Bump the production-patch group across 1 directory with 6 updates by dependabot[bot] · Pull Request #161 · Siteimprove/alfa-examples

dependabot · 2026-05-10T23:08:36Z

Bumps the production-patch group with 6 updates in the / directory:

Package	From	To
react	`19.2.5`	`19.2.6`
react-dom	`19.2.5`	`19.2.6`
@angular/common	`21.2.11`	`21.2.12`
@angular/compiler	`21.2.11`	`21.2.12`
@angular/core	`21.2.11`	`21.2.12`
@angular/platform-browser	`21.2.11`	`21.2.12`

Updates react from 19.2.5 to 19.2.6

Release notes

Sourced from react's releases.

19.2.6 (May 6th, 2026)

React Server Components

Type hardening and performance improvements (#36425 by @eps1lon and @unstubbable)

Commits

eaf3e95 Version 19.2.6
See full diff in compare view

Updates react-dom from 19.2.5 to 19.2.6

Release notes

Sourced from react-dom's releases.

19.2.6 (May 6th, 2026)

React Server Components

Type hardening and performance improvements (#36425 by @eps1lon and @unstubbable)

Commits

eaf3e95 Version 19.2.6
See full diff in compare view

Updates @angular/common from 21.2.11 to 21.2.12

Release notes

Sourced from @angular/common's releases.

21.2.12

core

Commit Description

allow explicit read generic with signal input transforms

i18n flags leaking on errors

respect ngSkipHydration on components with projectable nodes in LContainers

sanitizer typings

validate security-sensitive attributes in i18n bindings

visit ng-let expression value in signal migration schematics

forms

Commit Description

prohibit concurrent submits in signal forms

Changelog

Sourced from @angular/common's changelog.

21.2.12 (2026-05-06)

core

Commit Type Description

fe13bb669d fix allow explicit read generic with signal input transforms

3430251fef fix i18n flags leaking on errors

1aeebbe304 fix respect ngSkipHydration on components with projectable nodes in LContainers

9e38ed7d57 fix sanitizer typings

7a05a9a71a fix validate security-sensitive attributes in i18n bindings

c37f6ca42f fix visit ng-let expression value in signal migration schematics

forms

Commit Type Description

03ad53863b fix prohibit concurrent submits in signal forms

20.3.20 (2026-05-06)

core

Commit Type Description

a9bcffdbc7 fix disallow event attribute bindings in host bindings unconditionally (#68468)

97eeb45cfa fix validate security-sensitive attributes in i18n bindings (#68468)

platform-server

Commit Type Description

25e4e07238 fix ensure origin has a trailing slash when parsing url (#68468)

22.0.0-next.10 (2026-04-29)

common

Commit Type Description

97cac1cf4d fix prevent focus from scrollToAnchor

compiler

Commit Type Description

2896c93cc1 feat Angular expressions with optional chaining returns undefined

6bd1721662 fix let declaration span not including end character

core

Commit Type Description

444b024d49 feat Add a injectAsync helper function

8c11816490 fix fix ordering of view queries metadata in JIT mode

3583c01bf9 fix guard against non-object events and avoid listener wrapper identity mismatch

d5fd51e956 fix prevent event replay double-invocation when element hydrates before app stability

migrations

... (truncated)

Commits

30cf85f refactor(common): update deprecation message
See full diff in compare view

Updates @angular/compiler from 21.2.11 to 21.2.12

Release notes

Sourced from @angular/compiler's releases.

21.2.12

core

Commit Description

allow explicit read generic with signal input transforms

i18n flags leaking on errors

respect ngSkipHydration on components with projectable nodes in LContainers

sanitizer typings

validate security-sensitive attributes in i18n bindings

visit ng-let expression value in signal migration schematics

forms

Commit Description

prohibit concurrent submits in signal forms

Changelog

Sourced from @angular/compiler's changelog.

21.2.12 (2026-05-06)

core

Commit Type Description

fe13bb669d fix allow explicit read generic with signal input transforms

3430251fef fix i18n flags leaking on errors

1aeebbe304 fix respect ngSkipHydration on components with projectable nodes in LContainers

9e38ed7d57 fix sanitizer typings

7a05a9a71a fix validate security-sensitive attributes in i18n bindings

c37f6ca42f fix visit ng-let expression value in signal migration schematics

forms

Commit Type Description

03ad53863b fix prohibit concurrent submits in signal forms

20.3.20 (2026-05-06)

core

Commit Type Description

a9bcffdbc7 fix disallow event attribute bindings in host bindings unconditionally (#68468)

97eeb45cfa fix validate security-sensitive attributes in i18n bindings (#68468)

platform-server

Commit Type Description

25e4e07238 fix ensure origin has a trailing slash when parsing url (#68468)

22.0.0-next.10 (2026-04-29)

common

Commit Type Description

97cac1cf4d fix prevent focus from scrollToAnchor

compiler

Commit Type Description

2896c93cc1 feat Angular expressions with optional chaining returns undefined

6bd1721662 fix let declaration span not including end character

core

Commit Type Description

444b024d49 feat Add a injectAsync helper function

8c11816490 fix fix ordering of view queries metadata in JIT mode

3583c01bf9 fix guard against non-object events and avoid listener wrapper identity mismatch

d5fd51e956 fix prevent event replay double-invocation when element hydrates before app stability

migrations

... (truncated)

Commits

See full diff in compare view

Updates @angular/core from 21.2.11 to 21.2.12

Release notes

Sourced from @angular/core's releases.

21.2.12

core

Commit Description

allow explicit read generic with signal input transforms

i18n flags leaking on errors

respect ngSkipHydration on components with projectable nodes in LContainers

sanitizer typings

validate security-sensitive attributes in i18n bindings

visit ng-let expression value in signal migration schematics

forms

Commit Description

prohibit concurrent submits in signal forms

Changelog

Sourced from @angular/core's changelog.

21.2.12 (2026-05-06)

core

Commit Type Description

fe13bb669d fix allow explicit read generic with signal input transforms

3430251fef fix i18n flags leaking on errors

1aeebbe304 fix respect ngSkipHydration on components with projectable nodes in LContainers

9e38ed7d57 fix sanitizer typings

7a05a9a71a fix validate security-sensitive attributes in i18n bindings

c37f6ca42f fix visit ng-let expression value in signal migration schematics

forms

Commit Type Description

03ad53863b fix prohibit concurrent submits in signal forms

20.3.20 (2026-05-06)

core

Commit Type Description

a9bcffdbc7 fix disallow event attribute bindings in host bindings unconditionally (#68468)

97eeb45cfa fix validate security-sensitive attributes in i18n bindings (#68468)

platform-server

Commit Type Description

25e4e07238 fix ensure origin has a trailing slash when parsing url (#68468)

22.0.0-next.10 (2026-04-29)

common

Commit Type Description

97cac1cf4d fix prevent focus from scrollToAnchor

compiler

Commit Type Description

2896c93cc1 feat Angular expressions with optional chaining returns undefined

6bd1721662 fix let declaration span not including end character

core

Commit Type Description

444b024d49 feat Add a injectAsync helper function

8c11816490 fix fix ordering of view queries metadata in JIT mode

3583c01bf9 fix guard against non-object events and avoid listener wrapper identity mismatch

d5fd51e956 fix prevent event replay double-invocation when element hydrates before app stability

migrations

... (truncated)

Commits

9e38ed7 fix(core): sanitizer typings
3430251 fix(core): i18n flags leaking on errors
c37f6ca fix(core): visit ng-let expression value in signal migration schematics
fe13bb6 fix(core): allow explicit read generic with signal input transforms
7a05a9a fix(core): validate security-sensitive attributes in i18n bindings
1aeebbe fix(core): respect ngSkipHydration on components with projectable nodes in LC...
See full diff in compare view

Updates @angular/platform-browser from 21.2.11 to 21.2.12

Release notes

Sourced from @angular/platform-browser's releases.

21.2.12

core

Commit Description

allow explicit read generic with signal input transforms

i18n flags leaking on errors

respect ngSkipHydration on components with projectable nodes in LContainers

sanitizer typings

validate security-sensitive attributes in i18n bindings

visit ng-let expression value in signal migration schematics

forms

Commit Description

prohibit concurrent submits in signal forms

Changelog

Sourced from @angular/platform-browser's changelog.

21.2.12 (2026-05-06)

core

Commit Type Description

fe13bb669d fix allow explicit read generic with signal input transforms

3430251fef fix i18n flags leaking on errors

1aeebbe304 fix respect ngSkipHydration on components with projectable nodes in LContainers

9e38ed7d57 fix sanitizer typings

7a05a9a71a fix validate security-sensitive attributes in i18n bindings

c37f6ca42f fix visit ng-let expression value in signal migration schematics

forms

Commit Type Description

03ad53863b fix prohibit concurrent submits in signal forms

20.3.20 (2026-05-06)

core

Commit Type Description

a9bcffdbc7 fix disallow event attribute bindings in host bindings unconditionally (#68468)

97eeb45cfa fix validate security-sensitive attributes in i18n bindings (#68468)

platform-server

Commit Type Description

25e4e07238 fix ensure origin has a trailing slash when parsing url (#68468)

22.0.0-next.10 (2026-04-29)

common

Commit Type Description

97cac1cf4d fix prevent focus from scrollToAnchor

compiler

Commit Type Description

2896c93cc1 feat Angular expressions with optional chaining returns undefined

6bd1721662 fix let declaration span not including end character

core

Commit Type Description

444b024d49 feat Add a injectAsync helper function

8c11816490 fix fix ordering of view queries metadata in JIT mode

3583c01bf9 fix guard against non-object events and avoid listener wrapper identity mismatch

d5fd51e956 fix prevent event replay double-invocation when element hydrates before app stability

migrations

... (truncated)

Commits

See full diff in compare view

Bumps the production-patch group with 6 updates in the / directory: | Package | From | To | | --- | --- | --- | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.5` | `19.2.6` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.5` | `19.2.6` | | [@angular/common](https://github.com/angular/angular/tree/HEAD/packages/common) | `21.2.11` | `21.2.12` | | [@angular/compiler](https://github.com/angular/angular/tree/HEAD/packages/compiler) | `21.2.11` | `21.2.12` | | [@angular/core](https://github.com/angular/angular/tree/HEAD/packages/core) | `21.2.11` | `21.2.12` | | [@angular/platform-browser](https://github.com/angular/angular/tree/HEAD/packages/platform-browser) | `21.2.11` | `21.2.12` | Updates `react` from 19.2.5 to 19.2.6 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.6/packages/react) Updates `react-dom` from 19.2.5 to 19.2.6 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.6/packages/react-dom) Updates `@angular/common` from 21.2.11 to 21.2.12 - [Release notes](https://github.com/angular/angular/releases) - [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md) - [Commits](https://github.com/angular/angular/commits/v21.2.12/packages/common) Updates `@angular/compiler` from 21.2.11 to 21.2.12 - [Release notes](https://github.com/angular/angular/releases) - [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md) - [Commits](https://github.com/angular/angular/commits/v21.2.12/packages/compiler) Updates `@angular/core` from 21.2.11 to 21.2.12 - [Release notes](https://github.com/angular/angular/releases) - [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md) - [Commits](https://github.com/angular/angular/commits/v21.2.12/packages/core) Updates `@angular/platform-browser` from 21.2.11 to 21.2.12 - [Release notes](https://github.com/angular/angular/releases) - [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md) - [Commits](https://github.com/angular/angular/commits/v21.2.12/packages/platform-browser) --- updated-dependencies: - dependency-name: "@angular/common" dependency-version: 21.2.12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-patch - dependency-name: "@angular/compiler" dependency-version: 21.2.12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-patch - dependency-name: "@angular/core" dependency-version: 21.2.12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-patch - dependency-name: "@angular/platform-browser" dependency-version: 21.2.12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-patch - dependency-name: react dependency-version: 19.2.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-patch - dependency-name: react-dom dependency-version: 19.2.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-patch ... Signed-off-by: dependabot[bot] <support@github.com>

…ff010aa

dependabot Bot added Dependencies Updating dependencies npm Dependencies of the npm ecosystem labels May 10, 2026

dependabot Bot requested a review from a team as a code owner May 10, 2026 23:08

dependabot Bot added the npm Dependencies of the npm ecosystem label May 10, 2026

dependabot Bot changed the title ~~Bump the production-patch group with 6 updates~~ Bump the production-patch group across 1 directory with 6 updates May 11, 2026

dependabot Bot force-pushed the dependabot/npm_and_yarn/production-patch-52dff010aa branch from efa0da1 to bd49e2b Compare May 11, 2026 07:38

Merge branch 'main' into dependabot/npm_and_yarn/production-patch-52d…

3292a29

…ff010aa

Jym77 approved these changes May 11, 2026

View reviewed changes

Jym77 merged commit fe4507d into main May 11, 2026
5 checks passed

Jym77 deleted the dependabot/npm_and_yarn/production-patch-52dff010aa branch May 11, 2026 08:39

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the production-patch group across 1 directory with 6 updates#161

Bump the production-patch group across 1 directory with 6 updates#161
Jym77 merged 2 commits into
mainfrom
dependabot/npm_and_yarn/production-patch-52dff010aa

dependabot Bot commented on behalf of github May 10, 2026 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Commit	Description
	allow explicit read generic with signal input transforms
	i18n flags leaking on errors
	respect ngSkipHydration on components with projectable nodes in LContainers
	sanitizer typings
	validate security-sensitive attributes in i18n bindings
	visit ng-let expression value in signal migration schematics

Commit	Type	Description
fe13bb669d	fix	allow explicit read generic with signal input transforms
3430251fef	fix	i18n flags leaking on errors
1aeebbe304	fix	respect ngSkipHydration on components with projectable nodes in LContainers
9e38ed7d57	fix	sanitizer typings
7a05a9a71a	fix	validate security-sensitive attributes in i18n bindings
c37f6ca42f	fix	visit ng-let expression value in signal migration schematics

Commit	Type	Description
a9bcffdbc7	fix	disallow event attribute bindings in host bindings unconditionally (#68468)
97eeb45cfa	fix	validate security-sensitive attributes in i18n bindings (#68468)

Commit	Type	Description
2896c93cc1	feat	Angular expressions with optional chaining returns `undefined`
6bd1721662	fix	let declaration span not including end character

Commit	Type	Description
444b024d49	feat	Add a `injectAsync` helper function
8c11816490	fix	fix ordering of view queries metadata in JIT mode
3583c01bf9	fix	guard against non-object events and avoid listener wrapper identity mismatch
d5fd51e956	fix	prevent event replay double-invocation when element hydrates before app stability

Conversation

dependabot Bot commented on behalf of github May 10, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

19.2.6 (May 6th, 2026)

React Server Components

19.2.6 (May 6th, 2026)

React Server Components

21.2.12

core

forms

21.2.12 (2026-05-06)

core

forms

20.3.20 (2026-05-06)

core

platform-server

22.0.0-next.10 (2026-04-29)

common

compiler

core

migrations

21.2.12

core

forms

21.2.12 (2026-05-06)

core

forms

20.3.20 (2026-05-06)

core

platform-server

22.0.0-next.10 (2026-04-29)

common

compiler

core

migrations

21.2.12

core

forms

21.2.12 (2026-05-06)

core

forms

20.3.20 (2026-05-06)

core

platform-server

22.0.0-next.10 (2026-04-29)

common

compiler

core

migrations

21.2.12

core

forms

21.2.12 (2026-05-06)

core

forms

20.3.20 (2026-05-06)

core

platform-server

22.0.0-next.10 (2026-04-29)

common

compiler

core

migrations

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

dependabot Bot commented on behalf of github May 10, 2026 •

edited

Loading