Skip to content

Bump the production-dependencies group with 6 updates#47

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-dependencies-f937fc0beb
Closed

Bump the production-dependencies group with 6 updates#47
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-dependencies-f937fc0beb

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 5, 2026

Copy link
Copy Markdown
Contributor

Bumps the production-dependencies group with 6 updates:

Package From To
@anthropic-ai/claude-agent-sdk 0.3.197 0.3.201
chokidar 3.6.0 5.0.0
ignore 5.3.2 7.0.5
lucide-react 1.22.0 1.23.0
react-markdown 9.1.0 10.1.0
shiki 1.29.2 4.3.1

Updates @anthropic-ai/claude-agent-sdk from 0.3.197 to 0.3.201

Release notes

Sourced from @​anthropic-ai/claude-agent-sdk's releases.

v0.3.201

What's changed

  • Updated to parity with Claude Code v2.1.201

Update

npm install @anthropic-ai/claude-agent-sdk@0.3.201
# or
yarn add @anthropic-ai/claude-agent-sdk@0.3.201
# or
pnpm add @anthropic-ai/claude-agent-sdk@0.3.201
# or
bun add @anthropic-ai/claude-agent-sdk@0.3.201

v0.3.200

What's changed

  • Added 'manual' as an accepted alias for the 'default' permission mode in SDK inputs
  • Fixed onSetPermissionMode callback not firing for SDK-hosted Remote Control sessions
  • Fixed set_model control request accepting unrecognized model strings; invalid models are now rejected before latching

Update

npm install @anthropic-ai/claude-agent-sdk@0.3.200
# or
yarn add @anthropic-ai/claude-agent-sdk@0.3.200
# or
pnpm add @anthropic-ai/claude-agent-sdk@0.3.200
# or
bun add @anthropic-ai/claude-agent-sdk@0.3.200

v0.3.199

What's changed

  • Added requestId to canUseTool callback options for correlating out-of-band permission responses, and support for returning null to suppress the SDK's automatic control response
  • Added blocked field to workflow_agent progress events indicating when an agent was blocked by the auto-mode safety classifier
  • Added mode:"mask" and per-credential injectHosts to sandbox.credentials settings types for injecting masked credentials into sandboxed commands

Update

npm install @anthropic-ai/claude-agent-sdk@0.3.199
# or
yarn add @anthropic-ai/claude-agent-sdk@0.3.199
# or
</tr></table> 

... (truncated)

Changelog

Sourced from @​anthropic-ai/claude-agent-sdk's changelog.

0.3.201

  • Updated to parity with Claude Code v2.1.201

0.3.200

  • Added 'manual' as an accepted alias for the 'default' permission mode in SDK inputs
  • Fixed onSetPermissionMode callback not firing for SDK-hosted Remote Control sessions
  • Fixed set_model control request accepting unrecognized model strings; invalid models are now rejected before latching

0.3.199

  • Added requestId to canUseTool callback options for correlating out-of-band permission responses, and support for returning null to suppress the SDK's automatic control response
  • Added blocked field to workflow_agent progress events indicating when an agent was blocked by the auto-mode safety classifier
  • Added mode:"mask" and per-credential injectHosts to sandbox.credentials settings types for injecting masked credentials into sandboxed commands

0.3.198

  • Added a runtime warning when canUseTool is configured alongside allowedTools or bypassPermissions, which shadow the callback
  • Added per-server request_timeout_ms option to mcp_set_servers control request
  • Fixed SDKUserMessage.isSynthetic not being mapped to isMeta on ingestion, which could cause synthetic messages to be treated as real user messages
  • Fixed workflow progress events silently dropping earliest agents from the list while the phase counter remained correct
Commits

Updates chokidar from 3.6.0 to 5.0.0

Release notes

Sourced from chokidar's releases.

5.0.0

  • Make the package ESM-only. Reduces on-disk package size from ~150kb to ~80kb
  • Increase minimum node.js version to v20.19. The versions starting from it support loading esm files from cjs
  • fix: Make types more precise paulmillr/chokidar#1424
  • perf: re-use double slash regex paulmillr/chokidar#1435
  • Update readdirp to ESM-only v5
  • Lots of minor improvements in tests
  • Increase security of NPM releases. Switch to token-less Trusted Publishing, with help of jsbt
  • Switch compilation mode to isolatedDeclaration-based typescript for simplified auto-generated docs

New Contributors

Full Changelog: paulmillr/chokidar@4.0.3...5.0.0

4.0.3

What's Changed

Full Changelog: paulmillr/chokidar@4.0.2...4.0.3

4.0.2

What's Changed

New Contributors

Full Changelog: paulmillr/chokidar@4.0.1...4.0.2

4.0.1

  • Various fixes and improvements of typescript types

New Contributors

Full Changelog: paulmillr/chokidar@4.0.0...4.0.1

4.0.0

  • Remove glob support
  • Remove bundled fsevents
  • Decrease dependency count from 13 to 1
  • Rewrite in typescript. Makes emitted types more precise
  • The package became hybrid common.js / ESM

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for chokidar since your current version.


Updates ignore from 5.3.2 to 7.0.5

Release notes

Sourced from ignore's releases.

7.0.4

  • PATCH Allows files named .{3,}, such as ... for Linux / macOS (#68)
ig.ignores('...')
ig.ignores('....')
// It will throw a RangeError in versions prior to 7.0.4, but it is ok if >= 7.0.4

An upgrade is recommended for all dependents

7.0.0

Minor feature

The primary feature introduced by 7.0.0 is the .checkIgnore() method, which is most equivalent to git check-ignore -v. And also it allows to pass {pattern, mark?} as the parameter of .add() so that we could imitate the mechanism of git check-ignore as:

ig.add({
  pattern: 'foo/*',
  mark: '60'
})
const {
ignored,
rule
} = checkIgnore('foo/')
if (ignored) {
console.log(.gitignore:${result}:${rule.mark}:${rule.pattern} foo/)
}
// .gitignore:60:foo/* foo/

Potential Incompatibilities

The only situation that 7.0.0 might bring incompatibility is to .add() a < 7.0.0 instance into a >= 7.0.0 instance, which might occur when the current workspace has multiple node-ignore versions installed, please be careful.

const {anotherIgnoreInstance} = require('./ignore-6.0-instance')
// A 7.0.0 instance
ignore().add(anotherIgnoreInstance)
// It will break your code

Otherwise, in most cases, if you never do something above or there is only one version of node-ignore installed in the current workspace, it is quite safe to upgrade to 7.0.0.

6.x (== 5.3.2)

... (truncated)

Commits

Updates lucide-react from 1.22.0 to 1.23.0

Release notes

Sourced from lucide-react's releases.

Version 1.23.0

What's Changed

New Contributors

Full Changelog: lucide-icons/lucide@1.22.0...1.23.0

Commits

Updates react-markdown from 9.1.0 to 10.1.0

Release notes

Sourced from react-markdown's releases.

10.1.0

Add

Fix

Full Changelog: remarkjs/react-markdown@10.0.1...10.1.0

10.0.1

Full Changelog: remarkjs/react-markdown@10.0.0...10.0.1

10.0.0

Full Changelog: remarkjs/react-markdown@9.1.0...10.0.0

Changelog

Sourced from react-markdown's changelog.

Changelog

All notable changes will be documented in this file.

10.0.0 - 2025-02-20

  • aaaa40b Remove support for className prop migrate: see “Remove className” below

Remove className

The className prop was removed. If you want to add classes to some element that wraps the markdown you can explicitly write that element and add the class to it. You can then choose yourself which tag name to use and whether to add other props.

Before:

<Markdown className="markdown-body">{markdown}</Markdown>

After:

<div className="markdown-body">
  <Markdown>{markdown}</Markdown>
</div>
Commits

Updates shiki from 1.29.2 to 4.3.1

Release notes

Sourced from shiki's releases.

v4.3.1

   🚀 Features

    View changes on GitHub

v4.3.0

   🚀 Features

    View changes on GitHub

v4.2.0

   🚀 Features

   🐞 Bug Fixes

    View changes on GitHub

v4.1.0

   🐞 Bug Fixes

    View changes on GitHub

v4.0.2

   🐞 Bug Fixes

    View changes on GitHub

v4.0.1

   🐞 Bug Fixes

    View changes on GitHub

v4.0.0

   🚨 Breaking Changes

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for shiki since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the production-dependencies group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [@anthropic-ai/claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-typescript) | `0.3.197` | `0.3.201` |
| [chokidar](https://github.com/paulmillr/chokidar) | `3.6.0` | `5.0.0` |
| [ignore](https://github.com/kaelzhang/node-ignore) | `5.3.2` | `7.0.5` |
| [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `1.22.0` | `1.23.0` |
| [react-markdown](https://github.com/remarkjs/react-markdown) | `9.1.0` | `10.1.0` |
| [shiki](https://github.com/shikijs/shiki/tree/HEAD/packages/shiki) | `1.29.2` | `4.3.1` |


Updates `@anthropic-ai/claude-agent-sdk` from 0.3.197 to 0.3.201
- [Release notes](https://github.com/anthropics/claude-agent-sdk-typescript/releases)
- [Changelog](https://github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md)
- [Commits](anthropics/claude-agent-sdk-typescript@v0.3.197...v0.3.201)

Updates `chokidar` from 3.6.0 to 5.0.0
- [Release notes](https://github.com/paulmillr/chokidar/releases)
- [Commits](paulmillr/chokidar@3.6.0...5.0.0)

Updates `ignore` from 5.3.2 to 7.0.5
- [Release notes](https://github.com/kaelzhang/node-ignore/releases)
- [Commits](kaelzhang/node-ignore@5.3.2...7.0.5)

Updates `lucide-react` from 1.22.0 to 1.23.0
- [Release notes](https://github.com/lucide-icons/lucide/releases)
- [Commits](https://github.com/lucide-icons/lucide/commits/1.23.0/packages/lucide-react)

Updates `react-markdown` from 9.1.0 to 10.1.0
- [Release notes](https://github.com/remarkjs/react-markdown/releases)
- [Changelog](https://github.com/remarkjs/react-markdown/blob/main/changelog.md)
- [Commits](remarkjs/react-markdown@9.1.0...10.1.0)

Updates `shiki` from 1.29.2 to 4.3.1
- [Release notes](https://github.com/shikijs/shiki/releases)
- [Commits](https://github.com/shikijs/shiki/commits/v4.3.1/packages/shiki)

---
updated-dependencies:
- dependency-name: "@anthropic-ai/claude-agent-sdk"
  dependency-version: 0.3.201
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: chokidar
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: ignore
  dependency-version: 7.0.5
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: lucide-react
  dependency-version: 1.23.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: react-markdown
  dependency-version: 10.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: shiki
  dependency-version: 4.3.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 5, 2026
@dependabot dependabot Bot requested a review from BotCoder254 as a code owner July 5, 2026 14:15
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 5, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jul 5, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Jul 5, 2026
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/production-dependencies-f937fc0beb branch July 5, 2026 17:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants