chore(deps): bump the production-dependencies group across 1 directory with 16 updates

[dependabot]

Bumps the production-dependencies group with 13 updates in the / directory:

Package	From	To
@langchain/community	1.1.14	1.1.17
@langchain/groq	1.0.4	1.1.2
@pinecone-database/pinecone	7.0.0	7.1.0
@sentry/nextjs	10.38.0	10.39.0
inngest	3.52.0	3.52.3
langchain	1.2.23	1.2.25
lucide-react	0.563.0	0.575.0
mongoose	9.1.6	9.2.1
npm	11.9.0	11.10.1
posthog-js	1.344.0	1.352.0
react-hook-form	7.71.1	7.71.2
react-resizable-panels	4.6.2	4.6.5
tailwind-merge	3.4.0	3.5.0

Updates @langchain/community from 1.1.14 to 1.1.17

Release notes

Sourced from @​langchain/community's releases.

@​langchain/community@​1.1.16

Patch Changes

• Updated dependencies [27186c5, 05396f7, 5a6f26b, 7be50a7]:
  • @​langchain/core@​1.1.25
  • @​langchain/openai@​1.2.8
  • @​langchain/classic@​1.0.18

Commits

• See full diff in compare view

Updates @langchain/core from 1.1.24 to 1.1.27

Release notes

Sourced from @​langchain/core's releases.

@​langchain/core@​1.1.26

Patch Changes

• #10085 ed6ea53 Thanks @​colifran! - fix(google): tool_calls are not preserved when concatenating AIMessageChunks

@​langchain/core@​1.1.25

Patch Changes

• #10002 27186c5 Thanks @​aditya-gg04! - fix(core): support reasoning/thinking blocks in StringOutputParser

• #10077 05396f7 Thanks @​christian-bromann! - feat(core): add ContextOverflowError, raise in anthropic and openai

• #10081 5a6f26b Thanks @​hntrl! - feat(core): add namespace-based symbol branding for error class hierarchies

  Introduces createNamespace utility for hierarchical symbol-based branding of class hierarchies. All LangChain error classes now use this pattern, replacing hand-rolled duck-type isInstance checks with reliable cross-realm Symbol.for-based identity.

  • New LangChainError base class that all LangChain errors extend
  • New createNamespace / Namespace API in @langchain/core/utils/namespace
  • Refactored ModelAbortError, ContextOverflowError to use namespace branding
  • Added ContextOverflowError.fromError() static factory method
  • Deprecated addLangChainErrorFields in favor of LangChainError subclasses
  • Migrated Google provider errors (GoogleError, ConfigurationError, etc.) to namespace branding
  • Updated Anthropic and OpenAI providers to use ContextOverflowError.fromError()

Commits

• See full diff in compare view

Updates @langchain/groq from 1.0.4 to 1.1.2

Release notes

Sourced from @​langchain/groq's releases.

@​langchain/groq@​1.1.1

Patch Changes

• #10078 7be50a7 Thanks @​christian-bromann! - chore(*): update model profiles

Commits

• 8a77e9a chore: version packages (#9491)
• 38f0162 feat(core,anthropic): tool extras, tool search support (#9531)
• 42ae02a chore(deps): bump actions/checkout from 5.0.1 to 6.0.0 in the major-deps-upda...
• 9563a7f chore(mongodb): remove unused testing setup (#9506)
• 6cecddf fix: pass cwd to mcp sdk correctly (#9514)
• 6f8fa47 feat(aws): allow bedrock Application Inference Profile (#9129)
• 8b9f66f fix(community): enable import plugins, remove bad load export (#9501)
• fa8c36e chore(mongodb): bump mongodb dep (#9502)
• 636b994 fix(core): use dynamic import for p-retry to support CJS (#9495)
• 31240d4 feat(community/ibm): enable model gateway usage in IBM implementation, apply ...
• Additional commits viewable in compare view

Updates @langchain/openai from 1.2.7 to 1.2.9

Release notes

Sourced from @​langchain/openai's releases.

@​langchain/openai@​1.2.8

Patch Changes

• #10077 05396f7 Thanks @​christian-bromann! - feat(core): add ContextOverflowError, raise in anthropic and openai

• #10081 5a6f26b Thanks @​hntrl! - feat(core): add namespace-based symbol branding for error class hierarchies

  Introduces createNamespace utility for hierarchical symbol-based branding of class hierarchies. All LangChain error classes now use this pattern, replacing hand-rolled duck-type isInstance checks with reliable cross-realm Symbol.for-based identity.

  • New LangChainError base class that all LangChain errors extend
  • New createNamespace / Namespace API in @langchain/core/utils/namespace
  • Refactored ModelAbortError, ContextOverflowError to use namespace branding
  • Added ContextOverflowError.fromError() static factory method
  • Deprecated addLangChainErrorFields in favor of LangChainError subclasses
  • Migrated Google provider errors (GoogleError, ConfigurationError, etc.) to namespace branding
  • Updated Anthropic and OpenAI providers to use ContextOverflowError.fromError()

• #10078 7be50a7 Thanks @​christian-bromann! - chore(*): update model profiles

Commits

• See full diff in compare view

Updates @mixedbread/sdk from 0.50.1 to 0.50.2

Release notes

Sourced from @​mixedbread/sdk's releases.

v0.50.2

0.50.2 (2026-01-17)

Full Changelog: v0.50.1...v0.50.2

Chores

• internal: update actions/checkout version (031ec6d)
• internal: upgrade babel, qs, js-yaml (3e223cf)

---

This pull request is managed by Stainless's GitHub App.

The semver version number is based on included commit messages. Alternatively, you can manually set the version number in the title of this pull request.

For a better experience, it is recommended to use either rebase-merge or squash-merge when merging this pull request.

🔗 Stainless website 📚 Read the docs 🙋 Reach out for help or questions

Changelog

Sourced from @​mixedbread/sdk's changelog.

0.50.2 (2026-01-17)

Full Changelog: v0.50.1...v0.50.2

Chores

• internal: update actions/checkout version (031ec6d)
• internal: upgrade babel, qs, js-yaml (3e223cf)

Commits

• 9c2b863 Merge pull request #255 from mixedbread-ai/release-please--branches--main--ch...
• f701846 release: 0.50.2
• 031ec6d chore(internal): update actions/checkout version
• 3e223cf chore(internal): upgrade babel, qs, js-yaml
• See full diff in compare view

Updates @pinecone-database/pinecone from 7.0.0 to 7.1.0

Release notes

Sourced from @​pinecone-database/pinecone's releases.

Release v7.1.0

This release adds support for creating and configuring index readCapacity for BYOC indexes.

// Create a BYOC index with dedicated read capacity
await pinecone.createIndex({
  name: 'my-byoc-index',
  dimension: 1536,
  metric: 'cosine',
  spec: {
    byoc: {
      environment: 'aws-us-east-1-b921',
      readCapacity: {
        mode: 'Dedicated',
        nodeType: 'b1',
        manual: { replicas: 1, shards: 1 },
      },
    },
  },
});

It also includes support for maxCandidates and scanFactor in the Index.query operation. This parameter is only supported for dedicated (DRN) dense indexes:

const results = await index.query({
  vector:[0.6, 0.2, 0.4, 0.7, 0.9],
  topK: 10,
  scanFactor: 2.0,
  maxCandidates: 500,
});

What's Changed

• pass git token with the create draft release with notes job by @​austin-denoble in pinecone-io/pinecone-ts-client#377
• Implement readCapacity configuration support for BYOC indexes by @​austin-denoble in pinecone-io/pinecone-ts-client#378
• Implement scan_factor and max_candidates by @​austin-denoble in pinecone-io/pinecone-ts-client#379

Full Changelog: pinecone-io/pinecone-ts-client@v7.0.0...v7.1.0

Commits

• 0f2e3c6 [skip ci] Publish release v7.1.0
• 55fb10b Implement scan_factor and max_candidates (#379)
• 1c6dd61 Implement readCapacity configuration support for BYOC indexes (#378)
• 576fe90 pass git token with the create draft release with notes job (#377)
• See full diff in compare view

Updates @sentry/nextjs from 10.38.0 to 10.39.0

Release notes

Sourced from @​sentry/nextjs's releases.

10.39.0

Important Changes

• feat(tanstackstart-react): Auto-instrument server function middleware (#19001)

  The sentryTanstackStart Vite plugin now automatically instruments middleware in createServerFn().middleware([...]) calls. This captures performance data without requiring manual wrapping with wrapMiddlewaresWithSentry().

• feat(nextjs): New experimental automatic vercel cron monitoring (#19192)

  Setting _experimental.vercelCronMonitoring to true in your Sentry configuration will automatically create Sentry cron monitors for your Vercel Cron Jobs.

  Please note that this is an experimental unstable feature and subject to change.

  // next.config.ts
  export default withSentryConfig(nextConfig, {
    _experimental: {
      vercelCronMonitoring: true,
    },
  });

• feat(node-core): Add node-core/light (#18502)

  This release adds a new light-weight @sentry/node-core/light export to @sentry/node-core. The export acts as a light-weight SDK that does not depend on OpenTelemetry and emits no spans.

  Use this SDK when:

  • You only need error tracking, logs or metrics without tracing data (no spans)
  • You want to minimize bundle size and runtime overhead
  • You don't need spans emitted by OpenTelemetry instrumentation

  It supports error tracking and reporting, logs, metrics, automatic request isolation (requires Node.js 22+) and basic tracing via our Sentry.startSpan* APIs.

  Install the SDK by running

  npm install @sentry/node-core

  and add Sentry at the top of your application's entry file:

  import * as Sentry from '@sentry/node-core/light';
  Sentry.init({
  dsn: 'DSN',
  });

Other Changes

... (truncated)

Changelog

Sourced from @​sentry/nextjs's changelog.

10.39.0

Important Changes

• feat(tanstackstart-react): Auto-instrument server function middleware (#19001)

  The sentryTanstackStart Vite plugin now automatically instruments middleware in createServerFn().middleware([...]) calls. This captures performance data without requiring manual wrapping with wrapMiddlewaresWithSentry().

• feat(nextjs): New experimental automatic vercel cron monitoring (#19192)

  Setting _experimental.vercelCronMonitoring to true in your Sentry configuration will automatically create Sentry cron monitors for your Vercel Cron Jobs.

  Please note that this is an experimental unstable feature and subject to change.

  // next.config.ts
  export default withSentryConfig(nextConfig, {
    _experimental: {
      vercelCronMonitoring: true,
    },
  });

• feat(node-core): Add node-core/light (#18502)

  This release adds a new light-weight @sentry/node-core/light export to @sentry/node-core. The export acts as a light-weight SDK that does not depend on OpenTelemetry and emits no spans.

  Use this SDK when:

  • You only need error tracking, logs or metrics without tracing data (no spans)
  • You want to minimize bundle size and runtime overhead
  • You don't need spans emitted by OpenTelemetry instrumentation

  It supports error tracking and reporting, logs, metrics, automatic request isolation (requires Node.js 22+) and basic tracing via our Sentry.startSpan* APIs.

  Install the SDK by running

  npm install @sentry/node-core

  and add Sentry at the top of your application's entry file:

  import * as Sentry from '@sentry/node-core/light';
  Sentry.init({
  dsn: 'DSN',
  });

... (truncated)

Commits

• ab54c5c Make @sentry/opentelemetry not a peer dep in node-core
• f822e69 chore: Lint lerna.json
• c4708d2 release: 10.39.0
• b5e3094 chore: Revert to lerna v8 (#19294)
• 9dea581 Merge pull request #19281 from getsentry/prepare-release/10.39.0
• 12e467f meta(changelog): Update changelog for 10.39.0
• d7df7d4 ref(sveltekit): Use untrack to read route id without invalidation (#19272)
• 24b2ef2 fix(sveltekit): Detect used adapter via svelte.config.js (#19270)
• e051be4 feat(node-core): Add outgoing fetch trace propagation to light mode (#19262)
• eaf297f ref(core): Move shouldPropagateTraceForUrl from opentelemetry to core (#19258)
• Additional commits viewable in compare view

Updates inngest from 3.52.0 to 3.52.3

Release notes

Sourced from inngest's releases.

inngest@3.52.3

Patch Changes

• #1329 d079c0be Thanks @​Linell! - fix: flush checkpoint buffer

inngest@3.52.2

Patch Changes

• #1318 d81d29bc Thanks @​amh4r! - Fix undefined step in transformOutput middleware

inngest@3.52.1

Patch Changes

• #1258 e17a148f Thanks @​amh4r! - Connect: add worker thread support

• #1313 bbdab785 Thanks @​tonyhb! - Add step names and IDs to step not found error

• #1306 b74bd1b9 Thanks @​amh4r! - Add a log before the 405 response

Changelog

Sourced from inngest's changelog.

3.52.3

Patch Changes

• #1329 d079c0be Thanks @​Linell! - fix: flush checkpoint buffer

3.52.2

Patch Changes

• #1318 d81d29bc Thanks @​amh4r! - Fix undefined step in transformOutput middleware

3.52.1

Patch Changes

• #1258 e17a148f Thanks @​amh4r! - Connect: add worker thread support

• #1313 bbdab785 Thanks @​tonyhb! - Add step names and IDs to step not found error

• #1306 b74bd1b9 Thanks @​amh4r! - Add a log before the 405 response

Commits

• 60991d7 Release @​latest (#1330)
• d079c0b fix: flush checkpoint buffer (#1329)
• 01080dd Release @​latest (#1320)
• d81d29b Fix undefined step in transformOutput middleware (#1318)
• 35cdb99 Release @​latest (#1317)
• e17a148 Connect: Add worker thread support (#1258)
• b74bd1b Add log before 405 response (#1306)
• bbdab78 Show the names and IDs of steps in steps not found errors (#1313)
• See full diff in compare view

Updates langchain from 1.2.23 to 1.2.25

Release notes

Sourced from langchain's releases.

langchain@1.2.25

Patch Changes

• #10083 219b38d Thanks @​christian-bromann! - fix(langchain): export ModelRequest interface

• #10084 7cae8a9 Thanks @​christian-bromann! - fix(langchain): persist underscore-prefixed middleware state fields across graph steps

• Updated dependencies [ed6ea53]:

  • @​langchain/core@​1.1.26

langchain@1.2.24

Patch Changes

• #10034 8eea9d4 Thanks @​christian-bromann! - fix(langchain): fix streaming types

Commits

• a0e1a0c chore: version packages (#10082)
• 7cae8a9 fix(langchain): persist underscore-prefixed middleware state fields across gr...
• 67ea2c1 chore(deps): bump langsmith from 0.5.3 to 0.5.4 (#10087)
• 1220c2a chore(openai): fix test (#10086)
• ed6ea53 fix(google): tool_calls are not preserved when concatenating `AIMessageChun...
• 219b38d fix(langchain): export ModelRequest interface (#10083)
• e2b3d90 fix(ollama): preserve tool_calls when AIMessage content is a string (#10065)
• cdc22c5 chore: version packages (#10041)
• 35e8019 chore(deps): bump langsmith from 0.5.2 to 0.5.3 (#10079)
• 5a6f26b feat(core): add namespace-based symbol branding for error class hierarchies (...
• Additional commits viewable in compare view

Updates lucide-react from 0.563.0 to 0.575.0

Release notes

Sourced from lucide-react's releases.

Version 0.575.0

What's Changed

• feat(icons): added message-square-check icon by @​karsa-mistmere in lucide-icons/lucide#4076
• fix(lucide): Fix ESM Module output path in build by @​ericfennis in lucide-icons/lucide#4084
• feat(icons): added metronome icon by @​edwloef in lucide-icons/lucide#4063
• fix(icons): remove execution permission of SVG files by @​duckafire in lucide-icons/lucide#4053
• fix(icons): changed file-pen-line icon by @​jguddas in lucide-icons/lucide#3970
• feat(icons): added square-arrow-right-exit and square-arrow-right-enter icons by @​EthanHazel in lucide-icons/lucide#3958
• fix(icons): renamed flip-* to square-centerline-dashed-* by @​jguddas in lucide-icons/lucide#3945

New Contributors

• @​edwloef made their first contribution in lucide-icons/lucide#4063
• @​duckafire made their first contribution in lucide-icons/lucide#4053

Full Changelog: lucide-icons/lucide@0.573.0...0.575.0

Version 0.574.0

What's Changed

• fix(icons): changed rocking-chair icon by @​jamiemlaw in lucide-icons/lucide#3445
• fix(icons): flipped coins icon by @​jguddas in lucide-icons/lucide#3158
• feat(icons): added x-line-top icon by @​jguddas in lucide-icons/lucide#2838
• feat(icons): added mouse-left icon by @​marvfash in lucide-icons/lucide#2788
• feat(icons): added mouse-right icon by @​marvfash in lucide-icons/lucide#2787

New Contributors

• @​marvfash made their first contribution in lucide-icons/lucide#2788

Full Changelog: lucide-icons/lucide@0.572.0...0.574.0

Version 0.573.0

What's Changed

• fix(icons): changed rocking-chair icon by @​jamiemlaw in lucide-icons/lucide#3445
• fix(icons): flipped coins icon by @​jguddas in lucide-icons/lucide#3158
• feat(icons): added x-line-top icon by @​jguddas in lucide-icons/lucide#2838
• feat(icons): added mouse-left icon by @​marvfash in lucide-icons/lucide#2788
• feat(icons): added mouse-right icon by @​marvfash in lucide-icons/lucide#2787

New Contributors

• @​marvfash made their first contribution in lucide-icons/lucide#2788

Full Changelog: lucide-icons/lucide@0.572.0...0.573.0

Version 0.572.0

What's Changed

• feat(icons): added message-circle-check icon by @​Shrinks99 in lucide-icons/lucide#3770

New Contributors

• @​Shrinks99 made their first contribution in lucide-icons/lucide#3770

Full Changelog: lucide-icons/lucide@0.571.0...0.572.0

... (truncated)

Commits

• See full diff in compare view

Updates mongoose from 9.1.6 to 9.2.1

Release notes

Sourced from mongoose's releases.

9.2.1 / 2026-02-11

• types(query): allow assigning QueryFilter<DocType> to QueryFilter<any> #16020
• types: duplicate identifier 'UUIDToJSON' in mongoosejs 9.2.0 #16023
• types: preserve subdocument toObject() field types when using virtuals + versionKey options #16021 #15965 AbdelrahmanHafez
• docs(mongoose): add missing options to mongoose.set() docs #16019

9.2.0 / 2026-02-09

• feat: add option to skip middleware #15883 #8768 AbdelrahmanHafez
• feat(model): delay "Duplicate schema index" warning until createIndexes runs to include model name in the warning #15979
• feat(model): add strict option to Model.hydrate(...) #15940 #15977
• feat(document): add flattenUUIDs option to toObject() and toJSON() #15864 #15021 AbdelrahmanHafez
• fix(schema): treat undefined as not provided for strict, strictQuery and id options #16004 AbdelrahmanHafez
• types(inferrawdoctype): avoid adding _id to nested paths and handle _id: false in options + schema definition #15989
• types: fix toObject() type inference with timestamps + virtuals #15975 AbdelrahmanHafez
• types(models): remove dead MapReduce and GeoSearch types #15984
• test(types): remove tsd in favor of tsc + test utilities #15951 #15696

Changelog

Sourced from mongoose's changelog.

9.2.1 / 2026-02-11

• types(query): allow assigning QueryFilter to QueryFilter #16020
• types: duplicate identifier 'UUIDToJSON' in mongoosejs 9.2.0 #16023
• types: preserve subdocument toObject() field types when using virtuals + versionKey options #16021 #15965 AbdelrahmanHafez
• docs(mongoose): add missing options to mongoose.set() docs #16019

9.2.0 / 2026-02-09

• feat: add option to skip middleware #15883 #8768 AbdelrahmanHafez
• feat(model): delay "Duplicate schema index" warning until createIndexes runs to include model name in the warning #15979
• feat(model): add strict option to Model.hydrate(...) #15940 #15977
• feat(document): add flattenUUIDs option to toObject() and toJSON() #15864 #15021 AbdelrahmanHafez
• fix(schema): treat undefined as not provided for strict, strictQuery and id options #16004 AbdelrahmanHafez
• types(inferrawdoctype): avoid adding _id to nested paths and handle _id: false in options + schema definition #15989
• types: fix toObject() type inference with timestamps + virtuals #15975 AbdelrahmanHafez
• types(models): remove dead MapReduce and GeoSearch types #15984
• test(types): remove tsd in favor of tsc + test utilities #15951 #15696

8.23.0 / 2026-02-09

• feat(document): add flattenUUIDs option to toObject() and toJSON() (backport #15021 to 8.x)

Commits

• 764bd82 chore: release 9.2.1
• 2e5b780 Merge pull request #16021 from Automattic/fix/gh-15965-subdoc-toObject
• 324ff4c Merge pull request #16020 from Automattic/vkarpov15/gh-16006
• 684b31f test(types): check types using ts-expect-error directive instead of ExpectType
• 06b4e93 Merge pull request #16019 from Automattic/vkarpov15/gh-16005
• 55749fc fix(types): make subdocuments and array subdocuments have the same behavior f...
• b81b3b6 types(query): allow assigning QueryFilter<DocType> to QueryFilter<any>
• 8d05461 test(types): assert subdocuments in toObject() and toJSON get the correc...
• 40ffefe docs(mongoose): add missing options to mongoose.set() docs
• 904a2eb chore: release 9.2.0
• Additional commits viewable in compare view

Updates npm from 11.9.0 to 11.10.1

Release notes

Sourced from npm's releases.

v11.10.1

11.10.1 (2026-02-19)

Bug Fixes

• 9fac412 #8995 improve unknown config warning with .npmrc section hint (#8995) (@​umeshmore45)
• bb135cc #8981 arborist: fix peerOptional dependency resolution in buildIdealTree (#8981) (@​Saibamen, @​cursoragent)
• 5c03826 #8993 remove tabular output from "npm view" (@​wraithgar)
• 4648f26 #8993 remove tabular output from "npm team" (@​wraithgar)

Documentation

• 0a5756d #8998 clarify unsupported custom .npmrc keys and recommend alternatives (#8998) (@​maitrawebtech)
• 22c9153 #8985 fix typo and grammar in README (#8985) (@​csmit195, Chris)

Dependencies

• aa8ffbf #9002 init-package-json@8.2.5 (#9002)
• 67a0f09 #9001 glob@13.0.6
• 56b8fd4 #9001 minimatch@10.2.2
• aa7fef5 #9001 minipass@7.1.3
• d3a4161 #9000 @npmcli/package-json@7.0.5 (#9000)
• 7aa9338 #8993 remove cli-columns
• f7f7c53 #8991 hoist balanced-match
• 10cb575 #8991 hoist latest yallist
• 1b3dc9a #8991 cidr-regex@5.0.3
• 4307af6 #8991 glob@13.0.5
• 13b4d6a #8991 minimatch@10.2.1
• 45d4000 #8991 tar@7.5.9

Chores

• 40fcab4 #8991 @npmcli/template-oss@4.29.0 (@​wraithgar)
• 1598adb #8991 dev dependency updates (@​wraithgar)
• workspace: @npmcli/arborist@9.3.1
• workspace: @npmcli/config@10.7.1
• workspace: libnpmdiff@8.1.2
• workspace: libnpmexec@10.2.2
• workspace: libnpmfund@7.0.16
• workspace: libnpmpack@9.1.2

v11.10.0

11.10.0 (2026-02-11)

Features

• cf56a1e #8899 npm trust, per-command config (@​reggi)
• cf56a1e #8899 npm trust (@​reggi)
• 66d6e11 #8965 add min-release-age (#8965) (@​wraithgar)

Dependencies

• aae84bf #8973 pacote@21.3.1
• 8bcb675 #8973 cidr-regex@5.0.2
• f87aaab #8973 lru-cache@11.2.6
• acec871 #8973 ssri@13.0.1
• 1e42a86 #8973 glob@13.0.2
• e1c08a4 #8973 is-cidr@6.0.3
• dfb0e34 #8973 semver@7.7.4
• 0ee7776 #8973 which@6.0.1

Chores

• eb81df8 #8973 dev dependency updates (@​wraithgar)

... (truncated)

Changelog

Sourced from npm's changelog.

11.10.1 (2026-02-19)

Bug Fixes

• 9fac412 #8995 improve unknown config warning with .npmrc section hint (#8995) (@​umeshmore45)
• bb135cc #8981 arborist: fix peerOptional dependency resolution in buildIdealTree (#8981) (@​Saibamen, @​cursoragent)
• 5c03826 #8993 remove tabular output from "npm view" (@​wraithgar)
• 4648f26Description has been truncated

[dependabot]

Assignees

The following users could not be added as assignees: vectorMindsAI. Either the username does not exist or it does not have the correct permissions to be added as an assignee.

Labels

The following labels could not be found: automated, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.