Update dependency @casl/ability to v6

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
@casl/ability (source)	^5.4.3 → ^6.0.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

stalniy/casl (@​casl/ability)

v6.8.0

Compare Source

Features

• export the Rule and RuleOptions types (#​1077) (c6c94d8)

Bug Fixes

• deps: update dependency @​types/jest to v30 (#​1133) (12c59ce)

v6.7.5: @​casl/ability: v6.7.5

Compare Source

Bug Fixes

• ignores potentially insecure fields in rulesToFields (#​1093) (39da920)

v6.7.3

Compare Source

v6.7.2

Compare Source

v6.7.1

Compare Source

Bug Fixes

• fixes path to extra submodule in package.json (#​893) (90e1e66)

v6.7.0

Compare Source

Features

• refactors extra subpackage in casl/ability and adds AccessibleFields helper class (#​883) (9d2ad70)

v6.6.0

Compare Source

Features

• adds possibility to auto detect subject type based on passed rules (#​882) (4737fe2)
• adds return type to 'rulesToQuery' based on return type from 'convert' param (#​876) (379e130)

6.5.1 (2023-05-05)

Bug Fixes

• adds jsdoc comments (#​768) (6ca6105)
• adds jsdoc comments to test release trigger (#​766) (fcdf8c8)
• removes release testing comments (#​767) (67ccbc9)

v6.5.0

Compare Source

Features

• adds possibility to auto detect subject type based on passed rules (#​882) (4737fe2)
• adds return type to 'rulesToQuery' based on return type from 'convert' param (#​876) (379e130)

6.5.1 (2023-05-05)

Bug Fixes

• adds jsdoc comments (#​768) (6ca6105)
• adds jsdoc comments to test release trigger (#​766) (fcdf8c8)
• removes release testing comments (#​767) (67ccbc9)

v6.4.0

Compare Source

Features

• adds actionsFor(subjectType) method that returns all actions associated with particular subject type (f2d7e17), closes #​497

6.3.4 (2023-04-02)

Bug Fixes

• builder: makes AbilityBuilder bound methods define as arrow functions (e724741), closes #​736

6.3.3 (2022-12-08)

Bug Fixes

• ensures packRule helper doesn't stuck inside infinite loop when invalid parameters are passed (a19bd09), closes #​705

6.3.2 (2022-10-30)

Bug Fixes

• adds unlessCan method to ForbiddenError and reused it mongoose package to construct ForbiddenError (be7ae6a)

6.3.1 (2022-09-29)

Bug Fixes

• fixes CreateAbility type typos and wrong types in parameters (aaec82d)

v6.3.4

Compare Source

Features

• adds actionsFor(subjectType) method that returns all actions associated with particular subject type (f2d7e17), closes #​497

6.3.4 (2023-04-02)

Bug Fixes

• builder: makes AbilityBuilder bound methods define as arrow functions (e724741), closes #​736

6.3.3 (2022-12-08)

Bug Fixes

• ensures packRule helper doesn't stuck inside infinite loop when invalid parameters are passed (a19bd09), closes #​705

6.3.2 (2022-10-30)

Bug Fixes

• adds unlessCan method to ForbiddenError and reused it mongoose package to construct ForbiddenError (be7ae6a)

6.3.1 (2022-09-29)

Bug Fixes

• fixes CreateAbility type typos and wrong types in parameters (aaec82d)

v6.3.3

Compare Source

Features

• adds actionsFor(subjectType) method that returns all actions associated with particular subject type (f2d7e17), closes #​497

6.3.4 (2023-04-02)

Bug Fixes

• builder: makes AbilityBuilder bound methods define as arrow functions (e724741), closes #​736

6.3.3 (2022-12-08)

Bug Fixes

• ensures packRule helper doesn't stuck inside infinite loop when invalid parameters are passed (a19bd09), closes #​705

6.3.2 (2022-10-30)

Bug Fixes

• adds unlessCan method to ForbiddenError and reused it mongoose package to construct ForbiddenError (be7ae6a)

6.3.1 (2022-09-29)

Bug Fixes

• fixes CreateAbility type typos and wrong types in parameters (aaec82d)

v6.3.2

Compare Source

Features

• adds actionsFor(subjectType) method that returns all actions associated with particular subject type (f2d7e17), closes #​497

6.3.4 (2023-04-02)

Bug Fixes

• builder: makes AbilityBuilder bound methods define as arrow functions (e724741), closes #​736

6.3.3 (2022-12-08)

Bug Fixes

• ensures packRule helper doesn't stuck inside infinite loop when invalid parameters are passed (a19bd09), closes #​705

6.3.2 (2022-10-30)

Bug Fixes

• adds unlessCan method to ForbiddenError and reused it mongoose package to construct ForbiddenError (be7ae6a)

6.3.1 (2022-09-29)

Bug Fixes

• fixes CreateAbility type typos and wrong types in parameters (aaec82d)

v6.3.1

Compare Source

Features

• adds actionsFor(subjectType) method that returns all actions associated with particular subject type (f2d7e17), closes #​497

6.3.4 (2023-04-02)

Bug Fixes

• builder: makes AbilityBuilder bound methods define as arrow functions (e724741), closes #​736

6.3.3 (2022-12-08)

Bug Fixes

• ensures packRule helper doesn't stuck inside infinite loop when invalid parameters are passed (a19bd09), closes #​705

6.3.2 (2022-10-30)

Bug Fixes

• adds unlessCan method to ForbiddenError and reused it mongoose package to construct ForbiddenError (be7ae6a)

6.3.1 (2022-09-29)

Bug Fixes

• fixes CreateAbility type typos and wrong types in parameters (aaec82d)

v6.3.0

Compare Source

Features

• adds actionsFor(subjectType) method that returns all actions associated with particular subject type (f2d7e17), closes #​497

6.3.4 (2023-04-02)

Bug Fixes

• builder: makes AbilityBuilder bound methods define as arrow functions (e724741), closes #​736

6.3.3 (2022-12-08)

Bug Fixes

• ensures packRule helper doesn't stuck inside infinite loop when invalid parameters are passed (a19bd09), closes #​705

6.3.2 (2022-10-30)

Bug Fixes

• adds unlessCan method to ForbiddenError and reused it mongoose package to construct ForbiddenError (be7ae6a)

6.3.1 (2022-09-29)

Bug Fixes

• fixes CreateAbility type typos and wrong types in parameters (aaec82d)

v6.2.0

Compare Source

Features

• adds possibility to build Ability instance from factory function (53d199f)

6.1.2 (2022-09-18)

Bug Fixes

• fixes MongoQuery type for typescript ^4.8.x (4af7c39), closes #​673

6.1.1 (2022-08-28)

Bug Fixes

• exports private continer property to get rid of ts error (6ffdb14), closes #​608

v6.1.2

Compare Source

Features

• adds possibility to build Ability instance from factory function (53d199f)

6.1.2 (2022-09-18)

Bug Fixes

• fixes MongoQuery type for typescript ^4.8.x (4af7c39), closes #​673

6.1.1 (2022-08-28)

Bug Fixes

• exports private continer property to get rid of ts error (6ffdb14), closes #​608

v6.1.1

Compare Source

Features

• adds possibility to build Ability instance from factory function (53d199f)

6.1.2 (2022-09-18)

Bug Fixes

• fixes MongoQuery type for typescript ^4.8.x (4af7c39), closes #​673

6.1.1 (2022-08-28)

Bug Fixes

• exports private continer property to get rid of ts error (6ffdb14), closes #​608

v6.1.0

Compare Source

Features

• adds possibility to build Ability instance from factory function (53d199f)

6.1.2 (2022-09-18)

Bug Fixes

• fixes MongoQuery type for typescript ^4.8.x (4af7c39), closes #​673

6.1.1 (2022-08-28)

Bug Fixes

• exports private continer property to get rid of ts error (6ffdb14), closes #​608

v6.0.0

Compare Source

Bug Fixes

• replaces object.hasOwnProperty with static calls to Object.hasOwn (+ polyfill) (22fa7f8), closes #​604

Features

• Angular 13 support (#​632) (6b86fd9)

BREAKING CHANGES

• drops support for angular < 13

5.4.4 (2022-05-28)

Bug Fixes

• ability: negates inverted rules in ruleToAST (#​602) (c1bdc60)
• package: add repository directory into package.json for all @​casl/* packages (#​560) (0ef534c)

5.4.3 (2021-08-17)

Bug Fixes

• release: force release because of disable pre/post hook execution of pnpm (39c20f6)

5.4.2 (2021-08-17)

Bug Fixes

• ability: makes sure that other event handlers are not lost when last handler is unregistered (ff3e75f)

5.4.1 (2021-08-16)

Bug Fixes

• ability: ensure ability call all event handlers during emit (fdf2095)

v5.4.4

Compare Source

Bug Fixes

• replaces object.hasOwnProperty with static calls to Object.hasOwn (+ polyfill) (22fa7f8), closes #​604

Features

• Angular 13 support (#​632) (6b86fd9)

BREAKING CHANGES

• drops support for angular < 13

5.4.4 (2022-05-28)

Bug Fixes

• ability: negates inverted rules in ruleToAST (#​602) (c1bdc60)
• package: add repository directory into package.json for all @​casl/* packages (#​560) (0ef534c)

5.4.3 (2021-08-17)

Bug Fixes

• release: force release because of disable pre/post hook execution of pnpm (39c20f6)

5.4.2 (2021-08-17)

Bug Fixes

• ability: makes sure that other event handlers are not lost when last handler is unregistered (ff3e75f)

5.4.1 (2021-08-16)

Bug Fixes

• ability: ensure ability call all event handlers during emit (fdf2095)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[cloudflare-workers-and-pages]

Deploying with    Cloudflare Pages

Latest commit:	64d36de
Status:	✅  Deploy successful!
Preview URL:	https://fe4ab5db.blink.pages.dev
Branch Preview URL:	https://renovate-casl-ability-6-x.blink.pages.dev

View logs

[renovate]

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json

npm ERR! code ERESOLVE
npm ERR! ERESOLVE could not resolve
npm ERR! 
npm ERR! While resolving: @casl/react@2.3.0
npm ERR! Found: @casl/ability@6.5.0
npm ERR! node_modules/@casl/ability
npm ERR!   @casl/ability@"^6.0.0" from the root project
npm ERR! 
npm ERR! Could not resolve dependency:
npm ERR! peer @casl/ability@"^3.0.0 || ^4.0.0 || ^5.1.0" from @casl/react@2.3.0
npm ERR! node_modules/@casl/react
npm ERR!   dev @casl/react@"^2.1.1" from the root project
npm ERR! 
npm ERR! Conflicting peer dependency: @casl/ability@5.4.4
npm ERR! node_modules/@casl/ability
npm ERR!   peer @casl/ability@"^3.0.0 || ^4.0.0 || ^5.1.0" from @casl/react@2.3.0
npm ERR!   node_modules/@casl/react
npm ERR!     dev @casl/react@"^2.1.1" from the root project
npm ERR! 
npm ERR! Fix the upstream dependency conflict, or retry
npm ERR! this command with --force or --legacy-peer-deps
npm ERR! to accept an incorrect (and potentially broken) dependency resolution.
npm ERR! 
npm ERR! 
npm ERR! For a full report see:
npm ERR! /tmp/worker/026167/90fa3d/cache/others/npm/_logs/2023-08-31T10_46_28_366Z-eresolve-report.txt

npm ERR! A complete log of this run can be found in: /tmp/worker/026167/90fa3d/cache/others/npm/_logs/2023-08-31T10_46_28_366Z-debug-0.log

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
blink	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Aug 31, 2023 10:46am

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json

npm warn Unknown env config "store". This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.
npm error code ERESOLVE
npm error ERESOLVE could not resolve
npm error
npm error While resolving: @casl/react@2.3.0
npm error Found: @casl/ability@6.8.0
npm error node_modules/@casl/ability
npm error   @casl/ability@"^6.0.0" from the root project
npm error
npm error Could not resolve dependency:
npm error peer @casl/ability@"^3.0.0 || ^4.0.0 || ^5.1.0" from @casl/react@2.3.0
npm error node_modules/@casl/react
npm error   dev @casl/react@"^2.1.1" from the root project
npm error
npm error Conflicting peer dependency: @casl/ability@5.4.4
npm error node_modules/@casl/ability
npm error   peer @casl/ability@"^3.0.0 || ^4.0.0 || ^5.1.0" from @casl/react@2.3.0
npm error   node_modules/@casl/react
npm error     dev @casl/react@"^2.1.1" from the root project
npm error
npm error Fix the upstream dependency conflict, or retry
npm error this command with --force or --legacy-peer-deps
npm error to accept an incorrect (and potentially broken) dependency resolution.
npm error
npm error
npm error For a full report see:
npm error /runner/cache/others/npm/_logs/2026-04-01T20_04_07_938Z-eresolve-report.txt
npm error A complete log of this run can be found in: /runner/cache/others/npm/_logs/2026-04-01T20_04_07_938Z-debug-0.log