Skip to content

Bump the minor-and-patch group across 1 directory with 10 updates#2255

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/minor-and-patch-00a4107d63
Open

Bump the minor-and-patch group across 1 directory with 10 updates#2255
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/minor-and-patch-00a4107d63

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 15, 2026

Bumps the minor-and-patch group with 9 updates in the / directory:

Package From To
@crowdin/cli 4.12.0 4.13.0
ajv 8.17.1 8.18.0
docusaurus-plugin-openapi-docs 4.5.1 4.7.1
docusaurus-theme-openapi-docs 4.5.1 4.7.1
react 19.2.3 19.2.4
react-dom 19.2.3 19.2.4
@redocly/cli 2.14.1 2.18.1
glob 13.0.1 13.0.3
prettier 3.7.4 3.8.1

Updates @crowdin/cli from 4.12.0 to 4.13.0

Release notes

Sourced from @​crowdin/cli's releases.

4.13.0

What's Changed

Full Changelog: crowdin/crowdin-cli@4.12.0...4.13.0

Changelog

Sourced from @​crowdin/cli's changelog.

4.13.0 (2026-01-20)

Bug Fixes

Features

Commits
  • f87d0cd chore(release): version 4.13.0 [skip ci]
  • 1724c26 feat: log async operation id for verbose output (#975)
  • 73e1ba1 fix: uploaded sources with cache (#974)
  • e5faabb chore(deps): bump tar from 7.5.2 to 7.5.3 (#973)
  • b3246fe chore(deps): bump diff and postcss-loader in /website (#972)
  • c90d2e5 feat: import translations (#968)
  • a99894d build(deps): update jDeploy to version 5.5.5 (#967)
  • 7468610 refactor: use project languages instead of calling api (#963)
  • ad0467d chore: api client v1.30.3 (#964)
  • bb18a63 chore(deps): bump express from 4.21.1 to 4.22.1 in /website (#962)
  • See full diff in compare view

Updates ajv from 8.17.1 to 8.18.0

Release notes

Sourced from ajv's releases.

v8.18.0

What's Changed

New Contributors

Full Changelog: ajv-validator/ajv@v8.17.1...v8.18.0

Commits
  • 142ce84 8.18.0
  • 720a23f fix(pattern): use configured RegExp engine with $data keyword to mitigate ReD...
  • 82735a1 fix: typos in schema-language.md (#2507)
  • b17ec32 fix: small grammatical error in managing-schemas.md (#2508)
  • 69568d0 fix: #2482 Infinity and NaN serialise to null (#2487)
  • f06766f feat: allow tree-shaking by adding ``"sideEffects": falsetopackage.json` ...
  • See full diff in compare view

Updates docusaurus-plugin-openapi-docs from 4.5.1 to 4.7.1

Release notes

Sourced from docusaurus-plugin-openapi-docs's releases.

v4.7.1

Major performance improvement: The new externalJsonProps option (enabled by default) dramatically reduces build times and bundle sizes by externalizing large JSON props from MDX files.

  • New externalJsonProps plugin option significantly improves build performance
  • Sticky positioning for the API Explorer right panel improves UX on long API pages
  • Dynamic request body updates when switching anyOf/oneOf tabs

Note: v4.7.0 had a build error affecting downstream projects. Please use v4.7.1 instead.

🚀 New Feature

  • feat(plugin): add externalJsonProps option (enabled by default) to improve build performance (#1279)
  • feat(theme): add sticky positioning to API Explorer right panel (#1288)
  • feat: dynamically update request body when anyOf/oneOf tab changes (#1287)

🐛 Bug Fix

  • fix(theme): use import type for plugin type imports (#1292)
  • fix: render inline enum values in anyOf schemas (#1286)
  • fix: generate correct examples for different request content types (#1284)

🏠 Refactoring

  • refactor: change plugin and theme types.ts to types.d.ts (#1281)
  • refactor: externalize using create() and drop size threshold requirement (#1280)

📝 Documentation

  • docs: sync README and intro.mdx with plugin docs

🤖 Dependencies

  • chore(deps): bump lodash from 4.17.21 to 4.17.23 (#1282)

Committers: 3

  • dependabot[bot]
  • Ollie Monk
  • Steven Serrata

v4.6.0

What's Changed

... (truncated)

Changelog

Sourced from docusaurus-plugin-openapi-docs's changelog.

4.7.1 (2026-01-27)

Hotfix release for build error in v4.7.0.

🐛 Bug Fix

  • fix(theme): use import type for plugin type imports (#1292)

4.7.0 (2026-01-27)

Major performance improvement: The new externalJsonProps option (enabled by default) dramatically reduces build times and bundle sizes by externalizing large JSON props from MDX files.

  • New externalJsonProps plugin option significantly improves build performance
  • Sticky positioning for the API Explorer right panel improves UX on long API pages
  • Dynamic request body updates when switching anyOf/oneOf tabs

🚀 New Feature

  • feat(plugin): add externalJsonProps option (enabled by default) to improve build performance (#1279)
  • feat(theme): add sticky positioning to API Explorer right panel (#1288)
  • feat: dynamically update request body when anyOf/oneOf tab changes (#1287)

🐛 Bug Fix

  • fix: render inline enum values in anyOf schemas (#1286)
  • fix: generate correct examples for different request content types (#1284)

🏠 Refactoring

  • refactor: change plugin and theme types.ts to types.d.ts (#1281)
  • refactor: externalize using create() and drop size threshold requirement (#1280)

📝 Documentation

  • docs: sync README and intro.mdx with plugin docs

🤖 Dependencies

  • chore(deps): bump lodash from 4.17.21 to 4.17.23 (#1282)

Committers: 3

  • dependabot[bot]
  • Ollie Monk
  • Steven Serrata

4.6.0 (Jan 16, 2026)

High level enhancements

... (truncated)

Commits
  • 0a89b9d Prepare release v4.7.1 (#1293)
  • f5829b8 Prepare release v4.7.0 (#1289)
  • 71621ac Change plugin and theme types.ts to types.d.ts (#1281)
  • 6a466fe fix: render inline enum values in anyOf schemas (#1285) (#1286)
  • bfe7bd8 Externalize using create() and drop size threshold requirement (#1280)
  • 77f891e feat(plugin): add externalJsonProps option (enabled by default) to improve bu...
  • c7c5ca9 Prepare release v4.6.0 (#1277)
  • d9275c0 remove beta badge
  • e1e210e feat: add showInfoPage option to disable info page generation (#1272)
  • 7740c82 fix: handle undefined when outputDir doesn't contain docPath (#1271)
  • Additional commits viewable in compare view

Updates docusaurus-theme-openapi-docs from 4.5.1 to 4.7.1

Release notes

Sourced from docusaurus-theme-openapi-docs's releases.

v4.7.1

Major performance improvement: The new externalJsonProps option (enabled by default) dramatically reduces build times and bundle sizes by externalizing large JSON props from MDX files.

  • New externalJsonProps plugin option significantly improves build performance
  • Sticky positioning for the API Explorer right panel improves UX on long API pages
  • Dynamic request body updates when switching anyOf/oneOf tabs

Note: v4.7.0 had a build error affecting downstream projects. Please use v4.7.1 instead.

🚀 New Feature

  • feat(plugin): add externalJsonProps option (enabled by default) to improve build performance (#1279)
  • feat(theme): add sticky positioning to API Explorer right panel (#1288)
  • feat: dynamically update request body when anyOf/oneOf tab changes (#1287)

🐛 Bug Fix

  • fix(theme): use import type for plugin type imports (#1292)
  • fix: render inline enum values in anyOf schemas (#1286)
  • fix: generate correct examples for different request content types (#1284)

🏠 Refactoring

  • refactor: change plugin and theme types.ts to types.d.ts (#1281)
  • refactor: externalize using create() and drop size threshold requirement (#1280)

📝 Documentation

  • docs: sync README and intro.mdx with plugin docs

🤖 Dependencies

  • chore(deps): bump lodash from 4.17.21 to 4.17.23 (#1282)

Committers: 3

  • dependabot[bot]
  • Ollie Monk
  • Steven Serrata

v4.6.0

What's Changed

... (truncated)

Changelog

Sourced from docusaurus-theme-openapi-docs's changelog.

4.7.1 (2026-01-27)

Hotfix release for build error in v4.7.0.

🐛 Bug Fix

  • fix(theme): use import type for plugin type imports (#1292)

4.7.0 (2026-01-27)

Major performance improvement: The new externalJsonProps option (enabled by default) dramatically reduces build times and bundle sizes by externalizing large JSON props from MDX files.

  • New externalJsonProps plugin option significantly improves build performance
  • Sticky positioning for the API Explorer right panel improves UX on long API pages
  • Dynamic request body updates when switching anyOf/oneOf tabs

🚀 New Feature

  • feat(plugin): add externalJsonProps option (enabled by default) to improve build performance (#1279)
  • feat(theme): add sticky positioning to API Explorer right panel (#1288)
  • feat: dynamically update request body when anyOf/oneOf tab changes (#1287)

🐛 Bug Fix

  • fix: render inline enum values in anyOf schemas (#1286)
  • fix: generate correct examples for different request content types (#1284)

🏠 Refactoring

  • refactor: change plugin and theme types.ts to types.d.ts (#1281)
  • refactor: externalize using create() and drop size threshold requirement (#1280)

📝 Documentation

  • docs: sync README and intro.mdx with plugin docs

🤖 Dependencies

  • chore(deps): bump lodash from 4.17.21 to 4.17.23 (#1282)

Committers: 3

  • dependabot[bot]
  • Ollie Monk
  • Steven Serrata

4.6.0 (Jan 16, 2026)

High level enhancements

... (truncated)

Commits
  • 0a89b9d Prepare release v4.7.1 (#1293)
  • 3c5d387 fix(theme): use import type for plugin type imports (#1292)
  • f5829b8 Prepare release v4.7.0 (#1289)
  • 71621ac Change plugin and theme types.ts to types.d.ts (#1281)
  • fd4ed79 feat(theme): add sticky positioning to API Explorer right panel (#1288)
  • 6ebffbb feat: dynamically update request body when anyOf/oneOf tab changes (#1235) (#...
  • 6a466fe fix: render inline enum values in anyOf schemas (#1285) (#1286)
  • 47258df fix: generate correct examples for different request content types (#1283) (#...
  • c7c5ca9 Prepare release v4.6.0 (#1277)
  • b7b7b77 fix: allow Send API Request button with proxy-only configuration (#1274)
  • Additional commits viewable in compare view

Updates react from 19.2.3 to 19.2.4

Release notes

Sourced from react's releases.

19.2.4 (January 26th, 2026)

React Server Components

Commits

Updates react-dom from 19.2.3 to 19.2.4

Release notes

Sourced from react-dom's releases.

19.2.4 (January 26th, 2026)

React Server Components

Commits

Updates sass from 1.97.1 to 1.97.3

Release notes

Sourced from sass's releases.

Dart Sass 1.97.3

To install Sass 1.97.3, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

  • Fix a bug where nesting an at-rule within multiple style rules in plain CSS could cause outer style rules to be omitted.

See the full changelog for changes in earlier releases.

Dart Sass 1.97.2

To install Sass 1.97.2, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

  • Additional fixes for implicit configuration when nested imports are involved.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.97.3

  • Fix a bug where nesting an at-rule within multiple style rules in plain CSS could cause outer style rules to be omitted.

1.97.2

  • Additional fixes for implicit configuration when nested imports are involved.
Commits

Updates @redocly/cli from 2.14.1 to 2.18.1

Release notes

Sourced from @​redocly/cli's releases.

@​redocly/cli@​2.18.1

Patch Changes

  • Fixed validation of examples where combining required with readOnly or writeOnly properties would incorrectly generate warnings.
  • Updated @​redocly/respect-core to v2.18.1.

@​redocly/cli@​2.18.0

Patch Changes

  • Updated @​redocly/openapi-core to v2.18.0.

@​redocly/cli@​2.17.0

Minor Changes

  • Added support for Media Types in the Components model.

Patch Changes

  • Updated @​redocly/openapi-core to v2.17.0.

@​redocly/cli@​2.16.0

Minor Changes

  • Added a new --component-renaming-conflicts-severity option for the bundle command to control how naming conflicts are reported when bundling API descriptions with external references.

Patch Changes

  • Redirected bundling problems (such as lint errors and warnings) to stderr instead of stdout to avoid interfering with the bundled output.
  • Updated @​redocly/openapi-core to v2.16.0.

@​redocly/cli@​2.15.2

Patch Changes

  • Fixed an issue where improperly structured OpenAPI examples caused the linter to fail.
  • Updated @​redocly/openapi-core to v2.15.2.

@​redocly/cli@​2.15.1

Patch Changes

  • Updated @​redocly/openapi-core to v2.15.1.

@​redocly/cli@​2.15.0

Patch Changes

  • Removed unused chokidar dependency.
  • Updated @​redocly/openapi-core to v2.15.0.

@​redocly/cli@​2.14.9

Patch Changes

... (truncated)

Commits

Updates glob from 13.0.1 to 13.0.3

Commits
Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.


Updates prettier from 3.7.4 to 3.8.1

Release notes

Sourced from prettier's releases.

3.8.1

🔗 Changelog

3.8.0

  • Support Angular v21.1

diff

🔗 Release note "Prettier 3.8: Support for Angular v21.1"

Changelog

Sourced from prettier's changelog.

3.8.1

diff

Include available printers in plugin type declarations (#18706 by @​porada)

// Input
import * as prettierPluginEstree from "prettier/plugins/estree";
// Prettier 3.8.0
// Property 'printers' does not exist on type 'typeof import("prettier/plugins/estree")'. ts(2339)
prettierPluginEstree.printers.estree; //=> any
// Prettier 3.8.1
prettierPluginEstree.printers.estree; //=> Printer
prettierPluginEstree.printers["estree-json"]; //=> Printer

3.8.0

diff

🔗 Release Notes

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the minor-and-patch group across 1 directory with 10 updates
219a5cc 
Bumps the minor-and-patch group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@crowdin/cli](https://github.com/crowdin/crowdin-cli) | `4.12.0` | `4.13.0` |
| [ajv](https://github.com/ajv-validator/ajv) | `8.17.1` | `8.18.0` |
| [docusaurus-plugin-openapi-docs](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/tree/HEAD/packages/docusaurus-plugin-openapi-docs) | `4.5.1` | `4.7.1` |
| [docusaurus-theme-openapi-docs](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/tree/HEAD/packages/docusaurus-theme-openapi-docs) | `4.5.1` | `4.7.1` |
| [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.3` | `19.2.4` |
| [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.3` | `19.2.4` |
| [@redocly/cli](https://github.com/Redocly/redocly-cli) | `2.14.1` | `2.18.1` |
| [glob](https://github.com/isaacs/node-glob) | `13.0.1` | `13.0.3` |
| [prettier](https://github.com/prettier/prettier) | `3.7.4` | `3.8.1` |



Updates `@crowdin/cli` from 4.12.0 to 4.13.0
- [Release notes](https://github.com/crowdin/crowdin-cli/releases)
- [Changelog](https://github.com/crowdin/crowdin-cli/blob/main/CHANGELOG.md)
- [Commits](crowdin/crowdin-cli@4.12.0...4.13.0)

Updates `ajv` from 8.17.1 to 8.18.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v8.17.1...v8.18.0)

Updates `docusaurus-plugin-openapi-docs` from 4.5.1 to 4.7.1
- [Release notes](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/releases)
- [Changelog](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/commits/v4.7.1/packages/docusaurus-plugin-openapi-docs)

Updates `docusaurus-theme-openapi-docs` from 4.5.1 to 4.7.1
- [Release notes](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/releases)
- [Changelog](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/commits/v4.7.1/packages/docusaurus-theme-openapi-docs)

Updates `react` from 19.2.3 to 19.2.4
- [Release notes](https://github.com/facebook/react/releases)
- [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react)

Updates `react-dom` from 19.2.3 to 19.2.4
- [Release notes](https://github.com/facebook/react/releases)
- [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom)

Updates `sass` from 1.97.1 to 1.97.3
- [Release notes](https://github.com/sass/dart-sass/releases)
- [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md)
- [Commits](sass/dart-sass@1.97.1...1.97.3)

Updates `@redocly/cli` from 2.14.1 to 2.18.1
- [Release notes](https://github.com/Redocly/redocly-cli/releases)
- [Commits](https://github.com/Redocly/redocly-cli/compare/@redocly/cli@2.14.1...@redocly/cli@2.18.1)

Updates `glob` from 13.0.1 to 13.0.3
- [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md)
- [Commits](isaacs/node-glob@v13.0.1...v13.0.3)

Updates `prettier` from 3.7.4 to 3.8.1
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@3.7.4...3.8.1)

---
updated-dependencies:
- dependency-name: "@crowdin/cli"
  dependency-version: 4.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: ajv
  dependency-version: 8.18.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: docusaurus-plugin-openapi-docs
  dependency-version: 4.7.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: docusaurus-theme-openapi-docs
  dependency-version: 4.7.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: react
  dependency-version: 19.2.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: react-dom
  dependency-version: 19.2.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: sass
  dependency-version: 1.97.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: "@redocly/cli"
  dependency-version: 2.18.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: glob
  dependency-version: 13.0.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: prettier
  dependency-version: 3.8.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 15, 2026
@dependabot dependabot bot requested review from Copilot and removed request for Copilot February 15, 2026 02:10
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 15, 2026
@socket-security
Copy link

socket-security bot commented Feb 15, 2026

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updateddocusaurus-theme-openapi-docs@​4.5.1 ⏵ 4.7.198 +110076 +196 +2100
Updated@​redocly/​cli@​2.14.1 ⏵ 2.18.176 -21100100100100
Updatedreact@​19.2.3 ⏵ 19.2.41001008497100
Updated@​crowdin/​cli@​4.12.0 ⏵ 4.13.01001008994 +1100
Updatedprettier@​3.7.4 ⏵ 3.8.19010097 +196100
Updatedglob@​13.0.1 ⏵ 13.0.3991009992100
Updatedreact-dom@​19.2.3 ⏵ 19.2.41001009298100
Updatedsass@​1.97.1 ⏵ 1.97.310010010094100
Updateddocusaurus-plugin-openapi-docs@​4.5.1 ⏵ 4.7.197100100 +196 +2100

View full report

@socket-security
Copy link

socket-security bot commented Feb 15, 2026

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action Severity Alert  (click "▶" to expand/collapse)
Warn High
License policy violation: npm sass

Location: Package overview

From: package.jsonnpm/sass@1.97.3

ℹ Read more on: This package | This alert | What is a license policy violation?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/sass@1.97.3. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants