Skip to content

chore(deps): bump the minors-and-patches group with 6 updates#7

Merged
marekh19 merged 1 commit into
mainfrom
dependabot/npm_and_yarn/minors-and-patches-a8ebe68b6c
Feb 3, 2026
Merged

chore(deps): bump the minors-and-patches group with 6 updates#7
marekh19 merged 1 commit into
mainfrom
dependabot/npm_and_yarn/minors-and-patches-a8ebe68b6c

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Feb 1, 2026

Copy link
Copy Markdown
Contributor

Bumps the minors-and-patches group with 6 updates:

Package From To
@astrojs/starlight 0.37.1 0.37.5
astro 5.16.6 5.17.1
astro-mermaid 1.2.0 1.3.1
@biomejs/biome 2.3.10 2.3.13
@commitlint/cli 20.2.0 20.4.0
@commitlint/config-conventional 20.2.0 20.4.0

Updates @astrojs/starlight from 0.37.1 to 0.37.5

Release notes

Sourced from @​astrojs/starlight's releases.

@​astrojs/starlight@​0.37.5

Patch Changes

@​astrojs/starlight@​0.37.4

Patch Changes

  • #3534 703fab0 Thanks @​HiDeoo! - Fixes support for running builds when npx is unavailable.

    Previously, Starlight would spawn a process to run the Pagefind search indexing binary using npx. On platforms where npx isn’t available, this could cause issues. Starlight now runs Pagefind using its Node.js API to avoid a separate process. As a side effect, you may notice that logging during builds is now less verbose.

  • #3656 a0e6368 Thanks @​delucis! - Fixes several edge cases in highlighting the current page heading in Starlight’s table of contents

  • #3663 00cbf00 Thanks @​lines-of-codes! - Adds Thai language support

  • #3658 ac79329 Thanks @​delucis! - Avoids adding redundant aria-current="false" attributes to sidebar entries

  • #3382 db295c2 Thanks @​trueberryless! - Fixes an issue where the mobile table of contents is unable to find the first heading when a page has a tall banner.

@​astrojs/starlight@​0.37.3

Patch Changes

@​astrojs/starlight@​0.37.2

Patch Changes

Changelog

Sourced from @​astrojs/starlight's changelog.

0.37.5

Patch Changes

0.37.4

Patch Changes

  • #3534 703fab0 Thanks @​HiDeoo! - Fixes support for running builds when npx is unavailable.

    Previously, Starlight would spawn a process to run the Pagefind search indexing binary using npx. On platforms where npx isn’t available, this could cause issues. Starlight now runs Pagefind using its Node.js API to avoid a separate process. As a side effect, you may notice that logging during builds is now less verbose.

  • #3656 a0e6368 Thanks @​delucis! - Fixes several edge cases in highlighting the current page heading in Starlight’s table of contents

  • #3663 00cbf00 Thanks @​lines-of-codes! - Adds Thai language support

  • #3658 ac79329 Thanks @​delucis! - Avoids adding redundant aria-current="false" attributes to sidebar entries

  • #3382 db295c2 Thanks @​trueberryless! - Fixes an issue where the mobile table of contents is unable to find the first heading when a page has a tall banner.

0.37.3

Patch Changes

0.37.2

Patch Changes

Commits

Updates astro from 5.16.6 to 5.17.1

Release notes

Sourced from astro's releases.

astro@5.17.1

Patch Changes

  • #15334 d715f1f Thanks @​florian-lefebvre! - BREAKING CHANGE to the experimental Fonts API only

    Removes the getFontBuffer() helper function exported from astro:assets when using the experimental Fonts API

    This experimental feature introduced in v15.6.13 ended up causing significant memory usage during build. This feature has been removed and will be reintroduced after further exploration and testing.

    If you were relying on this function, you can replicate the previous behavior manually:

    • On prerendered routes, read the file using node:fs
    • On server rendered routes, fetch files using URLs from fontData and context.url

astro@5.17.0

Minor Changes

  • #14932 b19d816 Thanks @​patrickarlt! - Adds support for returning a Promise from the parser() option of the file() loader

    This enables you to run asynchronous code such as fetching remote data or using async parsers when loading files with the Content Layer API.

    For example:

    import { defineCollection } from 'astro:content';
    import { file } from 'astro/loaders';
    const blog = defineCollection({
    loader: file('src/data/blog.json', {
    parser: async (text) => {
    const data = JSON.parse(text);
      // Perform async operations like fetching additional data
      const enrichedData = await fetch(`https://api.example.com/enrich`, {
        method: 'POST',
        body: JSON.stringify(data),
      }).then((res) => res.json());
    return enrichedData;
    },
    
    }),
    });
    export const collections = { blog };

    See the parser() reference documentation for more information.

  • #15171 f220726 Thanks @​mark-ignacio! - Adds a new, optional kernel configuration option to select a resize algorithm in the Sharp image service

... (truncated)

Changelog

Sourced from astro's changelog.

5.17.1

Patch Changes

  • #15334 d715f1f Thanks @​florian-lefebvre! - BREAKING CHANGE to the experimental Fonts API only

    Removes the getFontBuffer() helper function exported from astro:assets when using the experimental Fonts API

    This experimental feature introduced in v15.6.13 ended up causing significant memory usage during build. This feature has been removed and will be reintroduced after further exploration and testing.

    If you were relying on this function, you can replicate the previous behavior manually:

    • On prerendered routes, read the file using node:fs
    • On server rendered routes, fetch files using URLs from fontData and context.url

5.17.0

Minor Changes

  • #14932 b19d816 Thanks @​patrickarlt! - Adds support for returning a Promise from the parser() option of the file() loader

    This enables you to run asynchronous code such as fetching remote data or using async parsers when loading files with the Content Layer API.

    For example:

    import { defineCollection } from 'astro:content';
    import { file } from 'astro/loaders';
    const blog = defineCollection({
    loader: file('src/data/blog.json', {
    parser: async (text) => {
    const data = JSON.parse(text);
      // Perform async operations like fetching additional data
      const enrichedData = await fetch(`https://api.example.com/enrich`, {
        method: 'POST',
        body: JSON.stringify(data),
      }).then((res) => res.json());
    return enrichedData;
    },
    
    }),
    });
    export const collections = { blog };

    See the parser() reference documentation for more information.

  • #15171 f220726 Thanks @​mark-ignacio! - Adds a new, optional kernel configuration option to select a resize algorithm in the Sharp image service

... (truncated)

Commits

Updates astro-mermaid from 1.2.0 to 1.3.1

Release notes

Sourced from astro-mermaid's releases.

v1.3.1 - Security Updates and Bug Fixes

What's Changed

Security

  • 🔒 Resolved 35+ Dependabot security alerts by updating dependencies

Improvements

  • ♻️ Refactored mermaid.js loading and initialization (#22)
  • ⬆️ Fixed lockfile dependencies (#29)
  • 🧹 Removed anthropic dev dependency

Commits

  • fix: update dependencies to resolve 35+ Dependabot security alerts
  • Refactor mermaid.js loading and initialization (#22)
  • Fix lockfile dependencies (#29)
  • Update demo dependency and remove anthropic dev dependency

Full Changelog: joesaby/astro-mermaid@v1.2.1...v1.3.1

Commits
  • 77fe2ff chore: bump version to 1.3.1
  • 94c0d84 fix: update dependencies to resolve 35+ Dependabot security alerts
  • 4e35af0 Update demo dependency to 1.3.0 and also remove anthropic dev depdenency
  • fc7ed08 chore: bump version to 1.3.0
  • f22f28e Refactor mermaid.js loading and initialization (#22)
  • 24e5609 ⬆️ Fix lockfile dependencies (#29)
  • 863d900 chore: bump version to 1.2.1 (#32)
  • 7e7ce49 Update README.md (update latest version)
  • 08bbf09 fix: update @​anthropic-ai/claude-code to fix securities report (#25)
  • See full diff in compare view

Updates @biomejs/biome from 2.3.10 to 2.3.13

Release notes

Sourced from @​biomejs/biome's releases.

Biome CLI v2.3.13

2.3.13

Patch Changes

  • #8815 f924f23 Thanks @​dyc3! - Improved useVueValidVOn to be more closely aligned with the source rule. It will now properly allow modifiers for all possible keyboard events. It should have better performance when there are no violations of the rule as well.

    Now treated valid:

    <div @keydown.arrow-down="handler"></div>
    <div @keydown.a="handler"></div>
    <div @keydown.b="handler"></div>
    <div @keydown.27="foo"></div>
  • #8856 85f81f9 Thanks @​dyc3! - Fixed #8710: Biome now parses Vue dynamic slot shorthand arguments that use template literals in [].

  • #8850 2a190e0 Thanks @​dyc3! - Fixed #8708: Tailwind @utility directives now parse functional utility names like px-* when Tailwind directives are enabled.

  • #8863 79386e0 Thanks @​dyc3! - Fixed an issue with biome migrate eslint where it couldn't detect rules for CSS, GraphQL, and HTML.

  • #8771 6f56b6e Thanks @​lghuahua! - Fix the --reporter=summary output incorrectly merging and displaying wrong issue counts for different rules. Fixes #8730

  • #8714 ac3a71f Thanks @​Netail! - Added new nursery rule use-consistent-enum-value-type. This rule disallows enums from having both number and string members.

What's Changed

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

2.3.13

Patch Changes

  • #8815 f924f23 Thanks @​dyc3! - Improved useVueValidVOn to be more closely aligned with the source rule. It will now properly allow modifiers for all possible keyboard events. It should have better performance when there are no violations of the rule as well.

    Now treated valid:

    <div @keydown.arrow-down="handler"></div>
    <div @keydown.a="handler"></div>
    <div @keydown.b="handler"></div>
    <div @keydown.27="foo"></div>
  • #8856 85f81f9 Thanks @​dyc3! - Fixed #8710: Biome now parses Vue dynamic slot shorthand arguments that use template literals in [].

  • #8850 2a190e0 Thanks @​dyc3! - Fixed #8708: Tailwind @utility directives now parse functional utility names like px-* when Tailwind directives are enabled.

  • #8863 79386e0 Thanks @​dyc3! - Fixed an issue with biome migrate eslint where it couldn't detect rules for CSS, GraphQL, and HTML.

  • #8771 6f56b6e Thanks @​lghuahua! - Fix the --reporter=summary output incorrectly merging and displaying wrong issue counts for different rules. Fixes #8730

  • #8714 ac3a71f Thanks @​Netail! - Added new nursery rule use-consistent-enum-value-type. This rule disallows enums from having both number and string members.

2.3.12

Patch Changes

  • #8653 047576d Thanks @​dyc3! - Added new nursery rule noDuplicateAttributes to forbid duplicate attributes in HTML elements.

  • #8648 96d09f4 Thanks @​BaeSeokJae! - Added a new nursery rule noVueOptionsApi.

    Biome now reports Vue Options API usage, which is incompatible with Vue 3.6's Vapor Mode. This rule detects Options API patterns in <script> blocks, defineComponent(), and createApp() calls, helping prepare codebases for Vapor Mode adoption.

    For example, the following now triggers this rule:

    <script>
    export default {
      data() {
        return { count: 0 };
      },
    };
    </script>
  • #8832 b08270b Thanks @​Exudev! - Fixed #8809, #7985, and #8136: the noSecrets rule no longer reports false positives on common CamelCase identifiers like paddingBottom, backgroundColor, unhandledRejection, uncaughtException, and IngestGatewayLogGroup.

... (truncated)

Commits

Updates @commitlint/cli from 20.2.0 to 20.4.0

Release notes

Sourced from @​commitlint/cli's releases.

v20.4.0

20.4.0 (2026-01-30)

Features

Refactor

New Contributors

Full Changelog: conventional-changelog/commitlint@v20.3.1...v20.4.0

v20.3.1

20.3.1 (2026-01-08)

Bug Fixes

Full Changelog: conventional-changelog/commitlint@v20.3.0...v20.3.1

v20.3.0

20.3.0 (2026-01-01)

Features

... (truncated)

Changelog

Sourced from @​commitlint/cli's changelog.

20.4.0 (2026-01-30)

Features

20.3.1 (2026-01-08)

Note: Version bump only for package @​commitlint/cli

20.3.0 (2026-01-01)

Note: Version bump only for package @​commitlint/cli

Commits

Updates @commitlint/config-conventional from 20.2.0 to 20.4.0

Release notes

Sourced from @​commitlint/config-conventional's releases.

v20.4.0

20.4.0 (2026-01-30)

Features

Refactor

New Contributors

Full Changelog: conventional-changelog/commitlint@v20.3.1...v20.4.0

v20.3.1

20.3.1 (2026-01-08)

Bug Fixes

Full Changelog: conventional-changelog/commitlint@v20.3.0...v20.3.1

v20.3.0

20.3.0 (2026-01-01)

Features

... (truncated)

Changelog

Sourced from @​commitlint/config-conventional's changelog.

