deps(deps): bump the production-dependencies group across 1 directory with 14 updates by dependabot[bot] · Pull Request #60 · knowns-dev/knowns

dependabot · 2026-02-23T02:18:46Z

Bumps the production-dependencies group with 14 updates in the / directory:

Package	From	To
@inquirer/prompts	`8.2.0`	`8.3.0`
@modelcontextprotocol/sdk	`1.25.3`	`1.26.0`
@tiptap/extensions	`3.14.0`	`3.20.0`
cors	`2.8.5`	`2.8.6`
framer-motion	`12.23.26`	`12.34.3`
glob	`13.0.0`	`13.0.6`
lucide-react	`0.562.0`	`0.575.0`
marked	`17.0.1`	`17.0.3`
mermaid	`11.12.2`	`11.12.3`
react	`19.2.3`	`19.2.4`
react-dom	`19.2.3`	`19.2.4`
tailwind-merge	`3.4.0`	`3.5.0`
unist-util-visit	`5.0.0`	`5.1.0`
zod	`4.3.4`	`4.3.6`

Updates @inquirer/prompts from 8.2.0 to 8.3.0

Release notes

Sourced from @inquirer/prompts's releases.

@inquirer/prompts@8.3.0

Fix: Keypresses happening before a prompt is rendered are now ignored.

Fix (checkbox): Element who're both checked and disabled are now always included in the returned array.

Feat (select/checkbox): Cursor will now hover disabled options of the list; but they still cannot be interacted with. This prevents the cursor jumping ahead in ways that can be confusing.

Feat: various new theme options to make all prompts content localizable.

Finally, see our new @inquirer/i18n package!

@inquirer/prompts@8.2.1

chore: Switch wrap-ansi with fast-wrap-ansi

Commits

526eca2 chore: Publish new release
60d02c4 docs(@inquirer/prompts): highlight auto-detected locale in i18n section (#2011)
f773d21 feat(@inquirer/prompts-i18n) New i18n package with first set of localization ...
dd52bbe feat: allow cursor to land on disabled choices (#2008)
64622ed feat(@inquirer/testing): add nextRender() to unit test render API (#2010)
32ed010 refactor(@inquirer/select,@inquirer/checkbox): clean up disabled choice rende...
b23a483 fix(@inquirer/checkbox): include disabled+checked items in the answer
fd40b43 fix(@inquirer/core): discard keystrokes buffered before prompt creation
fd001c1 chore: Publish new release
260d7eb fix(@inquirer/testing): handle SWC-style namespace objects and missing option...
Additional commits viewable in compare view

Updates @modelcontextprotocol/sdk from 1.25.3 to 1.26.0

Release notes

Sourced from @modelcontextprotocol/sdk's releases.

v1.26.0

Addresses "Sharing server/transport instances can leak cross-client response data" in this GHSA GHSA-345p-7cg4-v4c7

What's Changed

chore: bump v1.25.3 for backport fixes by @pcarleton in modelcontextprotocol/typescript-sdk#1412

fix(deps): resolve npm audit vulnerabilities and bump dependencies (v1.x backport) by @samuv in modelcontextprotocol/typescript-sdk#1382

Fix #1430: Client Credentials providers scopes support (backported) by @NSeydoux in modelcontextprotocol/typescript-sdk#1442

chore: bump version to 1.26.0 by @pcarleton in modelcontextprotocol/typescript-sdk#1479

New Contributors

@samuv made their first contribution in modelcontextprotocol/typescript-sdk#1382

@NSeydoux made their first contribution in modelcontextprotocol/typescript-sdk#1442

Full Changelog: modelcontextprotocol/typescript-sdk@v1.25.3...v1.26.0

Commits

fe9c07b chore: bump version to 1.26.0 (#1479)
4f01e7e fix: add non-null assertions for optional setupServer fields in stateful test
a05be17 Merge commit from fork
50d9fa3 Fix #1430: Client Credentials providers scopes support (backported) (#1442)
aa81a66 fix(deps): resolve npm audit vulnerabilities and bump dependencies (v1.x back...
6aba065 chore: bump v1.25.3 for backport fixes (#1412)
See full diff in compare view

Updates @tiptap/extensions from 3.14.0 to 3.20.0

Release notes

Sourced from @tiptap/extensions's releases.

v3.20.0

@tiptap/core

Minor Changes

Add transformPastedHTML extension API that allows extensions to transform pasted HTML content before it's parsed into the editor, enabling cleanup of styles, removal of dangerous content, and modification of pasted HTML through a chainable transform system.

Patch Changes

Fix checking if mark is active and toggling off marks when part of the selection does not allow the mark (e.g. a code block)

Global attributes now support shorthand string values for types: use '*' to apply to all nodes and marks, 'nodes' for all nodes (excluding text), or 'marks' for all marks.

Fixed a typo in the documentation of editor.view

@tiptap/extension-drag-handle

Patch Changes

Fix drag handle not appearing for atom/leaf nodes like images in both nested and non-nested modes

Add table structure rules to prevent drag handle on table rows, cells, and headers, and fix ghost table rows when dragging tables

Fix drag position resolving outside the document when dragging an empty text node at the end of the document

@tiptap/markdown

Patch Changes

Fixed getMarkdown() returning   instead of empty string when editor is empty

@tiptap/extension-bubble-menu

Patch Changes

Fix BubbleMenu/FloatingMenu to use pluginKey as the transaction meta key so that multiple instances can be updated independently without affecting each other

@tiptap/extension-floating-menu

Patch Changes

Fix BubbleMenu/FloatingMenu to use pluginKey as the transaction meta key so that multiple instances can be updated independently without affecting each other

@tiptap/react

Minor Changes

Moved BubbleMenu and FloatingMenu to separate @tiptap/react/menus entrypoint to keep floating-ui optional

Simplified Tiptap component API with guaranteed non-null editor instance from useTiptap hook

Patch Changes

Fix BubbleMenu/FloatingMenu to use pluginKey as the transaction meta key so that multiple instances can be updated independently without affecting each other

... (truncated)

Commits

See full diff in compare view

Updates cors from 2.8.5 to 2.8.6

Release notes

Sourced from cors's releases.

v2.8.6

What's Changed

Build: Node.js@12.16 and Node.js.13.12 by @smondal in expressjs/cors#189

Update README.md for origin function callback parameters by @dstudzinski in expressjs/cors#180

Suggest passing false for disallowed domains, not erroring by @shackpank in expressjs/cors#175

Changed the term whitelist to allowlist in Documentation by @jkasun in expressjs/cors#200

Fix typo in README by @alex-grover in expressjs/cors#207

Added new link & website in the README by @manjunath00 in expressjs/cors#269

Fix functions call with extra parameter by @LuisEGR in expressjs/cors#245

🐛 Fix readme status badge by @homersimpsons in expressjs/cors#306

chore: add support for OSSF scorecard reporting by @inigomarquinez in expressjs/cors#321

ci: fix errors in ci github action for node 8 by @inigomarquinez in expressjs/cors#322

test: improved test robustness by @Alex-GF in expressjs/cors#320

chore: upgrade scorecard workflow pinned action versions by @carpasse in expressjs/cors#341

ci: add CodeQL (SAST) by @bjohansebas in expressjs/cors#340

docs: remove broken link to demo site by @dpopp07 in expressjs/cors#344

OSSF Scorecard recommendations by @UlisesGascon in expressjs/cors#350

build(deps): bump github/codeql-action from 3.24.7 to 3.28.19 by @dependabot[bot] in expressjs/cors#351

build(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 by @dependabot[bot] in expressjs/cors#353

build(deps): bump actions/checkout from 4.1.1 to 4.2.2 by @dependabot[bot] in expressjs/cors#354

