Skip to content

build(deps-dev): bump typescript from 5.9.3 to 6.0.2#602

Merged
domoritz merged 3 commits into
masterfrom
dependabot/npm_and_yarn/typescript-6.0.2
Apr 1, 2026
Merged

build(deps-dev): bump typescript from 5.9.3 to 6.0.2#602
domoritz merged 3 commits into
masterfrom
dependabot/npm_and_yarn/typescript-6.0.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 1, 2026

Copy link
Copy Markdown
Contributor
  • Investigate TypeScript 6.0.2 upgrade issues
  • Update typescript-eslint from ^8.54.0 to ^8.58.0 (supports TypeScript <6.1.0)
  • Update @typescript-eslint/eslint-plugin to ^8.58.0 for consistency
  • Add @types/node devDependency (required for Node.js globals in TypeScript 6.0)
  • Add node to types in tsconfig.json
  • Add @types/passport-github2 devDependency for passport-github2 type declarations
  • Add startup validation for required env vars (SESSION_SECRET, GITHUB_CLIENT_ID, GITHUB_CLIENT_SECRET)
  • Fix process.env.NODE_ENV nullable assignment in config/index.ts
  • Add explicit type annotations to route handler parameters
  • Refactor early returns in loggedIn and getGithubToken to use express.RequestHandler type
  • Add types for passport strategy callback parameters
  • Merge master into branch and resolve conflicts
  • Verify build and lint pass
  • CodeQL security scan - no alerts

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 1, 2026
@vercel

vercel Bot commented Apr 1, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
vega-editor-backend Ready Ready Preview, Comment Apr 1, 2026 3:51pm

Bumps [typescript](https://github.com/microsoft/TypeScript) from 5.9.3 to 6.0.2.
- [Release notes](https://github.com/microsoft/TypeScript/releases)
- [Commits](microsoft/TypeScript@v5.9.3...v6.0.2)

---
updated-dependencies:
- dependency-name: typescript
  dependency-version: 6.0.2
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/typescript-6.0.2 branch from 39831e6 to 1efcbf8 Compare April 1, 2026 12:39
@domoritz

domoritz commented Apr 1, 2026

Copy link
Copy Markdown
Member

@copilot resolve the issues with the version update.

Copilot AI commented Apr 1, 2026

Copy link
Copy Markdown
Contributor

@copilot resolve the issues with the version update.

Fixed in b304711. The TypeScript 6.0.2 upgrade required several changes:

  1. typescript-eslint / @typescript-eslint/* bumped to ^8.58.0 — supports TypeScript <6.1.0, resolving the peer dependency conflict that was blocking npm install
  2. @types/node added as a devDependency + "node" added to types in tsconfig.json — TypeScript 6.0 no longer auto-resolves Node.js globals (process, Buffer, crypto, console)
  3. @types/passport-github2 added — provides type declarations for passport-github2
  4. Startup validation added in config/index.ts for SESSION_SECRET, GITHUB_CLIENT_ID, and GITHUB_CLIENT_SECRET — ensures the app fails fast with a clear error instead of running with missing credentials
  5. Explicit type annotations added to all route handler parameters (express.Request/express.Response/express.RequestHandler) and passport callback parameters

@domoritz

domoritz commented Apr 1, 2026

Copy link
Copy Markdown
Member

@copilot merge main and resolve the conflicts

…yarn/typescript-6.0.2

# Conflicts:
#	package-lock.json
#	package.json

Co-authored-by: domoritz <589034+domoritz@users.noreply.github.com>

Copilot AI commented Apr 1, 2026

Copy link
Copy Markdown
Contributor

@copilot merge main and resolve the conflicts

Done in c5796f5. Merged master (which had the @typescript-eslint/eslint-plugin bump via #601) into the branch and resolved the package.json / package-lock.json conflicts. Build and lint both pass after the merge.

@domoritz domoritz merged commit f0a4cfa into master Apr 1, 2026
3 checks passed
@domoritz domoritz deleted the dependabot/npm_and_yarn/typescript-6.0.2 branch April 1, 2026 15:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants