Skip to content

chore(deps): update pnpm workspace dependencies#1538

Merged
Adammatthiesen merged 9 commits into
mainfrom
renovate/pnpm-workspace-dependencies
Jul 11, 2026
Merged

chore(deps): update pnpm workspace dependencies#1538
Adammatthiesen merged 9 commits into
mainfrom
renovate/pnpm-workspace-dependencies

Conversation

@renovate

@renovate renovate Bot commented Mar 23, 2026

Copy link
Copy Markdown
Contributor

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package Change Age Confidence
@types/pg (source) ^8.18.0^8.20.0 age confidence
@types/react (source) ^19.2.14^19.2.17 age confidence
diff ^8.0.3^8.0.4 age confidence
dotenv ^17.3.1^17.4.2 age confidence
kysely (source) ^0.28.12^0.29.3 age confidence
mysql2 (source) ^3.20.0^3.22.6 age confidence
package-manager-detector ^1.6.0^1.7.0 age confidence
pg (source) ^8.20.0^8.22.0 age confidence
react (source) ^19.2.4^19.2.7 age confidence
react-dom (source) ^19.2.4^19.2.7 age confidence
semver ^7.7.4^7.8.5 age confidence
tinyglobby (source) ^0.2.15^0.2.17 age confidence
tsdown (source) ^0.21.4^0.22.4 age confidence

Release Notes

kpdecker/jsdiff (diff)

v8.0.4

Compare Source

  • #​667 - fix another bug in diffWords when used with an Intl.Segmenter. If the text to be diffed included a combining mark after a whitespace character (i.e. roughly speaking, an accented space), diffWords would previously crash. Now this case is handled correctly.
motdotla/dotenv (dotenv)

v17.4.2

Compare Source

Changed
  • Improved skill files - tightened up details (#​1009)

v17.4.1

Compare Source

Changed
  • Change text injecting to injected (#​1005)

v17.4.0

Compare Source

Added
  • Add skills/ folder with focused agent skills: skills/dotenv/SKILL.md (core usage) and skills/dotenvx/SKILL.md (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (npx skills add motdotla/dotenv)
Changed
  • Tighten up logs: ◇ injecting env (14) from .env (#​1003)
kysely-org/kysely (kysely)

v0.29.3: 0.29.3

Compare Source

Hey 👋

A small batch of bug fixes. Please report any issues. 🤞😰🤞

🚀 Features

🐞 Bugfixes

PostgreSQL 🐘 / MSSQL 🥅

📖 Documentation

📦 CICD & Tooling

⚠️ Breaking Changes

🐤 New Contributors

What's Changed

Full Changelog: kysely-org/kysely@v0.29.2...v0.29.3

v0.29.2: 0.29.2

Compare Source

Hey 👋

A small batch of bug fixes. Please report any issues. 🤞😰🤞

🚀 Features

🐞 Bugfixes

📖 Documentation

📦 CICD & Tooling

⚠️ Breaking Changes

🐤 New Contributors

What's Changed

Full Changelog: kysely-org/kysely@v0.29.1...v0.29.2

v0.29.1: 0.29.1

Compare Source

Hey 👋

A small batch of bug fixes. Please report any issues. 🤞😰🤞

🚀 Features

🐞 Bugfixes

📖 Documentation

📦 CICD & Tooling

⚠️ Breaking Changes

🐤 New Contributors

What's Changed

Full Changelog: kysely-org/kysely@v0.29.0...v0.29.1

v0.29.0: 0.29.0

Compare Source

Hey 👋

This one's a banger! 💥 💥 💥

We got $pickTables, $omitTables compile-time helpers to narrow the world view of downstream queries, cutting down on compilation complexity/time while at it!

const results = await db
  .$pickTables<'person' | 'pet'>() // <----- now `DB` is only { person: {...}, pet: {...} } for following methods.
  .selectFrom('person')
  .innerJoin('pet', 'pet.owner_id', 'person.id')
  .selectAll()
  .execute()

const results = await db
  .$omitTables<'toy'>() // <----- now `DB` doesn't have a "toy" table description for following methods.
  .selectFrom('person')
  .innerJoin('pet', 'pet.owner_id', 'person.id')
  .selectAll()
  .execute()

We got a new ReadonlyKysely<DB> helper type that turns your instance into a compile-time readonly instance!

import { Kysely } from 'kysely'
import type { ReadonlyKysely } from 'kysely/readonly'

export const db = new Kysely<Database>({...}) as never as ReadonlyKysely<Database>

db.selectFrom('person').selectAll() // no problem.
db.selectNoFrom(sql`now()`.as('now')) // no problem.

db.deleteFrom('person') // compilation error + deprecation!
db.insertInto('person').values({...}) // compilation error + deprecation!
db.mergeInto('person')...  // compilation error + deprecation!
db.updateTable('person').set('first_name', 'Timmy') // compilation error + deprecation!
sql`...`.execute(db) // compilation error!
// etc. etc.

We got a brand new PGlite dialect. With it comes a new supportsMultipleConnections adapter flag that uses a new centralized connection mutex when false - should help simplify all SQLite dialects out here!

import { PGlite } from '@&#8203;electric-sql/pglite'
import { Kysely, PGliteDialect } from 'kysely'

const db = new Kysely<DB>({
  // ...
  dialect: new PGliteDialect({
    pglite: new PGlite(),
  }),
  // ...
})

We got $narrowType supporting nested narrowing and discriminated unions!

db.selectFrom('person_metadata')
  .select(['discriminatedUnionProfile']) 
  // output type inferred as:
  //
  // {
  //   discriminatedUnionProfile: {
  //     auth:
  //       | { type: 'token'; token: string }
  //       | { type: 'session'; session_id: string }
  //     tags: string[]
  //   }
  // }[]
  .$narrowType<{ discriminatedUnionProfile: { auth: { type: 'token' } } }>()
  // output type narrowed to:
  // 
  // {
  //   discriminatedUnionProfile: {
  //     auth: { type: 'token'; token: string }
  //     tags: string[]
  //   }
  // }[]
  .execute()

We got web standards driven query cancellation support. Pass an abort signal to execute* methods and similar. Pick between different inflight query abort strategies - ignore the query, cancel it on the database side or even kill the session on the database side.

  import { Kysely, PostgresDialect } from 'kysely'
  import { Client, ... } from 'pg'

  const db = new Kysely<Database>({
    dialect: new PostgresDialect({
      // ...
      controlClient: Client, // optional, for out-of-pool connections for database side query aborts.
      // ...
    })
  })

  const options = { signal: AbortSignal.timeout(3_000) } // throw abort/timeout errors and ignore query reuslts

  query.execute(options)
  query.stream(options)
  sql`...`.execute(db, options)
  db.executeQuery(compiledQuery, options)
  // etc. etc.

  query.execute({ ...options, inflightQueryAbortStrategy: 'cancel query' }) // also cancel query database side
  query.execute({ ...options, inflightQueryAbortStrategy: 'kill session' }) // also kill session database side

We got SafeNullComparisonPlugin to flip (in)equality operators to is and is not when right hand side argument is null.

import { Kysely, SafeNullComparisonPlugin } from 'kysely'

const db = new Kysely<DB>({
  // ...
  plugins: [new SafeNullComparisonPlugin()],
  // ...
})

db.selectFrom('pet')
  .where('name', '=', null) // outputs: "name" is null
  .where('owner_id', '!=', null) // outputs: "owner_id" is not null
  .selectAll()

We got a new shouldParse(value, path) option in ParseJSONResultsPlugin for granular control of what gets JSON.parse'd and what stays a string using JSON paths.

import { JSONParseResultsPlugin } from 'kysely'

db.selectFrom('person')
  .select((eb) => jsonArrayFrom(
	  eb.selectFrom('pet')
      .where('pet.owner_id', '=', 'person.id')
 	    .selectAll()
  ).as('pets'))
  .withPlugin(new JSONParseResultsPlugin({ 
    shouldParse: (_value, path) => {
      // parse only the pets array
      if (path.endsWith('."pets"')) {
        return true
      }
    
      return false
    } 
  }))
🚀 Features
PostgreSQL 🐘 / MySQL 🐬
PostgreSQL 🐘 / MSSQL 🥅
PostgreSQL 🐘
MySQL 🐬
MSSQL 🥅
PGlite 🟨
🐞 Bugfixes
📖 Documentation
📦 CICD & Tooling
⚠️ Breaking Changes
  • Migrator, FileMigrationProvider and other migration related things are now exported from 'kysely/migration'. Importing from 'kysely' will provide an informative error message at compilation time.

    -import { Migrator, FileMigrationProvider } from 'kysely'
    +import { Migrator, FileMigrationProvider } from 'kysely/migration'
  • Minimum TypeScript version is now 5.4. Versions 5.3 and older will get a very aggressive compilation error.

  • The library no longer ships CommonJS files. Use a Node.js version that supports require(esm), or use dynamic imports. ES Modules files have moved from /dist/esm/ to /dist/.

