Skip to content

Bump the npm-dependencies group with 3 updates #401

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 4, 2025
Merged

Bump the npm-dependencies group with 3 updates #401

merged 1 commit into from
Oct 4, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 1, 2025

Bumps the npm-dependencies group with 3 updates: graphql-yoga, uuid and wrangler.

Updates graphql-yoga from 5.15.1 to 5.16.0

Changelog

Sourced from graphql-yoga's changelog.

5.16.0

Minor Changes

Patch Changes

  • #4191 0a7a635 Thanks @​ardatan! - Fix workers' loading in online GraphiQL mode, so that Monaco features like autocomplete can work properly

5.15.2

Patch Changes

  • e7b8906 Thanks @​ardatan! - Bump URL Loader in GraphiQL to the latest to remove extra DOWNSTREAM_SERVICE_ERROR code in the errors
Commits
  • de68acb chore(release): update monorepo packages versions (#4197)
  • c3d545d fix(deps): update dependency @​types/node to v24.5.1 (#4201)
  • a4e1c5f Add allowedHeaders option to allow filtering Response and Request headers (...
  • 0a7a635 fix(graphiql): load monaco workers properly in online mode (#4191)
  • 7a0ec50 fix(deps): update all non-major dependencies (#4189)
  • c7ad9c8 Fix image source to work in NPM page (#4185)
  • 042987d chore: update outdated links (#4179)
  • d33ee90 chore(release): update monorepo packages versions (#4129)
  • 7f26c64 Update and Fix GraphiQL (#4033)
  • da3a0cf Fix ESLint errors
  • Additional commits viewable in compare view

Updates uuid from 11.1.0 to 13.0.0

Release notes

Sourced from uuid's releases.

v13.0.0

13.0.0 (2025-09-08)

⚠ BREAKING CHANGES

  • make browser exports the default (#901)

Bug Fixes

v12.0.0

12.0.0 (2025-09-05)

⚠ BREAKING CHANGES

Features

Bug Fixes

Changelog

Sourced from uuid's changelog.

13.0.0 (2025-09-08)

⚠ BREAKING CHANGES

  • make browser exports the default (#901)

Bug Fixes

12.0.0 (2025-09-05)

⚠ BREAKING CHANGES

Features

Bug Fixes

Commits

Updates wrangler from 4.33.1 to 4.40.3

Release notes

Sourced from wrangler's releases.

[email protected]

Patch Changes

  • #10602 ff82d80 Thanks @​tukiminya! - fix: update Secrets Store command status from alpha to open-beta

  • #10623 7a6381c Thanks @​IRCody! - Handle more cases for correctly resolving the full uri for an image when using containers push.

  • #10779 325d22e Thanks @​hoodmane! - Add fallthrough: true for python_modules data rule

  • #10112 8d07576 Thanks @​devin-ai-integration! - fix: allow Workflow bindings when calling getPlatformProxy()

    Workflow bindings are not supported in practice when using getPlatformProxy(). But their existence in a Wrangler config file should not prevent other bindings from working. Previously, calling getPlatformProxy() would crash if there were any Workflow bindings defined. Now, instead, you get a warning telling you that these bindings are not available.

  • #10769 0a554f9 Thanks @​penalosa! - Mark more errors as UserError to disable Sentry reporting

  • #10679 6244a9e Thanks @​KianNH! - Fix rendering for nested objects in containers list and containers info [ID]

  • #10785 d09cab3 Thanks @​pombosilva! - Workflows names and instance IDs are now properly validated with production limits.

  • Updated dependencies [6ff41a6, 0c208e1, 2432022, d0801b1, 0a554f9]:

[email protected]

Patch Changes

[email protected]

Patch Changes

[email protected]

Minor Changes

  • #10743 a7ac751 Thanks @​jonesphillip! - Changes --fileSizeMB to --file-size for wrangler r2 bucket catalog compaction command. Small fixes for pipelines commands.

Patch Changes

  • #10706 81fd733 Thanks @​1000hz! - Fixed an issue that caused some Workers to have an incorrect service tag applied when using a redirected configuration file (as used by the Cloudflare Vite plugin). This resulted in these Workers not being correctly grouped with their sibling environments in the Cloudflare dashboard.

  • Updated dependencies [06e9a48]:

[email protected]

... (truncated)

Changelog

Sourced from wrangler's changelog.

4.40.3

Patch Changes

  • #10602 ff82d80 Thanks @​tukiminya! - fix: update Secrets Store command status from alpha to open-beta

  • #10623 7a6381c Thanks @​IRCody! - Handle more cases for correctly resolving the full uri for an image when using containers push.

  • #10779 325d22e Thanks @​hoodmane! - Add fallthrough: true for python_modules data rule

  • #10112 8d07576 Thanks @​devin-ai-integration! - fix: allow Workflow bindings when calling getPlatformProxy()

    Workflow bindings are not supported in practice when using getPlatformProxy(). But their existence in a Wrangler config file should not prevent other bindings from working. Previously, calling getPlatformProxy() would crash if there were any Workflow bindings defined. Now, instead, you get a warning telling you that these bindings are not available.

  • #10769 0a554f9 Thanks @​penalosa! - Mark more errors as UserError to disable Sentry reporting

  • #10679 6244a9e Thanks @​KianNH! - Fix rendering for nested objects in containers list and containers info [ID]

  • #10785 d09cab3 Thanks @​pombosilva! - Workflows names and instance IDs are now properly validated with production limits.

  • Updated dependencies [6ff41a6, 0c208e1, 2432022, d0801b1, 0a554f9]:

4.40.2

Patch Changes

4.40.1

Patch Changes

4.40.0

Minor Changes

  • #10743 a7ac751 Thanks @​jonesphillip! - Changes --fileSizeMB to --file-size for wrangler r2 bucket catalog compaction command. Small fixes for pipelines commands.

Patch Changes

  • #10706 81fd733 Thanks @​1000hz! - Fixed an issue that caused some Workers to have an incorrect service tag applied when using a redirected configuration file (as used by the Cloudflare Vite plugin). This resulted in these Workers not being correctly grouped with their sibling environments in the Cloudflare dashboard.

... (truncated)

Commits
  • 76d2538 Version Packages (#10783)
  • d0801b1 Drop node:process polyfill when v2 is available (#10805)
  • 0a554f9 Mark more errors as UserError (#10769)
  • 0c208e1 build(deps): bump the workerd-and-workers-types group with 2 updates (#10799)
  • 516a6e0 test: improve resilience of deployments e2e tests (#10800)
  • 01db4f1 address todos in unenv e2e tests (#10746)
  • 325d22e Add fallthrough: true to python-modules .so glob rule (#10779)
  • 5446135 Run cleanup every 2 hours and only cleanup kvs that are older than an hour (#...
  • 6244a9e fix(wrangler): Nested object rendering in Containers list/info commands (#10679)
  • d09cab3 Add Workflow name and instance id validations (#10785)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the npm-dependencies group with 3 updates
22e9a0f 
Bumps the npm-dependencies group with 3 updates: [graphql-yoga](https://github.com/graphql-hive/graphql-yoga/tree/HEAD/packages/graphql-yoga), [uuid](https://github.com/uuidjs/uuid) and [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler).


Updates `graphql-yoga` from 5.15.1 to 5.16.0
- [Release notes](https://github.com/graphql-hive/graphql-yoga/releases)
- [Changelog](https://github.com/graphql-hive/graphql-yoga/blob/main/packages/graphql-yoga/CHANGELOG.md)
- [Commits](https://github.com/graphql-hive/graphql-yoga/commits/[email protected]/packages/graphql-yoga)

Updates `uuid` from 11.1.0 to 13.0.0
- [Release notes](https://github.com/uuidjs/uuid/releases)
- [Changelog](https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md)
- [Commits](uuidjs/uuid@v11.1.0...v13.0.0)

Updates `wrangler` from 4.33.1 to 4.40.3
- [Release notes](https://github.com/cloudflare/workers-sdk/releases)
- [Changelog](https://github.com/cloudflare/workers-sdk/blob/main/packages/wrangler/CHANGELOG.md)
- [Commits](https://github.com/cloudflare/workers-sdk/commits/[email protected]/packages/wrangler)

---
updated-dependencies:
- dependency-name: graphql-yoga
  dependency-version: 5.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: uuid
  dependency-version: 13.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: npm-dependencies
- dependency-name: wrangler
  dependency-version: 4.40.3
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Oct 1, 2025
@dependabot dependabot bot requested a review from a team as a code owner October 1, 2025 00:02
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Oct 1, 2025
@github-actions
Copy link
Contributor

github-actions bot commented Oct 1, 2025

👋 Thanks for opening a pull request!

If you are new, please check out the trimmed down summary of our deployment process below:

  1. 👀 Observe the CI jobs and tests to ensure they are passing

  2. ✔️ Obtain an approval/review on this pull request

  3. 🚀 Deploy your pull request to the development environment with .deploy to development

  4. 🚀 Deploy your pull request to the production environment with .deploy

    If anything goes wrong, rollback with .deploy main

  5. 🎉 Merge!

Need help? Type .help as a comment or visit the usage guide for more details

Please note, if you have a more complex change, it is advised to claim a deployment lock with .lock <environment> --reason <reason> to prevent other deployments from happening while you are working on your change.

Once your PR has been merged, you can remove the lock with .unlock <environment>.

@the-hideout-combine-prs the-hideout-combine-prs bot mentioned this pull request Oct 1, 2025
Merged
@Razzmatazzz Razzmatazzz merged commit 78b7f57 into main Oct 4, 2025
3 checks passed
@Razzmatazzz Razzmatazzz deleted the dependabot/npm_and_yarn/npm-dependencies-c3dfabbbf0 branch October 4, 2025 14:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Razzmatazzz