Skip to content

build(deps): bump the production-dependencies group across 1 directory with 7 updates#60

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-dependencies-7e8452a803
Open

build(deps): bump the production-dependencies group across 1 directory with 7 updates#60
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-dependencies-7e8452a803

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 12, 2026

Copy link
Copy Markdown
Contributor

Bumps the production-dependencies group with 7 updates in the / directory:

Package From To
@anthropic-ai/claude-agent-sdk 0.3.201 0.3.207
chokidar 3.6.0 5.0.0
ignore 5.3.2 7.0.6
lucide-react 1.22.0 1.24.0
react-markdown 9.1.0 10.1.0
sherpa-onnx-node 1.13.3 1.13.4
shiki 1.29.2 4.3.1

Updates @anthropic-ai/claude-agent-sdk from 0.3.201 to 0.3.207

Release notes

Sourced from @​anthropic-ai/claude-agent-sdk's releases.

v0.3.207

What's changed

  • Fixed canUseTool returning {behavior: 'allow'} without updatedInput being rejected as a deny with a raw ZodError message; the tool now runs with the original input per the documented contract
  • The Agent tool's structured result now has a published SDK type (AgentToolCompletedOutput) that matches the emitted object exactly

Update

npm install @anthropic-ai/claude-agent-sdk@0.3.207
# or
yarn add @anthropic-ai/claude-agent-sdk@0.3.207
# or
pnpm add @anthropic-ai/claude-agent-sdk@0.3.207
# or
bun add @anthropic-ai/claude-agent-sdk@0.3.207

v0.3.206

What's changed

  • Added command_lifecycle frames to stream-json and SDK sessions, reporting each uuid-stamped message's terminal state (queued/started/completed/cancelled/discarded); zero-API results no longer report stale duration_api_ms

Update

npm install @anthropic-ai/claude-agent-sdk@0.3.206
# or
yarn add @anthropic-ai/claude-agent-sdk@0.3.206
# or
pnpm add @anthropic-ai/claude-agent-sdk@0.3.206
# or
bun add @anthropic-ai/claude-agent-sdk@0.3.206

v0.3.205

What's changed

  • Interrupt control responses now include still_queued (UUIDs of queued async messages that will still run), Query.interrupt() returns the typed receipt, and system/init advertises an interrupt_receipt_v1 capability for feature detection
  • Added structured name and body fields to peer-message session events, exposing the sender display name and decoded message body

Update

npm install @anthropic-ai/claude-agent-sdk@0.3.205
# or
yarn add @anthropic-ai/claude-agent-sdk@0.3.205
# or
pnpm add @anthropic-ai/claude-agent-sdk@0.3.205
# or
</tr></table> 

... (truncated)

Changelog

Sourced from @​anthropic-ai/claude-agent-sdk's changelog.

0.3.207

  • Fixed canUseTool returning {behavior: 'allow'} without updatedInput being rejected as a deny with a raw ZodError message; the tool now runs with the original input per the documented contract
  • The Agent tool's structured result now has a published SDK type (AgentToolCompletedOutput) that matches the emitted object exactly

0.3.206

  • Added command_lifecycle frames to stream-json and SDK sessions, reporting each uuid-stamped message's terminal state (queued/started/completed/cancelled/discarded); zero-API results no longer report stale duration_api_ms

0.3.205

  • Interrupt control responses now include still_queued (UUIDs of queued async messages that will still run), Query.interrupt() returns the typed receipt, and system/init advertises an interrupt_receipt_v1 capability for feature detection
  • Added structured name and body fields to peer-message session events, exposing the sender display name and decoded message body

0.3.204

  • Added terminal_reason values tool_deferred_unavailable (deferred tool resume found the tool gone — previously an is_error result with no reason, read as a clean completion by lifecycle sweeps) and turn_setup_failed (the turn-input builder threw before the turn started). Both classify as dead turns, so commands consumed by them report command_lifecycle state cancelled
  • Fixed the post-merge cancel backstop cancelling every member of a coalesced prompt batch when a cancel named only one: uncancelled siblings now re-merge and run (previously they were reported cancelled — on remote transports that acknowledged them as processed, silently dropping messages nobody cancelled)
  • Added terminal_reason values api_error, malformed_tool_use_exhausted, budget_exhausted, and structured_output_retry_exhausted. Turns that die on an exhausted-API-retry or malformed-tool-use give-up previously reported completed; budget and structured-output exhaustion results previously omitted terminal_reason. Commands consumed by such turns now report command_lifecycle state cancelled instead of completed (dup-over-loss)
  • Updated to parity with Claude Code v2.1.204

0.3.203

  • Added a background_tasks_changed system message with the full set of live background tasks on every membership change, so consumers can track background activity as a level instead of pairing task_started/task_notification edges
  • Fixed stable releases shipping a sdk.d.ts with unresolved type references that broke consumer typechecking with skipLibCheck disabled

0.3.202

  • Added parent_agent_id field to subagent session messages for building depth-2+ agent trees from disk-persisted metadata
  • Fixed apply_flag_settings with a non-object settings value crashing the session instead of returning a control error
Commits

Updates chokidar from 3.6.0 to 5.0.0

Release notes

Sourced from chokidar's releases.

5.0.0

  • Make the package ESM-only. Reduces on-disk package size from ~150kb to ~80kb
  • Increase minimum node.js version to v20.19. The versions starting from it support loading esm files from cjs
  • fix: Make types more precise paulmillr/chokidar#1424
  • perf: re-use double slash regex paulmillr/chokidar#1435
  • Update readdirp to ESM-only v5
  • Lots of minor improvements in tests
  • Increase security of NPM releases. Switch to token-less Trusted Publishing, with help of jsbt
  • Switch compilation mode to isolatedDeclaration-based typescript for simplified auto-generated docs

New Contributors

Full Changelog: paulmillr/chokidar@4.0.3...5.0.0

4.0.3

What's Changed

Full Changelog: paulmillr/chokidar@4.0.2...4.0.3

4.0.2

What's Changed

New Contributors

Full Changelog: paulmillr/chokidar@4.0.1...4.0.2

4.0.1

  • Various fixes and improvements of typescript types

New Contributors

Full Changelog: paulmillr/chokidar@4.0.0...4.0.1

4.0.0

  • Remove glob support
  • Remove bundled fsevents
  • Decrease dependency count from 13 to 1
  • Rewrite in typescript. Makes emitted types more precise
  • The package became hybrid common.js / ESM

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for chokidar since your current version.


Updates ignore from 5.3.2 to 7.0.6

Release notes

Sourced from ignore's releases.

7.0.4

  • PATCH Allows files named .{3,}, such as ... for Linux / macOS (#68)
ig.ignores('...')
ig.ignores('....')
// It will throw a RangeError in versions prior to 7.0.4, but it is ok if >= 7.0.4

An upgrade is recommended for all dependents

7.0.0

Minor feature

The primary feature introduced by 7.0.0 is the .checkIgnore() method, which is most equivalent to git check-ignore -v. And also it allows to pass {pattern, mark?} as the parameter of .add() so that we could imitate the mechanism of git check-ignore as:

ig.add({
  pattern: 'foo/*',
  mark: '60'
})
const {
ignored,
rule
} = checkIgnore('foo/')
if (ignored) {
console.log(.gitignore:${result}:${rule.mark}:${rule.pattern} foo/)
}
// .gitignore:60:foo/* foo/

Potential Incompatibilities

The only situation that 7.0.0 might bring incompatibility is to .add() a < 7.0.0 instance into a >= 7.0.0 instance, which might occur when the current workspace has multiple node-ignore versions installed, please be careful.

const {anotherIgnoreInstance} = require('./ignore-6.0-instance')
// A 7.0.0 instance
ignore().add(anotherIgnoreInstance)
// It will break your code

Otherwise, in most cases, if you never do something above or there is only one version of node-ignore installed in the current workspace, it is quite safe to upgrade to 7.0.0.

6.x (== 5.3.2)

... (truncated)

Commits

Updates lucide-react from 1.22.0 to 1.24.0

Release notes

Sourced from lucide-react's releases.

Version 1.24.0

What's Changed

New Contributors

Full Changelog: lucide-icons/lucide@1.23.0...1.24.0

Version 1.23.0

What's Changed

New Contributors

Full Changelog: lucide-icons/lucide@1.22.0...1.23.0

Commits

Updates react-markdown from 9.1.0 to 10.1.0

Release notes

Sourced from react-markdown's releases.

10.1.0

Add

Fix

Full Changelog: remarkjs/react-markdown@10.0.1...10.1.0

10.0.1

Full Changelog: remarkjs/react-markdown@10.0.0...10.0.1

10.0.0

Full Changelog: remarkjs/react-markdown@9.1.0...10.0.0

Changelog

Sourced from react-markdown's changelog.

Changelog

All notable changes will be documented in this file.

10.0.0 - 2025-02-20

  • aaaa40b Remove support for className prop migrate: see “Remove className” below

Remove className

The className prop was removed. If you want to add classes to some element that wraps the markdown you can explicitly write that element and add the class to it. You can then choose yourself which tag name to use and whether to add other props.

Before:

<Markdown className="markdown-body">{markdown}</Markdown>

After:

<div className="markdown-body">
  <Markdown>{markdown}</Markdown>
</div>
Commits

Updates sherpa-onnx-node from 1.13.3 to 1.13.4

Changelog

Sourced from sherpa-onnx-node's changelog.

1.13.4

  • Add ApplyHomophoneReplacer in OfflineRecognizerQwen3ASRImpl (#3729)
  • Add C++ runtime for nemotron-speech-streaming-en-0.6b with QNN (#3728)
  • Export nemotron-speech-streaming-en-0.6b to QNN (#3725)
  • Add C++ runtime for Parakeet TDT models with QNN (#3720)
  • Export Parakeet TDT models to QNN (#3719)
  • Update onnxruntime to 1.27.0 (#3718)
  • Remove leading spaces from ASR results (#3711)
  • Fix file related operations on Windows by using wide characters (#3710)
  • Remove spaces right before a punctuation in ASR result (#3709)
  • Fix installing espeak-ng-data directory (#3708)
  • Fix building with ninja (#3702)
  • Add C++ runtime for Whisper with Qualcomm NPU using QNN (#3699)
  • Export Whisper models to QNN (#3697)
  • Export the transducer branch of parakeet-tdt-ctc to QNN (#3693)
  • Export Parakeet-TDT-CTC to QNN (#3692)
  • Add C++ runtime for Parakeet CTC with QNN (#3688)
  • Export Parakeet CTC models to QNN (#3686)
  • Support per-stream hotwords in the JavaScript (node-addon) API (#3723)
Commits
  • 1428072 Release v1.13.4 (#3730)
  • 753609d Support per-stream hotwords in the JavaScript (node-addon) API for non-stream...
  • 2c912d2 Add ApplyHomophoneReplacer in OfflineRecognizerQwen3ASRImpl (#3729)
  • 7182790 Add C++ runtime for nemotron-speech-streaming-en-0.6b with QNN (#3728)
  • d310532 Export nemotron-speech-streaming-en-0.6b to QNN (#3725)
  • 5f1153b Add C++ runtime for Parakeet TDT models with QNN (#3720)
  • d250d04 Export Parakeet TDT models to QNN (#3719)
  • e5cece2 Update onnxruntime to 1.27.0 (#3718)
  • ca66853 Remove leading spaces from ASR results (#3711)
  • 1b8d95d Fix file related operations on Windows by using wide characters (#3710)
  • Additional commits viewable in compare view

Updates shiki from 1.29.2 to 4.3.1

Release notes

Sourced from shiki's releases.

v4.3.1

   🚀 Features

    View changes on GitHub

v4.3.0

   🚀 Features

    View changes on GitHub

v4.2.0

   🚀 Features

   🐞 Bug Fixes

    View changes on GitHub

v4.1.0

   🐞 Bug Fixes

    View changes on GitHub

v4.0.2

   🐞 Bug Fixes

    View changes on GitHub

v4.0.1

   🐞 Bug Fixes

    View changes on GitHub

v4.0.0

   🚨 Breaking Changes

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for shiki since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…y with 7 updates

Bumps the production-dependencies group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@anthropic-ai/claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-typescript) | `0.3.201` | `0.3.207` |
| [chokidar](https://github.com/paulmillr/chokidar) | `3.6.0` | `5.0.0` |
| [ignore](https://github.com/kaelzhang/node-ignore) | `5.3.2` | `7.0.6` |
| [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `1.22.0` | `1.24.0` |
| [react-markdown](https://github.com/remarkjs/react-markdown) | `9.1.0` | `10.1.0` |
| [sherpa-onnx-node](https://github.com/csukuangfj/sherpa-onnx) | `1.13.3` | `1.13.4` |
| [shiki](https://github.com/shikijs/shiki/tree/HEAD/packages/shiki) | `1.29.2` | `4.3.1` |



Updates `@anthropic-ai/claude-agent-sdk` from 0.3.201 to 0.3.207
- [Release notes](https://github.com/anthropics/claude-agent-sdk-typescript/releases)
- [Changelog](https://github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md)
- [Commits](anthropics/claude-agent-sdk-typescript@v0.3.201...v0.3.207)

Updates `chokidar` from 3.6.0 to 5.0.0
- [Release notes](https://github.com/paulmillr/chokidar/releases)
- [Commits](paulmillr/chokidar@3.6.0...5.0.0)

Updates `ignore` from 5.3.2 to 7.0.6
- [Release notes](https://github.com/kaelzhang/node-ignore/releases)
- [Commits](kaelzhang/node-ignore@5.3.2...7.0.6)

Updates `lucide-react` from 1.22.0 to 1.24.0
- [Release notes](https://github.com/lucide-icons/lucide/releases)
- [Commits](https://github.com/lucide-icons/lucide/commits/1.24.0/packages/lucide-react)

Updates `react-markdown` from 9.1.0 to 10.1.0
- [Release notes](https://github.com/remarkjs/react-markdown/releases)
- [Changelog](https://github.com/remarkjs/react-markdown/blob/main/changelog.md)
- [Commits](remarkjs/react-markdown@9.1.0...10.1.0)

Updates `sherpa-onnx-node` from 1.13.3 to 1.13.4
- [Release notes](https://github.com/csukuangfj/sherpa-onnx/releases)
- [Changelog](https://github.com/csukuangfj/sherpa-onnx/blob/master/CHANGELOG.md)
- [Commits](csukuangfj/sherpa-onnx@dart-v1.13.3...dart-v1.13.4)

Updates `shiki` from 1.29.2 to 4.3.1
- [Release notes](https://github.com/shikijs/shiki/releases)
- [Commits](https://github.com/shikijs/shiki/commits/v4.3.1/packages/shiki)

---
updated-dependencies:
- dependency-name: "@anthropic-ai/claude-agent-sdk"
  dependency-version: 0.3.207
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: chokidar
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: ignore
  dependency-version: 7.0.6
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: lucide-react
  dependency-version: 1.24.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: react-markdown
  dependency-version: 10.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: sherpa-onnx-node
  dependency-version: 1.13.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: shiki
  dependency-version: 4.3.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 12, 2026
@dependabot dependabot Bot requested a review from BotCoder254 as a code owner July 12, 2026 14:13
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 12, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants