Skip to content

Bump the production-dependencies group across 1 directory with 5 updates#16

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/production-dependencies-dcd89c455b
Open

Bump the production-dependencies group across 1 directory with 5 updates#16
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/production-dependencies-dcd89c455b

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Mar 23, 2026

Bumps the production-dependencies group with 5 updates in the / directory:

Package From To
@clack/prompts 1.0.1 1.1.0
better-sqlite3 12.6.2 12.8.0
pnpm-workspace-yaml 1.5.0 1.6.0
undici 7.22.0 7.24.5
yaml 2.8.2 2.8.3

Updates @clack/prompts from 1.0.1 to 1.1.0

Release notes

Sourced from @​clack/prompts's releases.

@​clack/prompts@​1.1.0

Minor Changes

  • e3333fb: Replaces picocolors with Node.js built-in styleText.

Patch Changes

  • c3666e2: destruct limitOption param for better code readability, tweak types definitions
  • ba3df8e: Fixes withGuide support in intro, outro, and cancel messages.
  • Updated dependencies [e3333fb]
    • @​clack/core@​1.1.0
Changelog

Sourced from @​clack/prompts's changelog.

1.1.0

Minor Changes

  • e3333fb: Replaces picocolors with Node.js built-in styleText.

Patch Changes

  • c3666e2: destruct limitOption param for better code readability, tweak types definitions
  • ba3df8e: Fixes withGuide support in intro, outro, and cancel messages.
  • Updated dependencies [e3333fb]
    • @​clack/core@​1.1.0
Commits
  • 56edf97 [ci] release (#472)
  • ba3df8e fix(prompts): honor withGuide for intro/outro/cancel messages (#474)
  • e3333fb refactor(core, prompts): replace picocolors with styleText (#403)
  • 594c58a [ci] format
  • c3666e2 chore(prompts): destruct limitOption param for better code readability (#457)
  • See full diff in compare view

Updates better-sqlite3 from 12.6.2 to 12.8.0

Release notes

Sourced from better-sqlite3's releases.

v12.8.0

What's Changed

New Contributors

Why SQLite v3.51.3 instead of v3.52.0

From the SQLite team:

Some important issues have been found with version 3.52.0. In order to give us time to deal with those issues, we plan to withdraw the 3.52.0 release. In its place, we will put up a new 3.51.3 patch release that includes a fix for the recently discovered WAL-reset bug as well as other patches. This will happen probably within about the next twelve hours.

Hence, if you were planning to upgrade to 3.52.0 tomorrow (Friday, 2026-03-14), perhaps it would be better to wait a day or so for 3.51.3.

At some point we will do version 3.52.1 which will hopefully resolve the issues that have arisen with the 3.52.0 release.

Full Changelog: WiseLibs/better-sqlite3@v12.7.1...v12.8.0

v12.7.1

Also not a viable release

The V8 API change was more bonkers than expected. See v12.8.0.

What's Changed

Full Changelog: WiseLibs/better-sqlite3@v12.7.0...v12.7.1

v12.7.0

CAUTION: NOT A VIABLE RELEASE

Two (!!) reasons:

  1. Electron v41 bit us and removed functions we were using, so a bunch of prebuilds are missing
  2. From the SQLite team:

    Some important issues have been found with version 3.52.0. In order to give us time to deal with those issues, we plan to withdraw the 3.52.0 release. In its place, we will put up a new 3.51.3 patch release that includes a fix for the recently discovered WAL-reset bug as well as other patches. This will happen probably within about the next twelve hours.

What's Changed

Full Changelog: WiseLibs/better-sqlite3@v12.6.2...v12.7.0

... (truncated)

Commits

Updates pnpm-workspace-yaml from 1.5.0 to 1.6.0

Release notes

Sourced from pnpm-workspace-yaml's releases.

v1.6.0

   🚀 Features

    View changes on GitHub
Commits

Updates undici from 7.22.0 to 7.24.5

Release notes

Sourced from undici's releases.

v7.24.5

What's Changed

New Contributors

Full Changelog: nodejs/undici@v7.24.4...v7.24.5

v7.24.4

What's Changed

Full Changelog: nodejs/undici@v7.24.3...v7.24.4

v7.24.3

What's Changed

Full Changelog: nodejs/undici@v7.24.2...v7.24.3

v7.24.2

What's Changed

Full Changelog: nodejs/undici@v7.24.1...v7.24.2

v7.24.1

What's Changed

Full Changelog: nodejs/undici@v7.24.0...v7.24.1

v7.24.0

Undici v7.24.0 Security Release Notes

This release addresses multiple security vulnerabilities in Undici.

Upgrade guidance

All users on v7 should upgrade to v7.24.0 or later.

Fixed advisories

... (truncated)

Commits

Updates yaml from 2.8.2 to 2.8.3

Release notes

Sourced from yaml's releases.

v2.8.3

  • Add trailingComma ToString option for multiline flow formatting (#670)
  • Catch stack overflow during node composition (1e84ebb)
Commits
  • ce14587 2.8.3
  • 1e84ebb fix: Catch stack overflow during node composition
  • 6b24090 ci: Include Prettier check in lint action
  • 9424dee chore: Refresh lockfile
  • d1aca82 Add trailingComma ToString option for multiline flow formatting (#670)
  • 4321509 ci: Drop the branch filter from GitHub PR actions
  • 47207d0 chore: Update docs-slate
  • 5212fae chore: Update docs-slate
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the production-dependencies group across 1 directory with 5 updates
10b6708 
Bumps the production-dependencies group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@clack/prompts](https://github.com/bombshell-dev/clack/tree/HEAD/packages/prompts) | `1.0.1` | `1.1.0` |
| [better-sqlite3](https://github.com/WiseLibs/better-sqlite3) | `12.6.2` | `12.8.0` |
| [pnpm-workspace-yaml](https://github.com/antfu/pnpm-workspace-utils/tree/HEAD/packages/pnpm-workspace-yaml) | `1.5.0` | `1.6.0` |
| [undici](https://github.com/nodejs/undici) | `7.22.0` | `7.24.5` |
| [yaml](https://github.com/eemeli/yaml) | `2.8.2` | `2.8.3` |



Updates `@clack/prompts` from 1.0.1 to 1.1.0
- [Release notes](https://github.com/bombshell-dev/clack/releases)
- [Changelog](https://github.com/bombshell-dev/clack/blob/main/packages/prompts/CHANGELOG.md)
- [Commits](https://github.com/bombshell-dev/clack/commits/@clack/prompts@1.1.0/packages/prompts)

Updates `better-sqlite3` from 12.6.2 to 12.8.0
- [Release notes](https://github.com/WiseLibs/better-sqlite3/releases)
- [Commits](WiseLibs/better-sqlite3@v12.6.2...v12.8.0)

Updates `pnpm-workspace-yaml` from 1.5.0 to 1.6.0
- [Release notes](https://github.com/antfu/pnpm-workspace-utils/releases)
- [Commits](https://github.com/antfu/pnpm-workspace-utils/commits/v1.6.0/packages/pnpm-workspace-yaml)

Updates `undici` from 7.22.0 to 7.24.5
- [Release notes](https://github.com/nodejs/undici/releases)
- [Commits](nodejs/undici@v7.22.0...v7.24.5)

Updates `yaml` from 2.8.2 to 2.8.3
- [Release notes](https://github.com/eemeli/yaml/releases)
- [Commits](eemeli/yaml@v2.8.2...v2.8.3)

---
updated-dependencies:
- dependency-name: "@clack/prompts"
  dependency-version: 1.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: better-sqlite3
  dependency-version: 12.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: pnpm-workspace-yaml
  dependency-version: 1.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: undici
  dependency-version: 7.24.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: yaml
  dependency-version: 2.8.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Mar 23, 2026
@dependabot dependabot bot requested a review from vcode-sh as a code owner March 23, 2026 18:39
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Mar 23, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vcode-sh vcode-sh Awaiting requested review from vcode-sh vcode-sh is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants