You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Bumps the npm_and_yarn group with 1 update in the /examples/astro-iconify-svgmap directory: astro.
Bumps the npm_and_yarn group with 1 update in the /examples/svelte-social-share-links/svelte-kit directory: @sveltejs/kit.
#164791058428 Thanks @matthewp! - Fixes a spurious [WARN] [content] Content config not loaded warning during astro dev for projects that don't use content collections
#164573d82220 Thanks @matthewp! - Hardens server island encryption to prevent encrypted data from one island component being replayed against a different one
#16481152700e Thanks @matthewp! - Fixes a spurious 404 request for a dev toolbar sourcemap during astro dev caused by the browser mis-resolving a relative sourceMappingURL from the /@id/ URL prefix
#164801bcb43b Thanks @matthewp! - Fixes an unnecessary full page reload on first navigation during dev
astro@6.1.9
Patch Changes
#1644899464ed Thanks @matthewp! - Updates vite, picomatch, and unstorage to latest patch versions
#16422a3951d7 Thanks @matthewp! - Hardens astro-island export resolution and hydration error handling for malformed component metadata
#16420e21de1d Thanks @matthewp! - Hardens Astro's error overlay and server logging paths to avoid unsafe HTML insertion and format-string interpolation
#16419f3485c3 Thanks @matthewp! - Hardens nested object and package metadata lookups to ignore prototype keys in content handling and project scaffolding
#16022a002540 Thanks @mathieumaf! - Fixes an issue where i18n domains would return 404 when trailingSlash is set to never.
#16367a6866a7 Thanks @ematipico! - Fixes an issue where build output files could contain special characters (!, ~, {, }) in their names, causing deploy failures on platforms like Netlify.
#16381217c5b3 Thanks @ematipico! - Slightly improved the performance of the dev server by caching the internal crawling of the dependencies of a project.
#163487d26cd7 Thanks @ocavue! - Fixes a bug where emitted assets during a client build would contain always fresh, new hashes in their name. Now the build should be more stable.
#16317d012bfe Thanks @das-peter! - Fixes a bug where allowedDomains weren't correctly propagated when using the development server.
#163795a84551 Thanks @martrapp! - Improves Vue scoped style handling in DEV mode during client router navigation.
#16317d012bfe Thanks @das-peter! - Adds tests to verify settings are properly propagated when using the development server.
#162825b0fdaa Thanks @jmurty! - Fixes build errors on platforms with skew protection enabled (e.g. Vercel, Netlify) for inter-chunk Javascript using dynamic imports
#164791058428 Thanks @matthewp! - Fixes a spurious [WARN] [content] Content config not loaded warning during astro dev for projects that don't use content collections
#164573d82220 Thanks @matthewp! - Hardens server island encryption to prevent encrypted data from one island component being replayed against a different one
#16481152700e Thanks @matthewp! - Fixes a spurious 404 request for a dev toolbar sourcemap during astro dev caused by the browser mis-resolving a relative sourceMappingURL from the /@id/ URL prefix
#164801bcb43b Thanks @matthewp! - Fixes an unnecessary full page reload on first navigation during dev
6.1.9
Patch Changes
#1644899464ed Thanks @matthewp! - Updates vite, picomatch, and unstorage to latest patch versions
#16422a3951d7 Thanks @matthewp! - Hardens astro-island export resolution and hydration error handling for malformed component metadata
#16420e21de1d Thanks @matthewp! - Hardens Astro's error overlay and server logging paths to avoid unsafe HTML insertion and format-string interpolation
#16419f3485c3 Thanks @matthewp! - Hardens nested object and package metadata lookups to ignore prototype keys in content handling and project scaffolding
#16022a002540 Thanks @mathieumaf! - Fixes an issue where i18n domains would return 404 when trailingSlash is set to never.
#16367a6866a7 Thanks @ematipico! - Fixes an issue where build output files could contain special characters (!, ~, {, }) in their names, causing deploy failures on platforms like Netlify.
#16381217c5b3 Thanks @ematipico! - Slightly improved the performance of the dev server by caching the internal crawling of the dependencies of a project.
#163487d26cd7 Thanks @ocavue! - Fixes a bug where emitted assets during a client build would contain always fresh, new hashes in their name. Now the build should be more stable.
#16317d012bfe Thanks @das-peter! - Fixes a bug where allowedDomains weren't correctly propagated when using the development server.
#163795a84551 Thanks @martrapp! - Improves Vue scoped style handling in DEV mode during client router navigation.
#16317d012bfe Thanks @das-peter! - Adds tests to verify settings are properly propagated when using the development server.
#162825b0fdaa Thanks @jmurty! - Fixes build errors on platforms with skew protection enabled (e.g. Vercel, Netlify) for inter-chunk Javascript using dynamic imports
feat: support query.batch in requested(...) (#15751)
breaking: on the server, make the promise returned from refresh represent adding the refresh to the map, not the time it takes to run the remote function (#15705)
feat: allow 'submit' and 'hidden' form fields to accept numbers and booleans (#15802)
feat: warn on unread form remote function validation issues (#15653)
Patch Changes
fix: abort navigation after async rendering if obsolete (#15811)
fix: skip refreshing queries on full-page reload form submissions (#15803)
2.59.1
Patch Changes
fix: resolve paths to route files with the letter drive on Windows (#15793)
2.59.0
Minor Changes
feat: support query.batch in requested(...) (#15751)
breaking: on the server, make the promise returned from refresh represent adding the refresh to the map, not the time it takes to run the remote function (#15705)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.
Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.
This PR includes no changesets
When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types
dependabotBot
deleted the
dependabot/npm_and_yarn/examples/astro-iconify-svgmap/npm_and_yarn-27c7eff287
branch
June 3, 2026 21:23
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
dependenciesPull requests that update a dependency filejavascriptPull requests that update javascript code
0 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the npm_and_yarn group with 1 update in the /examples/astro-iconify-svgmap directory: astro.
Bumps the npm_and_yarn group with 1 update in the /examples/svelte-social-share-links/svelte-kit directory: @sveltejs/kit.
Updates
astrofrom 5.9.3 to 6.1.10Release notes
Sourced from astro's releases.
... (truncated)
Changelog
Sourced from astro's changelog.
... (truncated)
Commits
c1f2e4f[ci] release (#16467)345fb9echore: fix flaky dev toolbar render time test (#16500)5120ecd[ci] format3d82220Add AEAD context binding to server island encryption (#16457)1bcb43bPrebundle dev toolbar entrypoint in client environment (#16480)93101cc[ci] format152700efix: strip sourceMappingURL from dev toolbar entrypoint during dep optimizati...bc83041refactor(astro): migrate test utils to typescript (#16492)5c543c5refactor(astro): add internal entry points for test (#16473)1058428Suppress content config warning for projects without content collections (#16...Maintainer changes
This version was pushed to npm by GitHub Actions, a new releaser for astro since your current version.
Updates
@sveltejs/kitfrom 2.52.0 to 2.60.1Release notes
Sourced from @sveltejs/kit's releases.
... (truncated)
Changelog
Sourced from @sveltejs/kit's changelog.
... (truncated)
Commits
d020406Version Packages (#15838)16b07a2chore: bump svelte and devalue (#15836)dadaefcMerge commit from forkdb8e8aeVersion Packages (#15810)2549a44feat: allow 'submit' and 'hidden' form fields to accept numbers and booleans ...d3b5257fix: skip refreshing queries on full-page reload form submissions (#15803)ea0b9a7fix: abort navigation after async rendering if obsolete (#15811)a45e720feat: warn on unread validation issues (#15653)9cfa07dVersion Packages (#15795)e547ec1fix: resolve user files with drive letter on Windows (#15793)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.