chore(deps-dev): bump the npm-development group with 7 updates #15

dependabot · 2025-11-10T19:45:37Z

Bumps the npm-development group with 7 updates:

Package	From	To
@modelcontextprotocol/sdk	`1.21.0`	`1.21.1`
@typescript-eslint/eslint-plugin	`8.46.3`	`8.46.4`
@typescript-eslint/parser	`8.46.3`	`8.46.4`
@vitest/coverage-v8	`4.0.7`	`4.0.8`
@vitest/ui	`4.0.7`	`4.0.8`
rollup	`4.52.5`	`4.53.2`
vitest	`4.0.7`	`4.0.8`

Updates @modelcontextprotocol/sdk from 1.21.0 to 1.21.1

Release notes

Sourced from @modelcontextprotocol/sdk's releases.

1.21.1

What's Changed

Only use path-based discovery URLs from the authorization server to discover metadata by @roadmapper in modelcontextprotocol/typescript-sdk#1070

Add @deprecated annotations to legacy APIs by @domdomegg in modelcontextprotocol/typescript-sdk#1018

fix: Support WWW-Authenticate scope param for SEP-835 by @chipgpt in modelcontextprotocol/typescript-sdk#983

move CLI script to dedicated scripts directory by @mattzcarey in modelcontextprotocol/typescript-sdk#1073

Check script which typechecks using Typescripts new Go port by @mattzcarey in modelcontextprotocol/typescript-sdk#1075

FIX: use a nightly spec.types.ts by @mattzcarey in modelcontextprotocol/typescript-sdk#1087

chore: bump version for release by @felixweinberger in modelcontextprotocol/typescript-sdk#1085

New Contributors

@roadmapper made their first contribution in modelcontextprotocol/typescript-sdk#1070

Full Changelog: modelcontextprotocol/typescript-sdk@1.21.0...1.21.1

Commits

fcc7da8 chore: bump version for release (#1085)
4463737 FIX: use a nightly spec.types.ts (#1087)
11f04e1 Check script which typechecks using Typescripts new Go port (#1075)
9757ace move CLI script to dedicated scripts directory (#1073)
ee9fed2 fix: Support WWW-Authenticate scope param for SEP-835 (#983)
2166047 Add @deprecated annotations to legacy APIs (#1018)
664e66e Only use path-based discovery URLs from the authorization server to discover ...
See full diff in compare view

Updates @typescript-eslint/eslint-plugin from 8.46.3 to 8.46.4

Release notes

Sourced from @typescript-eslint/eslint-plugin's releases.

v8.46.4

8.46.4 (2025-11-10)

🩹 Fixes

eslint-plugin: [no-deprecated] fix double-report on computed literal identifiers (#11006, #10958)

eslint-plugin: handle override modifier in promise-function-async fixer (#11730)

parser: error when both projectService and project are set (#11333)

❤️ Thank You

Evgeny Stepanovych @undsoft

Kentaro Suzuki @sushichan044

Maria Solano @MariaSolOs

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @typescript-eslint/eslint-plugin's changelog.

8.46.4 (2025-11-10)

🩹 Fixes

parser: error when both projectService and project are set (#11333)

eslint-plugin: handle override modifier in promise-function-async fixer (#11730)

eslint-plugin: [no-deprecated] fix double-report on computed literal identifiers (#11006, #10958)

❤️ Thank You

Evgeny Stepanovych @undsoft

Kentaro Suzuki @sushichan044

Maria Solano @MariaSolOs

You can read about our versioning strategy and releases on our website.

Commits

843f144 chore(release): publish 8.46.4
997e0c0 fix(parser): error when both projectService and project are set (#11333)
7c6944e chore: fix typos (#11744)
189a7f7 fix(eslint-plugin): handle override modifier in promise-function-async fixer ...
c779f3c fix(eslint-plugin): [no-deprecated] fix double-report on computed literal ide...
ea2ee6b chore(eslint-plugin): use correct type for return type of createValidator (...
See full diff in compare view

Updates @typescript-eslint/parser from 8.46.3 to 8.46.4

Release notes

Sourced from @typescript-eslint/parser's releases.

v8.46.4

8.46.4 (2025-11-10)

🩹 Fixes

eslint-plugin: [no-deprecated] fix double-report on computed literal identifiers (#11006, #10958)

eslint-plugin: handle override modifier in promise-function-async fixer (#11730)

parser: error when both projectService and project are set (#11333)

❤️ Thank You

Evgeny Stepanovych @undsoft

Kentaro Suzuki @sushichan044

Maria Solano @MariaSolOs

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @typescript-eslint/parser's changelog.

8.46.4 (2025-11-10)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

843f144 chore(release): publish 8.46.4
See full diff in compare view

Updates @vitest/coverage-v8 from 4.0.7 to 4.0.8

Release notes

Sourced from @vitest/coverage-v8's releases.

v4.0.8

🐞 Bug Fixes

Workaround noExternal merging bug on Vite 6 - by @hi-ogawa in vitest-dev/vitest#8950 (bcb13)

Missed context.d.ts file - by @termorey in vitest-dev/vitest#8965 (9044d)

Incorrect error message for non-awaited expect.element() - by @StyleShit in vitest-dev/vitest#8954 (9638d)

browser: Cleanup frame-ancestors from CSP header at coverage middleware - by @userquin in vitest-dev/vitest#8941 (1f730)

deps: Update all non-major dependencies - by @sheremet-va in vitest-dev/vitest#8636 (da8b9)

forks: Do not fail with Windows Defender enabled - by @sheremet-va in vitest-dev/vitest#8967 (c79f4)

runner: Properly encode Uint8Array body in annotations - by @Livan-pro in vitest-dev/vitest#8951 (997ca)

spy: Copy static properties if spy is initialised with vi.fn(), fix types for vi.spyOn(obj, class) - by @sheremet-va in vitest-dev/vitest#8956 (75e7f)

webdriverio: When no argument is passed to the .click interaction command, the webdriver command should also have no argument - by @julienw in vitest-dev/vitest#8937 (069e6)

View changes on GitHub

Commits

46bfd09 chore: release v4.0.8
da8b93a fix(deps): update all non-major dependencies (#8636)
See full diff in compare view

Updates @vitest/ui from 4.0.7 to 4.0.8

Release notes

Sourced from @vitest/ui's releases.

v4.0.8

🐞 Bug Fixes

Workaround noExternal merging bug on Vite 6 - by @hi-ogawa in vitest-dev/vitest#8950 (bcb13)

Missed context.d.ts file - by @termorey in vitest-dev/vitest#8965 (9044d)

Incorrect error message for non-awaited expect.element() - by @StyleShit in vitest-dev/vitest#8954 (9638d)

browser: Cleanup frame-ancestors from CSP header at coverage middleware - by @userquin in vitest-dev/vitest#8941 (1f730)

deps: Update all non-major dependencies - by @sheremet-va in vitest-dev/vitest#8636 (da8b9)

forks: Do not fail with Windows Defender enabled - by @sheremet-va in vitest-dev/vitest#8967 (c79f4)

runner: Properly encode Uint8Array body in annotations - by @Livan-pro in vitest-dev/vitest#8951 (997ca)

spy: Copy static properties if spy is initialised with vi.fn(), fix types for vi.spyOn(obj, class) - by @sheremet-va in vitest-dev/vitest#8956 (75e7f)

webdriverio: When no argument is passed to the .click interaction command, the webdriver command should also have no argument - by @julienw in vitest-dev/vitest#8937 (069e6)

View changes on GitHub

Commits

46bfd09 chore: release v4.0.8
c84a396 chore(deps): update dependency splitpanes to v4 (#8701)
da8b93a fix(deps): update all non-major dependencies (#8636)
See full diff in compare view

Updates rollup from 4.52.5 to 4.53.2

Release notes

Sourced from rollup's releases.

v4.53.2

4.53.2

2025-11-10

Bug Fixes

Do not throw when using invalid escape sequences in template literals (#6177)

Pull Requests

#6177: handle TemplateElement with null cooked value (@TrickyPi)

v4.53.1

4.53.1

2025-11-07

Bug Fixes

Fix install script (#6172)

Pull Requests

#6172: fix: move patch-package from postinstall to prepare script (@mshima)

v4.53.0

4.53.0

2025-11-07

Features

Improve rendering performance by caching generated variable names (#5947)

Pull Requests

#5947: refactor: store safe variable names in cache for subsequent usage (@Aslemammad, @lukastaegert, @Service account user)

#6149: chore(deps): update dependency vite to v7.1.11 [security] (@renovate[bot], @Service account user)

#6151: fix(deps): update swc monorepo (major) (@renovate[bot], @Service account user)

#6152: fix(deps): lock file maintenance minor/patch updates (@renovate[bot], @Service account user)

#6153: chore(deps): lock file maintenance minor/patch updates (@renovate[bot], @Service account user)

#6155: Fix tests: Do not swallow warnings for multi-format tests (@lukastaegert, @Service account user)

#6159: chore(deps): update dependency eslint-plugin-unicorn to v62 (@renovate[bot])

#6160: chore(deps): update github artifact actions (major) (@renovate[bot])

#6161: fix(deps): lock file maintenance minor/patch updates (@renovate[bot], @lukastaegert)

#6164: chore(deps): update dependency @rollup/plugin-alias to v6 (@renovate[bot])

#6165: chore(deps): update dependency @rollup/plugin-commonjs to v29 (@renovate[bot])

#6166: fix(deps): update swc monorepo (major) (@renovate[bot], @lukastaegert)

#6167: chore(deps): lock file maintenance minor/patch updates (@renovate[bot], @lukastaegert)

Changelog

Sourced from rollup's changelog.

4.53.2

2025-11-10

Bug Fixes

Do not throw when using invalid escape sequences in template literals (#6177)

Pull Requests

#6177: handle TemplateElement with null cooked value (@TrickyPi)

4.53.1

2025-11-07

Bug Fixes

Fix install script (#6172)

Pull Requests

#6172: fix: move patch-package from postinstall to prepare script (@mshima)

4.53.0

2025-11-07

Features

Improve rendering performance by caching generated variable names (#5947)

Pull Requests

#5947: refactor: store safe variable names in cache for subsequent usage (@Aslemammad, @lukastaegert, @Service account user)

#6149: chore(deps): update dependency vite to v7.1.11 [security] (@renovate[bot], @Service account user)

#6151: fix(deps): update swc monorepo (major) (@renovate[bot], @Service account user)

#6152: fix(deps): lock file maintenance minor/patch updates (@renovate[bot], @Service account user)

#6153: chore(deps): lock file maintenance minor/patch updates (@renovate[bot], @Service account user)

#6155: Fix tests: Do not swallow warnings for multi-format tests (@lukastaegert, @Service account user)

#6159: chore(deps): update dependency eslint-plugin-unicorn to v62 (@renovate[bot])

#6160: chore(deps): update github artifact actions (major) (@renovate[bot])

#6161: fix(deps): lock file maintenance minor/patch updates (@renovate[bot], @lukastaegert)

#6164: chore(deps): update dependency @rollup/plugin-alias to v6 (@renovate[bot])

#6165: chore(deps): update dependency @rollup/plugin-commonjs to v29 (@renovate[bot])

#6166: fix(deps): update swc monorepo (major) (@renovate[bot], @lukastaegert)

#6167: chore(deps): lock file maintenance minor/patch updates (@renovate[bot], @lukastaegert)

Commits

d8b0150 4.53.2
4f43f03 handle TemplateElement with null cooked value (#6177)
e3bdcdf 4.53.1
96b5453 fix: move patch-package from postinstall to prepare script (#6172)
ecff532 4.53.0
05a6c01 refactor: store safe variable names in cache for subsequent usage (#5947)
5cf4264 fix(deps): update swc monorepo (major) (#6166)
75c4346 chore(deps): lock file maintenance minor/patch updates (#6167)
1ba7efe chore(deps): update dependency @rollup/plugin-alias to v6 (#6164)
e64d220 chore(deps): update dependency @rollup/plugin-commonjs to v29 (#6165)
Additional commits viewable in compare view

Updates vitest from 4.0.7 to 4.0.8

Release notes

Sourced from vitest's releases.

v4.0.8

🐞 Bug Fixes

Workaround noExternal merging bug on Vite 6 - by @hi-ogawa in vitest-dev/vitest#8950 (bcb13)

Missed context.d.ts file - by @termorey in vitest-dev/vitest#8965 (9044d)

Incorrect error message for non-awaited expect.element() - by @StyleShit in vitest-dev/vitest#8954 (9638d)

browser: Cleanup frame-ancestors from CSP header at coverage middleware - by @userquin in vitest-dev/vitest#8941 (1f730)

deps: Update all non-major dependencies - by @sheremet-va in vitest-dev/vitest#8636 (da8b9)

forks: Do not fail with Windows Defender enabled - by @sheremet-va in vitest-dev/vitest#8967 (c79f4)

runner: Properly encode Uint8Array body in annotations - by @Livan-pro in vitest-dev/vitest#8951 (997ca)

spy: Copy static properties if spy is initialised with vi.fn(), fix types for vi.spyOn(obj, class) - by @sheremet-va in vitest-dev/vitest#8956 (75e7f)

webdriverio: When no argument is passed to the .click interaction command, the webdriver command should also have no argument - by @julienw in vitest-dev/vitest#8937 (069e6)

View changes on GitHub

Commits

46bfd09 chore: release v4.0.8
c79f47c fix(forks): do not fail with Windows Defender enabled (#8967)
7ed99cd chore: remove unnecessery values() call for set (#8964)
9a9323b chore(deps): update dependency @antfu/eslint-config to v6 (#8832)
46b3529 chore(deps): update dependency jsdom to v27 (#8700)
65292c3 docs: update structure (#8625)
da8b93a fix(deps): update all non-major dependencies (#8636)
bcb132f fix: workaround noExternal merging bug on Vite 6 (#8950)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the npm-development group with 7 updates: | Package | From | To | | --- | --- | --- | | [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk) | `1.21.0` | `1.21.1` | | [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.46.3` | `8.46.4` | | [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.46.3` | `8.46.4` | | [@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8) | `4.0.7` | `4.0.8` | | [@vitest/ui](https://github.com/vitest-dev/vitest/tree/HEAD/packages/ui) | `4.0.7` | `4.0.8` | | [rollup](https://github.com/rollup/rollup) | `4.52.5` | `4.53.2` | | [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `4.0.7` | `4.0.8` | Updates `@modelcontextprotocol/sdk` from 1.21.0 to 1.21.1 - [Release notes](https://github.com/modelcontextprotocol/typescript-sdk/releases) - [Commits](modelcontextprotocol/typescript-sdk@1.21.0...1.21.1) Updates `@typescript-eslint/eslint-plugin` from 8.46.3 to 8.46.4 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.46.4/packages/eslint-plugin) Updates `@typescript-eslint/parser` from 8.46.3 to 8.46.4 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.46.4/packages/parser) Updates `@vitest/coverage-v8` from 4.0.7 to 4.0.8 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v4.0.8/packages/coverage-v8) Updates `@vitest/ui` from 4.0.7 to 4.0.8 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v4.0.8/packages/ui) Updates `rollup` from 4.52.5 to 4.53.2 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](rollup/rollup@v4.52.5...v4.53.2) Updates `vitest` from 4.0.7 to 4.0.8 - [Release notes](https://github.com/vitest-dev/vitest/releases) - [Commits](https://github.com/vitest-dev/vitest/commits/v4.0.8/packages/vitest) --- updated-dependencies: - dependency-name: "@modelcontextprotocol/sdk" dependency-version: 1.21.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-development - dependency-name: "@typescript-eslint/eslint-plugin" dependency-version: 8.46.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-development - dependency-name: "@typescript-eslint/parser" dependency-version: 8.46.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-development - dependency-name: "@vitest/coverage-v8" dependency-version: 4.0.8 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-development - dependency-name: "@vitest/ui" dependency-version: 4.0.8 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-development - dependency-name: rollup dependency-version: 4.53.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-development - dependency-name: vitest dependency-version: 4.0.8 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-development ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Nov 10, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps-dev): bump the npm-development group with 7 updates #15

chore(deps-dev): bump the npm-development group with 7 updates #15

Uh oh!

dependabot bot commented on behalf of github Nov 10, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

chore(deps-dev): bump the npm-development group with 7 updates #15

Are you sure you want to change the base?

chore(deps-dev): bump the npm-development group with 7 updates #15

Uh oh!

Conversation

dependabot bot commented on behalf of github Nov 10, 2025

1.21.1

What's Changed

New Contributors

v8.46.4

8.46.4 (2025-11-10)

🩹 Fixes

❤️ Thank You

8.46.4 (2025-11-10)

🩹 Fixes

❤️ Thank You

v8.46.4

8.46.4 (2025-11-10)

🩹 Fixes

❤️ Thank You

8.46.4 (2025-11-10)

v4.0.8

🐞 Bug Fixes

View changes on GitHub

v4.0.8

🐞 Bug Fixes

View changes on GitHub

v4.53.2

4.53.2

Bug Fixes

Pull Requests

v4.53.1

4.53.1

Bug Fixes

Pull Requests

v4.53.0

4.53.0

Features

Pull Requests

4.53.2

Bug Fixes

Pull Requests

4.53.1

Bug Fixes

Pull Requests

4.53.0

Features

Pull Requests

v4.0.8

🐞 Bug Fixes

View changes on GitHub

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant