deps(deps): bump the major group across 1 directory with 6 updates by dependabot[bot] · Pull Request #81 · profullstack/media-streamer

dependabot · 2026-06-08T16:17:06Z

Bumps the major group with 6 updates in the / directory:

Package	From	To
puppeteer	`24.42.0`	`25.1.0`
undici	`7.25.0`	`8.4.1`
webtorrent	`2.8.5`	`3.0.16`
@vitejs/plugin-react	`5.1.4`	`6.0.2`
eslint	`9.39.2`	`10.4.1`
typescript	`5.9.3`	`6.0.3`

Updates puppeteer from 24.42.0 to 25.1.0

Release notes

Sourced from puppeteer's releases.

puppeteer-core: v25.1.0

25.1.0 (2026-05-26)

🎉 Features

roll to Chrome 149.0.7827.2 (af1b9be)

roll to Firefox 151.0 (#15013) (767ea54)

🛠️ Fixes

roll to Chrome 148.0.7778.178 (#15014) (59764ac)

📄 Documentation

use ESM and top level await (#15030) (34ecc62)

🏗️ Refactor

remove debug dependency (#15023) (94d1e1c)

Dependencies

The following workspace dependencies were updated

dependencies

@puppeteer/browsers bumped from 3.0.3 to 3.0.4

puppeteer: v25.1.0

25.1.0 (2026-05-26)

🎉 Features

roll to Chrome 149.0.7827.2 (af1b9be)

🛠️ Fixes

improve progress bar and install (#15042) (51db32a)

support concurrency in progress bars (#15045) (ab0171d)

🏗️ Refactor

replace cosmiconfig with lilconfig (#15031) (4a1c2ff)

... (truncated)

Changelog

Sourced from puppeteer's changelog.

25.1.0 (2026-05-26)

🎉 Features

roll to Chrome 149.0.7827.2 (af1b9be)

roll to Firefox 151.0 (#15013) (767ea54)

🛠️ Fixes

roll to Chrome 148.0.7778.178 (#15014) (59764ac)

🏗️ Refactor

remove debug dependency (#15023) (94d1e1c)

Dependencies

The following workspace dependencies were updated

dependencies

@puppeteer/browsers bumped from 3.0.3 to 3.0.4

📄 Documentation

use ESM and top level await (#15030) (34ecc62)

25.0.4 (2026-05-18)

♻️ Chores

puppeteer: Synchronize puppeteer versions

Dependencies

The following workspace dependencies were updated

dependencies

puppeteer-core bumped from 25.0.3 to 25.0.4

🛠️ Fixes

Throw TargetCloseError when session ID not found (#15002) (611abef)

... (truncated)

Commits

ede6669 chore: release main (#15056)
7bc09e7 chore(deps): bump the all group with 5 updates (#15052)
8c81170 chore(deps): bump the all group in /website with 3 updates (#15051)
09eced5 chore: update lock
53b9fda chore(deps): bump the dependencies group with 2 updates (#15049)
d842411 chore(deps): bump node from 050bf2b to 8530f76 in /docker in the all grou...
1d2a569 docs: document read-only Docker directories (#15048)
ab0171d fix: support concurrency in progress bars (#15045)
51db32a fix: improve progress bar and install (#15042)
d32384b chore(deps): bump qs and express in /website (#15040)
Additional commits viewable in compare view

Updates undici from 7.25.0 to 8.4.1

Release notes

Sourced from undici's releases.

v8.4.1

What's Changed

test: avoid localhost lookup in fetch cookies tests by @mcollina in nodejs/undici#5363

fix: prevent race condition between onEnd and onTrailers in HTTP/2 client (#5216) by @mcollina in nodejs/undici#5343

fix(dns): skip requests without origin by @marko1olo in nodejs/undici#5376

docs: add Getting Started guide by @AliMahmoudDev in nodejs/undici#5371

docs: fix code examples that crash at runtime and other inaccuracies by @AliMahmoudDev in nodejs/undici#5386

fix: handle paused parser on socket end (issue #5360) by @mcollina in nodejs/undici#5389

fix(client): reject pipelined TLS altname errors by @marko1olo in nodejs/undici#5373

docs: fix multiple inaccuracies in API documentation by @AliMahmoudDev in nodejs/undici#5384

docs: fix remaining broken links in API documentation by @AliMahmoudDev in nodejs/undici#5342

New Contributors

@marko1olo made their first contribution in nodejs/undici#5376

Full Changelog: nodejs/undici@v8.4.0...v8.4.1

v8.4.0

What's Changed

fix: register connect listener before initiating requests in close-and-destroy test by @mcollina in nodejs/undici#5272

test: stabilize tls-cert-leak regression by @mcollina in nodejs/undici#5306

fix: replace tspl with native test context in test/examples.js by @mcollina in nodejs/undici#5300

http2: remove redundant request stream binding by @trivikr in nodejs/undici#5302

test: limit cache-tests workers on Windows by @mcollina in nodejs/undici#5309

test: use test context cleanup hooks in parser issue tests by @mcollina in nodejs/undici#5282

Add redirect option to strip headers on redirect by @mcollina in nodejs/undici#5281

chore(test): fix lint failure by @aduh95 in nodejs/undici#5316

chore(ci): use npm ci instead of npm install by @aduh95 in nodejs/undici#5315

docs: clarify formData security considerations by @mcollina in nodejs/undici#5320

docs: add EventSource server example by @Will-thom in nodejs/undici#5321

fix(core): simplify addAbortListener util by @aduh95 in nodejs/undici#5317

build(deps-dev): bump ws from 8.20.0 to 8.21.0 by @dependabot[bot] in nodejs/undici#5325

build(deps-dev): bump jsondiffpatch from 0.7.3 to 0.7.6 by @dependabot[bot] in nodejs/undici#5313

docs: match undici EoL to node version it's bundled in by @trivikr in nodejs/undici#5330

fix: handle all HTTP/2 request stream sync errors by @mcollina in nodejs/undici#5311

fix: preserve timeout errors for HTTP/2 requests by @mcollina in nodejs/undici#5091

fix(core): normalize autoSelectFamily timeout AggregateError by @youcefzemmar in nodejs/undici#5329

chore(core): define kEnumerableProperty atomically by @aduh95 in nodejs/undici#5332

chore(core): use regex.exec instead of string.match by @aduh95 in nodejs/undici#5331

fix: reset invalid HTTP/2 sessions by @mcollina in nodejs/undici#5310

feat(connect): add preferH2 connector option to offer h2 first in ALPN by @Antamansid in nodejs/undici#5327

test: fix flaky http2 trailers test by @mcollina in nodejs/undici#5338

fix(mock): restore single-arg MockCallHistory.filterCallsByX by @youcefzemmar in nodejs/undici#5328

docs: document missing error types in Errors.md by @cesarvspr in nodejs/undici#5339

build(deps): bump github/codeql-action from 4.35.3 to 4.36.1 by @dependabot[bot] in nodejs/undici#5346

build(deps): bump actions/dependency-review-action from 4.9.0 to 5.0.0 by @dependabot[bot] in nodejs/undici#5347

build(deps): bump uWebSockets.js from v20.67.0 to v20.68.0 in /benchmarks by @dependabot[bot] in nodejs/undici#5352

build(deps): bump concurrently from 9.2.1 to 10.0.3 in /benchmarks by @dependabot[bot] in nodejs/undici#5353

build(deps): bump step-security/harden-runner from 2.19.1 to 2.19.4 by @dependabot[bot] in nodejs/undici#5348

build(deps): bump actions/checkout from 6.0.2 to 6.0.3 by @dependabot[bot] in nodejs/undici#5351

... (truncated)

Commits

04ebc71 Bumped v8.4.1 (#5392)
89017ab docs: fix remaining broken links in API documentation (#5342)
cae3940 docs: fix multiple inaccuracies in API documentation (#5384)
01e89e9 fix(client): reject pipelined TLS altname errors (#5373)
d03fb24 fix: handle paused parser on socket end (issue #5360) (#5389)
ee59da3 docs: fix code examples that crash at runtime and other inaccuracies (#5386)
8464ab7 docs: add Getting Started guide (#5371)
ba12bb1 fix(dns): skip requests without origin (#5376)
c07a438 fix: prevent race condition between onEnd and onTrailers in HTTP/2 client (#5...
a8ea6f2 test: avoid localhost lookup in fetch cookies tests (#5363)
Additional commits viewable in compare view

Updates webtorrent from 2.8.5 to 3.0.16

Release notes

Sourced from webtorrent's releases.

v3.0.16

3.0.16 (2026-05-29)

Bug Fixes

perf: utp speed (#3068) (668ccdd)

v3.0.15

3.0.15 (2026-05-29)

Bug Fixes

server path2 (#3067) (6498e62)

v3.0.14

3.0.14 (2026-05-28)

Bug Fixes

http server encoding (#3064) (9c5b70d)

v3.0.13

3.0.13 (2026-05-27)

Bug Fixes

deps: update dependency bittorrent-protocol to ^5.0.6 (#3061) (f64f8a0)

v3.0.12

3.0.12 (2026-05-27)

Bug Fixes

pe tests (#3060) (bc76c3d)

v3.0.11

3.0.11 (2026-05-27)

Bug Fixes

deps: update dependency ut_pex to v5 (#3058) (47d3b7b)

v3.0.10

3.0.10 (2026-05-26)

... (truncated)

Changelog

Sourced from webtorrent's changelog.

3.0.16 (2026-05-29)

Bug Fixes

perf: utp speed (#3068) (668ccdd)

3.0.15 (2026-05-29)

Bug Fixes

server path2 (#3067) (6498e62)

3.0.14 (2026-05-28)

Bug Fixes

http server encoding (#3064) (9c5b70d)

3.0.13 (2026-05-27)

Bug Fixes

deps: update dependency bittorrent-protocol to ^5.0.6 (#3061) (f64f8a0)

3.0.12 (2026-05-27)

Bug Fixes

pe tests (#3060) (bc76c3d)

3.0.11 (2026-05-27)

Bug Fixes

deps: update dependency ut_pex to v5 (#3058) (47d3b7b)

3.0.10 (2026-05-26)

Bug Fixes

deps: update dependency torrent-piece to ^4.0.1 (#3059) (f734c27)

3.0.9 (2026-05-26)

... (truncated)

Commits

44f782d chore(release): 3.0.16
668ccdd fix(perf): utp speed (#3068)
f122edf chore(release): 3.0.15
6498e62 fix: server path2 (#3067)
11dac14 chore(release): 3.0.14
9c5b70d fix: http server encoding (#3064)
3dfb8eb chore(release): 3.0.13
f64f8a0 fix(deps): update dependency bittorrent-protocol to ^5.0.6 (#3061)
9b350cf chore(release): 3.0.12
bc76c3d fix: pe tests (#3060)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for webtorrent since your current version.

Updates @vitejs/plugin-react from 5.1.4 to 6.0.2

Release notes

Sourced from @vitejs/plugin-react's releases.

plugin-react@6.0.2

Allow all options in reactCompilerPreset (#1189)

This is a type only change. Only compilationMode and target options were available for reactCompilerPreset.

plugin-react@6.0.1

Expand @rolldown/plugin-babel peer dep range (#1146)

Expanded @rolldown/plugin-babel peer dep range to include ^0.2.0.

plugin-react@6.0.0

Remove Babel Related Features (#1123)

Vite 8+ can handle React Refresh Transform by Oxc and doesn't need Babel for it. With that, there are no transform applied that requires Babel. To reduce the installation size of this plugin, babel is no longer a dependency of this plugin and the related features are removed.

If you are using Babel, you can use @rolldown/plugin-babel together with this plugin:
 import { defineConfig } from 'vite'
 import react from '@vitejs/plugin-react'
+import babel from '@rolldown/plugin-babel'
export default defineConfig({
plugins: [


react({



  babel: {



    plugins: ['@babel/plugin-proposal-throw-expressions'],



  },



}),





react(),



babel({



  plugins: ['@babel/plugin-proposal-throw-expressions'],



}),

]
})
For React compiler users, you can use reactCompilerPreset for easier setup with preconfigured filter to improve build performance:
 import { defineConfig } from 'vite'
-import react from '@vitejs/plugin-react'
+import react, { reactCompilerPreset } from '@vitejs/plugin-react'
+import babel from '@rolldown/plugin-babel'
export default defineConfig({
plugins: [

react({

 babel: {



   plugins: ['babel-plugin-react-compiler'],



</tr></table>

... (truncated)

Changelog

Sourced from @vitejs/plugin-react's changelog.