  • TypeScript build target was bumped to 'es2023'.

  • sql.value and sql.literal were removed after spending a long time in deprecation. Use sql.val and sql.lit instead.

  • db.executeQuery's queryId 2nd argument has been replaced with options?: AbortableQueryOptions after spending a long time in deprecation.

  • QueryResult.numUpdatedOrDeletedRows has been removed after spending a long time in deprecation. Dialects that use it need to be updated to use QueryResult.numAffectedRows instead.

  • UniqueConstraintNode.columns widened from ReadonlyArray<ColumnNode> to ReadonlyArray<OperationNode>.

  • ExpressionBuilder.withSchema has been removed after spending a long time in deprecation.

  • DatabaseIntrospector.getMetadata has been removed after spending a long time in deprecation. Use DatabaseIntrospector.getTables instead.

  • MssqlDialectConfig.Tedious.resetConnectionOnRelease has been removed after spending a long time in deprecation. Use MssqlDialectConfig.resetConnectionsOnRelease instead.

  • MssqlDialectConfig.Tarn.options.validateConnections has been removed after spending a long time in deprecation. Use MssqlDialectConfig.validateConnections instead.

  • InsertQueryNode.ignore has been removed after spending a long time in deprecation. Use InsertQueryNode.orAction instead.

  • PrimaryConstraintNode has been removed after spending a long time in deprecation. Use PrimaryKeyConstraintNode instead.

  • DropTablexNodeParams has been removed after spending a long time in deprecation. Use DropTableNodeParams instead.

🐤 New Contributors

Full Changelog: kysely-org/kysely@v0.28.17...v0.29.0

v0.28.17: 0.28.17

Compare Source

Hey 👋

A small batch of bug fixes. Please report any issues. 🤞😰🤞

0.29 is right around the corner. Try the latest RC version!

🚀 Features

🐞 Bugfixes

  • fix: further harden JSON path .key(...) and .at(...) against SQL injections and exfiltrations. by @​igalklebanov in #​1804

📖 Documentation

📦 CICD & Tooling

⚠️ Breaking Changes

🐤 New Contributors

What's Changed

Full Changelog: kysely-org/kysely@v0.28.16...v0.28.17

v0.28.16: 0.28.16

Compare Source

Hey 👋

A small batch of bug fixes. Please report any issues. 🤞😰🤞

0.29 is getting closer btw. 🌶️

🚀 Features

🐞 Bugfixes

  • fix: FilterObject allows any defined value when query context has no tables (TB is never). by @​igalklebanov in #​1791

📖 Documentation

📦 CICD & Tooling

⚠️ Breaking Changes

🐤 New Contributors

What's Changed

Full Changelog: kysely-org/kysely@v0.28.15...v0.28.16

v0.28.15: 0.28.15

Compare Source

Hey 👋

The introduction of dehydration in JSON functions/helpers caused an unexpected bug for consumers that have some columns defined as '${number}', e.g. '1' | '2' (also when wrapped in ColumnType or similar). Such columns, when participating in a JSON function/helper would dehydrate to number instead of staying as string.

Why dehydrate numeric strings to numbers in the first place? Select types in kysely describe the data after underlying driver's (e.g. pg) data transformation. Some drivers transform numeric columns to strings to be safe. When these columns participate in JSON functions, they lose original column data types - drivers don't know they need to transform to string - they return as-is.

This release introduces a special helper type that wraps your column type definition and tells kysely to NOT dehydrate it in JSON functions/helpers.

import type { NonDehydrateable } from 'kysely'

interface Database {
  my_table: {
    a_column: '1' | '2' | '3', // dehydrates to `number`
    another_column: NonDehydrateable<'1' | '2' | '3'>, // stays `'1' | '2' | '3'`
    column_too: NonDehydrateable<ColumnType<'1' | '2' | '3'>> // stays `'1' | '2' | '3'`
  }
}

🚀 Features

  • feat: add NonDehydrateable<T> to allow opt-out from dehydration in JSON functions/helpers. by @​igalklebanov in #​1697

🐞 Bugfixes

PostgreSQL 🐘

📖 Documentation

📦 CICD & Tooling

⚠️ Breaking Changes

🐤 New Contributors

Full Changelog: kysely-org/kysely@v0.28.14...v0.28.15

v0.28.14: 0.28.14

Compare Source

Hey 👋

A small batch of bug fixes. Please report any issues. 🤞😰🤞

🚀 Features

🐞 Bugfixes

MySQL 🐬

📖 Documentation

📦 CICD & Tooling

⚠️ Breaking Changes

🐤 New Contributors

Full Changelog: kysely-org/kysely@v0.28.13...v0.28.14

v0.28.13: 0.28.13

Compare Source

Hey 👋

A small batch of bug fixes. Please report any issues. 🤞😰🤞

🚀 Features

🐞 Bugfixes

  • fix: missing sideEffects: false in root package.json resulting in bigger bundles in various bundlers. by @​igalklebanov in #​1746
  • fix: Insertable allows non-objects when a table has no required columns. by @​igalklebanov in #​1747
PostgreSQL 🐘

📖 Documentation

📦 CICD & Tooling

⚠️ Breaking Changes

🐤 New Contributors

Full Changelog: kysely-org/kysely@v0.28.12...v0.28.13

sidorares/node-mysql2 (mysql2)

v3.22.6

Compare Source

Bug Fixes
  • sql-escaper: resolve multi statement and expand object regressions (#​4380) (1b927a9)

v3.22.5

Compare Source

Bug Fixes
  • keep 00:00:00 time for TIMESTAMP in binary protocol with dateStrings (#​4327) (2af33a1)

v3.22.4

Compare Source

Bug Fixes

v3.22.3

Compare Source

Bug Fixes
  • allow resetOnRelease in connection config validation (#​4278) (e72f923)

v3.22.2

Compare Source

Bug Fixes
  • promise: point rejection stacks at caller for promise API (#​4267) (c79a3f3)

v3.22.1

Compare Source

Bug Fixes

v3.22.0

Compare Source

Features
Performance Improvements
  • defer Error object creation to error handlers in promise wrappers (#​4257) (ab131de)

v3.21.1

Compare Source

Bug Fixes

v3.21.0

Compare Source

Features
  • add support for query attributes (#​4223) (d732f78)
  • types: export ExecuteValues and QueryValues from entry point (9fafd6f)
antfu-collective/package-manager-detector (package-manager-detector)

v1.7.0

Compare Source

   🚀 Features
   🐞 Bug Fixes
    View changes on GitHub
brianc/node-postgres (pg)

v8.22.0

Compare Source

v8.21.0

Compare Source

facebook/react (react)

v19.2.7: 19.2.7 (June 1st, 2026)

Compare Source

React Server Components

v19.2.6: 19.2.6 (May 6th, 2026)

Compare Source

React Server Components

v19.2.5: 19.2.5 (April 8th, 2026)

[Compare Source](https://re

Note

PR body was truncated to here.


Configuration

📅 Schedule: (UTC)

  • Branch creation
    • Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot requested a review from a team as a code owner March 23, 2026 01:10
@changeset-bot

changeset-bot Bot commented Mar 23, 2026

Copy link
Copy Markdown

🦋 Changeset detected

Latest commit: 1d6bc61

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 2 packages
Name Type
@studiocms/wysiwyg Patch
@studiocms/md Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

@github-actions

github-actions Bot commented Mar 23, 2026

Copy link
Copy Markdown
Contributor

Allure Test Report for this PR:

Allure Report | History

@codecov

codecov Bot commented Mar 23, 2026

Copy link
Copy Markdown

Codecov Report

❌ Patch coverage is 0% with 1 line in your changes missing coverage. Please review.
✅ All tests successful. No failed tests found.

Files with missing lines Patch % Lines
...s/wysiwyg/src/common/grapesBlocks/blocks/basics.ts 0.00% 1 Missing ⚠️

📢 Thoughts on this report? Let us know!

@pkg-pr-new

pkg-pr-new Bot commented Mar 23, 2026

Copy link
Copy Markdown
create-studiocms

npm i https://pkg.pr.new/create-studiocms@1538

effectify

npm i https://pkg.pr.new/effectify@1538

studiocms

npm i https://pkg.pr.new/studiocms@1538

@studiocms/auth0

npm i https://pkg.pr.new/@studiocms/auth0@1538

@studiocms/blog

npm i https://pkg.pr.new/@studiocms/blog@1538

@studiocms/cloudinary-image-service

npm i https://pkg.pr.new/@studiocms/cloudinary-image-service@1538

@studiocms/devapps

npm i https://pkg.pr.new/@studiocms/devapps@1538

@studiocms/discord

npm i https://pkg.pr.new/@studiocms/discord@1538

@studiocms/github

npm i https://pkg.pr.new/@studiocms/github@1538

@studiocms/google

npm i https://pkg.pr.new/@studiocms/google@1538

@studiocms/html

npm i https://pkg.pr.new/@studiocms/html@1538

@studiocms/markdoc

npm i https://pkg.pr.new/@studiocms/markdoc@1538

@studiocms/markdown-remark

npm i https://pkg.pr.new/@studiocms/markdown-remark@1538

@studiocms/md

npm i https://pkg.pr.new/@studiocms/md@1538

@studiocms/mdx

npm i https://pkg.pr.new/@studiocms/mdx@1538

@studiocms/s3-storage

npm i https://pkg.pr.new/@studiocms/s3-storage@1538

@studiocms/upgrade

npm i https://pkg.pr.new/@studiocms/upgrade@1538

@studiocms/wysiwyg

npm i https://pkg.pr.new/@studiocms/wysiwyg@1538

@withstudiocms/api-spec

npm i https://pkg.pr.new/@withstudiocms/api-spec@1538

@withstudiocms/auth-kit

npm i https://pkg.pr.new/@withstudiocms/auth-kit@1538

@withstudiocms/cli-kit

npm i https://pkg.pr.new/@withstudiocms/cli-kit@1538

@withstudiocms/component-registry

npm i https://pkg.pr.new/@withstudiocms/component-registry@1538

@withstudiocms/config-utils

npm i https://pkg.pr.new/@withstudiocms/config-utils@1538

@withstudiocms/effect

npm i https://pkg.pr.new/@withstudiocms/effect@1538

@withstudiocms/internal_helpers

npm i https://pkg.pr.new/@withstudiocms/internal_helpers@1538

@withstudiocms/kysely

npm i https://pkg.pr.new/@withstudiocms/kysely@1538

@withstudiocms/sdk

npm i https://pkg.pr.new/@withstudiocms/sdk@1538

@withstudiocms/template-lang

npm i https://pkg.pr.new/@withstudiocms/template-lang@1538

commit: 1d6bc61

@renovate renovate Bot force-pushed the renovate/pnpm-workspace-dependencies branch from 6829b9a to e803427 Compare March 23, 2026 12:24
@renovate renovate Bot changed the title chore(deps): update dependency kysely to ^0.28.13 chore(deps): update dependency kysely to ^0.28.14 Mar 23, 2026
@renovate renovate Bot force-pushed the renovate/pnpm-workspace-dependencies branch from e803427 to 54f971d Compare March 24, 2026 01:01
@renovate renovate Bot changed the title chore(deps): update dependency kysely to ^0.28.14 chore(deps): update pnpm workspace dependencies Mar 24, 2026
@renovate renovate Bot force-pushed the renovate/pnpm-workspace-dependencies branch 5 times, most recently from 01601fe to 8482637 Compare March 31, 2026 15:05
@renovate renovate Bot force-pushed the renovate/pnpm-workspace-dependencies branch 3 times, most recently from cec276e to 316697c Compare April 9, 2026 00:01
@renovate renovate Bot force-pushed the renovate/pnpm-workspace-dependencies branch 7 times, most recently from 103199e to 61c37fb Compare April 16, 2026 14:47
@renovate renovate Bot force-pushed the renovate/pnpm-workspace-dependencies branch 4 times, most recently from 0d1bfe5 to 145bdef Compare April 25, 2026 17:57
@renovate renovate Bot force-pushed the renovate/pnpm-workspace-dependencies branch from 145bdef to 39b0b61 Compare April 30, 2026 06:06
@renovate renovate Bot force-pushed the renovate/pnpm-workspace-dependencies branch 6 times, most recently from 1b5d3f8 to 6b7c0f2 Compare June 9, 2026 12:03
@renovate renovate Bot force-pushed the renovate/pnpm-workspace-dependencies branch 2 times, most recently from b9d0a41 to c0b3790 Compare June 13, 2026 01:12
@renovate renovate Bot force-pushed the renovate/pnpm-workspace-dependencies branch 3 times, most recently from 53c3c48 to c9fbfbc Compare June 22, 2026 18:37
@renovate renovate Bot force-pushed the renovate/pnpm-workspace-dependencies branch 4 times, most recently from 3d6da01 to 7488c8e Compare July 11, 2026 08:29
@renovate renovate Bot force-pushed the renovate/pnpm-workspace-dependencies branch from 7488c8e to 7ea5f32 Compare July 11, 2026 09:10
@renovate

renovate Bot commented Jul 11, 2026

Copy link
Copy Markdown
Contributor Author

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

@Adammatthiesen Adammatthiesen merged commit e299470 into main Jul 11, 2026
28 checks passed
@Adammatthiesen Adammatthiesen deleted the renovate/pnpm-workspace-dependencies branch July 11, 2026 09:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant