deps: bump the minor-and-patch group across 1 directory with 5 updates

[dependabot]

Bumps the minor-and-patch group with 5 updates in the / directory:

Package	From	To
free-email-domains	1.9.12	1.9.16
posthog-node	5.35.0	5.35.2
resend	6.12.3	6.12.4
ws	8.20.1	8.21.0
mintlify	4.2.573	4.2.577

Updates free-email-domains from 1.9.12 to 1.9.16

Release notes

Sourced from free-email-domains's releases.

v1.9.16

Full Changelog: Kikobeats/free-email-domains@v1.9.15...v1.9.16

v1.9.15

Full Changelog: Kikobeats/free-email-domains@v1.9.14...v1.9.15

v1.9.14

Full Changelog: Kikobeats/free-email-domains@v1.9.13...v1.9.14

v1.9.13

Full Changelog: Kikobeats/free-email-domains@v1.9.12...v1.9.13

Changelog

Sourced from free-email-domains's changelog.

1.9.16 (2026-05-26)

1.9.15 (2026-05-25)

1.9.14 (2026-05-24)

1.9.13 (2026-05-23)

Commits

• c51973c chore(release): 1.9.16
• 87142ad build(update): emails
• 8989958 chore(release): 1.9.15
• 4a4cb15 build(update): emails
• ce19202 chore(release): 1.9.14
• 0482147 build(update): emails
• a1b7228 chore(release): 1.9.13
• 9a0f377 build(update): emails
• See full diff in compare view

Updates posthog-node from 5.35.0 to 5.35.2

Release notes

Sourced from posthog-node's releases.

posthog-node@5.35.2

5.35.2

Patch Changes

• #3658 5d7a2d3 Thanks @​gustavohstrassburger! - Include group context in the $feature_flag_called deduplication key in _captureFlagCalledEventIfNeeded, so events fire independently per group combination. (2026-05-25)

posthog-node@5.35.1

5.35.1

Patch Changes

• Updated dependencies [c806cca]:
  • @​posthog/core@​1.29.9

Changelog

Sourced from posthog-node's changelog.

5.35.2

Patch Changes

• #3658 5d7a2d3 Thanks @​gustavohstrassburger! - Include group context in the $feature_flag_called deduplication key in _captureFlagCalledEventIfNeeded, so events fire independently per group combination. (2026-05-25)

5.35.1

Patch Changes

• Updated dependencies [c806cca]:
  • @​posthog/core@​1.29.9

Commits

• 1d0daf0 chore: update versions and lockfile [version bump]
• 5d7a2d3 fix(node): fire separate $feature_flag_called events per group context (#3658)
• 3d41c1d chore: update versions and lockfile [version bump]
• See full diff in compare view

Updates resend from 6.12.3 to 6.12.4

Release notes

Sourced from resend's releases.

v6.12.4

What's Changed

• fix(deps): update dependency next to v16.2.6 [security] by @​renovate[bot] in resend/resend-node#957
• chore(dev-660): harden github actions workflows by @​felipefreitag in resend/resend-node#959
• chore: add sync-prs-to-linear action by @​dielduarte in resend/resend-node#961
• fix: rename misnamed get-contact.interface.ts to get-topic.interface.ts in topics module by @​wesleyramalho in resend/resend-node#903
• fix: avoid mutating payloads in emails, broadcasts, and templates by @​Shubhdeep12 in resend/resend-node#862
• feat: add optional baseUrl and userAgent to Resend constructor by @​xiaoyu2er in resend/resend-node#839
• chore: bump public-shared-workflows hash by @​dielduarte in resend/resend-node#965
• chore: bump public-shared-workflows hash by @​dielduarte in resend/resend-node#966
• refactor: align delete method with other HTTP methods in Resend class by @​wesleyramalho in resend/resend-node#904
• fix: to support @​react-email/render exports across versions in templates by @​Shubhdeep12 in resend/resend-node#863
• fix: replace svix with standardwebhooks to reduce install size (#969) by @​dielduarte in resend/resend-node#970
• chore: bump version to 6.12.4 by @​dielduarte in resend/resend-node#971

Full Changelog: resend/resend-node@v6.12.3...v6.12.4

Commits

• 58db880 chore: bump version to 6.12.4 (#971)
• 63f5ddb fix: replace svix with standardwebhooks to reduce install size (#969) (#970)
• 45dc73d fix: to support @​react-email/render exports across versions in templates (#863)
• 24950d7 refactor: align delete method with other HTTP methods in Resend class (#904)
• 2759316 chore: bump public-shared-workflows hash (#966)
• fa04efc chore: bump public-shared-workflows hash (#965)
• 77bbf2d feat: add optional baseUrl and userAgent to Resend constructor (#839)
• ebdb2d3 fix: avoid mutating payloads in emails, broadcasts, and templates (#862)
• 674ab1b fix: rename misnamed get-contact.interface.ts to get-topic.interface.ts i...
• ac0c09f chore: add sync-prs-to-linear action (#961)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by dielduarte, a new releaser for resend since your current version.

Updates ws from 8.20.1 to 8.21.0

Release notes

Sourced from ws's releases.

8.21.0

Features

• Introduced the maxBufferedChunks and maxFragments options (2b2abd45).

Bug fixes

• Fixed a remote memory exhaustion DoS vulnerability (2b2abd45).

A high volume of tiny fragments and data chunks could be sent by a peer, using modest network traffic, to crash a ws server or client due to OOM.

import { WebSocket, WebSocketServer } from 'ws';
const wss = new WebSocketServer({ port: 0 }, function () {
const data = Buffer.alloc(1);
const options = { fin: false };
const { port } = wss.address();
const ws = new WebSocket(ws://localhost:${port});
ws.on('open', function () {
(function send() {
ws.send(data, options, function (err) {
if (err) return;
send();
});
})();
});
ws.on('error', console.error);
ws.on('close', function (code, reason) {
console.log(client close - code: ${code} reason: ${reason.toString()});
});
});
wss.on('connection', function (ws) {
ws.on('error', console.error);
ws.on('close', function (code, reason) {
console.log(server close - code: ${code} reason: ${reason.toString()});
});
});

The vulnerability was responsibly disclosed and fixed by Nadav Magier.

In vulnerable versions, the issue can be mitigated by lowering the value of the maxPayload option if possible.

Commits

• bca91ad [dist] 8.21.0
• 2b2abd4 [security] Limit retained message parts
• 78eabe2 [security] Add latest vulnerability to SECURITY.md
• See full diff in compare view

Updates mintlify from 4.2.573 to 4.2.577

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions