Bump the prod-dependencies group across 1 directory with 3 updates by dependabot[bot] · Pull Request #188 · bradsaucier/opsnormal

dependabot · 2026-05-09T03:25:13Z

Bumps the prod-dependencies group with 3 updates in the / directory: react, react-dom and workbox-window.

Updates react from 19.2.5 to 19.2.6

Release notes

19.2.6 (May 6th, 2026)

React Server Components

Type hardening and performance improvements (#36425 by @eps1lon and @unstubbable)

Commits

eaf3e95 Version 19.2.6
See full diff in compare view

Updates react-dom from 19.2.5 to 19.2.6

Release notes

Sourced from react-dom's releases.

19.2.6 (May 6th, 2026)

React Server Components

Type hardening and performance improvements (#36425 by @eps1lon and @unstubbable)

Commits

eaf3e95 Version 19.2.6
See full diff in compare view

Updates workbox-window from 7.4.0 to 7.4.1

Release notes

Sourced from workbox-window's releases.

Workbox v7.4.1

What's Changed

migrate rollup v4 and plugins by @AJIb63PT in GoogleChrome/workbox#3446

Bump jws from 4.0.0 to 4.0.1 by @dependabot[bot] in GoogleChrome/workbox#3447

Bump node-forge from 1.3.1 to 1.3.3 by @dependabot[bot] in GoogleChrome/workbox#3449

Bump brace-expansion in /packages/workbox-webpack-plugin by @dependabot[bot] in GoogleChrome/workbox#3448

Bump flatted from 3.3.1 to 3.4.2 by @dependabot[bot] in GoogleChrome/workbox#3477

Bump rollup from 4.53.3 to 4.59.0 by @dependabot[bot] in GoogleChrome/workbox#3474

Bump ajv from 8.6.0 to 8.18.0 in /packages/workbox-build by @dependabot[bot] in GoogleChrome/workbox#3462

Bump ajv from 8.12.0 to 8.18.0 in /packages/workbox-cli by @dependabot[bot] in GoogleChrome/workbox#3460

Bump picomatch by @dependabot[bot] in GoogleChrome/workbox#3478

Bump picomatch from 2.3.1 to 2.3.2 in /packages/workbox-cli by @dependabot[bot] in GoogleChrome/workbox#3479

Bump lodash from 4.17.21 to 4.17.23 in /packages/workbox-webpack-plugin by @dependabot[bot] in GoogleChrome/workbox#3453

Bump lodash from 4.17.21 to 4.17.23 by @dependabot[bot] in GoogleChrome/workbox#3452

Bump ajv from 6.12.6 to 6.14.0 in /packages/workbox-webpack-plugin by @dependabot[bot] in GoogleChrome/workbox#3461

Bump lodash from 4.17.21 to 4.17.23 in /packages/workbox-cli by @dependabot[bot] in GoogleChrome/workbox#3454

CI: Fix Chrome version discrepancy by @swissspidy in GoogleChrome/workbox#3493

Add Dependabot config by @swissspidy in GoogleChrome/workbox#3492

Update actions/cache to v5 by @swissspidy in GoogleChrome/workbox#3491

Bump serialize-javascript and @rollup/plugin-terser in /packages/workbox-build by @dependabot[bot] in GoogleChrome/workbox#3485

Bump rollup from 2.79.2 to 2.80.0 in /packages/workbox-cli by @dependabot[bot] in GoogleChrome/workbox#3465

Bump actions/upload-artifact from 5 to 7 by @dependabot[bot] in GoogleChrome/workbox#3494

Bump lodash from 4.17.21 to 4.18.1 by @dependabot[bot] in GoogleChrome/workbox#3500

Bump actions/checkout from 5 to 6 by @dependabot[bot] in GoogleChrome/workbox#3501

Bump rollup from 4.59.0 to 4.60.1 by @dependabot[bot] in GoogleChrome/workbox#3498

Bump axios from 1.13.2 to 1.15.0 by @dependabot[bot] in GoogleChrome/workbox#3503

Bump postcss from 8.4.38 to 8.5.10 by @dependabot[bot] in GoogleChrome/workbox#3505

Bump follow-redirects from 1.15.11 to 1.16.0 by @dependabot[bot] in GoogleChrome/workbox#3504

Replace lodash with eta by @rtritto in GoogleChrome/workbox#3489

Bump @apideck/better-ajv-errors from 0.3.1 to 0.3.7 by @dependabot[bot] in GoogleChrome/workbox#3507

Bump github/codeql-action from 4 to 4.35.2 by @dependabot[bot] in GoogleChrome/workbox#3508

Update lock file (npm audit fix) by @swissspidy in GoogleChrome/workbox#3510

New Contributors

@rtritto made their first contribution in GoogleChrome/workbox#3489

Full Changelog: GoogleChrome/workbox@v7.4.0...v7.4.1

Commits

62b9d8b v7.4.1
b6b696c Merge pull request #3510 from GoogleChrome/chore/update-lock-file
6524a7d Update test
9a57e39 Run npm audit fix
86035d8 Update lock file
c75363a Merge pull request #3508 from GoogleChrome/dependabot/github_actions/github/c...
85383d6 Merge pull request #3507 from GoogleChrome/dependabot/npm_and_yarn/apideck/be...
a1cdb47 Bump github/codeql-action from 4 to 4.35.2
05b276d Bump @apideck/better-ajv-errors from 0.3.1 to 0.3.7
8e6df29 Merge pull request #3489 from rtritto/replace-lodash
Additional commits viewable in compare view

Bumps the prod-dependencies group with 3 updates in the / directory: [react](https://github.com/facebook/react/tree/HEAD/packages/react), [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) and [workbox-window](https://github.com/googlechrome/workbox). Updates `react` from 19.2.5 to 19.2.6 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.6/packages/react) Updates `react-dom` from 19.2.5 to 19.2.6 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.6/packages/react-dom) Updates `workbox-window` from 7.4.0 to 7.4.1 - [Release notes](https://github.com/googlechrome/workbox/releases) - [Commits](GoogleChrome/workbox@v7.4.0...v7.4.1) --- updated-dependencies: - dependency-name: react dependency-version: 19.2.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: prod-dependencies - dependency-name: react-dom dependency-version: 19.2.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: prod-dependencies - dependency-name: workbox-window dependency-version: 7.4.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: prod-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 9, 2026

dependabot Bot requested a review from bradsaucier as a code owner May 9, 2026 03:25

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 9, 2026

dependabot Bot changed the title ~~Bump the prod-dependencies group with 3 updates~~ Bump the prod-dependencies group across 1 directory with 3 updates May 9, 2026

dependabot Bot force-pushed the dependabot/npm_and_yarn/prod-dependencies-ad38fe5e2e branch from 95afdef to 93c3707 Compare May 9, 2026 21:12

bradsaucier merged commit a9d59e7 into main May 9, 2026
7 checks passed

bradsaucier deleted the dependabot/npm_and_yarn/prod-dependencies-ad38fe5e2e branch May 9, 2026 21:16

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the prod-dependencies group across 1 directory with 3 updates#188

Bump the prod-dependencies group across 1 directory with 3 updates#188
bradsaucier merged 1 commit into
mainfrom
dependabot/npm_and_yarn/prod-dependencies-ad38fe5e2e

dependabot Bot commented on behalf of github May 9, 2026 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot Bot commented on behalf of github May 9, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

19.2.6 (May 6th, 2026)

React Server Components

19.2.6 (May 6th, 2026)

React Server Components

Workbox v7.4.1

What's Changed

New Contributors

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

dependabot Bot commented on behalf of github May 9, 2026 •

edited

Loading