Skip to content

chore(deps): bump the npm-dependencies group across 1 directory with 9 updates#667

Open
dependabot[bot] wants to merge 2 commits intomainfrom
dependabot/npm_and_yarn/npm-dependencies-d8333a8133
Open

chore(deps): bump the npm-dependencies group across 1 directory with 9 updates#667
dependabot[bot] wants to merge 2 commits intomainfrom
dependabot/npm_and_yarn/npm-dependencies-d8333a8133

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 10, 2026
edited
Loading

Bumps the npm-dependencies group with 9 updates in the / directory:

Package From To
alpinejs 3.13.7 3.15.12
daisyui 4.9.0 4.12.24
hyperscript.org 0.9.12 0.9.91
tailwindcss 3.4.1 3.4.19
@fortawesome/fontawesome-free 6.5.1 6.7.2
npm-check-updates 19.1.2 19.6.6
webpack 5.105.0 5.106.2
webpack-bundle-tracker 3.1.0 3.2.3
webpack-dev-server 5.2.2 5.2.3

Updates alpinejs from 3.13.7 to 3.15.12

Release notes

Sourced from alpinejs's releases.

v3.15.12

What's Changed

New Contributors

Full Changelog: alpinejs/alpine@v3.15.11...v3.15.12

v3.15.11

What's Changed

New Contributors

Full Changelog: alpinejs/alpine@v3.15.10...v3.15.11

v3.15.10

Fixed

  • Fix x-anchor crash during wire:navigate cleanup #4790

v3.15.9

What's Changed

... (truncated)

Commits
  • 2c57ef4 Bump version to 3.15.12
  • 8f519b7 Fix @teleport leaking detached nodes on every Livewire render (#4822)
  • 7d3cb1c Fix x-id evaluation order so $id resolves consistently inside x-data (#...
  • 8ed7a69 fix(x-for): handle null-prototype objects without crashing (#4825)
  • ecbd21d Revert "Bump version to 3.15.12"
  • db9594b Bump version to 3.15.12
  • 3c93f1e Bump version to 3.15.11
  • 49641af Fix $refs unavailable during morph (v3.15.9 regression) (#4793)
  • a423ef5 Warn when x-for template has multiple root elements (#4752)
  • b20830c wip
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for alpinejs since your current version.


Updates daisyui from 4.9.0 to 4.12.24

Commits

Updates hyperscript.org from 0.9.12 to 0.9.91

Changelog

Sourced from hyperscript.org's changelog.

0.9.91 - 2026-04-14

Bugfixes from the 0.9.90 release:

  • Fix on resize from window / on resize from document — non-Element targets now fall through to the native resize event instead of using a ResizeObserver
  • The toggle commands for <duration> modifier no longer consumes a following for-in loop
  • Fix ${} template expressions hanging the playground iframe due to leftover debug logging
  • Fix npx hyperscript.org --validate (and the bun/deno platform scripts) crashing with ERR_MODULE_NOT_FOUND. (#667)

0.9.90 - 2026-04-13

Hoooooo doggie, it's been a year of on and off work, and we finally had some time to focus on hyperscript!

This is a major change/upgrade, including restructuring the entire codebase to be much more understandable by my students as well as anyone else interested in the langauge.

Here we go...

Breaking Changes

  • Extensions moved to dist/ext/ - dist/hdb.jsdist/ext/hdb.js, same for socket, template, worker, eventsource, tailwind
  • dist/_hyperscript.js is now IIFE (was UMD) - still works with plain <script> tags, no change needed for most users
  • ESM available as dist/_hyperscript.esm.js - use this for import statements
  • processNode() deprecated - use process() instead (alias still works)
  • as JSON is now JSON.parse - replace as JSON with as JSONString if you were using it to stringify
  • Values:JSON and Values:Form removed - use as Values | JSONString and as Values | FormEncoded
  • default uses nullish check instead of truthy - no longer overwrites 0 and false
  • go to url ... deprecated - use go to /path or go to "url" instead
  • go to the top of ... scroll form deprecated - use scroll to the top of ... instead
  • async keyword removed - had opposite meaning from JavaScript's async, was confusing
  • /* */ block comments removed - enables patterns like /api/* in expressions; use -- or // line comments instead
  • transition requires * style refs - transition widthtransition *width; transition element #footransition #foo's
  • fetch throws on non-2xx responses by default - add do not throw or use as Response to restore old behavior
  • [@attr] bracket-style attribute access deprecated - use @attr instead

New Features

  • A new reactivity system by @​scriptogre! live, when ... changes, bind features for automatic dependency tracking and UI updates
  • Reworked templates now in core by @​iforgotmylogin - render command with \<template> elements, ${} interpolation, #for/#if/#else/#end control flow
  • morph command by @​Latent22 - DOM morphing (idiomorph-based) that preserves focus, scroll, form state
  • A new components system - custom elements with reactive templates, slots, and scope isolation via \<template component="name">
  • DOM-scoped variables (^name) - scoped to the element, inherited by descendants
  • open / close commands - dialogs, details, popovers, fullscreen
  • focus / blur commands - set or remove keyboard focus
  • empty / clear command - smart clearing of elements, inputs, forms, arrays, sets, maps
  • reset command - restore form or input to its default value
  • swap command - exchange values of two assignable expressions
  • select command - select text content of inputs/textareas
  • ask / answer commands - prompt(), alert(), confirm() wrappers
  • speak command - text-to-speech via Web Speech API

... (truncated)

Commits
  • 43b943c gah have to update the import in dist to use the esm build :/
  • 42b7f4b update changelog
  • 1a248b1 release pre
  • 106dd9b add a release check for platform tools
  • 93c70c2 fix platform scripts to avoid import
  • 687b863 bump version
  • 33bfd69 syntax annoyance: a "for" follow of a toggle consumed a valid for loop, peek ...
  • be96dee remove debug logs left in :/
  • a6dc6f5 update example
  • 6b7970b window and document present normal resize events
  • Additional commits viewable in compare view

Updates tailwindcss from 3.4.1 to 3.4.19

Release notes

Sourced from tailwindcss's releases.

v3.4.19

Fixed

  • Don’t break sibling-*() functions when used inside calc(…) (#19335)

v3.4.18

Fixed

  • Improve support for raw supports-[…] queries in arbitrary values (#13605)
  • Fix require.cache error when loaded through a TypeScript file in Node 22.18+ (#18665)
  • Support import.meta.resolve(…) in configs for new enough Node.js versions (#18938)
  • Allow using newer versions of postcss-load-config for better ESM and TypeScript PostCSS config support with the CLI (#18938)
  • Remove irrelevant utility rules when matching important classes (#19030)

v3.4.17

Fixed

  • Work around Node v22.12+ issue (#15421)

v3.4.16

Fixed

  • Ensure the TypeScript types for PluginsConfig allow undefined values (#14668)

Changed

  • Bumped lilconfig to v3.x (#15289)

v3.4.15

  • Bump versions for security vulnerabilities (#14697)
  • Ensure the TypeScript types for the boxShadow theme configuration allows arrays (#14856)
  • Set fallback for opacity variables to ensure setting colors with the selection:* variant works in Chrome 131 (#15003)

v3.4.14

Fixed

  • Don't set display: none on elements that use hidden="until-found" (#14625)

v3.4.13

Fixed

  • Improve source glob verification performance (#14481)

v3.4.12

Fixed

  • Ensure using @apply with utilities that use @defaults works with rules defined in the base layer when using optimizeUniversalDefaults (#14427)

v3.4.11

Fixed

... (truncated)

Changelog

Sourced from tailwindcss's changelog.

Commits

Updates @fortawesome/fontawesome-free from 6.5.1 to 6.7.2

Release notes

Sourced from @​fortawesome/fontawesome-free's releases.

Release 6.7.2

Change log available at https://fontawesome.com/docs/changelog/

Release 6.7.1

Change log available at https://fontawesome.com/docs/changelog/

Release 6.7.0

Change log available at https://fontawesome.com/docs/changelog/

Release 6.6.0

Change log available at https://fontawesome.com/docs/changelog/

Release 6.5.2

Change log available at https://fontawesome.com/docs/changelog/

Commits

Updates npm-check-updates from 19.1.2 to 19.6.6

Release notes

Sourced from npm-check-updates's releases.

v19.6.6

Full Changelog: raineorshine/npm-check-updates@v19.6.5...v19.6.6

v19.6.5

What's Changed

New Contributors

Full Changelog: raineorshine/npm-check-updates@v19.6.3...v19.6.5

v19.6.3

Full Changelog: raineorshine/npm-check-updates@v19.6.2...v19.6.3

v19.6.2

What's Changed

Full Changelog: raineorshine/npm-check-updates@v19.6.1...v19.6.2

v19.6.1

What's Changed

Full Changelog: raineorshine/npm-check-updates@v19.6.0...v19.6.1

v19.6.0

What's Changed

New Contributors

Full Changelog: raineorshine/npm-check-updates@v19.5.0...v19.6.0

v19.5.0

What's Changed

  • feat(homepage): Add --format homepage option to print homepage.

e.g.

$ ncu --format homepage
...
 mocha                      ^11.7.2  →   ^11.7.5    https://mochajs.org/
 npm-registry-fetch         ^19.0.0  →   ^19.1.1
</tr></table>

... (truncated)

Changelog

Sourced from npm-check-updates's changelog.

Changelog

This file only documents major version releases. For smaller releases, you're stuck reading the commit history.

[22.0.0] - 2026-04-25

Breaking Changes

--cooldown now falls back to the greatest non-prerelease version rather than skipping the upgrade entirely when the latest version falls within the cooldown window.

  • This only affects --cooldown (or inferred cooldown from min-release-age/minimumReleaseAge/npmMinimalAgeGate).
  • This only affects --target latest (which is the default).

⚠️ WARNING

In rare circumstances, it is now possible for ncu --cooldown 10 to install a version that was never published to latest. This is because the npm registry does not store a history of versions published to the latest dist-tag. It is impossible to fall back to an earlier latest version, because there is no record of it. However, we do have a list of all published versions, and it's likely that a boring version like 1.0.1 was published to latest at some point. Versions like 1.0.1-pre.0, 1.0.1-beta, 1.0.1-build.58157394, etc will be ignored, as you would expect.

While npm-check-updates typically takes a conservative approach to version upgrades, following semver exactly and only upgrading to the latest version, falling back to the highest version outside the cooldown window is clearly the more intuitive behavior, and this outweighs the few cases where the results would be undesirable. The discussion in #1556 and the large amount of confusion since the initial release of --cooldown attest to this.

How to opt out of the new behavior

You can opt out of the new behavior by using --target "@latest". This forces a strict upgrade (or downgrade) to the latest tag only, without any fallback behavior.

For granular control, use a custom ncurc function to set the target or disable cooldown for a single package.

Full Changelog: raineorshine/npm-check-updates@v21.0.3...v22.0.0

[21.0.0] - 2026-04-14

⚠️ Breaking Changes

This is a major breaking change with significant architectural updates.

ESM Migration & Module System

  • Pure ESM: Converted to pure ESM with dual-build support (ESM/CJS) via Vite 8.
  • Import Syntax: Programmatic usage now requires named imports or namespace imports.
    • Old: import ncu from 'npm-check-updates'
    • New: import * as ncu from 'npm-check-updates' or import { run } from 'npm-check-updates'
  • Node.js Requirements: Now requires ^20.19.0 || ^22.12.0 || >=24.0.0. This is required for native require(esm) support and the Rolldown engine.
  • npm Requirements: Minimum version increased to >=10.0.0.

Configuration Files (.ncurc.js)

  • Files named .ncurc.js that use module.exports will now fail in projects that are "type": "module".
  • Fix: Rename these files to .ncurc.cjs or convert them to use export default.

Dependency Updates (Pure ESM versions)

| Package | Old Version | New Version |

... (truncated)

Commits

Updates webpack from 5.105.0 to 5.106.2

Release notes

Sourced from webpack's releases.

v5.106.2

Patch Changes

  • CSS @​import now inherits the parent module's exportType, so a file configured as "text" correctly creates a style tag when @​imported by a "style" parent. (by @​xiaoxiaojx in #20838)

  • Make asset modules available in JS context when referenced from both CSS and a lazily compiled JS chunk. (by @​xiaoxiaojx in #20801)

  • Include missing generator options in hash to ensure persistent cache invalidation when configuration changes (CssGenerator exportsOnly, JsonGenerator JSONParse, WebAssemblyGenerator mangleImports). (by @​xiaoxiaojx in #20821)

  • Fix || default value handling in ProgressPlugin and ManifestPlugin that incorrectly overrode user-provided falsy values (e.g. modules: false, entries: false, entrypoints: false). (by @​xiaoxiaojx in #20823)

  • Migrate from mime-types to mime-db. (by @​alexander-akait in #20812)

  • Handle @charset at-rules in CSS modules. (by @​alexander-akait in #20831)

  • Marked all experimental options in types. (by @​alexander-akait in #20814)

v5.106.1

Patch Changes

  • Fix two ES5-environment regressions in the anonymous default export .name fix-up: the generated code referenced an undeclared __WEBPACK_DEFAULT_EXPORT__ binding causing ReferenceError, and used Reflect.defineProperty which is not available in pre-ES2015 runtimes. The fix-up now references the real assignment target and uses Object.defineProperty / Object.getOwnPropertyDescriptor. (by @​xiaoxiaojx in #20796)

  • Prevent !important from being renamed as a local identifier in CSS modules. (by @​xiaoxiaojx in #20798)

  • Use compiler context instead of module context for CSS modules local ident hashing to avoid hash collisions when files with the same name exist in different directories. (by @​xiaoxiaojx in #20799)

v5.106.0

Minor Changes

  • Add exportType: "style" for CSS modules to inject styles into DOM via HTMLStyleElement, similar to style-loader functionality. (by @​xiaoxiaojx in #20579)

  • Add context option support for VirtualUrlPlugin (by @​xiaoxiaojx in #20449)

    • The context for the virtual module. A string path. Defaults to 'auto', which will try to resolve the context from the module id.
    • Support custom context path for resolving relative imports in virtual modules
    • Add examples demonstrating context usage and filename customization

  • Generate different CssModule instances for different exportType values. (by @​xiaoxiaojx in #20590)

  • Added the localIdentHashFunction option to configure the hash function to be used for hashing. (by @​alexander-akait in #20694) Additionally, the localIdentName option can now be a function.

  • Added support for destructuring assignment require in cjs, allowing for tree shaking. (by @​ahabhgk in #20548)

  • Added the validate option to enable/disable validation in webpack/plugins/loaders, also implemented API to make it inside plugins. (by @​xiaoxiaojx in #20275)

  • Added source support for async WASM modules. (by @​magic-akari in #20364)

Patch Changes

  • Add a static getSourceBasicTypes method to the Module class to prevent errors across multiple versions. (by @​xiaoxiaojx in #20614)

... (truncated)

Changelog

Sourced from webpack's changelog.

5.106.2

Patch Changes

  • CSS @​import now inherits the parent module's exportType, so a file configured as "text" correctly creates a style tag when @​imported by a "style" parent. (by @​xiaoxiaojx in #20838)

  • Make asset modules available in JS context when referenced from both CSS and a lazily compiled JS chunk. (by @​xiaoxiaojx in #20801)

  • Include missing generator options in hash to ensure persistent cache invalidation when configuration changes (CssGenerator exportsOnly, JsonGenerator JSONParse, WebAssemblyGenerator mangleImports). (by @​xiaoxiaojx in #20821)

  • Fix || default value handling in ProgressPlugin and ManifestPlugin that incorrectly overrode user-provided falsy values (e.g. modules: false, entries: false, entrypoints: false). (by @​xiaoxiaojx in #20823)

  • Migrate from mime-types to mime-db. (by @​alexander-akait in #20812)

  • Handle @charset at-rules in CSS modules. (by @​alexander-akait in #20831)

  • Marked all experimental options in types. (by @​alexander-akait in #20814)

5.106.1

Patch Changes

  • Fix two ES5-environment regressions in the anonymous default export .name fix-up: the generated code referenced an undeclared __WEBPACK_DEFAULT_EXPORT__ binding causing ReferenceError, and used Reflect.defineProperty which is not available in pre-ES2015 runtimes. The fix-up now references the real assignment target and uses Object.defineProperty / Object.getOwnPropertyDescriptor. (by @​xiaoxiaojx in #20796)

  • Prevent !important from being renamed as a local identifier in CSS modules. (by @​xiaoxiaojx in #20798)

  • Use compiler context instead of module context for CSS modules local ident hashing to avoid hash collisions when files with the same name exist in different directories. (by @​xiaoxiaojx in #20799)

5.106.0

Minor Changes

  • Add exportType: "style" for CSS modules to inject styles into DOM via HTMLStyleElement, similar to style-loader functionality. (by @​xiaoxiaojx in #20579)

  • Add context option support for VirtualUrlPlugin (by @​xiaoxiaojx in #20449)

    • The context for the virtual module. A string path. Defaults to 'auto', which will try to resolve the context from the module id.
    • Support custom context path for resolving relative imports in virtual modules
    • Add examples demonstrating context usage and filename customization

  • Generate different CssModule instances for different exportType values. (by @​xiaoxiaojx in #20590)

  • Added the localIdentHashFunction option to configure the hash function to be used for hashing. (by @​alexander-akait in #20694) Additionally, the localIdentName option can now be a function.

  • Added support for destructuring assignment require in cjs, allowing for tree shaking. (by @​ahabhgk in #20548)

  • Added the validate option to enable/disable validation in webpack/plugins/loaders, also implemented API to make it inside plugins. (by @​xiaoxiaojx in #20275)

  • Added source support for async WASM modules. (by @​magic-akari in #20364)

... (truncated)

Commits

Updates webpack-bundle-tracker from 3.1.0 to 3.2.3

Release notes

Sourced from webpack-bundle-tracker's releases.

v3.2.3

What's Changed

Full Changelog: django-webpack/webpack-bundle-tracker@v3.2.2...v3.2.3

v3.2.2

What's Changed

Full Changelog: django-webpack/webpack-bundle-tracker@v3.2.1...v3.2.2

v3.2.1

What's Changed

New Contributors

Full Changelog: django-webpack/webpack-bundle-tracker@v3.2.0...v3.2.1

v3.2.0

What's Changed

New Contributors

Full Changelog: django-webpack/webpack-bundle-tracker@v3.1.1...v3.2.0

v3.1.1

What's Changed

  • Updated to v3.1.1 to keep the version synced with django-webpack-loader

Full Changelog: django-webpack/webpack-bundle-tracker@v3.1.0...v3.1.1

Commits
  • e9f76ae Ensure parity with django-webpack-loader version
  • 0dff740 Merge pull request #133 from django-webpack/add-authors-file
  • ddc0eb4 Fix authors typo
  • bf7fb85 Add authors file
  • bd2a942 Merge pull request #132 from django-webpack/add-asset-emitted-hook
  • 31eaa92 Rename this.output as this.contents
  • 9d56786 Fix how assets are obtained in the pipeline
  • 278cc18 Set release version
  • 7aed240 Refactors output handling
  • 4a38afb Refactor compilation logic and fix webpack4 flow
  • Additional commits viewable in compare view

Updates webpack-dev-server from 5.2.2 to 5.2.3

Release notes

Sourced from webpack-dev-server's releases.

v5.2.3

5.2.3 (2026-01-12)

Bug Fixes

  • add cause for errorObject (#5518) (37b033d)
  • compatibility with event target and universal target and lazy compilation (574026c)
  • overlay: add ESC key to dismiss overlay (#5598) (f91baa8)
  • progress indicator styles (#5557) (41a53a1)
  • upgrade selfsigned to v5
Changelog

Sourced from webpack-dev-server's changelog.

5.2.3 (2026-01-12)

Bug Fixes

  • add cause for errorObject (#5518) (37b033d)
  • compatibility with event target and universal target and lazy compilation (574026c)
  • overlay: add ESC key to dismiss overlay (#5598) (f91baa8)
  • progress indicator styles (#5557) (41a53a1)
  • upgrade selfsigned to v5
Commits
  • b550a70 chore(release): 5.2.3
  • 9704dc5 chore: upgrade selfsigned to v5 and remove node-forge dependency (#5618)
  • 92bf644 chore: bump express to update qs (#5621)
  • 792b2f0 chore(deps-dev): bump the dependencies group with 4 updates (#5606)
  • 6d587ca chore(deps): bump the dependencies group across 1 directory with 27 updates (...
  • f91baa8 fix(overlay): add ESC key to dismiss overlay (#5598)
  • 574026c fix: compatibility with event target and universal target and lazy compilation
  • c53955d docs: remove unused files
  • efe0aea test: fix
  • b6bb50c chore(deps): update
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the npm-dependencies group across 1 directory with …
57c0240 
…9 updates

Bumps the npm-dependencies group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [alpinejs](https://github.com/alpinejs/alpine/tree/HEAD/packages/alpinejs) | `3.13.7` | `3.15.12` |
| [daisyui](https://github.com/saadeghi/daisyui/tree/HEAD/packages/daisyui) | `4.9.0` | `4.12.24` |
| [hyperscript.org](https://github.com/bigskysoftware/_hyperscript) | `0.9.12` | `0.9.91` |
| [tailwindcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss) | `3.4.1` | `3.4.19` |
| [@fortawesome/fontawesome-free](https://github.com/FortAwesome/Font-Awesome) | `6.5.1` | `6.7.2` |
| [npm-check-updates](https://github.com/raineorshine/npm-check-updates) | `19.1.2` | `19.6.6` |
| [webpack](https://github.com/webpack/webpack) | `5.105.0` | `5.106.2` |
| [webpack-bundle-tracker](https://github.com/django-webpack/webpack-bundle-tracker) | `3.1.0` | `3.2.3` |
| [webpack-dev-server](https://github.com/webpack/webpack-dev-server) | `5.2.2` | `5.2.3` |



Updates `alpinejs` from 3.13.7 to 3.15.12
- [Release notes](https://github.com/alpinejs/alpine/releases)
- [Commits](https://github.com/alpinejs/alpine/commits/v3.15.12/packages/alpinejs)

Updates `daisyui` from 4.9.0 to 4.12.24
- [Release notes](https://github.com/saadeghi/daisyui/releases)
- [Changelog](https://github.com/saadeghi/daisyui/blob/master/CHANGELOG.md)
- [Commits](https://github.com/saadeghi/daisyui/commits/v4.12.24/packages/daisyui)

Updates `hyperscript.org` from 0.9.12 to 0.9.91
- [Changelog](https://github.com/bigskysoftware/_hyperscript/blob/master/CHANGELOG.md)
- [Commits](bigskysoftware/_hyperscript@0.9.12...0.9.91)

Updates `tailwindcss` from 3.4.1 to 3.4.19
- [Release notes](https://github.com/tailwindlabs/tailwindcss/releases)
- [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md)
- [Commits](https://github.com/tailwindlabs/tailwindcss/commits/v3.4.19/packages/tailwindcss)

Updates `@fortawesome/fontawesome-free` from 6.5.1 to 6.7.2
- [Release notes](https://github.com/FortAwesome/Font-Awesome/releases)
- [Changelog](https://github.com/FortAwesome/Font-Awesome/blob/7.x/CHANGELOG.md)
- [Commits](FortAwesome/Font-Awesome@6.5.1...6.7.2)

Updates `npm-check-updates` from 19.1.2 to 19.6.6
- [Release notes](https://github.com/raineorshine/npm-check-updates/releases)
- [Changelog](https://github.com/raineorshine/npm-check-updates/blob/main/CHANGELOG.md)
- [Commits](raineorshine/npm-check-updates@v19.1.2...v19.6.6)

Updates `webpack` from 5.105.0 to 5.106.2
- [Release notes](https://github.com/webpack/webpack/releases)
- [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md)
- [Commits](webpack/webpack@v5.105.0...v5.106.2)

Updates `webpack-bundle-tracker` from 3.1.0 to 3.2.3
- [Release notes](https://github.com/django-webpack/webpack-bundle-tracker/releases)
- [Commits](django-webpack/webpack-bundle-tracker@v3.1.0...v3.2.3)

Updates `webpack-dev-server` from 5.2.2 to 5.2.3
- [Release notes](https://github.com/webpack/webpack-dev-server/releases)
- [Changelog](https://github.com/webpack/webpack-dev-server/blob/main/CHANGELOG.md)
- [Commits](webpack/webpack-dev-server@v5.2.2...v5.2.3)

---
updated-dependencies:
- dependency-name: alpinejs
  dependency-version: 3.15.12
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: daisyui
  dependency-version: 4.12.24
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: hyperscript.org
  dependency-version: 0.9.91
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: tailwindcss
  dependency-version: 3.4.19
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: "@fortawesome/fontawesome-free"
  dependency-version: 6.7.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: npm-check-updates
  dependency-version: 19.6.6
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: webpack
  dependency-version: 5.106.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: webpack-bundle-tracker
  dependency-version: 3.2.3
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: webpack-dev-server
  dependency-version: 5.2.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels May 10, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented May 10, 2026
edited
Loading

Dependency Review

The following issues were found:

  • ✅ 0 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ✅ 0 package(s) with unknown licenses.
  • ⚠️ 12 packages with OpenSSF Scorecard issues.

View full job summary

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@TreyWW