20.4.0 (2026-01-30)

Features

20.3.1 (2026-01-08)

Note: Version bump only for package @​commitlint/config-conventional

20.3.0 (2026-01-01)

Note: Version bump only for package @​commitlint/config-conventional

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the minors-and-patches group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [@astrojs/starlight](https://github.com/withastro/starlight/tree/HEAD/packages/starlight) | `0.37.1` | `0.37.5` |
| [astro](https://github.com/withastro/astro/tree/HEAD/packages/astro) | `5.16.6` | `5.17.1` |
| [astro-mermaid](https://github.com/joesaby/astro-mermaid) | `1.2.0` | `1.3.1` |
| [@biomejs/biome](https://github.com/biomejs/biome/tree/HEAD/packages/@biomejs/biome) | `2.3.10` | `2.3.13` |
| [@commitlint/cli](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/cli) | `20.2.0` | `20.4.0` |
| [@commitlint/config-conventional](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/config-conventional) | `20.2.0` | `20.4.0` |


Updates `@astrojs/starlight` from 0.37.1 to 0.37.5
- [Release notes](https://github.com/withastro/starlight/releases)
- [Changelog](https://github.com/withastro/starlight/blob/main/packages/starlight/CHANGELOG.md)
- [Commits](https://github.com/withastro/starlight/commits/@astrojs/starlight@0.37.5/packages/starlight)

Updates `astro` from 5.16.6 to 5.17.1
- [Release notes](https://github.com/withastro/astro/releases)
- [Changelog](https://github.com/withastro/astro/blob/main/packages/astro/CHANGELOG.md)
- [Commits](https://github.com/withastro/astro/commits/astro@5.17.1/packages/astro)

Updates `astro-mermaid` from 1.2.0 to 1.3.1
- [Release notes](https://github.com/joesaby/astro-mermaid/releases)
- [Commits](joesaby/astro-mermaid@v1.2.0...v1.3.1)

Updates `@biomejs/biome` from 2.3.10 to 2.3.13
- [Release notes](https://github.com/biomejs/biome/releases)
- [Changelog](https://github.com/biomejs/biome/blob/main/packages/@biomejs/biome/CHANGELOG.md)
- [Commits](https://github.com/biomejs/biome/commits/@biomejs/biome@2.3.13/packages/@biomejs/biome)

Updates `@commitlint/cli` from 20.2.0 to 20.4.0
- [Release notes](https://github.com/conventional-changelog/commitlint/releases)
- [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/cli/CHANGELOG.md)
- [Commits](https://github.com/conventional-changelog/commitlint/commits/v20.4.0/@commitlint/cli)

Updates `@commitlint/config-conventional` from 20.2.0 to 20.4.0
- [Release notes](https://github.com/conventional-changelog/commitlint/releases)
- [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/config-conventional/CHANGELOG.md)
- [Commits](https://github.com/conventional-changelog/commitlint/commits/v20.4.0/@commitlint/config-conventional)

---
updated-dependencies:
- dependency-name: "@astrojs/starlight"
  dependency-version: 0.37.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minors-and-patches
- dependency-name: astro
  dependency-version: 5.17.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minors-and-patches
- dependency-name: astro-mermaid
  dependency-version: 1.3.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minors-and-patches
- dependency-name: "@biomejs/biome"
  dependency-version: 2.3.13
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minors-and-patches
- dependency-name: "@commitlint/cli"
  dependency-version: 20.4.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minors-and-patches
- dependency-name: "@commitlint/config-conventional"
  dependency-version: 20.4.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minors-and-patches
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Feb 1, 2026
@marekh19
marekh19 merged commit abce23d into main Feb 3, 2026
3 checks passed
@dependabot
dependabot Bot deleted the dependabot/npm_and_yarn/minors-and-patches-a8ebe68b6c branch February 3, 2026 14:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant