chore(deps): bump the production group across 1 directory with 21 updates by dependabot[bot] · Pull Request #468 · tempoxyz/docs

dependabot · 2026-06-02T10:32:56Z

Bumps the production group with 21 updates in the / directory:

Package	From	To
@iconify-json/lucide	`1.2.102`	`1.2.109`
@iconify-json/simple-icons	`1.2.77`	`1.2.84`
@takumi-rs/image-response	`0.62.8`	`1.5.1`
@takumi-rs/wasm	`0.62.8`	`1.5.1`
@tanstack/react-query	`5.99.0`	`5.100.14`
@vercel/analytics	`1.6.1`	`2.0.1`
@vercel/speed-insights	`1.3.1`	`2.0.0`
@wagmi/core	`3.4.11`	`3.4.12`
abitype	`1.2.3`	`1.2.4`
accounts	`0.10.7`	`0.14.4`
ox	`0.14.20`	`0.14.24`
posthog-js	`1.367.0`	`1.376.1`
posthog-node	`5.29.2`	`5.35.3`
sql-formatter	`15.7.3`	`15.8.0`
tailwind-merge	`3.5.0`	`3.6.0`
tailwindcss	`4.2.2`	`4.3.0`
viem	`2.48.8`	`2.51.0`
wagmi	`3.6.14`	`3.6.15`
waku	`1.0.0-beta.0`	`1.0.0-beta.1`
webauthx	`0.1.1`	`0.1.2`
zod	`4.3.6`	`4.4.3`

Updates @iconify-json/lucide from 1.2.102 to 1.2.109

Commits

See full diff in compare view

Updates @iconify-json/simple-icons from 1.2.77 to 1.2.84

Commits

See full diff in compare view

Updates @takumi-rs/image-response from 0.62.8 to 1.5.1

Release notes

Sourced from @takumi-rs/image-response's releases.

@takumi-rs/image-response@1.5.1

Patch Changes

takumi-js@1.5.1

@takumi-rs/image-response@1.5.0

Patch Changes

takumi-js@1.5.0

@takumi-rs/image-response@1.4.1

Patch Changes

Updated dependencies [d6936e5]

takumi-js@1.4.1

@takumi-rs/image-response@1.4.0

Patch Changes

takumi-js@1.4.0

@takumi-rs/image-response@1.3.0

Patch Changes

takumi-js@1.3.0

@takumi-rs/image-response@1.2.1

Patch Changes

takumi-js@1.2.1

@takumi-rs/image-response@1.1.2

Patch Changes

takumi-js@1.1.2

@takumi-rs/image-response@1.1.1

Patch Changes

takumi-js@1.1.1

@takumi-rs/image-response@1.1.0

Patch Changes

takumi-js@1.1.0

@takumi-rs/image-response@1.0.16

Patch Changes

takumi-js@1.0.16

... (truncated)

Commits

e3a991b Version Packages (#726)
2321dbf Crate: fix double-DPR scaling for rem units in descendants (#725)
5ba4062 Version Packages (#724)
9dc58e3 Crate: align Tailwind v4 utilities with spec (#722)
a02c17b Version Packages (#721)
d6936e5 JS: expose helpers/html subpath export (#720)
72c19fd Crate: fix text-fit: grow with background-clip: text and `-webkit-text-st...
0b53ce7 Version Packages (#707)
1a92a0f Template: refresh images
1d5daed NAPI: fixes #715 missing index.d.ts file
Additional commits viewable in compare view

Updates @takumi-rs/wasm from 0.62.8 to 1.5.1

Release notes

Sourced from @takumi-rs/wasm's releases.

@takumi-rs/wasm@1.5.1

Patch Changes

@takumi-rs/helpers@1.5.1

@takumi-rs/wasm@1.5.0

Patch Changes

@takumi-rs/helpers@1.5.0

@takumi-rs/wasm@1.4.1

Patch Changes

@takumi-rs/helpers@1.4.1

@takumi-rs/wasm@1.4.0

Patch Changes

Updated dependencies [e83ab19]

@takumi-rs/helpers@1.4.0

@takumi-rs/wasm@1.3.0

Patch Changes

@takumi-rs/helpers@1.3.0

@takumi-rs/wasm@1.2.1

Patch Changes

@takumi-rs/helpers@1.2.1

@takumi-rs/wasm@1.1.2

Patch Changes

@takumi-rs/helpers@1.1.2

@takumi-rs/wasm@1.1.1

Patch Changes

@takumi-rs/helpers@1.1.1

@takumi-rs/wasm@1.1.0

Patch Changes

@takumi-rs/helpers@1.1.0

@takumi-rs/wasm@1.0.16

Patch Changes

@takumi-rs/helpers@1.0.16

... (truncated)

Commits

e3a991b Version Packages (#726)
2321dbf Crate: fix double-DPR scaling for rem units in descendants (#725)
5ba4062 Version Packages (#724)
9dc58e3 Crate: align Tailwind v4 utilities with spec (#722)
a02c17b Version Packages (#721)
d6936e5 JS: expose helpers/html subpath export (#720)
72c19fd Crate: fix text-fit: grow with background-clip: text and `-webkit-text-st...
0b53ce7 Version Packages (#707)
1a92a0f Template: refresh images
1d5daed NAPI: fixes #715 missing index.d.ts file
Additional commits viewable in compare view

Updates @tanstack/react-query from 5.99.0 to 5.100.14

Release notes

Sourced from @tanstack/react-query's releases.

@tanstack/react-query-devtools@5.100.14

Patch Changes

Updated dependencies [ed20b6d]:

@tanstack/react-query@5.100.14

@tanstack/query-devtools@5.100.14

@tanstack/react-query-next-experimental@5.100.14

Patch Changes

Updated dependencies [ed20b6d]:

@tanstack/react-query@5.100.14

@tanstack/react-query-persist-client@5.100.14

Patch Changes

Updated dependencies [ed20b6d]:

@tanstack/react-query@5.100.14

@tanstack/query-persist-client-core@5.100.14

@tanstack/react-query@5.100.14

Patch Changes

fix(react-query): do not go into optimistic fetching state when not subscribed (#10759)

Updated dependencies []:

@tanstack/query-core@5.100.14

@tanstack/react-query-devtools@5.100.13

Patch Changes

Updated dependencies []:

@tanstack/query-devtools@5.100.13

@tanstack/react-query@5.100.13

@tanstack/react-query-next-experimental@5.100.13

Patch Changes

Updated dependencies []:

@tanstack/react-query@5.100.13

@tanstack/react-query-persist-client@5.100.13

Patch Changes

Updated dependencies []:

@tanstack/query-persist-client-core@5.100.13

@tanstack/react-query@5.100.13

@tanstack/react-query@5.100.13

Patch Changes

... (truncated)

Changelog

Sourced from @tanstack/react-query's changelog.

5.100.14

Patch Changes

fix(react-query): do not go into optimistic fetching state when not subscribed (#10759)

Updated dependencies []:

@tanstack/query-core@5.100.14

5.100.13

Patch Changes

Updated dependencies [d423168]:

@tanstack/query-core@5.100.13

5.100.12

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.100.12

5.100.11

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.100.11

5.100.10

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.100.10

5.100.9

Patch Changes

Updated dependencies [fcee7bd]:

@tanstack/query-core@5.100.9

5.100.8

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.100.8

... (truncated)

Commits

ba6e7be ci: Version Packages (#10767)
ed20b6d fix(react): do not go into optimistic fetching state when not subscribed (#10...
05cf2bc ci: Version Packages (#10758)
d423168 fix(query-core): use built-in NoInfer for generic indexed-access types (#10593)
5ff4f69 ci: Version Packages (#10755)
3e85350 ci: Version Packages (#10706)
9d2692c ci: Version Packages (#10695)
74fa05e chore(tsconfig.json): narrow 'include' pattern to prevent TS6053 race conditi...
8c3d523 ci: Version Packages (#10630)
9800c8f ci: Version Packages (#10623)
Additional commits viewable in compare view

Updates @vercel/analytics from 1.6.1 to 2.0.1

Release notes

Sourced from @vercel/analytics's releases.

v2.0.1

What's Changed

fix(nuxt): set nuxt as optional dependency by @CHC383 in vercel/analytics#193

New Contributors

@CHC383 made their first contribution in vercel/analytics#193

Full Changelog: vercel/analytics@v2.0.0...v2.0.1

v2.0.0

What's Changed

Breaking Changes

License changed from MPL-2.0 to MIT (#170)

Nuxt: introduce module support. If you need to configure it, load injectAnalytics() from @vercel/analytics/nuxt/runtime (#183)

Features

feat: load dynamic configuration (#184) — analytics config can now be loaded dynamically

Bug Fixes

fix: src and endpoint paths do not work when relative (#186)

Full Changelog: vercel/speed-insights@1.6.1...2.0.0

v2.0.0-canary.1

Canary release for testing 2.0.0 changes

Commits

0d69416 chore: bump version to v2.0.1 (#195)
c7f3c37 fix(nuxt): set nuxt as optional dependency (#193)
c3e3805 chore: bump version to v2.0.0
425a797 chore: bump version to v2.0.0-canary.1
22888e3 fix: src and endpoint paths do not work when relative (#186)
3879f57 feat: load dynamic configuration (#184)
95f8914 feat(nuxt)!: Add support for injectAnalytics() and Nuxt module (#183)
e407489 feat!: change license to MIT (#170)
See full diff in compare view

Updates @vercel/speed-insights from 1.3.1 to 2.0.0

Release notes

Sourced from @vercel/speed-insights's releases.

v2.0.0

What's Changed

Breaking Changes

License changed from Apache-2.0 to MIT (#111)

Nuxt: introduce module support (#110). In case you need to configure it, load injectSpeedInsights() from @vercel/speed-insights/nuxt/runtime

Features

feat: load dynamic configuration (#112) — speed insights config can now be loaded dynamically

Full Changelog: vercel/speed-insights@1.3.1...2.0.0

v2.0.0-canary.1

Canary release for testing 2.0.0 changes

1.5.0-canary.4

What's Changed

fix: next/jest does not support import.meta by @feugy in vercel/speed-insights#91

Full Changelog: vercel/speed-insights@1.2.0-canary.3...1.5.0-canary.4

Commits

828d10c chore: bump version to v2.0.0
15cb241 chore: bump version to v2.0.0-canary.1
b10a09c feat: load dynamic configuration (#112)
c6f4e37 feat(nuxt)!: Add support for injectSpeedInsights() and Nuxt module (#110)
See full diff in compare view

Updates @wagmi/core from 3.4.11 to 3.4.12

Release notes

Sourced from @wagmi/core's releases.

@wagmi/core@3.4.12

Patch Changes
Handled malformed cookie state in cookieToInitialState. (#5116)
wagmi/tempo: Renamed Actions.wallet.send to Actions.wallet.transfer and Hooks.wallet.useSend to Hooks.wallet.useTransfer. (#5121)

Also bumps the accounts peer dependency to ~0.12.
- await Actions.wallet.send(config, {
-   to: '0x...',
-   token: '0x...',
-   value: '1.5',
- })
+ await Actions.wallet.transfer(config, {
+   amount: '1.5',
+   to: '0x...',
+   token: '0x...',
+ })
- const send = Hooks.wallet.useSend()
+ const transfer = Hooks.wallet.useTransfer()

Changelog

Sourced from @wagmi/core's changelog.

3.4.12

Patch Changes
Handled malformed cookie state in cookieToInitialState. (#5116)
wagmi/tempo: Renamed Actions.wallet.send to Actions.wallet.transfer and Hooks.wallet.useSend to Hooks.wallet.useTransfer. (#5121)

Also bumps the accounts peer dependency to ~0.12.
- await Actions.wallet.send(config, {
-   to: '0x...',
-   token: '0x...',
-   value: '1.5',
- })
+ await Actions.wallet.transfer(config, {
+   amount: '1.5',
+   to: '0x...',
+   token: '0x...',
+ })
- const send = Hooks.wallet.useSend()
+ const transfer = Hooks.wallet.useTransfer()

Commits

98f9a16 chore: version packages (#5122)
4c44cd0 refactor(tempo): rename wallet.send to wallet.transfer (#5121)
f1e6d70 Handle malformed SSR cookie state (#5116)
See full diff in compare view

Updates abitype from 1.2.3 to 1.2.4

Release notes

Sourced from abitype's releases.

abitype@1.2.4

Patch Changes

Fixed Zod identifier regex to anchor start and end, rejecting invalid identifiers like café, 2g, and hello👋. (#296)

Commits

942f0a6 chore: version packages (#301)
add0998 chore: fix typecheck
b39c7b9 fix: identifier should be alnum (#296)
6c33901 chore: up pnpm
76a9b65 chore(deps): bump actions/checkout from 6.0.1 to 6.0.2 (#295)
afb3657 chore(deps): bump changesets/action from 1.5.3 to 1.6.0 (#294)
965379d chore: fix pkg.pr.new version script
See full diff in compare view

Updates accounts from 0.10.7 to 0.14.4

Release notes

Sourced from accounts's releases.

accounts@0.14.4

Patch Changes

8afc239: Fix React Native auth token handling and mobile auth URL encoding.

accounts@0.14.3

Patch Changes

801e18a: Simplified Privy account loading and fixed stale wallet cache handling after failed account selection.

f176676: Point React Native mobile authentication at the remote manager route.

accounts@0.14.2

Patch Changes

022d947: Simplified Privy account loading and fixed stale wallet cache handling after failed account selection.

accounts@0.14.1

Patch Changes

62705cb: Added an on filter to the wallet_connect showDeposit capability to direct if the deposit screen should be shown on login or register.

accounts@0.14.0

Minor Changes

feb1ab6: Breaking: Updated Tempo chain imports to use scoped chain entrypoints. Bump your Viem version to >=2.50.4.

Patch Changes

7aeec48: Fixed access key authorization to reject requests that require external key material when none is provided.

78778cb: Added a Privy adapter for connecting and signing with app-provided Privy embedded wallet accounts.

e15757f: Added a showDeposit capability to wallet_connect.

accounts@0.13.0

Minor Changes
0666744: Breaking: Changed Handler.auth() to require callers to provide origin or domain, so SIWE challenge and verify flows pinned domain binding instead of deriving it from request Host headers.
f652ff2: Breaking: Updated wallet_deposit params to use amount and token and removed value.
provider.request({
  method: 'wallet_deposit',
- params: [{ value: '25' }],
+ params: [{ amount: '25', token: 'pathUSD' }],
})
Patch Changes

ab516b7: Fixed WebAuthn credential storage to bind credentials to their registered user id and use atomic duplicate rejection when the configured Kv supports it.

4029a37: Fixed dialog auth capability handling to forward returned auth tokens through wallet connection account results.

... (truncated)

Changelog

Sourced from accounts's changelog.

0.14.4

Patch Changes

8afc239: Fix React Native auth token handling and mobile auth URL encoding.

0.14.3

Patch Changes

801e18a: Simplified Privy account loading and fixed stale wallet cache handling after failed account selection.

f176676: Point React Native mobile authentication at the remote manager route.

0.14.2

Patch Changes

022d947: Simplified Privy account loading and fixed stale wallet cache handling after failed account selection.

0.14.1

Patch Changes

62705cb: Added an on filter to the wallet_connect showDeposit capability to direct if the deposit screen should be shown on login or register.

0.14.0

Minor Changes

feb1ab6: Breaking: Updated Tempo chain imports to use scoped chain entrypoints. Bump your Viem version to >=2.50.4.

Patch Changes

7aeec48: Fixed access key authorization to reject requests that require external key material when none is provided.

78778cb: Added a Privy adapter for connecting and signing with app-provided Privy embedded wallet accounts.

e15757f: Added a showDeposit capability to wallet_connect.

0.13.0

Minor Changes
0666744: Breaking: Changed Handler.auth() to require callers to provide origin or domain, so SIWE challenge and verify flows pinned domain binding instead of deriving it from request Host headers.
f652ff2: Breaking: Updated wallet_deposit params to use amount and token and removed value.
provider.request({
  method: 'wallet_deposit',
- params: [{ value: '25' }],
+ params: [{ amount: '25', token: 'pathUSD' }],
})

... (truncated)

Commits

168c422 chore: version packages (#558)
8afc239 fix: handle React Native auth tokens (#557)
863fd94 chore: version packages (#552)
801e18a docs(site): migrate landing page (#385)
f176676 fix: todos (#551)
82b51b0 fix: point React Native auth at remote mobile route (#550)
200b72a chore: version packages (#537)
022d947 refactor: simplify Privy account loading (#536)
c7d6c71 docs: update deposit guidance (#535)
b09571f chore: version packages (#534)
Additional commits viewable in compare view

Updates ox from 0.14.20 to 0.14.24

Release notes

Sourced from ox's releases.

ox@0.14.24

Patch Changes

#254 d837628 Thanks @jxom! - Added ChannelDescriptor.from for normalizing TIP-20 channel reserve descriptors.

ox@0.14.23

Patch Changes

#252 19cd833 Thanks @jxom! - Added TIP-20 channel reserve constants, channel id computation, and voucher signing helpers.

ox@0.14.22

Patch Changes

#227 ffa64c0 Thanks @Genmin! - Fixed Secp256k1.verify narrowing signature branches before address recovery.

ox@0.14.21

Patch Changes

#246 32cf459 Thanks @0xrusowsky! - Added TxEnvelopeTempo.encodeForSigning to expose the raw Tempo sender-signing preimage bytes.

#248 e0474e9 Thanks @jxom! - Added blockTimestamp support to transaction RPC conversions.

Commits

38b67b1 chore: version packages (#255)
d837628 feat(tempo): add channel descriptor helper (#254)
4501524 chore: version packages (#253)
19cd833 feat(tempo): add Channel reserve helpers (#252)
4620d6b chore: version packages (#250)
ffa64c0 refactor: narrow secp256k1 verify signature branches (#227)
53ac1ff chore: version packages (#249)
e0474e9 fix: support transaction block timestamps (#248)
32cf459 feat(tempo): expose transaction encoding for signing (#246)
df48ab1 up
Additional commits viewable in compare view

Updates posthog-js from 1.367.0 to 1.376.1

Release notes

Sourced from posthog-js's releases.

posthog-js@1.376.1

1.376.1

Patch Changes

Updated dependencies [5568f12]:

@posthog/core@1.29.10

@posthog/types@1.376.1

Commits

55b3c42 chore: update versions and lockfile [version bump]
5568f12 fix: don't autocapture PostHog's own network errors in react-native (#3665)
1d0daf0 chore: update versions and lockfile [version bump]
5d7a2d3 fix(node): fire separate $feature_flag_called events per group context (#3658)
e135d61 chore: update versions and lockfile [version bump]
f12ee73 chore: bump @posthog/cli to ~0.7.13 (#3661)
3d41c1d chore: update versions and lockfile [version bump]
c806cca feat: use async gzip for replay event compression (#3639)
6e8d349 feat(replay): expose rrweb subpath entries on posthog-js (#3655)
ec81cc6 chore: validate changeset versioning (#3647)
Additional commits viewable in compare view

Updates posthog-node from 5.29.2 to 5.35.3

Release notes

Sourced from posthog-node's releases.

posthog-node@5.35.3

5.35.3

Patch Changes

Updated dependencies [5568f12]:

@posthog/core@1.29.10

Changelog

Sourced from posthog-node's changelog.

5.35.3

Patch Changes

Updated dependencies [5568f12]:

@posthog/core@1.29.10

5.35.2

Patch Changes

#3658 5d7a2d3 Thanks @gustavohstrassburger! - Include group context in the $feature_flag_called deduplication key in _captureFlagCalledEventIfNeeded, so events fire independently per group combination. (2026-05-25)

5.35.1

Patch Changes

Updated dependencies [c806cca]:

@posthog/core@1.29.9

5.35.0

Minor Changes

#3642 18ea8b5 Thanks @dustinbyrne! - Promote feature flag definition cache provider types to the main posthog-node export and deprecate posthog-node/experimental imports. (2026-05-21)

Patch Changes

Updated dependencies []:

@posthog/core@1.29.8

5.34.10

Patch Changes

#3643 f42f371 Thanks @dmarticus! - Reject semver values with leading zeros in local flag evaluation. Per semver 2.0.0 §2, numeric identifiers must not include leading zeros — values like 1.07.3 are not valid semver and should not match targeting conditions. Both override values and flag values are now validated; invalid inputs surface as InconclusiveMatchError so the condition does not match. (2026-05-21)

5.34.9

Patch Changes

Updated dependencies []:

@posthog/core@1.29.7

5.34.8

Patch Changes

... (truncated)

Commits

55b3c42 chore: update versions and lockfile [version bump]
1d0daf0 chore: update versions and lockfile [version bump]
5d7a2d3 fix(node): fire separate $feature_flag_called events per group context (#3658)
3d41c1d chore: update versions and lockfile [version bump]
a05405d chore: update versions and lockfile [version bump]
18ea8b5 feat(node): promote flag definition cache provider types (#3642)
1fcb5ae chore: update versions and lockfile [version bump]
f42f371 fix(node): reject leading-zero semver values in local evaluation (#3643)
2f46fe6 chore: update versions and lockfile [version bump]
993a165 chore: update versions and lockfile [version bump]
Additional commits viewable in compare view

Updates sql-formatter from 15.7.3 to 15.8.0

Release notes

Sourced from sql-formatter's releases.

15.8.0

PostgreSQL formatting

Add support for PostgreSQL keywords in CREATE CONSTRAINT TRIGGER (#948) (thanks to @karlhorky)

Internal changes

Switch from yarn to pnpm (#949)

View changes on GitHub

15.7.4

Bugfix

Support Tcl-style $param(...) syntax in SQLite (#944, #943) (thanks to @SAY-5)

Commits

a3bfeeb Release v15.8.0
a7f50d8 Add tagName config to release-it
dab8693 Add release-it-pnpm as plugin to release-it
5ab2c80 Add release-it-pnpm
1a000ca Configure release-it to use pnpm
34fe5b0 Fix scripts using -- (pnpm interprets this as file name)
6610b6a Add pnpm to lockfile
af633e8 Switch from yarn@1.22.22 to pnpm@11.0.8 (#949)
ba7437e Ignore pnpm-lock.yaml from Prettier
dcee63f Work around pnpm bug with pmOnFail + devEngines.packageManager
Additional commits viewable in compare view

Updates tailwind-merge from 3.5.0 to 3.6.0

Release notes

Sourced from tailwind-merge's releases.

v3.6.0

New Features

Add support for Tailwind CSS v4.3 by @dcastil in dcastil/tailwind-merge#677

Add postfixLookupClassGroups option to config to support Tailwind utilities where a slash is part of the full class name, like named container queries

Add support for readonly array values by @unional in dcastil/tailwind-merge#652

Documentation

Fix broken links in README by @maurer2 in dcastil/tailwind-merge#662

Other

Harden internal CI pipeline security by omitting git checkout by @dcastil, suggested by @kyletaylored in dcastil/tailwind-merge@6b2499c

Full Changelog: dcastil/tailwind-merge@v3.5.0...v3.6.0

Thanks to @brandonmcconnell, @manavm1990, @langy, @roboflow, @syntaxfm, @getsentry, @codecov, a private sponsor, @block, @openclaw, @sourcegraph, @mike-healy and more via @thnxdev for sponsoring tailwind-merge! ❤️

Commits

d54f7e5 v3.6.0
638871a Update README to add info about Tailwind CSS v4.3 support
39fc7b5 Revert "v3.6.0"
bd8390f v3.6.0
802877c add v3.6.0 changelog
a35feda Merge pull request #665 from dcastil/renovate/rollup-plugin-babel-7.x
940389c Merge pull request #667 from dcastil/renovate/release-drafter-release-drafter...
005af6d pin to specific version
5816ced implement breaking changes
17041e1 Merge pull request #676 from dcastil/dependabot/npm_and_yarn/babel/plugin-tra...
Additional commits viewable in compare view

Updates tailwindcss from 4.2.2 to 4.3.0

Release notes

Sourced from tailwindcss's releases.

v4.3.0

Added

Add @container-size utility (#18901)

Add scrollbar-{auto,thin,none} utilities for scrollbar-width, and scrollbar-thumb-* / scrollbar-track-* color utilities for scrollbar-color (#19981, #20019)

Add scrollbar-gutter-* utilities (#20018)

Add zoom-* utilities (#20020)

Add tab-* utilities (#20022)

Allow using @variant with stacked variants (e.g. @variant hover:focus { … }) (#19996)

Allow using @variant with compound variants (e.g. @variant hover, focus { … }) (#19996)

Support --default(…) in --value(…) and --modifier(…) for functional @utility definitions (#19989)

Fixed

Ensure @plugin resolves package JavaScript entries instead of browser CSS entries when using @tailwindcss/vite (#19949)

Fix relative @import and @plugin paths resolving from the wrong directory when using @tailwindcss/vite (#19965)

Ensure CSS files containing @variant are processed by @tailwindcss/vite (#19966)

Resolve imports relative to base when result.opts.from is not provided when using @tailwindcss/postcss (#19980)

Canonicalization: preserve significant _ whitespace in arbitrary values (#19986)

Canonicalization: add parentheses when removing whitespace from arbitrary values would hurt readability (e.g. w-[calc(100%---s... Description has been truncated

…ates Bumps the production group with 21 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@iconify-json/lucide](https://github.com/iconify/icon-sets) | `1.2.102` | `1.2.109` | | [@iconify-json/simple-icons](https://github.com/iconify/icon-sets) | `1.2.77` | `1.2.84` | | [@takumi-rs/image-response](https://github.com/kane50613/takumi) | `0.62.8` | `1.5.1` | | [@takumi-rs/wasm](https://github.com/kane50613/takumi) | `0.62.8` | `1.5.1` | | [@tanstack/react-query](https://github.com/TanStack/query/tree/HEAD/packages/react-query) | `5.99.0` | `5.100.14` | | [@vercel/analytics](https://github.com/vercel/analytics/tree/HEAD/packages/web) | `1.6.1` | `2.0.1` | | [@vercel/speed-insights](https://github.com/vercel/speed-insights/tree/HEAD/packages/web) | `1.3.1` | `2.0.0` | | [@wagmi/core](https://github.com/wevm/wagmi/tree/HEAD/packages/core) | `3.4.11` | `3.4.12` | | [abitype](https://github.com/wevm/abitype) | `1.2.3` | `1.2.4` | | [accounts](https://github.com/tempoxyz/accounts) | `0.10.7` | `0.14.4` | | [ox](https://github.com/wevm/ox) | `0.14.20` | `0.14.24` | | [posthog-js](https://github.com/PostHog/posthog-js) | `1.367.0` | `1.376.1` | | [posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node) | `5.29.2` | `5.35.3` | | [sql-formatter](https://github.com/sql-formatter-org/sql-formatter) | `15.7.3` | `15.8.0` | | [tailwind-merge](https://github.com/dcastil/tailwind-merge) | `3.5.0` | `3.6.0` | | [tailwindcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss) | `4.2.2` | `4.3.0` | | [viem](https://github.com/wevm/viem) | `2.48.8` | `2.51.0` | | [wagmi](https://github.com/wevm/wagmi/tree/HEAD/packages/react) | `3.6.14` | `3.6.15` | | [waku](https://github.com/wakujs/waku/tree/HEAD/packages/waku) | `1.0.0-beta.0` | `1.0.0-beta.1` | | [webauthx](https://github.com/wevm/webauthx) | `0.1.1` | `0.1.2` | | [zod](https://github.com/colinhacks/zod) | `4.3.6` | `4.4.3` | Updates `@iconify-json/lucide` from 1.2.102 to 1.2.109 - [Commits](https://github.com/iconify/icon-sets/commits) Updates `@iconify-json/simple-icons` from 1.2.77 to 1.2.84 - [Commits](https://github.com/iconify/icon-sets/commits) Updates `@takumi-rs/image-response` from 0.62.8 to 1.5.1 - [Release notes](https://github.com/kane50613/takumi/releases) - [Commits](https://github.com/kane50613/takumi/compare/@takumi-rs/image-response@0.62.8...@takumi-rs/image-response@1.5.1) Updates `@takumi-rs/wasm` from 0.62.8 to 1.5.1 - [Release notes](https://github.com/kane50613/takumi/releases) - [Commits](https://github.com/kane50613/takumi/compare/@takumi-rs/wasm@0.62.8...@takumi-rs/wasm@1.5.1) Updates `@tanstack/react-query` from 5.99.0 to 5.100.14 - [Release notes](https://github.com/TanStack/query/releases) - [Changelog](https://github.com/TanStack/query/blob/main/packages/react-query/CHANGELOG.md) - [Commits](https://github.com/TanStack/query/commits/@tanstack/react-query@5.100.14/packages/react-query) Updates `@vercel/analytics` from 1.6.1 to 2.0.1 - [Release notes](https://github.com/vercel/analytics/releases) - [Commits](https://github.com/vercel/analytics/commits/v2.0.1/packages/web) Updates `@vercel/speed-insights` from 1.3.1 to 2.0.0 - [Release notes](https://github.com/vercel/speed-insights/releases) - [Commits](https://github.com/vercel/speed-insights/commits/v2.0.0/packages/web) Updates `@wagmi/core` from 3.4.11 to 3.4.12 - [Release notes](https://github.com/wevm/wagmi/releases) - [Changelog](https://github.com/wevm/wagmi/blob/main/packages/core/CHANGELOG.md) - [Commits](https://github.com/wevm/wagmi/commits/@wagmi/core@3.4.12/packages/core) Updates `abitype` from 1.2.3 to 1.2.4 - [Release notes](https://github.com/wevm/abitype/releases) - [Commits](https://github.com/wevm/abitype/compare/abitype@1.2.3...abitype@1.2.4) Updates `accounts` from 0.10.7 to 0.14.4 - [Release notes](https://github.com/tempoxyz/accounts/releases) - [Changelog](https://github.com/tempoxyz/accounts/blob/main/CHANGELOG.md) - [Commits](https://github.com/tempoxyz/accounts/compare/accounts@0.10.7...accounts@0.14.4) Updates `ox` from 0.14.20 to 0.14.24 - [Release notes](https://github.com/wevm/ox/releases) - [Commits](https://github.com/wevm/ox/compare/ox@0.14.20...ox@0.14.24) Updates `posthog-js` from 1.367.0 to 1.376.1 - [Release notes](https://github.com/PostHog/posthog-js/releases) - [Changelog](https://github.com/PostHog/posthog-js/blob/main/CHANGELOG.md) - [Commits](https://github.com/PostHog/posthog-js/compare/posthog-js@1.367.0...posthog-js@1.376.1) Updates `posthog-node` from 5.29.2 to 5.35.3 - [Release notes](https://github.com/PostHog/posthog-js/releases) - [Changelog](https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md) - [Commits](https://github.com/PostHog/posthog-js/commits/posthog-node@5.35.3/packages/node) Updates `sql-formatter` from 15.7.3 to 15.8.0 - [Release notes](https://github.com/sql-formatter-org/sql-formatter/releases) - [Commits](sql-formatter-org/sql-formatter@v15.7.3...v15.8.0) Updates `tailwind-merge` from 3.5.0 to 3.6.0 - [Release notes](https://github.com/dcastil/tailwind-merge/releases) - [Commits](dcastil/tailwind-merge@v3.5.0...v3.6.0) Updates `tailwindcss` from 4.2.2 to 4.3.0 - [Release notes](https://github.com/tailwindlabs/tailwindcss/releases) - [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/tailwindlabs/tailwindcss/commits/v4.3.0/packages/tailwindcss) Updates `viem` from 2.48.8 to 2.51.0 - [Release notes](https://github.com/wevm/viem/releases) - [Commits](https://github.com/wevm/viem/compare/viem@2.48.8...viem@2.51.0) Updates `wagmi` from 3.6.14 to 3.6.15 - [Release notes](https://github.com/wevm/wagmi/releases) - [Changelog](https://github.com/wevm/wagmi/blob/main/packages/react/CHANGELOG.md) - [Commits](https://github.com/wevm/wagmi/commits/wagmi@3.6.15/packages/react) Updates `waku` from 1.0.0-beta.0 to 1.0.0-beta.1 - [Release notes](https://github.com/wakujs/waku/releases) - [Changelog](https://github.com/wakujs/waku/blob/main/CHANGELOG.md) - [Commits](https://github.com/wakujs/waku/commits/v1.0.0-beta.1/packages/waku) Updates `webauthx` from 0.1.1 to 0.1.2 - [Release notes](https://github.com/wevm/webauthx/releases) - [Changelog](https://github.com/wevm/webauthx/blob/main/CHANGELOG.md) - [Commits](https://github.com/wevm/webauthx/compare/webauthx@0.1.1...webauthx@0.1.2) Updates `zod` from 4.3.6 to 4.4.3 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](colinhacks/zod@v4.3.6...v4.4.3) --- updated-dependencies: - dependency-name: "@iconify-json/lucide" dependency-version: 1.2.109 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: "@iconify-json/simple-icons" dependency-version: 1.2.84 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: "@takumi-rs/image-response" dependency-version: 1.5.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: production - dependency-name: "@takumi-rs/wasm" dependency-version: 1.5.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: production - dependency-name: "@tanstack/react-query" dependency-version: 5.100.14 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: "@vercel/analytics" dependency-version: 2.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: production - dependency-name: "@vercel/speed-insights" dependency-version: 2.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: production - dependency-name: "@wagmi/core" dependency-version: 3.4.12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: abitype dependency-version: 1.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: accounts dependency-version: 0.14.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: ox dependency-version: 0.14.24 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: posthog-js dependency-version: 1.376.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: posthog-node dependency-version: 5.35.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: sql-formatter dependency-version: 15.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: tailwind-merge dependency-version: 3.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: tailwindcss dependency-version: 4.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: viem dependency-version: 2.51.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production - dependency-name: wagmi dependency-version: 3.6.15 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: waku dependency-version: 1.0.0-beta.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: webauthx dependency-version: 0.1.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production - dependency-name: zod dependency-version: 4.4.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production ... Signed-off-by: dependabot[bot] <support@github.com>

vercel · 2026-06-02T10:33:00Z

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
tempo-docs	Ready	Preview, Comment	Jun 2, 2026 10:34am

socket-security · 2026-06-02T10:33:45Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Package	Supply Chain Security	Quality	Maintenance
@takumi-rs/wasm@1.5.1
@iconify-json/simple-icons@1.2.84
webauthx@0.1.2
accounts@0.10.7 ⏵ 0.14.4	^-1	⁺¹	^-1
posthog-node@5.35.3
wagmi@3.6.15
@iconify-json/lucide@1.2.109
posthog-js@1.376.1
@vercel/analytics@2.0.1
@takumi-rs/image-response@1.5.1
waku@1.0.0-beta.1
tailwind-merge@3.6.0
@vercel/speed-insights@2.0.0
@tanstack/react-query@5.100.14
abitype@1.2.4
sql-formatter@15.8.0
viem@2.51.0
ox@0.14.24

View full report

socket-security · 2026-06-02T10:33:48Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		HTTP dependency: npm `viem` depends on https://pkg.pr.new/ox@386a3439fe1ce76d237930f8c6e6bb493746069a Dependency: ox @https://pkg.pr.new/ox@386a3439fe1ce76d237930f8c6e6bb493746069a Location: Package overview From: package.json → `npm/viem@2.51.0` ℹ Read more on: This package \| This alert \| What are http dependencies? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Publish the HTTP URL dependency to a public or private package repository and consume it from there. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/viem@2.51.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 2, 2026

vercel Bot deployed to Preview June 2, 2026 10:34 View deployment

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the production group across 1 directory with 21 updates#468

chore(deps): bump the production group across 1 directory with 21 updates#468
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-ecf70a1604

dependabot Bot commented on behalf of github Jun 2, 2026

Uh oh!

vercel Bot commented Jun 2, 2026 •

edited

Loading

Uh oh!

socket-security Bot commented Jun 2, 2026

Uh oh!

socket-security Bot commented Jun 2, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Jun 2, 2026

@​takumi-rs/image-response@​1.5.1

Patch Changes

@​takumi-rs/image-response@​1.5.0

Patch Changes

@​takumi-rs/image-response@​1.4.1

Patch Changes

@​takumi-rs/image-response@​1.4.0

Patch Changes

@​takumi-rs/image-response@​1.3.0

Patch Changes

@​takumi-rs/image-response@​1.2.1

Patch Changes

@​takumi-rs/image-response@​1.1.2

Patch Changes

@​takumi-rs/image-response@​1.1.1

Patch Changes

@​takumi-rs/image-response@​1.1.0

Patch Changes

@​takumi-rs/image-response@​1.0.16

Patch Changes

@​takumi-rs/wasm@​1.5.1

Patch Changes

@​takumi-rs/wasm@​1.5.0

Patch Changes

@​takumi-rs/wasm@​1.4.1

Patch Changes

@​takumi-rs/wasm@​1.4.0

Patch Changes

@​takumi-rs/wasm@​1.3.0

Patch Changes

@​takumi-rs/wasm@​1.2.1

Patch Changes

@​takumi-rs/wasm@​1.1.2

Patch Changes

@​takumi-rs/wasm@​1.1.1

Patch Changes

@​takumi-rs/wasm@​1.1.0

Patch Changes

@​takumi-rs/wasm@​1.0.16

Patch Changes

@​tanstack/react-query-devtools@​5.100.14

Patch Changes

@​tanstack/react-query-next-experimental@​5.100.14

Patch Changes

@​tanstack/react-query-persist-client@​5.100.14

Patch Changes

@​tanstack/react-query@​5.100.14

Patch Changes

@​tanstack/react-query-devtools@​5.100.13

Patch Changes

@​tanstack/react-query-next-experimental@​5.100.13

Patch Changes

@​tanstack/react-query-persist-client@​5.100.13

Patch Changes

@​tanstack/react-query@​5.100.13

Patch Changes

5.100.14

Patch Changes

5.100.13

Patch Changes

5.100.12

Patch Changes

5.100.11

Patch Changes

5.100.10

Patch Changes

5.100.9

Patch Changes

5.100.8

Patch Changes

v2.0.1

What's Changed

New Contributors

v2.0.0

What's Changed

Breaking Changes

Features

Bug Fixes

`@takumi-rs/image-response@1`.5.1

`@takumi-rs/image-response@1`.5.0

`@takumi-rs/image-response@1`.4.1

`@takumi-rs/image-response@1`.4.0

`@takumi-rs/image-response@1`.3.0

`@takumi-rs/image-response@1`.2.1

`@takumi-rs/image-response@1`.1.2

`@takumi-rs/image-response@1`.1.1

`@takumi-rs/image-response@1`.1.0

`@takumi-rs/image-response@1`.0.16

`@takumi-rs/wasm@1`.5.1

`@takumi-rs/wasm@1`.5.0

`@takumi-rs/wasm@1`.4.1

`@takumi-rs/wasm@1`.4.0

`@takumi-rs/wasm@1`.3.0

`@takumi-rs/wasm@1`.2.1

`@takumi-rs/wasm@1`.1.2

`@takumi-rs/wasm@1`.1.1

`@takumi-rs/wasm@1`.1.0

`@takumi-rs/wasm@1`.0.16

`@tanstack/react-query-devtools@5`.100.14

`@tanstack/react-query-next-experimental@5`.100.14

`@tanstack/react-query-persist-client@5`.100.14

`@tanstack/react-query@5`.100.14

`@tanstack/react-query-devtools@5`.100.13

`@tanstack/react-query-next-experimental@5`.100.13

`@tanstack/react-query-persist-client@5`.100.13

`@tanstack/react-query@5`.100.13

`@wagmi/core@3`.4.12