chore(deps): Bump the arcjet-apps-major group across 1 directory with 8 updates #699

dependabot · 2025-10-23T22:17:07Z

Bumps the arcjet-apps-major group with 8 updates in the / directory:

Package	From	To
@ai-sdk/openai	`1.3.24`	`2.0.53`
@astrojs/vercel	`8.2.7`	`9.0.0`
@faker-js/faker	`9.9.0`	`10.1.0`
@langchain/community	`0.3.56`	`1.0.0`
ai	`4.3.19`	`5.0.77`
next	`15.5.3`	`16.0.0`
pino	`9.13.1`	`10.1.0`
type-fest	`4.41.0`	`5.1.0`

Updates @ai-sdk/openai from 1.3.24 to 2.0.53

Release notes

Sourced from @ai-sdk/openai's releases.

@ai-sdk/openai@2.0.53

Patch Changes

5464bf0: fix(provider/openai): add truncation parameter support for Responses API

@ai-sdk/openai-compatible@2.0.0-beta.21

Patch Changes

Updated dependencies [fca786b]

@ai-sdk/provider-utils@4.0.0-beta.20

Commits

55efdc6 Version Packages (#9660)
80e3446 Backport: docs: Add useObject composable to vue README (#9658)
5464bf0 Backport: fix(provider/openai): support truncation parameter (#9657)
c022d63 Backport: docs: update recommended model from GPT-4 to GPT-5 (#9628)
c659347 Backport: docs(cerebras): update model table with new models and remove depre...
6eb8f84 Version Packages (#9625)
28c9c6a Backport: feat(provider/anthropic): add prompt caching validation (#9614)
cca0391 Backport: docs: fix pruneMessages syntax error (#9622)
4da3675 Backport: chore(docs): Update anthropic provider page with `disableParallelTo...
9a6f245 Version Packages (#9616)
Additional commits viewable in compare view

Updates @astrojs/vercel from 8.2.7 to 9.0.0

Release notes

Sourced from @astrojs/vercel's releases.

@astrojs/vercel@8.2.11

Patch Changes

#14570 c96711d Thanks @matthewp! - Fix regression in 8.2.7: validate densities-based srcset widths against configured sizes

When using densities with the Vercel image adapter, calculated widths were not being validated against Vercel's configured sizes list. This caused images to fail when using densities, as Vercel would reject the invalid widths.

This fix ensures densities-calculated widths are mapped to valid configured sizes, matching the behavior already implemented for the widths prop.

@astrojs/vercel@8.2.10

Patch Changes

#14536 9261996 Thanks @florian-lefebvre! - Fixes a bug that caused too many files to be bundled in SSR

@astrojs/vercel@8.2.9

Patch Changes

#14473 d9634d3 Thanks @florian-lefebvre! - Fixes a bug that caused too many files to be bundled in SSR

Updated dependencies [b8ca69b]:

@astrojs/internal-helpers@0.7.4

@astrojs/vercel@8.2.8

Patch Changes

Updated dependencies [1e2499e]:

@astrojs/internal-helpers@0.7.3

Changelog

Sourced from @astrojs/vercel's changelog.

9.0.0

Major Changes

#14555 5601357 Thanks @jacobdalamb! - Updates Node v18 'retiring' notice to 'deprecated' for Vercel adapter.

Minor Changes

#14543 9b3241d Thanks @matthewp! - Enables skew protection for Astro sites deployed on Vercel. Skew protection ensures that your site's client and server versions stay synchronized during deployments, preventing issues where users might load assets from a newer deployment while the server is still running the older version.

Skew protection is automatically enabled on Vercel deployments when the VERCEL_SKEW_PROTECTION_ENABLED environment variable is set to 1. The deployment ID is automatically included in both asset requests and API calls, allowing Vercel to serve the correct version to every user.

8.2.11

Patch Changes

#14570 c96711d Thanks @matthewp! - Fix regression in 8.2.7: validate densities-based srcset widths against configured sizes

When using densities with the Vercel image adapter, calculated widths were not being validated against Vercel's configured sizes list. This caused images to fail when using densities, as Vercel would reject the invalid widths.

This fix ensures densities-calculated widths are mapped to valid configured sizes, matching the behavior already implemented for the widths prop.

8.2.10

Patch Changes

#14536 9261996 Thanks @florian-lefebvre! - Fixes a bug that caused too many files to be bundled in SSR

8.2.9

Patch Changes

#14473 d9634d3 Thanks @florian-lefebvre! - Fixes a bug that caused too many files to be bundled in SSR

Updated dependencies [b8ca69b]:

@astrojs/internal-helpers@0.7.4

8.2.8

Patch Changes

Updated dependencies [1e2499e]:

@astrojs/internal-helpers@0.7.3

Commits

See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @astrojs/vercel since your current version.

Updates @faker-js/faker from 9.9.0 to 10.1.0

Release notes

Sourced from @faker-js/faker's releases.

v10.1.0

What's Changed

docs: add note about Jest incompatibility to UPGRADING by @matthewmayer in faker-js/faker#3609

refactor(image): mark loremflickr as deprecated, use only picsum photos in url() by @matthewmayer in faker-js/faker#3610

fix(locale): fix the Spring Airlines IATA Code by @Zhengxing-Gu in faker-js/faker#3612

docs: add info for seeding dates by @dbartholomae in faker-js/faker#3520

feat(locale): Add ku_ckb locale by @arentalb in faker-js/faker#3441

feat(locale): add Russian localization for book module by @gauravarora in faker-js/faker#3628

chore(deps): update dependency typescript to v5.9.3 by @renovate[bot] in faker-js/faker#3621

chore(deps): update actions/github-script action to v8 by @renovate[bot] in faker-js/faker#3625

chore(deps): update all non-major dependencies by @renovate[bot] in faker-js/faker#3622

chore(deps): update dependency ts-morph to v27 by @renovate[bot] in faker-js/faker#3627

chore(deps): update actions/setup-node action to v5 by @renovate[bot] in faker-js/faker#3626

chore: migrate to eslint defineConfig by @Shinigami92 in faker-js/faker#3632

chore(deps): update eslint by @renovate[bot] in faker-js/faker#3624

chore(deps): update devdependencies by @renovate[bot] in faker-js/faker#3623

chore(deps): update dependency @vitest/eslint-plugin to v1.3.20 by @renovate[bot] in faker-js/faker#3620

chore(release): 10.1.0 by @fakerjs-bot in faker-js/faker#3634

New Contributors

@Zhengxing-Gu made their first contribution in faker-js/faker#3612

@dbartholomae made their first contribution in faker-js/faker#3520

@arentalb made their first contribution in faker-js/faker#3441

@gauravarora made their first contribution in faker-js/faker#3628

Full Changelog: faker-js/faker@v10.0.0...v10.1.0

v10.0.0

New & Noteworthy

esm only (for cjs support look into migration guide, we got you covered 😉)

remove v9 deprecations

change default error strategy to 'fail' in word module

remove invalid credit card issuer patterns

see our migration guide

What's Changed

ci: use node 24 by @Shinigami92 in faker-js/faker#3543

infra: stop using node 18 by @Shinigami92 in faker-js/faker#3536

infra: use import.meta.dirname by @Shinigami92 in faker-js/faker#3542

chore(deps): update devdependencies (major) by @renovate[bot] in faker-js/faker#3512

chore(deps): update eslint by @renovate[bot] in faker-js/faker#3555

chore(deps): update dependency @vitest/eslint-plugin to v1.3.4 by @renovate[bot] in faker-js/faker#3554

chore(deps): update devdependencies by @renovate[bot] in faker-js/faker#3556

chore(deps): lock file maintenance by @renovate[bot] in faker-js/faker#3557

feat!: esm only by @Shinigami92 in faker-js/faker#3540

refactor!: remove deprecations by @Shinigami92 in faker-js/faker#3553

docs: migration guide for v10 by @matthewmayer in faker-js/faker#3559

infra: more precise engines field by @matthewmayer in faker-js/faker#3561

refactor(word)!: change default error strategy to 'fail' by @xDivisionByZerox in faker-js/faker#3560

... (truncated)

Changelog

Sourced from @faker-js/faker's changelog.

10.1.0 (2025-10-14)

New Locales

locale: Add ku_ckb locale (#3441) (9de894a)

locale: add Russian localization for book module (#3628) (428ff33)

Bug Fixes

locale: fix the Spring Airlines IATA Code (#3612) (b547045)

10.0.0 (2025-08-21)

New Locales

locale: extended list of colors in Polish (#3586) (9940d54)

Features

locales: add animal vocabulary(bear, bird, cat, rabbit, pet_name) in Korean (#3535) (0d2143c)

Changed Locales

locale: remove invalid credit card issuer patterns (#3568) (9783d95)

10.0.0-beta.0 (2025-07-09)

⚠ BREAKING CHANGES

word: change default error strategy to 'fail' (#3560)

remove deprecations (#3553)

esm only (#3540)

remove deprecations (#3553) (623d274)

word: change default error strategy to 'fail' (#3560) (93416f7)

Features

esm only (#3540) (160960b)

Commits

f81abc7 chore(release): 10.1.0 (#3634)
91561bc chore(deps): update dependency @vitest/eslint-plugin to v1.3.20 (#3620)
ab4b0d8 chore(deps): update devdependencies (#3623)
67617a6 chore(deps): update eslint (#3624)
bc6dd2f chore: migrate to eslint defineConfig (#3632)
08b03da chore(deps): update actions/setup-node action to v5 (#3626)
349490b chore(deps): update dependency ts-morph to v27 (#3627)
4f2506a chore(deps): update all non-major dependencies (#3622)
3737808 chore(deps): update actions/github-script action to v8 (#3625)
6d11fec chore(deps): update dependency typescript to v5.9.3 (#3621)
Additional commits viewable in compare view

Updates @langchain/community from 0.3.56 to 1.0.0

Release notes

Sourced from @langchain/community's releases.

@langchain/community==1.0.0

What's Changed

This release updates the package for compatibility with LangChain v1.0. See the v1.0 release notes for details on what's new.

Commits

822db85 release(*): 1.0.0 (#9226)
cacc137 fix(core): remove bad import map exports (#9229)
04e943f chore(mcp): move out of providers (#9227)
29f83dc chore(core,openai): add some missing chat model call keys (#9223)
57e6e74 feat(langchain/agents): canJumpTo hook param (#9218)
3cfc4fb fix(anthropic): default model options (#9221)
0c558fb chore(openai): reorg chat models (#9220)
401bb68 feat(langchain/agents): readd state schema param (#9217)
0c29928 fix(anthropic,openai): handle structured output with v1 output version (#9212)
1d95681 hitl middleware: use args not arguments (#9210)
Additional commits viewable in compare view

Updates ai from 4.3.19 to 5.0.77

Release notes

Sourced from ai's releases.

[email protected]

Patch Changes

3568ebc: feat(ai): add convertDataPart option to convertToModelMessages

Add optional convertDataPart callback for converting custom data parts (URLs, code files, etc.) to text or file parts that models can process. Fully type-safe using existing UIMessage generics.

Commits

8546087 Version Packages (#9751)
3568ebc Backport: feat(ai): add convertDataPart option to convertToModelMessages (#9748)
d27b88d Version Packages (#9747)
d6a831f Backport: feat(xai): Support parallel_function_calling provider option for ...
6cf639d Version Packages (#9744)
de1d309 Backport: fix(provider/anthropic): do not limit maxTokens when model id is un...
bfc7627 Version Packages (#9739)
5a46f11 Backport: feat(provider/anthropic): add return file_id property for anthrop...
50b138d Backport: update analyze scripts (#9727)
b9546f8 Backport: build: fix analyze-versions.ts script (#9725)
Additional commits viewable in compare view

Updates next from 15.5.3 to 16.0.0

Release notes

Sourced from next's releases.

v16.0.0

[!TIP]
Check out our Next v16 Blog Post to learn more about this release.

Core Changes

Development: Don't import app-router / hot-reloader through next/link in application code: #83656

Remove clientParamParsing requirement from RDC for Navigations: #83661

Upgrade React from 6b70072c-20250909 to 886b3d36-20250910: #83650

Turbopack: Use readFileSync / writeFileSync for manifest writing: #83694

Upgrade React from 886b3d36-20250910 to f3a80361-20250911: #83696

Don't create client-side debug channel if the feature is disabled: #83699

fix: dev should produce the correct default fallback regex to match builds/Turbopack: #83701

[devtool] fix overlay styles are missing: #83721

Revert "Remove clientParamParsing requirement from RDC for Navigations": #83725

Only enable unhandledRejection filtering when opted in: #83726

Fix index data route for adapter build-complete: #83730

Remove leading underscore for unhandledRejection envvar: #83732

Upgrade React from f3a80361-20250911 to 93d7aa69-20250912: #83729

Upgrade React from 93d7aa69-20250912 to 8a8e9a7e-20250912: #83742

Fix reentrancy of unhandledRejection filtering: #83741

Fix type for unhandled rejection handler process.removeListener: #83748

[OTel] fix: Root span name should not include high cardinality URL: #75416

Turbopack: Remove matchers.reload() call on each request: #83720

[Breaking] Flat config as default in @next/eslint-plugin-next: #83763

fix: Rspack splitChunks.chunks regex: #83670

Revert "Turbopack: Remove matchers.reload() call on each request": #83819

fix: unstable_cache should perform blocking revalidation during ISR revalidation: #83820

fix(Rspack): resolve HMR unresponsiveness or unexpected full reload & update dev snapshot: #83480

Allow next.config.mts for Node.js native TS resolver: #83556

chore: Ensure Import Trace starts in a newline: #83638

Development: Remove matchers.reload() on each request: #83829

Upgrade React from 8a8e9a7e-20250912 to 5e0c951b-20250916: #83850

Bump typescript 5.9.2: #83833

Allow headers, rewrites and redirects to be defined as sync functions: #83743

Turbopack: Optimize addedRoutes and removedRoutes calculation: #83840

[next-config-ts] Set Node.js native TS loader fallback flag to process.env: #83832

Development: Clarify TypescriptStatus in watcher: #83857

Upgrade sharp dependency to version ^0.34.4: #83892

Upgrade React from 5e0c951b-20250916 to 128abcfa-20250917: #83906

Add native ts resolver docs link to transpile-config: #83914

OTel: use srcPage for templates when next.route is unavailable: #83911

Remove inline CSS sourcemaps from next-devtools: #83917

Development: Move all TypeScript related work in watcher together: #83912

[Cache Components] Allow sync IO inside console methods : #83843

Upgrade React from 128abcfa-20250917 to 84af9085-20250917: #83959

Build: Add .next/trace-build with high level trace: #83949

Remove force writing **/*.mts to tsconfig: #83967

feat: Isolate dev build from prod: #83961

Remove JS size reporting from next build: #83815

... (truncated)

Commits

950609f v16.0.0
fcc3157 v16.0.0-canary.19
c0b086c v16.0.0-canary.18
f770793 logger: skip logging full element (#85194)
074262b Only allow node runtime in proxy (#85139)
47ceda3 [cache components] persist cache bypass UI until it's disabled (#85190)
b66c1d6 Remove layout-router sticky/fixed debug warning (#85193)
96754b6 Tweaks to blocking route error message (#85191)
48bb490 docs: upgrade from 15 to 16 (#85176)
9b34b65 [upgrade] Version gate adding --turbopack flag (#85180)
Additional commits viewable in compare view

Updates pino from 9.13.1 to 10.1.0

Release notes

Sourced from pino's releases.

v10.1.0

What's Changed

test: add regression test for issue #2313 by @mcollina in pinojs/pino#2314

fix!: use safer types for censor function signature (#2307) by @slifty in pinojs/pino#2308

remove unused parsedChindingsSym symbol by @mcollina in pinojs/pino#2315

chore: add .npmignore to exclude unnecessary files by @mcollina in pinojs/pino#2312

chore(lint): migrate from standard to neostandard & upgrade eslint to v9 by @lokeshwar777 in pinojs/pino#2316

build(deps-dev): bump eslint-plugin-n from 15.7.0 to 17.23.1 by @dependabot[bot] in pinojs/pino#2305

Use @pinojs/redact by @mcollina in pinojs/pino#2321

fix: added missing isoTimeNano to nested namespace by @edge33 in pinojs/pino#2325

New Contributors

@slifty made their first contribution in pinojs/pino#2308

@lokeshwar777 made their first contribution in pinojs/pino#2316

Full Changelog: pinojs/pino@v10.0.0...v10.1.0

v10.0.0

The only breaking change is dropping support for Node 18.

What's Changed

feat(types): add LogFnFields by @samchungy in pinojs/pino#2254

Convert tests to node:test by @jsumners in pinojs/pino#2299

removed unused .taprc.yaml by @jsumners in pinojs/pino#2310

Full Changelog: pinojs/pino@v9.13.1...v10.0.0

v9.14.0

What's Changed

feat(types): add LogFnFields by @samchungy in pinojs/pino#2254

[v9.x] Update to pinojs redact by @mcollina in pinojs/pino#2322

Revert setlevel opt in 9.x by @mcollina in pinojs/pino#2323

Full Changelog: pinojs/pino@v9.13.1...v9.14.0

Commits

b248d2f Bumped v10.1.0
105a2c9 fix: added missing isoTimeNano to nested namespace (#2325)
4250665 Use @pinojs/redact (#2321)
8cb5a59 build(deps-dev): bump eslint-plugin-n from 15.7.0 to 17.23.1 (#2305)
b2c1408 chore(lint): migrate from standard to neostandard & upgrade eslint to v9 (#2316)
2b0bd9f chore: add .npmignore to exclude unnecessary files from npm package (#2312)
5e9d4f1 remove unused parsedChindingsSym symbol (#2315)
f220f1e fix!: use safer types for censor function signature (#2307) (#2308)
e12e9c2 test: add regression test for issue #2313 (#2314)
d15cdd6 Bumped v10.0.0
Additional commits viewable in compare view

Updates type-fest from 4.41.0 to 5.1.0

Release notes

Sourced from type-fest's releases.

v5.1.0

New types

TupleOf (#1247) 7fb2f75

Xor (#1254) ad04bc5

SplitOnRestElement (#1166) 34b8fad

ExtractRestElement (#1166) 34b8fad

ExcludeRestElement (#1166) 34b8fad

Improvements

ReadonlyTuple: Deprecate in favor of TupleOf (#1256) af4bebc

TsConfigJson: Add missing lib enum values (#1263) 72f491f

TsConfigJson: Add rewriteRelativeImportExtensions (#1262) 7d011ce

Fixes

PartialDeep: Fix behavior with functions containing multiple call signatures (#1259) 3bd9de6

IsEqual: Fix behaviour when instantiated with never and unknown (#1251) 785549f

FixedLengthArray: Fix element type (#1246) ee29ef7

is-equal: Fix handling with intersecting wrapped types (#1231) 5af60a1

sindresorhus/type-fest@v5.0.1...v5.1.0

v5.0.1

Add missing exports 4f9c248

sindresorhus/type-fest@v5.0.0...v5.0.1

v5.0.0

Breaking

This package is now pure ESM. Please read this.

Require TypeScript 5.9 b5b0214

Require Node.js 20 cc2b0f2

Reminder: type-fest requires strict: true in your tsconfig.

StringKeyOf: Rename to KeyAsString e492c9c

ArrayTail: Enable preserveReadonly by default and remove the option b34b1d8

CamelCase / CamelCasedProperties / CamelCasedPropertiesDeep / PascalCase / PascalCasedProperties / PascalCasedPropertiesDeep: Disable preserveConsecutiveUppercase by default 8226c1b

This aligns it with the general JavaScript naming convention.

PartialDeep: Disable allowUndefinedInNonTupleArrays by default b3c4524

Split: Enable strictLiteralChecks by default 544a846

Paths: Default maxRecursionDepth 5 (was 10) 2ab5dec

ObservableLike: Move to sub-export 2a1072e

Deprecate If* types in favor of a single If 4c2151a

... (truncated)

Commits

687a89d 5.1.0
7e7b5f7 Improve some descriptions
7698140 Ensure import-path lint rule works on re-exports (#1267)
34b8fad Add SplitOnRestElement, ExtractRestElement, ExcludeRestElement types (#...
72f491f TsConfigJson: Add missing lib enum values (#1263)
7d011ce TsConfigJson: Add rewriteRelativeImportExtensions (#1262)
ad04bc5 Add Xor type (#1254)
1d89f15 Fix Claude to not run in forks since it’s not supported by them yet
121980c Add Claude Code GitHub Workflow (#1255)
140b738 UnionToIntersection: Fix incorrect test case (#1260)
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

vercel · 2025-10-23T22:17:14Z

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Comments	Updated (UTC)
arcjet-docs	Error			Dec 11, 2025 10:16pm

socket-security · 2025-10-23T22:17:57Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Package	Supply Chain Security	Vulnerability	Quality	Maintenance
next@15.5.6 ⏵ 16.0.9		⁺⁷⁵		⁺⁴⁸
@astrojs/vercel@8.2.11 ⏵ 9.0.2			⁺¹	⁺¹
@ai-sdk/openai@1.3.24 ⏵ 2.0.84			⁺¹	⁺¹
@faker-js/faker@9.9.0 ⏵ 10.1.0			⁺¹²
@langchain/community@0.3.58 ⏵ 1.0.7	⁺¹		^-1
pino@10.1.0
type-fest@5.2.0 ⏵ 5.3.1			⁺¹
ai@4.3.19 ⏵ 5.0.112	⁺¹	⁺¹

View full report

socket-security · 2025-10-23T22:17:59Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		License policy violation: npm `next` under CC-BY-SA-4.0 License: CC-BY-SA-4.0 - the applicable license policy does not allow this license (4) (package/dist/compiled/glob/LICENSE) From: package-lock.json → `npm/[email protected]` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `[email protected]`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/[email protected]`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

… 8 updates Bumps the arcjet-apps-major group with 8 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@ai-sdk/openai](https://github.com/vercel/ai) | `1.3.24` | `2.0.53` | | [@astrojs/vercel](https://github.com/withastro/astro/tree/HEAD/packages/integrations/vercel) | `8.2.7` | `9.0.0` | | [@faker-js/faker](https://github.com/faker-js/faker) | `9.9.0` | `10.1.0` | | [@langchain/community](https://github.com/langchain-ai/langchainjs) | `0.3.56` | `1.0.0` | | [ai](https://github.com/vercel/ai) | `4.3.19` | `5.0.77` | | [next](https://github.com/vercel/next.js) | `15.5.3` | `16.0.0` | | [pino](https://github.com/pinojs/pino) | `9.13.1` | `10.1.0` | | [type-fest](https://github.com/sindresorhus/type-fest) | `4.41.0` | `5.1.0` | Updates `@ai-sdk/openai` from 1.3.24 to 2.0.53 - [Release notes](https://github.com/vercel/ai/releases) - [Changelog](https://github.com/vercel/ai/blob/main/CHANGELOG.md) - [Commits](https://github.com/vercel/ai/compare/@ai-sdk/[email protected]...@ai-sdk/[email protected]) Updates `@astrojs/vercel` from 8.2.7 to 9.0.0 - [Release notes](https://github.com/withastro/astro/releases) - [Changelog](https://github.com/withastro/astro/blob/main/packages/integrations/vercel/CHANGELOG.md) - [Commits](https://github.com/withastro/astro/commits/HEAD/packages/integrations/vercel) Updates `@faker-js/faker` from 9.9.0 to 10.1.0 - [Release notes](https://github.com/faker-js/faker/releases) - [Changelog](https://github.com/faker-js/faker/blob/next/CHANGELOG.md) - [Commits](faker-js/faker@v9.9.0...v10.1.0) Updates `@langchain/community` from 0.3.56 to 1.0.0 - [Release notes](https://github.com/langchain-ai/langchainjs/releases) - [Commits](https://github.com/langchain-ai/langchainjs/compare/@langchain/community==0.3.56...@langchain/community==1.0.0) Updates `ai` from 4.3.19 to 5.0.77 - [Release notes](https://github.com/vercel/ai/releases) - [Changelog](https://github.com/vercel/ai/blob/main/CHANGELOG.md) - [Commits](https://github.com/vercel/ai/compare/[email protected]@5.0.77) Updates `next` from 15.5.3 to 16.0.0 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v15.5.3...v16.0.0) Updates `pino` from 9.13.1 to 10.1.0 - [Release notes](https://github.com/pinojs/pino/releases) - [Commits](pinojs/pino@v9.13.1...v10.1.0) Updates `type-fest` from 4.41.0 to 5.1.0 - [Release notes](https://github.com/sindresorhus/type-fest/releases) - [Commits](sindresorhus/type-fest@v4.41.0...v5.1.0) --- updated-dependencies: - dependency-name: "@ai-sdk/openai" dependency-version: 2.0.53 dependency-type: direct:production update-type: version-update:semver-major dependency-group: arcjet-apps-major - dependency-name: "@astrojs/vercel" dependency-version: 9.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: arcjet-apps-major - dependency-name: "@faker-js/faker" dependency-version: 10.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: arcjet-apps-major - dependency-name: "@langchain/community" dependency-version: 1.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: arcjet-apps-major - dependency-name: ai dependency-version: 5.0.77 dependency-type: direct:production update-type: version-update:semver-major dependency-group: arcjet-apps-major - dependency-name: next dependency-version: 16.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: arcjet-apps-major - dependency-name: pino dependency-version: 10.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: arcjet-apps-major - dependency-name: type-fest dependency-version: 5.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: arcjet-apps-major ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2025-12-12T15:43:00Z

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Oct 23, 2025

dependabot bot requested a review from a team as a code owner October 23, 2025 22:17

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Oct 23, 2025

vercel bot had a problem deploying to Preview October 23, 2025 22:17 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from 8b4aa57 to b9c811f Compare October 24, 2025 22:21

vercel bot had a problem deploying to Preview October 24, 2025 22:22 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from b9c811f to 44b26cb Compare October 24, 2025 23:43

vercel bot had a problem deploying to Preview October 24, 2025 23:43 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from 44b26cb to 9c288d0 Compare October 27, 2025 23:11

vercel bot had a problem deploying to Preview October 27, 2025 23:12 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from 9c288d0 to 2ee3f28 Compare November 7, 2025 22:15

vercel bot had a problem deploying to Preview November 7, 2025 22:15 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from 2ee3f28 to 4815eda Compare November 17, 2025 22:40

vercel bot had a problem deploying to Preview November 17, 2025 22:40 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from 4815eda to fdd550d Compare November 20, 2025 22:18

vercel bot had a problem deploying to Preview November 20, 2025 22:18 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from fdd550d to ab6f906 Compare November 21, 2025 22:16

vercel bot had a problem deploying to Preview November 21, 2025 22:16 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from ab6f906 to 51a92c6 Compare November 26, 2025 22:15

vercel bot had a problem deploying to Preview November 26, 2025 22:16 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from 51a92c6 to 746c412 Compare December 2, 2025 01:30

vercel bot had a problem deploying to Preview December 2, 2025 01:31 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from 746c412 to 43a288c Compare December 2, 2025 22:17

vercel bot had a problem deploying to Preview December 2, 2025 22:18 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from 43a288c to 07ff43e Compare December 4, 2025 22:17

vercel bot had a problem deploying to Preview December 4, 2025 22:18 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from 07ff43e to d1fe170 Compare December 5, 2025 22:16

vercel bot had a problem deploying to Preview December 5, 2025 22:17 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from d1fe170 to 5d1b053 Compare December 10, 2025 22:16

vercel bot had a problem deploying to Preview December 10, 2025 22:17 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch from 5d1b053 to c720c79 Compare December 11, 2025 22:15

vercel bot had a problem deploying to Preview December 11, 2025 22:16 Failure

qw-in closed this Dec 12, 2025

dependabot bot deleted the dependabot/npm_and_yarn/arcjet-apps-major-67029fe820 branch December 12, 2025 15:43

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): Bump the arcjet-apps-major group across 1 directory with 8 updates #699

chore(deps): Bump the arcjet-apps-major group across 1 directory with 8 updates #699

Uh oh!

dependabot bot commented on behalf of github Oct 23, 2025 •

edited

Loading

Uh oh!

vercel bot commented Oct 23, 2025 •

edited

Loading

Uh oh!

socket-security bot commented Oct 23, 2025 •

edited

Loading

Uh oh!

socket-security bot commented Oct 23, 2025 •

edited

Loading

Uh oh!

dependabot bot commented on behalf of github Dec 12, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

chore(deps): Bump the arcjet-apps-major group across 1 directory with 8 updates #699

chore(deps): Bump the arcjet-apps-major group across 1 directory with 8 updates #699

Uh oh!

Conversation

dependabot bot commented on behalf of github Oct 23, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

@​ai-sdk/openai@​2.0.53

Patch Changes

@​ai-sdk/openai-compatible@​2.0.0-beta.21

Patch Changes

@​astrojs/vercel@​8.2.11

Patch Changes

@​astrojs/vercel@​8.2.10

Patch Changes

@​astrojs/vercel@​8.2.9

Patch Changes

@​astrojs/vercel@​8.2.8

Patch Changes

9.0.0

Major Changes

Minor Changes

8.2.11

Patch Changes

8.2.10

Patch Changes

8.2.9

Patch Changes

8.2.8

Patch Changes

v10.1.0

What's Changed

New Contributors

v10.0.0

New & Noteworthy

What's Changed

10.1.0 (2025-10-14)

New Locales

Bug Fixes

10.0.0 (2025-08-21)

New Locales

Features

Changed Locales

10.0.0-beta.0 (2025-07-09)

⚠ BREAKING CHANGES

Features

@​langchain/community==1.0.0

What's Changed

[email protected]

Patch Changes

v16.0.0

Core Changes

v10.1.0

What's Changed

New Contributors

v10.0.0

What's Changed

v9.14.0

What's Changed

v5.1.0

New types

Improvements

Fixes

v5.0.1

v5.0.0

Breaking

Uh oh!

vercel bot commented Oct 23, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

socket-security bot commented Oct 23, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

socket-security bot commented Oct 23, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

dependabot bot commented on behalf of github Dec 12, 2025

Uh oh!

Reviewers

Assignees

Labels

dependabot bot commented on behalf of github Oct 23, 2025 •

edited

Loading

`@ai-sdk/openai@2`.0.53

`@ai-sdk/openai-compatible@2`.0.0-beta.21

`@astrojs/vercel@8`.2.11

`@astrojs/vercel@8`.2.10

`@astrojs/vercel@8`.2.9

`@astrojs/vercel@8`.2.8

`@langchain/community`==1.0.0

vercel bot commented Oct 23, 2025 •

edited

Loading

socket-security bot commented Oct 23, 2025 •

edited

Loading

socket-security bot commented Oct 23, 2025 •

edited

Loading