build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.2 by @dependabot[bot] in expressjs/cors#355

build(deps-dev): bump express from 4.17.1 to 4.21.2 by @dependabot[bot] in expressjs/cors#356

build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.2 by @dependabot[bot] in expressjs/cors#352

build(deps-dev): bump mocha from 9.1.1 to 9.2.2 by @dependabot[bot] in expressjs/cors#358

update the docs for per request config by @jonchurch in expressjs/cors#338

(fix): readme updated for #271 origin option for * by @dhananjaysa92 in expressjs/cors#289

ci: upgrade Node versions by @UlisesGascon in expressjs/cors#359

chore: add funding to package.json by @bjohansebas in expressjs/cors#363

build(deps): bump github/codeql-action from 3.28.19 to 4.31.2 by @dependabot[bot] in expressjs/cors#371

build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by @dependabot[bot] in expressjs/cors#370

docs: Cleanup README by @efekrskl in expressjs/cors#374

chore: add node v25 by @imangas in expressjs/cors#375

Extend CI test matrix by @imangas in expressjs/cors#376

docs: simplify code examples with header comments by @jonchurch in expressjs/cors#386

docs: tweak intro, add note w/ browser enforcement, FAQ by @jonchurch in expressjs/cors#385

chore: remove HISTORY.md and nonexistent CONTRIBUTING.md from tarball by @Phillip9587 in expressjs/cors#388

Release: 2.8.6 by @UlisesGascon in expressjs/cors#390

New Contributors

@smondal made their first contribution in expressjs/cors#189

@dstudzinski made their first contribution in expressjs/cors#180

@shackpank made their first contribution in expressjs/cors#175

@jkasun made their first contribution in expressjs/cors#200

@alex-grover made their first contribution in expressjs/cors#207

@manjunath00 made their first contribution in expressjs/cors#269

@LuisEGR made their first contribution in expressjs/cors#245

@homersimpsons made their first contribution in expressjs/cors#306

@inigomarquinez made their first contribution in expressjs/cors#321

@Alex-GF made their first contribution in expressjs/cors#320

@carpasse made their first contribution in expressjs/cors#341

... (truncated)

Changelog

Sourced from cors's changelog.

2.8.6 / 2026-01-22

Improve documentation (API, context, examples...)

Remove additional markdown files from tarball

Commits

f00a8c1 2.8.6 (#390)
848e2bd chore: remove HISTORY.md and nonexistent CONTRIBUTING.md from tarball (#388)
cf8947e docs: tweak intro, add note w/ browser enforcement, FAQ (#385)
bbf62a5 docs: simplify code examples with header comments (#386)
f442e77 Extend CI test matrix (#376)
d5cf6cd ci: add support for node@25 (#375)
7e6f7ee docs: revamp content (#374)
b25644c build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 (#370)
f881e91 build(deps): bump github/codeql-action from 3.28.19 to 4.31.2 (#371)
9a9a760 chore: add funding to package.json (#363)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for cors since your current version.

Updates framer-motion from 12.23.26 to 12.34.3

Changelog

Sourced from framer-motion's changelog.

[12.34.3] 2026-02-20

Fixed

Ensure velocity is never transferred to a time-derived spring.

[12.34.2] 2026-02-18

Fixed

Layout animations: Reset motion value velocity when starting a new layout animation.

[12.34.1] 2026-02-17

Fixed

useScroll: Ensure animations aren't hardware accelerated when target is set.

Improve animatable "none" generation for mask values.

[12.34.0] 2026-02-09

Added

useScroll: Hardware accelerated animations.

[12.33.2] 2026-02-06

Fixed

Improve detection of detached elements with vanilla layout animations.

[12.33.1] 2026-02-06

Fixed

AnimatePresence: Ensure exiting nodes are correctly removed when rapidly switching children.

[12.33.0] 2026-02-05

Added

<motion />: New propagate.tap prop prevents tap gestures from propagating to parents.

[12.32.0] 2026-02-05

Added

transition.inherit: When true, inherit transition values from less-specific transitions.

[12.31.3] 2026-02-05

... (truncated)

Commits

071f659 v12.34.3
ab73833 Updating changelog
bd6eac3 Merge pull request #3564 from motiondivision/fix/time-defined-spring-velocity
bebd7f5 Ignore velocity for time-defined springs to prevent wild oscillation
6828340 v12.34.2
679a0ad Reset layout animation motion value velocity on restart
1d566fc Merge pull request #3546 from veeceey/fix/typescript-ban-types-issue
57263d8 v12.34.1
9447ee2 Updating changelog
79a4097 Merge pull request #3555 from motiondivision/scroll-acc
Additional commits viewable in compare view

Updates glob from 13.0.0 to 13.0.6

Commits

e80cb38 13.0.6
9cdbbff revert tsgo, not ready for test coverage correctness yet
89c99ba use tsgo compiler
b7275d5 update deps, expand engines to include node 18
942e360 update workflows, pull taprc out of package.json
4a0d53c update tap for mockImport bugfix
ef94ad2 update tap
180c2d4 update docs
37993c8 remove stray console.error in test
03ae4c2 13.0.5
Additional commits viewable in compare view

Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.

Updates lucide-react from 0.562.0 to 0.575.0

Release notes

Sourced from lucide-react's releases.

Version 0.575.0

What's Changed

feat(icons): added message-square-check icon by @karsa-mistmere in lucide-icons/lucide#4076

fix(lucide): Fix ESM Module output path in build by @ericfennis in lucide-icons/lucide#4084

feat(icons): added metronome icon by @edwloef in lucide-icons/lucide#4063

fix(icons): remove execution permission of SVG files by @duckafire in lucide-icons/lucide#4053

fix(icons): changed file-pen-line icon by @jguddas in lucide-icons/lucide#3970

feat(icons): added square-arrow-right-exit and square-arrow-right-enter icons by @EthanHazel in lucide-icons/lucide#3958

fix(icons): renamed flip-* to square-centerline-dashed-* by @jguddas in lucide-icons/lucide#3945

New Contributors

@edwloef made their first contribution in lucide-icons/lucide#4063

@duckafire made their first contribution in lucide-icons/lucide#4053

Full Changelog: lucide-icons/lucide@0.573.0...0.575.0

Version 0.574.0

What's Changed

fix(icons): changed rocking-chair icon by @jamiemlaw in lucide-icons/lucide#3445

fix(icons): flipped coins icon by @jguddas in lucide-icons/lucide#3158

feat(icons): added x-line-top icon by @jguddas in lucide-icons/lucide#2838

feat(icons): added mouse-left icon by @marvfash in lucide-icons/lucide#2788

feat(icons): added mouse-right icon by @marvfash in lucide-icons/lucide#2787

New Contributors

@marvfash made their first contribution in lucide-icons/lucide#2788

Full Changelog: lucide-icons/lucide@0.572.0...0.574.0

Version 0.573.0

What's Changed

fix(icons): changed rocking-chair icon by @jamiemlaw in lucide-icons/lucide#3445

fix(icons): flipped coins icon by @jguddas in lucide-icons/lucide#3158

feat(icons): added x-line-top icon by @jguddas in lucide-icons/lucide#2838

feat(icons): added mouse-left icon by @marvfash in lucide-icons/lucide#2788

feat(icons): added mouse-right icon by @marvfash in lucide-icons/lucide#2787

New Contributors

@marvfash made their first contribution in lucide-icons/lucide#2788

Full Changelog: lucide-icons/lucide@0.572.0...0.573.0

Version 0.572.0

What's Changed

feat(icons): added message-circle-check icon by @Shrinks99 in lucide-icons/lucide#3770

New Contributors

@Shrinks99 made their first contribution in lucide-icons/lucide#3770

Full Changelog: lucide-icons/lucide@0.571.0...0.572.0

... (truncated)

Commits

67c0485 feat(scripts): added helper script to automatically update OpenCollective bac...
b6ed43d feat(packages): Added aria-hidden fallback for decorative icons to all packag...
See full diff in compare view

Updates marked from 17.0.1 to 17.0.3

Release notes

Sourced from marked's releases.

v17.0.3

17.0.3 (2026-02-17)

Bug Fixes

escape image alt text (#3896) (909fe44)

v17.0.2

17.0.2 (2026-02-11)

Bug Fixes

fix blockquote after list (#3888) (2a475a1)

fix empty list item (#3890) (3fc6a44)

fix list item wrong indent (#3889) (e031175)

fix list with tabs (#3891) (9fc4f8e)

fix strikethrough flanking rules (#3882) (1a5b124)

Commits

bced615 chore(release): 17.0.3 [skip ci]
909fe44 fix: escape image alt text (#3896)
eb8ba2b chore(deps-dev): Bump @semantic-release/github from 12.0.5 to 12.0.6 (#3897)
b7682a8 chore(deps-dev): Bump markdown-it from 14.1.0 to 14.1.1 (#3898)
3d615d9 chore(deps-dev): Bump rimraf from 6.1.2 to 6.1.3 (#3899)
e824620 chore(release): 17.0.2 [skip ci]
e031175 fix: fix list item wrong indent (#3889)
9fc4f8e fix: fix list with tabs (#3891)
3fc6a44 fix: fix empty list item (#3890)
2a475a1 fix: fix blockquote after list (#3888)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for marked since your current version.

Updates mermaid from 11.12.2 to 11.12.3

Release notes

Sourced from mermaid's releases.

mermaid@11.12.3

Patch Changes

Updated dependencies [7243340]:

@mermaid-js/parser@1.0.0

Commits

cbe7015 Merge pull request #7397 from mermaid-js/changeset-release/master
69fccd2 Version Packages
56ecd66 Fixed issue with hero text
3735098 Merge pull request #7377 from aloisklink/chore/upgrade-to-langium-v4
ea46407 Update link with source
dc30a46 Updating the Hero on the docs side
426a616 chore(dev-deps): update @argos-ci/cypress to 6.2.2
16bc9e6 chore(deps): update dependency lodash-es to v4.17.23
7243340 chore(parser)!: upgrade parser to Langium v4
156dc11 chore(deps): upgrade to langium 3.5.0
Additional commits viewable in compare view

Updates react from 19.2.3 to 19.2.4

Release notes

Sourced from react's releases.

19.2.4 (January 26th, 2026)

React Server Components

Add more DoS mitigations to Server Actions, and harden Server Components (#35632 by @gnoff, @lubieowoce, @sebmarkbage, @unstubbable)

Commits

90ab3f8 Version 19.2.4
See full diff in compare view

Updates react-dom from 19.2.3 to 19.2.4

Release notes

Sourced from react-dom's releases.

19.2.4 (January 26th, 2026)

React Server Components

Add more DoS mitigations to Server Actions, and harden Server Components (#35632 by @gnoff, @lubieowoce, @sebmarkbage, @unstubbable)

Commits

90ab3f8 Version 19.2.4
See full diff in compare view

Updates tailwind-merge from 3.4.0 to 3.5.0

Release notes

Sourced from tailwind-merge's releases.

v3.5.0

New Features

Add support for Tailwind CSS v4.2 by @dcastil in dcastil/tailwind-merge#651

Full Changelog: dcastil/tailwind-merge@v3.4.1...v3.5.0

Thanks to @brandonmcconnell, @manavm1990, @langy, @roboflow, @syntaxfm, @getsentry, @codecov, a private sponsor, @block, @openclaw, @sourcegraph and more via @thnxdev for sponsoring tailwind-merge! ❤️

v3.4.1

Bug Fixes

Prevent arbitrary font-family and font-weight from merging by @roneymoon in dcastil/tailwind-merge#635

Full Changelog: dcastil/tailwind-merge@v3.4.0...v3.4.1

Thanks to @brandonmcconnell, @manavm1990, @langy, @roboflow, @syntaxfm, @getsentry, @codecov, a private sponsor, @block, @openclaw, @sourcegraph and more via @thnxdev for sponsoring tailwind-merge! ❤️

Commits

270ac79 v3.5.0
86f772e add changelog for 3.5.0
6c1f77c Merge pull request #651 from dcastil/feature/add-support-for-tailwind-css-v4.2
7a4cacf Add support for decimal fraction values
9ef0f79 fix incorrectly escaped characters
f4938b0 update README with v4.2 support
b02a572 Add Tailwind v4.2 font-features utilities support
5bd25ec Add Tailwind v4.2 logical sizing utilities
697c920 Add Tailwind v4.2 logical border block utilities
6656a47 Improve JSDoc comments for logical insets
Additional commits viewable in compare view

Updates unist-util-visit from 5.0.0 to 5.1.0

Release notes

Sourced from unist-util-visit's releases.

5.1.0

Types

8607d64 Refactor to use @imports

efbed8a Add declaration maps

639c0e5 Fix type support for readonly arrays by @JounQin in syntax-tree/unist-util-visit#40

Full Changelog: syntax-tree/unist-util-visit@5.0.0...5.1.0

Commits

5d601df 5.1.0
7b42d0e Update node in actions
1b1859d Update actions
2d88456 Update dev-dependencies
8607d64 Refactor to use @imports
efbed8a Add declaration maps
f80cf39 Add .tsbuildinfo to .gitignore
639c0e5 Fix type support for readonly arrays
9121f99 Update dev-dependencies
See full diff in compare view

Updates zod from 4.3.4 to 4.3.6

Release notes

Sourced from zod's releases.

v4.3.6

Commits:

9977fb0868432461de265a773319e80a90ba3e37 Add brand.dev to sponsors

f4b7bae3468f6188b8f004e007d722148fc91d77 Update pullfrog.yml (#5634)

251d7163a0ac7740fee741428d913e3c55702ace Clean up workflow_call

edd4132466da0f5065a8e051b599d01fdd1081d8 fix: add missing User-agent to robots.txt and allow all (#5646)

85db85e9091d0706910d60c7eb2e9c181edd87bd fix: typo in codec.test.ts file (#5628)

cbf77bb12bdfda2e054818e79001f5cb3798ce76 Avoid non null assertion (#5638)

dfbbf1c1ae0c224b8131d80ddf0a264262144086 Avoid re-exported star modules (#5656)

762e911e5773f949452fd6dd4e360f2362110e8e Generalize numeric key handling

ca3c8629c0c2715571f70b44c2433cad3db7fe4e v4.3.6

v4.3.5

Commits:

21afffdb42ccab554036312e33fed0ea3cb8f982 [Docs] Update migration guide docs for deprecation of message (#5595)

e36743e513aadb307b29949a80d6eb0dcc8fc278 Improve mini treeshaking

0cdc0b8597999fd9ca99767b912c1e82c1ff2d6c 4.3.5

Commits

ca3c862 v4.3.6
762e911 Generalize numeric key handling
dfbbf1c Avoid re-exported star modules (#5656)
cbf77bb Avoid non null assertion (#5638)
85db85e fix: typo in codec.test.ts file (#5628)
edd4132 fix: add missing User-agent to robots.txt and allow all (#5646)
251d716 Clean up workflow_call
f4b7bae Update pullfrog.yml (#5634)
9977fb0 Add brand.dev to sponsors
0cdc0b8 4.3.5
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

dependabot · 2026-02-23T02:18:47Z

Labels

The following labels could not be found: automated. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

… with 14 updates Bumps the production-dependencies group with 14 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@inquirer/prompts](https://github.com/SBoudrias/Inquirer.js) | `8.2.0` | `8.3.0` | | [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk) | `1.25.3` | `1.26.0` | | [@tiptap/extensions](https://github.com/ueberdosis/tiptap/tree/HEAD/packages/extension) | `3.14.0` | `3.20.0` | | [cors](https://github.com/expressjs/cors) | `2.8.5` | `2.8.6` | | [framer-motion](https://github.com/motiondivision/motion) | `12.23.26` | `12.34.3` | | [glob](https://github.com/isaacs/node-glob) | `13.0.0` | `13.0.6` | | [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `0.562.0` | `0.575.0` | | [marked](https://github.com/markedjs/marked) | `17.0.1` | `17.0.3` | | [mermaid](https://github.com/mermaid-js/mermaid) | `11.12.2` | `11.12.3` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.3` | `19.2.4` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.3` | `19.2.4` | | [tailwind-merge](https://github.com/dcastil/tailwind-merge) | `3.4.0` | `3.5.0` | | [unist-util-visit](https://github.com/syntax-tree/unist-util-visit) | `5.0.0` | `5.1.0` | | [zod](https://github.com/colinhacks/zod) | `4.3.4` | `4.3.6` | Updates `@inquirer/prompts` from 8.2.0 to 8.3.0 - [Release notes](https://github.com/SBoudrias/Inquirer.js/releases) - [Commits](https://github.com/SBoudrias/Inquirer.js/compare/@inquirer/prompts@8.2.0...@inquirer/prompts@8.3.0) Updates `@modelcontextprotocol/sdk` from 1.25.3 to 1.26.0 - [Release notes](https://github.com/modelcontextprotocol/typescript-sdk/releases) - [Commits](modelcontextprotocol/typescript-sdk@v1.25.3...v1.26.0) Updates `@tiptap/extensions` from 3.14.0 to 3.20.0 - [Release notes](https://github.com/ueberdosis/tiptap/releases) - [Commits](https://github.com/ueberdosis/tiptap/commits/v3.20.0/packages/extension) Updates `cors` from 2.8.5 to 2.8.6 - [Release notes](https://github.com/expressjs/cors/releases) - [Changelog](https://github.com/expressjs/cors/blob/master/HISTORY.md) - [Commits](expressjs/cors@v2.8.5...v2.8.6) Updates `framer-motion` from 12.23.26 to 12.34.3 - [Changelog](https://github.com/motiondivision/motion/blob/main/CHANGELOG.md) - [Commits](motiondivision/motion@v12.23.26...v12.34.3) Updates `glob` from 13.0.0 to 13.0.6 - [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md) - [Commits](isaacs/node-glob@v13.0.0...v13.0.6) Updates `lucide-react` from 0.562.0 to 0.575.0 - [Release notes](https://github.com/lucide-icons/lucide/releases) - [Commits](https://github.com/lucide-icons/lucide/commits/0.575.0/packages/lucide-react) Updates `marked` from 17.0.1 to 17.0.3 - [Release notes](https://github.com/markedjs/marked/releases) - [Commits](markedjs/marked@v17.0.1...v17.0.3) Updates `mermaid` from 11.12.2 to 11.12.3 - [Release notes](https://github.com/mermaid-js/mermaid/releases) - [Commits](https://github.com/mermaid-js/mermaid/compare/mermaid@11.12.2...mermaid@11.12.3) Updates `react` from 19.2.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react) Updates `react-dom` from 19.2.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom) Updates `tailwind-merge` from 3.4.0 to 3.5.0 - [Release notes](https://github.com/dcastil/tailwind-merge/releases) - [Commits](dcastil/tailwind-merge@v3.4.0...v3.5.0) Updates `unist-util-visit` from 5.0.0 to 5.1.0 - [Release notes](https://github.com/syntax-tree/unist-util-visit/releases) - [Commits](syntax-tree/unist-util-visit@5.0.0...5.1.0) Updates `zod` from 4.3.4 to 4.3.6 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](colinhacks/zod@v4.3.4...v4.3.6) --- updated-dependencies: - dependency-name: "@inquirer/prompts" dependency-version: 8.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: "@modelcontextprotocol/sdk" dependency-version: 1.26.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: "@tiptap/extensions" dependency-version: 3.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: cors dependency-version: 2.8.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: framer-motion dependency-version: 12.34.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: glob dependency-version: 13.0.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: lucide-react dependency-version: 0.575.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: marked dependency-version: 17.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: mermaid dependency-version: 11.12.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: react dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: react-dom dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: tailwind-merge dependency-version: 3.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: unist-util-visit dependency-version: 5.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: zod dependency-version: 4.3.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added the dependencies label Feb 23, 2026

dependabot bot force-pushed the dependabot/npm_and_yarn/production-dependencies-b125ed77cb branch from 7918b57 to b73be07 Compare February 24, 2026 09:26

dependabot bot force-pushed the dependabot/npm_and_yarn/production-dependencies-b125ed77cb branch from b73be07 to cb76868 Compare February 24, 2026 09:55

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Comments

deps(deps): bump the production-dependencies group across 1 directory with 14 updates#60

deps(deps): bump the production-dependencies group across 1 directory with 14 updates#60
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/production-dependencies-b125ed77cb

dependabot bot commented on behalf of github Feb 23, 2026 •

edited

Loading

Uh oh!

dependabot bot commented on behalf of github Feb 23, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Uh oh!

Comments

Conversation

dependabot bot commented on behalf of github Feb 23, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

@​inquirer/prompts@​8.3.0

@​inquirer/prompts@​8.2.1

v1.26.0

What's Changed

New Contributors

v3.20.0

@​tiptap/core

Minor Changes

Patch Changes

@​tiptap/extension-drag-handle

Patch Changes

@​tiptap/markdown

Patch Changes

@​tiptap/extension-bubble-menu

Patch Changes

@​tiptap/extension-floating-menu

Patch Changes

@​tiptap/react

Minor Changes

Patch Changes

v2.8.6

What's Changed

New Contributors

2.8.6 / 2026-01-22

[12.34.3] 2026-02-20

Fixed

[12.34.2] 2026-02-18

Fixed

[12.34.1] 2026-02-17

Fixed

[12.34.0] 2026-02-09

Added

[12.33.2] 2026-02-06

Fixed

[12.33.1] 2026-02-06

Fixed

[12.33.0] 2026-02-05

Added

[12.32.0] 2026-02-05

Added

[12.31.3] 2026-02-05

Version 0.575.0

What's Changed

New Contributors

Version 0.574.0

What's Changed

New Contributors

Version 0.573.0

What's Changed

New Contributors

Version 0.572.0

What's Changed

New Contributors

v17.0.3

17.0.3 (2026-02-17)

Bug Fixes

v17.0.2

17.0.2 (2026-02-11)

Bug Fixes

mermaid@11.12.3

Patch Changes

19.2.4 (January 26th, 2026)

React Server Components

19.2.4 (January 26th, 2026)

React Server Components

v3.5.0

New Features

v3.4.1

Bug Fixes

5.1.0

Types

v4.3.6

Commits:

v4.3.5

Commits:

dependabot bot commented on behalf of github Feb 23, 2026 •

edited

Loading

`@inquirer/prompts@8`.3.0

`@inquirer/prompts@8`.2.1

`@tiptap/core`

`@tiptap/extension-drag-handle`

`@tiptap/markdown`

`@tiptap/extension-bubble-menu`

`@tiptap/extension-floating-menu`

`@tiptap/react`