Bump the minor-and-patch group across 3 directories with 65 updates by dependabot[bot] · Pull Request #2555 · stellar/freighter

dependabot · 2026-01-27T16:25:20Z

Bumps the minor-and-patch group with 65 updates in the / directory:

Package	From	To
@babel/core	`7.25.8`	`7.28.6`
@babel/eslint-parser	`7.25.8`	`7.28.6`
@babel/plugin-proposal-optional-chaining	`7.18.9`	`7.21.0`
@babel/preset-env	`7.25.8`	`7.28.6`
@babel/preset-react	`7.26.3`	`7.28.5`
@babel/preset-typescript	`7.25.7`	`7.28.5`
@testing-library/dom	`10.4.0`	`10.4.1`
@testing-library/jest-dom	`6.6.3`	`6.9.1`
@typescript-eslint/eslint-plugin	`8.20.0`	`8.54.0`
@typescript-eslint/parser	`8.20.0`	`8.54.0`
@vercel/ncc	`0.38.3`	`0.38.4`
eslint	`9.18.0`	`9.39.2`
eslint-config-prettier	`10.0.1`	`10.1.8`
eslint-plugin-import	`2.31.0`	`2.32.0`
eslint-plugin-prettier	`5.2.3`	`5.5.5`
eslint-plugin-react	`7.37.4`	`7.37.5`
eslint-webpack-plugin	`5.0.0`	`5.0.2`
got	`14.4.5`	`14.6.6`
jest-localstorage-mock	`2.4.3`	`2.4.26`
prettier	`3.5.1`	`3.8.1`
pretty-quick	`4.0.0`	`4.2.2`
ts-loader	`9.5.1`	`9.5.4`
typescript	`5.7.3`	`5.9.3`
webpack	`5.97.1`	`5.104.1`
webpack-dev-server	`5.2.1`	`5.2.3`
@lavamoat/allow-scripts	`3.3.1`	`3.4.2`
@lavamoat/preinstall-always-fail	`2.1.0`	`2.1.1`
jest-fixed-jsdom	`0.0.9`	`0.0.11`
@blockaid/client	`0.31.0`	`0.65.0`
bignumber.js	`9.3.0`	`9.3.1`
@docusaurus/core	`3.6.3`	`3.9.2`
@docusaurus/preset-classic	`3.6.3`	`3.9.2`
react	`19.0.3`	`19.2.4`
@types/react	`19.0.12`	`19.2.10`
react-dom	`19.0.3`	`19.2.4`
@types/react-dom	`19.0.3`	`19.2.3`
react-is	`19.0.3`	`19.2.4`
styled-components	`6.1.14`	`6.3.8`
@ledgerhq/hw-app-str	`7.2.0`	`7.4.0`
@ledgerhq/hw-transport-webhid	`6.30.6`	`6.31.0`
@reduxjs/toolkit	`2.5.0`	`2.11.2`
@testing-library/react	`16.3.0`	`16.3.2`
@types/chrome	`0.0.287`	`0.1.36`
@types/webextension-polyfill	`0.12.0`	`0.12.4`
concurrently	`9.1.2`	`9.2.1`
copy-webpack-plugin	`13.0.0`	`13.0.1`
css-loader	`7.1.2`	`7.1.3`
dotenv-webpack	`8.1.0`	`8.1.1`
formik	`2.4.6`	`2.4.9`
html-webpack-plugin	`5.6.3`	`5.6.6`
i18next	`25.0.1`	`25.8.0`
i18next-browser-languagedetector	`8.0.5`	`8.2.0`
lodash	`4.17.21`	`4.17.23`
@types/lodash	`4.17.16`	`4.17.23`
mini-css-extract-plugin	`2.9.2`	`2.10.0`
react-router-dom	`7.5.1`	`7.13.0`
sass	`1.86.3`	`1.97.3`
sass-loader	`16.0.5`	`16.0.6`
semver	`7.7.1`	`7.7.3`
@types/semver	`7.5.8`	`7.7.1`
ses	`1.12.0`	`1.14.0`
yup	`1.6.1`	`1.7.1`
@playwright/test	`1.49.0`	`1.58.0`
terser-webpack-plugin	`5.3.14`	`5.3.16`
url	`0.11.1`	`0.11.4`

Bumps the minor-and-patch group with 5 updates in the /@shared/api directory:

Package	From	To
prettier	`3.5.3`	`3.8.1`
typescript	`5.8.3`	`5.9.3`
@lavamoat/allow-scripts	`3.3.2`	`3.4.2`
@blockaid/client	`0.31.0`	`0.65.0`
bignumber.js	`9.3.0`	`9.3.1`

Bumps the minor-and-patch group with 35 updates in the /extension directory:

Package	From	To
prettier	`3.5.3`	`3.8.1`
pretty-quick	`4.1.1`	`4.2.2`
@lavamoat/allow-scripts	`3.3.2`	`3.4.2`
bignumber.js	`9.3.0`	`9.3.1`
react	`19.0.3`	`19.2.4`
@types/react	`19.0.12`	`19.2.10`
react-dom	`19.0.3`	`19.2.4`
@types/react-dom	`19.1.2`	`19.2.3`
@ledgerhq/hw-app-str	`7.2.0`	`7.4.0`
@ledgerhq/hw-transport-webhid	`6.30.6`	`6.31.0`
@reduxjs/toolkit	`2.5.0`	`2.11.2`
@testing-library/react	`16.3.0`	`16.3.2`
@types/chrome	`0.0.287`	`0.1.36`
@types/webextension-polyfill	`0.12.0`	`0.12.4`
concurrently	`9.1.2`	`9.2.1`
copy-webpack-plugin	`13.0.0`	`13.0.1`
css-loader	`7.1.2`	`7.1.3`
dotenv-webpack	`8.1.0`	`8.1.1`
formik	`2.4.6`	`2.4.9`
html-webpack-plugin	`5.6.3`	`5.6.6`
i18next	`25.0.1`	`25.8.0`
i18next-browser-languagedetector	`8.0.5`	`8.2.0`
lodash	`4.17.21`	`4.17.23`
@types/lodash	`4.17.16`	`4.17.23`
mini-css-extract-plugin	`2.9.2`	`2.10.0`
react-router-dom	`7.5.1`	`7.13.0`
sass	`1.86.3`	`1.97.3`
sass-loader	`16.0.5`	`16.0.6`
semver	`7.7.1`	`7.7.3`
@types/semver	`7.5.8`	`7.7.1`
ses	`1.12.0`	`1.14.0`
yup	`1.6.1`	`1.7.1`
@playwright/test	`1.49.0`	`1.58.0`
terser-webpack-plugin	`5.3.14`	`5.3.16`
url	`0.11.1`	`0.11.4`

Updates @babel/core from 7.25.8 to 7.28.6

Release notes

Sourced from @babel/core's releases.

v7.28.6 (2026-01-12)

Thanks @kadhirash and @kolvian for your first PRs!

🐛 Bug Fix

babel-cli, babel-code-frame, babel-core, babel-helper-check-duplicate-nodes, babel-helper-fixtures, babel-helper-plugin-utils, babel-node, babel-plugin-transform-flow-comments, babel-plugin-transform-modules-commonjs, babel-plugin-transform-property-mutators, babel-preset-env, babel-traverse, babel-types

#17589 Improve Unicode handling in code-frame tokenizer (@JLHwung)

babel-plugin-transform-regenerator

#17556 fix: transform-regenerator correctly handles scope (@liuxingbaoyu)

babel-plugin-transform-react-jsx

#17538 fix: Keep jsx comments (@liuxingbaoyu)

💅 Polish

babel-core, babel-standalone

#17606 Polish(standalone): improve message on invalid preset/plugin (@JLHwung)

🏠 Internal

babel-plugin-bugfix-v8-static-class-fields-redefine-readonly, babel-plugin-proposal-decorators, babel-plugin-proposal-import-attributes-to-assertions, babel-plugin-proposal-import-wasm-source, babel-plugin-syntax-async-do-expressions, babel-plugin-syntax-decorators, babel-plugin-syntax-destructuring-private, babel-plugin-syntax-do-expressions, babel-plugin-syntax-explicit-resource-management, babel-plugin-syntax-export-default-from, babel-plugin-syntax-flow, babel-plugin-syntax-function-bind, babel-plugin-syntax-function-sent, babel-plugin-syntax-import-assertions, babel-plugin-syntax-import-attributes, babel-plugin-syntax-import-defer, babel-plugin-syntax-import-source, babel-plugin-syntax-jsx, babel-plugin-syntax-module-blocks, babel-plugin-syntax-optional-chaining-assign, babel-plugin-syntax-partial-application, babel-plugin-syntax-pipeline-operator, babel-plugin-syntax-throw-expressions, babel-plugin-syntax-typescript, babel-plugin-transform-async-generator-functions, babel-plugin-transform-async-to-generator, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-dotall-regex, babel-plugin-transform-duplicate-named-capturing-groups-regex, babel-plugin-transform-explicit-resource-management, babel-plugin-transform-exponentiation-operator, babel-plugin-transform-json-strings, babel-plugin-transform-logical-assignment-operators, babel-plugin-transform-nullish-coalescing-operator, babel-plugin-transform-numeric-separator, babel-plugin-transform-object-rest-spread, babel-plugin-transform-optional-catch-binding, babel-plugin-transform-optional-chaining, babel-plugin-transform-private-methods, babel-plugin-transform-private-property-in-object, babel-plugin-transform-regexp-modifiers, babel-plugin-transform-unicode-property-regex, babel-plugin-transform-unicode-sets-regex

#17580 Allow Babel 8 in compatible Babel 7 plugins (@nicolo-ribaudo)

🏃‍♀️ Performance

babel-plugin-transform-react-jsx

#17555 perf: Use lighter traversal for jsx __source,__self (@liuxingbaoyu)

Committers: 7

Babel Bot (@babel-bot)

Eliot Pontarelli (@kolvian)

Huáng Jùnliàng (@JLHwung)

Kadhirash Sivakumar (@kadhirash)

Nicolò Ribaudo (@nicolo-ribaudo)

@liuxingbaoyu

coderaiser (@coderaiser)

v7.28.5 (2025-10-23)

Thank you @CO0Ki3, @Olexandr88, and @youthfulhps for your first PRs!

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

... (truncated)

Changelog

Sourced from @babel/core's changelog.

Changelog

Tags:

💥 [Breaking Change]

👓 [Spec Compliance]

🚀 [New Feature]

🐛 [Bug Fix]

📝 [Documentation]

🏠 [Internal]

💅 [Polish]

Note: Gaps between patch versions are faulty, broken or test releases.

This file contains the changelog starting from v7.15.0.

See CHANGELOG - v7.0.0 to v7.14.9 for v7.0.0 to v7.14.9 changes.

See CHANGELOG - v7 prereleases for v7.0.0-alpha.1 to v7.0.0-rc.4 changes.

See CHANGELOG - v4, CHANGELOG - v5, and CHANGELOG - v6 for v4.x-v6.x changes.

See CHANGELOG - 6to5 for the pre-4.0.0 version changelog.

See Babylon's CHANGELOG for the Babylon pre-7.0.0-beta.29 version changelog.

See babel-eslint's releases for the changelog before @babel/eslint-parser 7.8.0.

See eslint-plugin-babel's releases for the changelog before @babel/eslint-plugin 7.8.0.

v7.28.5 (2025-10-23)

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

... (truncated)

Commits

d7f4008 v7.28.6
e130225 Polish(standalone): improve message on invalid preset/plugin (#17606)
99dcba5 chore: enable some ts-eslint rules (#17592)
c92c491 Improve Unicode handling in code-frame tokenizer (#17589)
d725e39 Add BABEL_7_TO_8_DANGEROUSLY_DISABLE_VERSION_CHECK (#17569)
c1b55f6 Use eslint.config.mts (#17573)
61647ae v7.28.5
42cb285 Improve @babel/core types (#17404)
da0d1ad Faster finding of locations in buildCodeFrameError (#17490)
35055e3 v7.28.4
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @babel/core since your current version.

Updates @babel/eslint-parser from 7.25.8 to 7.28.6

Release notes

Sourced from @babel/eslint-parser's releases.

v7.28.6 (2026-01-12)

Thanks @kadhirash and @kolvian for your first PRs!

🐛 Bug Fix

babel-cli, babel-code-frame, babel-core, babel-helper-check-duplicate-nodes, babel-helper-fixtures, babel-helper-plugin-utils, babel-node, babel-plugin-transform-flow-comments, babel-plugin-transform-modules-commonjs, babel-plugin-transform-property-mutators, babel-preset-env, babel-traverse, babel-types

#17589 Improve Unicode handling in code-frame tokenizer (@JLHwung)

babel-plugin-transform-regenerator

#17556 fix: transform-regenerator correctly handles scope (@liuxingbaoyu)

babel-plugin-transform-react-jsx

#17538 fix: Keep jsx comments (@liuxingbaoyu)

💅 Polish

babel-core, babel-standalone

#17606 Polish(standalone): improve message on invalid preset/plugin (@JLHwung)

🏠 Internal

babel-plugin-bugfix-v8-static-class-fields-redefine-readonly, babel-plugin-proposal-decorators, babel-plugin-proposal-import-attributes-to-assertions, babel-plugin-proposal-import-wasm-source, babel-plugin-syntax-async-do-expressions, babel-plugin-syntax-decorators, babel-plugin-syntax-destructuring-private, babel-plugin-syntax-do-expressions, babel-plugin-syntax-explicit-resource-management, babel-plugin-syntax-export-default-from, babel-plugin-syntax-flow, babel-plugin-syntax-function-bind, babel-plugin-syntax-function-sent, babel-plugin-syntax-import-assertions, babel-plugin-syntax-import-attributes, babel-plugin-syntax-import-defer, babel-plugin-syntax-import-source, babel-plugin-syntax-jsx, babel-plugin-syntax-module-blocks, babel-plugin-syntax-optional-chaining-assign, babel-plugin-syntax-partial-application, babel-plugin-syntax-pipeline-operator, babel-plugin-syntax-throw-expressions, babel-plugin-syntax-typescript, babel-plugin-transform-async-generator-functions, babel-plugin-transform-async-to-generator, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-dotall-regex, babel-plugin-transform-duplicate-named-capturing-groups-regex, babel-plugin-transform-explicit-resource-management, babel-plugin-transform-exponentiation-operator, babel-plugin-transform-json-strings, babel-plugin-transform-logical-assignment-operators, babel-plugin-transform-nullish-coalescing-operator, babel-plugin-transform-numeric-separator, babel-plugin-transform-object-rest-spread, babel-plugin-transform-optional-catch-binding, babel-plugin-transform-optional-chaining, babel-plugin-transform-private-methods, babel-plugin-transform-private-property-in-object, babel-plugin-transform-regexp-modifiers, babel-plugin-transform-unicode-property-regex, babel-plugin-transform-unicode-sets-regex

#17580 Allow Babel 8 in compatible Babel 7 plugins (@nicolo-ribaudo)

🏃‍♀️ Performance

babel-plugin-transform-react-jsx

#17555 perf: Use lighter traversal for jsx __source,__self (@liuxingbaoyu)

Committers: 7

Babel Bot (@babel-bot)

Eliot Pontarelli (@kolvian)

Huáng Jùnliàng (@JLHwung)

Kadhirash Sivakumar (@kadhirash)

Nicolò Ribaudo (@nicolo-ribaudo)

@liuxingbaoyu

coderaiser (@coderaiser)

v7.28.5 (2025-10-23)

Thank you @CO0Ki3, @Olexandr88, and @youthfulhps for your first PRs!

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

... (truncated)

Changelog

Sourced from @babel/eslint-parser's changelog.

Changelog

Tags:

💥 [Breaking Change]

👓 [Spec Compliance]

🚀 [New Feature]

🐛 [Bug Fix]

📝 [Documentation]

🏠 [Internal]

💅 [Polish]

Note: Gaps between patch versions are faulty, broken or test releases.

This file contains the changelog starting from v7.15.0.

See CHANGELOG - v7.0.0 to v7.14.9 for v7.0.0 to v7.14.9 changes.

See CHANGELOG - v7 prereleases for v7.0.0-alpha.1 to v7.0.0-rc.4 changes.

See CHANGELOG - v4, CHANGELOG - v5, and CHANGELOG - v6 for v4.x-v6.x changes.

See CHANGELOG - 6to5 for the pre-4.0.0 version changelog.

See Babylon's CHANGELOG for the Babylon pre-7.0.0-beta.29 version changelog.

See babel-eslint's releases for the changelog before @babel/eslint-parser 7.8.0.

See eslint-plugin-babel's releases for the changelog before @babel/eslint-plugin 7.8.0.

v7.28.5 (2025-10-23)

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

... (truncated)

Commits

d7f4008 v7.28.6
beea88c [babel 8] Rename TSImportType.argument to .source (#17610)
61647ae v7.28.5
42cb285 Improve @babel/core types (#17404)
e7031b7 [Babel 8] Treat allowSuperOutsideMethod as top-level only (#17505)
35055e3 v7.28.4
f04083a [Babel 8] Align TSMappedType AST (#17479)
432a7ff fix(parser/typescript): parse import("./a", {with:{},}) (#17465)
e77e3b0 move eslint-{parser,plugin} docs to the website (#17448)
ccc5fae v7.28.0
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @babel/eslint-parser since your current version.

Updates @babel/plugin-proposal-optional-chaining from 7.18.9 to 7.21.0

Commits

de7d75a v7.21.0
34136c5 docs: fix typos (#15432)
d414940 v7.20.7
362451b chore: Enable eslint rule no-unnecessary-type-assertion (#15260)
67cb9f1 fix: Correctly generate (a ?? b) as T (#15258)
d45d59a Improve comments generation (#14979)
See full diff in compare view

Updates @babel/preset-env from 7.25.8 to 7.28.6

Release notes

Sourced from @babel/preset-env's releases.

v7.28.6 (2026-01-12)

Thanks @kadhirash and @kolvian for your first PRs!

🐛 Bug Fix

babel-cli, babel-code-frame, babel-core, babel-helper-check-duplicate-nodes, babel-helper-fixtures, babel-helper-plugin-utils, babel-node, babel-plugin-transform-flow-comments, babel-plugin-transform-modules-commonjs, babel-plugin-transform-property-mutators, babel-preset-env, babel-traverse, babel-types

#17589 Improve Unicode handling in code-frame tokenizer (@JLHwung)

babel-plugin-transform-regenerator

#17556 fix: transform-regenerator correctly handles scope (@liuxingbaoyu)

babel-plugin-transform-react-jsx

#17538 fix: Keep jsx comments (@liuxingbaoyu)

💅 Polish

babel-core, babel-standalone

#17606 Polish(standalone): improve message on invalid preset/plugin (@JLHwung)

🏠 Internal

babel-plugin-bugfix-v8-static-class-fields-redefine-readonly, babel-plugin-proposal-decorators, babel-plugin-proposal-import-attributes-to-assertions, babel-plugin-proposal-import-wasm-source, babel-plugin-syntax-async-do-expressions, babel-plugin-syntax-decorators, babel-plugin-syntax-destructuring-private, babel-plugin-syntax-do-expressions, babel-plugin-syntax-explicit-resource-management, babel-plugin-syntax-export-default-from, babel-plugin-syntax-flow, babel-plugin-syntax-function-bind, babel-plugin-syntax-function-sent, babel-plugin-syntax-import-assertions, babel-plugin-syntax-import-attributes, babel-plugin-syntax-import-defer, babel-plugin-syntax-import-source, babel-plugin-syntax-jsx, babel-plugin-syntax-module-blocks, babel-plugin-syntax-optional-chaining-assign, babel-plugin-syntax-partial-application, babel-plugin-syntax-pipeline-operator, babel-plugin-syntax-throw-expressions, babel-plugin-syntax-typescript, babel-plugin-transform-async-generator-functions, babel-plugin-transform-async-to-generator, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-dotall-regex, babel-plugin-transform-duplicate-named-capturing-groups-regex, babel-plugin-transform-explicit-resource-management, babel-plugin-transform-exponentiation-operator, babel-plugin-transform-json-strings, babel-plugin-transform-logical-assignment-operators, babel-plugin-transform-nullish-coalescing-operator, babel-plugin-transform-numeric-separator, babel-plugin-transform-object-rest-spread, babel-plugin-transform-optional-catch-binding, babel-plugin-transform-optional-chaining, babel-plugin-transform-private-methods, babel-plugin-transform-private-property-in-object, babel-plugin-transform-regexp-modifiers, babel-plugin-transform-unicode-property-regex, babel-plugin-transform-unicode-sets-regex

#17580 Allow Babel 8 in compatible Babel 7 plugins (@nicolo-ribaudo)

🏃‍♀️ Performance

babel-plugin-transform-react-jsx

#17555 perf: Use lighter traversal for jsx __source,__self (@liuxingbaoyu)

Committers: 7

Babel Bot (@babel-bot)

Eliot Pontarelli (@kolvian)

Huáng Jùnliàng (@JLHwung)

Kadhirash Sivakumar (@kadhirash)

Nicolò Ribaudo (@nicolo-ribaudo)

@liuxingbaoyu

coderaiser (@coderaiser)

v7.28.5 (2025-10-23)

Thank you @CO0Ki3, @Olexandr88, and @youthfulhps for your first PRs!

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

... (truncated)

Changelog

Sourced from @babel/preset-env's changelog.

Changelog

Tags:

💥 [Breaking Change]

👓 [Spec Compliance]

🚀 [New Feature]

🐛 [Bug Fix]

📝 [Documentation]

🏠 [Internal]

💅 [Polish]

Note: Gaps between patch versions are faulty, broken or test releases.

This file contains the changelog starting from v7.15.0.

See CHANGELOG - v7.0.0 to v7.14.9 for v7.0.0 to v7.14.9 changes.

See CHANGELOG - v7 prereleases for v7.0.0-alpha.1 to v7.0.0-rc.4 changes.

See CHANGELOG - v4, CHANGELOG - v5, and CHANGELOG - v6 for v4.x-v6.x changes.

See CHANGELOG - 6to5 for the pre-4.0.0 version changelog.

See Babylon's CHANGELOG for the Babylon pre-7.0.0-beta.29 version changelog.

See babel-eslint's releases for the changelog before @babel/eslint-parser 7.8.0.

See eslint-plugin-babel's releases for the changelog before @babel/eslint-plugin 7.8.0.

v7.28.5 (2025-10-23)

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

... (truncated)

Commits

d7f4008 v7.28.6
99dcba5 chore: enable some ts-eslint rules (#17592)
c92c491 Improve Unicode handling in code-frame tokenizer (#17589)
61647ae v7.28.5
42cb285 Improve @babel/core types (#17404)
ae363ae chore: Fix typo in variable name (#17535)
1edfcaa Update compat data (#17487)
ef155f5 v7.28.3
98d18aa Misc: Cleanup Babel 8 tasks (#17429)
fb57f26 chore: update browser compat libs (#17469)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @babel/preset-env since your current version.

Updates @babel/preset-react from 7.26.3 to 7.28.5

Release notes

Sourced from @babel/preset-react's releases.

v7.28.5 (2025-10-23)

Thank you @CO0Ki3, @Olexandr88, and @youthfulhps for your first PRs!

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

🏃‍♀️ Performance

babel-core

#17490 Faster finding of locations in buildCodeFrameError (@liuxingbaoyu)

Committers: 8

Babel Bot (@babel-bot)

Byeongho Yoo (@youthfulhps)

Huáng Jùnliàng (@JLHwung)

Hyeon Dokko (@CO0Ki3)

Nicolò Ribaudo (@nicolo-ribaudo)

@Olexandr88

@liuxingbaoyu

fisker Cheung (@fisker)

v7.28.4 (2025-09-05)

Thanks @gwillen and @mrginglymus for your first PRs!

🏠 Internal

babel-core, babel-helper-check-duplicate-nodes, babel-traverse, babel-types

#17493 Update Jest to v30.1.1 (@JLHwung)

babel-plugin-transform-regenerator

#17455 chore: Clean up transform-regenerator (@liuxingbaoyu)

... (truncated)

Changelog

Sourced from @babel/preset-react's changelog.

v7.28.5 (2025-10-23)

👓 Spec Compliance

babel-parser

#17446 Allow Runtime Errors for Function Call Assignment Targets (@liuxingbaoyu)

babel-helper-validator-identifier

#17501 fix: update identifier to unicode 17 (@fisker)

🐛 Bug Fix

babel-plugin-proposal-destructuring-private

#17534 Allow mixing private destructuring and rest (@CO0Ki3)

babel-parser

#17521 Improve @babel/parser error typing (@JLHwung)

#17491 fix: improve ts-only declaration parsing (@JLHwung)

babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring

#17519 fix: rest correctly returns plain array (@liuxingbaoyu)

babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types

#17503 Fix JSXIdentifier handling in isReferencedIdentifier (@JLHwung)

babel-traverse

#17504 fix: ensure scope.push register in anonymous fn (@JLHwung)

🏠 Internal

babel-types

#17494 Type checking babel-types scripts (@JLHwung)

Description has been truncated

Copilot

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

socket-security · 2026-01-27T16:26:00Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Quality	Maintenance
	npm/@lavamoat/preinstall-always-fail@2.1.0 ⏵ 2.1.1
	npm/@babel/plugin-proposal-optional-chaining@7.18.9 ⏵ 7.21.0
	npm/react-router-dom@7.5.1 ⏵ 7.13.0
	npm/@docusaurus/preset-classic@3.6.3 ⏵ 3.9.2	⁺¹	⁺¹
	npm/@typescript-eslint/parser@8.20.0 ⏵ 8.54.0	⁺¹
	npm/@babel/preset-react@7.26.3 ⏵ 7.28.5			⁺⁴
	npm/@babel/preset-typescript@7.25.7 ⏵ 7.28.5			⁺⁴
	npm/@types/semver@7.5.8 ⏵ 7.7.1	⁺¹	⁺¹
	npm/@docusaurus/core@3.6.3 ⏵ 3.9.2	⁺¹	⁺¹
	npm/@types/react-dom@19.1.2 ⏵ 19.2.3		⁺¹
	npm/lodash@4.17.23
	npm/@babel/preset-env@7.25.8 ⏵ 7.29.0			⁺³
	npm/@babel/eslint-parser@7.25.8 ⏵ 7.28.6		^-23	⁺¹
	npm/@types/react@19.0.12 ⏵ 19.2.10			⁺¹
	npm/@types/webextension-polyfill@0.12.0 ⏵ 0.12.4		⁺¹	^-2
	npm/@types/chrome@0.0.287 ⏵ 0.1.36		⁺¹
	npm/@babel/core@7.25.8 ⏵ 7.29.0			⁺³
	npm/@types/lodash@4.17.16 ⏵ 4.17.23	⁺¹	⁺¹
	npm/@typescript-eslint/eslint-plugin@8.20.0 ⏵ 8.54.0	⁺¹	⁺¹
	npm/jest-localstorage-mock@2.4.3 ⏵ 2.4.26			⁺³
	npm/dotenv-webpack@8.1.0 ⏵ 8.1.1
	npm/formik@2.4.6 ⏵ 2.4.9	⁺¹	⁺¹
	npm/yup@1.6.1 ⏵ 1.7.1
	npm/@vercel/ncc@0.38.3 ⏵ 0.38.4	⁺⁵
	npm/eslint-plugin-react@7.37.4 ⏵ 7.37.5	⁺¹
	npm/url@0.11.1 ⏵ 0.11.4	⁺¹	⁺¹
	npm/jest-fixed-jsdom@0.0.9 ⏵ 0.0.11	⁺¹	⁺¹
	npm/concurrently@9.1.2 ⏵ 9.2.1	⁺¹	⁺¹
	npm/eslint-plugin-import@2.31.0 ⏵ 2.32.0	⁺¹
	npm/ts-loader@9.5.1 ⏵ 9.5.4
	npm/react@19.0.3 ⏵ 19.2.4	⁺¹
	npm/i18next-browser-languagedetector@8.0.5 ⏵ 8.2.0	⁺¹
See 31 more rows in the dashboard

View full report

socket-security · 2026-01-27T16:26:03Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		License policy violation: npm `@csstools/postcss-alpha-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-alpha-function@1.0.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-alpha-function@1.0.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-color-function-display-p3-linear` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-color-function-display-p3-linear@1.0.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-color-function-display-p3-linear@1.0.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-color-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-color-function@4.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-color-function@4.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-color-mix-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-color-mix-function@3.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-color-mix-function@3.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-color-mix-variadic-function-arguments` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-color-mix-variadic-function-arguments@1.0.2` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-color-mix-variadic-function-arguments@1.0.2`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-content-alt-text` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-content-alt-text@2.0.8` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-content-alt-text@2.0.8`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-contrast-color-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-contrast-color-function@2.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-contrast-color-function@2.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-gradients-interpolation-method` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-gradients-interpolation-method@5.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-gradients-interpolation-method@5.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-hwb-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-hwb-function@4.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-hwb-function@4.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-ic-unit` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-ic-unit@4.0.4` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-ic-unit@4.0.4`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-light-dark-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-light-dark-function@2.0.11` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-light-dark-function@2.0.11`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-normalize-display-values` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-normalize-display-values@4.0.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-normalize-display-values@4.0.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-oklab-function` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-oklab-function@4.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-oklab-function@4.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-position-area-property` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-position-area-property@1.0.0` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-position-area-property@1.0.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-progressive-custom-properties` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-progressive-custom-properties@4.2.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-progressive-custom-properties@4.2.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-property-rule-prelude-list` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-property-rule-prelude-list@1.0.0` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-property-rule-prelude-list@1.0.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-relative-color-syntax` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-relative-color-syntax@3.0.12` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-relative-color-syntax@3.0.12`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-syntax-descriptor-syntax-production` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-syntax-descriptor-syntax-production@1.0.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-syntax-descriptor-syntax-production@1.0.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `@csstools/postcss-system-ui-font-family` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/@csstools/postcss-system-ui-font-family@1.0.0` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@csstools/postcss-system-ui-font-family@1.0.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `asn1js` under BSD-3-Clause Location: Package overview From: `?` → `npm/webpack-dev-server@5.2.3` → `npm/asn1js@3.0.7` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/asn1js@3.0.7`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `bytestreamjs` under BSD-3-Clause Location: Package overview From: `?` → `npm/webpack-dev-server@5.2.3` → `npm/bytestreamjs@2.0.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/bytestreamjs@2.0.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `caniuse-lite` under CC-BY-4.0 License: CC-BY-4.0 - the applicable license policy does not allow this license (4) (npm metadata) License: CC-BY-4.0 - the applicable license policy does not allow this license (4) (package/LICENSE) License: CC-BY-4.0 - the applicable license policy does not allow this license (4) (package/package.json) From: `?` → `npm/@babel/preset-env@7.29.0` → `npm/caniuse-lite@1.0.30001766` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/caniuse-lite@1.0.30001766`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `cssdb` under MIT-0 Location: Package overview From: `?` → `npm/@docusaurus/core@3.9.2` → `npm/cssdb@8.7.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/cssdb@8.7.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `jest-localstorage-mock` under BSD-3-Clause Location: Package overview From: package.json → `npm/jest-localstorage-mock@2.4.26` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/jest-localstorage-mock@2.4.26`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `node-gyp` Location: Package overview From: `?` → `npm/@lavamoat/allow-scripts@3.4.2` → `npm/node-gyp@12.2.0` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/node-gyp@12.2.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `pkijs` under BSD-3-Clause Location: Package overview From: `?` → `npm/webpack-dev-server@5.2.3` → `npm/pkijs@3.3.3` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/pkijs@3.3.3`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `playwright` under CC-BY-4.0 License: CC-BY-4.0 - the applicable license policy does not allow this license (4) (package/ThirdPartyNotices.txt) From: `?` → `npm/@playwright/test@1.58.1` → `npm/playwright@1.58.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/playwright@1.58.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
See 8 more rows in the dashboard

View full report

Bumps the minor-and-patch group with 65 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) | `7.25.8` | `7.28.6` | | [@babel/eslint-parser](https://github.com/babel/babel/tree/HEAD/eslint/babel-eslint-parser) | `7.25.8` | `7.28.6` | | [@babel/plugin-proposal-optional-chaining](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-proposal-optional-chaining) | `7.18.9` | `7.21.0` | | [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) | `7.25.8` | `7.28.6` | | [@babel/preset-react](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-react) | `7.26.3` | `7.28.5` | | [@babel/preset-typescript](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-typescript) | `7.25.7` | `7.28.5` | | [@testing-library/dom](https://github.com/testing-library/dom-testing-library) | `10.4.0` | `10.4.1` | | [@testing-library/jest-dom](https://github.com/testing-library/jest-dom) | `6.6.3` | `6.9.1` | | [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.20.0` | `8.54.0` | | [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.20.0` | `8.54.0` | | [@vercel/ncc](https://github.com/vercel/ncc) | `0.38.3` | `0.38.4` | | [eslint](https://github.com/eslint/eslint) | `9.18.0` | `9.39.2` | | [eslint-config-prettier](https://github.com/prettier/eslint-config-prettier) | `10.0.1` | `10.1.8` | | [eslint-plugin-import](https://github.com/import-js/eslint-plugin-import) | `2.31.0` | `2.32.0` | | [eslint-plugin-prettier](https://github.com/prettier/eslint-plugin-prettier) | `5.2.3` | `5.5.5` | | [eslint-plugin-react](https://github.com/jsx-eslint/eslint-plugin-react) | `7.37.4` | `7.37.5` | | [eslint-webpack-plugin](https://github.com/webpack-contrib/eslint-webpack-plugin) | `5.0.0` | `5.0.2` | | [got](https://github.com/sindresorhus/got) | `14.4.5` | `14.6.6` | | [jest-localstorage-mock](https://github.com/clarkbw/jest-localstorage-mock) | `2.4.3` | `2.4.26` | | [prettier](https://github.com/prettier/prettier) | `3.5.1` | `3.8.1` | | [pretty-quick](https://github.com/prettier/pretty-quick) | `4.0.0` | `4.2.2` | | [ts-loader](https://github.com/TypeStrong/ts-loader) | `9.5.1` | `9.5.4` | | [typescript](https://github.com/microsoft/TypeScript) | `5.7.3` | `5.9.3` | | [webpack](https://github.com/webpack/webpack) | `5.97.1` | `5.104.1` | | [webpack-dev-server](https://github.com/webpack/webpack-dev-server) | `5.2.1` | `5.2.3` | | [@lavamoat/allow-scripts](https://github.com/LavaMoat/LavaMoat/tree/HEAD/packages/allow-scripts) | `3.3.1` | `3.4.2` | | [@lavamoat/preinstall-always-fail](https://github.com/LavaMoat/LavaMoat/tree/HEAD/packages/preinstall-always-fail) | `2.1.0` | `2.1.1` | | [jest-fixed-jsdom](https://github.com/mswjs/jest-fixed-jsdom) | `0.0.9` | `0.0.11` | | [@blockaid/client](https://github.com/blockaid-official/blockaid-client-node) | `0.31.0` | `0.65.0` | | [bignumber.js](https://github.com/MikeMcl/bignumber.js) | `9.3.0` | `9.3.1` | | [@docusaurus/core](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus) | `3.6.3` | `3.9.2` | | [@docusaurus/preset-classic](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-preset-classic) | `3.6.3` | `3.9.2` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.0.3` | `19.2.4` | | [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.0.12` | `19.2.10` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.0.3` | `19.2.4` | | [@types/react-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-dom) | `19.0.3` | `19.2.3` | | [react-is](https://github.com/facebook/react/tree/HEAD/packages/react-is) | `19.0.3` | `19.2.4` | | [styled-components](https://github.com/styled-components/styled-components) | `6.1.14` | `6.3.8` | | [@ledgerhq/hw-app-str](https://github.com/LedgerHQ/ledger-live) | `7.2.0` | `7.4.0` | | [@ledgerhq/hw-transport-webhid](https://github.com/LedgerHQ/ledger-live) | `6.30.6` | `6.31.0` | | [@reduxjs/toolkit](https://github.com/reduxjs/redux-toolkit) | `2.5.0` | `2.11.2` | | [@testing-library/react](https://github.com/testing-library/react-testing-library) | `16.3.0` | `16.3.2` | | [@types/chrome](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/chrome) | `0.0.287` | `0.1.36` | | [@types/webextension-polyfill](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/webextension-polyfill) | `0.12.0` | `0.12.4` | | [concurrently](https://github.com/open-cli-tools/concurrently) | `9.1.2` | `9.2.1` | | [copy-webpack-plugin](https://github.com/webpack-contrib/copy-webpack-plugin) | `13.0.0` | `13.0.1` | | [css-loader](https://github.com/webpack/css-loader) | `7.1.2` | `7.1.3` | | [dotenv-webpack](https://github.com/mrsteele/dotenv-webpack) | `8.1.0` | `8.1.1` | | [formik](https://github.com/jaredpalmer/formik) | `2.4.6` | `2.4.9` | | [html-webpack-plugin](https://github.com/jantimon/html-webpack-plugin) | `5.6.3` | `5.6.6` | | [i18next](https://github.com/i18next/i18next) | `25.0.1` | `25.8.0` | | [i18next-browser-languagedetector](https://github.com/i18next/i18next-browser-languageDetector) | `8.0.5` | `8.2.0` | | [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` | | [@types/lodash](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/lodash) | `4.17.16` | `4.17.23` | | [mini-css-extract-plugin](https://github.com/webpack/mini-css-extract-plugin) | `2.9.2` | `2.10.0` | | [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom) | `7.5.1` | `7.13.0` | | [sass](https://github.com/sass/dart-sass) | `1.86.3` | `1.97.3` | | [sass-loader](https://github.com/webpack/sass-loader) | `16.0.5` | `16.0.6` | | [semver](https://github.com/npm/node-semver) | `7.7.1` | `7.7.3` | | [@types/semver](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/semver) | `7.5.8` | `7.7.1` | | [ses](https://github.com/endojs/endo/tree/HEAD/packages/ses) | `1.12.0` | `1.14.0` | | [yup](https://github.com/jquense/yup) | `1.6.1` | `1.7.1` | | [@playwright/test](https://github.com/microsoft/playwright) | `1.49.0` | `1.58.0` | | [terser-webpack-plugin](https://github.com/webpack/terser-webpack-plugin) | `5.3.14` | `5.3.16` | | [url](https://github.com/defunctzombie/node-url) | `0.11.1` | `0.11.4` | Bumps the minor-and-patch group with 5 updates in the /@shared/api directory: | Package | From | To | | --- | --- | --- | | [prettier](https://github.com/prettier/prettier) | `3.5.3` | `3.8.1` | | [typescript](https://github.com/microsoft/TypeScript) | `5.8.3` | `5.9.3` | | [@lavamoat/allow-scripts](https://github.com/LavaMoat/LavaMoat/tree/HEAD/packages/allow-scripts) | `3.3.2` | `3.4.2` | | [@blockaid/client](https://github.com/blockaid-official/blockaid-client-node) | `0.31.0` | `0.65.0` | | [bignumber.js](https://github.com/MikeMcl/bignumber.js) | `9.3.0` | `9.3.1` | Bumps the minor-and-patch group with 35 updates in the /extension directory: | Package | From | To | | --- | --- | --- | | [prettier](https://github.com/prettier/prettier) | `3.5.3` | `3.8.1` | | [pretty-quick](https://github.com/prettier/pretty-quick) | `4.1.1` | `4.2.2` | | [@lavamoat/allow-scripts](https://github.com/LavaMoat/LavaMoat/tree/HEAD/packages/allow-scripts) | `3.3.2` | `3.4.2` | | [bignumber.js](https://github.com/MikeMcl/bignumber.js) | `9.3.0` | `9.3.1` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.0.3` | `19.2.4` | | [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.0.12` | `19.2.10` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.0.3` | `19.2.4` | | [@types/react-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-dom) | `19.1.2` | `19.2.3` | | [@ledgerhq/hw-app-str](https://github.com/LedgerHQ/ledger-live) | `7.2.0` | `7.4.0` | | [@ledgerhq/hw-transport-webhid](https://github.com/LedgerHQ/ledger-live) | `6.30.6` | `6.31.0` | | [@reduxjs/toolkit](https://github.com/reduxjs/redux-toolkit) | `2.5.0` | `2.11.2` | | [@testing-library/react](https://github.com/testing-library/react-testing-library) | `16.3.0` | `16.3.2` | | [@types/chrome](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/chrome) | `0.0.287` | `0.1.36` | | [@types/webextension-polyfill](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/webextension-polyfill) | `0.12.0` | `0.12.4` | | [concurrently](https://github.com/open-cli-tools/concurrently) | `9.1.2` | `9.2.1` | | [copy-webpack-plugin](https://github.com/webpack-contrib/copy-webpack-plugin) | `13.0.0` | `13.0.1` | | [css-loader](https://github.com/webpack/css-loader) | `7.1.2` | `7.1.3` | | [dotenv-webpack](https://github.com/mrsteele/dotenv-webpack) | `8.1.0` | `8.1.1` | | [formik](https://github.com/jaredpalmer/formik) | `2.4.6` | `2.4.9` | | [html-webpack-plugin](https://github.com/jantimon/html-webpack-plugin) | `5.6.3` | `5.6.6` | | [i18next](https://github.com/i18next/i18next) | `25.0.1` | `25.8.0` | | [i18next-browser-languagedetector](https://github.com/i18next/i18next-browser-languageDetector) | `8.0.5` | `8.2.0` | | [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` | | [@types/lodash](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/lodash) | `4.17.16` | `4.17.23` | | [mini-css-extract-plugin](https://github.com/webpack/mini-css-extract-plugin) | `2.9.2` | `2.10.0` | | [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom) | `7.5.1` | `7.13.0` | | [sass](https://github.com/sass/dart-sass) | `1.86.3` | `1.97.3` | | [sass-loader](https://github.com/webpack/sass-loader) | `16.0.5` | `16.0.6` | | [semver](https://github.com/npm/node-semver) | `7.7.1` | `7.7.3` | | [@types/semver](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/semver) | `7.5.8` | `7.7.1` | | [ses](https://github.com/endojs/endo/tree/HEAD/packages/ses) | `1.12.0` | `1.14.0` | | [yup](https://github.com/jquense/yup) | `1.6.1` | `1.7.1` | | [@playwright/test](https://github.com/microsoft/playwright) | `1.49.0` | `1.58.0` | | [terser-webpack-plugin](https://github.com/webpack/terser-webpack-plugin) | `5.3.14` | `5.3.16` | | [url](https://github.com/defunctzombie/node-url) | `0.11.1` | `0.11.4` | Updates `@babel/core` from 7.25.8 to 7.28.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.28.6/packages/babel-core) Updates `@babel/eslint-parser` from 7.25.8 to 7.28.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.28.6/eslint/babel-eslint-parser) Updates `@babel/plugin-proposal-optional-chaining` from 7.18.9 to 7.21.0 - [Release notes](https://github.com/babel/babel/releases) - [Commits](https://github.com/babel/babel/commits/v7.21.0/packages/babel-plugin-proposal-optional-chaining) Updates `@babel/preset-env` from 7.25.8 to 7.28.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.28.6/packages/babel-preset-env) Updates `@babel/preset-react` from 7.26.3 to 7.28.5 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.28.5/packages/babel-preset-react) Updates `@babel/preset-typescript` from 7.25.7 to 7.28.5 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.28.5/packages/babel-preset-typescript) Updates `@testing-library/dom` from 10.4.0 to 10.4.1 - [Release notes](https://github.com/testing-library/dom-testing-library/releases) - [Changelog](https://github.com/testing-library/dom-testing-library/blob/main/CHANGELOG.md) - [Commits](https://github.com/testing-library/dom-testing-library/compare/v10.4.0...v10.4.1) Updates `@testing-library/jest-dom` from 6.6.3 to 6.9.1 - [Release notes](https://github.com/testing-library/jest-dom/releases) - [Changelog](https://github.com/testing-library/jest-dom/blob/main/CHANGELOG.md) - [Commits](https://github.com/testing-library/jest-dom/compare/v6.6.3...v6.9.1) Updates `@typescript-eslint/eslint-plugin` from 8.20.0 to 8.54.0 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.54.0/packages/eslint-plugin) Updates `@typescript-eslint/parser` from 8.20.0 to 8.54.0 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.54.0/packages/parser) Updates `@vercel/ncc` from 0.38.3 to 0.38.4 - [Release notes](https://github.com/vercel/ncc/releases) - [Commits](https://github.com/vercel/ncc/compare/0.38.3...0.38.4) Updates `eslint` from 9.18.0 to 9.39.2 - [Release notes](https://github.com/eslint/eslint/releases) - [Commits](https://github.com/eslint/eslint/compare/v9.18.0...v9.39.2) Updates `eslint-config-prettier` from 10.0.1 to 10.1.8 - [Release notes](https://github.com/prettier/eslint-config-prettier/releases) - [Changelog](https://github.com/prettier/eslint-config-prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/eslint-config-prettier/compare/v10.0.1...v10.1.8) Updates `eslint-plugin-import` from 2.31.0 to 2.32.0 - [Release notes](https://github.com/import-js/eslint-plugin-import/releases) - [Changelog](https://github.com/import-js/eslint-plugin-import/blob/main/CHANGELOG.md) - [Commits](https://github.com/import-js/eslint-plugin-import/compare/v2.31.0...v2.32.0) Updates `eslint-plugin-prettier` from 5.2.3 to 5.5.5 - [Release notes](https://github.com/prettier/eslint-plugin-prettier/releases) - [Changelog](https://github.com/prettier/eslint-plugin-prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/eslint-plugin-prettier/compare/v5.2.3...v5.5.5) Updates `eslint-plugin-react` from 7.37.4 to 7.37.5 - [Release notes](https://github.com/jsx-eslint/eslint-plugin-react/releases) - [Changelog](https://github.com/jsx-eslint/eslint-plugin-react/blob/master/CHANGELOG.md) - [Commits](https://github.com/jsx-eslint/eslint-plugin-react/compare/v7.37.4...v7.37.5) Updates `eslint-webpack-plugin` from 5.0.0 to 5.0.2 - [Release notes](https://github.com/webpack-contrib/eslint-webpack-plugin/releases) - [Changelog](https://github.com/webpack/eslint-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/eslint-webpack-plugin/compare/v5.0.0...v5.0.2) Updates `got` from 14.4.5 to 14.6.6 - [Release notes](https://github.com/sindresorhus/got/releases) - [Commits](https://github.com/sindresorhus/got/compare/v14.4.5...v14.6.6) Updates `jest-localstorage-mock` from 2.4.3 to 2.4.26 - [Release notes](https://github.com/clarkbw/jest-localstorage-mock/releases) - [Commits](https://github.com/clarkbw/jest-localstorage-mock/compare/v2.4.3...v2.4.26) Updates `prettier` from 3.5.1 to 3.8.1 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.8.1) Updates `pretty-quick` from 4.0.0 to 4.2.2 - [Release notes](https://github.com/prettier/pretty-quick/releases) - [Changelog](https://github.com/prettier/pretty-quick/blob/v4.2.2/CHANGELOG.md) - [Commits](https://github.com/prettier/pretty-quick/compare/v4.0.0...v4.2.2) Updates `ts-loader` from 9.5.1 to 9.5.4 - [Release notes](https://github.com/TypeStrong/ts-loader/releases) - [Changelog](https://github.com/TypeStrong/ts-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/TypeStrong/ts-loader/compare/v9.5.1...v9.5.4) Updates `typescript` from 5.7.3 to 5.9.3 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Commits](https://github.com/microsoft/TypeScript/compare/v5.7.3...v5.9.3) Updates `webpack` from 5.97.1 to 5.104.1 - [Release notes](https://github.com/webpack/webpack/releases) - [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/webpack/compare/v5.97.1...v5.104.1) Updates `webpack-dev-server` from 5.2.1 to 5.2.3 - [Release notes](https://github.com/webpack/webpack-dev-server/releases) - [Changelog](https://github.com/webpack/webpack-dev-server/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/webpack-dev-server/compare/v5.2.1...v5.2.3) Updates `@lavamoat/allow-scripts` from 3.3.1 to 3.4.2 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.2/packages/allow-scripts) Updates `@lavamoat/preinstall-always-fail` from 2.1.0 to 2.1.1 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/preinstall-always-fail/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/preinstall-always-fail-v2.1.1/packages/preinstall-always-fail) Updates `jest-fixed-jsdom` from 0.0.9 to 0.0.11 - [Release notes](https://github.com/mswjs/jest-fixed-jsdom/releases) - [Changelog](https://github.com/mswjs/jest-fixed-jsdom/blob/main/release.config.json) - [Commits](https://github.com/mswjs/jest-fixed-jsdom/compare/v0.0.9...v0.0.11) Updates `@blockaid/client` from 0.31.0 to 0.65.0 - [Release notes](https://github.com/blockaid-official/blockaid-client-node/releases) - [Changelog](https://github.com/blockaid-official/blockaid-client-node/blob/main/CHANGELOG.md) - [Commits](https://github.com/blockaid-official/blockaid-client-node/compare/v0.31.0...v0.65.0) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `@docusaurus/core` from 3.6.3 to 3.9.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.9.2/packages/docusaurus) Updates `@docusaurus/preset-classic` from 3.6.3 to 3.9.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.9.2/packages/docusaurus-preset-classic) Updates `react` from 19.0.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react) Updates `@types/react` from 19.0.12 to 19.2.10 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `react-dom` from 19.0.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom) Updates `@types/react-dom` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `react-is` from 19.0.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-is) Updates `styled-components` from 6.1.14 to 6.3.8 - [Release notes](https://github.com/styled-components/styled-components/releases) - [Commits](https://github.com/styled-components/styled-components/compare/styled-components@6.1.14...styled-components@6.3.8) Updates `@ledgerhq/hw-app-str` from 7.2.0 to 7.4.0 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-app-str@7.2.0...@ledgerhq/hw-app-str@7.4.0) Updates `@ledgerhq/hw-transport-webhid` from 6.30.6 to 6.31.0 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-transport-webhid@6.30.6...@ledgerhq/hw-transport-webhid@6.31.0) Updates `@reduxjs/toolkit` from 2.5.0 to 2.11.2 - [Release notes](https://github.com/reduxjs/redux-toolkit/releases) - [Commits](https://github.com/reduxjs/redux-toolkit/compare/v2.5.0...v2.11.2) Updates `@testing-library/react` from 16.3.0 to 16.3.2 - [Release notes](https://github.com/testing-library/react-testing-library/releases) - [Changelog](https://github.com/testing-library/react-testing-library/blob/main/CHANGELOG.md) - [Commits](https://github.com/testing-library/react-testing-library/compare/v16.3.0...v16.3.2) Updates `@types/chrome` from 0.0.287 to 0.1.36 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/chrome) Updates `@types/webextension-polyfill` from 0.12.0 to 0.12.4 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/webextension-polyfill) Updates `concurrently` from 9.1.2 to 9.2.1 - [Release notes](https://github.com/open-cli-tools/concurrently/releases) - [Commits](https://github.com/open-cli-tools/concurrently/compare/v9.1.2...v9.2.1) Updates `copy-webpack-plugin` from 13.0.0 to 13.0.1 - [Release notes](https://github.com/webpack-contrib/copy-webpack-plugin/releases) - [Changelog](https://github.com/webpack/copy-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/copy-webpack-plugin/compare/v13.0.0...v13.0.1) Updates `css-loader` from 7.1.2 to 7.1.3 - [Release notes](https://github.com/webpack/css-loader/releases) - [Changelog](https://github.com/webpack/css-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/css-loader/compare/v7.1.2...v7.1.3) Updates `dotenv-webpack` from 8.1.0 to 8.1.1 - [Release notes](https://github.com/mrsteele/dotenv-webpack/releases) - [Commits](https://github.com/mrsteele/dotenv-webpack/compare/v8.1.0...v8.1.1) Updates `formik` from 2.4.6 to 2.4.9 - [Release notes](https://github.com/jaredpalmer/formik/releases) - [Commits](https://github.com/jaredpalmer/formik/compare/formik@2.4.6...formik@2.4.9) Updates `html-webpack-plugin` from 5.6.3 to 5.6.6 - [Release notes](https://github.com/jantimon/html-webpack-plugin/releases) - [Changelog](https://github.com/jantimon/html-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/jantimon/html-webpack-plugin/compare/v5.6.3...v5.6.6) Updates `i18next` from 25.0.1 to 25.8.0 - [Release notes](https://github.com/i18next/i18next/releases) - [Changelog](https://github.com/i18next/i18next/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next/compare/v25.0.1...v25.8.0) Updates `i18next-browser-languagedetector` from 8.0.5 to 8.2.0 - [Changelog](https://github.com/i18next/i18next-browser-languageDetector/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next-browser-languageDetector/compare/v8.0.5...v8.2.0) Updates `lodash` from 4.17.21 to 4.17.23 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.21...4.17.23) Updates `@types/lodash` from 4.17.16 to 4.17.23 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/lodash) Updates `mini-css-extract-plugin` from 2.9.2 to 2.10.0 - [Release notes](https://github.com/webpack/mini-css-extract-plugin/releases) - [Changelog](https://github.com/webpack/mini-css-extract-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/mini-css-extract-plugin/compare/v2.9.2...v2.10.0) Updates `react-router-dom` from 7.5.1 to 7.13.0 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@7.13.0/packages/react-router-dom) Updates `sass` from 1.86.3 to 1.97.3 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.86.3...1.97.3) Updates `sass-loader` from 16.0.5 to 16.0.6 - [Release notes](https://github.com/webpack/sass-loader/releases) - [Changelog](https://github.com/webpack/sass-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/sass-loader/compare/v16.0.5...v16.0.6) Updates `semver` from 7.7.1 to 7.7.3 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](https://github.com/npm/node-semver/compare/v7.7.1...v7.7.3) Updates `@types/semver` from 7.5.8 to 7.7.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver) Updates `ses` from 1.12.0 to 1.14.0 - [Release notes](https://github.com/endojs/endo/releases) - [Changelog](https://github.com/endojs/endo/blob/master/packages/ses/CHANGELOG.md) - [Commits](https://github.com/endojs/endo/commits/ses@1.14.0/packages/ses) Updates `yup` from 1.6.1 to 1.7.1 - [Release notes](https://github.com/jquense/yup/releases) - [Changelog](https://github.com/jquense/yup/blob/master/CHANGELOG.md) - [Commits](https://github.com/jquense/yup/commits) Updates `@playwright/test` from 1.49.0 to 1.58.0 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.49.0...v1.58.0) Updates `@types/semver` from 7.5.8 to 7.7.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver) Updates `terser-webpack-plugin` from 5.3.14 to 5.3.16 - [Release notes](https://github.com/webpack/terser-webpack-plugin/releases) - [Changelog](https://github.com/webpack/terser-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/terser-webpack-plugin/compare/v5.3.14...v5.3.16) Updates `url` from 0.11.1 to 0.11.4 - [Commits](https://github.com/defunctzombie/node-url/compare/v0.11.1...v0.11.4) Updates `@blockaid/client` from 0.31.0 to 0.65.0 - [Release notes](https://github.com/blockaid-official/blockaid-client-node/releases) - [Changelog](https://github.com/blockaid-official/blockaid-client-node/blob/main/CHANGELOG.md) - [Commits](https://github.com/blockaid-official/blockaid-client-node/compare/v0.31.0...v0.65.0) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `prettier` from 3.5.1 to 3.8.1 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.8.1) Updates `typescript` from 5.7.3 to 5.9.3 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Commits](https://github.com/microsoft/TypeScript/compare/v5.7.3...v5.9.3) Updates `@lavamoat/allow-scripts` from 3.3.1 to 3.4.2 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.2/packages/allow-scripts) Updates `@ledgerhq/hw-app-str` from 7.2.0 to 7.4.0 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-app-str@7.2.0...@ledgerhq/hw-app-str@7.4.0) Updates `@ledgerhq/hw-transport-webhid` from 6.30.6 to 6.31.0 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-transport-webhid@6.30.6...@ledgerhq/hw-transport-webhid@6.31.0) Updates `@reduxjs/toolkit` from 2.5.0 to 2.11.2 - [Release notes](https://github.com/reduxjs/redux-toolkit/releases) - [Commits](https://github.com/reduxjs/redux-toolkit/compare/v2.5.0...v2.11.2) Updates `@testing-library/react` from 16.3.0 to 16.3.2 - [Release notes](https://github.com/testing-library/react-testing-library/releases) - [Changelog](https://github.com/testing-library/react-testing-library/blob/main/CHANGELOG.md) - [Commits](https://github.com/testing-library/react-testing-library/compare/v16.3.0...v16.3.2) Updates `@types/chrome` from 0.0.287 to 0.1.36 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/chrome) Updates `@types/lodash` from 4.17.16 to 4.17.23 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/lodash) Updates `@types/react` from 19.0.12 to 19.2.10 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `@types/react-dom` from 19.0.3 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `@types/webextension-polyfill` from 0.12.0 to 0.12.4 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/webextension-polyfill) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `concurrently` from 9.1.2 to 9.2.1 - [Release notes](https://github.com/open-cli-tools/concurrently/releases) - [Commits](https://github.com/open-cli-tools/concurrently/compare/v9.1.2...v9.2.1) Updates `copy-webpack-plugin` from 13.0.0 to 13.0.1 - [Release notes](https://github.com/webpack-contrib/copy-webpack-plugin/releases) - [Changelog](https://github.com/webpack/copy-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/copy-webpack-plugin/compare/v13.0.0...v13.0.1) Updates `css-loader` from 7.1.2 to 7.1.3 - [Release notes](https://github.com/webpack/css-loader/releases) - [Changelog](https://github.com/webpack/css-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/css-loader/compare/v7.1.2...v7.1.3) Updates `dotenv-webpack` from 8.1.0 to 8.1.1 - [Release notes](https://github.com/mrsteele/dotenv-webpack/releases) - [Commits](https://github.com/mrsteele/dotenv-webpack/compare/v8.1.0...v8.1.1) Updates `formik` from 2.4.6 to 2.4.9 - [Release notes](https://github.com/jaredpalmer/formik/releases) - [Commits](https://github.com/jaredpalmer/formik/compare/formik@2.4.6...formik@2.4.9) Updates `html-webpack-plugin` from 5.6.3 to 5.6.6 - [Release notes](https://github.com/jantimon/html-webpack-plugin/releases) - [Changelog](https://github.com/jantimon/html-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/jantimon/html-webpack-plugin/compare/v5.6.3...v5.6.6) Updates `i18next` from 25.0.1 to 25.8.0 - [Release notes](https://github.com/i18next/i18next/releases) - [Changelog](https://github.com/i18next/i18next/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next/compare/v25.0.1...v25.8.0) Updates `i18next-browser-languagedetector` from 8.0.5 to 8.2.0 - [Changelog](https://github.com/i18next/i18next-browser-languageDetector/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next-browser-languageDetector/compare/v8.0.5...v8.2.0) Updates `lodash` from 4.17.21 to 4.17.23 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.21...4.17.23) Updates `mini-css-extract-plugin` from 2.9.2 to 2.10.0 - [Release notes](https://github.com/webpack/mini-css-extract-plugin/releases) - [Changelog](https://github.com/webpack/mini-css-extract-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/mini-css-extract-plugin/compare/v2.9.2...v2.10.0) Updates `prettier` from 3.5.1 to 3.8.1 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.8.1) Updates `pretty-quick` from 4.0.0 to 4.2.2 - [Release notes](https://github.com/prettier/pretty-quick/releases) - [Changelog](https://github.com/prettier/pretty-quick/blob/v4.2.2/CHANGELOG.md) - [Commits](https://github.com/prettier/pretty-quick/compare/v4.0.0...v4.2.2) Updates `react` from 19.0.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react) Updates `react-dom` from 19.0.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom) Updates `react-router-dom` from 7.5.1 to 7.13.0 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@7.13.0/packages/react-router-dom) Updates `sass` from 1.86.3 to 1.97.3 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.86.3...1.97.3) Updates `sass-loader` from 16.0.5 to 16.0.6 - [Release notes](https://github.com/webpack/sass-loader/releases) - [Changelog](https://github.com/webpack/sass-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/sass-loader/compare/v16.0.5...v16.0.6) Updates `semver` from 7.7.1 to 7.7.3 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](https://github.com/npm/node-semver/compare/v7.7.1...v7.7.3) Updates `ses` from 1.12.0 to 1.14.0 - [Release notes](https://github.com/endojs/endo/releases) - [Changelog](https://github.com/endojs/endo/blob/master/packages/ses/CHANGELOG.md) - [Commits](https://github.com/endojs/endo/commits/ses@1.14.0/packages/ses) Updates `yup` from 1.6.1 to 1.7.1 - [Release notes](https://github.com/jquense/yup/releases) - [Changelog](https://github.com/jquense/yup/blob/master/CHANGELOG.md) - [Commits](https://github.com/jquense/yup/commits) Updates `@lavamoat/allow-scripts` from 3.3.1 to 3.4.2 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.2/packages/allow-scripts) Updates `@playwright/test` from 1.49.0 to 1.58.0 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.49.0...v1.58.0) Updates `@types/semver` from 7.5.8 to 7.7.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver) Updates `terser-webpack-plugin` from 5.3.14 to 5.3.16 - [Release notes](https://github.com/webpack/terser-webpack-plugin/releases) - [Changelog](https://github.com/webpack/terser-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/terser-webpack-plugin/compare/v5.3.14...v5.3.16) Updates `url` from 0.11.1 to 0.11.4 - [Commits](https://github.com/defunctzombie/node-url/compare/v0.11.1...v0.11.4) Updates `prettier` from 3.5.3 to 3.8.1 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.8.1) Updates `typescript` from 5.8.3 to 5.9.3 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Commits](https://github.com/microsoft/TypeScript/compare/v5.7.3...v5.9.3) Updates `@lavamoat/allow-scripts` from 3.3.2 to 3.4.2 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.2/packages/allow-scripts) Updates `@blockaid/client` from 0.31.0 to 0.65.0 - [Release notes](https://github.com/blockaid-official/blockaid-client-node/releases) - [Changelog](https://github.com/blockaid-official/blockaid-client-node/blob/main/CHANGELOG.md) - [Commits](https://github.com/blockaid-official/blockaid-client-node/compare/v0.31.0...v0.65.0) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `@blockaid/client` from 0.31.0 to 0.65.0 - [Release notes](https://github.com/blockaid-official/blockaid-client-node/releases) - [Changelog](https://github.com/blockaid-official/blockaid-client-node/blob/main/CHANGELOG.md) - [Commits](https://github.com/blockaid-official/blockaid-client-node/compare/v0.31.0...v0.65.0) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `prettier` from 3.5.3 to 3.8.1 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.8.1) Updates `typescript` from 5.8.3 to 5.9.3 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Commits](https://github.com/microsoft/TypeScript/compare/v5.7.3...v5.9.3) Updates `@lavamoat/allow-scripts` from 3.3.2 to 3.4.2 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.2/packages/allow-scripts) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `prettier` from 3.5.3 to 3.8.1 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.8.1) Updates `@lavamoat/allow-scripts` from 3.3.2 to 3.4.2 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.2/packages/allow-scripts) Updates `prettier` from 3.5.3 to 3.8.1 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.8.1) Updates `pretty-quick` from 4.1.1 to 4.2.2 - [Release notes](https://github.com/prettier/pretty-quick/releases) - [Changelog](https://github.com/prettier/pretty-quick/blob/v4.2.2/CHANGELOG.md) - [Commits](https://github.com/prettier/pretty-quick/compare/v4.0.0...v4.2.2) Updates `@lavamoat/allow-scripts` from 3.3.2 to 3.4.2 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.2/packages/allow-scripts) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `react` from 19.0.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react) Updates `@types/react` from 19.0.12 to 19.2.10 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `react-dom` from 19.0.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom) Updates `@types/react-dom` from 19.1.2 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `@ledgerhq/hw-app-str` from 7.2.0 to 7.4.0 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-app-str@7.2.0...@ledgerhq/hw-app-str@7.4.0) Updates `@ledgerhq/hw-transport-webhid` from 6.30.6 to 6.31.0 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-transport-webhid@6.30.6...@ledgerhq/hw-transport-webhid@6.31.0) Updates `@reduxjs/toolkit` from 2.5.0 to 2.11.2 - [Release notes](https://github.com/reduxjs/redux-toolkit/releases) - [Commits](https://github.com/reduxjs/redux-toolkit/compare/v2.5.0...v2.11.2) Updates `@testing-library/react` from 16.3.0 to 16.3.2 - [Release notes](https://github.com/testing-library/react-testing-library/releases) - [Changelog](https://github.com/testing-library/react-testing-library/blob/main/CHANGELOG.md) - [Commits](https://github.com/testing-library/react-testing-library/compare/v16.3.0...v16.3.2) Updates `@types/chrome` from 0.0.287 to 0.1.36 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/chrome) Updates `@types/webextension-polyfill` from 0.12.0 to 0.12.4 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/webextension-polyfill) Updates `concurrently` from 9.1.2 to 9.2.1 - [Release notes](https://github.com/open-cli-tools/concurrently/releases) - [Commits](https://github.com/open-cli-tools/concurrently/compare/v9.1.2...v9.2.1) Updates `copy-webpack-plugin` from 13.0.0 to 13.0.1 - [Release notes](https://github.com/webpack-contrib/copy-webpack-plugin/releases) - [Changelog](https://github.com/webpack/copy-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/copy-webpack-plugin/compare/v13.0.0...v13.0.1) Updates `css-loader` from 7.1.2 to 7.1.3 - [Release notes](https://github.com/webpack/css-loader/releases) - [Changelog](https://github.com/webpack/css-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/css-loader/compare/v7.1.2...v7.1.3) Updates `dotenv-webpack` from 8.1.0 to 8.1.1 - [Release notes](https://github.com/mrsteele/dotenv-webpack/releases) - [Commits](https://github.com/mrsteele/dotenv-webpack/compare/v8.1.0...v8.1.1) Updates `formik` from 2.4.6 to 2.4.9 - [Release notes](https://github.com/jaredpalmer/formik/releases) - [Commits](https://github.com/jaredpalmer/formik/compare/formik@2.4.6...formik@2.4.9) Updates `html-webpack-plugin` from 5.6.3 to 5.6.6 - [Release notes](https://github.com/jantimon/html-webpack-plugin/releases) - [Changelog](https://github.com/jantimon/html-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/jantimon/html-webpack-plugin/compare/v5.6.3...v5.6.6) Updates `i18next` from 25.0.1 to 25.8.0 - [Release notes](https://github.com/i18next/i18next/releases) - [Changelog](https://github.com/i18next/i18next/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next/compare/v25.0.1...v25.8.0) Updates `i18next-browser-languagedetector` from 8.0.5 to 8.2.0 - [Changelog](https://github.com/i18next/i18next-browser-languageDetector/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next-browser-languageDetector/compare/v8.0.5...v8.2.0) Updates `lodash` from 4.17.21 to 4.17.23 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.21...4.17.23) Updates `@types/lodash` from 4.17.16 to 4.17.23 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/lodash) Updates `mini-css-extract-plugin` from 2.9.2 to 2.10.0 - [Release notes](https://github.com/webpack/mini-css-extract-plugin/releases) - [Changelog](https://github.com/webpack/mini-css-extract-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/mini-css-extract-plugin/compare/v2.9.2...v2.10.0) Updates `react-router-dom` from 7.5.1 to 7.13.0 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@7.13.0/packages/react-router-dom) Updates `sass` from 1.86.3 to 1.97.3 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.86.3...1.97.3) Updates `sass-loader` from 16.0.5 to 16.0.6 - [Release notes](https://github.com/webpack/sass-loader/releases) - [Changelog](https://github.com/webpack/sass-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/sass-loader/compare/v16.0.5...v16.0.6) Updates `semver` from 7.7.1 to 7.7.3 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](https://github.com/npm/node-semver/compare/v7.7.1...v7.7.3) Updates `@types/semver` from 7.5.8 to 7.7.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver) Updates `ses` from 1.12.0 to 1.14.0 - [Release notes](https://github.com/endojs/endo/releases) - [Changelog](https://github.com/endojs/endo/blob/master/packages/ses/CHANGELOG.md) - [Commits](https://github.com/endojs/endo/commits/ses@1.14.0/packages/ses) Updates `yup` from 1.6.1 to 1.7.1 - [Release notes](https://github.com/jquense/yup/releases) - [Changelog](https://github.com/jquense/yup/blob/master/CHANGELOG.md) - [Commits](https://github.com/jquense/yup/commits) Updates `@playwright/test` from 1.49.0 to 1.58.0 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.49.0...v1.58.0) Updates `@types/semver` from 7.5.8 to 7.7.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver) Updates `terser-webpack-plugin` from 5.3.14 to 5.3.16 - [Release notes](https://github.com/webpack/terser-webpack-plugin/releases) - [Changelog](https://github.com/webpack/terser-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/terser-webpack-plugin/compare/v5.3.14...v5.3.16) Updates `url` from 0.11.1 to 0.11.4 - [Commits](https://github.com/defunctzombie/node-url/compare/v0.11.1...v0.11.4) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `prettier` from 3.5.3 to 3.8.1 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.8.1) Updates `@lavamoat/allow-scripts` from 3.3.2 to 3.4.2 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.2/packages/allow-scripts) Updates `@ledgerhq/hw-app-str` from 7.2.0 to 7.4.0 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-app-str@7.2.0...@ledgerhq/hw-app-str@7.4.0) Updates `@ledgerhq/hw-transport-webhid` from 6.30.6 to 6.31.0 - [Release notes](https://github.com/LedgerHQ/ledger-live/releases) - [Commits](https://github.com/LedgerHQ/ledger-live/compare/@ledgerhq/hw-transport-webhid@6.30.6...@ledgerhq/hw-transport-webhid@6.31.0) Updates `@reduxjs/toolkit` from 2.5.0 to 2.11.2 - [Release notes](https://github.com/reduxjs/redux-toolkit/releases) - [Commits](https://github.com/reduxjs/redux-toolkit/compare/v2.5.0...v2.11.2) Updates `@testing-library/react` from 16.3.0 to 16.3.2 - [Release notes](https://github.com/testing-library/react-testing-library/releases) - [Changelog](https://github.com/testing-library/react-testing-library/blob/main/CHANGELOG.md) - [Commits](https://github.com/testing-library/react-testing-library/compare/v16.3.0...v16.3.2) Updates `@types/chrome` from 0.0.287 to 0.1.36 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/chrome) Updates `@types/lodash` from 4.17.16 to 4.17.23 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/lodash) Updates `@types/react` from 19.0.12 to 19.2.10 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) Updates `@types/react-dom` from 19.1.2 to 19.2.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom) Updates `@types/webextension-polyfill` from 0.12.0 to 0.12.4 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/webextension-polyfill) Updates `bignumber.js` from 9.3.0 to 9.3.1 - [Release notes](https://github.com/MikeMcl/bignumber.js/releases) - [Changelog](https://github.com/MikeMcl/bignumber.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/MikeMcl/bignumber.js/compare/v9.3.0...v9.3.1) Updates `concurrently` from 9.1.2 to 9.2.1 - [Release notes](https://github.com/open-cli-tools/concurrently/releases) - [Commits](https://github.com/open-cli-tools/concurrently/compare/v9.1.2...v9.2.1) Updates `copy-webpack-plugin` from 13.0.0 to 13.0.1 - [Release notes](https://github.com/webpack-contrib/copy-webpack-plugin/releases) - [Changelog](https://github.com/webpack/copy-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack-contrib/copy-webpack-plugin/compare/v13.0.0...v13.0.1) Updates `css-loader` from 7.1.2 to 7.1.3 - [Release notes](https://github.com/webpack/css-loader/releases) - [Changelog](https://github.com/webpack/css-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/css-loader/compare/v7.1.2...v7.1.3) Updates `dotenv-webpack` from 8.1.0 to 8.1.1 - [Release notes](https://github.com/mrsteele/dotenv-webpack/releases) - [Commits](https://github.com/mrsteele/dotenv-webpack/compare/v8.1.0...v8.1.1) Updates `formik` from 2.4.6 to 2.4.9 - [Release notes](https://github.com/jaredpalmer/formik/releases) - [Commits](https://github.com/jaredpalmer/formik/compare/formik@2.4.6...formik@2.4.9) Updates `html-webpack-plugin` from 5.6.3 to 5.6.6 - [Release notes](https://github.com/jantimon/html-webpack-plugin/releases) - [Changelog](https://github.com/jantimon/html-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/jantimon/html-webpack-plugin/compare/v5.6.3...v5.6.6) Updates `i18next` from 25.0.1 to 25.8.0 - [Release notes](https://github.com/i18next/i18next/releases) - [Changelog](https://github.com/i18next/i18next/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next/compare/v25.0.1...v25.8.0) Updates `i18next-browser-languagedetector` from 8.0.5 to 8.2.0 - [Changelog](https://github.com/i18next/i18next-browser-languageDetector/blob/master/CHANGELOG.md) - [Commits](https://github.com/i18next/i18next-browser-languageDetector/compare/v8.0.5...v8.2.0) Updates `lodash` from 4.17.21 to 4.17.23 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.21...4.17.23) Updates `mini-css-extract-plugin` from 2.9.2 to 2.10.0 - [Release notes](https://github.com/webpack/mini-css-extract-plugin/releases) - [Changelog](https://github.com/webpack/mini-css-extract-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/mini-css-extract-plugin/compare/v2.9.2...v2.10.0) Updates `prettier` from 3.5.3 to 3.8.1 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.5.1...3.8.1) Updates `pretty-quick` from 4.1.1 to 4.2.2 - [Release notes](https://github.com/prettier/pretty-quick/releases) - [Changelog](https://github.com/prettier/pretty-quick/blob/v4.2.2/CHANGELOG.md) - [Commits](https://github.com/prettier/pretty-quick/compare/v4.0.0...v4.2.2) Updates `react` from 19.0.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react) Updates `react-dom` from 19.0.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom) Updates `react-router-dom` from 7.5.1 to 7.13.0 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@7.13.0/packages/react-router-dom) Updates `sass` from 1.86.3 to 1.97.3 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](https://github.com/sass/dart-sass/compare/1.86.3...1.97.3) Updates `sass-loader` from 16.0.5 to 16.0.6 - [Release notes](https://github.com/webpack/sass-loader/releases) - [Changelog](https://github.com/webpack/sass-loader/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/sass-loader/compare/v16.0.5...v16.0.6) Updates `semver` from 7.7.1 to 7.7.3 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](https://github.com/npm/node-semver/compare/v7.7.1...v7.7.3) Updates `ses` from 1.12.0 to 1.14.0 - [Release notes](https://github.com/endojs/endo/releases) - [Changelog](https://github.com/endojs/endo/blob/master/packages/ses/CHANGELOG.md) - [Commits](https://github.com/endojs/endo/commits/ses@1.14.0/packages/ses) Updates `yup` from 1.6.1 to 1.7.1 - [Release notes](https://github.com/jquense/yup/releases) - [Changelog](https://github.com/jquense/yup/blob/master/CHANGELOG.md) - [Commits](https://github.com/jquense/yup/commits) Updates `@lavamoat/allow-scripts` from 3.3.2 to 3.4.2 - [Release notes](https://github.com/LavaMoat/LavaMoat/releases) - [Changelog](https://github.com/LavaMoat/LavaMoat/blob/main/packages/allow-scripts/CHANGELOG.md) - [Commits](https://github.com/LavaMoat/LavaMoat/commits/allow-scripts-v3.4.2/packages/allow-scripts) Updates `@playwright/test` from 1.49.0 to 1.58.0 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](https://github.com/microsoft/playwright/compare/v1.49.0...v1.58.0) Updates `@types/semver` from 7.5.8 to 7.7.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver) Updates `terser-webpack-plugin` from 5.3.14 to 5.3.16 - [Release notes](https://github.com/webpack/terser-webpack-plugin/releases) - [Changelog](https://github.com/webpack/terser-webpack-plugin/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/terser-webpack-plugin/compare/v5.3.14...v5.3.16) Updates `url` from 0.11.1 to 0.11.4 - [Commits](https://github.com/defunctzombie/node-url/compare/v0.11.1...v0.11.4) --- updated-dependencies: - dependency-name: "@babel/core" dependency-version: 7.28.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@babel/eslint-parser" dependency-version: 7.28.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@babel/plugin-proposal-optional-chaining" dependency-version: 7.21.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@babel/preset-env" dependency-version: 7.28.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@babel/preset-react" dependency-version: 7.28.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@babel/preset-typescript" dependency-version: 7.28.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@testing-library/dom" dependency-version: 10.4.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@testing-library/jest-dom" dependency-version: 6.9.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@typescript-eslint/eslint-plugin" dependency-version: 8.54.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@typescript-eslint/parser" dependency-version: 8.54.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@vercel/ncc" dependency-version: 0.38.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: eslint dependency-version: 9.39.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: eslint-config-prettier dependency-version: 10.1.8 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: eslint-plugin-import dependency-version: 2.32.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: eslint-plugin-prettier dependency-version: 5.5.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: eslint-plugin-react dependency-version: 7.37.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: eslint-webpack-plugin dependency-version: 5.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: got dependency-version: 14.6.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: jest-localstorage-mock dependency-version: 2.4.26 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: prettier dependency-version: 3.8.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: pretty-quick dependency-version: 4.2.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: ts-loader dependency-version: 9.5.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: typescript dependency-version: 5.9.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: webpack dependency-version: 5.104.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: webpack-dev-server dependency-version: 5.2.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@lavamoat/allow-scripts" dependency-version: 3.4.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@lavamoat/preinstall-always-fail" dependency-version: 2.1.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: jest-fixed-jsdom dependency-version: 0.0.11 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@blockaid/client" dependency-version: 0.65.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: bignumber.js dependency-version: 9.3.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@docusaurus/core" dependency-version: 3.9.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@docusaurus/preset-classic" dependency-version: 3.9.2 depend... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jan 27, 2026

Copilot AI review requested due to automatic review settings January 27, 2026 16:25

Copilot AI reviewed Jan 27, 2026

View reviewed changes

dependabot bot force-pushed the dependabot/npm_and_yarn/minor-and-patch-72f2a3bc8d branch from a8becd6 to 261f162 Compare February 1, 2026 02:36

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the minor-and-patch group across 3 directories with 65 updates#2555

Bump the minor-and-patch group across 3 directories with 65 updates#2555
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/minor-and-patch-72f2a3bc8d

dependabot bot commented on behalf of github Jan 27, 2026 •

edited

Loading

Uh oh!

Copilot AI left a comment

Uh oh!

socket-security bot commented Jan 27, 2026 •

edited

Loading

Uh oh!

socket-security bot commented Jan 27, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Jan 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v7.28.6 (2026-01-12)

🐛 Bug Fix

💅 Polish

🏠 Internal

🏃‍♀️ Performance

Committers: 7

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

Changelog

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

v7.28.6 (2026-01-12)

🐛 Bug Fix

💅 Polish

🏠 Internal

🏃‍♀️ Performance

Committers: 7

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

Changelog

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

v7.28.6 (2026-01-12)

🐛 Bug Fix

💅 Polish

🏠 Internal

🏃‍♀️ Performance

Committers: 7

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

Changelog

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

🏃‍♀️ Performance

Committers: 8

v7.28.4 (2025-09-05)

🏠 Internal

v7.28.5 (2025-10-23)

👓 Spec Compliance

🐛 Bug Fix

🏠 Internal

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Uh oh!

socket-security bot commented Jan 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

socket-security bot commented Jan 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot bot commented on behalf of github Jan 27, 2026 •

edited

Loading

socket-security bot commented Jan 27, 2026 •

edited

Loading

socket-security bot commented Jan 27, 2026 •

edited

Loading