chore(deps): update javascript by renovate[bot] · Pull Request #513 · overmindtech/terraform-example

renovate · 2026-03-27T00:52:43Z

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence
@hookform/resolvers (source)	`5.2.2` → `5.4.0`
@radix-ui/react-accordion (source)	`1.2.12` → `1.2.14`
@radix-ui/react-alert-dialog (source)	`1.1.15` → `1.1.17`
@radix-ui/react-aspect-ratio (source)	`1.1.8` → `1.1.10`
@radix-ui/react-avatar (source)	`1.1.11` → `1.2.0`
@radix-ui/react-checkbox (source)	`1.3.3` → `1.3.5`
@radix-ui/react-collapsible (source)	`1.1.12` → `1.1.14`
@radix-ui/react-context-menu (source)	`2.2.16` → `2.3.1`
@radix-ui/react-dialog (source)	`1.1.15` → `1.1.17`
@radix-ui/react-dropdown-menu (source)	`2.1.16` → `2.1.18`
@radix-ui/react-hover-card (source)	`1.1.15` → `1.1.17`
@radix-ui/react-label (source)	`2.1.8` → `2.1.10`
@radix-ui/react-menubar (source)	`1.1.16` → `1.1.18`
@radix-ui/react-navigation-menu (source)	`1.2.14` → `1.2.16`
@radix-ui/react-popover (source)	`1.1.15` → `1.1.17`
@radix-ui/react-progress (source)	`1.1.8` → `1.1.10`
@radix-ui/react-radio-group (source)	`1.3.8` → `1.4.1`
@radix-ui/react-scroll-area (source)	`1.2.10` → `1.2.12`
@radix-ui/react-select (source)	`2.2.6` → `2.3.1`
@radix-ui/react-separator (source)	`1.1.8` → `1.1.10`
@radix-ui/react-slider (source)	`1.3.6` → `1.4.1`
@radix-ui/react-slot (source)	`1.2.4` → `1.3.0`
@radix-ui/react-switch (source)	`1.2.6` → `1.3.1`
@radix-ui/react-tabs (source)	`1.1.13` → `1.1.15`
@radix-ui/react-toast (source)	`1.2.15` → `1.2.17`
@radix-ui/react-toggle (source)	`1.1.10` → `1.1.12`
@radix-ui/react-toggle-group (source)	`1.1.11` → `1.1.13`
@radix-ui/react-tooltip (source)	`1.2.8` → `1.2.10`
@tailwindcss/postcss (source)	`4.2.2` → `4.3.1`
@tanstack/react-query (source)	`5.95.2` → `5.101.2`
@types/node (source)	`24.12.0` → `24.13.2`
@types/react (source)	`19.2.14` → `19.2.17`
@vitejs/plugin-react-swc (source)	`4.3.0` → `4.3.1`
autoprefixer	`10.4.27` → `10.5.2`
date-fns	`4.1.0` → `4.4.0`
eslint (source)	`10.1.0` → `10.6.0`
eslint-plugin-react-hooks (source)	`7.0.1` → `7.1.1`
globals	`17.4.0` → `17.7.0`
lovable-tagger	`1.1.13` → `1.3.0`
lucide-react (source)	`1.6.0` → `1.21.0`
postcss (source)	`8.5.8` → `8.5.15`
react (source)	`19.2.4` → `19.2.7`
react-dom (source)	`19.2.4` → `19.2.7`
react-hook-form (source)	`7.72.0` → `7.80.0`
react-resizable-panels (source)	`4.7.5` → `4.11.2`
react-router-dom (source)	`7.13.2` → `7.18.0`
recharts	`3.8.0` → `3.9.0`
tailwind-merge	`3.5.0` → `3.6.0`
tailwindcss (source)	`4.2.2` → `4.3.1`
typescript (source)	`6.0.2` → `6.0.3`
typescript-eslint (source)	`8.57.2` → `8.62.0`
vite (source)	`8.0.2` → `8.1.0`
zod (source)	`4.3.6` → `4.4.3`

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

react-hook-form/resolvers (@hookform/resolvers)

`v5.4.0`

Compare Source

Features

feat: add ata-validator resolver (#845)

Fixes

fix issue with toNestErrors.ts (#848)

add guidance on passing context to yupResolver (useForm context) (#835) (3d29924)

radix-ui/primitives (@radix-ui/react-accordion)

`v1.2.14`

Fixed Duplicate index signature errors that surfaced when consuming multiple packages together.
Updated dependencies: @radix-ui/react-primitive@2.1.6, @radix-ui/react-collection@1.1.10, @radix-ui/react-collapsible@1.1.14

`v1.2.13`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-collapsible@1.1.13, @radix-ui/react-collection@1.1.9, @radix-ui/react-direction@1.1.2, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-id@1.1.2, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-controllable-state@1.2.3

radix-ui/primitives (@radix-ui/react-alert-dialog)

`v1.1.17`

Removed dev-only warnings for dialogs when title and/or description is not rendered.
Updated dependencies: @radix-ui/react-dialog@1.1.17, @radix-ui/react-primitive@2.1.6

`v1.1.16`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-dialog@1.1.16, @radix-ui/react-slot@1.2.5, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-primitive@2.1.5

radix-ui/primitives (@radix-ui/react-aspect-ratio)

`v1.1.10`

Updated dependencies: @radix-ui/react-primitive@2.1.6

`v1.1.9`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-primitive@2.1.5

radix-ui/primitives (@radix-ui/react-avatar)

`v1.2.0`

Fixed several edge cases with Avatar's loading state
- An avatar's fallback would not be displayed again if its image component unmounted. This is now fixed.
- Rendering multiple Avatar.Image components per Avatar.Root was never supported and results in buggy, unpredictable behavior. We now warn about this in development.
- Zero-sized images were treated as loading, meaning that onLoadingStatusChange is never called once loaded. A zero-sized image now triggers an error status on load.

Other updates

Fixed console warnings to show in test environments.
Updated dependencies: @radix-ui/react-primitive@2.1.6

`v1.1.12`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-context@1.1.4, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-callback-ref@1.1.2, @radix-ui/react-use-is-hydrated@0.1.1, @radix-ui/react-use-layout-effect@1.1.2

radix-ui/primitives (@radix-ui/react-checkbox)

`v1.3.5`

Updated dependencies: @radix-ui/react-primitive@2.1.6

`v1.3.4`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-presence@1.1.6, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-controllable-state@1.2.3, @radix-ui/react-use-previous@1.1.2, @radix-ui/react-use-size@1.1.2

radix-ui/primitives (@radix-ui/react-collapsible)

`v1.1.14`

Updated dependencies: @radix-ui/react-primitive@2.1.6

`v1.1.13`

Fixed triggers referencing a non-existent element via aria-controls when their content is removed from the DOM (credit to @dodomorandi for the original PR)
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-presence@1.1.6, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-id@1.1.2, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-controllable-state@1.2.3, @radix-ui/react-use-layout-effect@1.1.2

radix-ui/primitives (@radix-ui/react-context-menu)

`v2.3.1`

Fixed a bug where menus and submenus remained open after a window loses focus.
Updated dependencies: @radix-ui/react-menu@2.1.18, @radix-ui/react-primitive@2.1.6

`v2.3.0`

Added support for a controlled open prop on ContextMenu.Root. This is intended for reading the open state and closing the menu programmatically, though we discourage opening the menu programmatically since opening the menu depends on user interaction to position the menu.
Fixed bug in context menu where submenus stayed expanded after re-opening on long-press touch events
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-menu@2.1.17, @radix-ui/primitive@1.1.4, @radix-ui/react-context@1.1.4, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-controllable-state@1.2.3

radix-ui/primitives (@radix-ui/react-dialog)

`v1.1.17`

Removed dev-only warnings for dialogs when title and/or description is not rendered.
Fixed Dismissable Layer so outside interactions stopped by extension UI overlays do not dismiss dialogs or popovers.
Updated dependencies: @radix-ui/react-slot@1.3.0, @radix-ui/react-dismissable-layer@1.1.13, @radix-ui/react-primitive@2.1.6, @radix-ui/react-focus-scope@1.1.10, @radix-ui/react-portal@1.1.12

`v1.1.16`

Fixed disabled pointer events in closed dialogs
Fixed a bug where iOS text selection and editing on HTML inputs within react-dialog were broken
Fixed triggers referencing a non-existent element via aria-controls when their content is removed from the DOM (credit to @dodomorandi for the original PR)
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-presence@1.1.6, @radix-ui/react-slot@1.2.5, @radix-ui/react-focus-guards@1.1.4, @radix-ui/react-dismissable-layer@1.1.12, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-focus-scope@1.1.9, @radix-ui/react-id@1.1.2, @radix-ui/react-portal@1.1.11, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-controllable-state@1.2.3

radix-ui/primitives (@radix-ui/react-dropdown-menu)

`v2.1.18`

Fixed a bug where menus and submenus remained open after a window loses focus.
Updated dependencies: @radix-ui/react-menu@2.1.18, @radix-ui/react-primitive@2.1.6

`v2.1.17`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-menu@2.1.17, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-id@1.1.2, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-controllable-state@1.2.3

radix-ui/primitives (@radix-ui/react-hover-card)

`v1.1.17`

Updated dependencies: @radix-ui/react-popper@1.3.1, @radix-ui/react-dismissable-layer@1.1.13, @radix-ui/react-primitive@2.1.6, @radix-ui/react-portal@1.1.12

`v1.1.16`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-presence@1.1.6, @radix-ui/react-popper@1.3.0, @radix-ui/react-dismissable-layer@1.1.12, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-portal@1.1.11, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-controllable-state@1.2.3

radix-ui/primitives (@radix-ui/react-label)

`v2.1.10`

Updated dependencies: @radix-ui/react-primitive@2.1.6

`v2.1.9`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-primitive@2.1.5

radix-ui/primitives (@radix-ui/react-menubar)

`v1.1.18`

Fixed a bug where menus and submenus remained open after a window loses focus.
Updated dependencies: @radix-ui/react-menu@2.1.18, @radix-ui/react-primitive@2.1.6, @radix-ui/react-collection@1.1.10, @radix-ui/react-roving-focus@1.1.13

`v1.1.17`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-menu@2.1.17, @radix-ui/react-collection@1.1.9, @radix-ui/react-direction@1.1.2, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-id@1.1.2, @radix-ui/react-primitive@2.1.5, @radix-ui/react-roving-focus@1.1.12, @radix-ui/react-use-controllable-state@1.2.3

radix-ui/primitives (@radix-ui/react-navigation-menu)

`v1.2.16`

Fixed Duplicate index signature errors that surfaced when consuming multiple packages together.
Updated dependencies: @radix-ui/react-dismissable-layer@1.1.13, @radix-ui/react-primitive@2.1.6, @radix-ui/react-collection@1.1.10, @radix-ui/react-visually-hidden@1.2.6

`v1.2.15`

Fixed triggers referencing a non-existent element via aria-controls when their content is removed from the DOM (credit to @dodomorandi for the original PR)
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-presence@1.1.6, @radix-ui/react-dismissable-layer@1.1.12, @radix-ui/react-collection@1.1.9, @radix-ui/react-direction@1.1.2, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-id@1.1.2, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-callback-ref@1.1.2, @radix-ui/react-use-controllable-state@1.2.3, @radix-ui/react-use-layout-effect@1.1.2, @radix-ui/react-use-previous@1.1.2, @radix-ui/react-visually-hidden@1.2.5

radix-ui/primitives (@radix-ui/react-popover)

`v1.1.17`

Fixed Dismissable Layer so outside interactions stopped by extension UI overlays do not dismiss dialogs or popovers.
Updated dependencies: @radix-ui/react-slot@1.3.0, @radix-ui/react-popper@1.3.1, @radix-ui/react-dismissable-layer@1.1.13, @radix-ui/react-primitive@2.1.6, @radix-ui/react-focus-scope@1.1.10, @radix-ui/react-portal@1.1.12

`v1.1.16`

Fixed a bug where iOS text selection and editing on HTML inputs within react-dialog were broken
Fixed triggers referencing a non-existent element via aria-controls when their content is removed from the DOM (credit to @dodomorandi for the original PR)
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-presence@1.1.6, @radix-ui/react-popper@1.3.0, @radix-ui/react-slot@1.2.5, @radix-ui/react-focus-guards@1.1.4, @radix-ui/react-dismissable-layer@1.1.12, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-focus-scope@1.1.9, @radix-ui/react-id@1.1.2, @radix-ui/react-portal@1.1.11, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-controllable-state@1.2.3

radix-ui/primitives (@radix-ui/react-progress)

`v1.1.10`

Updated dependencies: @radix-ui/react-primitive@2.1.6

`v1.1.9`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-context@1.1.4, @radix-ui/react-primitive@2.1.5

radix-ui/primitives (@radix-ui/react-radio-group)

`v1.4.1`

Updated dependencies: @radix-ui/react-primitive@2.1.6, @radix-ui/react-roving-focus@1.1.13

`v1.4.0`

Added unstable RadioGroupItemProvider, RadioGroupItemTrigger and RadioGroupItemBubbleInput parts. These expose the previously internal composition of a radio item (context provider, the interactive control, and the hidden form input) so consumers can directly access and recompose them. The RadioGroupItem component continues to render them by default.
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-presence@1.1.6, @radix-ui/react-direction@1.1.2, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-primitive@2.1.5, @radix-ui/react-roving-focus@1.1.12, @radix-ui/react-use-controllable-state@1.2.3, @radix-ui/react-use-previous@1.1.2, @radix-ui/react-use-size@1.1.2

radix-ui/primitives (@radix-ui/react-scroll-area)

`v1.2.12`

Stabilized the viewport style tag unless the nonce changes.
Fixed Duplicate index signature errors that surfaced when consuming multiple packages together.
Updated dependencies: @radix-ui/react-primitive@2.1.6

`v1.2.11`

Fixed missing data-state attribute for Scroll Area scrollbars
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-presence@1.1.6, @radix-ui/react-direction@1.1.2, @radix-ui/number@1.1.2, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-callback-ref@1.1.2, @radix-ui/react-use-layout-effect@1.1.2

radix-ui/primitives (@radix-ui/react-select)

`v2.3.1`

Allowed a Select.Item with an empty string value to act as a "clear" option. Selecting it resets the selection back to the placeholder, restoring the native <select> behavior for optional selects.
Fixed a bug where typeahead search resulted in focusing an element that no longer exists.
Updated dependencies: @radix-ui/react-slot@1.3.0, @radix-ui/react-popper@1.3.1, @radix-ui/react-dismissable-layer@1.1.13, @radix-ui/react-primitive@2.1.6, @radix-ui/react-collection@1.1.10, @radix-ui/react-focus-scope@1.1.10, @radix-ui/react-portal@1.1.12, @radix-ui/react-visually-hidden@1.2.6

`v2.3.0`

Added unstable Provider and BubbleInput parts to Select. Select.unstable_Provider sets up Select's context and state without implicitly rendering the hidden native select, and Select.unstable_BubbleInput exposes that previously internal native select so consumers can recompose it explicitly. Select continues to render both by default.
Added support for presence-based exit animations in Select
Fixed Select hidden input so it submits empty string when no value is selected
Fixed placeholder rendering when a controlled Select is reset to an empty value
Added missing __selectScope prop to PopperContent component
Fixed Select closing unexpectedly after touch-scrolling its content when rendered inside an open shadow DOM
Fixed a bug where iOS text selection and editing on HTML inputs within react-dialog were broken
Fixed triggers referencing a non-existent element via aria-controls when their content is removed from the DOM (credit to @dodomorandi for the original PR)
Fixed SelectValue logging invalid prop errors when used with both asChild and a placeholder
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-presence@1.1.6, @radix-ui/react-popper@1.3.0, @radix-ui/react-slot@1.2.5, @radix-ui/react-focus-guards@1.1.4, @radix-ui/react-dismissable-layer@1.1.12, @radix-ui/react-collection@1.1.9, @radix-ui/react-direction@1.1.2, @radix-ui/number@1.1.2, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-focus-scope@1.1.9, @radix-ui/react-id@1.1.2, @radix-ui/react-portal@1.1.11, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-callback-ref@1.1.2, @radix-ui/react-use-controllable-state@1.2.3, @radix-ui/react-use-layout-effect@1.1.2, @radix-ui/react-use-previous@1.1.2, @radix-ui/react-visually-hidden@1.2.5

radix-ui/primitives (@radix-ui/react-separator)

`v1.1.10`

Updated dependencies: @radix-ui/react-primitive@2.1.6

`v1.1.9`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-primitive@2.1.5

radix-ui/primitives (@radix-ui/react-slider)

`v1.4.1`

Fixed Duplicate index signature errors that surfaced when consuming multiple packages together.
Updated dependencies: @radix-ui/react-primitive@2.1.6, @radix-ui/react-collection@1.1.10

`v1.4.0`

Added unstable ThumbProvider, ThumbTrigger, and BubbleInput parts to Slider. SliderThumb was previously a single component that implicitly rendered a hidden native input for form submission. It is now composed from these new parts, which are exposed so consumers can decouple the bubble input from the thumb (for example, to render or customize it independently) instead of relying on SliderThumb to render it implicitly. SliderThumb continues to render all three by default, so existing usage is unaffected.
Added focusVisible for non-keyboard interactions with slider thumbs for progressively enabling styles using :focus-visible alongside programmatic focus management
Fixed Slider focus bugs in scrollable context
Fixed a Slider bug where very small step values made the thumbs unresponsive
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-collection@1.1.9, @radix-ui/react-direction@1.1.2, @radix-ui/number@1.1.2, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-controllable-state@1.2.3, @radix-ui/react-use-layout-effect@1.1.2, @radix-ui/react-use-previous@1.1.2, @radix-ui/react-use-size@1.1.2

radix-ui/primitives (@radix-ui/react-slot)

`v1.3.0`

Added generic type arguments for `SlotProps` and `createSlot`

SlotProps and createSlot now accept generic type arguments to specify the type of element a slot should render, as well as its props.

const Slot = createSlot<HTMLButtonElement, MyCustomButtonProps>("Slot");

`v1.2.5`

Fixed infinite re-render loop in React 19 caused by Slot creating a new ref callback on every render
Added support for nested Slottable via a render prop, so a slotted element can be wrapped while still merging Slot props and refs onto it
Added repository.directory to all package.json files
Improved error messages for invalid slot children
Updated dependencies: @radix-ui/react-compose-refs@1.1.3

radix-ui/primitives (@radix-ui/react-switch)

`v1.3.1`

Updated dependencies: @radix-ui/react-primitive@2.1.6

`v1.3.0`

Added unstable Provider, Trigger and BubbleInput parts to Switch. These expose the previously internal composition (context provider, the interactive control, and the hidden form input) so consumers can directly access and recompose them. The Switch component continues to render them by default.
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-controllable-state@1.2.3, @radix-ui/react-use-previous@1.1.2, @radix-ui/react-use-size@1.1.2

radix-ui/primitives (@radix-ui/react-tabs)

`v1.1.15`

Updated dependencies: @radix-ui/react-primitive@2.1.6, @radix-ui/react-roving-focus@1.1.13

`v1.1.14`

Fixed triggers referencing a non-existent element via aria-controls when their content is removed from the DOM (credit to @dodomorandi for the original PR)
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-presence@1.1.6, @radix-ui/react-direction@1.1.2, @radix-ui/primitive@1.1.4, @radix-ui/react-context@1.1.4, @radix-ui/react-id@1.1.2, @radix-ui/react-primitive@2.1.5, @radix-ui/react-roving-focus@1.1.12, @radix-ui/react-use-controllable-state@1.2.3

radix-ui/primitives (@radix-ui/react-toast)

`v1.2.17`

Updated dependencies: @radix-ui/react-dismissable-layer@1.1.13, @radix-ui/react-primitive@2.1.6, @radix-ui/react-collection@1.1.10, @radix-ui/react-portal@1.1.12, @radix-ui/react-visually-hidden@1.2.6

`v1.2.16`

Allow to specify container for ToastAnnounce
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-presence@1.1.6, @radix-ui/react-dismissable-layer@1.1.12, @radix-ui/react-collection@1.1.9, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-portal@1.1.11, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-callback-ref@1.1.2, @radix-ui/react-use-controllable-state@1.2.3, @radix-ui/react-use-layout-effect@1.1.2, @radix-ui/react-visually-hidden@1.2.5

radix-ui/primitives (@radix-ui/react-toggle)

`v1.1.12`

Updated dependencies: @radix-ui/react-primitive@2.1.6

`v1.1.11`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/primitive@1.1.4, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-controllable-state@1.2.3

radix-ui/primitives (@radix-ui/react-toggle-group)

`v1.1.13`

Updated single-select and multi-select toggle groups to use the radiogroup and toolbar roles, respectively.
Updated dependencies: @radix-ui/react-primitive@2.1.6, @radix-ui/react-roving-focus@1.1.13, @radix-ui/react-toggle@1.1.12

`v1.1.12`

Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-direction@1.1.2, @radix-ui/primitive@1.1.4, @radix-ui/react-context@1.1.4, @radix-ui/react-primitive@2.1.5, @radix-ui/react-roving-focus@1.1.12, @radix-ui/react-toggle@1.1.11, @radix-ui/react-use-controllable-state@1.2.3

radix-ui/primitives (@radix-ui/react-tooltip)

`v1.2.10`

Updated dependencies: @radix-ui/react-slot@1.3.0, @radix-ui/react-popper@1.3.1, @radix-ui/react-dismissable-layer@1.1.13, @radix-ui/react-primitive@2.1.6, @radix-ui/react-portal@1.1.12, @radix-ui/react-visually-hidden@1.2.6

`v1.2.9`

Fixed runtime error when event target is non-Node
Fixed a Tooltip bug so that skipDelayDuration={0} works as expected. Previously, the open delay could still be skipped when moving between triggers.
Added repository.directory to all package.json files
Updated dependencies: @radix-ui/react-presence@1.1.6, @radix-ui/react-popper@1.3.0, @radix-ui/react-slot@1.2.5, @radix-ui/react-dismissable-layer@1.1.12, @radix-ui/primitive@1.1.4, @radix-ui/react-compose-refs@1.1.3, @radix-ui/react-context@1.1.4, @radix-ui/react-id@1.1.2, @radix-ui/react-portal@1.1.11, @radix-ui/react-primitive@2.1.5, @radix-ui/react-use-controllable-state@1.2.3, @radix-ui/react-visually-hidden@1.2.5

tailwindlabs/tailwindcss (@tailwindcss/postcss)

`v4.3.1`

Compare Source

Added

Add --silent option to suppress output in @tailwindcss/cli (#20100)

Fixed

Remove deprecation warnings by using Module#registerHooks instead of Module#register on Node 26+ (#20028)
Canonicalization: don't crash when plugin utilities throw for unsupported values (#20052)
Allow @apply to be used with CSS mixins (#19427)
Ensure not-* correctly negates @container queries, including style(…) queries (#20059)
Ensure drop-shadow-* color utilities work with custom shadow values containing calc(…) (#20080)
Fix 'Sourcemap is likely to be incorrect' warnings when using @tailwindcss/vite (#20103)
Ensure @tailwindcss/webpack can be installed in Rspack projects without requiring webpack as a peer dependency (#20027)
Canonicalization: don't suggest invalid calc(…) expressions (e.g. px-[calc(1rem+0px)] → px-[calc(1rem+0)]) (#20127)
Canonicalization: avoid suggesting large spacing-scale values for arbitrary lengths (e.g. left-[99999px] → left-[99999px], not left-24999.75) (#20130)
Ensure @tailwindcss/cli in --watch mode recovers when a tracked dependency is deleted and restored (#20137)
Ensure standalone @tailwindcss/cli binaries are ignored when scanning for class candidates (#20139)
Ensure class candidates are extracted from Twig addClass(…) and removeClass(…) calls (#20198)
Don't crash in the Ruby or Vue preprocessors when sca

✂ Note

PR body was truncated to here.

Configuration

📅 Schedule: (in timezone Europe/London)

Branch creation
- "before 10am on friday"
Automerge
- At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

github-actions · 2026-03-27T13:30:04Z

Caution

[High Risk] New API EC2 instance will become a direct public endpoint in a shared public subnet

This change creates a new production EC2 API server in subnet-07b5b1fb2ba02f964, which is one of the same public-facing subnets used by the internet-facing api-207c90ee-alb. In the same plan, an Elastic IP resource is being updated to attach to an instance, and AWS allows instance-level public IP assignment to override a subnet’s MapPublicIpOnLaunch=false setting. That means this server is being introduced as a directly addressable host in a public application subnet instead of a private subnet behind only managed entry points.

That violates the organization’s network-access policy and AWS segmentation guidance for EC2 workloads. Once the instance comes up, its health service listens on 0.0.0.0:9090, and any permissive rule on its attached security groups will expose the host itself rather than just the ALB. The result is a materially larger attack surface and a broader blast radius for both application and east-west traffic in the production VPC.
_{View reasoning tree here.}

Caution

[High Risk] Public API ALB can lose all healthy targets because the replacement backend only exposes port 9090 while the ALB path still expects port 80

The change introduces a new API instance whose only explicit application endpoint is a simple HTTP server on port 9090, and it also replaces the public ALB target group api-207c90ee-tg. Today that ALB target group is an HTTP instance target group on port 80 with /health checks on traffic-port, and the backend security group sg-0b35287bf0a8a338c only permits ALB ingress on port 80.

A separate new attachment registers the new target with api-health-terraform-example on port 9090, but that target group is the internal 9090 health path, not the public API ALB path. If the replaced api-207c90ee-tg is cut over to this new backend without corresponding listener, attachment, and security-group changes, the ALB will probe and route to port 80 while the new instance only serves 9090. The result will be failed health checks and no healthy targets behind api-207c90ee-alb, causing public API downtime.
_{View reasoning tree here.}

Caution

[High Risk] Publicly reachable EC2 instance will remain exposed by shared 0.0.0.0/0 SSH rule

The change updates 540044833068.eu-west-2.ec2-instance.i-067c764925d915e73 while leaving it attached to shared security group sg-0437857de45b640ce, which currently allows inbound SSH on port 22 from 0.0.0.0/0. Blast-radius data shows this instance also has a public IP (18.133.78.24), so it is directly reachable from the internet during and after the replacement of its public networking attributes.

This is a confirmed compute hardening violation, not a speculative one. The plan does not remove the public exposure or the SSH rule, so the instance will remain openly accessible for remote login, and any other ENIs using the same shared security group inherit the same blast radius. That creates a real risk of unauthorized management-plane access and a materially weakened security posture for the production API environment.
_{View reasoning tree here.}

Signals

Routine → Multiple AWS API resources showing unusual and infrequent routine changes, with many resources recording only 1 event/month for the last 3 months and others at 1-2 events/week for the last 4-5 months, which is rare compared to typical patterns.
Policies → Multiple infrastructure resources showing unusual policy violations that may need review: an S3 bucket is missing required tags and does not have server-side encryption configured, while a security group allows SSH on port 22 from anywhere 0.0.0.0/0.

_{Additional Change Details:} Items 224 Edges 444 model|risks_v6 ✨Encryption Key State Risk ✨KMS Key Creation

github-actions

⛔ Auto-Blocked

🔴 Decision

Auto-blocked: Routine score (-5) is below minimum (-1)

Routine 🔴 -5

Policies 🔴 -3

🔥 Risks Summary

High 0 · Medium 0 · Low 0

💥 Blast Radius

Items 49 · Edges 141

View full analysis in Overmind ↗

renovate Bot added dependencies Renovatebot and dependabot updates frontend javascript Pull requests that update javascript code labels Mar 27, 2026

renovate Bot enabled auto-merge (squash) March 27, 2026 00:52

renovate Bot added the frontend label Mar 27, 2026

renovate Bot force-pushed the renovate/js branch from 476d981 to 6b06671 Compare March 27, 2026 13:24

github-actions Bot requested changes Mar 27, 2026

View reviewed changes

renovate Bot force-pushed the renovate/js branch from 6b06671 to b24b465 Compare March 28, 2026 17:44

github-actions Bot requested changes Mar 28, 2026

View reviewed changes

renovate Bot force-pushed the renovate/js branch from b24b465 to 0ca9be4 Compare March 30, 2026 17:34

github-actions Bot requested changes Mar 30, 2026

View reviewed changes

renovate Bot force-pushed the renovate/js branch from 0ca9be4 to b5b9bd9 Compare March 31, 2026 12:57

github-actions Bot requested changes Mar 31, 2026

View reviewed changes

renovate Bot force-pushed the renovate/js branch from b5b9bd9 to b39d4fe Compare April 1, 2026 08:41

github-actions Bot requested changes Apr 1, 2026

View reviewed changes

renovate Bot force-pushed the renovate/js branch from b39d4fe to 9ece352 Compare April 2, 2026 22:13

github-actions Bot requested changes Apr 2, 2026

View reviewed changes

renovate Bot force-pushed the renovate/js branch from 9ece352 to a7a8f6e Compare April 3, 2026 09:39

github-actions Bot requested changes Apr 3, 2026

View reviewed changes

renovate Bot force-pushed the renovate/js branch from a7a8f6e to 516875a Compare April 3, 2026 12:37

github-actions Bot requested changes Apr 3, 2026

View reviewed changes

renovate Bot force-pushed the renovate/js branch from 516875a to be444ed Compare April 3, 2026 20:57

github-actions Bot requested changes Apr 3, 2026

View reviewed changes

renovate Bot force-pushed the renovate/js branch from be444ed to 70d47ee Compare April 6, 2026 09:25

github-actions Bot requested changes Apr 6, 2026

View reviewed changes

renovate Bot force-pushed the renovate/js branch from 70d47ee to ed5a5d9 Compare April 6, 2026 12:30

github-actions Bot requested changes Apr 6, 2026

View reviewed changes

renovate Bot force-pushed the renovate/js branch 14 times, most recently from 96efea5 to 2083710 Compare April 30, 2026 11:54

renovate Bot force-pushed the renovate/js branch 11 times, most recently from c80da9e to 039d139 Compare May 7, 2026 10:36

renovate Bot force-pushed the renovate/js branch 4 times, most recently from ed23a9e to c5dc7a6 Compare May 11, 2026 10:57

chore(deps): update javascript

1409c8e

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): update javascript#513

chore(deps): update javascript#513
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/js

renovate Bot commented Mar 27, 2026 •

edited

Loading

Uh oh!

github-actions Bot commented Mar 27, 2026 •

edited

Loading

Uh oh!

github-actions Bot left a comment

Uh oh!

github-actions Bot left a comment

Uh oh!

github-actions Bot left a comment

Uh oh!

github-actions Bot left a comment

Uh oh!

github-actions Bot left a comment

Uh oh!

github-actions Bot left a comment

Uh oh!

github-actions Bot left a comment

Uh oh!

github-actions Bot left a comment

Uh oh!

github-actions Bot left a comment

Uh oh!

github-actions Bot left a comment

Uh oh!

github-actions Bot left a comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Uh oh!

Conversation

renovate Bot commented Mar 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

Features

Fixes

Other updates

Added generic type arguments for SlotProps and createSlot

Added

Fixed

Configuration

Uh oh!

github-actions Bot commented Mar 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Signals

Uh oh!

github-actions Bot left a comment

Choose a reason for hiding this comment

⛔ Auto-Blocked

🔴 Decision

📊 Signals Summary

🔥 Risks Summary

💥 Blast Radius

Uh oh!

github-actions Bot left a comment

Choose a reason for hiding this comment

⛔ Auto-Blocked

🔴 Decision

📊 Signals Summary

🔥 Risks Summary

💥 Blast Radius

Uh oh!

github-actions Bot left a comment

Choose a reason for hiding this comment

⛔ Auto-Blocked

🔴 Decision

📊 Signals Summary

🔥 Risks Summary

💥 Blast Radius

Uh oh!

github-actions Bot left a comment

Choose a reason for hiding this comment

⛔ Auto-Blocked

🔴 Decision

📊 Signals Summary

🔥 Risks Summary

💥 Blast Radius

Uh oh!

github-actions Bot left a comment

Choose a reason for hiding this comment

⛔ Auto-Blocked

🔴 Decision

📊 Signals Summary

🔥 Risks Summary

💥 Blast Radius

Uh oh!

github-actions Bot left a comment

Choose a reason for hiding this comment

⛔ Auto-Blocked

🔴 Decision

📊 Signals Summary

🔥 Risks Summary

💥 Blast Radius

Uh oh!

github-actions Bot left a comment

Choose a reason for hiding this comment

⛔ Auto-Blocked

🔴 Decision

📊 Signals Summary

🔥 Risks Summary

💥 Blast Radius

Uh oh!

github-actions Bot left a comment

Choose a reason for hiding this comment

⛔ Auto-Blocked

🔴 Decision

📊 Signals Summary

🔥 Risks Summary

💥 Blast Radius

renovate Bot commented Mar 27, 2026 •

edited

Loading

Added generic type arguments for `SlotProps` and `createSlot`

github-actions Bot commented Mar 27, 2026 •

edited

Loading