Skip to content

fix(deps): bump the prod-minor-patch group across 1 directory with 14 updates#427

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/prod-minor-patch-3f05d39cbf
Open

fix(deps): bump the prod-minor-patch group across 1 directory with 14 updates#427
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/prod-minor-patch-3f05d39cbf

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 29, 2026

Copy link
Copy Markdown
Contributor

Bumps the prod-minor-patch group with 14 updates in the / directory:

Package From To
@ably/chat 1.3.1 1.4.0
@inquirer/prompts 8.4.2 8.5.2
@oclif/core 4.11.1 4.11.11
@oclif/plugin-autocomplete 3.2.48 3.2.52
@oclif/plugin-warn-if-update-available 3.1.63 3.1.67
ably 2.21.0 2.23.0
ora 9.4.0 9.4.1
react 19.2.6 19.2.7
react-dom 19.2.6 19.2.7
smol-toml 1.6.1 1.7.0
tar 7.5.15 7.5.17
ws 8.20.0 8.21.0
lucide-react 1.14.0 1.21.0
tailwind-merge 3.5.0 3.6.0

Updates @ably/chat from 1.3.1 to 1.4.0

Release notes

Sourced from @​ably/chat's releases.

V1.4.0

What's Changed

New Contributors

Full Changelog: ably/ably-chat-js@1.3.1...1.4.0

Changelog

Sourced from @​ably/chat's changelog.

1.4.0 (2026-05-28)

New Features

  • Message Version History: Added room.messages.getVersions(serial) to retrieve the full version history of a message — the original create followed by any updates and deletes — in oldest-first order. #730
  • Idempotent REST Publishing: Added an opt-in idempotentRestPublishing flag on ChatClientOptions (default false). When enabled, the SDK attaches an idempotencyKey to send, update, and delete message requests so the server can deduplicate retried publish attempts. #726

Bug Fixes

  • Package Exports: Reordered the "types" condition to appear first in package.json exports so type resolution works correctly across bundlers. #725
  • Security: Bumped ws to 8.20.1 to resolve GHSA-58qx-3vcg-4xpx. #727
Commits
  • 1c9b068 Merge pull request #729 from ably/release/1.4.0
  • 89e560c chore: release 1.4.0
  • 47e4211 chore: release 1.4.0
  • 85b0e35 Merge pull request #730 from ably/feat/message-versions
  • 7770e52 docs: fix getVersions JSDoc and restore eslint ignores for local files
  • 3234f73 test: replace fixed sleep with vi.waitFor in versions integration test
  • b94dfd9 feat: add getVersions() to retrieve full message version history
  • b740b63 Merge pull request #726 from ably/feat/add-idempotent-rest-publish-support
  • f999a29 review: make idempotentRestPublishing required on ChatApi
  • 6592172 review: address PR #726 feedback
  • Additional commits viewable in compare view

Updates @inquirer/prompts from 8.4.2 to 8.5.2

Release notes

Sourced from @​inquirer/prompts's releases.

@​inquirer/prompts@​8.5.2

  • Fix security warnings in external-editor

@​inquirer/prompts@​8.5.1

  • Rolled back mute-stream dependency from v4 to v3 to undo breaking compatible engines.
  • Added tooling to prevent regression of the above in the future. This surfaced our min engines already enforced a higher limit, so adjusted the explicit limits to match the current state.

@​inquirer/prompts@​8.5.0

  • Feat: Read env variable INQUIRER_KEYBINDINGS to enable vim or emacs keybindings; making this a user preference instead of a library author preference. One caveat is doing so disable the search feature in the select prompt. Syntax: INQUIRER_KEYBINDINGS=vim,emacs.
  • Fix: Line wraps would sometime cause the cursor to be mispositioned relative to the input.
  • Chore: Bump dependencies.

@​inquirer/prompts@​8.4.3

  • Fix: Windows rendering bug
  • Fix: Preserve exact literal types in choices array (Typescript only)
  • Fix: Allow input default value to be of type undefined (Typescript only)
  • Bump dependencies
Commits
  • bfd8710 chore: Publish new release
  • 55cc5f3 feat: add reusable package lint CLI
  • 3af9ed0 test(inquirer): capture prompt runner output
  • 4381857 fix(@​inquirer/input): remove stale lint suppression
  • 45df331 fix(@​inquirer/external-editor): harden editor temp files
  • adef323 chore: limit CI token permissions
  • b43359d chore: Publish new release
  • 24ecae2 chore: fix yarn.lock
  • b078d97 fix: validate package engine compatibility
  • 3a49f9f chore(deps-dev): Bump oxfmt in the formatting group (#2143)
  • Additional commits viewable in compare view

Updates @oclif/core from 4.11.1 to 4.11.11

Release notes

Sourced from @​oclif/core's releases.

4.11.11

Bug Fixes

  • deps: bump undici from 6.25.0 to 6.27.0 (319945a)

4.11.10

Bug Fixes

  • deps: bump tinyglobby from 0.2.16 to 0.2.17 (f941872)

4.11.9

Bug Fixes

  • deps: bump tar from 7.5.12 to 7.5.16 (153400e)

4.11.8

Bug Fixes

  • deps: bump @​babel/core from 7.23.0 to 7.29.7 (3e552ea)

4.11.7

Bug Fixes

  • include error message in --json output (2cb3a76), closes #1608

4.11.6

Bug Fixes

4.11.5

Bug Fixes

4.11.4

Bug Fixes

  • deps: bump semver from 7.8.0 to 7.8.1 (65e054c)

4.11.3

Bug Fixes

  • updating tinyglobby dependency [skip-validate-pr] (1dc29ff)

4.11.2

Bug Fixes

... (truncated)

Changelog

Sourced from @​oclif/core's changelog.

4.11.11 (2026-06-23)

Bug Fixes

  • deps: bump undici from 6.25.0 to 6.27.0 (319945a)

4.11.10 (2026-06-22)

Bug Fixes

  • deps: bump tinyglobby from 0.2.16 to 0.2.17 (f941872)

4.11.9 (2026-06-21)

Bug Fixes

  • deps: bump tar from 7.5.12 to 7.5.16 (153400e)

4.11.8 (2026-06-21)

Bug Fixes

  • deps: bump @​babel/core from 7.23.0 to 7.29.7 (3e552ea)

4.11.7 (2026-06-17)

Bug Fixes

  • include error message in --json output (2cb3a76), closes #1608

4.11.6 (2026-06-15)

Bug Fixes

... (truncated)

Commits
  • 87eeca3 chore(release): 4.11.11 [skip ci]
  • 93a64bb Merge pull request #1617 from oclif/dependabot-npm_and_yarn-undici-6.27.0
  • 319945a fix(deps): bump undici from 6.25.0 to 6.27.0
  • 09090f6 Merge pull request #1610 from oclif/dependabot-npm_and_yarn-oclif-plugin-plug...
  • 246f11e chore(dev-deps): bump @​oclif/plugin-plugins from 5.4.69 to 5.4.78
  • 1a54415 chore(release): 4.11.10 [skip ci]
  • 48a73f8 Merge pull request #1609 from oclif/dependabot-npm_and_yarn-tinyglobby-0.2.17
  • b30501a chore(release): 4.11.9 [skip ci]
  • 7d9c43c Merge pull request #1618 from oclif/dependabot-npm_and_yarn-tar-7.5.16
  • f941872 fix(deps): bump tinyglobby from 0.2.16 to 0.2.17
  • Additional commits viewable in compare view

Updates @oclif/plugin-autocomplete from 3.2.48 to 3.2.52

Release notes

Sourced from @​oclif/plugin-autocomplete's releases.

3.2.52

Bug Fixes

  • deps: bump @​oclif/core from 4.11.4 to 4.11.8 (#1163) (f31fb99)

3.2.51

Bug Fixes

  • deps: bump @​babel/core from 7.10.3 to 7.29.7 (#1166) (9c9fc57)

3.2.50

Bug Fixes

  • deps: bump @​oclif/core from 4.11.3 to 4.11.4 (#1151) (f25d073)

3.2.49

Bug Fixes

  • deps: bump @​oclif/core from 4.11.0 to 4.11.2 (#1146) (4127ce2)
Changelog

Sourced from @​oclif/plugin-autocomplete's changelog.

3.2.52 (2026-06-22)

Bug Fixes

  • deps: bump @​oclif/core from 4.11.4 to 4.11.8 (#1163) (f31fb99)

3.2.51 (2026-06-21)

Bug Fixes

  • deps: bump @​babel/core from 7.10.3 to 7.29.7 (#1166) (9c9fc57)

3.2.50 (2026-05-24)

Bug Fixes

  • deps: bump @​oclif/core from 4.11.3 to 4.11.4 (#1151) (f25d073)

3.2.49 (2026-05-10)

Bug Fixes

  • deps: bump @​oclif/core from 4.11.0 to 4.11.2 (#1146) (4127ce2)
Commits
  • 7d350fb chore(release): 3.2.52 [skip ci]
  • f31fb99 fix(deps): bump @​oclif/core from 4.11.4 to 4.11.8 (#1163)
  • b2b6438 chore(dev-deps): bump eslint-config-oclif from 6.0.169 to 6.0.171 (#1164)
  • ae92d86 chore(release): 3.2.51 [skip ci]
  • 9c9fc57 fix(deps): bump @​babel/core from 7.10.3 to 7.29.7 (#1166)
  • dfa3a61 chore(dev-deps): bump @​oclif/plugin-help from 6.2.50 to 6.2.52 (#1165)
  • 6473602 chore(dev-deps): bump oclif from 4.23.10 to 4.23.16 (#1159)
  • 12b9835 chore(dev-deps): bump prettier from 3.8.3 to 3.8.4 (#1160)
  • e69903e chore(dev-deps): bump @​oclif/test from 4.1.18 to 4.1.19 (#1161)
  • a89623c chore(dev-deps): bump eslint-config-oclif from 6.0.167 to 6.0.169 (#1162)
  • Additional commits viewable in compare view

Updates @oclif/plugin-warn-if-update-available from 3.1.63 to 3.1.67

Release notes

Sourced from @​oclif/plugin-warn-if-update-available's releases.

3.1.67

Bug Fixes

  • deps: bump @​oclif/core from 4.11.4 to 4.11.9 (#1030) (35fb8be)

3.1.66

Bug Fixes

3.1.65

Bug Fixes

  • deps: bump @​oclif/core from 4.11.2 to 4.11.3 (#1019) (8a5e833)

3.1.64

Bug Fixes

  • deps: bump @​oclif/core from 4.11.0 to 4.11.2 (#1016) (6aa16a8)
Changelog

Sourced from @​oclif/plugin-warn-if-update-available's changelog.

3.1.67 (2026-06-21)

Bug Fixes

  • deps: bump @​oclif/core from 4.11.4 to 4.11.9 (#1030) (35fb8be)

3.1.66 (2026-06-21)

Bug Fixes

3.1.65 (2026-05-17)

Bug Fixes

  • deps: bump @​oclif/core from 4.11.2 to 4.11.3 (#1019) (8a5e833)

3.1.64 (2026-05-10)

Bug Fixes

  • deps: bump @​oclif/core from 4.11.0 to 4.11.2 (#1016) (6aa16a8)
Commits
  • be9a2e5 chore(release): 3.1.67 [skip ci]
  • 35fb8be fix(deps): bump @​oclif/core from 4.11.4 to 4.11.9 (#1030)
  • 1b70ab3 chore(release): 3.1.66 [skip ci]
  • 89e79b1 fix(deps): bump js-yaml from 4.1.1 to 4.2.0 (#1032)
  • 9f8ef53 chore(dev-deps): bump oclif from 4.23.14 to 4.23.16 (#1031)
  • 7c751ae chore(dev-deps): bump eslint-config-oclif from 6.0.167 to 6.0.171 (#1027)
  • bf5e066 chore(dev-deps): bump prettier from 3.8.3 to 3.8.4 (#1028)
  • f18c3c9 chore(dev-deps): bump oclif from 4.23.11 to 4.23.14 (#1029)
  • cfb70ae chore(dev-deps): bump oclif from 4.23.8 to 4.23.11 (#1025)
  • 5177940 chore(dev-deps): bump eslint-config-oclif from 6.0.166 to 6.0.167 (#1026)
  • Additional commits viewable in compare view

Updates ably from 2.21.0 to 2.23.0

Release notes

Sourced from ably's releases.

v2.23.0

Full Changelog: ably/ably-js@2.22.1...2.23.0

What's Changed

  • Allow omitting channelName in the React channel hooks to use the nearest ChannelProvider #2248
  • Fix presence auto-reenter causing "Unable to perform operation on channel" NACKs after reconnecting from a transient disconnect; presence operations are now queued at the channel level until the channel next re-attaches #2241

v2.22.1

Full Changelog: ably/ably-js@2.22.0...2.22.1

What's Changed

  • Fix v1-callback deprecated overloads breaking mock assignment by changing return type from never to void #2239

v2.22.0

Full Changelog: ably/ably-js@2.21.0...2.22.0

What's Changed

  • Make agent channel option additive in React hooks #2237
  • Add missing RestAnnotation#delete typings #2218
  • Throw on legacy v1 ably/promises and ably/callbacks imports #2227
  • Mark v1 callback API as deprecated and throw on v1 callback shapes #2226
  • Mark public ObjectMessage.id and .timestamp as optional #2230
  • Change channels#release semantics to implicit detach rather than error on unexpected channel state #2190
  • Bump ws to 8.20.1 to resolve security advisory #2225
Changelog

Sourced from ably's changelog.

2.23.0 (2026-06-19)

Full Changelog

What's Changed

  • Allow omitting channelName in the React channel hooks to use the nearest ChannelProvider #2248
  • Fix presence auto-reenter causing "Unable to perform operation on channel" NACKs after reconnecting from a transient disconnect; presence operations are now queued at the channel level until the channel next re-attaches #2241

2.22.1 (2026-06-08)

Full Changelog

What's Changed

  • Fix v1-callback deprecated overloads breaking mock assignment by changing return type from never to void #2239

2.22.0 (2026-06-05)

Full Changelog

What's Changed

  • Make agent channel option additive in React hooks #2237
  • Add missing RestAnnotation#delete typings #2218
  • Throw on legacy v1 ably/promises and ably/callbacks imports #2227
  • Mark v1 callback API as deprecated and throw on v1 callback shapes #2226
  • Mark public ObjectMessage.id and .timestamp as optional #2230
  • Add PathEvent.isOriginalTarget as alternative to bubbles for LiveObjects path subscriptions #2223
  • Introduce Path type alias for path arrays in LiveObjects code #2222
  • Change channels#release semantics to implicit detach rather than error on unexpected channel state #2190
  • Bump ws to 8.20.1 to resolve security advisory #2225
Commits
  • 13bd25d Merge pull request #2251 from ably/release/2.23.0
  • d6c52f6 chore: release/2.23.0
  • fa63502 Merge pull request #2241 from ably/ECO-5728/fix-presence-auto-reenter
  • 2931422 Queue presence onto re-attaching channels on reconnect (RTL3d2)
  • 55dae3c Honor queueMessages for channel-level presence queueing (RTP16b)
  • a645238 Merge pull request #2248 from ably/react-hooks-channel
  • 6d54416 feat(react): allow omitting channelName to use the nearest ChannelProvider
  • c7cf2a9 Merge pull request #2250 from ably/fix/broken-publish-tests
  • cb64947 Merge branch 'main' into fix/broken-publish-tests
  • 266dd87 Merge pull request #2247 from ably/uts-pubsub
  • Additional commits viewable in compare view

Updates ora from 9.4.0 to 9.4.1

Release notes

Sourced from ora's releases.

v9.4.1

  • Fix type definitions (#257) 431ebc4

sindresorhus/ora@v9.4.0...v9.4.1

Commits

Updates react from 19.2.6 to 19.2.7

Release notes

Sourced from react's releases.

19.2.7 (June 1st, 2026)

React Server Components

Changelog

Sourced from react's changelog.

19.2.7 (June 1, 2026)

React Server Components

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for react since your current version.


Updates react-dom from 19.2.6 to 19.2.7

Release notes

Sourced from react-dom's releases.

19.2.7 (June 1st, 2026)

React Server Components

Changelog

Sourced from react-dom's changelog.

19.2.7 (June 1, 2026)

React Server Components

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for react-dom since your current version.


Updates smol-toml from 1.6.1 to 1.7.0

Release notes

Sourced from smol-toml's releases.

v1.7.0

This version slightly changes the behaviour of stringify: integers beyond the safe range are always emitted as float numbers.

String decode logic has been rewritten, it is a bit faster now and uses a single-pass approach instead of a dual-pass approach as it did previously. The code should be a bit smaller too, though I didn't actually measure that.

The package is now published with source-maps, declaration-maps, and a copy of the original TypeScript source files. This will improve your DX if you're like me and like Ctrl+Click'ing things a lot. ;)

What's Changed

New Contributors

Full Changelog: squirrelchat/smol-toml@v1.6.1...v1.7.0

Commits
  • a62f06f revert: keep using vite 7
  • 89aa9a3 chore: remove prepare script
  • 17c7974 chore: make devEngine more lax w/ node version
  • e5280a3 ci: checkout repo first
  • 241c256 chore: version bump
  • 0bfe7f4 chore: build cjs with rolldown instead of esbuild
  • e0620ab chore: fmt
  • 96114cb test: add tests for large integers
  • f4537b6 fix: handle missed edge-cases in string parse
  • 7b39aed chore: include source files in published package
  • Additional commits viewable in compare view

Updates tar from 7.5.15 to 7.5.17

Commits

Updates ws from 8.20.0 to 8.21.0

Release notes

Sourced from ws's releases.

8.21.0

Features

  • Introduced the maxBufferedChunks and maxFragments options (2b2abd45).

Bug fixes

  • Fixed a remote memory exhaustion DoS vulnerability (2b2abd45).

A high volume of tiny fragments and data chunks could be sent by a peer, using modest network traffic, to crash a ws server or client due to OOM.

import { WebSocket, WebSocketServer } from 'ws';
const wss = new WebSocketServer({ port: 0 }, function () {
const data = Buffer.alloc(1);
const options = { fin: false };
const { port } = wss.address();
const ws = new WebSocket(ws://localhost:${port});
ws.on('open', function () {
(function send() {
ws.send(data, options, function (err) {
if (err) return;
send();
});
})();
});
ws.on('error', console.error);
ws.on('close', function (code, reason) {
console.log(client close - code: ${code} reason: ${reason.toString()});
});
});
wss.on('connection', function (ws) {
ws.on('error', console.error);
ws.on('close', function (code, reason) {
console.log(server close - code: ${code} reason: ${reason.toString()});
});
});

The vulnerability was responsibly disclosed and fixed by Nadav Magier.

In vulnerable versions, the issue can be mitigated by lowering the value of the maxPayload option if possible.

8.20.1

... (truncated)

Commits
  • bca91ad [dist] 8.21.0
  • 2b2abd4 [security] Limit retained message parts
  • 78eabe2 [security] Add latest vulnerability to SECURITY.md
  • 5d9b316 [dist] 8.20.1
  • c0327ec [security] Fix uninitialized memory disclosure in websocket.close()
  • ce2a3d6 [ci] Test on node 26
  • 58e45b8 [ci] Do not test on node 25
  • 5f26c24 [ci] Run the lint step on node 24
  • See full diff in compare view

Updates lucide-react from 1.14.0 to 1.21.0

Release notes

Sourced from lucide-react's releases.

Version 1.21.0

What's Changed

New Contributors

Full Changelog: lucide-icons/lucide@1.20.0...1.21.0

Version 1.20.0

What's Changed

New Contributors

Full Changelog: lucide-icons/lucide@1.19.0...1.20.0

Version 1.19.0

What's Changed

... (truncated)

Commits
  • 5ff536e ci(release.yml): Fix workflow and remove version scripts in package scripts...
  • 07c885e fix(docs): fix zephyr-cloud URL in readmes
  • See full diff in compare view

Updates tailwind-merge from 3.5.0 to 3.6.0

Release notes

Sourced from tailwind-merge's releases.

v3.6.0

New Features

Documentation

Other

Full Changelog: dcastil/tailwind-merge@v3.5.0...v3.6.0

Thanks to @​brandonmcconnell, @​manavm1990, @​langy, @​roboflow, @​syntaxfm, @​getsentry, @​codecov, a private sponsor, @​block, @​openclaw, @​sourcegraph, @​mike-healy and more via @​thnxdev for sponsoring tailwind-merge! ❤️

Commits

@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jun 29, 2026
@vercel

vercel Bot commented Jun 29, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
cli-web-cli Ready Ready Preview, Comment Jun 30, 2026 4:12pm

Request Review

… updates

Bumps the prod-minor-patch group with 14 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@ably/chat](https://github.com/ably/ably-chat-js) | `1.3.1` | `1.4.0` |
| [@inquirer/prompts](https://github.com/SBoudrias/Inquirer.js) | `8.4.2` | `8.5.2` |
| [@oclif/core](https://github.com/oclif/core) | `4.11.1` | `4.11.11` |
| [@oclif/plugin-autocomplete](https://github.com/oclif/plugin-autocomplete) | `3.2.48` | `3.2.52` |
| [@oclif/plugin-warn-if-update-available](https://github.com/oclif/plugin-warn-if-update-available) | `3.1.63` | `3.1.67` |
| [ably](https://github.com/ably/ably-js) | `2.21.0` | `2.23.0` |
| [ora](https://github.com/sindresorhus/ora) | `9.4.0` | `9.4.1` |
| [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.6` | `19.2.7` |
| [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.6` | `19.2.7` |
| [smol-toml](https://github.com/squirrelchat/smol-toml) | `1.6.1` | `1.7.0` |
| [tar](https://github.com/isaacs/node-tar) | `7.5.15` | `7.5.17` |
| [ws](https://github.com/websockets/ws) | `8.20.0` | `8.21.0` |
| [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `1.14.0` | `1.21.0` |
| [tailwind-merge](https://github.com/dcastil/tailwind-merge) | `3.5.0` | `3.6.0` |



Updates `@ably/chat` from 1.3.1 to 1.4.0
- [Release notes](https://github.com/ably/ably-chat-js/releases)
- [Changelog](https://github.com/ably/ably-chat-js/blob/main/CHANGELOG.md)
- [Commits](ably/ably-chat-js@1.3.1...1.4.0)

Updates `@inquirer/prompts` from 8.4.2 to 8.5.2
- [Release notes](https://github.com/SBoudrias/Inquirer.js/releases)
- [Commits](https://github.com/SBoudrias/Inquirer.js/compare/@inquirer/prompts@8.4.2...@inquirer/prompts@8.5.2)

Updates `@oclif/core` from 4.11.1 to 4.11.11
- [Release notes](https://github.com/oclif/core/releases)
- [Changelog](https://github.com/oclif/core/blob/main/CHANGELOG.md)
- [Commits](oclif/core@4.11.1...4.11.11)

Updates `@oclif/plugin-autocomplete` from 3.2.48 to 3.2.52
- [Release notes](https://github.com/oclif/plugin-autocomplete/releases)
- [Changelog](https://github.com/oclif/plugin-autocomplete/blob/main/CHANGELOG.md)
- [Commits](oclif/plugin-autocomplete@3.2.48...3.2.52)

Updates `@oclif/plugin-warn-if-update-available` from 3.1.63 to 3.1.67
- [Release notes](https://github.com/oclif/plugin-warn-if-update-available/releases)
- [Changelog](https://github.com/oclif/plugin-warn-if-update-available/blob/main/CHANGELOG.md)
- [Commits](oclif/plugin-warn-if-update-available@3.1.63...3.1.67)

Updates `ably` from 2.21.0 to 2.23.0
- [Release notes](https://github.com/ably/ably-js/releases)
- [Changelog](https://github.com/ably/ably-js/blob/main/CHANGELOG.md)
- [Commits](ably/ably-js@2.21.0...2.23.0)

Updates `ora` from 9.4.0 to 9.4.1
- [Release notes](https://github.com/sindresorhus/ora/releases)
- [Commits](sindresorhus/ora@v9.4.0...v9.4.1)

Updates `react` from 19.2.6 to 19.2.7
- [Release notes](https://github.com/facebook/react/releases)
- [Changelog](https://github.com/react/react/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/react/commits/v19.2.7/packages/react)

Updates `react-dom` from 19.2.6 to 19.2.7
- [Release notes](https://github.com/facebook/react/releases)
- [Changelog](https://github.com/react/react/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/react/commits/v19.2.7/packages/react-dom)

Updates `smol-toml` from 1.6.1 to 1.7.0
- [Release notes](https://github.com/squirrelchat/smol-toml/releases)
- [Commits](squirrelchat/smol-toml@v1.6.1...v1.7.0)

Updates `tar` from 7.5.15 to 7.5.17
- [Release notes](https://github.com/isaacs/node-tar/releases)
- [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md)
- [Commits](isaacs/node-tar@v7.5.15...v7.5.17)

Updates `ws` from 8.20.0 to 8.21.0
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](websockets/ws@8.20.0...8.21.0)

Updates `lucide-react` from 1.14.0 to 1.21.0
- [Release notes](https://github.com/lucide-icons/lucide/releases)
- [Commits](https://github.com/lucide-icons/lucide/commits/1.21.0/packages/lucide-react)

Updates `tailwind-merge` from 3.5.0 to 3.6.0
- [Release notes](https://github.com/dcastil/tailwind-merge/releases)
- [Commits](dcastil/tailwind-merge@v3.5.0...v3.6.0)

---
updated-dependencies:
- dependency-name: "@ably/chat"
  dependency-version: 1.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-minor-patch
- dependency-name: "@inquirer/prompts"
  dependency-version: 8.5.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-minor-patch
- dependency-name: "@oclif/core"
  dependency-version: 4.11.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-minor-patch
- dependency-name: "@oclif/plugin-autocomplete"
  dependency-version: 3.2.52
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-minor-patch
- dependency-name: "@oclif/plugin-warn-if-update-available"
  dependency-version: 3.1.67
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-minor-patch
- dependency-name: ably
  dependency-version: 2.23.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-minor-patch
- dependency-name: lucide-react
  dependency-version: 1.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-minor-patch
- dependency-name: ora
  dependency-version: 9.4.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-minor-patch
- dependency-name: react
  dependency-version: 19.2.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-minor-patch
- dependency-name: react-dom
  dependency-version: 19.2.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-minor-patch
- dependency-name: smol-toml
  dependency-version: 1.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-minor-patch
- dependency-name: tailwind-merge
  dependency-version: 3.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-minor-patch
- dependency-name: tar
  dependency-version: 7.5.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-minor-patch
- dependency-name: ws
  dependency-version: 8.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/prod-minor-patch-3f05d39cbf branch from 3f4f82a to 42a07dd Compare June 30, 2026 16:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Development

Successfully merging this pull request may close these issues.

0 participants