6.0.2 (2026-05-14)

Allow all options in reactCompilerPreset (#1189)

This is a type only change. Only compilationMode and target options were available for reactCompilerPreset.

6.0.1 (2026-03-13)

Expand @rolldown/plugin-babel peer dep range (#1146)

Expanded @rolldown/plugin-babel peer dep range to include ^0.2.0.

6.0.0 (2026-03-12)

6.0.0-beta.0 (2026-03-03)

Remove Babel Related Features (#1123)

Vite 8+ can handle React Refresh Transform by Oxc and doesn't need Babel for it. With that, there are no transform applied that requires Babel. To reduce the installation size of this plugin, babel is no longer a dependency of this plugin and the related features are removed.

If you are using Babel, you can use @rolldown/plugin-babel together with this plugin:
 import { defineConfig } from 'vite'
 import react from '@vitejs/plugin-react'
+import babel from '@rolldown/plugin-babel'
export default defineConfig({
plugins: [


react({



  babel: {



    plugins: ['@babel/plugin-proposal-throw-expressions'],



  },



}),





react(),



babel({



  plugins: ['@babel/plugin-proposal-throw-expressions'],



}),

]
})
For React compiler users, you can use reactCompilerPreset for easier setup with preconfigured filter to improve build performance:
 import { defineConfig } from 'vite'
-import react from '@vitejs/plugin-react'
+import react, { reactCompilerPreset } from '@vitejs/plugin-react'
+import babel from '@rolldown/plugin-babel'
</tr></table>

... (truncated)

Commits

6535b55 release: plugin-react@6.0.2
bf0e43b feat(react): whitelist debugging-options (#1189)
3bd1f08 feat: use carets for rolldown versions (#1216)
2b8df67 fix(deps): update all non-major dependencies (#1218)
8fa9619 fix(deps): update react 19.2.6 (#1211)
a4296ad fix(deps): update all non-major dependencies (#1209)
323ccd7 fix(deps): update all non-major dependencies (#1196)
a7506e1 chore(deps): update vite 8.0.10 (#1198)
02cff2a fix(deps): update all non-major dependencies (#1184)
4b9c890 fix(deps): update react 19.2.5 (#1181)
Additional commits viewable in compare view

Updates eslint from 9.39.2 to 10.4.1

Release notes

Sourced from eslint's releases.

v10.4.1

Bug Fixes

e557467 fix: update @eslint/plugin-kit version to 0.7.2 (#20930) (Francesco Trotta)

d4ce898 fix: propagate failures from delegated commands (#20917) (Minh Vu)

f4f3507 fix: prefer-arrow-callback invalid autofix with newline after async (#20916) (kuldeep kumar)

c5bc78b fix: false positive for reference in finally block (#20655) (Tanuj Kanti)

27538c0 fix: add missing CodePath and CodePathSegment types (#20853) (Pixel998)

Documentation

61b0add docs: remove deprecated rule from related rules of max-params (#20921) (Tanuj Kanti)

305d5b9 docs: remove deprecated rules from related rules section (#20911) (Tanuj Kanti)

49b0202 docs: fix display: none of ad (#20901) (Tanuj Kanti)

9067f94 docs: switch build to Node.js 24 (#20893) (Milos Djermanovic)

c91b041 docs: Update README (GitHub Actions Bot)

e349265 docs: clarify semver strings in rule deprecation objects (#20885) (Milos Djermanovic)

Chores

b0e466b test: add data property to invalid tests cases for rules (#20924) (Tanuj Kanti)

f78838b test: add CodePath type coverage (#20904) (Pixel998)

1daa4bd chore: update eslint-plugin-eslint-comments test data to latest commit (#20922) (Francesco Trotta)

002942c ci: declare contents:read on update-readme workflow (#20919) (Arpit Jain)

64bca24 chore: update ecosystem plugins (#20912) (ESLint Bot)

6d7c832 chore: ignore fflate updates in renovate (#20908) (Pixel998)

b2c8638 ci: bump pnpm/action-setup from 6.0.7 to 6.0.8 (#20889) (dependabot[bot])

a9b8d7f chore: increase maxBuffer for ecosystem tests (#20881) (sethamus)

b702ead chore: update ecosystem update PR settings (#20884) (Pixel998)

507f60e chore: update ecosystem plugins (#20882) (ESLint Bot)

92f5c5b test: add unit test for message-count (#20878) (kuldeep kumar)

df32108 chore: add @eslint/markdown and typescript-eslint ecosystem tests (#20837) (sethamus)

327f91d chore: use includeIgnoreFile internally (#20876) (Kirk Waiblinger)

f0dc4bd chore: pin fflate@0.8.2 (#20877) (Milos Djermanovic)

0f4bd25 ci: run Discord alert for ecosystem test failures (#20873) (Copilot)

v10.4.0

Features

1a45ec5 feat: check sequence expressions in for-direction (#20701) (kuldeep kumar)

450040b feat: add includeIgnoreFile() to eslint/config (#20735) (Kirk Waiblinger)

Bug Fixes

544c0c3 fix: escape code path DOT labels in debug output (#20866) (Pixel998)

6799431 fix: update dependency @eslint/config-helpers to ^0.6.0 (#20850) (renovate[bot])

f078fef fix: handle non-array deprecated rule replacements (#20825) (xbinaryx)

Documentation

7e52a71 docs: add mention of @eslint-react/eslint-plugin (#20869) (Pavel)

db3468b docs: tweak wording around ambiguous CJS-vs-ESM config (#20865) (Kirk Waiblinger)

9084664 docs: Update README (GitHub Actions Bot)

9cc7387 docs: Update README (GitHub Actions Bot)

3d7b548 docs: Update README (GitHub Actions Bot)

191ec3c docs: Update README (GitHub Actions Bot)

... (truncated)

Commits

4a3d15a 10.4.1
43e7e2b Build: changelog update for 10.4.1
e557467 fix: update @eslint/plugin-kit version to 0.7.2 (#20930)
b0e466b test: add data property to invalid tests cases for rules (#20924)
d4ce898 fix: propagate failures from delegated commands (#20917)
f4f3507 fix: prefer-arrow-callback invalid autofix with newline after async (#20916)
f78838b test: add CodePath type coverage (#20904)
61b0add docs: remove deprecated rule from related rules of max-params (#20921)
1daa4bd chore: update eslint-plugin-eslint-comments test data to latest commit (#20...
002942c ci: declare contents:read on update-readme workflow (#20919)
Additional commits viewable in compare view

Updates typescript from 5.9.3 to 6.0.3

Release notes

Sourced from typescript's releases.

TypeScript 6.0.3

For release notes, check out the release announcement blog post.

fixed issues query for TypeScript 6.0.0 (Beta).

fixed issues query for TypeScript 6.0.1 (RC).

fixed issues query for TypeScript 6.0.2 (Stable).

fixed issues query for TypeScript 6.0.3 (Stable).

Downloads are available on:

npm

TypeScript 6.0

For release notes, check out the release announcement blog post.

fixed issues query for TypeScript 6.0.0 (Beta).

fixed issues query for TypeScript 6.0.1 (RC).

fixed issues query for TypeScript 6.0.2 (Stable).

Downloads are available on:

npm

TypeScript 6.0 Beta

For release notes, check out the release announcement.

fixed issues query for Typescript 6.0.0 (Beta).

Downloads are available on:

npm

Commits

050880c Bump version to 6.0.3 and LKG
eeae9dd 🤖 Pick PR #63401 (Also check package name validity in...) into release-6.0 (#...
ad1c695 🤖 Pick PR #63368 (Harden ATA package name filtering) into release-6.0 (#63372)
0725fb4 🤖 Pick PR #63310 (Mark class property initializers as...) into release-6.0 (#...
607a22a Bump version to 6.0.2 and LKG
9e72ab7 🤖 Pick PR #63239 (Fix missing lib files in reused pro...) into release-6.0 (#...
35ff23d 🤖 Pick PR #63163 (Port anyFunctionType subtype fix an...) into release-6.0 (#...
e175b69 Bump version to 6.0.1-rc and LKG
af4caac Update LKG
8efd7e8 Merge remote-tracking branch 'origin/main' into release-6.0
Additional commits viewable in compare view

dependabot · 2026-06-08T16:17:07Z

Labels

The following labels could not be found: automated, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

github-actions · 2026-06-08T16:17:26Z

vu1nz Security Review

0 finding(s) in PR #?

No security issues found.

socket-security · 2026-06-08T16:17:47Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	webtorrent@3.0.16
	puppeteer@25.1.0
	typescript@6.0.3
	@vitejs/plugin-react@6.0.2
	eslint@10.4.1
	undici@8.4.1

View full report

socket-security · 2026-06-08T16:17:49Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		License policy violation: npm `rollup` under unrecognized license License: unrecognized license - This license was not allowed or given any lesser classification by the applicable policy (package/LICENSE.md) From: pnpm-lock.yaml → `npm/@vitejs/plugin-react@6.0.2` → `npm/vitest@4.1.8` → `npm/rollup@4.61.1` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/rollup@4.61.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `typescript` License: LicenseRef-W3C-Community-Final-Specification-Agreement - The applicable license policy does not permit this license (5) (package/ThirdPartyNoticeText.txt) From: package.json → `npm/typescript@6.0.3` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/typescript@6.0.3`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Low adoption: npm `@humanfs/types` Location: Package overview From: pnpm-lock.yaml → `npm/eslint@10.4.1` → `npm/@humanfs/types@0.15.0` ℹ Read more on: This package \| This alert \| What are unpopular packages? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Unpopular packages may have less maintenance and contain other problems. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@humanfs/types@0.15.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

Bumps the major group with 6 updates in the / directory: | Package | From | To | | --- | --- | --- | | [puppeteer](https://github.com/puppeteer/puppeteer) | `24.42.0` | `25.1.0` | | [undici](https://github.com/nodejs/undici) | `7.25.0` | `8.4.1` | | [webtorrent](https://github.com/webtorrent/webtorrent) | `2.8.5` | `3.0.16` | | [@vitejs/plugin-react](https://github.com/vitejs/vite-plugin-react/tree/HEAD/packages/plugin-react) | `5.1.4` | `6.0.2` | | [eslint](https://github.com/eslint/eslint) | `9.39.2` | `10.4.1` | | [typescript](https://github.com/microsoft/TypeScript) | `5.9.3` | `6.0.3` | Updates `puppeteer` from 24.42.0 to 25.1.0 - [Release notes](https://github.com/puppeteer/puppeteer/releases) - [Changelog](https://github.com/puppeteer/puppeteer/blob/main/CHANGELOG.md) - [Commits](puppeteer/puppeteer@puppeteer-v24.42.0...puppeteer-v25.1.0) Updates `undici` from 7.25.0 to 8.4.1 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](nodejs/undici@v7.25.0...v8.4.1) Updates `webtorrent` from 2.8.5 to 3.0.16 - [Release notes](https://github.com/webtorrent/webtorrent/releases) - [Changelog](https://github.com/webtorrent/webtorrent/blob/master/CHANGELOG.md) - [Commits](webtorrent/webtorrent@v2.8.5...v3.0.16) Updates `@vitejs/plugin-react` from 5.1.4 to 6.0.2 - [Release notes](https://github.com/vitejs/vite-plugin-react/releases) - [Changelog](https://github.com/vitejs/vite-plugin-react/blob/main/packages/plugin-react/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite-plugin-react/commits/plugin-react@6.0.2/packages/plugin-react) Updates `eslint` from 9.39.2 to 10.4.1 - [Release notes](https://github.com/eslint/eslint/releases) - [Commits](eslint/eslint@v9.39.2...v10.4.1) Updates `typescript` from 5.9.3 to 6.0.3 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Commits](microsoft/TypeScript@v5.9.3...v6.0.3) --- updated-dependencies: - dependency-name: "@vitejs/plugin-react" dependency-version: 6.0.2 dependency-type: direct:development update-type: version-update:semver-major dependency-group: major - dependency-name: eslint dependency-version: 10.4.1 dependency-type: direct:development update-type: version-update:semver-major dependency-group: major - dependency-name: puppeteer dependency-version: 25.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: major - dependency-name: typescript dependency-version: 6.0.3 dependency-type: direct:development update-type: version-update:semver-major dependency-group: major - dependency-name: undici dependency-version: 8.4.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: major - dependency-name: webtorrent dependency-version: 3.0.16 dependency-type: direct:production update-type: version-update:semver-major dependency-group: major ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot changed the title ~~deps(deps): bump the major group with 6 updates~~ deps(deps): bump the major group across 1 directory with 6 updates Jun 8, 2026

dependabot Bot force-pushed the dependabot/npm_and_yarn/major-606e53df28 branch from fd71982 to d75d2b0 Compare June 8, 2026 16:23

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

deps(deps): bump the major group across 1 directory with 6 updates#81

deps(deps): bump the major group across 1 directory with 6 updates#81
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/major-606e53df28

dependabot Bot commented on behalf of github Jun 8, 2026 •

edited

Loading

Uh oh!

dependabot Bot commented on behalf of github Jun 8, 2026

Uh oh!

github-actions Bot commented Jun 8, 2026

Uh oh!

socket-security Bot commented Jun 8, 2026 •

edited

Loading

Uh oh!

socket-security Bot commented Jun 8, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Jun 8, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

puppeteer-core: v25.1.0

25.1.0 (2026-05-26)

🎉 Features

🛠️ Fixes

📄 Documentation

🏗️ Refactor

Dependencies

puppeteer: v25.1.0

25.1.0 (2026-05-26)

🎉 Features

🛠️ Fixes

🏗️ Refactor

25.1.0 (2026-05-26)

🎉 Features

🛠️ Fixes

🏗️ Refactor

Dependencies

📄 Documentation

25.0.4 (2026-05-18)

♻️ Chores

Dependencies

🛠️ Fixes

v8.4.1

What's Changed

New Contributors

v8.4.0

What's Changed

v3.0.16

3.0.16 (2026-05-29)

Bug Fixes

v3.0.15

3.0.15 (2026-05-29)

Bug Fixes

v3.0.14

3.0.14 (2026-05-28)

Bug Fixes

v3.0.13

3.0.13 (2026-05-27)

Bug Fixes

v3.0.12

3.0.12 (2026-05-27)

Bug Fixes

v3.0.11

3.0.11 (2026-05-27)

Bug Fixes

v3.0.10

3.0.10 (2026-05-26)

3.0.16 (2026-05-29)

Bug Fixes

3.0.15 (2026-05-29)

Bug Fixes

3.0.14 (2026-05-28)

Bug Fixes

3.0.13 (2026-05-27)

Bug Fixes

3.0.12 (2026-05-27)

Bug Fixes

3.0.11 (2026-05-27)

Bug Fixes

3.0.10 (2026-05-26)

Bug Fixes

3.0.9 (2026-05-26)

plugin-react@6.0.2

Allow all options in reactCompilerPreset (#1189)

plugin-react@6.0.1

Expand @rolldown/plugin-babel peer dep range (#1146)

plugin-react@6.0.0

Remove Babel Related Features (#1123)

6.0.2 (2026-05-14)

Allow all options in reactCompilerPreset (#1189)

6.0.1 (2026-03-13)

Expand @rolldown/plugin-babel peer dep range (#1146)

6.0.0 (2026-03-12)

6.0.0-beta.0 (2026-03-03)

Remove Babel Related Features (#1123)

v10.4.1

Bug Fixes

dependabot Bot commented on behalf of github Jun 8, 2026 •

edited

Loading

Expand `@rolldown/plugin-babel` peer dep range (#1146)

Expand `@rolldown/plugin-babel` peer dep range (#1146)

socket-security Bot commented Jun 8, 2026 •

edited

Loading

socket-security Bot commented Jun 8, 2026 •

edited

Loading