chore: bump the npm-non-major group across 1 directory with 28 updates by dependabot[bot] · Pull Request #722 · SableClient/Sable

dependabot · 2026-04-28T03:44:59Z

Bumps the npm-non-major group with 28 updates in the / directory:

Package	From	To
@atlaskit/pragmatic-drag-and-drop	`1.7.9`	`1.8.1`
@sentry/react	`10.43.0`	`10.50.0`
@tanstack/react-query	`5.90.21`	`5.100.1`
@tanstack/react-query-devtools	`5.91.3`	`5.100.1`
@tanstack/react-virtual	`3.13.21`	`3.13.24`
@vanilla-extract/css	`1.18.0`	`1.20.1`
@vanilla-extract/vite-plugin	`5.1.4`	`5.2.2`
dayjs	`1.11.19`	`1.11.20`
dompurify	`3.3.3`	`3.4.1`
framer-motion	`12.34.3`	`12.38.0`
jotai	`2.18.1`	`2.19.1`
pdfjs-dist	`5.5.207`	`5.6.205`
react-aria	`3.47.0`	`3.48.0`
slate	`0.123.0`	`0.124.1`
slate-dom	`0.123.0`	`0.124.1`
slate-react	`0.123.0`	`0.124.0`
virtua	`0.48.8`	`0.49.1`
@cloudflare/vite-plugin	`1.27.0`	`1.33.1`
@sentry/vite-plugin	`5.1.1`	`5.2.0`
@vitest/coverage-v8	`4.1.0`	`4.1.5`
@vitest/ui	`4.1.0`	`4.1.5`
jsdom	`29.0.0`	`29.0.2`
oxfmt	`0.45.0`	`0.46.0`
oxlint	`1.60.0`	`1.61.0`
oxlint-tsgolint	`0.21.0`	`0.21.1`
vite-plugin-compression2	`2.5.0`	`2.5.3`
vitest	`4.1.0`	`4.1.5`
wrangler	`4.72.0`	`4.84.1`

Updates @atlaskit/pragmatic-drag-and-drop from 1.7.9 to 1.8.1

Commits

See full diff in compare view

Updates @sentry/react from 10.43.0 to 10.50.0

Release notes

Sourced from @sentry/react's releases.

10.50.0

Important Changes

feat(effect): Support v4 beta (#20394)

The @sentry/effect integration now supports Effect v4 beta, enabling Sentry instrumentation for the latest Effect framework version. Read more in the Effect SDK readme.

feat(hono): Add @sentry/hono/bun for Bun runtime (#20355)

A new @sentry/hono/bun entry point adds first-class support for running Hono applications instrumented with Sentry on the Bun runtime. Read more in the Hono SDK readme.

feat(replay): Add replayStart/replayEnd client lifecycle hooks (#20369)

New replayStart and replayEnd client lifecycle hooks let you react to replay session start and end events in your application.

Other Changes

feat(core): Emit no_parent_span client outcomes for discarded spans requiring a parent (#20350)

feat(deps): Bump protobufjs from 7.5.4 to 7.5.5 (#20372)

feat(hono): Add runtime packages as optional peer dependencies (#20423)

feat(opentelemetry): Add tracingChannel utility for context propagation (#20358)

fix(browser): Enrich graphqlClient spans for relative URLs (#20370)

fix(browser): Filter implausible LCP values (#20338)

fix(cloudflare): Use TransformStream to keep track of streams (#20452)

fix(console): Re-patch console in AWS Lambda runtimes (#20337)

fix(core): Correct GoogleGenAIIstrumentedMethod typo in type name

fix(core): Handle stateless MCP wrapper transport correlation (#20293)

fix(hono): Remove undefined from options type (#20419)

fix(node): Guard against null httpVersion in outgoing request span attributes (#20430)

fix(node-core): Pass rejection reason instead of Promise as originalException (#20366)

chore: Ignore claude worktrees (#20440)

chore: Prevent test from creating zombie process (#20392)

chore: Update size-limit (#20412)

chore(dev-deps): Bump nx from 22.5.0 to 22.6.5 (#20458)

chore(e2e-tests): Use tarball symlinks for E2E tests instead of verdaccio (#20386)

chore(lint): Remove lint warnings (#20413)

chore(test): Remove empty variant tests (#20443)

chore(tests): Use verdaccio as node process instead of docker image (#20336)

docs(readme): Update usage instructions for binary scripts (#20426)

ref(node): Vendor undici instrumentation (#20190)

test(aws-serverless): Ensure aws-serverless E2E tests run locally (#20441)

test(aws-serverless): Split npm & layer tests (#20442)

test(browser): Fix flaky sessions route-lifecycle test + upgrade axios (#20197)

test(cloudflare): Use .makeRequestAndWaitForEnvelope to wait for envelopes (#20208)

... (truncated)

Changelog

Sourced from @sentry/react's changelog.

10.50.0

Important Changes

feat(effect): Support v4 beta (#20394)

The @sentry/effect integration now supports Effect v4 beta, enabling Sentry instrumentation for the latest Effect framework version. Read more in the Effect SDK readme.

feat(hono): Add @sentry/hono/bun for Bun runtime (#20355)

A new @sentry/hono/bun entry point adds first-class support for running Hono applications instrumented with Sentry on the Bun runtime. Read more in the Hono SDK readme.

feat(replay): Add replayStart/replayEnd client lifecycle hooks (#20369)

New replayStart and replayEnd client lifecycle hooks let you react to replay session start and end events in your application.

Other Changes

feat(core): Emit no_parent_span client outcomes for discarded spans requiring a parent (#20350)

feat(deps): Bump protobufjs from 7.5.4 to 7.5.5 (#20372)

feat(hono): Add runtime packages as optional peer dependencies (#20423)

feat(opentelemetry): Add tracingChannel utility for context propagation (#20358)

fix(browser): Enrich graphqlClient spans for relative URLs (#20370)

fix(browser): Filter implausible LCP values (#20338)

fix(cloudflare): Use TransformStream to keep track of streams (#20452)

fix(console): Re-patch console in AWS Lambda runtimes (#20337)

fix(core): Correct GoogleGenAIIstrumentedMethod typo in type name

fix(core): Handle stateless MCP wrapper transport correlation (#20293)

fix(hono): Remove undefined from options type (#20419)

fix(node): Guard against null httpVersion in outgoing request span attributes (#20430)

fix(node-core): Pass rejection reason instead of Promise as originalException (#20366)

chore: Ignore claude worktrees (#20440)

chore: Prevent test from creating zombie process (#20392)

chore: Update size-limit (#20412)

chore(dev-deps): Bump nx from 22.5.0 to 22.6.5 (#20458)

chore(e2e-tests): Use tarball symlinks for E2E tests instead of verdaccio (#20386)

chore(lint): Remove lint warnings (#20413)

chore(test): Remove empty variant tests (#20443)

chore(tests): Use verdaccio as node process instead of docker image (#20336)

docs(readme): Update usage instructions for binary scripts (#20426)

ref(node): Vendor undici instrumentation (#20190)

test(aws-serverless): Ensure aws-serverless E2E tests run locally (#20441)

test(aws-serverless): Split npm & layer tests (#20442)

test(browser): Fix flaky sessions route-lifecycle test + upgrade axios (#20197)

... (truncated)

Commits

785e756 release: 10.50.0
ed26a19 Merge pull request #20461 from getsentry/prepare-release/10.50.0
7b584c4 meta(changelog): Update changelog for 10.50.0
39740da test(cloudflare): Use .makeRequestAndWaitForEnvelope to wait for envelopes (#...
c741030 test(aws-serverless): Split npm & layer tests (#20442)
f97076d chore(dev-deps): Bump nx from 22.5.0 to 22.6.5 (#20458)
4b4ac76 fix(node): Guard against null httpVersion in outgoing request span attribut...
7569b10 fix(cloudflare): Use TransformStream to keep track of streams (#20452)
a4c9686 test(hono): Add E2E tests for middleware spans (#20451)
ff23846 chore: Ignore claude worktrees (#20440)
Additional commits viewable in compare view

Updates @tanstack/react-query from 5.90.21 to 5.100.1

Changelog

Sourced from @tanstack/react-query's changelog.

5.100.1

Patch Changes

Updated dependencies [1bb0d23]:

@tanstack/query-core@5.100.1

5.100.0

Patch Changes

Updated dependencies [6540a41]:

@tanstack/query-core@5.100.0

5.99.2

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.99.2

5.99.1

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.99.1

5.99.0

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.99.0

5.98.0

Patch Changes

Updated dependencies []:

@tanstack/query-core@5.98.0

5.97.0

Patch Changes

Updated dependencies [2bfb12c]:

@tanstack/query-core@5.97.0

5.96.2

... (truncated)

Commits

2f9527e ci: Version Packages (#10568)
ad517e5 ci: Version Packages (#10567)
6540a41 feat(core): callback for retryOnMount (#10515)
e236194 test(react-query/useQuery.promise): improve stability by isolating 'queryClie...
59efc40 test(*): resolve 'require-await' warnings in test files (#10551)
cf8a765 test(react-query/useQuery): rename 'throwOnError' callback parameter to 'err'...
6b6667e test(*): migrate 'test' to 'it' and enforce 'vitest/consistent-test-it' rule ...
a3ec7b3 ci: Version Packages (#10520)
69d2757 ci: Version Packages (#10514)
7ffa1ed test({react,preact,solid}-query/useQueries): fix test description from 'useQu...
Additional commits viewable in compare view

Updates @tanstack/react-query-devtools from 5.91.3 to 5.100.1

Changelog

Sourced from @tanstack/react-query-devtools's changelog.

5.100.1

Patch Changes

Updated dependencies []:

@tanstack/query-devtools@5.100.1

@tanstack/react-query@5.100.1

5.100.0

Patch Changes

Updated dependencies []:

@tanstack/query-devtools@5.100.0

@tanstack/react-query@5.100.0

5.99.2

Patch Changes

Updated dependencies []:

@tanstack/query-devtools@5.99.2

@tanstack/react-query@5.99.2

5.99.1

Patch Changes

Updated dependencies []:

@tanstack/query-devtools@5.99.1

@tanstack/react-query@5.99.1

5.99.0

Patch Changes

Updated dependencies []:

@tanstack/query-devtools@5.99.0

@tanstack/react-query@5.99.0

5.98.0

Patch Changes

Updated dependencies []:

@tanstack/query-devtools@5.98.0

@tanstack/react-query@5.98.0

5.97.0

... (truncated)

Commits

2f9527e ci: Version Packages (#10568)
ad517e5 ci: Version Packages (#10567)
a3ec7b3 ci: Version Packages (#10520)
69d2757 ci: Version Packages (#10514)
adc2543 ci: Version Packages (#10454)
6040278 ci: Version Packages (#10451)
125067c ci: Version Packages (#10436)
5ca721f ci: Version Packages (#10379)
75052a7 ci: Version Packages (#10370)
4a3275c fix(build): exclude config files from production DTS rollup (#10358)
Additional commits viewable in compare view

Updates @tanstack/react-virtual from 3.13.21 to 3.13.24

Release notes

Sourced from @tanstack/react-virtual's releases.

@tanstack/react-virtual@3.13.24

Patch Changes

Updated dependencies [97a204d]:

@tanstack/virtual-core@3.14.0

@tanstack/react-virtual@3.13.23

Patch Changes

Updated dependencies [7ece2d5]:

@tanstack/virtual-core@3.13.23

@tanstack/react-virtual@3.13.22

Patch Changes

Updated dependencies [54d771a, d3416c3]:

@tanstack/virtual-core@3.13.22

Changelog

Sourced from @tanstack/react-virtual's changelog.

3.13.24

Patch Changes

Updated dependencies [97a204d]:

@tanstack/virtual-core@3.14.0

3.13.23

Patch Changes

Updated dependencies [7ece2d5]:

@tanstack/virtual-core@3.13.23

3.13.22

Patch Changes

Updated dependencies [54d771a, d3416c3]:

@tanstack/virtual-core@3.13.22

Commits

c3d4cd4 ci: Version Packages (#1157)
9394e13 ci: Version Packages (#1149)
7ece2d5 fix(virtual-core): remove incorrect elementsCache cleanup using getItemKey (#...
c2f1c39 ci: Version Packages (#1139)
fc3c733 perf(virtual-core): skip sync DOM reads during normal scrolling (#1144)
See full diff in compare view

Updates @vanilla-extract/css from 1.18.0 to 1.20.1

Release notes

Sourced from @vanilla-extract/css's releases.

@vanilla-extract/css@1.20.1

Patch Changes

#1710 1677593 Thanks @askoufis! - Replace cssesc dependency with vendored version

@vanilla-extract/css@1.20.0

Minor Changes
#1702 48a9caf Thanks @bschlenk! - Allow :where and :is in selectors if all selectors target &

EXAMPLE USAGE:
const example = style({
  color: 'red',
  selectors: {
    // Valid: all selectors in the list target `example`
    ':is(h1 > &, h2 > &)': { color: 'blue' }
    // Invalid: the second selector in the list does not target `example`
    ':is(h1 > &, h2)': { color: 'blue' }
  }
});
@vanilla-extract/css@1.19.1

Patch Changes
#1558 9b1bfd0 Thanks @andjsrk! - style: Fixed a bug where nested arrays of classnames could cause missing or malformed CSS during style composition in certain situations.

For example, the following style composition would not generate CSS for the backgroundColor: 'orange' style, and would also generate malformed CSS:
const styleWithNestedComposition = style([
  [style1, style2],
  { backgroundColor: 'orange' },
  [style3]
]);
@vanilla-extract/css@1.19.0

Minor Changes

#1686 1a63a60 Thanks @askoufis! - Add ./vanilla.virtual.css?* entrypoint for Turbopack integration

Changelog

Sourced from @vanilla-extract/css's changelog.

1.20.1

Patch Changes

#1710 1677593 Thanks @askoufis! - Replace cssesc dependency with vendored version

1.20.0

Minor Changes
#1702 48a9caf Thanks @bschlenk! - Allow :where and :is in selectors if all selectors target &

EXAMPLE USAGE:
const example = style({
  color: 'red',
  selectors: {
    // Valid: all selectors in the list target `example`
    ':is(h1 > &, h2 > &)': { color: 'blue' }
    // Invalid: the second selector in the list does not target `example`
    ':is(h1 > &, h2)': { color: 'blue' }
  }
});
1.19.1

Patch Changes
#1558 9b1bfd0 Thanks @andjsrk! - style: Fixed a bug where nested arrays of classnames could cause missing or malformed CSS during style composition in certain situations.

For example, the following style composition would not generate CSS for the backgroundColor: 'orange' style, and would also generate malformed CSS:
const styleWithNestedComposition = style([
  [style1, style2],
  { backgroundColor: 'orange' },
  [style3]
]);
1.19.0

Minor Changes

#1686 1a63a60 Thanks @askoufis! - Add ./vanilla.virtual.css?* entrypoint for Turbopack integration

Commits

5f3faae Version Packages (#1711)
1677593 Vendor cssesc dependency (#1710)
fb82ead Version Packages (#1703)
a668d59 validateSelectors: Fix changeset, update tests (#1704)
48a9caf fix: allow :where and :is in selectors when they only target & (#1702)
79b3519 Version Packages (#1695)
9b1bfd0 Fix runtime behavior to match the type definition (#1558)
d1257c7 Migrate all tests to vitest, increase vite-node dep range (#1694)
ac5ab50 Configure oxlint, address some lint warnings (#1690)
02d85ec Update prettier to v3, delete some directories, update remix docs (#1689)
Additional commits viewable in compare view

Updates @vanilla-extract/vite-plugin from 5.1.4 to 5.2.2

Release notes

Sourced from @vanilla-extract/vite-plugin's releases.

@vanilla-extract/vite-plugin@5.2.2

Patch Changes

Updated dependencies [1677593]:

@vanilla-extract/compiler@0.7.0

@vanilla-extract/vite-plugin@5.2.1

Patch Changes

#1701 b066d1c Thanks @askoufis! - Reduce unnecessary HMR invalidations and fix broken HMR in Astro, Nuxt and Qwik

Updated dependencies [b066d1c]:

@vanilla-extract/compiler@0.6.0

@vanilla-extract/vite-plugin@5.2.0

Minor Changes

#1687 e29f242 Thanks @askoufis! - Add support for Vite 8

Patch Changes

Updated dependencies [e29f242]:

@vanilla-extract/compiler@0.5.0

@vanilla-extract/vite-plugin@5.1.5

Patch Changes

Updated dependencies [c0e2812, c0e2812, c0e2812]:

@vanilla-extract/compiler@0.4.0

@vanilla-extract/integration@8.0.8

Changelog

Sourced from @vanilla-extract/vite-plugin's changelog.

5.2.2

Patch Changes

Updated dependencies [1677593]:

@vanilla-extract/compiler@0.7.0

5.2.1

Patch Changes

#1701 b066d1c Thanks @askoufis! - Reduce unnecessary HMR invalidations and fix broken HMR in Astro, Nuxt and Qwik

Updated dependencies [b066d1c]:

@vanilla-extract/compiler@0.6.0

5.2.0

Minor Changes

#1687 e29f242 Thanks @askoufis! - Add support for Vite 8

Patch Changes

Updated dependencies [e29f242]:

@vanilla-extract/compiler@0.5.0

5.1.5

Patch Changes

Updated dependencies [c0e2812, c0e2812, c0e2812]:

@vanilla-extract/compiler@0.4.0

@vanilla-extract/integration@8.0.8

Commits

5f3faae Version Packages (#1711)
ba21414 Version Packages (#1706)
b066d1c vite: Reduce unnecessary HMR invalidations (#1701)
d1257c7 Migrate all tests to vitest, increase vite-node dep range (#1694)
81e6c33 Version Packages (#1688)
e29f242 Add support for Vite 8 (#1687)
b227ebb Version Packages (#1685)
See full diff in compare view

Updates dayjs from 1.11.19 to 1.11.20

Release notes

Sourced from dayjs's releases.

v1.11.20

1.11.20 (2026-03-12)

Bug Fixes

Update locale km.js to support meridiem (#3017) (9d2b6a1)

update updateLocale plugin to merge nested object properties instead of replacing (#3012) (99691c5), closes #1118

Changelog

Sourced from dayjs's changelog.

1.11.20 (2026-03-12)

Bug Fixes

Update locale km.js to support meridiem (#3017) (9d2b6a1)

update updateLocale plugin to merge nested object properties instead of replacing (#3012) (99691c5), closes #1118

Commits

af6e1f8 chore(release): 1.11.20 [skip ci]
82babd6 D2M (#3018)
bbe4ab1 chore: fix lint error
99691c5 fix: update updateLocale plugin to merge nested object properties instead of ...
9d2b6a1 fix: Update locale km.js to support meridiem (#3017)
acf21cd chore: update doc
55a64e1 chore: update doc
807face chore: update doc
54f4470 chore: update doc
9ea23c7 chore: update doc
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for dayjs since your current version.

Updates dompurify from 3.3.3 to 3.4.1

Release notes

Sourced from dompurify's releases.

DOMPurify 3.4.1

Fixed an issue with on-handler stripping for HTML-spec-reserved custom element names (font-face, color-profile, missing-glyph, font-face-src, font-face-uri, font-face-format, font-face-name) under permissive CUSTOM_ELEMENT_HANDLING

Fixed a case-sensitivity gap in the annotation-xml check that allowed mixed-case variants to bypass the basic-custom-element exclusion in XHTML mode

Fixed SANITIZE_NAMED_PROPS repeatedly prefixing already-prefixed id and name values on subsequent sanitization

Fixed the IN_PLACE root-node check to explicitly guard against non-string nodeName (DOM-clobbering robustness)

Removed a duplicate slot entry from the default HTML attribute allow-list

Strengthened the fast-check fuzz harness with explicit XSS invariants, an expanded seed-payload corpus, an additional idempotence property for SANITIZE_NAMED_PROPS, and a negative-control assertion ensuring the invariants actually fire

Added regression and pinning tests covering the above fixes and two accepted-behavior contracts (SAFE_FOR_TEMPLATES greedy scrub, hook-added attribute handling)

Extended CodeQL analysis to run on 3.x and 2.x maintenance branches

DOMPurify 3.4.0

Most relevant changes:

Fixed a problem with FORBID_TAGS not winning over ADD_TAGS, thanks @kodareef5

Fixed several minor problems and typos regarding MathML attributes, thanks @DavidOliver

Fixed ADD_ATTR/ADD_TAGS function leaking into subsequent array-based calls, thanks @1Jesper1

Fixed a missing SAFE_FOR_TEMPLATES scrub in RETURN_DOM path, thanks @bencalif

Fixed a prototype pollution via CUSTOM_ELEMENT_HANDLING, thanks @trace37labs

Fixed an issue with ADD_TAGS function form bypassing FORBID_TAGS, thanks @eddieran

Fixed an issue with ADD_ATTR predicates skipping URI validation, thanks @christos-eth

Fixed an issue with USE_PROFILES prototype pollution, thanks @christos-eth

Fixed an issue leading to possible mXSS via Re-Contextualization, thanks @researchatfluidattacks and others

Fixed an issue with closing tags leading to possible mXSS, thanks @frevadiscor

Fixed a problem with the type dentition patcher after Node version bump

Fixed freezing BS runs by reducing the tested browsers array

Bumped several dependencies where possible

Added needed files for OpenSSF scorecard checks

Published Advisories are here: https://github.com/cure53/DOMPurify/security/advisories?state=published

Commits

5b0cdbb chore: merge main into 3.x for 3.4.1 release (#1301)
09f5911 test: added three more browsers to test setup (OSX, mobile)
5b16e0b Getting 3.x branch ready for 3.4.0 release (#1250)
See full diff in compare view

Install script changes

This version adds prepare script that runs during installation. Review the package contents before updating.

Updates framer-motion from 12.34.3 to 12.38.0

Changelog

Sourced from framer-motion's changelog.

[12.38.0] 2026-03-16

Added

Added layoutAnchor prop to configure custom anchor point for resolving relative projection boxes.

Fixed

Reorder: Fix axis switching after window resize.

Reorder: Fix with virtualised lists.

AnimatePresence: Ensure children are removed when exit animation matches current values.

[12.37.0] 2026-03-16

Added

Support for hardware accelerating "start" and "end" offsets in scroll and useScroll.

Support for oklch, oklab, lab, lch, color, color-mix, light-dark color types.

Fixed

Fix whileInView with client-side navigation.

Fix draggable elements when layout updates due to surrounding element re-renders.

Improved memory pressure of layout animations.

Ensure motion value returned from useSpring reports correct isAnimating().

[12.36.0] 2026-03-09

Added

Allow dragSnapToOrigin to accept "x" or "y" for per-axis snapping.

Added axis-locked layout animations with layout="x" and layout="y".

Added skipInitialAnimation to useSpring.

Fixed

Fixed height and width: auto animations with box-sizing: border-box.

Reset component values when exit animation finishes.

Ensure anticipate easing returns 1 at p === 1.

Fix @emotion/is-prop-valid resolve error in Storybook.

Remove data-pop-layout-id from exiting elements when animation interrupted.

Ensure we skip WAAPI for non-animatable keyframes.

Ensure we skip WAAPI for SVG transforms.

Ensure MotionValue props are not passed to SVG.

AnimatePresence: Prevent mode="wait" elements from getting stuck when switched rapidly.

[12.35.2] 2026-03-09

Fixed

... (truncated)

Commits

0bfc9fe v12.38.0
343cb0c Updating layoutAnchor
ee99ad2 Updating changelog
062660b Updating changgelog
303da7d Updating readme
b075adc Merge pull request #3647 from motiondivision/feat/layout-anchor
f0991d6 Add missing layoutAnchor !== false guard in attemptToResolveRelativeTarget
b5798e9 Merge pull request #3642 from motiondivision/worktree-fix-issue-3078
7686c19 Merge pull request #3636 from motiondivision/worktree-fix-issue-3061
a95c487 Fix auto-scroll in reorder-virtualized test page
Additional commits viewable in compare view

Updates jotai from 2.18.1 to 2.19.1

Release notes

Sourced from jotai's releases.

v2.19.1

This release includes several small refactors to improve performance.

What's Changed

fix(vanilla/utils/atomWithObservable): use symbol index signature to avoid 'Symbol.observable' type reference by @sukvvon in pmndrs/jotai#3274

refactor(internals): replace nextDeps with prevDeps by @dmaskasky in pmndrs/jotai#3278

refactor(internals): reduce recomputeInvalidatedAtoms overhead (performance) by @dmaskasky in pmndrs/jotai#3284

refactor(internals): reduce flushPending overhead (performance) by @dmaskasky in pmndrs/jotai#3285

fix(internals): check if atom has dependencies before doing mountDependencies work (performance) by @dmaskasky in pmndrs/jotai#3290

fix(internals): check if atom has onMount property before queueing processOnMount callback (performance) by @dmaskasky in pmndrs/jotai#3291

refactor(types): prefer no-any by @dai-shi in pmndrs/jotai#3304

New Contributors

@aio39 made their first contribution in pmndrs/jotai#3277

Full Changelog: Description has been truncated

Bumps the npm-non-major group with 28 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@atlaskit/pragmatic-drag-and-drop](https://github.com/atlassian/pragmatic-drag-and-drop) | `1.7.9` | `1.8.1` | | [@sentry/react](https://github.com/getsentry/sentry-javascript) | `10.43.0` | `10.50.0` | | [@tanstack/react-query](https://github.com/TanStack/query/tree/HEAD/packages/react-query) | `5.90.21` | `5.100.1` | | [@tanstack/react-query-devtools](https://github.com/TanStack/query/tree/HEAD/packages/react-query-devtools) | `5.91.3` | `5.100.1` | | [@tanstack/react-virtual](https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual) | `3.13.21` | `3.13.24` | | [@vanilla-extract/css](https://github.com/vanilla-extract-css/vanilla-extract/tree/HEAD/packages/css) | `1.18.0` | `1.20.1` | | [@vanilla-extract/vite-plugin](https://github.com/vanilla-extract-css/vanilla-extract/tree/HEAD/packages/vite-plugin) | `5.1.4` | `5.2.2` | | [dayjs](https://github.com/iamkun/dayjs) | `1.11.19` | `1.11.20` | | [dompurify](https://github.com/cure53/DOMPurify) | `3.3.3` | `3.4.1` | | [framer-motion](https://github.com/motiondivision/motion) | `12.34.3` | `12.38.0` | | [jotai](https://github.com/pmndrs/jotai) | `2.18.1` | `2.19.1` | | [pdfjs-dist](https://github.com/mozilla/pdf.js) | `5.5.207` | `5.6.205` | | [react-aria](https://github.com/adobe/react-spectrum) | `3.47.0` | `3.48.0` | | [slate](https://github.com/ianstormtaylor/slate) | `0.123.0` | `0.124.1` | | [slate-dom](https://github.com/ianstormtaylor/slate) | `0.123.0` | `0.124.1` | | [slate-react](https://github.com/ianstormtaylor/slate) | `0.123.0` | `0.124.0` | | [virtua](https://github.com/inokawa/virtua) | `0.48.8` | `0.49.1` | | [@cloudflare/vite-plugin](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/vite-plugin-cloudflare) | `1.27.0` | `1.33.1` | | [@sentry/vite-plugin](https://github.com/getsentry/sentry-javascript-bundler-plugins) | `5.1.1` | `5.2.0` | | [@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8) | `4.1.0` | `4.1.5` | | [@vitest/ui](https://github.com/vitest-dev/vitest/tree/HEAD/packages/ui) | `4.1.0` | `4.1.5` | | [jsdom](https://github.com/jsdom/jsdom) | `29.0.0` | `29.0.2` | | [oxfmt](https://github.com/oxc-project/oxc/tree/HEAD/npm/oxfmt) | `0.45.0` | `0.46.0` | | [oxlint](https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint) | `1.60.0` | `1.61.0` | | [oxlint-tsgolint](https://github.com/oxc-project/tsgolint) | `0.21.0` | `0.21.1` | | [vite-plugin-compression2](https://github.com/nonzzz/vite-plugin-compression) | `2.5.0` | `2.5.3` | | [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `4.1.0` | `4.1.5` | | [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler) | `4.72.0` | `4.84.1` | Updates `@atlaskit/pragmatic-drag-and-drop` from 1.7.9 to 1.8.1 - [Commits](https://github.com/atlassian/pragmatic-drag-and-drop/commits) Updates `@sentry/react` from 10.43.0 to 10.50.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](getsentry/sentry-javascript@10.43.0...10.50.0) Updates `@tanstack/react-query` from 5.90.21 to 5.100.1 - [Release notes](https://github.com/TanStack/query/releases) - [Changelog](https://github.com/TanStack/query/blob/main/packages/react-query/CHANGELOG.md) - [Commits](https://github.com/TanStack/query/commits/@tanstack/react-query-devtools@5.100.1/packages/react-query) Updates `@tanstack/react-query-devtools` from 5.91.3 to 5.100.1 - [Release notes](https://github.com/TanStack/query/releases) - [Changelog](https://github.com/TanStack/query/blob/main/packages/react-query-devtools/CHANGELOG.md) - [Commits](https://github.com/TanStack/query/commits/@tanstack/react-query-devtools@5.100.1/packages/react-query-devtools) Updates `@tanstack/react-virtual` from 3.13.21 to 3.13.24 - [Release notes](https://github.com/TanStack/virtual/releases) - [Changelog](https://github.com/TanStack/virtual/blob/main/packages/react-virtual/CHANGELOG.md) - [Commits](https://github.com/TanStack/virtual/commits/@tanstack/react-virtual@3.13.24/packages/react-virtual) Updates `@vanilla-extract/css` from 1.18.0 to 1.20.1 - [Release notes](https://github.com/vanilla-extract-css/vanilla-extract/releases) - [Changelog](https://github.com/vanilla-extract-css/vanilla-extract/blob/master/packages/css/CHANGELOG.md) - [Commits](https://github.com/vanilla-extract-css/vanilla-extract/commits/@vanilla-extract/css@1.20.1/packages/css) Updates `@vanilla-extract/vite-plugin` from 5.1.4 to 5.2.2 - [Release notes](https://github.com/vanilla-extract-css/vanilla-extract/releases) - [Changelog](https://github.com/vanilla-extract-css/vanilla-extract/blob/master/packages/vite-plugin/CHANGELOG.md) - [Commits](https://github.com/vanilla-extract-css/vanilla-extract/commits/@vanilla-extract/vite-plugin@5.2.2/packages/vite-plugin) Updates `dayjs` from 1.11.19 to 1.11.20 - [Release notes](https://github.com/iamkun/dayjs/releases) - [Changelog](https://github.com/iamkun/dayjs/blob/dev/CHANGELOG.md) - [Commits](iamkun/dayjs@v1.11.19...v1.11.20) Updates `dompurify` from 3.3.3 to 3.4.1 - [Release notes](https://github.com/cure53/DOMPurify/releases) - [Commits](cure53/DOMPurify@3.3.3...3.4.1) Updates `framer-motion` from 12.34.3 to 12.38.0 - [Changelog](https://github.com/motiondivision/motion/blob/main/CHANGELOG.md) - [Commits](motiondivision/motion@v12.34.3...v12.38.0) Updates `jotai` from 2.18.1 to 2.19.1 - [Release notes](https://github.com/pmndrs/jotai/releases) - [Commits](pmndrs/jotai@v2.18.1...v2.19.1) Updates `pdfjs-dist` from 5.5.207 to 5.6.205 - [Release notes](https://github.com/mozilla/pdf.js/releases) - [Commits](mozilla/pdf.js@v5.5.207...v5.6.205) Updates `react-aria` from 3.47.0 to 3.48.0 - [Release notes](https://github.com/adobe/react-spectrum/releases) - [Commits](https://github.com/adobe/react-spectrum/compare/react-aria@3.47.0...react-aria@3.48.0) Updates `slate` from 0.123.0 to 0.124.1 - [Release notes](https://github.com/ianstormtaylor/slate/releases) - [Commits](https://github.com/ianstormtaylor/slate/compare/slate@0.123.0...slate@0.124.1) Updates `slate-dom` from 0.123.0 to 0.124.1 - [Release notes](https://github.com/ianstormtaylor/slate/releases) - [Commits](https://github.com/ianstormtaylor/slate/compare/slate-dom@0.123.0...slate-dom@0.124.1) Updates `slate-react` from 0.123.0 to 0.124.0 - [Release notes](https://github.com/ianstormtaylor/slate/releases) - [Commits](https://github.com/ianstormtaylor/slate/compare/slate-react@0.123.0...slate-react@0.124.0) Updates `virtua` from 0.48.8 to 0.49.1 - [Release notes](https://github.com/inokawa/virtua/releases) - [Commits](inokawa/virtua@0.48.8...0.49.1) Updates `@cloudflare/vite-plugin` from 1.27.0 to 1.33.1 - [Release notes](https://github.com/cloudflare/workers-sdk/releases) - [Changelog](https://github.com/cloudflare/workers-sdk/blob/main/packages/vite-plugin-cloudflare/CHANGELOG.md) - [Commits](https://github.com/cloudflare/workers-sdk/commits/@cloudflare/vite-plugin@1.33.1/packages/vite-plugin-cloudflare) Updates `@sentry/vite-plugin` from 5.1.1 to 5.2.0 - [Release notes](https://github.com/getsentry/sentry-javascript-bundler-plugins/releases) - [Changelog](https://github.com/getsentry/sentry-javascript-bundler-plugins/blob/main/CHANGELOG.md) - [Commits](getsentry/sentry-javascript-bundler-plugins@5.1.1...5.2.0) Updates `@vitest/coverage-v8` from 4.1.0 to 4.1.5 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.5/packages/coverage-v8) Updates `@vitest/ui` from 4.1.0 to 4.1.5 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.5/packages/ui) Updates `jsdom` from 29.0.0 to 29.0.2 - [Release notes](https://github.com/jsdom/jsdom/releases) - [Commits](jsdom/jsdom@v29.0.0...v29.0.2) Updates `oxfmt` from 0.45.0 to 0.46.0 - [Release notes](https://github.com/oxc-project/oxc/releases) - [Changelog](https://github.com/oxc-project/oxc/blob/main/npm/oxfmt/CHANGELOG.md) - [Commits](https://github.com/oxc-project/oxc/commits/oxfmt_v0.46.0/npm/oxfmt) Updates `oxlint` from 1.60.0 to 1.61.0 - [Release notes](https://github.com/oxc-project/oxc/releases) - [Changelog](https://github.com/oxc-project/oxc/blob/main/npm/oxlint/CHANGELOG.md) - [Commits](https://github.com/oxc-project/oxc/commits/oxlint_v1.61.0/npm/oxlint) Updates `oxlint-tsgolint` from 0.21.0 to 0.21.1 - [Release notes](https://github.com/oxc-project/tsgolint/releases) - [Commits](oxc-project/tsgolint@v0.21.0...v0.21.1) Updates `vite-plugin-compression2` from 2.5.0 to 2.5.3 - [Release notes](https://github.com/nonzzz/vite-plugin-compression/releases) - [Changelog](https://github.com/nonzzz/vite-plugin-compression/blob/master/CHANGELOG.md) - [Commits](nonzzz/vite-plugin-compression@v2.5.0...v2.5.3) Updates `vitest` from 4.1.0 to 4.1.5 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.5/packages/vitest) Updates `wrangler` from 4.72.0 to 4.84.1 - [Release notes](https://github.com/cloudflare/workers-sdk/releases) - [Commits](https://github.com/cloudflare/workers-sdk/commits/wrangler@4.84.1/packages/wrangler) --- updated-dependencies: - dependency-name: "@atlaskit/pragmatic-drag-and-drop" dependency-version: 1.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: "@cloudflare/vite-plugin" dependency-version: 1.33.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: "@sentry/react" dependency-version: 10.49.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: "@sentry/vite-plugin" dependency-version: 5.2.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: "@tanstack/react-query" dependency-version: 5.99.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: "@tanstack/react-query-devtools" dependency-version: 5.99.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: "@tanstack/react-virtual" dependency-version: 3.13.24 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-non-major - dependency-name: "@vanilla-extract/css" dependency-version: 1.20.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: "@vanilla-extract/vite-plugin" dependency-version: 5.2.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: "@vitest/coverage-v8" dependency-version: 4.1.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-non-major - dependency-name: "@vitest/ui" dependency-version: 4.1.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-non-major - dependency-name: dayjs dependency-version: 1.11.20 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-non-major - dependency-name: dompurify dependency-version: 3.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: framer-motion dependency-version: 12.38.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: jotai dependency-version: 2.19.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: jsdom dependency-version: 29.0.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-non-major - dependency-name: oxfmt dependency-version: 0.46.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: oxlint dependency-version: 1.61.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: oxlint-tsgolint dependency-version: 0.21.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-non-major - dependency-name: pdfjs-dist dependency-version: 5.6.205 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: react-aria dependency-version: 3.48.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: slate dependency-version: 0.124.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: slate-dom dependency-version: 0.124.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: slate-react dependency-version: 0.124.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: virtua dependency-version: 0.49.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-non-major - dependency-name: vite-plugin-compression2 dependency-version: 2.5.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-non-major - dependency-name: vitest dependency-version: 4.1.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-non-major - dependency-name: wrangler dependency-version: 4.84.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-non-major ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added the internal label Apr 28, 2026

dependabot Bot requested review from 7w1 and hazre as code owners April 28, 2026 03:45

dependabot Bot added the internal label Apr 28, 2026

dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-non-major-14f686f976 branch 2 times, most recently from 9e1db8d to d69ad4d Compare April 30, 2026 01:36

dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-non-major-14f686f976 branch from d69ad4d to 6e32584 Compare May 1, 2026 01:56

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore: bump the npm-non-major group across 1 directory with 28 updates#722

chore: bump the npm-non-major group across 1 directory with 28 updates#722
dependabot[bot] wants to merge 1 commit intodevfrom
dependabot/npm_and_yarn/npm-non-major-14f686f976

dependabot Bot commented on behalf of github Apr 28, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Apr 28, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

10.50.0

Important Changes

Other Changes

10.50.0

Important Changes

Other Changes

5.100.1

Patch Changes

5.100.0

Patch Changes

5.99.2

Patch Changes

5.99.1

Patch Changes

5.99.0

Patch Changes

5.98.0

Patch Changes

5.97.0

Patch Changes

5.96.2

5.100.1

Patch Changes

5.100.0

Patch Changes

5.99.2

Patch Changes

5.99.1

Patch Changes

5.99.0

Patch Changes

5.98.0

Patch Changes

5.97.0

@​tanstack/react-virtual@​3.13.24

Patch Changes

@​tanstack/react-virtual@​3.13.23

Patch Changes

@​tanstack/react-virtual@​3.13.22

Patch Changes

3.13.24

Patch Changes

3.13.23

Patch Changes

3.13.22

Patch Changes

@​vanilla-extract/css@​1.20.1

Patch Changes

@​vanilla-extract/css@​1.20.0

Minor Changes

@​vanilla-extract/css@​1.19.1

Patch Changes

@​vanilla-extract/css@​1.19.0

Minor Changes

1.20.1

Patch Changes

1.20.0

Minor Changes

1.19.1

Patch Changes

1.19.0

Minor Changes

@​vanilla-extract/vite-plugin@​5.2.2

Patch Changes

@​vanilla-extract/vite-plugin@​5.2.1

Patch Changes

@​vanilla-extract/vite-plugin@​5.2.0

Minor Changes

Patch Changes

@​vanilla-extract/vite-plugin@​5.1.5

Patch Changes

5.2.2

Patch Changes

5.2.1

Patch Changes

5.2.0

Minor Changes

dependabot Bot commented on behalf of github Apr 28, 2026 •

edited

Loading

`@tanstack/react-virtual@3`.13.24

`@tanstack/react-virtual@3`.13.23

`@tanstack/react-virtual@3`.13.22

`@vanilla-extract/css@1`.20.1

`@vanilla-extract/css@1`.20.0

`@vanilla-extract/css@1`.19.1

`@vanilla-extract/css@1`.19.0

`@vanilla-extract/vite-plugin@5`.2.2

`@vanilla-extract/vite-plugin@5`.2.1

`@vanilla-extract/vite-plugin@5`.2.0

`@vanilla-extract/vite-plugin@5`.1.5