chore(deps): bump @anthropic-ai/sdk from 0.78.0 to 0.90.0

[dependabot]

Bumps @anthropic-ai/sdk from 0.78.0 to 0.90.0.

Release notes

Sourced from @​anthropic-ai/sdk's releases.

sdk: v0.90.0

0.90.0 (2026-04-16)

Full Changelog: sdk-v0.89.0...sdk-v0.90.0

Features

• api: add claude-opus-4-7, token budgets and user_profiles (b26134b)

Chores

• actually delete release-doctor.yml (0fe984d)
• ci: remove release-doctor workflow (08e58bd)

sdk: v0.89.0

0.89.0 (2026-04-14)

Full Changelog: sdk-v0.88.0...sdk-v0.89.0

Features

• api: manual updates (57c2a11)
• api: mark Sonnet and Opus 4 as deprecated (eff41b7)

Bug Fixes

• streaming: add missing events (4c52919)

sdk: v0.88.0

0.88.0 (2026-04-10)

Full Changelog: sdk-v0.87.0...sdk-v0.88.0

Features

• vertex eu region (#882) (1933857)

Documentation

• improve examples (de4f483)
• update examples (454e1c5)

sdk: v0.87.0

0.87.0 (2026-04-09)

Full Changelog: sdk-v0.86.1...sdk-v0.87.0

... (truncated)

Changelog

Sourced from @​anthropic-ai/sdk's changelog.

0.90.0 (2026-04-16)

Full Changelog: sdk-v0.89.0...sdk-v0.90.0

Features

• api: add claude-opus-4-7, token budgets and user_profiles (b26134b)

Chores

• actually delete release-doctor.yml (0fe984d)
• ci: remove release-doctor workflow (08e58bd)

0.89.0 (2026-04-14)

Full Changelog: sdk-v0.88.0...sdk-v0.89.0

Features

• api: manual updates (57c2a11)
• api: mark Sonnet and Opus 4 as deprecated (eff41b7)

Bug Fixes

• streaming: add missing events (4c52919)

0.88.0 (2026-04-10)

Full Changelog: sdk-v0.87.0...sdk-v0.88.0

Features

• vertex eu region (#882) (1933857)

Documentation

• improve examples (de4f483)
• update examples (454e1c5)

0.87.0 (2026-04-09)

Full Changelog: sdk-v0.86.1...sdk-v0.87.0

Features

• api: Add beta advisor tool (1e99a8d)

... (truncated)

Commits

• 93ac7c7 chore: release main (#1003)
• 39549e9 chore: release main (#993)
• 089fe05 chore: release main (#987)
• 73f128f chore: release main (#985)
• fd6cf54 chore: release main (#983)
• 79d1d73 chore: release main (#982)
• 4ade5b1 chore: release main (#979)
• 4368602 chore: release main (#978)
• 4105fd6 chore: release main (#973)
• 0b536ae chore: release main (#970)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: npm. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[chatgpt-codex-connector]

Codex usage limits have been reached for code reviews. Please check with the admins of this repo to increase the limits by adding credits.
Credits must be used to enable repository wide code reviews.

[github-actions]

✔️ Bundle Size Analysis

Metric	Value
Base	2836.86 KB
PR	2836.86 KB
Diff	0 KB (0%)

Bundle breakdown

140K	dist/auth
80K	dist/automation
4.0K	dist/cli.d.ts
4.0K	dist/cli.d.ts.map
24K	dist/cli.js
16K	dist/cli.js.map
740K	dist/commands
28K	dist/config
4.0K	dist/index.d.ts
4.0K	dist/index.d.ts.map
4.0K	dist/index.js
4.0K	dist/index.js.map
916K	dist/integrations
100K	dist/llm
1.3M	dist/loop
188K	dist/mcp
60K	dist/presets
92K	dist/setup
40K	dist/skills
428K	dist/sources
76K	dist/ui
144K	dist/utils
336K	dist/wizard

[greptile-apps]

Greptile Summary

This PR is a routine Dependabot bump of @anthropic-ai/sdk from 0.78.0 to 0.90.0, with incidental lock-file updates to @babel/runtime, rollup, and postcss. The twelve-version span introduces new API surface (beta advisor tool, Vertex EU region, token budgets, user_profiles, claude-opus-4-7) and a streaming bug-fix, none of which are breaking changes for the existing call-sites in src/llm/api.ts, src/llm/batch.ts, and src/loop/agents/anthropic-sdk.ts. The zod peer dependency range (^3.25.0 || ^4.0.0) is satisfied by the project's zod@4.3.6.

Confidence Score: 5/5

Safe to merge — purely a dependency version bump with no breaking changes affecting existing SDK usage patterns.

All changed lines are in package.json and pnpm-lock.yaml. No application code was modified. The SDK's changelog shows only additive features and a streaming fix across the twelve versions; existing API call patterns (messages.create, batch, tool-use) are unchanged. Peer dependency compatibility is confirmed.

No files require special attention.

Important Files Changed

Filename	Overview
package.json	Bumps @anthropic-ai/sdk specifier from ^0.78.0 to ^0.90.0; no other runtime dependencies changed.
pnpm-lock.yaml	Lock file updated for @anthropic-ai/sdk 0.78.0→0.90.0, plus incidental bumps of @babel/runtime 7.28.6→7.29.2, rollup 4.60.1→4.60.2, and postcss 8.5.9→8.5.10; all compatible with the declared peer dep range `zod: ^3.25.0

Flowchart

%%{init: {'theme': 'neutral'}}%%
flowchart TD
    A[package.json] --> B[pnpm-lock.yaml]
    B --> C[src/llm/api.ts]
    B --> D[src/llm/batch.ts]
    B --> E[src/loop/agents/anthropic-sdk.ts]
    B --> F[src/loop/visual-validation.ts]
    C --> G[Anthropic API]
    D --> G
    E --> G
    F --> G

Loading

_{Reviews (1): Last reviewed commit: "chore(deps): bump @anthropic-ai/sdk from..." | Re-trigger Greptile}

[claude]

LGTM — straightforward Dependabot SDK version bump with consistent lockfile updates.

Extended reasoning...

Overview

This PR bumps @anthropic-ai/sdk from 0.78.0 to 0.90.0 in package.json and the corresponding pnpm-lock.yaml. The lockfile also picks up minor transitive updates to @babel/runtime, rollup, postcss, and @rollup/* platform binaries — all patch/minor bumps with valid integrity hashes.

Security risks

No security risks. This is purely a dependency version update generated by Dependabot. The upstream SDK changelog shows additive API features (new model IDs, token budgets, streaming fixes) with no breaking changes or known CVEs.

Level of scrutiny

Low. Dependabot PRs with only package.json and pnpm-lock.yaml changes require minimal scrutiny. The lockfile hashes are present and consistent with the declared versions.

Other factors

No bugs reported by the bug hunting system. No prior reviews on this PR. No outstanding reviewer comments. The change is self-contained and does not touch application logic.

[dependabot]

Superseded by #353.