chore(deps): lock file maintenance by renovate[bot] · Pull Request #228 · TanStack/pacer

renovate · 2026-06-01T00:44:07Z

This PR contains the following updates:

Update	Change
lockFileMaintenance	All locks refreshed

🔧 This Pull Request updates lock files to use the latest dependency versions.

Configuration

📅 Schedule: (UTC)

Branch creation
- Between 12:00 AM and 03:59 AM, on day 1 of the month (* 0-3 1 * *)
Automerge
- At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

coderabbitai · 2026-06-01T00:44:17Z

Important

Review skipped

Review was skipped due to path filters

⛔ Files ignored due to path filters (1)

pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

CodeRabbit blocks several paths by default. You can override this behavior by explicitly including those paths in the path filters. For example, including **/dist/** will override the default block on the dist directory, by removing the pattern from both the lists.

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 6ffcc981-57c6-4d59-a222-099762cb1f21

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

Create PR with unit tests
Commit unit tests in branch renovate/lock-file-maintenance

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

socket-security · 2026-06-01T00:44:53Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	nx@22.7.5
	@tanstack/react-query-devtools@5.100.14
	@angular/cli@21.2.13
	@angular/core@21.2.15
	@angular/compiler@21.2.15
	@angular/platform-browser@21.2.15
	@angular/compiler-cli@21.2.15
	@angular/forms@21.2.15
	@angular/router@21.2.15
	tinyglobby@0.2.17
	@angular/build@21.2.13
	@types/react@19.2.15
	vitest@4.1.7
	@angular/common@21.2.15
	@types/node@25.9.1
	vite@8.0.14
	@tanstack/react-query@5.100.14
	tsdown@0.22.1
	eslint@10.4.1
	dayjs@1.11.21
	@vitejs/plugin-react@6.0.2
	solid-js@1.9.13
	preact@10.29.2
	knip@6.14.2
	@eslint-react/eslint-plugin@5.8.7

View full report

socket-security · 2026-06-01T00:44:54Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		Obfuscated code: npm `markdown-it` is 91.0% likely obfuscated Confidence: 0.91 Location: Package overview From: pnpm-lock.yaml → `npm/@tanstack/[email protected]` → `npm/[email protected]` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `[email protected]`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/[email protected]`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `svelte` is 91.0% likely obfuscated Confidence: 0.91 Location: Package overview From: pnpm-lock.yaml → `npm/[email protected]` → `npm/[email protected]` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `[email protected]`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/[email protected]`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Low adoption: npm `@humanfs/types` Location: Package overview From: pnpm-lock.yaml → `npm/[email protected]` → `npm/@humanfs/[email protected]` ℹ Read more on: This package \| This alert \| What are unpopular packages? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `[email protected]`. Suggestion: Unpopular packages may have less maintenance and contain other problems. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@humanfs/[email protected]`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

nx-cloud · 2026-06-01T00:44:55Z

View your CI Pipeline Execution ↗ for commit 144212a

Command	Status	Duration	Result
`nx run-many --targets=build --exclude=examples/**`	✅ Succeeded	16s	View ↗

☁️ Nx Cloud last updated this comment at 2026-06-01 00:44:57 UTC

pkg-pr-new · 2026-06-01T00:45:47Z

More templates

@tanstack/angular-pacer

npm i https://pkg.pr.new/@tanstack/angular-pacer@228

@tanstack/pacer

npm i https://pkg.pr.new/@tanstack/pacer@228

@tanstack/pacer-devtools

npm i https://pkg.pr.new/@tanstack/pacer-devtools@228

@tanstack/pacer-lite

npm i https://pkg.pr.new/@tanstack/pacer-lite@228

@tanstack/preact-pacer

npm i https://pkg.pr.new/@tanstack/preact-pacer@228

@tanstack/preact-pacer-devtools

npm i https://pkg.pr.new/@tanstack/preact-pacer-devtools@228

@tanstack/react-pacer

npm i https://pkg.pr.new/@tanstack/react-pacer@228

@tanstack/react-pacer-devtools

npm i https://pkg.pr.new/@tanstack/react-pacer-devtools@228

@tanstack/solid-pacer

npm i https://pkg.pr.new/@tanstack/solid-pacer@228

@tanstack/solid-pacer-devtools

npm i https://pkg.pr.new/@tanstack/solid-pacer-devtools@228

commit: 144212a

chore(deps): lock file maintenance

144212a

renovate Bot added the dependencies label Jun 1, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): lock file maintenance#228

chore(deps): lock file maintenance#228
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/lock-file-maintenance

renovate Bot commented Jun 1, 2026

Uh oh!

coderabbitai Bot commented Jun 1, 2026

Review skipped

Uh oh!

socket-security Bot commented Jun 1, 2026

Uh oh!

socket-security Bot commented Jun 1, 2026

Uh oh!

nx-cloud Bot commented Jun 1, 2026 •

edited

Loading

Uh oh!

pkg-pr-new Bot commented Jun 1, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Uh oh!

Conversation

renovate Bot commented Jun 1, 2026

Configuration

Uh oh!

coderabbitai Bot commented Jun 1, 2026

Review skipped

Uh oh!

socket-security Bot commented Jun 1, 2026

Uh oh!

socket-security Bot commented Jun 1, 2026

Uh oh!

nx-cloud Bot commented Jun 1, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

pkg-pr-new Bot commented Jun 1, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

nx-cloud Bot commented Jun 1, 2026 •

edited

Loading