chore(deps): bump the production-dependencies group across 1 directory with 17 updates

[dependabot]

Bumps the production-dependencies group with 17 updates in the / directory:

Package	From	To
@logtape/sentry	2.0.2	2.0.6
@sentry/node	10.38.0	10.51.0
lru-cache	11.2.4	11.3.5
node-modules-tools	1.3.2	1.4.2
@logtape/drizzle-orm	2.0.2	2.0.6
dotenv	17.2.3	17.4.2
semver	7.7.3	7.7.4
better-result	2.5.2	2.9.0
@logtape/logtape	2.0.2	2.0.6
@types/node	25.2.1	25.6.0
drizzle-orm	0.45.1	0.45.2
postgres	3.4.8	3.4.9
prettier	3.8.1	3.8.3
publint	0.3.17	0.3.18
typescript	5.9.3	6.0.3
valibot	1.2.0	1.3.1
wrangler	4.63.0	4.87.0

Updates @logtape/sentry from 2.0.2 to 2.0.6

Changelog

Sourced from @​logtape/sentry's changelog.

Version 2.0.6

Released on May 1, 2026.

@​logtape/logtape

• Fixed withCategoryPrefix() so logger configuration is applied using the prefixed effective category. Previously, records displayed the prefixed category but still used the original logger category for lowestLevel, filters, and sink routing. [#151]

#151: dahlia/logtape#151

Version 2.0.5

Released on March 24, 2026.

@​logtape/logtape

• Fixed a bug where configure() and configureSync() threw in Vercel Edge-like runtimes that define EdgeRuntime but do not provide browser addEventListener() lifecycle hooks. LogTape now skips automatic cleanup hook registration when neither process.on() nor addEventListener() is available. [#149]

#149: dahlia/logtape#149

Version 2.0.4

Released on February 26, 2026.

@​logtape/redaction

• Fixed CREDIT_CARD_NUMBER_PATTERN to correctly match American Express-style credit card numbers (e.g., 1234-5678-901234) on Bun. The previous regex /(?:\d{4}-){3}\d{4}|(?:\d{4}-){2}\d{6}/g triggered a backtracking bug in Bun's regex engine where, after the first alternative partially consumed a common prefix and failed, the engine incorrectly started the second alternative from the failure position rather than from the original match position. The pattern has been rewritten as /(?:\d{4}-){2}(?:\d{4}-\d{4}|\d{6})/g to factor out the common prefix, which avoids the issue while preserving the same matching behavior.

Version 2.0.3

... (truncated)

Commits

• 5998243 Version bump
• bfb540f Version bump
• c9255ba Version bump
• f53b69a Version bump
• See full diff in compare view

Updates @sentry/node from 10.38.0 to 10.51.0

Release notes

Sourced from @​sentry/node's releases.

10.51.0

Important Changes

• feat(cloudflare): Add trace propagation for RPC method calls (#20343)

  Trace context is now propagated across Cloudflare Workers RPC calls, connecting traces between Workers and Durable Objects. This feature is opt-in and requires setting enableRpcTracePropagation: true in your SDK configuration:

  // Worker
  export default Sentry.withSentry(
    env => ({
      dsn: env.SENTRY_DSN,
      enableRpcTracePropagation: true,
    }),
    handler,
  );
  // Durable Object
  export const MyDurableObject = Sentry.instrumentDurableObjectWithSentry(
  env => ({
  dsn: env.SENTRY_DSN,
  enableRpcTracePropagation: true,
  }),
  MyDurableObjectBase,
  );

• feat(hono)!: Change setup for @sentry/hono/node (init in external file) (#20497)

  To improve Node.js instrumentation, the sentry() middleware exported from @sentry/hono/node no longer accepts configuration options. Instead, you must configure the SDK by calling Sentry.init() in a dedicated instrumentation file that runs before your application code (read more in the Hono SDK readme:

  // instrument.mjs (or instrument.ts)
  import * as Sentry from '@sentry/hono/node';
  Sentry.init({
  dsn: 'DSN',
  tracesSampleRate: 1.0,
  });

• feat(nitro): Add @sentry/nitro SDK (#19224)

  A new @sentry/nitro package provides first-class Sentry support for Nitro applications, with HTTP handler and error instrumentation, middleware tracing, request isolation, and build-time source map uploading via withSentryConfig. Read more in the Nitro SDK docs and the Nitro SDK readme.

Other Changes

... (truncated)

Changelog

Sourced from @​sentry/node's changelog.

10.51.0

Important Changes

• feat(cloudflare): Add trace propagation for RPC method calls (#20343)

  Trace context is now propagated across Cloudflare Workers RPC calls, connecting traces between Workers and Durable Objects. This feature is opt-in and requires setting enableRpcTracePropagation: true in your SDK configuration:

  // Worker
  export default Sentry.withSentry(
    env => ({
      dsn: env.SENTRY_DSN,
      enableRpcTracePropagation: true,
    }),
    handler,
  );
  // Durable Object
  export const MyDurableObject = Sentry.instrumentDurableObjectWithSentry(
  env => ({
  dsn: env.SENTRY_DSN,
  enableRpcTracePropagation: true,
  }),
  MyDurableObjectBase,
  );

• feat(hono)!: Change setup for @sentry/hono/node (init in external file) (#20497)

  To improve Node.js instrumentation, the sentry() middleware exported from @sentry/hono/node no longer accepts configuration options. Instead, you must configure the SDK by calling Sentry.init() in a dedicated instrumentation file that runs before your application code (read more in the Hono SDK readme:

  // instrument.mjs (or instrument.ts)
  import * as Sentry from '@sentry/hono/node';
  Sentry.init({
  dsn: 'DSN',
  tracesSampleRate: 1.0,
  });

• feat(nitro): Add @sentry/nitro SDK (#19224)

  A new @sentry/nitro package provides first-class Sentry support for Nitro applications, with HTTP handler and error instrumentation, middleware tracing, request isolation, and build-time source map uploading via withSentryConfig. Read more in the Nitro SDK docs and the Nitro SDK readme.

Other Changes

... (truncated)

Commits

• dc0b839 release: 10.51.0
• b3cabee Merge pull request #20599 from getsentry/prepare-release/10.51.0
• 3be99a9 meta(changelog): Update changelog for 10.51.0
• bea1aad test(browser): Unflake some more tests (#20591)
• 50aa085 test(node): Unflake postgres tests (#20593)
• 1166839 fix(hono): Distinguish .use() middleware in sub-apps from .all() handlers...
• 217ad4a test(node): Fix flaky ANR test (#20592)
• 91ffb3f test(node): Fix flaky worker thread integration test (#20588)
• c4e3902 chore(ci): Do not report flaky test issues if we cannot find a test name (#20...
• c0005cd test(node): Update timeout for cron integration tests (#20586)
• Additional commits viewable in compare view

Updates lru-cache from 11.2.4 to 11.3.5

Changelog

Sourced from lru-cache's changelog.

cringe lorg

11.3

• Add observability features, expand the coverage of LRUCache.Status objects.

11.2

• Add the perf option to specify performance, Date, or any other object with a now() method that returns a number.

11.1

• Add the onInsert method

11.0

• Drop support for node less than v20

10.4

• Accidental minor update, should've been patch.

10.3

• add forceFetch() method
• set disposeReason to 'expire' when it's the result of a TTL expiration, or 'fetch' when it's the result of an aborted or undefined-returning fetch()
• add memo() method

10.2

• types: implement the Map<K, V> interface

10.1

• add cache.info(key) to get value as well as ttl and size information.

10.0

• cache.fetch() return type is now Promise<V | undefined> instead of Promise<V | void>. This is an irrelevant change practically speaking, but can require changes for TypeScript users.

9.1

... (truncated)

Commits

• ad10607 11.3.5
• 697314e minify browser export
• 1723a95 11.3.4
• 43b7583 add browser esm export condition to not even try to load diagnostics channel
• e9ae122 comment typo
• 6de4a00 correct comment (it's not about TLA)
• 21db42b 11.3.3
• 28e4dac Remove TLA, feature is DOA :(
• 36204cc remove unnecessary unused internal export
• b08aa7a test to ensure TLA is not in use in node
• Additional commits viewable in compare view

Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.

Updates node-modules-tools from 1.3.2 to 1.4.2

Release notes

Sourced from node-modules-tools's releases.

v1.4.2

No significant changes

    View changes on GitHub

v1.4.1

No significant changes

    View changes on GitHub

v1.4.0

   🚀 Features

• Add vulnerability tab on report view  -  by @​SimYunSup in antfu/node-modules-inspector#111 (f44e5)

   🐞 Bug Fixes

• Typo of flamegraph  -  by @​KazariEX in antfu/node-modules-inspector#144 (beb01)
• Improve esm analyze  -  by @​antfu (97b5b)

    View changes on GitHub

Commits

• 04c6791 chore: release v1.4.2
• acbe17e chore: release v1.4.1
• d7550de chore: snapshot
• 5e5247f chore: fix build
• c15e9f1 chore: release v1.4.0
• 07c6286 chore: update deps
• f44e5ae feat: Add vulnerability tab on report view (#111)
• 97b5b4f fix: improve esm analyze
• See full diff in compare view

Updates @logtape/drizzle-orm from 2.0.2 to 2.0.6

Changelog

Sourced from @​logtape/drizzle-orm's changelog.

Version 2.0.6

Released on May 1, 2026.

@​logtape/logtape

• Fixed withCategoryPrefix() so logger configuration is applied using the prefixed effective category. Previously, records displayed the prefixed category but still used the original logger category for lowestLevel, filters, and sink routing. [#151]

#151: dahlia/logtape#151

Version 2.0.5

Released on March 24, 2026.

@​logtape/logtape

• Fixed a bug where configure() and configureSync() threw in Vercel Edge-like runtimes that define EdgeRuntime but do not provide browser addEventListener() lifecycle hooks. LogTape now skips automatic cleanup hook registration when neither process.on() nor addEventListener() is available. [#149]

#149: dahlia/logtape#149

Version 2.0.4

Released on February 26, 2026.

@​logtape/redaction

• Fixed CREDIT_CARD_NUMBER_PATTERN to correctly match American Express-style credit card numbers (e.g., 1234-5678-901234) on Bun. The previous regex /(?:\d{4}-){3}\d{4}|(?:\d{4}-){2}\d{6}/g triggered a backtracking bug in Bun's regex engine where, after the first alternative partially consumed a common prefix and failed, the engine incorrectly started the second alternative from the failure position rather than from the original match position. The pattern has been rewritten as /(?:\d{4}-){2}(?:\d{4}-\d{4}|\d{6})/g to factor out the common prefix, which avoids the issue while preserving the same matching behavior.

Version 2.0.3

... (truncated)

Commits

• 5998243 Version bump
• bfb540f Version bump
• c9255ba Version bump
• f53b69a Version bump
• See full diff in compare view

Updates dotenv from 17.2.3 to 17.4.2

Changelog

Sourced from dotenv's changelog.

17.4.2 (2026-04-12)

Changed

• Improved skill files - tightened up details (#1009)

17.4.1 (2026-04-05)

Changed

• Change text injecting to injected (#1005)

17.4.0 (2026-04-01)

Added

• Add skills/ folder with focused agent skills: skills/dotenv/SKILL.md (core usage) and skills/dotenvx/SKILL.md (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (npx skills add motdotla/dotenv)

Changed

• Tighten up logs: ◇ injecting env (14) from .env (#1003)

17.3.1 (2026-02-12)

Changed

• Fix as2 example command in README and update spanish README

17.3.0 (2026-02-12)

Added

• Add a new README section on dotenv’s approach to the agentic future.

Changed

• Rewrite README to get humans started more quickly with less noise while simultaneously making more accessible for llms and agents to go deeper into details.

17.2.4 (2026-02-05)

Changed

• Make DotenvPopulateInput accept NodeJS.ProcessEnv type (#915)

• Give back to dotenv by checking out my newest project vestauth. It is auth for agents. Thank you for using my software.

Commits

• f116f70 17.4.2
• 3a81612 fix visual order of faq
• 13f55a8 Merge branch 'skill'
• 4bbbf73 reorganize faq
• c3da64b Merge pull request #1009 from motdotla/skill
• 6f743b1 update source
• fc2c624 update skill
• 972315b Tighten up skill
• 2795fce reorganize faq
• d5495d4 adjust skill
• Additional commits viewable in compare view

Updates semver from 7.7.3 to 7.7.4

Release notes

Sourced from semver's releases.

v7.7.4

7.7.4 (2026-01-16)

Bug Fixes

• a29faa5 #835 cli: pass options to semver.valid() for loose version validation (#835) (@​mldangelo)

Documentation

• 1d28d5e #836 fix typos and update -n CLI option documentation (#836) (@​mldangelo)

Dependencies

• 120968b #840 @npmcli/template-oss@4.29.0 (#840)

Chores

• 44d7130 #824 bump @​npmcli/eslint-config from 5.1.0 to 6.0.0 (#824) (@​dependabot[bot])
• 7073576 #820 reorder parameters in invalid-versions.js test (#820) (@​reggi)
• 5816d4c #829 bump @​npmcli/template-oss from 4.28.0 to 4.28.1 (#829) (@​dependabot[bot], @​npm-cli-bot)

Changelog

Sourced from semver's changelog.

7.7.4 (2026-01-16)

Bug Fixes

• a29faa5 #835 cli: pass options to semver.valid() for loose version validation (#835) (@​mldangelo)

Documentation

• 1d28d5e #836 fix typos and update -n CLI option documentation (#836) (@​mldangelo)

Dependencies

• 120968b #840 @npmcli/template-oss@4.29.0 (#840)

Chores

• 44d7130 #824 bump @​npmcli/eslint-config from 5.1.0 to 6.0.0 (#824) (@​dependabot[bot])
• 7073576 #820 reorder parameters in invalid-versions.js test (#820) (@​reggi)
• 5816d4c #829 bump @​npmcli/template-oss from 4.28.0 to 4.28.1 (#829) (@​dependabot[bot], @​npm-cli-bot)

Commits

• 5993c2e chore: release 7.7.4 (#839)
• 120968b deps: @​npmcli/template-oss@​4.29.0 (#840)
• a29faa5 fix(cli): pass options to semver.valid() for loose version validation (#835)
• 1d28d5e docs: fix typos and update -n CLI option documentation (#836)
• 5816d4c chore: bump @​npmcli/template-oss from 4.28.0 to 4.28.1 (#829)
• ab9e28a chore: bump @​npmcli/template-oss from 4.27.1 to 4.28.0 (#827)
• 44d7130 chore: bump @​npmcli/eslint-config from 5.1.0 to 6.0.0 (#824)
• 7073576 chore: reorder parameters in invalid-versions.js test (#820)
• 16a35f5 chore: bump @​npmcli/template-oss from 4.26.0 to 4.27.1 (#823)
• 3a3459d chore: bump @​npmcli/template-oss from 4.25.1 to 4.26.0 (#818)
• See full diff in compare view

Updates better-result from 2.5.2 to 2.9.0

Release notes

Sourced from better-result's releases.

v2.9.0

What's Changed

• fix: preserve Err covariance in tryRecover by @​dmmulroy in dmmulroy/better-result#64
• Revert "fix: preserve Err covariance in tryRecover" by @​dmmulroy in dmmulroy/better-result#65
• Fix tryRecover success type inference by @​dmmulroy in dmmulroy/better-result#66
• feat: allow TaggedError to short-circuit Result.gen with yield* by @​trvswgnr in dmmulroy/better-result#63
• Fix object overload editor hints by @​dmmulroy in dmmulroy/better-result#67
• Fix Result instance callback inference by @​dmmulroy in dmmulroy/better-result#68

Full Changelog: dmmulroy/better-result@v2.8.2...v2.9.0

v2.8.2

What's Changed

• Add documentation website link to README and package.json by @​Copilot in dmmulroy/better-result#50
• fix: minify JS bundle (23 kB → 6.85 kB) by @​simulieren in dmmulroy/better-result#52

New Contributors

• @​Copilot made their first contribution in dmmulroy/better-result#50

Full Changelog: dmmulroy/better-result@v2.8.1...v2.8.2

v2.8.1

What's Changed

• fix: reduce npm unpacked size from 305 kB to 76 kB by @​simulieren in dmmulroy/better-result#51

New Contributors

• @​simulieren made their first contribution in dmmulroy/better-result#51

Full Changelog: dmmulroy/better-result@v2.8.0...v2.8.1

v2.8.0

What's Changed

Result API

• Added tryRecover and tryRecoverAsync
• Added tapError, tapErrorAsync, tapBoth, and tapBothAsync

Packaging and skills

• Removed the packaged interactive CLI
• Removed the CLI runtime dependency from the published package
• Renamed and rebuilt the bundled agent skills as portable SKILL.md skills:
  • better-result-adopt
  • better-result-migrate-v2

Notes

• better-result@2.8.0 is now published on npm
• Full compare: dmmulroy/better-result@v2.7.0...v2.8.0

v2.7.0

... (truncated)

Commits

• 59cd9c5 2.9.0
• c8e3423 Fix Result instance callback inference (#68)
• fdaefab Fix object overload editor hints (#67)
• 59b8f1e feat: allow TaggedError to short-circuit Result.gen with yield* (#63)
• 30f8949 Fix tryRecover success type inference (#66)
• 81baefd Revert "fix: preserve Err covariance in tryRecover (#64)" (#65)
• 0b38bc2 fix: preserve Err covariance in tryRecover (#64)
• b3a4a2a 2.8.2
• df5586d fix: minify JS bundle output (#52)
• e657a93 Add documentation website link to README and package.json (#50)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for better-result since your current version.

Updates @logtape/logtape from 2.0.2 to 2.0.6

Changelog

Sourced from @​logtape/logtape's changelog.

Version 2.0.6

Released on May 1, 2026.

@​logtape/logtape

• Fixed withCategoryPrefix() so logger configuration is applied using the prefixed effective category. Previously, records displayed the prefixed category but still used the original logger category for lowestLevel, filters, and sink routing. [#151]

#151: dahlia/logtape#151

Version 2.0.5

Released on March 24, 2026.

@​logtape/logtape

• Fixed a bug where configure() and configureSync() threw in Vercel Edge-like runtimes that define EdgeRuntime but do not provide browser addEventListener() lifecycle hooks. LogTape now skips automatic cleanup hook registration when neither process.on() nor addEventListener() is available. [#149]

#149: dahlia/logtape#149

Version 2.0.4

Released on February 26, 2026.

@​logtape/redaction

• Fixed CREDIT_CARD_NUMBER_PATTERN to correctly match American Express-style credit card numbers (e.g., 1234-5678-901234) on Bun. The previous regex /(?:\d{4}-){3}\d{4}|(?:\d{4}-){2}\d{6}/g triggered a backtracking bug in Bun's regex engine where, after the first alternative partially consumed a common prefix and failed, the engine incorrectly started the second alternative from the failure position rather than from the original match position. The pattern has been rewritten as /(?:\d{4}-){2}(?:\d{4}-\d{4}|\d{6})/g to factor out the common prefix, which avoids the issue while preserving the same matching behavior.

Version 2.0.3

... (truncated)

Commits

• 3a2fbe7 Merge tag '1.3.8' into 2.0-maintenance
• 29696b3 Route prefixed logs by effective category
• 5998243 Version bump
• 5c0d948 Fix Edge cleanup hook registration
• bfb540f Version bump
• c9255ba Version bump
• e1ff153 Refine meta logger notice wording and docs
• f53b69a Version bump
• c7596e5 Version bump
• f4ea4e3 Version bump
• See full diff in compare view

Updates @types/node from 25.2.1 to 25.6.0

Commits

• See full diff in compare view

Updates drizzle-orm from 0.45.1 to 0.45.2

Release notes

Sourced from drizzle-orm's releases.

0.45.2

• Fixed sql.identifier(), sql.as() escaping issues. Previously all the values passed to this functions were not properly escaped causing a possible SQL Injection (CWE-89) vulnerability

Thanks to @​EthanKim88, @​0x90sh and @​wgoodall01 for reaching out to us with a reproduction and suggested fix

Commits

• 273c780 + 0.45.2 (#5534)
• 4aa6ecf Kit updates (#5490)
• e8e6edf feat(drizzle-kit): support d1 via binding (#5302)
• See full diff in compare view

Updates postgres from 3.4.8 to 3.4.9

Release notes

Sourced from postgres's releases.

v3.4.9

• Fix porsager/postgres#1143 1e92809

---

porsager/postgres@v3.4.8...v3.4.9

Commits

• e7dfa14 3.4.9
• cc29931 build
• 1e92809 Fix porsager/postgres#1143
• See full diff in compare view

Updates prettier from 3.8.1 to 3.8.3

Release notes

Sourced from prettier's releases.

3.8.3

• SCSS: Prevent trailing comma in if() function (prettier/prettier#18471 by @​kovsu)

🔗 Changelog

3.8.2

• Support Angular v21.2

🔗 Changelog

Changelog

Sourced from prettier's changelog.

3.8.3

diff

SCSS: Prevent trailing comma in if() function (#18471 by @​kovsu)

// Input
$value: if(sass(false): 1; else: -1);
// Prettier 3.8.2
$value: if(
sass(false): 1; else: -1,
);
// Prettier 3.8.3
$value: if(sass(false): 1; else: -1);

3.8.2

diff

Angular: Support Angular v21.2 (#18722, #19034 by @​fisker)

Exhaustive typechecking with @default never;

<!-- Input -->
@switch (foo) {
  @case (1) {}
  @default never;
}
<!-- Prettier 3.8.1 -->
SyntaxError: Incomplete block "default never". If you meant to write the @ character, you should use the "&#64;" HTML entity instead. (3:3)
<!-- Prettier 3.8.2 -->
@​switch (foo) {
@​case (1) {}
@​default never;
}

arrow function and instanceof expressions.

</tr></table> 

... (truncated)

Commits

• d7108a7 Release 3.8.3
• 177f908 Prevent trailing comma in SCSS if() function (#18471)
• 1cd4066 Release @​prettier/plugin-oxc@​0.1.4
• a8700e2 Update oxc-parser to v0.125.0
• 752157c Fix tests
• 053fd41 Bump Prettier dependency to 3.8.2
• 904c636 Clean changelog_unreleased
• dc1f7fc Update dependents count
• b31557c Release 3.8.2
• 96bbaed Support Angular v21.2 (#18722)
• Additional commits viewable in compare view

Updates publint from 0.3.17 to 0.3.18

Release notes

Sourced from publint's releases.

publint@0.3.18

Patch Changes

• Fix deprecated subpath mapping check crash and make getPkgPathValue from publint/utils return undefined if the path is invalid (ad2aa9c)

Changelog

Sourced from publint's changelog.

0.3.18

Patch Changes

• Fix deprecated subpath mapping check crash and make getPkgPathValue from publint/utils return undefined if the path is invalid (ad2aa9c)

Commits

• 9808a56 Release packages (#219)
• ad2aa9c Fix deprecated subpath mapping check
• 113388f Update docs
• c2d2d70 Update dependencies
• See full diff in compare view

Updates typescript from 5.9.3 to 6.0.3

Release notes

Sourced from typescript's releases.

TypeScript 6.0.3

For release notes, check out the release announcement blog post.

• fixed issues query for TypeScript 6.0.0 (Beta).
• fixed issues query for TypeScript 6.0.1 (RC).
• fixed issues query for TypeScript 6.0.2 (Stable).
• fixed issues query for TypeScript 6.0.3 (Stable).

Downloads are available on:

• npm

TypeScript 6.0

For release notes, check out the release announcement blog post.

• fixed issues query for TypeScript 6.0.0 (Beta).
• fixed issues query for TypeScript 6.0.1 (RC).
• fixed issues query for TypeScript 6.0.2 (Stable).

Downloads are available on:

• npm

TypeScript 6.0 Beta

For release notes, check out the release announcement.

• fixed issues query for Typescript 6.0.0 (Beta).

Downloads are available on:

• npm

Commits

• 050880c Bump version to 6.0.3 and LKG
• eeae9dd 🤖 Pick PR #63401 (Also check package name validity in...) into release-6.0 (#...
• ad1c695 🤖 Pick PR #63368 (Harden ATA package name filtering) into release-6.0 (#63372)
• 0725fb4 🤖 Pick PR #63310 (Mark class property initializers as...) into release-6.0 (#...
• 607a22a Bump version to 6.0.2 and LKG
• 9e72ab7 🤖 Pick PR #63239 (Fix missing lib files in reused pro...) into release-6.0 (#...
• 35ff23d 🤖 Pick PR #63163 (Port anyFunctionType subtype fix an...) into release-6.0 (#...
• e175b69 Bump version to 6.0.1-rc and LKG
• af4caac Update LKG
• 8efd7e8 Merge remote-tracking branch 'origin/main' into release-6.0
• Additional commits viewable in compare view

Updates valibot from 1.2.0 to 1.3.1

Release notes

Sourced from valibot's releases.

v1.3.1

• Change MAC48_REGEX, MAC64_REGEX and MAC_REGEX to drop the i flag for better JSON Schema compatibility (pull request #1430)
• Change hash action to use case-expanded character classes instead of the i flag (pull request #1430)

v1.3.0

Many thanks to @​EskiMojo14, @​yslpn, @​alexilyaev, @​idleberg, @​BerkliumBirb and @​frenzzy for contributing to this release.

Read the release notes on our website for a quick overview of the most exciting new features in this release.

• Add guard transformation action to narrow types using type predicates (pull request #1204)
• Add parseBoolean transformation action to parse boolean values from strings and other types (pull request #1251)
• Add isrc validation action to validate ISRC codes (pull request #1373)
• Add cache method for caching schema output by input (pull request #1170)
• Add domain validation action to validate domain names (pull request #1284)
• Add jwsCompact validation action to validate JWS compact strings (pull request Description has been truncated