Skip to content

build(deps): bump the npm group across 1 directory with 5 updates#9

Merged
ernolf merged 1 commit into
mainfrom
dependabot/npm_and_yarn/npm-ce51be2dde
Jul 10, 2026
Merged

build(deps): bump the npm group across 1 directory with 5 updates#9
ernolf merged 1 commit into
mainfrom
dependabot/npm_and_yarn/npm-ce51be2dde

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 10, 2026

Copy link
Copy Markdown
Contributor

Bumps the npm group with 4 updates in the / directory: @nextcloud/axios, @nextcloud/dialogs, vue and webpack.

Updates @nextcloud/axios from 2.5.2 to 2.6.0

Release notes

Sourced from @​nextcloud/axios's releases.

v2.6.0

2.6.0 - 2026-04-21

Notes

Deprecations

Axios.CancelToken is now deprecated, this was deprecated by upstream Axios since 0.22.0. Please migrate to the native AbortController API using the signal attribute within the Axios request configuration.

Behavior changes

This package now only contains Javascript module (ESM) files, meaning the CommonJS files have been dropped. All app bundling tools we provide and support (Vite or Webpack 5+) will keep working without any changes needed. For unit tests vitest will keep working as well, for Jest you might need to adjust the transformIgnorePatterns.

Fixed

  • fix: fetch token using @nextcloud/auth which updates the token on context (#913)
  • fix: axios does not preserve symbols in its config (#916)

Changed

  • Updated development dependencies
  • build(deps): Removed dependency on @nextcloud/router
  • build(deps): Added dependency on @nextcloud/auth 2.6.0+
  • build(deps): Bump axios to 1.15.0
  • ci: update all workflow templates from organization template repository (#905)
  • chore: deprecate Axios.CancelToken (#918)
  • chore: drop cjs and migrate building to vanilla Typescript (#919)
Changelog

Sourced from @​nextcloud/axios's changelog.

2.6.0 - 2026-04-16

Notes

Deprecations

Axios.CancelToken is now deprecated, this was deprecated by upstream Axios since 0.22.0. Please migrate to the native AbortController API using the signal attribute within the Axios request configuration.

Behavior changes

This package now only contains Javascript module (ESM) files, meaning the CommonJS files have been dropped. All app bundling tools we provide and support (Vite or Webpack 5+) will keep working without any changes needed. For unit tests vitest will keep working as well, for Jest you might need to adjust the transformIgnorePatterns.

Fixed

  • fix: fetch token using @nextcloud/auth which updates the token on context (#913)
  • fix: axios does not preserve symbols in its config (#916)

Changed

  • Updated development dependencies
  • build(deps): Removed dependency on @nextcloud/router
  • build(deps): Added dependency on @nextcloud/auth 2.6.0+
  • build(deps): Bump axios to 1.15.0
  • ci: update all workflow templates from organization template repository (#905)
  • chore: deprecate Axios.CancelToken (#918)
  • chore: drop cjs and migrate building to vanilla Typescript (#919)
Commits
  • 06dfd2b Merge pull request #920 from nextcloud-libraries/chore/prepare-v2-6-0
  • 7f9f1df chore: prepare v2.6.0
  • f0c1df1 Merge pull request #919 from nextcloud-libraries/chore/typescript
  • 21833ab chore: drop cjs and migrate building to vanilla Typescript
  • e1ddc89 Merge pull request #913 from nextcloud-libraries/fix/fetch-and-set-token
  • 96588b9 fix: fetch token using @nextcloud/auth which updates the token on context
  • c35a05c Merge pull request #916 from nextcloud-libraries/fix/axios
  • 6a4c5c5 fix: axios does not preserve symbols in config
  • 987e803 test: rename folder to comply with internal standards
  • 07b285d test: migrate tests for real browser tests using vitest browsermode +MSW
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​nextcloud/axios since your current version.


Updates @nextcloud/dialogs from 7.3.0 to 7.4.0

Release notes

Sourced from @​nextcloud/dialogs's releases.

v7.4.0

v7.4.0

Added

  • feat(ConflictPicker): allow to set overwrite flag (#2432)

Fixed

  • fix(FilePicker): Round previews in filepicker dialog (#2397)
  • fix(FilePicker): reset filter string when navigating (#2384)

Changed

  • Updated translations
  • Updated developer dependencies
  • chore: add explicit types for public API (#2426)
Changelog

Sourced from @​nextcloud/dialogs's changelog.

v7.4.0

Added

  • feat(ConflictPicker): allow to set overwrite flag (#2432)

Fixed

  • fix(FilePicker): Round previews in filepicker dialog (#2397)
  • fix(FilePicker): reset filter string when navigating (#2384)

Changed

  • Updated translations
  • Updated developer dependencies
  • chore: add explicit types for public API (#2426)
Commits
  • baaa80d Merge pull request #2433 from nextcloud-libraries/chore/release-7-4
  • 5d2b8c5 chore: prepare v7.4.0
  • 14d4e1e Merge pull request #2426 from nextcloud-libraries/chore/types
  • 8036060 Merge pull request #2432 from nextcloud-libraries/feat/allow-setting-overwrite
  • ad95491 feat(ConflictPicker): allow to set overwrite flag
  • df04aa6 chore: handle .scss sideeffect imports
  • 44c2149 chore: add explicit types for public API
  • 4780816 Merge pull request #2428 from nextcloud-libraries/dependabot/npm_and_yarn/mai...
  • 22f180c Merge pull request #2427 from nextcloud-libraries/dependabot/npm_and_yarn/mai...
  • 440a62f chore(deps-dev): bump the vitest group across 1 directory with 2 updates
  • Additional commits viewable in compare view

Updates @nextcloud/vue from 9.5.0 to 9.8.2

Release notes

Sourced from @​nextcloud/vue's releases.

v9.8.2

v9.8.2 (2026-06-02)

Full Changelog

What's Changed

🐛 Fixed bugs

  • fix(build): include full package version for CSS hash prefix #8580 (Antreesy)

Other Changes

  • Updated dependencies

v9.8.1

v9.8.1 (2026-05-28)

Full Changelog

What's Changed

🐛 Fixed bugs

  • fix: use correct boundaries of CSS breakpoints #8520 (susnux)
  • fix(NcAppSidebarTab): Reduce pill height #8547 (kra-mo)
  • fix(NcAppContent): background blur may be missing after minification #8544 (ShGKme)
  • fix(NcRichText): handle new lines when parsing reference links #8565 (Antreesy)
  • fix(NcAppNavigationItem): Make active state darker than hover #8557 (backportbot[bot])

Other Changes

  • Updated translations

v9.8.0

v9.8.0 (2026-05-07)

Full Changelog

What's Changed

🚀 Enhancements

  • feat: Semantic font weights for interactive elements #8469 (kra-mo)
  • feat: change NcAppNavigationItem/NcListItem active state design and NcAppContent edge style on Nextcloud 34+ #8448 #8513 (nfebe)
  • feat(NcAppSidebarTab): Redesign active tab as rounded filled pill #8447 (nfebe)
  • feat(NcAppSettingsDialog): new navigation design #8477 (nfebe)

v9.7.0

v9.7.0 (2026-04-24)

Full Changelog

📝 Notes

  • NcRichText component used with useMarkdown = true or useExtendedMarkdown = true no longer renders relative links that can not be resolved by Vue Router. They are might interfere with routing logic and considered not belonging to the application. Examples that are not rendered as a clickable link:
    • [unknown protocols](https://github.com/nextcloud-libraries/nextcloud-vue/blob/HEAD/unknown:protocol)
    • [unresolved relative link](https://github.com/nextcloud-libraries/nextcloud-vue/blob/HEAD/internal_route)
    • [relative parameters](https://github.com/nextcloud-libraries/nextcloud-vue/blob/HEAD/?parameters=1)
    • [relative anchor](https://github.com/nextcloud-libraries/nextcloud-vue/blob/HEAD/#anchor)

🚀 Enhancements

  • feat(NcRichContenteditable): allow to pass menuContainer as string #8417 (Antreesy)

... (truncated)

Changelog

Sourced from @​nextcloud/vue's changelog.

v9.8.2 (2026-06-02)

Full Changelog

What's Changed

🐛 Fixed bugs

  • fix(build): include full package version for CSS hash prefix #8580 (Antreesy)

Other Changes

  • Updated dependencies

v9.8.1 (2026-05-28)

Full Changelog

What's Changed

🐛 Fixed bugs

  • fix: use correct boundaries of CSS breakpoints #8520 (susnux)
  • fix(NcAppSidebarTab): Reduce pill height #8547 (kra-mo)
  • fix(NcAppContent): background blur may be missing after minification #8544 (ShGKme)
  • fix(NcRichText): handle new lines when parsing reference links #8565 (Antreesy)
  • fix(NcAppNavigationItem): Make active state darker than hover #8557 (backportbot[bot])

Other Changes

  • Updated translations

v9.8.0 (2026-05-07)

Full Changelog

What's Changed

🚀 Enhancements

  • feat: Semantic font weights for interactive elements #8469 (kra-mo)
  • feat: change NcAppNavigationItem/NcListItem active state design and NcAppContent edge style on Nextcloud 34+ #8448 (nfebe)
  • feat(NcAppSidebarTab): Redesign active tab as rounded filled pill #8447 (nfebe)
  • feat(NcAppSettingsDialog): new navigation design #8477 (nfebe)

v9.7.0 (2026-04-24)

Full Changelog

📝 Notes

  • NcRichText component used with useMarkdown = true or useExtendedMarkdown = true no longer renders relative links that can not be resolved by Vue Router. They are might interfere with routing logic and considered not belonging to the application. Examples that are not rendered as a clickable link:
    • [unknown protocols](https://github.com/nextcloud-libraries/nextcloud-vue/blob/main/unknown:protocol)
    • [unresolved relative link](https://github.com/nextcloud-libraries/nextcloud-vue/blob/main/internal_route)
    • [relative parameters](https://github.com/nextcloud-libraries/nextcloud-vue/blob/main/?parameters=1)
    • [relative anchor](https://github.com/nextcloud-libraries/nextcloud-vue/blob/main/#anchor)

🚀 Enhancements

  • feat(NcRichContenteditable): allow to pass menuContainer as string #8417 (Antreesy)

🐛 Fixed bugs

  • fix(NcCheckboxRadioSwitch): use reactive state for group checkbox toggle #8324 (pringelmann)
  • fix(NcRichText): do not escape markdown syntax when resolving reference #8351 (Antreesy)

... (truncated)

Commits
  • e32cc26 Merge pull request #8592 from nextcloud-libraries/chore/release-9.8.2
  • d47459f Merge pull request #8585 from nextcloud-libraries/dependabot/npm_and_yarn/bab...
  • b605f6b Merge pull request #8587 from nextcloud-libraries/dependabot/npm_and_yarn/bab...
  • f081de9 chore(deps-dev): bump @​babel/plugin-syntax-import-assertions
  • 5813aeb chore(deps-dev): bump @​babel/preset-typescript from 7.28.5 to 7.29.7
  • c68665f Merge pull request #8586 from nextcloud-libraries/dependabot/npm_and_yarn/sas...
  • 2f3c0fc Merge pull request #8588 from nextcloud-libraries/dependabot/npm_and_yarn/vue...
  • 13e86fc Merge pull request #8589 from nextcloud-libraries/dependabot/npm_and_yarn/bab...
  • bbd6e7e Merge pull request #8590 from nextcloud-libraries/dependabot/npm_and_yarn/esl...
  • 80ec7e9 Merge pull request #8591 from nextcloud-libraries/dependabot/npm_and_yarn/dom...
  • Additional commits viewable in compare view

Updates vue from 3.5.28 to 3.5.39

Release notes

Sourced from vue's releases.

v3.5.39

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

v3.5.38

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

v3.5.37

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

v3.5.35

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

v3.5.34

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

v3.5.33

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

v3.5.32

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

v3.5.31

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

v3.5.30

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

v3.5.29

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

Changelog

Sourced from vue's changelog.

3.5.39 (2026-06-25)

Bug Fixes

3.5.38 (2026-06-11)

3.5.37 (2026-06-11)

3.5.36 (2026-06-11)

Bug Fixes

  • compiler-core: avoid crash on CDATA at the document root (#14916) (0ea17e2)
  • compiler-core: prefix dynamic keys on v-memo elements (#14922) (68e978e), closes #14920
  • compiler-sfc: handle vue-ignore on leading intersection/union type (#14950) (0dcd225), closes #12254
  • compiler-sfc: respect var hoisting in props destructure (48ad452)
  • reactivity: preserve watch callback return value when wrapped for once: true (#14902) (450a8a8)
  • runtime-core: add dev warning for silent catch in compat mode and fix test description typo (#14891) (db3e117)
  • runtime-core: force model update when reverted before sync (#14897) (7f76378), closes #13524
  • runtime-core: skip async component callbacks after unmount (#14911) (5300ead)
  • transition: avoid move transition for hidden v-show group children (#14895) (c11f6ee), closes #14894
  • watch: trigger immediate callback for empty sources (#14914) (1f2ca7e), closes #14898

3.5.35 (2026-05-27)

Bug Fixes

... (truncated)

Commits
  • c0606e9 release: v3.5.39
  • 4b659e6 fix(runtime-dom): preserve option modifier event names (#8338)
  • 232f402 fix(types): support named tuple emits (#12676)
  • 671997a fix(teleport): handle teleport unmount edge case (#12705)
  • 164af63 fix(hydration): respect data-allow-mismatch on conditional branches (#12801)
  • 2f374cd fix(runtime-core): normalize function children for elements and Teleport (#9108)
  • 87b73b6 fix(runtime-core): preserve once event listener name (#8341)
  • 027da6b fix(ssr): dedupe inherited scope ids during vnode rendering (#15005)
  • 024cf06 fix(hydration): force patch dynamic props when hydrating (#9083)
  • be7ce31 fix(compiler-core): correct filter rewrite recursion (#14959)
  • Additional commits viewable in compare view

Updates webpack from 5.105.2 to 5.108.3

Release notes

Sourced from webpack's releases.

v5.108.3

Patch Changes

v5.108.2

Patch Changes

v5.108.1

Patch Changes

  • Fix invalid property access for escaped namespace imports with multi-character mangled export names. (by @​xiaoxiaojx in #21280)

  • Add frames to ProfilingPlugin TracingStartedInBrowser event so the trace loads in Chrome DevTools. (by @​alexander-akait in #21269)

v5.108.0

Minor Changes

  • Treat top-level await and import.meta as ES module markers, matching Node.js syntax detection so no explicit module type is needed. (by @​alexander-akait in #21218)

  • Add a bun target that emits ESM and externalizes bun:* and node.js built-in modules. (by @​alexander-akait in #21248)

  • Support CommonJS reexports via Object.defineProperty value and getter descriptors. (by @​alexander-akait in #21129)

  • Support JSON Schema const when generating CLI flags from a schema. (by @​alexander-akait in #21087)

  • Support JSON Schema if/then/else when generating CLI flags from a schema. (by @​alexander-akait in #21087)

  • Skip import specifiers, require() and import() calls in dead conditional branches gated by inlined imported constants (isDEV ? A : B), evaluated via getCondition. (by @​hai-x in #21136)

  • CSS localIdentName [hash] now resolves to the local ident hash (matching css-loader); use [modulehash] for the module hash. (by @​alexander-akait in #21259)

  • Add CSS parser as option and resolve url() inside HTML style attributes. (by @​alexander-akait in #21157)

  • Add dedicated module classes for all built-in module types. (by @​alexander-akait in #21164)

  • Support .html/.css for the default ./src entry under the html/css experiments. (by @​alexander-akait in #21039)

  • Add defineConfig helper for typed configuration files. (by @​alexander-akait in #21169)

  • Add a deno target (with versions, e.g. deno, deno2, deno1.40) that emits ESM, resolves node.js built-ins via the required node: specifier, and keeps Deno's own import protocols (npm:, jsr:, node:, http(s)://) external. (by @​alexander-akait in #21247)

... (truncated)

Changelog

Sourced from webpack's changelog.

5.108.3

Patch Changes

5.108.2

Patch Changes

5.108.1

Patch Changes

  • Fix invalid property access for escaped namespace imports with multi-character mangled export names. (by @​xiaoxiaojx in #21280)

  • Add frames to ProfilingPlugin TracingStartedInBrowser event so the trace loads in Chrome DevTools. (by @​alexander-akait in #21269)

5.108.0

Minor Changes

  • Treat top-level await and import.meta as ES module markers, matching Node.js syntax detection so no explicit module type is needed. (by @​alexander-akait in #21218)

  • Add a bun target that emits ESM and externalizes bun:* and node.js built-in modules. (by @​alexander-akait in #21248)

  • Support CommonJS reexports via Object.defineProperty value and getter descriptors. (by @​alexander-akait in #21129)

  • Support JSON Schema const when generating CLI flags from a schema. (by @​alexander-akait in #21087)

  • Support JSON Schema if/then/else when generating CLI flags from a schema. (by @​alexander-akait in #21087)

  • Skip import specifiers, require() and import() calls in dead conditional branches gated by inlined imported constants (isDEV ? A : B), evaluated via getCondition. (by @​hai-x in #21136)

  • CSS localIdentName [hash] now resolves to the local ident hash (matching css-loader); use [modulehash] for the module hash. (by @​alexander-akait in #21259)

  • Add CSS parser as option and resolve url() inside HTML style attributes. (by @​alexander-akait in #21157)

  • Add dedicated module classes for all built-in module types. (by @​alexander-akait in #21164)

  • Support .html/.css for the default ./src entry under the html/css experiments. (by @​alexander-akait in #21039)

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the npm group with 4 updates in the / directory: [@nextcloud/axios](https://github.com/nextcloud-libraries/nextcloud-axios), [@nextcloud/dialogs](https://github.com/nextcloud-libraries/nextcloud-dialogs), [vue](https://github.com/vuejs/core) and [webpack](https://github.com/webpack/webpack).


Updates `@nextcloud/axios` from 2.5.2 to 2.6.0
- [Release notes](https://github.com/nextcloud-libraries/nextcloud-axios/releases)
- [Changelog](https://github.com/nextcloud-libraries/nextcloud-axios/blob/main/CHANGELOG.md)
- [Commits](nextcloud-libraries/nextcloud-axios@v2.5.2...v2.6.0)

Updates `@nextcloud/dialogs` from 7.3.0 to 7.4.0
- [Release notes](https://github.com/nextcloud-libraries/nextcloud-dialogs/releases)
- [Changelog](https://github.com/nextcloud-libraries/nextcloud-dialogs/blob/main/CHANGELOG.md)
- [Commits](nextcloud-libraries/nextcloud-dialogs@v7.3.0...v7.4.0)

Updates `@nextcloud/vue` from 9.5.0 to 9.8.2
- [Release notes](https://github.com/nextcloud-libraries/nextcloud-vue/releases)
- [Changelog](https://github.com/nextcloud-libraries/nextcloud-vue/blob/main/CHANGELOG.md)
- [Commits](nextcloud-libraries/nextcloud-vue@v9.5.0...v9.8.2)

Updates `vue` from 3.5.28 to 3.5.39
- [Release notes](https://github.com/vuejs/core/releases)
- [Changelog](https://github.com/vuejs/core/blob/main/CHANGELOG.md)
- [Commits](vuejs/core@v3.5.28...v3.5.39)

Updates `webpack` from 5.105.2 to 5.108.3
- [Release notes](https://github.com/webpack/webpack/releases)
- [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md)
- [Commits](webpack/webpack@v5.105.2...v5.108.3)

---
updated-dependencies:
- dependency-name: "@nextcloud/axios"
  dependency-version: 2.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm
- dependency-name: "@nextcloud/dialogs"
  dependency-version: 7.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm
- dependency-name: "@nextcloud/vue"
  dependency-version: 9.8.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm
- dependency-name: vue
  dependency-version: 3.5.39
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm
- dependency-name: webpack
  dependency-version: 5.108.3
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 10, 2026
@ernolf ernolf merged commit 369a13d into main Jul 10, 2026
87 checks passed
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/npm-ce51be2dde branch July 10, 2026 19:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant