PostHog/posthog-rrweb#148: fix: mask textarea innerText mutations
  • PostHog/posthog-rrweb#150: fix: guard WebGLRenderingContext access for iOS compatibility
  • PostHog/posthog-rrweb#151: refactor: extract slimDOMDefaults into shared function
  • PostHog/posthog-rrweb#152: fix: improve nested CSS rule handling
  • PostHog/posthog-rrweb#153: fix: allow clearing adopted stylesheets with empty strings
  • PostHog/posthog-rrweb#154: fix: prevent object reference mutation breaking remote CSS replay
  • PostHog/posthog-rrweb#156: fix: catch all SecurityError variants in stop handler cleanup (2026-03-26)
• Updated dependencies []:
  • @​posthog/types@​1.363.6

v1.363.5

Compare Source

1.363.5

Patch Changes

• #​3278 c59dc90 Thanks @​dustinbyrne! - Add tree-shakeable ESM extension-bundles entry point for slim builds
  (2026-03-25)

• #​3274 ba08262 Thanks @​pauldambra! - fix: document visibility change shoudln't capture dead click
  (2026-03-25)

• Updated dependencies [ba08262]:

  • @​posthog/types@​1.363.5

v1.363.4

Compare Source

1.363.4

Patch Changes

• #​3275 664a11b Thanks @​fasyy612! - bump rrweb dependency version
  (2026-03-24)
• Updated dependencies []:
  • @​posthog/types@​1.363.4

v1.363.3

Compare Source

1.363.3

Patch Changes

• #​3253 42fbd41 Thanks @​marandaneto! - Reduce browser SDK bundle size by ~6.6 KB (-3.7%) through code modernization, build config tuning, string deduplication, enum-to-const conversions, and property access shorthand getters.
  (2026-03-23)
• Updated dependencies []:
  • @​posthog/types@​1.363.3

v1.363.2

Compare Source

1.363.2

Patch Changes

• #​3267 e5ef520 Thanks @​ksvat! - bump rrweb dependency version
  (2026-03-23)

• #​3260 1435ec8 Thanks @​kyleswank! - Log warning instead of throwing error when session recording script is blocked by ad blockers
  (2026-03-23)

• Updated dependencies []:

  • @​posthog/types@​1.363.2

v1.363.1

Compare Source

1.363.1

Patch Changes

• Updated dependencies [314120a]:
  • @​posthog/core@​1.24.1
  • @​posthog/types@​1.363.1

v1.363.0

Compare Source

1.363.0

Minor Changes

• #​3247 7efa558 Thanks @​dmarticus! - prevent silent identity switch during bootstrap and auto-identify anonymous users
  (2026-03-20)

Patch Changes

• #​3245 1acd6fd Thanks @​dmarticus! - handle plain array and object forms in overrideFeatureFlags
  (2026-03-20)
• Updated dependencies [1acd6fd]:
  • @​posthog/types@​1.363.0

v1.362.0

Compare Source

1.362.0

Minor Changes

• #​3244 ff8a93e Thanks @​sampennington! - Fixed $set_once initial person properties (e.g. $initial_current_url) not being included with $identify calls when they had already been sent with a prior event. This ensures initial properties are reliably set when identifying users across subdomains, even if an anonymous event was captured first.
  (2026-03-18)

Patch Changes

• Updated dependencies [9cd2313]:
  • @​posthog/core@​1.24.0
  • @​posthog/types@​1.362.0

v1.361.1

Compare Source

1.361.1

Patch Changes

• #​3249 c265d62 Thanks @​marandaneto! - fix: preserve _overrideSDKInfo from terser mangling so wrapper SDKs can call it
  (2026-03-18)
• Updated dependencies []:
  • @​posthog/types@​1.361.1

v1.361.0

Compare Source

1.361.0

Minor Changes

• #​3201 552c018 Thanks @​frankh! - Add a serviceName config option to logs config
  (2026-03-18)

• #​3240 e4a58d0 Thanks @​marandaneto! - Add internal _overrideSDKInfo method to allow wrapper SDKs to override $lib and $lib_version event properties
  (2026-03-18)

• #​3241 fe1fd7b Thanks @​dustinbyrne! - feat: add advanced_feature_flags_dedup_per_session config option to scope $feature_flag_called deduplication to the current session
  (2026-03-18)

Patch Changes

• #​3239 bf4f078 Thanks @​jonathanlab! - fix: debug mode not persisting across page navigations
  (2026-03-18)

• #​3228 8773fdf Thanks @​TueHaulund! - fix: restart session recorder when session rotates externally while idle, preventing "Recording not found" for sessions where analytics events triggered session rotation
  (2026-03-18)

• Updated dependencies [552c018, fe1fd7b]:

  • @​posthog/types@​1.361.0

v1.360.2

Compare Source

1.360.2

Patch Changes

• #​3236 bc30c2d Thanks @​dustinbyrne! - fix: Calling reset() now automatically reloads feature flags
  (2026-03-13)
• Updated dependencies [bc30c2d, bc30c2d]:
  • @​posthog/core@​1.23.4
  • @​posthog/types@​1.360.2

v1.360.1

Compare Source

1.360.1

Patch Changes

• Updated dependencies [4009c15]:
  • @​posthog/core@​1.23.3
  • @​posthog/types@​1.360.1

v1.360.0

Compare Source

1.360.0

Patch Changes

• #​3213 db089fd Thanks @​TueHaulund! - fix(replay): treat legacy configs without cache_timestamp as fresh

  Configs persisted by older SDK versions never include a cache_timestamp.
  Defaulting to 0 treats them as always stale, causing the persisted config
  to be cleared before start() runs — so recording never starts for
  customers on older core SDK versions paired with the latest CDN recorder. (2026-03-09)

• #​3207 c5a37cb Thanks @​dustinbyrne! - fix: PostHogFeatureFlags uses a TreeShakeable type
  (2026-03-09)

• Updated dependencies [c5a37cb]:

  • @​posthog/types@​1.360.0

v1.359.1

Compare Source

1.359.1

Patch Changes

• #​3204 2b0cd52 Thanks @​marandaneto! - chore: upgrade dompurify to 3.3.2
  (2026-03-06)
• Updated dependencies []:
  • @​posthog/types@​1.359.1

v1.359.0

Compare Source

1.359.0

Minor Changes

• #​3166 9180726 Thanks @​dustinbyrne! - feat: Tree-shake feature flags
  (2026-03-05)

Patch Changes

• Updated dependencies []:
  • @​posthog/types@​1.359.0

v1.358.1

Compare Source

1.358.1

Patch Changes

• #​3191 9f41d26 Thanks @​TueHaulund! - fix(replay): fall back to persisted config when remote config fetch fails

  When the remote config fetch failed (network error, ad blocker, CDN outage), the SDK received an empty {} response with no sessionRecording key. The onRemoteConfig handler returned early without ever setting _receivedFlags = true, leaving the recording permanently stuck in pending_config status for the entire page session.

  This removes the _receivedFlags gate entirely. The 1-hour TTL on persisted config (added in #​3051, increased from 5 minutes) and the stale-config retry in _onScriptLoaded (added in #​3093) already prevent recording from starting with outdated config. The additional gate was redundant and created a deadlock when the config fetch failed.

  Now when the config fetch fails, startIfEnabledOrStop() is called and falls back to persisted config from a previous page load. If no persisted config exists (first-ever visit), recording is correctly disabled rather than silently stuck. (2026-03-04)

• #​3198 9d0df0e Thanks @​TueHaulund! - Reduce session replay memory pressure by tracking per-event sizes in SnapshotBuffer, eliminating redundant JSON.stringify calls during buffer operations. Also bumps @​posthog/rrweb to 0.0.46 which uses FNV-1a hash-based canvas frame deduplication instead of storing full base64 strings.
  (2026-03-04)

• Updated dependencies []:

  • @​posthog/types@​1.358.1

v1.358.0

Compare Source

1.358.0

Minor Changes

• #​3165 0e08337 Thanks @​dustinbyrne! - feat: Tree-shake surveys, toolbar, exceptions, conversations, logs, experiments
  (2026-03-03)

Patch Changes

• #​3164 20c1ff2 Thanks @​dustinbyrne! - Add Extension interface for tree-shakable extensions
  (2026-03-03)
• Updated dependencies []:
  • @​posthog/types@​1.358.0

v1.357.2

Compare Source

1.357.2

Patch Changes

• #​3170 f485c92 Thanks @​slshults! - fix: Move tablet detection logic into detectDeviceType for consistent classification across all call sites
  (2026-03-03)
• Updated dependencies []:
  • @​posthog/types@​1.357.2

v1.357.1

Compare Source

1.357.1

Patch Changes

• #​3149 91223c5 Thanks @​adboio! - avoid re-checking URLs if they have not changed
  (2026-03-02)
• Updated dependencies [5e8d5fc]:
  • @​posthog/core@​1.23.2
  • @​posthog/types@​1.357.1

v1.357.0

Compare Source

1.357.0

Minor Changes

• #​3169 4f885c0 Thanks @​marandaneto! - feat: add local sampleRate config for session recording
  (2026-03-02)

Patch Changes

• #​3179 0dce119 Thanks @​TueHaulund! - Bump @​posthog/rrweb-* to 0.0.45 — reuses a single OffscreenCanvas in the canvas recording worker instead of allocating a new one per frame, fixing a memory leak in Safari where GPU-backed canvas resources were not being garbage collected promptly
  (2026-03-02)
• Updated dependencies [4f885c0]:

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At 12:00 AM through 04:59 AM and 10:00 PM through 11:59 PM, Monday through Friday (* 0-4,22-23 * * 1-5)
  • Only on Sunday and Saturday (* * * * 0,6)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[cubic-dev-ai]

No issues found across 2 files

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	posthog-js@​1.312.0 ⏵ 1.372.1	+5		-13	+1

View full report

[socket-security]

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report