Skip to content

chore(deps): bump the production group across 1 directory with 11 updates#693

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-1561ba322b
Open

chore(deps): bump the production group across 1 directory with 11 updates#693
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-1561ba322b

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 14, 2026

Copy link
Copy Markdown
Contributor

Bumps the production group with 11 updates in the / directory:

Package From To
@iconify-json/lucide 1.2.115 1.2.116
@iconify-json/simple-icons 1.2.88 1.2.89
@shikijs/rehype 4.3.0 4.3.1
@wagmi/core 3.5.4 3.6.0
accounts 0.14.11 0.14.12
hono 4.12.27 4.12.28
posthog-js 1.396.4 1.398.2
posthog-node 5.39.2 5.40.0
prool 0.2.4 0.2.5
shiki 4.3.0 4.3.1
wagmi 3.6.20 3.7.0

Updates @iconify-json/lucide from 1.2.115 to 1.2.116

Commits

Updates @iconify-json/simple-icons from 1.2.88 to 1.2.89

Commits

Updates @shikijs/rehype from 4.3.0 to 4.3.1

Release notes

Sourced from @​shikijs/rehype's releases.

v4.3.1

   🚀 Features

    View changes on GitHub
Commits

Updates @wagmi/core from 3.5.4 to 3.6.0

Release notes

Sourced from @​wagmi/core's releases.

@​wagmi/core@​3.6.0

Minor Changes

  • Breaking (@​wagmi/core/tempo): Updated Tempo APIs for viem 2.54.0: token balance and allowance reads now return Amount objects. (#5188)

@​wagmi/core@​3.5.5

Patch Changes

  • Fixed Tempo types so transaction override parameters are optional. (#5171)
Changelog

Sourced from @​wagmi/core's changelog.

3.6.0

Minor Changes

  • Breaking (@​wagmi/core/tempo): Updated Tempo APIs for viem 2.54.0: token balance and allowance reads now return Amount objects. (#5188)

3.5.5

Patch Changes

  • Fixed Tempo types so transaction override parameters are optional. (#5171)
Commits

Updates accounts from 0.14.11 to 0.14.12

Release notes

Sourced from accounts's releases.

accounts@0.14.12

Patch Changes

  • 186b1f7: Added provider MPP account resolution parameters for locally managed access keys.
  • 2e092e9: Added exact access-key selection for provider-backed mppx parameters.
  • d5c0d66: Changed Mount.auto to allow trusted hosts to use iframe mounts without IntersectionObserver v2 support.
  • 98a8138: Added identity to Provider.create, minting verified-email id tokens from a configured OIDC issuer when local adapters fulfill wallet_connect.
  • 4aa479d: Add SIWE resources to wallet_connect auth challenges, support server-provided SIWE statements in Handler.auth, and preserve extra auth verify JSON fields.
Changelog

Sourced from accounts's changelog.

0.14.12

Patch Changes

  • 186b1f7: Added provider MPP account resolution parameters for locally managed access keys.
  • 2e092e9: Added exact access-key selection for provider-backed mppx parameters.
  • d5c0d66: Changed Mount.auto to allow trusted hosts to use iframe mounts without IntersectionObserver v2 support.
  • 98a8138: Added identity to Provider.create, minting verified-email id tokens from a configured OIDC issuer when local adapters fulfill wallet_connect.
  • 4aa479d: Add SIWE resources to wallet_connect auth challenges, support server-provided SIWE statements in Handler.auth, and preserve extra auth verify JSON fields.
Commits

Updates hono from 4.12.27 to 4.12.28

Release notes

Sourced from hono's releases.

v4.12.28

What's Changed

New Contributors

Full Changelog: honojs/hono@v4.12.27...v4.12.28

Commits
  • 626b185 4.12.28
  • d6b1d32 docs(context-storage): fix JSDoc (#5086)
  • 45b081b fix(aws-lambda): detect V2 events by request context, not rawPath alone (#5033)
  • a05813c chore: bump devDependencies (#5085)
  • 872997d fix(bun): report the requested subprotocol on WSContext.protocol (#5059)
  • 82b321b fix: avoid circular dependency between body.ts and request.ts (#5071)
  • b20d422 fix(utils/body,validator): normalize Content-Type media type for case-insensi...
  • 9728702 chore: don't publish *.tsbuildinfo (#5066)
  • ed8795e docs(MIGRATION): fix req.raw.headers reference (property, not method) (#5047)
  • 03a9416 fix(serve-static): treat empty string content as found (#5062)
  • See full diff in compare view

Updates posthog-js from 1.396.4 to 1.398.2

Release notes

Sourced from posthog-js's releases.

posthog-js@1.398.2

1.398.2

Patch Changes

  • #4063 24aadd5 Thanks @​posthog! - Fix a RangeError: Maximum call stack size exceeded that could originate from the shared patch() fetch/XHR wrapper. posthog-js wraps window.fetch in two independent places (tracing headers and session-recording network capture), so their restores routinely ran out of order. Previously an out-of-order restore silently no-op'd, leaving the wrapper in the call path; repeated start/stop cycles grew the wrapper chain without bound until a real fetch walked a chain deep enough to overflow the stack. Wrappers now delegate through a mutable link so any layer can be torn down even when newer wrappers sit on top of it, keeping the chain bounded. Header-injection and network-capture behavior is unchanged. (2026-07-07)

  • #4100 e250a24 Thanks @​marandaneto! - Stop adding the gzip compression query parameter to browser SDK requests. (2026-07-07)

  • #4083 f07e241 Thanks @​posthog! - fix(replay): harden session-replay network capture so instrumentation that throws (e.g. new Request() rejecting a URL/method) degrades gracefully and never breaks or misattributes the host application's own xhr.open() / fetch() calls (2026-07-07)

posthog-js@1.398.1

1.398.1

Patch Changes

  • #4096 5013ab6 Thanks @​marandaneto! - Stop sending the deprecated ver query parameter to capture and session recording endpoints. (2026-07-07)

posthog-js@1.398.0

1.398.0

Minor Changes

  • #4070 ef119bf Thanks @​posthog! - Add a disableAutofocus survey appearance option. When set, open-text survey questions no longer steal focus when they render, which is useful for embedded (inline) surveys that shouldn't grab the caret or scroll the page on load. Defaults to false, preserving the existing autofocus behavior. (2026-07-06)

posthog-js@1.397.0

1.397.0

Minor Changes

  • #4089 cc340db Thanks @​bs1180! - feat(web): add a posthog-js/customizations subpath entry point exposing the optional customizations (setAllPersonProfilePropertiesAsPersonPropertiesForFlags, the before-send sampling helpers, and the redux/kea loggers) as a proper ES module with bundled types, replacing the internal posthog-js/lib/src/customizations deep import. Also fixes the TypeScript definitions so setAllPersonProfilePropertiesAsPersonPropertiesForFlags accepts the instance passed to the loaded callback (the documented usage), and the loaded callback's instance type now includes config. (2026-07-06)

posthog-js@1.396.9

1.396.9

Patch Changes

  • #4077 2595440 Thanks @​pauldambra! - fix(web): stop retrying log batches forever when requests die before an HTTP response (status 0, e.g. an ad blocker) — after 3 consecutive such failures while the browser reports itself online, the logs pipeline stops sending and drops batches instead of buffering and retrying for the life of the page; the online event reopens it, and genuine offline periods still queue for the reconnect flush (2026-07-06)

posthog-js@1.396.8

1.396.8

Patch Changes

... (truncated)

Commits
  • 954919d chore: update versions and lockfile [version bump]
  • f07e241 fix(replay): degrade gracefully when network capture instrumentation throws (...
  • 24aadd5 fix(web): make fetch/XHR patch teardown order-independent to prevent stack ov...
  • e250a24 fix(browser): omit gzip compression query parameter (#4100)
  • 0b49a4c feat(node): add secretKey config, deprecate personalApiKey (#4060)
  • cbd85d0 fix(deps): regenerate pnpm lockfile with correct peer-dep resolutions (#4099)
  • 859fd44 chore(deps): weekly safe npm updates · 10 packages (#4087)
  • 15183bd chore: update PostHog watcher action (#4098)
  • d33b6d2 chore: update versions and lockfile [version bump]
  • 5013ab6 fix(browser): remove capture ver query param (#4096)
  • Additional commits viewable in compare view

Updates posthog-node from 5.39.2 to 5.40.0

Release notes

Sourced from posthog-node's releases.

posthog-node@5.40.0

5.40.0

Minor Changes

  • #4060 0b49a4c Thanks @​turnipdabeets! - Add secretKey config as the canonical alias for the deprecated personalApiKey (accepts a Personal API Key or Project Secret API Key). (2026-07-07)

posthog-node@5.39.4

5.39.4

Patch Changes

posthog-node@5.39.3

5.39.3

Patch Changes

  • #4055 64e04ba Thanks @​marandaneto! - Retry /flags requests that receive HTTP 502 or 504 responses across SDKs that use the shared core flags client. (2026-07-02)
  • Updated dependencies [64e04ba]:
    • @​posthog/core@​1.39.4
Changelog

Sourced from posthog-node's changelog.

5.40.0

Minor Changes

  • #4060 0b49a4c Thanks @​turnipdabeets! - Add secretKey config as the canonical alias for the deprecated personalApiKey (accepts a Personal API Key or Project Secret API Key). (2026-07-07)

5.39.4

Patch Changes

5.39.3

Patch Changes

  • #4055 64e04ba Thanks @​marandaneto! - Retry /flags requests that receive HTTP 502 or 504 responses across SDKs that use the shared core flags client. (2026-07-02)
  • Updated dependencies [64e04ba]:
    • @​posthog/core@​1.39.4
Commits
  • 954919d chore: update versions and lockfile [version bump]
  • 0b49a4c feat(node): add secretKey config, deprecate personalApiKey (#4060)
  • 859fd44 chore(deps): weekly safe npm updates · 10 packages (#4087)
  • 0ba87cb chore: update versions and lockfile [version bump]
  • 0c11747 fix: stop duplicating distinct_id in flags person properties (#4047)
  • 4eb8b21 chore: update versions and lockfile [version bump]
  • dd90e55 test(node): make local polling tests deterministic (#4043)
  • See full diff in compare view

Updates prool from 0.2.4 to 0.2.5

Changelog

Sourced from prool's changelog.

0.2.5

Patch Changes

  • #83 a9070ff Thanks @​jxom! - Fixed process stop() hanging when the process had already exited.

  • #83 a9070ff Thanks @​jxom! - Fixed Tempo faucet submitting funding transactions to the node default http://localhost:8545 instead of the resolved --http.port.

Commits

Updates shiki from 4.3.0 to 4.3.1

Release notes

Sourced from shiki's releases.

v4.3.1

   🚀 Features

    View changes on GitHub
Commits

Updates wagmi from 3.6.20 to 3.7.0

Release notes

Sourced from wagmi's releases.

wagmi@3.7.0

Minor Changes

  • Breaking (wagmi/tempo): Updated Tempo APIs for viem 2.54.0: token balance and allowance reads now return Amount objects. (#5188)

Patch Changes

  • Updated dependencies [a45049e]:
    • @​wagmi/core@​3.6.0
    • @​wagmi/connectors@​8.0.21

wagmi@3.6.21

Patch Changes

  • Fixed Tempo types so transaction override parameters are optional. (#5171)

  • Updated dependencies [1d6989e]:

    • @​wagmi/core@​3.5.5
    • @​wagmi/connectors@​8.0.20
Changelog

Sourced from wagmi's changelog.

3.7.0

Minor Changes

  • Breaking (wagmi/tempo): Updated Tempo APIs for viem 2.54.0: token balance and allowance reads now return Amount objects. (#5188)

Patch Changes

  • Updated dependencies [a45049e]:
    • @​wagmi/core@​3.6.0
    • @​wagmi/connectors@​8.0.21

3.6.21

Patch Changes

  • Fixed Tempo types so transaction override parameters are optional. (#5171)

  • Updated dependencies [1d6989e]:

    • @​wagmi/core@​3.5.5
    • @​wagmi/connectors@​8.0.20
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…ates

Bumps the production group with 11 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@iconify-json/lucide](https://github.com/iconify/icon-sets) | `1.2.115` | `1.2.116` |
| [@iconify-json/simple-icons](https://github.com/iconify/icon-sets) | `1.2.88` | `1.2.89` |
| [@shikijs/rehype](https://github.com/shikijs/shiki/tree/HEAD/packages/rehype) | `4.3.0` | `4.3.1` |
| [@wagmi/core](https://github.com/wevm/wagmi/tree/HEAD/packages/core) | `3.5.4` | `3.6.0` |
| [accounts](https://github.com/tempoxyz/accounts) | `0.14.11` | `0.14.12` |
| [hono](https://github.com/honojs/hono) | `4.12.27` | `4.12.28` |
| [posthog-js](https://github.com/PostHog/posthog-js) | `1.396.4` | `1.398.2` |
| [posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node) | `5.39.2` | `5.40.0` |
| [prool](https://github.com/wevm/prool) | `0.2.4` | `0.2.5` |
| [shiki](https://github.com/shikijs/shiki/tree/HEAD/packages/shiki) | `4.3.0` | `4.3.1` |
| [wagmi](https://github.com/wevm/wagmi/tree/HEAD/packages/react) | `3.6.20` | `3.7.0` |



Updates `@iconify-json/lucide` from 1.2.115 to 1.2.116
- [Commits](https://github.com/iconify/icon-sets/commits)

Updates `@iconify-json/simple-icons` from 1.2.88 to 1.2.89
- [Commits](https://github.com/iconify/icon-sets/commits)

Updates `@shikijs/rehype` from 4.3.0 to 4.3.1
- [Release notes](https://github.com/shikijs/shiki/releases)
- [Commits](https://github.com/shikijs/shiki/commits/v4.3.1/packages/rehype)

Updates `@wagmi/core` from 3.5.4 to 3.6.0
- [Release notes](https://github.com/wevm/wagmi/releases)
- [Changelog](https://github.com/wevm/wagmi/blob/main/packages/core/CHANGELOG.md)
- [Commits](https://github.com/wevm/wagmi/commits/@wagmi/core@3.6.0/packages/core)

Updates `accounts` from 0.14.11 to 0.14.12
- [Release notes](https://github.com/tempoxyz/accounts/releases)
- [Changelog](https://github.com/tempoxyz/accounts/blob/main/CHANGELOG.md)
- [Commits](https://github.com/tempoxyz/accounts/compare/accounts@0.14.11...accounts@0.14.12)

Updates `hono` from 4.12.27 to 4.12.28
- [Release notes](https://github.com/honojs/hono/releases)
- [Commits](honojs/hono@v4.12.27...v4.12.28)

Updates `posthog-js` from 1.396.4 to 1.398.2
- [Release notes](https://github.com/PostHog/posthog-js/releases)
- [Changelog](https://github.com/PostHog/posthog-js/blob/main/CHANGELOG.md)
- [Commits](https://github.com/PostHog/posthog-js/compare/posthog-js@1.396.4...posthog-js@1.398.2)

Updates `posthog-node` from 5.39.2 to 5.40.0
- [Release notes](https://github.com/PostHog/posthog-js/releases)
- [Changelog](https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md)
- [Commits](https://github.com/PostHog/posthog-js/commits/posthog-node@5.40.0/packages/node)

Updates `prool` from 0.2.4 to 0.2.5
- [Release notes](https://github.com/wevm/prool/releases)
- [Changelog](https://github.com/wevm/prool/blob/main/CHANGELOG.md)
- [Commits](wevm/prool@v0.2.4...v0.2.5)

Updates `shiki` from 4.3.0 to 4.3.1
- [Release notes](https://github.com/shikijs/shiki/releases)
- [Commits](https://github.com/shikijs/shiki/commits/v4.3.1/packages/shiki)

Updates `wagmi` from 3.6.20 to 3.7.0
- [Release notes](https://github.com/wevm/wagmi/releases)
- [Changelog](https://github.com/wevm/wagmi/blob/main/packages/react/CHANGELOG.md)
- [Commits](https://github.com/wevm/wagmi/commits/wagmi@3.7.0/packages/react)

---
updated-dependencies:
- dependency-name: "@iconify-json/lucide"
  dependency-version: 1.2.116
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
- dependency-name: "@iconify-json/simple-icons"
  dependency-version: 1.2.89
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
- dependency-name: "@shikijs/rehype"
  dependency-version: 4.3.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
- dependency-name: "@wagmi/core"
  dependency-version: 3.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production
- dependency-name: accounts
  dependency-version: 0.14.12
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
- dependency-name: hono
  dependency-version: 4.12.28
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
- dependency-name: posthog-js
  dependency-version: 1.398.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production
- dependency-name: posthog-node
  dependency-version: 5.40.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production
- dependency-name: prool
  dependency-version: 0.2.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
- dependency-name: shiki
  dependency-version: 4.3.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production
- dependency-name: wagmi
  dependency-version: 3.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 14, 2026
@vercel

vercel Bot commented Jul 14, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
tempo-docs Ready Ready Preview, Comment Jul 14, 2026 8:56pm

Request Review

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants