Skip to content

build(deps-dev): bump typescript from 5.9.3 to 6.0.2#602

Merged
domoritz merged 3 commits into
masterfrom
dependabot/npm_and_yarn/typescript-6.0.2
Apr 1, 2026
Merged

build(deps-dev): bump typescript from 5.9.3 to 6.0.2#602
domoritz merged 3 commits into
masterfrom
dependabot/npm_and_yarn/typescript-6.0.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 1, 2026
edited by Copilot AI
Loading

Copy link
Copy Markdown
Contributor
  • Investigate TypeScript 6.0.2 upgrade issues
  • Update typescript-eslint from ^8.54.0 to ^8.58.0 (supports TypeScript <6.1.0)
  • Update @typescript-eslint/eslint-plugin to ^8.58.0 for consistency
  • Add @types/node devDependency (required for Node.js globals in TypeScript 6.0)
  • Add node to types in tsconfig.json
  • Add @types/passport-github2 devDependency for passport-github2 type declarations
  • Add startup validation for required env vars (SESSION_SECRET, GITHUB_CLIENT_ID, GITHUB_CLIENT_SECRET)
  • Fix process.env.NODE_ENV nullable assignment in config/index.ts
  • Add explicit type annotations to route handler parameters
  • Refactor early returns in loggedIn and getGithubToken to use express.RequestHandler type
  • Add types for passport strategy callback parameters
  • Merge master into branch and resolve conflicts
  • Verify build and lint pass
  • CodeQL security scan - no alerts

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 1, 2026
@vercel

vercel Bot commented Apr 1, 2026
edited
Loading

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
vega-editor-backend Ready Ready Preview, Comment Apr 1, 2026 3:51pm

@dependabot
build(deps-dev): bump typescript from 5.9.3 to 6.0.2
1efcbf8 
Bumps [typescript](https://github.com/microsoft/TypeScript) from 5.9.3 to 6.0.2.
- [Release notes](https://github.com/microsoft/TypeScript/releases)
- [Commits](microsoft/TypeScript@v5.9.3...v6.0.2)

---
updated-dependencies:
- dependency-name: typescript
  dependency-version: 6.0.2
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/typescript-6.0.2 branch from 39831e6 to 1efcbf8 Compare April 1, 2026 12:39
@domoritz

domoritz commented Apr 1, 2026

Copy link
Copy Markdown
Member

@copilot resolve the issues with the version update.

Copilot AI commented Apr 1, 2026

Copy link
Copy Markdown
Contributor

@copilot resolve the issues with the version update.

Fixed in b304711. The TypeScript 6.0.2 upgrade required several changes:

  1. typescript-eslint / @typescript-eslint/* bumped to ^8.58.0 — supports TypeScript <6.1.0, resolving the peer dependency conflict that was blocking npm install
  2. @types/node added as a devDependency + "node" added to types in tsconfig.json — TypeScript 6.0 no longer auto-resolves Node.js globals (process, Buffer, crypto, console)
  3. @types/passport-github2 added — provides type declarations for passport-github2
  4. Startup validation added in config/index.ts for SESSION_SECRET, GITHUB_CLIENT_ID, and GITHUB_CLIENT_SECRET — ensures the app fails fast with a clear error instead of running with missing credentials
  5. Explicit type annotations added to all route handler parameters (express.Request/express.Response/express.RequestHandler) and passport callback parameters

Copilot AI requested a review from domoritz April 1, 2026 12:50
@domoritz

domoritz commented Apr 1, 2026

Copy link
Copy Markdown
Member

@copilot merge main and resolve the conflicts

@domoritz
Merge remote-tracking branch 'origin/master' into dependabot/npm_and_…
c5796f5 
…yarn/typescript-6.0.2

# Conflicts:
#	package-lock.json
#	package.json

Co-authored-by: domoritz <589034+domoritz@users.noreply.github.com>

Copilot AI commented Apr 1, 2026

Copy link
Copy Markdown
Contributor

@copilot merge main and resolve the conflicts

Done in c5796f5. Merged master (which had the @typescript-eslint/eslint-plugin bump via #601) into the branch and resolved the package.json / package-lock.json conflicts. Build and lint both pass after the merge.

@domoritz domoritz merged commit f0a4cfa into master Apr 1, 2026
3 checks passed
@domoritz domoritz deleted the dependabot/npm_and_yarn/typescript-6.0.2 branch April 1, 2026 15:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@domoritz domoritz Awaiting requested review from domoritz

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@domoritz