Bump the minor-updates group across 1 directory with 19 updates

[dependabot]

Bumps the minor-updates group with 19 updates in the / directory:

Package	From	To
@astrojs/node	9.0.0	9.0.2
@github/relative-time-element	4.4.4	4.4.5
@octokit/auth-oauth-app	8.1.1	8.1.2
@octokit/graphql	8.1.1	8.2.0
@octokit/webhooks	13.4.1	13.5.0
@prisma/client	6.0.1	6.3.0
astro	5.0.5	5.2.3
octokit	4.0.2	4.1.0
prisma	6.0.1	6.3.0
vite	6.0.3	6.0.11
@eslint/js	9.17.0	9.19.0
@graphql-codegen/cli	5.0.3	5.0.4
@graphql-codegen/client-preset	4.5.1	4.6.1
@graphql-codegen/typescript	4.1.2	4.1.3
@graphql-codegen/typescript-document-nodes	4.0.12	4.0.13
@types/node	22.10.2	22.13.0
eslint	9.17.0	9.19.0
typescript	5.7.2	5.7.3
typescript-eslint	8.18.0	8.22.0

Updates @astrojs/node from 9.0.0 to 9.0.2

Release notes

Sourced from @​astrojs/node's releases.

@​astrojs/node@​9.0.2

Patch Changes

• #514 ea4297b Thanks @​ascorbic! - Fixes a bug that caused the preview server to ignore wildcard host options

@​astrojs/node@​9.0.1

Patch Changes

• #454 83cedad Thanks @​alexanderniebuhr! - Improves Astro 5 support

Changelog

Sourced from @​astrojs/node's changelog.

9.0.2

Patch Changes

• #514 ea4297b Thanks @​ascorbic! - Fixes a bug that caused the preview server to ignore wildcard host options

9.0.1

Patch Changes

• #454 83cedad Thanks @​alexanderniebuhr! - Improves Astro 5 support

Commits

• c61df56 [ci] release (#507)
• ea4297b fix: correctly handle wildcard hosts in preview (#514)
• 7b352ee fix(deps): update all non-major dependencies (#503)
• 76dc7a0 [ci] release (#497)
• d7e7d5e fix(deps): update all non-major dependencies (#457)
• 2c36ee5 refactor: readability (#463)
• 26976ad test(node): add image tests (#459)
• 3d94421 test: use Astro v5 and update cloudflare assertions (#460)
• See full diff in compare view

Updates @github/relative-time-element from 4.4.4 to 4.4.5

Release notes

Sourced from @​github/relative-time-element's releases.

v4.4.5

What's Changed

• fix: wrap Intl.<>() calls in try/catch by @​francinelucca in github/relative-time-element#297
• get main branch green by @​keithamus in github/relative-time-element#302
• Make applyDuration reversible by @​leduyquang753 in github/relative-time-element#298
• Use node v22 by @​camertron in github/relative-time-element#303

New Contributors

• @​francinelucca made their first contribution in github/relative-time-element#297
• @​leduyquang753 made their first contribution in github/relative-time-element#298
• @​camertron made their first contribution in github/relative-time-element#303

Full Changelog: github/relative-time-element@v4.4.4...v4.4.5

Commits

• 8d86a67 Merge pull request #303 from github/node22
• 4789b31 Use node v22
• 8490db2 Merge pull request #298 from leduyquang753/applyDuration
• e16b828 Merge branch 'main' into applyDuration
• 9a9f987 Merge pull request #302 from github/keithamus-patch-1
• c518ee0 get main branch green
• 5e4a7e3 Unrolled duration application steps.
• d37caed Make applyDuration reversible.
• a80c1bf Merge pull request #297 from github/francinelucca/fix/locale-error
• b6dbae3 Update test/relative-time.js
• Additional commits viewable in compare view

Updates @octokit/auth-oauth-app from 8.1.1 to 8.1.2

Release notes

Sourced from @​octokit/auth-oauth-app's releases.

v8.1.2

8.1.2 (2025-01-07)

Bug Fixes

• deps: bump Octokit deps to fix Deno compat (#504) (a5afc99)

Commits

• a5afc99 fix(deps): bump Octokit deps to fix Deno compat (#504)
• 843fe10 build(deps): lock file maintenance (#505)
• 6b3b0f7 build(deps): lock file maintenance (#503)
• f74ce05 build(deps): lock file maintenance (#502)
• 1d758f8 build(deps): lock file maintenance (#501)
• 4ceef98 chore(deps): update dependency prettier to v3.4.2 (#499)
• 25cf049 build(deps): lock file maintenance (#500)
• 22d311f build(deps): lock file maintenance (#498)
• d007caa chore(deps): update dependency prettier to v3.4.1 (#497)
• afacb14 build(deps): lock file maintenance (#495)
• Additional commits viewable in compare view

Updates @octokit/graphql from 8.1.1 to 8.2.0

Release notes

Sourced from @​octokit/graphql's releases.

v8.2.0

8.2.0 (2025-01-31)

Features

• allow users to specify operationName in multi-operation queries (#629) (9a1787e)

v8.1.2

8.1.2 (2024-12-31)

Bug Fixes

• deps: bump Octokit dependencies (#620) (97a801c)

Commits

• 9a1787e feat: allow users to specify operationName in multi-operation queries (#629)
• 3206f6b build(deps): lock file maintenance (#626)
• 0653e6a chore(deps): update vitest monorepo to v3 (major) (#625)
• e8654c1 build(deps): lock file maintenance (#624)
• a48b870 build(deps): lock file maintenance (#623)
• 071b0a8 maint: switch to vitest (#621)
• 97a801c fix(deps): bump Octokit dependencies (#620)
• b0ea517 build(deps): lock file maintenance (#622)
• 41f16d7 build(deps): lock file maintenance (#619)
• 2764dcd chore(deps): update dependency fetch-mock to v12 (#606)
• Additional commits viewable in compare view

Updates @octokit/webhooks from 13.4.1 to 13.5.0

Release notes

Sourced from @​octokit/webhooks's releases.

v13.5.0

13.5.0 (2025-01-31)

Features

• use verifyWithFallback to support secret rotation (#1080) (8a9682d)

v13.4.3

13.4.3 (2025-01-28)

Bug Fixes

• make verifyAndReceive accept a string name. (#1056) (c5d1a3c)

v13.4.2

13.4.2 (2025-01-08)

Bug Fixes

• deps: bump Octokit deps to fix Deno compat (#1090) (ffd5b28)

Commits

• 8a9682d feat: use verifyWithFallback to support secret rotation (#1080)
• c5d1a3c fix: make verifyAndReceive accept a string name. (#1056)
• 8b9959f build(deps): bump vite from 5.4.11 to 6.0.11 (#1093)
• c67c181 build(deps): lock file maintenance (#1092)
• 9375666 chore(deps): update vitest monorepo to v3 (major) (#1091)
• ffd5b28 fix(deps): bump Octokit deps to fix Deno compat (#1090)
• c0a8dbc build(deps): lock file maintenance (#1088)
• ab71230 build(deps): lock file maintenance (#1087)
• d691a5d build(deps): lock file maintenance (#1086)
• 8705c87 build(deps): lock file maintenance (#1085)
• Additional commits viewable in compare view

Updates @prisma/client from 6.0.1 to 6.3.0

Release notes

Sourced from @​prisma/client's releases.

6.3.0

Today, we are excited to share the 6.3.0 stable release 🎉

🌟 Help us spread the word about Prisma by starring the repo ☝️ or tweeting about the release. 🌟

Highlights

A brand new Prisma Studio

In this release we've included several great improvements to Prisma Studio's developer experience. You can learn all about the changes we've made in our release blog post, but here's a short list:

Prisma Studio is back in the Console

Fans of Prisma Data Browser rejoice! The new Prisma Studio is now in the Prisma Console and is available for all PostgreSQL and MySQL databases.

A new model viewer

Previously, switching from model to model in Prisma Studio would require backing all the way out to the model view, then digging in again. With our new UI, it's easy to switch from model to model while keeping your place.

A new editing experience

If you're trying to edit a given field in a model, Prisma Studio made it quite easy. However, if you're trying to edit every field in a given row, it could get quite annoying to keep scrolling left to right. Our new edit sidebar resolves that with the ability to edit all fields for a given row at once.

Clean up at the click of a button

When editing a number of models, it can get difficult to get back to a clean slate. In the new Prisma Studio, we've added a "Close all" button that puts you back to a fresh start.

Add limit to updateMany() and deleteMany()

Previously, limit has not existed as a valid option in top level updateMany() and deleteMany() queries. In 6.3.0 limit is now available in these queries, bringing their features more in line with other query types.

You can use limit like the following:

await prisma.user.deleteMany({
  where: { column: 'value' },
  limit: 100,
});

This will limit the number of deleted users to 100 at maximum.

Sort generator fields deterministically

... (truncated)

Commits

• 531cb87 fix(error handling): ensure also unknown errors during interactive transactio...
• 9cf9ccc refactor(client engine): client engine cleanups (#26159)
• e526f4a chore(deps): update engines to 6.3.0-17.acc0b9dd43eb689cbd20c9470515d719db10d...
• 00b79e5 fix(build): make typescript optional peer dependency to not accidentally bund...
• 3c290c9 chore(compiler): ORM-517 integrate query compiler wasm into ClientEngine (#26...
• 35aa821 feat(compiler): ORM-467 implement client side transaction manager (#26109)
• d1a12be chore(deps): update devdependencies patch (non-major) (#26141)
• e5acfdc feat(client): support in-memory joins in client executor (#26129)
• 62a1a23 feat: query compiler vertical slice (#25910)
• 6d19fd9 chore(deps): update engines to 6.3.0-16.eb5bc5493ac383a8fe3c3e7fabfc93e4d44ca...
• Additional commits viewable in compare view

Updates astro from 5.0.5 to 5.2.3

Release notes

Sourced from astro's releases.

[email protected]

Patch Changes

• #13113 3a26e45 Thanks @​unprintable123! - Fixes the bug that rewrite will pass encoded url to the dynamic routing and cause params mismatch.

• #13111 23978dd Thanks @​ascorbic! - Fixes a bug that caused injected endpoint routes to return not found when trailingSlash was set to always

• #13112 0fa5c82 Thanks @​ematipico! - Fixes a bug where the i18n middleware was blocking a server island request when the prefixDefaultLocale option is set to true

[email protected]

Patch Changes

• #13106 187c4d3 Thanks @​ascorbic! - Fixes a bug that caused peer dependency errors when running astro add tailwind

[email protected]

Patch Changes

• #13095 740eb60 Thanks @​ascorbic! - Fixes a bug that caused some dev server asset requests to return 404 when trailingSlash was set to "always"

[email protected]

Minor Changes

• #12994 5361755 Thanks @​ascorbic! - Redirects trailing slashes for on-demand pages

  When the trailingSlash option is set to always or never, on-demand rendered pages will now redirect to the correct URL when the trailing slash doesn't match the configuration option. This was previously the case for static pages, but now works for on-demand pages as well.

  Now, it doesn't matter whether your visitor navigates to /about/, /about, or even /about///. In production, they'll always end up on the correct page. For GET requests, the redirect will be a 301 (permanent) redirect, and for all other request methods, it will be a 308 (permanent, and preserve the request method) redirect.

  In development, you'll see a helpful 404 page to alert you of a trailing slash mismatch so you can troubleshoot routes.

• #12979 e621712 Thanks @​ematipico! - Adds support for redirecting to external sites with the redirects configuration option.

  Now, you can redirect routes either internally to another path or externally by providing a URL beginning with http or https:

  // astro.config.mjs
  import { defineConfig } from 'astro/config';
  export default defineConfig({
  redirects: {
  '/blog': 'https://example.com/blog',
  '/news': {
  status: 302,
  destination: 'https://example.com/news',
  },
  },
  });

• #13084 0f3be31 Thanks @​ematipico! - Adds a new experimental virtual module astro:config that exposes a type-safe subset of your astro.config.mjs configuration

... (truncated)

Changelog

Sourced from astro's changelog.

5.2.3

Patch Changes

• #13113 3a26e45 Thanks @​unprintable123! - Fixes the bug that rewrite will pass encoded url to the dynamic routing and cause params mismatch.

• #13111 23978dd Thanks @​ascorbic! - Fixes a bug that caused injected endpoint routes to return not found when trailingSlash was set to always

• #13112 0fa5c82 Thanks @​ematipico! - Fixes a bug where the i18n middleware was blocking a server island request when the prefixDefaultLocale option is set to true

5.2.2

Patch Changes

• #13106 187c4d3 Thanks @​ascorbic! - Fixes a bug that caused peer dependency errors when running astro add tailwind

5.2.1

Patch Changes

• #13095 740eb60 Thanks @​ascorbic! - Fixes a bug that caused some dev server asset requests to return 404 when trailingSlash was set to "always"

5.2.0

Minor Changes

• #12994 5361755 Thanks @​ascorbic! - Redirects trailing slashes for on-demand pages

  When the trailingSlash option is set to always or never, on-demand rendered pages will now redirect to the correct URL when the trailing slash doesn't match the configuration option. This was previously the case for static pages, but now works for on-demand pages as well.

  Now, it doesn't matter whether your visitor navigates to /about/, /about, or even /about///. In production, they'll always end up on the correct page. For GET requests, the redirect will be a 301 (permanent) redirect, and for all other request methods, it will be a 308 (permanent, and preserve the request method) redirect.

  In development, you'll see a helpful 404 page to alert you of a trailing slash mismatch so you can troubleshoot routes.

• #12979 e621712 Thanks @​ematipico! - Adds support for redirecting to external sites with the redirects configuration option.

  Now, you can redirect routes either internally to another path or externally by providing a URL beginning with http or https:

  // astro.config.mjs
  import { defineConfig } from 'astro/config';
  export default defineConfig({
  redirects: {
  '/blog': 'https://example.com/blog',
  '/news': {
  status: 302,
  destination: 'https://example.com/news',
  },
  },

... (truncated)

Commits

• 7ccf950 [ci] release (#13114)
• 2a85bd7 [ci] format
• 0fa5c82 fix(i18n): server island request (#13112)
• 3a26e45 fix: correctly handle pathname for dynamic routing in rewrite (#13113)
• c33eccb [ci] format
• 23978dd fix: remove special handling for injected endpoint slashes (#13111)
• cbd056c fix(deps): update all non-major dependencies (#13074)
• 6430aee [ci] release (#13108)
• 187c4d3 fix: exclude tailwind package when installing integration (#13106)
• 3b10b97 [ci] release (#13096)
• Additional commits viewable in compare view

Updates octokit from 4.0.2 to 4.1.0

Release notes

Sourced from octokit's releases.

v4.1.0

4.1.0 (2025-01-08)

Features

• deps: bump Octokit deps to fix Deno compatibility, new endpoints via @octokit/plugin-rest-endpoint-methods (#2788) (2107d79)

v4.0.3

4.0.3 (2024-12-29)

Bug Fixes

• deps: bump @octokit/app and @octokit/types (#2763) (33d03d9)

Commits

• 2107d79 feat(deps): bump Octokit deps to fix Deno compatibility, new endpoints via `@...
• b4adf3c build(deps): lock file maintenance (#2787)
• a8c8544 build(deps): lock file maintenance (#2785)
• 2a1cc98 build: switch to vitest (#2782)
• 33d03d9 fix(deps): bump @octokit/app and @octokit/types (#2763)
• 5c855e9 build(deps): lock file maintenance (#2780)
• 421dca6 build(deps): lock file maintenance (#2774)
• ababbba chore(deps): update dependency prettier to v3.4.2 (#2770)
• a9dac02 build(deps): lock file maintenance (#2771)
• 102cac6 build(deps): lock file maintenance (#2768)
• Additional commits viewable in compare view

Updates prisma from 6.0.1 to 6.3.0

Release notes

Sourced from prisma's releases.

6.3.0

Today, we are excited to share the 6.3.0 stable release 🎉

🌟 Help us spread the word about Prisma by starring the repo ☝️ or tweeting about the release. 🌟

Highlights

A brand new Prisma Studio

In this release we've included several great improvements to Prisma Studio's developer experience. You can learn all about the changes we've made in our release blog post, but here's a short list:

Prisma Studio is back in the Console

Fans of Prisma Data Browser rejoice! The new Prisma Studio is now in the Prisma Console and is available for all PostgreSQL and MySQL databases.

A new model viewer

Previously, switching from model to model in Prisma Studio would require backing all the way out to the model view, then digging in again. With our new UI, it's easy to switch from model to model while keeping your place.

A new editing experience

If you're trying to edit a given field in a model, Prisma Studio made it quite easy. However, if you're trying to edit every field in a given row, it could get quite annoying to keep scrolling left to right. Our new edit sidebar resolves that with the ability to edit all fields for a given row at once.

Clean up at the click of a button

When editing a number of models, it can get difficult to get back to a clean slate. In the new Prisma Studio, we've added a "Close all" button that puts you back to a fresh start.

Add limit to updateMany() and deleteMany()

Previously, limit has not existed as a valid option in top level updateMany() and deleteMany() queries. In 6.3.0 limit is now available in these queries, bringing their features more in line with other query types.

You can use limit like the following:

await prisma.user.deleteMany({
  where: { column: 'value' },
  limit: 100,
});

This will limit the number of deleted users to 100 at maximum.

Sort generator fields deterministically

... (truncated)

Commits

• 3d913b5 feat: allow init --db if prisma folder exists (#26181)
• 2aa68fc chore(deps): update studio to v0.508.0 (#26180)
• d45607d fix(cli, sub-commands): better handling of esm packages (#26161)
• 00b79e5 fix(build): make typescript optional peer dependency to not accidentally bund...
• b413705 chore(deps): update studio to v0.505.0 (#26152)
• 995c00f chore(platform-cli): ppg copy changes (#26115)
• 8d9f075 chore(deps): update studio to v0.504.0 (#26131)
• d1a12be chore(deps): update devdependencies patch (non-major) (#26141)
• 049753e feat(cli): implement generic sub-commands (+ policy) (#26134)
• 3046f26 feat(migrate): on prisma+postgres URLs, pass --no-engine flag to client g...
• Additional commits viewable in compare view

Updates vite from 6.0.3 to 6.0.11

Release notes

Sourced from vite's releases.

v6.0.11

Please refer to CHANGELOG.md for details.

v6.0.10

Please refer to CHANGELOG.md for details.

v6.0.9

This version contains a breaking change due to security fixes. See GHSA-vg6x-rcgg-rjx6 for more details.

Please refer to CHANGELOG.md for details.

v6.0.8

Please refer to CHANGELOG.md for details.

v6.0.7

Please refer to CHANGELOG.md for details.

v6.0.6

Please refer to CHANGELOG.md for details.

v6.0.5

Please refer to CHANGELOG.md for details.

v6.0.4

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

6.0.11 (2025-01-21)

• fix: preview.allowedHosts with specific values was not respected (#19246) (aeb3ec8), closes #19246
• fix: allow CORS from loopback addresses by default (#19249) (3d03899), closes #19249

6.0.10 (2025-01-20)

• fix: try parse server.origin URL (#19241) (2495022), closes #19241

6.0.9 (2025-01-20)

• fix!: check host header to prevent DNS rebinding attacks and introduce server.allowedHosts (bd896fb)
• fix!: default server.cors: false to disallow fetching from untrusted origins (b09572a)
• fix: verify token for HMR WebSocket connection (029dcd6)

6.0.8 (2025-01-20)

• fix: avoid SSR HMR for HTML files (#19193) (3bd55bc), closes #19193
• fix: build time display 7m 60s (#19108) (cf0d2c8), closes #19108
• fix: don't resolve URL starting with double slash (#19059) (35942cd), closes #19059
• fix: ensure server.close() only called once (#19204) (db81c2d), closes #19204
• fix: resolve.conditions in ResolvedConfig was defaultServerConditions (#19174) (ad75c56), closes #19174
• fix: tree shake stringified JSON imports (#19189) (f2aed62), closes #19189
• fix: use shared sigterm callback (#19203) (47039f4), closes #19203
• fix(deps): update all non-major dependencies (#19098) (8639538), closes #19098
• fix(optimizer): use correct default install state path for yarn PnP (#19119) (e690d8b), closes #19119
• fix(types): improve ESBuildOptions.include / exclude type to allow readonly (string | RegExp)[] (ea53e70), closes #19146
• chore(deps): update dependency pathe to v2 (#19139) (71506f0), closes #19139

6.0.7 (2025-01-02)

• fix: fix minify when builder.sharedPlugins: true (#19025) (f7b1964), closes #19025
• fix: skip the plugin if it has been called before with the same id and importer (#19016) (b178c90), closes #19016
• fix(html): error while removing vite-ignore attribute for inline script (#19062) (a492253), closes #19062
• fix(ssr): fix semicolon injection by ssr transform (#19097) (1c102d5), closes #19097
• perf: skip globbing for static path in warmup (#19107) (677508b), closes #19107
• feat(css): show lightningcss warnings (#19076) (b07c036), closes #19076

6.0.6 (2024-12-26)

... (truncated)

Commits

• a0ed405 release: v6.0.11
• 3d03899 fix: allow CORS from loopback addresses by default (#19249)
• aeb3ec8 fix: preview.allowedHosts with specific values was not respected (#19246)
• 9654348 release: v6.0.10
• 2495022 fix: try parse server.origin URL (#19241)
• a55f8ba release: v6.0.9
• bd896fb fix!: check host header to prevent DNS rebinding attacks and introduce `serve...
• 029dcd6 fix: verify token for HMR WebSocket connection
• b09572a fix!: default server.cors: false to disallow fetching from untrusted origins
• c0f72a6 release: v6.0.8
• Additional commits viewable in compare view

Updates @eslint/js from 9.17.0 to 9.19.0

Release notes

Sourced from @​eslint/js's releases.

v9.19.0

Features

• 1637b8e feat: add --report-unused-inline-configs (#19201) (Josh Goldberg ✨)

Bug Fixes

• aae6717 fix: sync rule type header comments automatically (#19276) (Francesco Trotta)

Documentation

• cfea9ab docs: Clarify overrideConfig option (#19370) (Nicholas C. Zakas)
• 2b84f66 docs: Update README (#19362) (Nicholas C. Zakas)
• 044f93c docs: clarify frozen rule description (#19351) (Pavel)
• 797ee7c docs: fix Bluesky links (#19368) (Milos Djermanovic)
• 81a9c0e docs: Update README (GitHub Actions Bot)
• 093fb3d docs: replace var with let and const in rule examples (#19365) (Tanuj Kanti)
• 417de32 docs: replace var with const in rule examples (#19352) (jj)
• 17f2aae docs: update getting-started config to match default generated config (#19308) (0xDev)
• 8a0a5a8 docs: better global ignores instruction (

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.