Skip to content

build(deps): bump the minor-updates group across 1 directory with 8 updates#19

Open
dependabot[bot] wants to merge 1 commit into
Fireflyfrom
dependabot-npm_and_yarn-minor-updates-120a3f9b46
Open

build(deps): bump the minor-updates group across 1 directory with 8 updates#19
dependabot[bot] wants to merge 1 commit into
Fireflyfrom
dependabot-npm_and_yarn-minor-updates-120a3f9b46

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor

Bumps the minor-updates group with 8 updates in the / directory:

Package From To
@astrojs/cloudflare 14.0.0 14.1.2
@astrojs/compiler-rs 0.2.2 0.3.0
@expressive-code/plugin-collapsible-sections 0.43.1 0.44.0
@expressive-code/plugin-line-numbers 0.43.1 0.44.0
astro-expressive-code 0.43.1 0.44.0
pako 2.1.0 2.2.0
wrangler 4.102.0 4.107.1
tsx 4.22.4 4.23.0

Updates @astrojs/cloudflare from 14.0.0 to 14.1.2

Release notes

Sourced from @​astrojs/cloudflare's releases.

@​astrojs/cloudflare@​14.1.2

Patch Changes

  • #17323 4298883 Thanks @​ematipico! - Fixes build-time image optimization ignoring a custom image service registered by an integration

    Previously, when using imageService: 'compile' or imageService: 'custom', a custom image service was only respected if it was set directly in the image.service option of astro.config. If an integration registered the service instead, images were silently optimized with the default Sharp service at build time. A custom image service now transforms your images at build time no matter how it was configured.

  • #17323 4298883 Thanks @​ematipico! - Prebundles astro/components and the <ClientRouter /> transition runtime modules in the dev server environment so pages using them no longer trigger a mid-session dep optimizer reload, which caused React "Invalid hook call" errors in islands on the first request after a cold cache

  • #17323 4298883 Thanks @​ematipico! - Fixes an issue where vars weren't available at build time. Now the adapter loads vars from the Wrangler config so astro:env public variables resolve at build time

  • Updated dependencies []:

    • @​astrojs/underscore-redirects@​1.0.3

@​astrojs/cloudflare@​14.1.1

Patch Changes

  • Updated dependencies [eb6f97e]:
    • @​astrojs/internal-helpers@​0.10.1
    • @​astrojs/underscore-redirects@​1.0.3

@​astrojs/cloudflare@​14.1.0

Minor Changes

  • #17099 fdab7ce Thanks @​adamchal! - Adds configured image service support with the compile and custom options.

    The Cloudflare adapter supports various options that affect how images are processed for both pre-rendered and on-demand routes:

    • Setting imageService: 'compile' now ensures it is used for pre-rendered routes. When no custom image service is defined, the behavior remains unchanged.
    • With imageService: 'custom', assets are now processed at build time for pre-rendered routes. If you have configured an image service, it will be bundled to handle images at runtime; otherwise, the behavior remains unchanged.
    • The other imageService options remain unchanged.

    Learn more about the image service options available in the Cloudflare adapter guide.

Patch Changes

  • #17236 c411200 Thanks @​matthewp! - Prevents warnings in the Cloudflare adapter about optimizing the @astrojs/cloudflare/entrypoints/server module in dev.

  • #17249 02b73b0 Thanks @​ematipico! - Fixes an issue where the peerDependencies field used incorrect dependencies.

  • Updated dependencies []:

    • @​astrojs/underscore-redirects@​1.0.3

@​astrojs/cloudflare@​14.0.2

Patch Changes

  • #17049 ffceaa2 Thanks @​astrobot-houston! - Fixes prerender errors being silently swallowed when pages throw during rendering in workerd, causing astro build to exit 0 and emit truncated HTML. The response body is now fully buffered inside workerd before being sent back to the build process, so streaming errors are caught and surfaced as build failures with clear error messages.

  • Updated dependencies []:

    • @​astrojs/underscore-redirects@​1.0.3

... (truncated)

Changelog

Sourced from @​astrojs/cloudflare's changelog.

14.1.2

Patch Changes

  • #17323 4298883 Thanks @​ematipico! - Fixes build-time image optimization ignoring a custom image service registered by an integration

    Previously, when using imageService: 'compile' or imageService: 'custom', a custom image service was only respected if it was set directly in the image.service option of astro.config. If an integration registered the service instead, images were silently optimized with the default Sharp service at build time. A custom image service now transforms your images at build time no matter how it was configured.

  • #17323 4298883 Thanks @​ematipico! - Prebundles astro/components and the <ClientRouter /> transition runtime modules in the dev server environment so pages using them no longer trigger a mid-session dep optimizer reload, which caused React "Invalid hook call" errors in islands on the first request after a cold cache

  • #17323 4298883 Thanks @​ematipico! - Fixes an issue where vars weren't available at build time. Now the adapter loads vars from the Wrangler config so astro:env public variables resolve at build time

  • Updated dependencies []:

    • @​astrojs/underscore-redirects@​1.0.3

14.1.1

Patch Changes

  • Updated dependencies [eb6f97e]:
    • @​astrojs/internal-helpers@​0.10.1
    • @​astrojs/underscore-redirects@​1.0.3

14.1.0

Minor Changes

  • #17099 fdab7ce Thanks @​adamchal! - Adds configured image service support with the compile and custom options.

    The Cloudflare adapter supports various options that affect how images are processed for both pre-rendered and on-demand routes:

    • Setting imageService: 'compile' now ensures it is used for pre-rendered routes. When no custom image service is defined, the behavior remains unchanged.
    • With imageService: 'custom', assets are now processed at build time for pre-rendered routes. If you have configured an image service, it will be bundled to handle images at runtime; otherwise, the behavior remains unchanged.
    • The other imageService options remain unchanged.

    Learn more about the image service options available in the Cloudflare adapter guide.

Patch Changes

  • #17236 c411200 Thanks @​matthewp! - Prevents warnings in the Cloudflare adapter about optimizing the @astrojs/cloudflare/entrypoints/server module in dev.

  • #17249 02b73b0 Thanks @​ematipico! - Fixes an issue where the peerDependencies field used incorrect dependencies.

  • Updated dependencies []:

    • @​astrojs/underscore-redirects@​1.0.3

14.0.2

Patch Changes

  • #17049 ffceaa2 Thanks @​astrobot-houston! - Fixes prerender errors being silently swallowed when pages throw during rendering in workerd, causing astro build to exit 0 and emit truncated HTML. The response body is now fully buffered inside workerd before being sent back to the build process, so streaming errors are caught and surfaced as build failures with clear error messages.

... (truncated)

Commits

Updates @astrojs/compiler-rs from 0.2.2 to 0.3.0

Release notes

Sourced from @​astrojs/compiler-rs's releases.

@​astrojs/compiler-rs@​0.3.0

Minor Changes

  • 7116c0c: The compiler now needs Node.js v22.12.0 a minimum version.
  • 7116c0c: The compiler now ships only ESM modules.

Patch Changes

  • 6bde0ca: Fixes backslashes being dropped from attribute values, such as <input pattern="^example\.com$" /> rendering as ^example.com$. Backslashes are now kept in element attributes, component props, and set:html.
  • 9abf779: Fix handling JSX in object literal
  • 0ec1a02: Fix :global() being silently ignored when its selector starts with a combinator
  • 6bde0ca: Fixes unquoted attribute values containing a / failing to compile, such as URLs like <a href=https://example.com/path> or root-relative paths like <img src=/logo.png>. Values containing =, quotes, or backticks are also no longer cut short.
  • Updated dependencies [6bde0ca]
  • Updated dependencies [6bde0ca]
    • @​astrojs/compiler-binding@​0.3.0

@​astrojs/compiler-rs@​0.2.3

Patch Changes

  • 6a56dea: Fixes several cases of adjacent JSX elements inside a {...} expression acting weirdly, including:

    • HTML comments between the elements now render instead of being dropped, including when a comment is on its own line.
    • Whitespace between the elements is preserved.
    • A <script> that is not the first element no longer fails to parse when its body contains an HTML closing tag inside a template literal.
  • c5b8921: Fixes compact mode not collapsing whitespace inside component and custom-element slot content.

  • fd756ce: Fixes several cases where await failed to make the generated code async, producing invalid JavaScript.

  • 7bd7e32: Fixes a parse error on {{ ... }} shorthand attributes containing an object expression, such as <Debug {{ answer: sum(2, 4) }} />. These now compile correctly instead of suggesting to use a spread attribute.

  • 6a56dea: Fixes a <style> nested in a {...} expression (e.g. {cond && <style>…</style>}) being silently dropped from the output.

  • 8b6d424: Fixes an "Invalid Character" error on unquoted attribute values that start with # followed by a digit, such as <div color=#18b218 />. Unquoted hex colors now parse correctly.

  • Updated dependencies [6a56dea]

  • Updated dependencies [c5b8921]

  • Updated dependencies [fd756ce]

  • Updated dependencies [7bd7e32]

  • Updated dependencies [6a56dea]

  • Updated dependencies [8b6d424]

    • @​astrojs/compiler-binding@​0.2.3
Commits
  • 64111e1 Version Packages (#59)
  • 0ec1a02 Fix wrong handling of combinators inside :global() (#61)
  • 7116c0c refactor: use tsdown (#57)
  • 5213182 fix: format
  • 6bde0ca feat: update unquoted attribute scoping behavior
  • 9abf779 JSX in object literal transforms incorrectly (#58)
  • ae77a69 Version Packages (#55)
  • 955e966 ci: remove feat/rust from CI
  • 1a8589c ignore idea folder
  • 6a56dea fix: handle styles, comments, and adjacent elements inside expressions
  • Additional commits viewable in compare view

Updates @expressive-code/plugin-collapsible-sections from 0.43.1 to 0.44.0

Release notes

Sourced from @​expressive-code/plugin-collapsible-sections's releases.

@​expressive-code/plugin-collapsible-sections@​0.44.0

Patch Changes

  • @​expressive-code/core@​0.44.0
Changelog

Sourced from @​expressive-code/plugin-collapsible-sections's changelog.

0.44.0

Patch Changes

  • @​expressive-code/core@​0.44.0
Commits

Updates @expressive-code/plugin-line-numbers from 0.43.1 to 0.44.0

Release notes

Sourced from @​expressive-code/plugin-line-numbers's releases.

@​expressive-code/plugin-line-numbers@​0.44.0

Patch Changes

  • @​expressive-code/core@​0.44.0
Changelog

Sourced from @​expressive-code/plugin-line-numbers's changelog.

0.44.0

Patch Changes

  • @​expressive-code/core@​0.44.0
Commits

Updates astro-expressive-code from 0.43.1 to 0.44.0

Release notes

Sourced from astro-expressive-code's releases.

[email protected]

Minor Changes

  • 9169010: Adds support for Astro v7 and Sätteri v0.9

Patch Changes

Changelog

Sourced from astro-expressive-code's changelog.

0.44.0

Minor Changes

  • 9169010: Adds support for Astro v7 and Sätteri v0.9

Patch Changes

Commits

Updates pako from 2.1.0 to 2.2.0

Changelog

Sourced from pako's changelog.

[2.2.0] - 2026-06-22

Added

  • Alternate deflate hash (ANZAC++) - for nodejs zlib compatibility. A nice bonus ~ 40% speed boost.
  • legacyHash (default: true) deflate option, to switch between original zlib and nodejs binary-compatible output.

