Bump dependencies#20300
Conversation
Confidence Score: 5/5This looks safe to merge.
Reviews (2): Last reviewed commit: "format" | Re-trigger Greptile |
|
No actionable comments were generated in the recent review. 🎉 ℹ️ Recent review info⚙️ Run configurationConfiguration used: Repository UI Review profile: CHILL Plan: Pro Run ID: 📒 Files selected for processing (2)
✅ Files skipped from review due to trivial changes (2)
WalkthroughThis pull request updates dependency version constraints in Changes
Sequence Diagram(s)Not applicable. Suggested labels: dependencies, cleanup Related issues: None found Related PRs: None found 🚥 Pre-merge checks | ✅ 2 | ❌ 2❌ Failed checks (1 warning, 1 inconclusive)
✅ Passed checks (2 passed)
Comment |
There was a problem hiding this comment.
🧹 Nitpick comments (1)
pnpm-workspace.yaml (1)
13-27: 📐 Maintainability & Code Quality | 🔵 Trivial | 💤 Low valueInconsistent pinning strategy across catalog entries.
Some entries (
@types/node,dedent,prettier) remain exact-pinned while others (enhanced-resolve,postcss,vite,webpack) now use caret ranges. If the intent (per issue#20291) is to allow minor-version drift for faster security patch pickup, consider applying the same range approach consistently to reduce future one-off PRs for similar bumps.
ℹ️ Review info
⚙️ Run configuration
Configuration used: Repository UI
Review profile: CHILL
Plan: Pro
Run ID: f7372b66-93d4-4804-ab1b-d9931f12edb0
⛔ Files ignored due to path filters (1)
pnpm-lock.yamlis excluded by!**/pnpm-lock.yaml
📒 Files selected for processing (2)
package.jsonpnpm-workspace.yaml
This PR bumps most of the dependencies to the latest version.
This also marked some dependencies using a range such that you get updates for free during the installation:
Fixes: #20291
Test plan