Skip to content

Bump the production-dependencies group across 1 directory with 11 updates#28

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-dependencies-6962b0f6c7
Open

Bump the production-dependencies group across 1 directory with 11 updates#28
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-dependencies-6962b0f6c7

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github May 12, 2026
edited
Loading

Bumps the production-dependencies group with 11 updates in the / directory:

Package From To
@clack/prompts 1.1.0 1.3.0
ansis 4.2.0 4.3.0
better-sqlite3 12.8.0 12.9.0
citty 0.2.1 0.2.2
defu 6.1.4 6.1.7
ini 6.0.0 7.0.0
jiti 2.6.1 2.7.0
semver 7.7.4 7.8.0
tinyglobby 0.2.15 0.2.16
undici 7.24.6 8.2.0
yaml 2.8.3 2.9.0

Updates @clack/prompts from 1.1.0 to 1.3.0

Release notes

Sourced from @​clack/prompts's releases.

@​clack/prompts@​1.3.0

Minor Changes

  • ea5702e: fix: add engines field expressing node >=20.12 requirement
  • 814ab9a: Add new multiline prompt for multi-line text input.

Patch Changes

  • 5b897a7: Fix mixed type-only and runtime exports from @​clack/core.
  • Updated dependencies [78fd3ae]
  • Updated dependencies [ea5702e]
  • Updated dependencies [814ab9a]
    • @​clack/core@​1.3.0

@​clack/prompts@​1.2.0

Minor Changes

  • 9786226: Externalize fast-string-width and fast-wrap-ansi to avoid double dependencies
  • 090902c: Adds date prompt with format support (YMD, MDY, DMY)

Patch Changes

  • 134a1a1: Fix the path prompt so directory: true correctly enforces directory-only selection while still allowing directory navigation, and add regression tests for both directory and default file selection behavior.
  • bdf89a5: Adds placeholder option to autocomplete. When the placeholder is set and the input is empty, pressing tab will set the value to placeholder.
  • 336495a: Apply guide to wrapped multi-line messages in confirm prompt.
  • 9fe8de6: Respect withGuide: false in autocomplete and multiselect prompts.
  • 29a50cb: Fix path directory mode so pressing Enter with an existing directory initialValue submits that current directory instead of the first child option, and add regression coverage for immediate submit and child-directory navigation.
  • Updated dependencies [9786226]
  • Updated dependencies [bdf89a5]
  • Updated dependencies [417b451]
  • Updated dependencies [090902c]
    • @​clack/core@​1.2.0
Changelog

Sourced from @​clack/prompts's changelog.

1.3.0

Minor Changes

  • ea5702e: fix: add engines field expressing node >=20.12 requirement
  • 814ab9a: Add new multiline prompt for multi-line text input.

Patch Changes

  • 5b897a7: Fix mixed type-only and runtime exports from @​clack/core.
  • Updated dependencies [78fd3ae]
  • Updated dependencies [ea5702e]
  • Updated dependencies [814ab9a]
    • @​clack/core@​1.3.0

1.2.0

Minor Changes

  • 9786226: Externalize fast-string-width and fast-wrap-ansi to avoid double dependencies
  • 090902c: Adds date prompt with format support (YMD, MDY, DMY)

Patch Changes

  • 134a1a1: Fix the path prompt so directory: true correctly enforces directory-only selection while still allowing directory navigation, and add regression tests for both directory and default file selection behavior.
  • bdf89a5: Adds placeholder option to autocomplete. When the placeholder is set and the input is empty, pressing tab will set the value to placeholder.
  • 336495a: Apply guide to wrapped multi-line messages in confirm prompt.
  • 9fe8de6: Respect withGuide: false in autocomplete and multiselect prompts.
  • 29a50cb: Fix path directory mode so pressing Enter with an existing directory initialValue submits that current directory instead of the first child option, and add regression coverage for immediate submit and child-directory navigation.
  • Updated dependencies [9786226]
  • Updated dependencies [bdf89a5]
  • Updated dependencies [417b451]
  • Updated dependencies [090902c]
    • @​clack/core@​1.2.0
Commits
  • 05bfd43 [ci] release (#501)
  • 5b897a7 fix: split type-only and runtime exports (#518)
  • cd7e5cd deps: update pnpm and align node types version (#515)
  • 970268b chore(deps): update deps in core and prompts packages (#512)
  • ea5702e chore: add engines field to prompts and core (#514)
  • ec432f9 docs: correct Progress example in README (#505)
  • 663ae0d docs(@​clack/prompts): document missing prompt APIs in README (#503)
  • 814ab9a feat(@​clack/core,@​clack/prompts): Multiline text input (#240)
  • aa488fc [ci] release (#482)
  • 9fe8de6 feat: respect withGuide: false in autocomplete and multiselect prompts (#500)
  • Additional commits viewable in compare view

Updates ansis from 4.2.0 to 4.3.0

Changelog

Sourced from ansis's changelog.

4.3.0 (2026-05-11)

  • feat: add support for OSC 8 hyperlink: link(url, text)
  • feat: add constructor overload to pass a mock globalThis object for controlled color auto-detection 
    import { Ansis } from 'ansis';
const color = new Ansis({
process: {
env: { FORCE_COLOR: '1' },
argv: ['node', 'app.js'],
stdout: { isTTY: false },
platform: 'linux',
},
});
console.log(color.level); // 1

  • fix(color-support): correctly handle edge cases using ENV variables and CLI flags
Fixed edge case Old behavior (bug) New behavior (correct)
FORCE_COLOR=1, NO_COLOR=1 disable color enable color (FORCE_COLOR takes precedence over NO_COLOR)
NO_COLOR=1, --color disable color enable color (CLI color flags take precedence over NO_COLOR)
FORCE_COLOR=1, --no-color disable color enable color (FORCE_COLOR has the highest priority)
--no-color --color disable color enable color (last flag wins)
--color with no detected colors truecolor 16 colors (auto-detect fallback uses the minimum color level, not truecolor)
Commits

Updates better-sqlite3 from 12.8.0 to 12.9.0

Release notes

Sourced from better-sqlite3's releases.

v12.9.0

What's Changed

Full Changelog: WiseLibs/better-sqlite3@v12.8.0...v12.9.0

Commits

Updates citty from 0.2.1 to 0.2.2

Release notes

Sourced from citty's releases.

v0.2.2

compare changes

🚀 Enhancements

  • Support subcommand aliases (#236)
  • Add plugin system (#238)
  • Support default sub command (#156)

🩹 Fixes

  • main: Allow user-defined -h, --help, -v, --version args (#234)
  • Resolve alias value over default (#228)
  • Subcommand resolution incorrectly consumes flag values (#231)
  • Coerce parsed arg values to match declared types (#239)

💅 Refactors

  • Improve usage tips (#198)

📖 Documentation

  • Add usage section (#70)
  • Add example setup and cleanup option (#188)

✅ Tests

  • Reproduce issue with short option (alias) and = (#230)
  • parser: Add regression tests for hyphen-prefixed string values (#171)

❤️ Contributors

Changelog

Sourced from citty's changelog.

v0.2.2

compare changes

🚀 Enhancements

  • Support subcommand aliases (#236)
  • Add plugin system (#238)
  • default: Support default sub command (#156)

🩹 Fixes

  • main: Allow user-defined -h, --help, -v, --version args (#234)
  • Resolve alias value over default (#228)
  • Subcommand resolution incorrectly consumes flag values (#231)
  • Coerce parsed arg values to match declared types (#239)

💅 Refactors

  • Improve usage tips (#198)

📖 Documentation

  • Add usage section (#70)
  • Add example setup and cleanup option (#188)

🏡 Chore

✅ Tests

  • Reproduce issue with short option (alias) and = (#230)
  • parser: Add regression tests for hyphen-prefixed string values (#171)

❤️ Contributors

... (truncated)

Commits

Updates defu from 6.1.4 to 6.1.7

Release notes

Sourced from defu's releases.

v6.1.7

compare changes

📦 Build

  • Correct the types export entry (#160)
  • Export Defu types (#157)

❤️ Contributors

v6.1.6

compare changes

📦 Build

v6.1.5

compare changes

🩹 Fixes

  • Prevent prototype pollution via __proto__ in defaults (#156)
  • Ignore inherited enumerable properties (11ba022)

✅ Tests

  • Add more tests for plain objects (b65f603)

❤️ Contributors

Changelog

Sourced from defu's changelog.

v6.1.7

compare changes

🩹 Fixes

  • defu.d.cts: Export Defu types (#157)

📦 Build

  • Correct the types export entry (#160)

❤️ Contributors

v6.1.6

compare changes

📦 Build

❤️ Contributors

v6.1.5

compare changes

🩹 Fixes

  • Prevent prototype pollution via __proto__ in defaults (#156)
  • Ignore inherited enumerable properties (11ba022)

🏡 Chore

✅ Tests

  • Add more tests for plain objects (b65f603)

🤖 CI

... (truncated)

Commits
  • 80c0146 chore(release): v6.1.7
  • 40d7ef4 fix(defu.d.cts): export Defu types (#157)
  • 3d3a7c8 build: correct the types export entry (#160)
  • 001c290 chore(release): v6.1.6
  • 407b516 build: fix mixed types
  • 23e59e6 chore(release): v6.1.5
  • 11ba022 fix: ignore inherited enumerable properties
  • 3942bfb fix: prevent prototype pollution via __proto__ in defaults (#156)
  • d3ef16d chore(deps): update actions/checkout action to v6 (#151)
  • 869a053 chore(deps): update actions/setup-node action to v6 (#149)
  • Additional commits viewable in compare view

Updates ini from 6.0.0 to 7.0.0

Release notes

Sourced from ini's releases.

v7.0.0

7.0.0 (2026-05-08)

⚠️ BREAKING CHANGES

  • ini now supports node ^22.22.2 || ^24.15.0 || >=26.0.0
  • template-oss-apply

Features

Chores

Changelog

Sourced from ini's changelog.

7.0.0 (2026-05-08)

⚠️ BREAKING CHANGES

  • ini now supports node ^22.22.2 || ^24.15.0 || >=26.0.0
  • template-oss-apply

Features

Chores

Commits
  • 847941c chore: release 7.0.0 (#302)
  • f6ed5be chore: template-oss-apply
  • 55b6841 feat!: bump to new node engine range
  • 2b11ba8 feat!: template-oss-apply
  • e8d16cb deps & engine update
  • 3661dce chore: bump @​npmcli/template-oss from 4.28.0 to 4.28.1 (#296)
  • 5d67f4b chore: bump @​npmcli/template-oss from 4.27.1 to 4.28.0 (#294)
  • a2c835e chore: bump @​npmcli/eslint-config from 5.1.0 to 6.0.0 (#293)
  • See full diff in compare view

Updates jiti from 2.6.1 to 2.7.0

Release notes

Sourced from jiti's releases.

v2.7.0

compare changes

🚀 Enhancements

  • Add explicit resource management (using/await using) support (#422)
  • Support opt-in tsconfigPaths (#427)
  • Support virtual modules (#428)
  • Add jiti/static subpath (#430)

🔥 Performance

  • interopDefault: Add caching to reduce proxy overhead by ~2x (#421)

🩹 Fixes

  • require: Passthrough resolve options (#412)
  • require: Fallback to transpilation when tryNative fails (#413)
  • Fallback for ENAMETOOLONG when evaluating esm (#429)

📦 Build

  • Upgrade rspack to v2 (55194fb)
  • Experimental rolldown config (8c0243f)

✅ Tests

  • Ignore jsx test for bun/cjs (3a744ca)

❤️ Contributors

Changelog

Sourced from jiti's changelog.

v2.7.0

compare changes

🚀 Enhancements

  • Add explicit resource management (using/await using) support (#422)
  • Support opt-in tsconfigPaths (#427)
  • Support virtual modules option (#428)
  • Add jiti/static export (#430)

🔥 Performance

  • interopDefault: Add caching to reduce proxy overhead by ~2x (#421)

🩹 Fixes

  • require: Passthrough resolve options (#412)
  • ci: Skip --coverage flag for node 18 (fe264b4)
  • require: Fallback to transpilation when tryNative fails (#413)
  • Fallback for ENAMETOOLONG when evaluating esm (#429)

📦 Build

🏡 Chore

✅ Tests

🤖 CI

  • Update node test matrix (0abda72)

❤️ Contributors

... (truncated)

Commits

Updates semver from 7.7.4 to 7.8.0

Release notes

Sourced from semver's releases.

v7.8.0

7.8.0 (2026-05-08)

Features

Bug Fixes

Documentation

Chores

Changelog

Sourced from semver's changelog.

7.8.0 (2026-05-08)

Features

Bug Fixes

Documentation

Chores

Commits
  • efa4be6 chore: release 7.8.0 (#847)
  • 9542e09 chore: template-oss-apply
  • 937bc2c chore: template-oss-apply@5.0.0
  • 3905343 fix: Warn when defaulting to --inc=patch in CLI
  • 0d0a0a2 feat: Add truncate function (#855)
  • c368af6 docs: fix typos in documentation (#853)
  • 6946fef chore: bump @​npmcli/template-oss from 4.29.0 to 4.30.0 (#852)
  • 37776c3 docs: fix BNF grammar to distinguish prerelease from build identifiers (#846)
  • See full diff in compare view

Updates tinyglobby from 0.2.15 to 0.2.16

Release notes

Sourced from tinyglobby's releases.

0.2.16

Fixed

Changed

  • Overhauled and optimized most internals by @​Torathion
  • Ignore patterns are no longer compiled twice by @​webpro

Consider sponsoring if you'd like to support the development of this project and the goal of reaching a lighter and faster ecosystem

Changelog

Sourced from tinyglobby's changelog.

0.2.16

Fixed

Changed

  • Overhauled and optimized most internals by Torathion
  • Ignore patterns are no longer compiled twice by webpro
Commits
  • 5779202 release 0.2.16
  • 071954f bump deps once more
  • e541dde do not import the whole fs module
  • 2381b76 fix root being too broad
  • 0addeb9 chore(deps): update all non-major dependencies (#191)
  • 91ac26c chore(deps): update pnpm/action-setup action to v5 (#192)
  • c50558e upgrade picomatch (and everything else)
  • 6185175 chore(deps): update dependency picomatch to v4.0.4 [security] (#193)
  • 49c2b93 enable pnpm trustPolicy
  • bc825c4 chore(deps): update all non-major dependencies (#181)
  • Additional commits viewable in compare view

Updates undici from 7.24.6 to 8.2.0

Release notes

Sourced from undici's releases.

v8.2.0

What's Changed

... (truncated)

Commits
  • bf684f7 Bumped v8.2.0 (#5152)
  • 0ca054a fix: replace stale pool clients under connection limit (#5145)
  • 7af90e9 perf: avoid redundant scans in BalancedPool dispatcher selection (#5146)
  • abb9d06 fix: validate H2CClient maxConcurrentStreams option (#5143)
  • 72a7591 perf(http2): avoid cloning headers when removing status (#5127)
  • 96fd5e9 fix(cache): allow streamed entries at maxEntrySize limit (#5129)
  • f41e53f perf: use byteLength property for binary body chunks (#5126)
  • bec4961 chore(deps): add lockfile (#5139)
  • 86f1242 perf(http2): reduce writeH2 per-request callback allocations (

@dependabot
Bump the production-dependencies group across 1 directory with 11 upd…
55cfa0e 
…ates

Bumps the production-dependencies group with 11 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.1.0` | `1.3.0` |
| [ansis](https://github.com/webdiscus/ansis) | `4.2.0` | `4.3.0` |
| [better-sqlite3](https://github.com/WiseLibs/better-sqlite3) | `12.8.0` | `12.9.0` |
| [citty](https://github.com/unjs/citty) | `0.2.1` | `0.2.2` |
| [defu](https://github.com/unjs/defu) | `6.1.4` | `6.1.7` |
| [ini](https://github.com/npm/ini) | `6.0.0` | `7.0.0` |
| [jiti](https://github.com/unjs/jiti) | `2.6.1` | `2.7.0` |
| [semver](https://github.com/npm/node-semver) | `7.7.4` | `7.8.0` |
| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |
| [undici](https://github.com/nodejs/undici) | `7.24.6` | `8.2.0` |
| [yaml](https://github.com/eemeli/yaml) | `2.8.3` | `2.9.0` |



Updates `@clack/prompts` from 1.1.0 to 1.3.0
- [Release notes](https://github.com/bombshell-dev/clack/releases)
- [Changelog](https://github.com/bombshell-dev/clack/blob/main/packages/prompts/CHANGELOG.md)
- [Commits](https://github.com/bombshell-dev/clack/commits/@clack/prompts@1.3.0/packages/prompts)

Updates `ansis` from 4.2.0 to 4.3.0
- [Release notes](https://github.com/webdiscus/ansis/releases)
- [Changelog](https://github.com/webdiscus/ansis/blob/master/CHANGELOG.md)
- [Commits](https://github.com/webdiscus/ansis/commits)

Updates `better-sqlite3` from 12.8.0 to 12.9.0
- [Release notes](https://github.com/WiseLibs/better-sqlite3/releases)
- [Commits](WiseLibs/better-sqlite3@v12.8.0...v12.9.0)

Updates `citty` from 0.2.1 to 0.2.2
- [Release notes](https://github.com/unjs/citty/releases)
- [Changelog](https://github.com/unjs/citty/blob/main/CHANGELOG.md)
- [Commits](unjs/citty@v0.2.1...v0.2.2)

Updates `defu` from 6.1.4 to 6.1.7
- [Release notes](https://github.com/unjs/defu/releases)
- [Changelog](https://github.com/unjs/defu/blob/main/CHANGELOG.md)
- [Commits](unjs/defu@v6.1.4...v6.1.7)

Updates `ini` from 6.0.0 to 7.0.0
- [Release notes](https://github.com/npm/ini/releases)
- [Changelog](https://github.com/npm/ini/blob/main/CHANGELOG.md)
- [Commits](npm/ini@v6.0.0...v7.0.0)

Updates `jiti` from 2.6.1 to 2.7.0
- [Release notes](https://github.com/unjs/jiti/releases)
- [Changelog](https://github.com/unjs/jiti/blob/main/CHANGELOG.md)
- [Commits](unjs/jiti@v2.6.1...v2.7.0)

Updates `semver` from 7.7.4 to 7.8.0
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md)
- [Commits](npm/node-semver@v7.7.4...v7.8.0)

Updates `tinyglobby` from 0.2.15 to 0.2.16
- [Release notes](https://github.com/SuperchupuDev/tinyglobby/releases)
- [Changelog](https://github.com/SuperchupuDev/tinyglobby/blob/main/CHANGELOG.md)
- [Commits](SuperchupuDev/tinyglobby@0.2.15...0.2.16)

Updates `undici` from 7.24.6 to 8.2.0
- [Release notes](https://github.com/nodejs/undici/releases)
- [Commits](nodejs/undici@v7.24.6...v8.2.0)

Updates `yaml` from 2.8.3 to 2.9.0
- [Release notes](https://github.com/eemeli/yaml/releases)
- [Commits](eemeli/yaml@v2.8.3...v2.9.0)

---
updated-dependencies:
- dependency-name: "@clack/prompts"
  dependency-version: 1.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: ansis
  dependency-version: 4.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: better-sqlite3
  dependency-version: 12.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: citty
  dependency-version: 0.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: defu
  dependency-version: 6.1.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: ini
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: jiti
  dependency-version: 2.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: semver
  dependency-version: 7.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: tinyglobby
  dependency-version: 0.2.16
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: undici
  dependency-version: 8.2.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: yaml
  dependency-version: 2.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label May 12, 2026
@dependabot dependabot Bot requested a review from vcode-sh as a code owner May 12, 2026 01:25
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label May 12, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vcode-sh vcode-sh Awaiting requested review from vcode-sh vcode-sh is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants