chore(deps): bump the dependencies group across 1 directory with 11 updates #1045

dependabot · 2025-06-09T10:57:40Z

Bumps the dependencies group with 11 updates in the / directory:

Package	From	To
@docusaurus/core	`3.7.0`	`3.8.1`
@docusaurus/plugin-client-redirects	`3.7.0`	`3.8.1`
@docusaurus/preset-classic	`3.7.0`	`3.8.1`
@easyops-cn/docusaurus-search-local	`0.49.2`	`0.50.0`
@openfga/sdk	`0.8.1`	`0.9.0`
react	`18.3.1`	`19.1.0`
@types/react	`18.3.5`	`19.1.6`
react-dom	`18.3.1`	`19.1.0`
sanitize-html	`2.16.0`	`2.17.0`
@types/sanitize-html	`2.15.0`	`2.16.0`
swagger-ui-react	`5.21.0`	`5.24.0`

Updates @docusaurus/core from 3.7.0 to 3.8.1

Release notes

Sourced from @docusaurus/core's releases.

3.8.1

🐛 Bug Fix

docusaurus-theme-classic

#11242 fix(theme): fix unability to navigate to category's page when browsing its children items (@slorber)

docusaurus-plugin-css-cascade-layers

#11241 fix(css-cascade-layers): fix windows css cascade layers bug (@slorber)

docusaurus

#11222 fix(bundler): fix docusaurus start using concatenateModules: true (@slorber)

#11217 fix: include Arc to supported Chromium Browsers (@wellwelwel)

#11205 fix(core): fix docusaurus start error for macOS users with no Chromium-based browser (@slorber)

docusaurus-types

#11221 fix(types): fix future flags public types (@slorber)

🏃‍♀️ Performance

docusaurus-plugin-content-blog, docusaurus-plugin-sitemap, docusaurus-theme-classic, docusaurus-types, docusaurus-utils, docusaurus

#11211 perf: avoid duplicated git log calls in loadContent() and postBuild() for untracked Git files (@slorber)

🔧 Maintenance

docusaurus-faster

#11248 chore(faster): upgrade Rspack (@slorber)

docusaurus-plugin-content-docs

#11230 refactor(docs): extract loadVersion() without changing the behavior (@slorber)

Other

#11212 chore: upgrade to Node 22 by default (@slorber)

Committers: 7

Ben McCann (@benmccann)

Dave Meyer (@dave-meyer)

Léo Vincent (@leovct)

Noritaka Kobayashi (@noritaka1166)

Phil Parsons (@p-m-p)

Sébastien Lorber (@slorber)

Weslley Araújo (@wellwelwel)

3.8.0 (2025-05-26)

🚀 New Feature

docusaurus-plugin-css-cascade-layers, docusaurus-preset-classic, docusaurus-theme-classic, docusaurus-types, docusaurus

#11142 feat(theme): new CSS cascade layers plugin + built-in v4.useCssCascadeLayers future flag (@slorber)

docusaurus

#11156 feat(core): add internal flag to skip bundling (@slorber)

#11067 feat(core): enable Rspack parallelCodeSplitting (@slorber)

docusaurus-module-type-aliases, docusaurus-plugin-content-blog, docusaurus-theme-classic, docusaurus-theme-common, docusaurus-theme-search-algolia, docusaurus

#11090 feat(theme): make it possible to provide your own page title formatter (@slorber)

docusaurus-plugin-content-pages

... (truncated)

Changelog

Sourced from @docusaurus/core's changelog.

3.8.1 (2025-06-06)

🐛 Bug Fix

docusaurus-theme-classic

#11242 fix(theme): fix unability to navigate to category's page when browsing its children items (@slorber)

docusaurus-plugin-css-cascade-layers

#11241 fix(css-cascade-layers): fix windows css cascade layers bug (@slorber)

docusaurus

#11222 fix(bundler): fix docusaurus start using concatenateModules: true (@slorber)

#11217 fix: include Arc to supported Chromium Browsers (@wellwelwel)

#11205 fix(core): fix docusaurus start error for macOS users with no Chromium-based browser (@slorber)

docusaurus-types

#11221 fix(types): fix future flags public types (@slorber)

🏃‍♀️ Performance

docusaurus-plugin-content-blog, docusaurus-plugin-sitemap, docusaurus-theme-classic, docusaurus-types, docusaurus-utils, docusaurus

#11211 perf: avoid duplicated git log calls in loadContent() and postBuild() for untracked Git files (@slorber)

🔧 Maintenance

docusaurus-faster

#11248 chore(faster): upgrade Rspack (@slorber)

docusaurus-plugin-content-docs

#11230 refactor(docs): extract loadVersion() without changing the behavior (@slorber)

Other

#11212 chore: upgrade to Node 22 by default (@slorber)

Committers: 7

Ben McCann (@benmccann)

Dave Meyer (@dave-meyer)

Léo Vincent (@leovct)

Noritaka Kobayashi (@noritaka1166)

Phil Parsons (@p-m-p)

Sébastien Lorber (@slorber)

Weslley Araújo (@wellwelwel)

3.8.0 (2025-05-26)

🚀 New Feature

docusaurus-plugin-css-cascade-layers, docusaurus-preset-classic, docusaurus-theme-classic, docusaurus-types, docusaurus

#11142 feat(theme): new CSS cascade layers plugin + built-in v4.useCssCascadeLayers future flag (@slorber)

docusaurus

#11156 feat(core): add internal flag to skip bundling (@slorber)

#11067 feat(core): enable Rspack parallelCodeSplitting (@slorber)

docusaurus-module-type-aliases, docusaurus-plugin-content-blog, docusaurus-theme-classic, docusaurus-theme-common, docusaurus-theme-search-algolia, docusaurus

#11090 feat(theme): make it possible to provide your own page title formatter (@slorber)

... (truncated)

Commits

fa8ae13 v3.8.1
ffa7525 fix(bundler): fix docusaurus start using concatenateModules: true (#11222)
dd6396d fix: include Arc to supported Chromium Browsers (#11217)
264774a perf: avoid duplicated git log calls in loadContent() and postBuild() f...
68aa3c8 fix(core): fix docusaurus start error for macOS users with no Chromium-base...
b126e64 chore: release Docusaurus 3.8 (#11200)
8958c11 chore: fix typos in comment-out (#11197)
ba18a8b chore: simplify construction of test paths (#11196)
abd04a2 feat(theme): new CSS cascade layers plugin + built-in `v4.useCssCascadeLayers...
e839b67 perf(core): disable Rspack parallelCodeSplitting temporarily (#11178)
Additional commits viewable in compare view

Updates @docusaurus/plugin-client-redirects from 3.7.0 to 3.8.1

Release notes

Sourced from @docusaurus/plugin-client-redirects's releases.

3.8.1

🐛 Bug Fix

docusaurus-theme-classic

#11242 fix(theme): fix unability to navigate to category's page when browsing its children items (@slorber)

docusaurus-plugin-css-cascade-layers

#11241 fix(css-cascade-layers): fix windows css cascade layers bug (@slorber)

docusaurus

#11222 fix(bundler): fix docusaurus start using concatenateModules: true (@slorber)

#11217 fix: include Arc to supported Chromium Browsers (@wellwelwel)

#11205 fix(core): fix docusaurus start error for macOS users with no Chromium-based browser (@slorber)

docusaurus-types

#11221 fix(types): fix future flags public types (@slorber)

🏃‍♀️ Performance

docusaurus-plugin-content-blog, docusaurus-plugin-sitemap, docusaurus-theme-classic, docusaurus-types, docusaurus-utils, docusaurus

#11211 perf: avoid duplicated git log calls in loadContent() and postBuild() for untracked Git files (@slorber)

🔧 Maintenance

docusaurus-faster

#11248 chore(faster): upgrade Rspack (@slorber)

docusaurus-plugin-content-docs

#11230 refactor(docs): extract loadVersion() without changing the behavior (@slorber)

Other

#11212 chore: upgrade to Node 22 by default (@slorber)

Committers: 7

Ben McCann (@benmccann)

Dave Meyer (@dave-meyer)

Léo Vincent (@leovct)

Noritaka Kobayashi (@noritaka1166)

Phil Parsons (@p-m-p)

Sébastien Lorber (@slorber)

Weslley Araújo (@wellwelwel)

3.8.0 (2025-05-26)

🚀 New Feature

docusaurus-plugin-css-cascade-layers, docusaurus-preset-classic, docusaurus-theme-classic, docusaurus-types, docusaurus

#11142 feat(theme): new CSS cascade layers plugin + built-in v4.useCssCascadeLayers future flag (@slorber)

docusaurus

#11156 feat(core): add internal flag to skip bundling (@slorber)

#11067 feat(core): enable Rspack parallelCodeSplitting (@slorber)

docusaurus-module-type-aliases, docusaurus-plugin-content-blog, docusaurus-theme-classic, docusaurus-theme-common, docusaurus-theme-search-algolia, docusaurus

#11090 feat(theme): make it possible to provide your own page title formatter (@slorber)

docusaurus-plugin-content-pages

... (truncated)

Changelog

Sourced from @docusaurus/plugin-client-redirects's changelog.

3.8.1 (2025-06-06)

🐛 Bug Fix

docusaurus-theme-classic

#11242 fix(theme): fix unability to navigate to category's page when browsing its children items (@slorber)

docusaurus-plugin-css-cascade-layers

#11241 fix(css-cascade-layers): fix windows css cascade layers bug (@slorber)

docusaurus

#11222 fix(bundler): fix docusaurus start using concatenateModules: true (@slorber)

#11217 fix: include Arc to supported Chromium Browsers (@wellwelwel)

#11205 fix(core): fix docusaurus start error for macOS users with no Chromium-based browser (@slorber)

docusaurus-types

#11221 fix(types): fix future flags public types (@slorber)

🏃‍♀️ Performance

docusaurus-plugin-content-blog, docusaurus-plugin-sitemap, docusaurus-theme-classic, docusaurus-types, docusaurus-utils, docusaurus

#11211 perf: avoid duplicated git log calls in loadContent() and postBuild() for untracked Git files (@slorber)

🔧 Maintenance

docusaurus-faster

#11248 chore(faster): upgrade Rspack (@slorber)

docusaurus-plugin-content-docs

#11230 refactor(docs): extract loadVersion() without changing the behavior (@slorber)

Other

#11212 chore: upgrade to Node 22 by default (@slorber)

Committers: 7

Ben McCann (@benmccann)

Dave Meyer (@dave-meyer)

Léo Vincent (@leovct)

Noritaka Kobayashi (@noritaka1166)

Phil Parsons (@p-m-p)

Sébastien Lorber (@slorber)

Weslley Araújo (@wellwelwel)

3.8.0 (2025-05-26)

🚀 New Feature

docusaurus-plugin-css-cascade-layers, docusaurus-preset-classic, docusaurus-theme-classic, docusaurus-types, docusaurus

#11142 feat(theme): new CSS cascade layers plugin + built-in v4.useCssCascadeLayers future flag (@slorber)

docusaurus

#11156 feat(core): add internal flag to skip bundling (@slorber)

#11067 feat(core): enable Rspack parallelCodeSplitting (@slorber)

docusaurus-module-type-aliases, docusaurus-plugin-content-blog, docusaurus-theme-classic, docusaurus-theme-common, docusaurus-theme-search-algolia, docusaurus

#11090 feat(theme): make it possible to provide your own page title formatter (@slorber)

... (truncated)

Commits

fa8ae13 v3.8.1
b126e64 chore: release Docusaurus 3.8 (#11200)
71d682c chore: release Docusaurus 3.7.0 (#10812)
See full diff in compare view

Updates @docusaurus/preset-classic from 3.7.0 to 3.8.1

Release notes

Sourced from @docusaurus/preset-classic's releases.

3.8.1

🐛 Bug Fix

docusaurus-theme-classic

#11242 fix(theme): fix unability to navigate to category's page when browsing its children items (@slorber)

docusaurus-plugin-css-cascade-layers

#11241 fix(css-cascade-layers): fix windows css cascade layers bug (@slorber)

docusaurus

#11222 fix(bundler): fix docusaurus start using concatenateModules: true (@slorber)

#11217 fix: include Arc to supported Chromium Browsers (@wellwelwel)

#11205 fix(core): fix docusaurus start error for macOS users with no Chromium-based browser (@slorber)

docusaurus-types

#11221 fix(types): fix future flags public types (@slorber)

🏃‍♀️ Performance

docusaurus-plugin-content-blog, docusaurus-plugin-sitemap, docusaurus-theme-classic, docusaurus-types, docusaurus-utils, docusaurus

#11211 perf: avoid duplicated git log calls in loadContent() and postBuild() for untracked Git files (@slorber)

🔧 Maintenance

docusaurus-faster

#11248 chore(faster): upgrade Rspack (@slorber)

docusaurus-plugin-content-docs

#11230 refactor(docs): extract loadVersion() without changing the behavior (@slorber)

Other

#11212 chore: upgrade to Node 22 by default (@slorber)

Committers: 7

Ben McCann (@benmccann)

Dave Meyer (@dave-meyer)

Léo Vincent (@leovct)

Noritaka Kobayashi (@noritaka1166)

Phil Parsons (@p-m-p)

Sébastien Lorber (@slorber)

Weslley Araújo (@wellwelwel)

3.8.0 (2025-05-26)

🚀 New Feature

docusaurus-plugin-css-cascade-layers, docusaurus-preset-classic, docusaurus-theme-classic, docusaurus-types, docusaurus

#11142 feat(theme): new CSS cascade layers plugin + built-in v4.useCssCascadeLayers future flag (@slorber)

docusaurus

#11156 feat(core): add internal flag to skip bundling (@slorber)

#11067 feat(core): enable Rspack parallelCodeSplitting (@slorber)

docusaurus-module-type-aliases, docusaurus-plugin-content-blog, docusaurus-theme-classic, docusaurus-theme-common, docusaurus-theme-search-algolia, docusaurus

#11090 feat(theme): make it possible to provide your own page title formatter (@slorber)

docusaurus-plugin-content-pages

... (truncated)

Changelog

Sourced from @docusaurus/preset-classic's changelog.

3.8.1 (2025-06-06)

🐛 Bug Fix

docusaurus-theme-classic

#11242 fix(theme): fix unability to navigate to category's page when browsing its children items (@slorber)

docusaurus-plugin-css-cascade-layers

#11241 fix(css-cascade-layers): fix windows css cascade layers bug (@slorber)

docusaurus

#11222 fix(bundler): fix docusaurus start using concatenateModules: true (@slorber)

#11217 fix: include Arc to supported Chromium Browsers (@wellwelwel)

#11205 fix(core): fix docusaurus start error for macOS users with no Chromium-based browser (@slorber)

docusaurus-types

#11221 fix(types): fix future flags public types (@slorber)

🏃‍♀️ Performance

docusaurus-plugin-content-blog, docusaurus-plugin-sitemap, docusaurus-theme-classic, docusaurus-types, docusaurus-utils, docusaurus

#11211 perf: avoid duplicated git log calls in loadContent() and postBuild() for untracked Git files (@slorber)

🔧 Maintenance

docusaurus-faster

#11248 chore(faster): upgrade Rspack (@slorber)

docusaurus-plugin-content-docs

#11230 refactor(docs): extract loadVersion() without changing the behavior (@slorber)

Other

#11212 chore: upgrade to Node 22 by default (@slorber)

Committers: 7

Ben McCann (@benmccann)

Dave Meyer (@dave-meyer)

Léo Vincent (@leovct)

Noritaka Kobayashi (@noritaka1166)

Phil Parsons (@p-m-p)

Sébastien Lorber (@slorber)

Weslley Araújo (@wellwelwel)

3.8.0 (2025-05-26)

🚀 New Feature

docusaurus-plugin-css-cascade-layers, docusaurus-preset-classic, docusaurus-theme-classic, docusaurus-types, docusaurus

#11142 feat(theme): new CSS cascade layers plugin + built-in v4.useCssCascadeLayers future flag (@slorber)

docusaurus

#11156 feat(core): add internal flag to skip bundling (@slorber)

#11067 feat(core): enable Rspack parallelCodeSplitting (@slorber)

docusaurus-module-type-aliases, docusaurus-plugin-content-blog, docusaurus-theme-classic, docusaurus-theme-common, docusaurus-theme-search-algolia, docusaurus

#11090 feat(theme): make it possible to provide your own page title formatter (@slorber)

... (truncated)

Commits

fa8ae13 v3.8.1
b126e64 chore: release Docusaurus 3.8 (#11200)
abd04a2 feat(theme): new CSS cascade layers plugin + built-in `v4.useCssCascadeLayers...
71d682c chore: release Docusaurus 3.7.0 (#10812)
See full diff in compare view

Updates @easyops-cn/docusaurus-search-local from 0.49.2 to 0.50.0

Release notes

Sourced from @easyops-cn/docusaurus-search-local's releases.

v0.50.0

0.50.0 (2025-06-03)

Features

support setting a language list to remove their default stop word filter (e7ce7ac), closes #517

Commits

See full diff in compare view

Updates @openfga/sdk from 0.8.1 to 0.9.0

Release notes

Sourced from @openfga/sdk's releases.

v0.9.0

v0.9.0 (2025-06-04)

feat: support client assertion for client credentials authentication (#228)

Changelog

Sourced from @openfga/sdk's changelog.

v0.9.0

v0.9.0 (2025-06-03)

feat: support client assertion for client credentials authentication (#228)

Commits

3f65221 release: v0.9.0 (#230)
7303103 feat: support client assertion for client credentials authentication (#228)
b605f86 chore(deps): bump the dependencies group with 4 updates (#224)
See full diff in compare view

Updates react from 18.3.1 to 19.1.0

Release notes

Sourced from react's releases.

19.1.0 (March 28, 2025)

Owner Stack

An Owner Stack is a string representing the components that are directly responsible for rendering a particular component. You can log Owner Stacks when debugging or use Owner Stacks to enhance error overlays or other development tools. Owner Stacks are only available in development builds. Component Stacks in production are unchanged.

An Owner Stack is a development-only stack trace that helps identify which components are responsible for rendering a particular component. An Owner Stack is distinct from a Component Stacks, which shows the hierarchy of components leading to an error.

The captureOwnerStack API is only available in development mode and returns a Owner Stack, if available. The API can be used to enhance error overlays or log component relationships when debugging. #29923, #32353, #30306, #32538, #32529, #32538

React

Enhanced support for Suspense boundaries to be used anywhere, including the client, server, and during hydration. #32069, #32163, #32224, #32252

Reduced unnecessary client rendering through improved hydration scheduling #31751

Increased priority of client rendered Suspense boundaries #31776

Fixed frozen fallback states by rendering unfinished Suspense boundaries on the client. #31620

Reduced garbage collection pressure by improving Suspense boundary retries. #31667

Fixed erroneous “Waiting for Paint” log when the passive effect phase was not delayed #31526

Fixed a regression causing key warnings for flattened positional children in development mode. #32117

Updated useId to use valid CSS selectors, changing format from :r123: to «r123». #32001

Added a dev-only warning for null/undefined created in useEffect, useInsertionEffect, and useLayoutEffect. #32355

Fixed a bug where dev-only methods were exported in production builds. React.act is no longer available in production builds. #32200

Improved consistency across prod and dev to improve compatibility with Google Closure Complier and bindings #31808

Improve passive effect scheduling for consistent task yielding. #31785

Fixed asserts in React Native when passChildrenWhenCloningPersistedNodes is enabled for OffscreenComponent rendering. #32528

Fixed component name resolution for Portal #32640

Added support for beforetoggle and toggle events on the dialog element. #32479 #32479

React DOM

Fixed double warning when the href attribute is an empty string #31783

Fixed an edge case where getHoistableRoot() didn’t work properly when the container was a Document #32321

Removed support for using HTML comments (e.g. ) as a DOM container. #32250

Added support for <script> and \<template> tags to be nested within <select> tags. #31837

Fixed responsive images to be preloaded as HTML instead of headers #32445

use-sync-external-store

Added exports field to package.json for use-sync-external-store to support various entrypoints. #25231

React Server Components

Added unstable_prerender, a new experimental API for prerendering React Server Components on the server #31724

Fixed an issue where streams would hang when receiving new chunks after a global error #31840, #31851

Fixed an issue where pending chunks were counted twice. #31833

Added support for streaming in edge environments #31852

Added support for sending custom error names from a server so that they are available in the client for console replaying. #32116

Updated the server component wire format to remove IDs for hints and console.log because they have no return value #31671

Exposed registerServerReference in client builds to handle server references in different environments. #32534

Added react-server-dom-parcel package which integrates Server Components with the Parcel bundler #31725, #32132, #31799, #32294, #31741

19.0.0 (December 5, 2024)

Below is a list of all new features, APIs, deprecations, and breaking changes. Read React 19 release post and React 19 upgrade guide for more information.

Note: To help make the upgrade to React 19 easier, we’ve published a react@18.3 release that is identical to 18.2 but adds warnings for deprecated APIs and other changes that are needed for React 19. We recommend upgrading to React 18.3.1 first to help identify any issues before upgrading to React 19.

... (truncated)

Changelog

Sourced from react's changelog.

19.1.0 (March 28, 2025)

Owner Stack

An Owner Stack is a string representing the components that are directly responsible for rendering a particular component. You can log Owner Stacks when debugging or use Owner Stacks to enhance error overlays or other development tools. Owner Stacks are only available in development builds. Component Stacks in production are unchanged.

An Owner Stack is a development-only stack trace that helps identify which components are responsible for rendering a particular component. An Owner Stack is distinct from a Component Stacks, which shows the hierarchy of components leading to an error.

The captureOwnerStack API is only available in development mode and returns a Owner Stack, if available. The API can be used to enhance error overlays or log component relationships when debugging. #29923, #32353, #30306, #32538, #32529, #32538

React

Enhanced support for Suspense boundaries to be used anywhere, including the client, server, and during hydration. #32069, #32163, #32224, #32252

Reduced unnecessary client rendering through improved hydration scheduling #31751

Increased priority of client rendered Suspense boundaries #31776

Fixed frozen fallback states by rendering unfinished Suspense boundaries on the client. #31620

Reduced garbage collection pressure by improving Suspense boundary retries. #31667

Fixed erroneous “Waiting for Paint” log when the passive effect phase was not delayed #31526

Fixed a regression causing key warnings for flattened positional children in development mode. #32117

Updated useId to use valid CSS selectors, changing format from :r123: to «r123». #32001

Added a dev-only warning for null/undefined created in useEffect, useInsertionEffect, and useLayoutEffect. #32355

Fixed a bug where dev-only methods were exported in production builds. React.act is no longer available in production builds. #32200

Improved consistency across prod and dev to improve compatibility with Google Closure Complier and bindings #31808

Improve passive effect scheduling for consistent task yielding. #31785

Fixed asserts in React Native when passChildrenWhenCloningPersistedNodes is enabled for OffscreenComponent rendering. #32528

Fixed component name resolution for Portal #32640

Added support for beforetoggle and toggle events on the dialog element. #32479 #32479

React DOM

Fixed double warning when the href attribute is an empty string #31783

Fixed an edge case where getHoistableRoot() didn’t work properly when the container was a Document #32321

Removed support for using HTML comments (e.g. ) as a DOM container. #32250

Added support for <script> and \<template> tags to be nested within <select> tags. #31837

Fixed responsive images to be preloaded as HTML instead of headers #32445

use-sync-external-store

Added exports field to package.json for use-sync-external-store to support various entrypoints. #25231

React Server Components

Added unstable_prerender, a new experimental API for prerendering React Server Components on the server #31724

Fixed an issue where streams would hang when receiving new chunks after a global error #31840, #31851

Fixed an issue where pending chunks were counted twice. #31833

Added support for streaming in edge environments #31852

Added support for sending custom error names from a server so that they are available in the client for console replaying. #32116

Updated the server component wire format to remove IDs for hints and console.log because they have no return value #31671

Exposed registerServerReference in client builds to handle server references in different environments. #32534

Added react-server-dom-parcel package which integrates Server Components with the Parcel bundler #31725, #32132, #31799, #32294, #31741

19.0.0 (December 5, 2024)

Below is a list of all new features, APIs, deprecations, and breaking changes. Read React 19 release post and React 19 upgrade guide for more information.

... (truncated)

Commits

4a9df08 Stop creating Owner Stacks if many have been created recently (#32529)
b630219 [refactor] move isValidElementType to react-is (#32518)
1a19170 [refactor] Add element type for Activity (#32499)
6aa8254 Add ref to Fragment (#32465)
e0fe347 [flags] remove enableOwnerStacks (#32426)
70f1d76 [flow] Eliminate usage of global React types in ReactNativeTypes.js (#32330)
0d9834c build: add support to the rollup build for building typescript packages (#32393)
a53da6a Add useSwipeTransition Hook Behind Experimental Flag (#32373)
32b0cad Enable owner stacks in Canary builds (#32053)
ed8b68d Stop exporting dev-only methods in OSS production builds (#32200)
Additional commits viewable in compare view

Updates @types/react from 18.3.5 to 19.1.6

Commits

See full diff in compare view

Updates react-dom from 18.3.1 to 19.1.0

Release notes

Sourced from react-dom's releases.

19.1.0 (March 28, 2025)

Owner Stack

An Owner Stack is a string representing the components that are directly responsible for rendering a particular component. You can log Owner Stacks when debugging or use Owner Stacks to enhance error overlays or other development tools. Owner Stacks are only available in development builds. Component Stacks in production are unchanged.

An Owner Stack is a development-only stack trace that helps identify which components are responsible for rendering a particular component. An Owner Stack is distinct from a Component Stacks, which shows the hierarchy of components leading to an error.

The captureOwnerStack API is only available in development mode and returns a Owner Stack, if available. The API can be used to enhance error overlays or log component relationships when debugging. #29923, #32353, #30306, #32538, #32529, #32538

React

Enhanced support for Suspense boundaries to be used anywhere, including the client, server, and during hydration. #32069, #32163, #32224, #32252

Reduced unnecessary client rendering through improved hydration scheduling #31751

Increased priority of client rendered Suspense boundaries #31776

Fixed frozen fallback states by rendering unfinished Suspense boundaries on the client. #31620

Reduced garbage collection pressure by improving Suspense boundary retries. #31667

Fixed erroneous “Waiting for Paint” log when the passive effect phase was not delayed #31526

Fixed a regression causing key warnings for flattened positional children in development mode. #32117

Updated useId to use valid CSS selectors, changing format from :r123: to «r123». #32001

Added a dev-only warning for null/undefined created in useEffect, useInsertionEffect, and useLayoutEffect. #32355

Fixed a bug where dev-only methods were exported in production builds. React.act is no longer available in production builds. #32200

Improved consistency across prod and dev to improve compatibility with Google Closure Complier and bindings

socket-security · 2025-06-09T10:58:12Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Package	Supply Chain Security	Quality	Maintenance
@types/sanitize-html@2.15.0 ⏵ 2.16.0	⁺¹	⁺¹
@docusaurus/preset-classic@3.7.0 ⏵ 3.8.1		⁺¹
@easyops-cn/docusaurus-search-local@0.49.2 ⏵ 0.51.0	⁺¹	⁺¹	⁺⁵
@docusaurus/plugin-client-redirects@3.7.0 ⏵ 3.8.1
@docusaurus/core@3.7.0 ⏵ 3.8.1	⁺¹	⁺¹
@types/react@18.3.5 ⏵ 19.1.8	⁺¹	⁺¹
@openfga/sdk@0.8.1 ⏵ 0.9.0	⁺²	⁺¹	⁺⁹

View full report

socket-security · 2025-06-09T10:58:13Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click for details)
Warn		`caniuse-lite@1.0.30001723` has a License Policy Violation. License: CC-BY-4.0 (npm metadata) License: CC-BY-4.0 (package/LICENSE) License: CC-BY-4.0 (package/package.json) From: package-lock.json → `npm/@docusaurus/preset-classic@3.8.1` → `npm/@docusaurus/core@3.8.1` → `npm/caniuse-lite@1.0.30001723` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/caniuse-lite@1.0.30001723`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		`tree-sitter@0.22.4` has a License Policy Violation. License: Unicode-3.0 (package/vendor/tree-sitter/lib/src/unicode/LICENSE) From: package-lock.json → `npm/tree-sitter@0.22.4` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/tree-sitter@0.22.4`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

…pdates Bumps the dependencies group with 11 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@docusaurus/core](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus) | `3.7.0` | `3.8.1` | | [@docusaurus/plugin-client-redirects](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-plugin-client-redirects) | `3.7.0` | `3.8.1` | | [@docusaurus/preset-classic](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-preset-classic) | `3.7.0` | `3.8.1` | | [@easyops-cn/docusaurus-search-local](https://github.com/easyops-cn/docusaurus-search-local/tree/HEAD/packages/docusaurus-search-local) | `0.49.2` | `0.50.0` | | [@openfga/sdk](https://github.com/openfga/js-sdk) | `0.8.1` | `0.9.0` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `18.3.1` | `19.1.0` | | [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `18.3.5` | `19.1.6` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `18.3.1` | `19.1.0` | | [sanitize-html](https://github.com/apostrophecms/sanitize-html) | `2.16.0` | `2.17.0` | | [@types/sanitize-html](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/sanitize-html) | `2.15.0` | `2.16.0` | | [swagger-ui-react](https://github.com/swagger-api/swagger-ui) | `5.21.0` | `5.24.0` | Updates `@docusaurus/core` from 3.7.0 to 3.8.1 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.8.1/packages/docusaurus) Updates `@docusaurus/plugin-client-redirects` from 3.7.0 to 3.8.1 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.8.1/packages/docusaurus-plugin-client-redirects) Updates `@docusaurus/preset-classic` from 3.7.0 to 3.8.1 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.8.1/packages/docusaurus-preset-classic) Updates `@easyops-cn/docusaurus-search-local` from 0.49.2 to 0.50.0 - [Release notes](https://github.com/easyops-cn/docusaurus-search-local/releases) - [Commits](https://github.com/easyops-cn/docusaurus-search-local/commits/v0.50.0/packages/docusaurus-search-local) Updates `@openfga/sdk` from 0.8.1 to 0.9.0 - [Release notes](https://github.com/openfga/js-sdk/releases) - [Changelog](https://github.com/openfga/js-sdk/blob/main/CHANGELOG.md) - [Commits](openfga/js-sdk@v0.8.1...v0.9.0) Updates `react` from 18.3.1 to 19.1.0 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.1.0/packages/react) Updates `@types/react` from 18.3.5 to 19.1.6 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `react-dom` from 18.3.1 to 19.1.0 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.1.0/packages/react-dom) Updates `sanitize-html` from 2.16.0 to 2.17.0 - [Changelog](https://github.com/apostrophecms/sanitize-html/blob/main/CHANGELOG.md) - [Commits](apostrophecms/sanitize-html@2.16.0...2.17.0) Updates `@types/sanitize-html` from 2.15.0 to 2.16.0 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/sanitize-html) Updates `swagger-ui-react` from 5.21.0 to 5.24.0 - [Release notes](https://github.com/swagger-api/swagger-ui/releases) - [Changelog](https://github.com/swagger-api/swagger-ui/blob/master/.releaserc) - [Commits](swagger-api/swagger-ui@v5.21.0...v5.24.0) --- updated-dependencies: - dependency-name: "@docusaurus/core" dependency-version: 3.8.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: "@docusaurus/plugin-client-redirects" dependency-version: 3.8.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: "@docusaurus/preset-classic" dependency-version: 3.8.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: "@easyops-cn/docusaurus-search-local" dependency-version: 0.50.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: "@openfga/sdk" dependency-version: 0.9.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: react dependency-version: 19.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: "@types/react" dependency-version: 19.1.6 dependency-type: direct:development update-type: version-update:semver-major dependency-group: dependencies - dependency-name: react-dom dependency-version: 19.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: sanitize-html dependency-version: 2.17.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: "@types/sanitize-html" dependency-version: 2.16.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: swagger-ui-react dependency-version: 5.24.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 9, 2025

dependabot bot requested review from a team as code owners June 9, 2025 10:57

dependabot bot force-pushed the dependabot/npm_and_yarn/dependencies-3b15c751f7 branch from e2a43b7 to f00aa18 Compare June 16, 2025 11:37

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump the dependencies group across 1 directory with 11 updates #1045

chore(deps): bump the dependencies group across 1 directory with 11 updates #1045

Uh oh!

dependabot bot commented on behalf of github Jun 9, 2025 •

edited

Loading

Uh oh!

socket-security bot commented Jun 9, 2025 •

edited

Loading

Uh oh!

socket-security bot commented Jun 9, 2025 •

edited

Loading

Uh oh!

Uh oh!

chore(deps): bump the dependencies group across 1 directory with 11 updates #1045

Are you sure you want to change the base?

chore(deps): bump the dependencies group across 1 directory with 11 updates #1045

Uh oh!

Conversation

dependabot bot commented on behalf of github Jun 9, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

3.8.1

🐛 Bug Fix

🏃‍♀️ Performance

🔧 Maintenance

Committers: 7

3.8.0 (2025-05-26)

🚀 New Feature

3.8.1 (2025-06-06)

🐛 Bug Fix

🏃‍♀️ Performance

🔧 Maintenance

Committers: 7

3.8.0 (2025-05-26)

🚀 New Feature

3.8.1

🐛 Bug Fix

🏃‍♀️ Performance

🔧 Maintenance

Committers: 7

3.8.0 (2025-05-26)

🚀 New Feature

3.8.1 (2025-06-06)

🐛 Bug Fix

🏃‍♀️ Performance

🔧 Maintenance

Committers: 7

3.8.0 (2025-05-26)

🚀 New Feature

3.8.1

🐛 Bug Fix

🏃‍♀️ Performance

🔧 Maintenance

Committers: 7

3.8.0 (2025-05-26)

🚀 New Feature

3.8.1 (2025-06-06)

🐛 Bug Fix

🏃‍♀️ Performance

🔧 Maintenance

Committers: 7

3.8.0 (2025-05-26)

🚀 New Feature

v0.50.0

0.50.0 (2025-06-03)

Features

v0.9.0

v0.9.0 (2025-06-04)

v0.9.0

v0.9.0 (2025-06-03)

19.1.0 (March 28, 2025)

Owner Stack

React

React DOM

use-sync-external-store

React Server Components

19.0.0 (December 5, 2024)

19.1.0 (March 28, 2025)

Owner Stack

React

React DOM

use-sync-external-store

React Server Components

19.0.0 (December 5, 2024)

19.1.0 (March 28, 2025)

Owner Stack

React

Uh oh!

socket-security bot commented Jun 9, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

socket-security bot commented Jun 9, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

dependabot bot commented on behalf of github Jun 9, 2025 •

edited

Loading

socket-security bot commented Jun 9, 2025 •

edited

Loading

socket-security bot commented Jun 9, 2025 •

edited

Loading