chore(deps): combine 13 Dependabot dependency updates into one PR#349
chore(deps): combine 13 Dependabot dependency updates into one PR#349OBenner wants to merge 1 commit into
Conversation
Consolidates 13 open chore(deps) Dependabot PRs into a single change. The npm lockfiles were regenerated from the bumped manifests, so a few resolved patch versions are slightly newer than the individual PRs but satisfy the same ranges. Python — apps/backend/requirements.txt (version floors; every one already installed in the maintainer venv, so the QA test suites stay green): - claude-agent-sdk >=0.1.19 -> >=0.2.87 (#301) - real_ladybug >=0.13.0 -> >=0.15.3 (#302) - pandas >=3.0.2 -> >=3.0.3 (#299) - psutil >=5.9.0 -> >=7.2.2 (#298, major) - tiktoken >=0.12.0 -> >=0.13.0 (#303) npm root workspace (apps/frontend, apps/web-frontend; package-lock.json): - electron ^41.3.0 -> ^42.4.0 (#344, major) - @anthropic-ai/sdk ^0.95.1 -> ^0.104.1 (#345) - @biomejs/biome 2.4.15 -> 2.5.0 (#346, dev) - vite ^8.0.11 / ^7.2.7 -> ^8.0.16 (#347, dev) - vitest ^4.0.16 / ^3.1.4 -> ^4.1.0 (#310, dev) - react-router-dom ^7.13.0 -> ^7.17.0 (#327) - hono (transitive) 4.12.18 -> 4.12.26 (#328) .design-system (package.json + package-lock.json + pnpm-lock.yaml, taken verbatim from the Dependabot branch since no other PR touches it): - @vitejs/plugin-react ^5.1.2 -> ^5.2.0, vite ^7.3.3 -> ^8.0.16, esbuild (#343) Replaces #298 #299 #301 #302 #303 #310 #327 #328 #343 #344 #345 #346 #347. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com> Signed-off-by: Oleg Miagkov <mrobenner@gmail.com>
|
Warning Review limit reached
More reviews will be available in 15 minutes and 38 seconds. Learn how PR review limits work. Your organization has used up its prepaid credits, and credit purchases are no longer available. Enable the review add-on in the billing tab to keep reviews running — you're only billed for reviews past your plan's rate limits ($0.25/file). ⌛ How to resolve this issue?After more reviews become available, a review can be triggered using the To avoid repeated limits, reduce automatic review volume by pausing incremental auto-reviews earlier, using label-based review opt-in, excluding WIP or generated PR titles, or requesting reviews manually when the PR is ready. If your team needs uninterrupted high-volume reviews, an organization admin can enable usage-based credits. 🚦 How do rate limits work?CodeRabbit enforces per-developer PR review limits for each organization. Most developers receive the normal plan refill rate. For paid Pro and Pro+ PR reviews, CodeRabbit uses adaptive limits for sustained high-volume activity. When a developer's recent PR review activity reaches the 95th percentile or higher among CodeRabbit users, the refill rate gradually slows as usage increases. The highest same-day bursts are limited more strictly. Please see our Fair Usage Limits Policy for further information. ℹ️ Review info⚙️ Run configurationConfiguration used: Path: .coderabbit.yaml Review profile: ASSERTIVE Plan: Pro Run ID: ⛔ Files ignored due to path filters (3)
📒 Files selected for processing (4)
✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
|
1 participant
Summary
Consolidates the 13 open
chore(deps)Dependabot PRs into one branch so they can be reviewed and merged together. Manifests were edited to the target versions and the npm lockfiles regenerated (npm install --package-lock-only), so a few resolved patch versions are a touch newer than the individual PRs but satisfy the same ranges.Python —
apps/backend/requirements.txt>=0.1.19>=0.2.87>=0.13.0>=0.15.3>=3.0.2>=3.0.3>=5.9.0>=7.2.2>=0.12.0>=0.13.0✅ Every one of these is already installed at the new floor in the maintainer's backend venv, and the QA test suites (
test_qa_reviewer_runtime.py,test_qa_fixer_runtime.py) pass against them — so these floor bumps just document what's already in use.npm root workspace —
package.json(apps/frontend, apps/web-frontend) +package-lock.json^41.3.0^42.4.0(42.4.1)^0.95.1^0.104.1(0.104.2)2.4.152.5.0^8.0.11/^7.2.7^8.0.16^4.0.16/^3.1.4^4.1.0(4.1.9)^7.13.0^7.17.0(7.18.0)4.12.184.12.26@modelcontextprotocol/sdk.design-system—package.json+package-lock.json+pnpm-lock.yamlTaken verbatim from the Dependabot branch (no other PR touches this project, and it uses pnpm which isn't available locally), PR #343:
^5.1.2 → ^5.2.0, vite^7.3.3 → ^8.0.16, esbuild (lockfiles).Validation
package-lock.json); JSON validated.npm ci— it would download the Electron 42 binary and compile native modules). The major bumps — electron 41→42 and psutil 5→7 — should get a CI / smoke check before merge.Closes / replaces
Replaces #298, #299, #301, #302, #303, #310, #327, #328, #343, #344, #345, #346, #347.
🤖 Generated with Claude Code