chore(deps): bump the version-all group across 1 directory with 22 updates

[dependabot]

Bumps the version-all group with 20 updates in the / directory:

Package	From	To
@sentry/react	10.30.0	10.32.1
@supabase/supabase-js	2.87.1	2.89.0
@tanstack/react-query	5.90.12	5.90.14
lucide-react	0.561.0	0.562.0
react-day-picker	9.12.0	9.13.0
react-hook-form	7.68.0	7.69.0
react-resizable-panels	3.0.6	4.0.16
wouter	3.8.1	3.9.0
@testing-library/react	16.3.0	16.3.1
@vitest/coverage-v8	4.0.15	4.0.16
jsdom	27.3.0	27.4.0
msw	2.12.4	2.12.7
@nestjs/common	11.1.9	11.1.10
@nestjs/core	11.1.9	11.1.10
@nestjs/platform-express	11.1.9	11.1.10
@sentry/nestjs	10.30.0	10.32.1
@types/pg	8.15.6	8.16.0
googleapis	168.0.0	169.0.0
@nestjs/testing	11.1.9	11.1.10
@types/node	25.0.2	25.0.3

Updates @sentry/react from 10.30.0 to 10.32.1

Release notes

Sourced from @​sentry/react's releases.

10.32.1

• fix(cloudflare): Add hono transaction name when error is thrown (#18529)
• fix(ember): Make implementation field optional (hash routes) (#18564)
• fix(vercelai): Fix input token count (#18574)

• chore(lint): prefer 'unknown' to 'any', fix lint warnings
• chore(test): Remove cloudflare-astro e2e test (#18567)

Bundle size 📦

Path	Size
@​sentry/browser	24.24 KB
@​sentry/browser - with treeshaking flags	22.77 KB
@​sentry/browser (incl. Tracing)	40.62 KB
@​sentry/browser (incl. Tracing, Profiling)	45.12 KB
@​sentry/browser (incl. Tracing, Replay)	78.3 KB
@​sentry/browser (incl. Tracing, Replay) - with treeshaking flags	68.28 KB
@​sentry/browser (incl. Tracing, Replay with Canvas)	82.88 KB
@​sentry/browser (incl. Tracing, Replay, Feedback)	94.83 KB
@​sentry/browser (incl. Feedback)	40.57 KB
@​sentry/browser (incl. sendFeedback)	28.82 KB
@​sentry/browser (incl. FeedbackAsync)	33.7 KB
@​sentry/react	25.92 KB
@​sentry/react (incl. Tracing)	42.77 KB
@​sentry/vue	28.6 KB
@​sentry/vue (incl. Tracing)	42.39 KB
@​sentry/svelte	24.25 KB
CDN Bundle	26.62 KB
CDN Bundle (incl. Tracing)	41.25 KB
CDN Bundle (incl. Tracing, Replay)	77.1 KB
CDN Bundle (incl. Tracing, Replay, Feedback)	82.44 KB
CDN Bundle - uncompressed	78.18 KB
CDN Bundle (incl. Tracing) - uncompressed	122.47 KB
CDN Bundle (incl. Tracing, Replay) - uncompressed	236.27 KB
CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	248.74 KB
@​sentry/nextjs (client)	44.94 KB
@​sentry/sveltekit (client)	40.98 KB
@​sentry/node-core	50.4 KB
@​sentry/node	157.73 KB
@​sentry/node - without tracing	90.87 KB
@​sentry/aws-serverless	106.02 KB

10.32.0

Important Changes

... (truncated)

Changelog

Sourced from @​sentry/react's changelog.

10.32.1

• fix(cloudflare): Add hono transaction name when error is thrown (#18529)
• fix(ember): Make implementation field optional (hash routes) (#18564)
• fix(vercelai): Fix input token count (#18574)

• chore(lint): prefer 'unknown' to 'any', fix lint warnings
• chore(test): Remove cloudflare-astro e2e test (#18567)

10.32.0

Important Changes

• feat(core): Apply scope attributes to logs (#18184)

  You can now set attributes on the SDK's scopes which will be applied to all logs as long as the respective scopes are active. For the time being, only string, number and boolean attribute values are supported.

  Sentry.geGlobalScope().setAttributes({ is_admin: true, auth_provider: 'google' });
  Sentry.withScope(scope => {
  scope.setAttribute('step', 'authentication');
  // scope attributes is_admin, auth_provider and step are added
  Sentry.logger.info(user ${user.id} logged in, { activeSince: 100 });
  Sentry.logger.info(updated ${user.id} last activity);
  });
  // scope attributes is_admin and auth_provider are added
  Sentry.logger.warn('stale website version, reloading page');

• feat(replay): Add Request body with attachRawBodyFromRequest option (#18501)

  To attach the raw request body (from Request objects passed as the first fetch argument) to replay events, you can now use the attachRawBodyFromRequest option in the Replay integration:

  Sentry.init({
    integrations: [
      Sentry.replayIntegration({
        attachRawBodyFromRequest: true,
      }),
    ],
  });

... (truncated)

Commits

• 528ade2 release: 10.32.1
• 25f695d Merge pull request #18578 from getsentry/prepare-release/10.32.1
• a981a3d meta(changelog): Update changelog for 10.32.1
• 0d8547c fix(vercelai): Fix input token count (#18574)
• 71384a2 chore(lint): prefer 'unknown' to 'any', fix lint warnings
• d1dd308 chore(test): Remove cloudflare-astro e2e test (#18567)
• 12f3007 fix(ember): Make implementation field optional (hash routes) (#18564)
• 3fda84d fix(cloudflare): Add hono transaction name when error is thrown (#18529)
• a538901 Merge pull request #18563 from getsentry/master
• 063c4dc Merge pull request #18562 from getsentry/ab/skip-ci-when-no-code-changes
• Additional commits viewable in compare view

Updates @supabase/supabase-js from 2.87.1 to 2.89.0

Release notes

Sourced from @​supabase/supabase-js's releases.

v2.89.0

2.89.0 (2025-12-18)

🚀 Features

• auth: add X (OAuth 2.0) provider (#1960)
• auth: add string array support for AMR claims (#1967)
• supabase: export DatabaseWithoutInternals utility type (#1935)

❤️ Thank You

• Cemal Kılıç @​cemalkilic
• issuedat @​issuedat
• Vaibhav @​7ttp

v2.88.1-canary.2

2.88.1-canary.2 (2025-12-18)

🚀 Features

• supabase: export DatabaseWithoutInternals utility type (#1935)

❤️ Thank You

• Vaibhav @​7ttp

v2.88.1-canary.1

2.88.1-canary.1 (2025-12-17)

🚀 Features

• auth: add string array support for AMR claims (#1967)

❤️ Thank You

• Cemal Kılıç @​cemalkilic

v2.88.1-canary.0

2.88.1-canary.0 (2025-12-17)

🚀 Features

• auth: add X (OAuth 2.0) provider (#1960)

❤️ Thank You

• issuedat @​issuedat

v2.88.0

2.88.0 (2025-12-16)

... (truncated)

Changelog

Sourced from @​supabase/supabase-js's changelog.

2.89.0 (2025-12-18)

🚀 Features

• supabase: export DatabaseWithoutInternals utility type (#1935)

❤️ Thank You

• Vaibhav @​7ttp

2.88.0 (2025-12-16)

🚀 Features

• repo: migrate build system to tsdown for proper ESM/CJS support (#1961)
• auth: allow custom predicate for detectSessionInUrl option (#1958)

❤️ Thank You

• Katerina Skroumpelou @​mandarini

2.87.3 (2025-12-15)

🩹 Fixes

• supabase: resolve jsDelivr CDN ESM import failure with .js extensions (#1953)

❤️ Thank You

• Katerina Skroumpelou @​mandarini

2.87.2 (2025-12-15)

🩹 Fixes

• supabase: resolve jsDelivr CDN ESM import failure (#1950)

❤️ Thank You

• Katerina Skroumpelou @​mandarini

Commits

• e953e71 feat(supabase): export DatabaseWithoutInternals utility type (#1935)
• ba17c2f chore(release): version 2.88.0 changelogs (#1965)
• 6c9bbdf feat(repo): migrate build system to tsdown for proper ESM/CJS support (#1961)
• f346169 feat(auth): allow custom predicate for detectSessionInUrl option (#1958)
• f57b882 chore(release): version 2.87.3 changelogs (#1954)
• 628e710 fix(supabase): resolve jsDelivr CDN ESM import failure with .js extensions (#...
• a660d29 chore(release): version 2.87.2 changelogs (#1952)
• 2950186 fix(supabase): resolve jsDelivr CDN ESM import failure (#1950)
• 13af49b chore(release): version 2.87.1 changelogs (#1934)
• See full diff in compare view

Updates @tanstack/react-query from 5.90.12 to 5.90.14

Release notes

Sourced from @​tanstack/react-query's releases.

@​tanstack/react-query-persist-client@​5.90.14

Patch Changes

• Updated dependencies []:
  • @​tanstack/query-persist-client-core@​5.91.11
  • @​tanstack/react-query@​5.90.12

@​tanstack/react-query@​5.90.14

Patch Changes

• Updated dependencies [d576092]:
  • @​tanstack/query-core@​5.90.14

@​tanstack/react-query-persist-client@​5.90.13

Patch Changes

• Updated dependencies [c01b150]:
  • @​tanstack/react-query@​5.90.11
  • @​tanstack/query-persist-client-core@​5.91.10

Changelog

Sourced from @​tanstack/react-query's changelog.

5.90.14

Patch Changes

• Updated dependencies [d576092]:
  • @​tanstack/query-core@​5.90.14

5.90.13

Patch Changes

• Updated dependencies [4a0a78a]:
  • @​tanstack/query-core@​5.90.13

Commits

• 84564f1 ci: Version Packages (#10001)
• 642f72d test(react-query/ssr): add 'useIsFetching' test for SSR (#9994)
• 1d20c48 ci: Version Packages (#9997)
• 2be25ca test(react-query/HydrationBoundary): add tests for 'enabled: false' and 'stal...
• f15b7fc ci: prepare for trusted publishing (#9952)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​tanstack/react-query since your current version.

Updates lucide-react from 0.561.0 to 0.562.0

Release notes

Sourced from lucide-react's releases.

Version 0.562.0

What's Changed

• fix(icons): changed paint-bucket icon by @​jguddas in lucide-icons/lucide#3880
• fix(site): Fix and unify color-picker font-size by @​taimar in lucide-icons/lucide#3889
• fix(react-native-web): only add className prop to parent Icon component by @​jguddas in lucide-icons/lucide#3892
• fix(lucide-react-native): remove icons namespace export to enable tree-shaking by @​jtomaszewski in lucide-icons/lucide#3868
• feat(icons): added toolbox icon by @​karsa-mistmere in lucide-icons/lucide#3871

New Contributors

• @​taimar made their first contribution in lucide-icons/lucide#3889
• @​jtomaszewski made their first contribution in lucide-icons/lucide#3868

Full Changelog: lucide-icons/lucide@0.561.0...0.562.0

Commits

• See full diff in compare view

Updates react-day-picker from 9.12.0 to 9.13.0

Release notes

Sourced from react-day-picker's releases.

v9.13.0

This release introduces an experimental noonSafe prop to help deal with historical time zones with second offsets. See https://daypicker.dev/localization/setting-time-zone#noonsafe for more details.

What's Changed

• feat: add experimental noonSafe prop for timezone offsets by @​gpbl in gpbl/react-day-picker#2879

Full Changelog: gpbl/react-day-picker@v9.12.0...v9.13.0

Commits

• 103fe7f docs: update noon safe link
• 62bddaa build: bump v9.13.0
• 91e1fc6 docs: updates for time zone with noonSafe
• 2a080c5 feat: add experimental noonSafe prop for timezone offsets (#2879)
• 2bfbb3b docs: update time zone docs, add Asia/Saigon examples (#2878)
• 14494d6 repo: upgrade dependencies (#2877)
• 2a85e2b docs: enhance custom components and custom selections guides (#2876)
• 4988ad5 docs: add responsive markdown tables (#2875)
• e851689 docs: isolate daypicker demos from docusaurus css (#2874)
• de5b2e0 docs: reorganize customization props (#2873)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for react-day-picker since your current version.

Updates react-hook-form from 7.68.0 to 7.69.0

Release notes

Sourced from react-hook-form's releases.

🎄 Version 7.69.0

📏 feat: align API with useWatch (#13192) 🤦🏻‍♂️ chore: update @​deprecated names prop on (#13198) 🏥 chore: safely call function methods on elements (#13190) 🪖 chore: cve-2025-67779 (#13196) 🪖 chore: cve-2025-55184 & cve-2025-55183 (#13194) 🪖 chore: CVE-2025-55182 Critical RCE vulnerabilty (#13175) 🔬 test: add regression tests for #12837 and #13136 (#13187) 🐞 fix(reset): preserve isValid state when keepIsValid option is used (#13173) 🐞 fix: ensure each createFormControl.subscribe subscription listens only to the changes it subscribes to (#12968) 🐞 fix(validation): batch isValidating state updates with validation result (#13181) 🐞 fix(createFormControl): resolve race condition between setError and setFocus (#13138) (#13169) 🧿 fix control prop type (#13189) 🔔 chore: clean cloneObject logic (#13179)

thanks to @​PierreCrb, @​a28689604, @​AnuragM7666, @​ap0nia, @​dusan233 & @​hlongc

Commits

• 3e6f681 7.69.0
• 0fa39b4 👌 chore: update dev deps (#13200)
• 5c5f710 🤦🏻‍♂️ chore: update @​deprecated names prop on \<Watch /> (#13198)
• 1e27637 🪖 fix: cve-2025-67779 (#13196)
• 0676cc7 🔬 test: add regression tests for #12837 and #13136 (#13187)
• 2a681a9 📏 feat: align \<Watch /> API with useWatch (#13192)
• 1eabdc6 🪖 fix: cve-2025-55184 & cve-2025-55183 (#13194)
• aa79ac9 🏥 chore: safely call function methods on elements (#13190)
• 3f821ac 🧿 fix \<Watch /> control prop type (#13189)
• 64eec9b 🐞 fix(reset): preserve isValid state when keepIsValid option is used (#13173)
• Additional commits viewable in compare view

Updates react-resizable-panels from 3.0.6 to 4.0.16

Release notes

Sourced from react-resizable-panels's releases.

4.0.16

• 563: Panel expand() API should restore pre-collapse size
• 564: Add guard for unexpected defaultView value seemingly returned by some dev environments

4.0.15

• 556: Ignore defaultLayout when keys don't match Panel ids

4.0.14

• 555: Allow resizable panels to be rendered into a different Window (e.g. popup or frame) by accessing globals through element.ownerDocument.defaultView

4.0.13

• useDefaultLayout: Deprecated groupId param in favor of id to avoid confusion; (there is no actual requirement for the Group to have a matching id)

4.0.12

• 552: useDefaultLayout now debounces calls to storage.setItem by 150ms

4.0.11

• 8604491: Fix edge case bug with panel constraints not being properly invalidated after resize

4.0.10

• #551: Expand fixed-size element support

4.0.9

• #542: Clicks on higher z-index elements (e.g. modals) should not trigger separators behind them
• #547: Don't re-mount Group when defaultLayout or disableCursor props change
• #548: Bugfix: Gracefully handle Panel id changes
• #549: Improve DevX when Group within hidden DOM subtree; defer layout-change events

4.0.8

• #541: Don't set invalid layouts when Group is hidden or has a width/height of 0
• 40d4356: Gracefully handle invalid defaultLayout value

4.0.7

• f07bf00: Reset pointer-event styles after "pointerup" event

4.0.6

• 0796644: Account for Flex gap when calculating pointer-move delta %

4.0.5

• #535: Updated docs to make size and layout formats clearer

4.0.4

• #534: Set focus on Separator on "pointerdown"
• e08fe42: Improve iOS/Safari resize UX

4.0.3

• Fixed TS type for defaultLayout value returned from useDefaultLayout

4.0.2

• Export GroupImperativeHandle and PanelImperativeHandle types.

... (truncated)

Changelog

Sourced from react-resizable-panels's changelog.

4.0.16

• 563: Panel expand() API should restore pre-collapse size
• 564: Add guard for unexpected defaultView value seemingly returned by some dev environments

4.0.15

• 556: Ignore defaultLayout when keys don't match Panel ids

4.0.14

• 555: Allow resizable panels to be rendered into a different Window (e.g. popup or frame) by accessing globals through element.ownerDocument.defaultView

4.0.13

• useDefaultLayout: Deprecated groupId param in favor of id to avoid confusion; (there is no actual requirement for the Group to have a matching id)

4.0.12

• 552: useDefaultLayout now debounces calls to storage.setItem by 150ms

// To opt out of this change
useDefaultLayout({
  debounceSaveMs: 0,
  groupId: "test-group-id",
  storage: localStorage,
})

[!NOTE] Some may consider this a breaking change, considering the default value is 150ms rather than 0ms. I think in practice this should only impact unit tests which can be easily fixed by overriding the default (as shown above) or by using fake timers.

Changes like this are often judgement calls, but I think on balance it's better to correct my initial oversight of not debouncing this by default.

4.0.11

• 8604491: Fix edge case bug with panel constraints not being properly invalidated after resize

4.0.10

• #551: Expand fixed-size element support

4.0.9

• #542: Clicks on higher z-index elements (e.g. modals) should not trigger separators behind them
• #547: Don't re-mount Group when defaultLayout or disableCursor props change
• #548: Bugfix: Gracefully handle Panel id changes
• #549: Improve DevX when Group within hidden DOM subtree; defer layout-change events

... (truncated)

Commits

• 9c42049 4.0.15 -> 4.0.16
• a1571bb Add extra gaurd for invalid defaultView prop (#564)
• f6e4404 Panel expand() API should restore pre-collapse size (#563)
• f682f6e Removed incorrect not from TS Docs comment
• 7f76aec Adopt react-lib-tools (#562)
• 0eff50d Minor tweaks to build tooling
• 06e72eb 4.0.14 -> 4.0.15
• 6db7cc9 Ignore defaultLayouts with mismatching Panel ids (#556)
• 281b343 Fix Next test app
• fb153d5 Tweaked landing page copy
• Additional commits viewable in compare view

Updates wouter from 3.8.1 to 3.9.0

Release notes

Sourced from wouter's releases.

View Transitions

wouter just crossed 3M downloads/month! To celebrate, this release adds support for the View Transitions API.

How to enable View Transitions

Since view transitions require synchronous DOM rendering and must be wrapped in flushSync from react-dom (wouter doesn't depend on it), you will have you manually enable this with just a few lines of code.

To enable view transitions, use the new aroundNav callback on the Router component:

import { flushSync } from "react-dom";
import { Router, type AroundNavHandler } from "wouter";
const aroundNav: AroundNavHandler = (navigate, to, options) => {
if (!document.startViewTransition) {
// check if supported
navigate(to, options);
return;
}
document.startViewTransition(() => {
flushSync(() => {
navigate(to, options);
});
});
};
const App = () => (
<Router aroundNav={aroundNav}>
{/* Your routes */}
</Router>
);

You can also enable transitions selectively using the transition prop:

<Link href="/products/123" transition>View Product</Link>

See the https://github.com/molefrog/wouter#how-do-i-use-wouter-with-view-transitions-api for more details.

Magazin Example

We're also releasing Magazin, a modern e-commerce demo showcasing wouter with:

• Server-side rendering with Bun
• View Transitions
• React 19 support
• Full TypeScript
• Redirects, 404 pages, search parameters, state and more wouter features used

... (truncated)

Commits

• 9f76456 v3.9.0
• e8726aa Production settings.
• debef37 Magazin: add footer, adapt for mobile.
• c595331 View Transitions (#554)
• e36f8d5 Wouter magazin (#553)
• 715223a Reformat.
• See full diff in compare view

Updates @testing-library/react from 16.3.0 to 16.3.1

Release notes

Sourced from @​testing-library/react's releases.

v16.3.1

16.3.1 (2025-12-15)

Bug Fixes

• Switch to trusted publishing (#1437) (a2d37ff)

Commits

• a2d37ff fix: Switch to trusted publishing (#1437)
• cd6a175 chore: fix action permissions (#1436)
• 22b8c28 chore: fix release (#1435)
• d996673 chore: new release workflow (#1434)
• 205ce17 chore: fix typo in jest.config.js (#1427)
• aba5740 [test] Fix tests for react@experimental (#1424)
• 590bc18 [test] Fix npm run typecheck (#1423)
• 1c931a6 chore(deps): use npm-run-all2 (#1411)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​testing-library/react since your current version.

Updates @vitest/coverage-v8 from 4.0.15 to 4.0.16

Release notes

Sourced from @​vitest/coverage-v8's releases.

v4.0.16

   🐞 Bug Fixes

• Fix browser mode default testTimeout back to 15 seconds  -  by @​hi-ogawa in vitest-dev/vitest#9167 (da0ad)
• Avoid crashing on process.versions stub  -  by @​AriPerkkio in vitest-dev/vitest#9174 (78cfb)
• Reject calling suite function inside test  -  by @​hi-ogawa in vitest-dev/vitest#9198 (1a259)
• Allow inlining fully dynamic import  -  by @​hi-ogawa in vitest-dev/vitest#9137 (56851)
• Fix module graph UI on html reporter with headless browser mode  -  by @​hi-ogawa in vitest-dev/vitest#9219 (60642)
• Log deprecated test.poolOptions if it's set  -  by @​sheremet-va in vitest-dev/vitest#9226 (f7f6a)
• browser:
  • Import recordArtifact from the vitest package  -  by @​macarie in vitest-dev/vitest#9186 (01c56)
  • Fix import.meta.env define  -  by @​hi-ogawa in vitest-dev/vitest#9205 (01a9a)
  • String formatting bug when including placeholders in console.log  -  by @​michael-debs and @​hi-ogawa in vitest-dev/vitest#9030 and vitest-dev/vitest#9131 (84a30)
• coverage:
  • Istanbul untested files source maps are off  -  by @​AriPerkkio in vitest-dev/vitest#9208 (372e8)
• experimental:
  • Export setupEnvironment for custom pools  -  by @​AriPerkkio in vitest-dev/vitest#9187 (5d26b)

    View changes on GitHub

Commits

• b46d744 chore: release v4.0.16
• See full diff in compare view

Updates @vitest/ui from 4.0.15 to 4.0.16

Release notes

Sourced from @​vitest/ui's releases.

v4.0.16

   🐞 Bug Fixes

• Fix browser mode default testTimeout back to 15 seconds  -  by @​hi-ogawa in vitest-dev/vitest#9167 (da0ad)
• Avoid crashing on process.versions stub  -  by @​AriPerkkio in vitest-dev/vitest#9174 (78cfb)
• Reject calling suite function inside test  -  by @​hi-ogawa in vitest-dev/vitest#9198 (1a259)
• Allow inlining fully dynamic import  -  by @​hi-ogawa in vitest-dev/vitest#9137 (56851)
• Fix module graph UI on html reporter with headless browser mode  -  by @​hi-ogawa in vitest-dev/vitest#9219 (60642)
• Log deprecated test.poolOptions if it's set  -  by @​sheremet-va in vitest-dev/vitest#9226 (f7f6a)
• browser:
  • Import recordArtifact from the vitest package  -  by @​macarie in vitest-dev/vitest#9186 (01c56)
  • Fix import.meta.env define  -  by @​hi-ogawa in vitest-dev/vitest#9205 (01a9a)
  • String formatting bug when including placeholders in console.log  -  by @​michael-debs and @​hi-ogawa in vitest-dev/vitest#9030 and vitest-dev/vitest#9131 (84a30)
• coverage:
  • Istanbul untested files source maps are off  -  by @​AriPerkkio in vitest-dev/vitest#9208 (372e8)
• experimental:
  • Export setupEnvironment for custom pools  -  by @​AriPerkkio in vitest-dev/vitest#9187 (5d26b)

    View changes on GitHub

Commits

• b46d744 chore: release v4.0.16
• 60642b3 fix: fix module graph UI on html reporter with headless browser mode (#9219)
• See full diff in compare view

Updates jsdom from 27.3.0 to 27.4.0

Release notes

Sourced from jsdom's releases.

Version 27.4.0

• Added TextEncoder and TextDecoder.
• Improved decoding of HTML bytes by using the new @exodus/bytes package; it is now much more correct. (ChALkeR)
• Improved decoding of XML bytes to use UTF-8 more often, instead of sniffing for <meta charset> or using the parent frame's encoding.
• Fixed a memory leak when Ranges were used and then the elements referred to by those ranges were removed.

Changelog

Sourced from jsdom's changelog.

27.4.0

• Added TextEncoder and TextDecoder.
• Improved decoding of HTML bytes by using the new @exodus/bytes package; it is now much more correct. (ChALkeR)
• Improved decoding of XML bytes to use UTF-8 more often, instead of sniffing for <meta charset> or using the parent frame's encoding.
• Fixed a memory leak when Ranges were used and then the elements referred to by those ranges were removed.

Commits

• 098d16d Version 27.4.0
• 1cd029e Improve asciiLowercase/asciiUppercase performance
• 83fcb62 Implement TextEncoder and TextDecoder; improve XML decoding
• ddad97d Switch from iconv-lite to exodus/bytes for decoding
• 25cb2a1 Use weak references for ranges
• ed4f5ed Add currently-failing CSS regression tests
• See full diff in compare view

Updates msw from 2.12.4 to 2.12.7

Release notes

Sourced from msw's releases.

v2.12.7 (2025-12-27)

Bug Fixes

• graphql: export the GraphQLLinkHandlers type (#2647) (cfab780e1d8110736567ebda129a4094e35f4c00) @​kettanaito
• graphql: support TypedDocumentString as request predicate (

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Review	Updated (UTC)
linkfy-app	Ready	Preview, Comment	Dec 29, 2025 11:33am

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Warning

.coderabbit.yaml has a parsing error

The CodeRabbit configuration file in this repository has a parsing error and default settings were used instead. Please fix the error(s) in the configuration file. You can initialize chat with CodeRabbit to get help with the configuration file.

💥 Parsing errors (1)

Validation error: Invalid regex pattern for base branch. Received: "*" at "reviews.auto_review.base_branches[0]"

⚙️ Configuration instructions

• Please see the configuration documentation for more information.
• You can also validate your configuration using the online YAML validator.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.