Fixed

  • Inflate: fix window not updated after inflateReset (multistream/bgzip), #139.
  • Inflate: emit chunk on flush, #259.
  • Inflate: only continue to next stream for gzip; error on truncated input.
Commits
  • c743a32 2.2.0 released
  • 3be309c dist rebuild
  • 18cbb09 Changelog update
  • f48f81a Improve zlib coverage
  • dd7fdae Improve wrappers coverage
  • 81d3a54 Reorganize tests layout
  • 377845b Use old (zlib) hash by default, until new major release
  • 57a4363 Move wrapper options to separate struct
  • f89d31f Remove orphaned file
  • edf1f60 Inflate: only continue to next stream for gzip; error on truncated input
  • Additional commits viewable in compare view

Updates wrangler from 4.102.0 to 4.107.1

Release notes

Sourced from wrangler's releases.

[email protected]

Patch Changes

  • #14514 d88555e Thanks @​dependabot! - Update dependencies of "miniflare", "wrangler"

    The following dependency versions have been updated:

    Dependency From To
    workerd 1.20260701.1 1.20260702.1
  • #14564 5fd8bee Thanks @​jibin7jose! - Fix an issue where wrangler dev would not override config vars with values from .dev.vars during local development when the secrets field was defined in the configuration file.

  • #14332 5d9990e Thanks @​Divkix! - Fix misleading error guidance when deploying a new Worker with secrets.required

    When a Worker declares secrets.required and has never been deployed before, the previous error message suggested running wrangler secret put <NAME>, which doesn't work because the Worker doesn't exist yet.

    The one path that does work — wrangler deploy --secrets-file <path> — was not mentioned anywhere in the error output.

    The pre-deploy error now explains that wrangler secret put cannot be used for a new Worker, and directs users to the --secrets-file flag instead. The post-deploy error for existing Workers now also mentions --secrets-file alongside wrangler secret put.

  • #14507 bf49a41 Thanks @​joey727! - Fix a potential crash when displaying certain CLI output

    Previously, some CLI output with no content lines could cause a crash. This is now handled correctly.

  • #14492 1ac96a1 Thanks @​penalosa! - Replace the CommonJS xdg-app-paths dependency with a vendored pure-ESM implementation

    xdg-app-paths (and its xdg-portable/os-paths dependencies) are CommonJS only, which caused "Dynamic require of 'path' is not supported" errors when the surrounding code was bundled to ESM. The global config/cache directory resolution is now provided by a small, dependency-free pure-ESM module in @cloudflare/workers-utils that reproduces the previous path resolution exactly (verified against the real package in unit tests), so existing config and credential locations are unchanged. This also drops the transitive fsevents optional dependency that xdg-app-paths pulled in.

    Miniflare and create-cloudflare now consume the shared helpers from @cloudflare/workers-utils instead of maintaining their own copies, importing node-only leaf entry points (@cloudflare/workers-utils/fs-helpers, @cloudflare/workers-utils/global-wrangler-config-path) where ESM bundling is required.

  • #14572 f416dd9 Thanks @​petebacondarwin! - Key local rate limit counters by namespace_id instead of binding name

    wrangler dev and Miniflare previously tracked each rate limit binding's counter by its binding name, so two bindings that referenced the same namespace_id were treated as separate limiters. Counters are now keyed by namespace_id, matching production: bindings that share a namespace_id share a limit, while distinct namespaces stay isolated. This also re-enables rate limit bindings in multiworker wrangler dev sessions, where they were previously stripped from secondary Workers to avoid a startup crash.

  • #14570 1ca8d8f Thanks @​penalosa! - Upgrade signal-exit from v3 to v4

    The bundled signal-exit dependency was CJS-only. Upgrading to v4 (which ships a dual ESM/CJS build) unblocks ESM output. Exit-cleanup behaviour is unchanged, though v4 no longer registers handlers for a few signals that are no longer supported by the OS (SIGUNUSED on Linux; SIGABRT/SIGALRM on Windows).

  • #14561 b973ed3 Thanks @​martijnwalraven! - Emit an error event for watch-mode rebuild failures in unstable_startWorker

    Initial build failures already dispatch an error event (surfaced as buildFailed on the DevEnv bus), but watch-mode rebuild failures were only logged from inside the esbuild plugin, so programmatic consumers had no way to observe them while dev kept serving the previous bundle. Rebuild failures now route through the same error path as initial-build failures: terminal output is unchanged and buildFailed fires symmetrically.

  • Updated dependencies [e7e5780, d88555e, 1ac96a1, f416dd9, 16fbf81]:

[email protected]

Minor Changes

... (truncated)

Commits
  • c5d5e89 Version Packages (#14536)
  • 5fd8bee fix(wrangler): override config vars with .dev.vars when secrets is de… (#14564)
  • f416dd9 [miniflare] Key local rate limit counters by namespace_id (#14572)
  • b973ed3 fix(wrangler): emit an error event for watch-mode rebuild failures (#14561)
  • b8439fb [miniflare][wrangler] Fix Windows CI flakes: local-explorer ECONNRESET retry,...
  • 1ca8d8f [wrangler] Upgrade signal-exit to v4 for ESM compatibility (#14570)
  • 5d9990e [wrangler] Fix first-deploy guidance for required secrets (#14332)
  • bf49a41 [wrangler] Fix drawBox crash on empty content array (#14507)
  • 421ae96 [wrangler] Add unit tests for shell-quote and source-maps utilities (#14508)
  • 1ac96a1 [workers-utils] Replace CJS xdg-app-paths with a vendored pure-ESM implementa...
  • Additional commits viewable in compare view

Updates tsx from 4.22.4 to 4.23.0

Release notes

Sourced from tsx's releases.

v4.23.0

4.23.0 (2026-07-03)

Bug Fixes

Features


This release is also available on:

v4.22.5

4.22.5 (2026-07-02)

Bug Fixes

  • isolate hook state per async module.register() registration (a305f36)

This release is also available on:

Commits
  • 1dfad37 docs: cite esbuild's extension-resolution model in node notes
  • 257bbbb fix: avoid redundant filesystem probes during module resolution
  • c178197 feat: add multi-scenario startup benchmark suite
  • 51800ac docs: add Node internals knowledge base (notes/node)
  • a305f36 fix: isolate hook state per async module.register() registration
  • ca501a9 chore: upgrade skills-npm to v1.2.0
  • 596cd1f test: cover __dirname, __filename, & require.cache in CJS TS file
  • 75d9bf0 test: lock in lenient ESM for ambiguous and CJS-typed packages
  • 1472f3e test: cover ESM-syntax dependency with omitted "type" field
  • See full diff in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 6, 2026
@dependabot dependabot Bot force-pushed the dependabot-npm_and_yarn-minor-updates-120a3f9b46 branch from b05a400 to 72360a7 Compare July 9, 2026 11:06
…pdates

---
updated-dependencies:
- dependency-name: "@astrojs/cloudflare"
  dependency-version: 14.1.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-updates
- dependency-name: "@astrojs/compiler-rs"
  dependency-version: 0.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-updates
- dependency-name: "@expressive-code/plugin-collapsible-sections"
  dependency-version: 0.44.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-updates
- dependency-name: "@expressive-code/plugin-line-numbers"
  dependency-version: 0.44.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-updates
- dependency-name: astro-expressive-code
  dependency-version: 0.44.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-updates
- dependency-name: pako
  dependency-version: 2.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-updates
- dependency-name: tsx
  dependency-version: 4.23.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minor-updates
- dependency-name: wrangler
  dependency-version: 4.107.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-updates
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot Bot force-pushed the dependabot-npm_and_yarn-minor-updates-120a3f9b46 branch from 72360a7 to 984952d Compare July 13, 2026 10:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants