Skip to content

chore(deps): bump the npm_and_yarn group across 2 directories with 3 updates#241

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/npm_and_yarn-08bc9f8c86
Open

chore(deps): bump the npm_and_yarn group across 2 directories with 3 updates#241
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/npm_and_yarn-08bc9f8c86

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 19, 2026

Bumps the npm_and_yarn group with 3 updates in the / directory: fastify, @sveltejs/kit and wrangler.
Bumps the npm_and_yarn group with 1 update in the /libs/backend directory: fastify.

Updates fastify from 4.29.1 to 5.7.3

Release notes

Sourced from fastify's releases.

v5.7.3

⚠️ Security Release

What's Changed

Full Changelog: fastify/fastify@v5.7.2...v5.7.3

v5.7.2

⚠️ Notice ⚠️

Parsing of the content-type header has been improved to a strict parser in PR #6414. This means only header values in the form described in RFC 9110 are accepted.

What's Changed

New Contributors

Full Changelog: fastify/fastify@v5.7.1...v5.7.2

v5.7.1

What's Changed

Full Changelog: fastify/fastify@v5.7.0...v5.7.1

v5.7.0

What's Changed

... (truncated)

Commits

Updates @sveltejs/kit from 2.47.3 to 2.49.5

Release notes

Sourced from @​sveltejs/kit's releases.

@​sveltejs/kit@​2.49.5

Patch Changes

  • fix: avoid overriding Vite default base when running Vitest 4 (#14866)

  • fix: ensure url decoded pathnames are not mistaken as rerouted requests (d9ae9b0)

  • fix: add length checks to remote forms (8ed8155)

@​sveltejs/kit@​2.49.4

Patch Changes

  • fix: support instrumentation for vite preview (#15105)

  • fix: support for URLSearchParams.has(name, value) overload (#15076)

  • fix: put forking behind experimental.forkPreloads (#15135)

@​sveltejs/kit@​2.49.3

Patch Changes

  • fix: avoid false-positive Vite config overridden warning when using Vitest 4 (#15121)

  • fix: add typescript as an optional peer dependency (#15074)

  • fix: use hasOwn check when deep-setting object properties (#15127)

@​sveltejs/kit@​2.49.2

Patch Changes

  • fix: Stop re-loading already-loaded CSS during server-side route resolution (#15014)

  • fix: posixify the instrumentation file import on Windows (#14993)

  • fix: Correctly handle shared memory when decoding binary form data (#15028)

@​sveltejs/kit@​2.49.1

Patch Changes

  • fix: suppress state_referenced_locally warnings in .svelte-kit/generated/root.svelte (#15013)

... (truncated)

Changelog

Sourced from @​sveltejs/kit's changelog.

2.49.5

Patch Changes

  • fix: avoid overriding Vite default base when running Vitest 4 (#14866)

  • fix: ensure url decoded pathnames are not mistaken as rerouted requests (d9ae9b0)

  • fix: add length checks to remote forms (8ed8155)

2.49.4

Patch Changes

  • fix: support instrumentation for vite preview (#15105)

  • fix: support for URLSearchParams.has(name, value) overload (#15076)

  • fix: put forking behind experimental.forkPreloads (#15135)

2.49.3

Patch Changes

  • fix: avoid false-positive Vite config overridden warning when using Vitest 4 (#15121)

  • fix: add typescript as an optional peer dependency (#15074)

  • fix: use hasOwn check when deep-setting object properties (#15127)

2.49.2

Patch Changes

  • fix: Stop re-loading already-loaded CSS during server-side route resolution (#15014)

  • fix: posixify the instrumentation file import on Windows (#14993)

  • fix: Correctly handle shared memory when decoding binary form data (#15028)

2.49.1

Patch Changes

... (truncated)

Commits
  • 80ffb53 Version Packages (#15162)
  • 8ed8155 Merge commit from fork
  • d9ae9b0 Merge commit from fork
  • ec4596a chore: Upgrade devalue (#15172)
  • 81cd545 fix: avoid overriding Vite default base when running Vitest 4 (#14866)
  • 6cf9491 chore: remove unused is_http_method helper and method set to (#15152)
  • 3305022 Revert "breaking: remove buttonProps from experimental remote form function...
  • 4f9870d breaking: remove buttonProps from experimental remote form functions (#14622)
  • c8e4017 Version Packages (#15129)
  • 50bf727 chore: fix prettier ignoring source code in with build in the name (#15133)
  • Additional commits viewable in compare view

Updates wrangler from 4.45.0 to 4.59.1

Release notes

Sourced from wrangler's releases.

wrangler@4.59.1

Patch Changes

  • #11889 99b1f32 Thanks @​emily-shen! - Use argument array when executing git commands with wrangler pages deploy

    Pass user provided values from --commit-hash safely to underlying git command.

wrangler@4.59.0

Minor Changes

  • #11852 ad65efa Thanks @​NuroDev! - Add --check flag to wrangler types command

    The new --check flag allows you to verify that your generated types file is up-to-date without regenerating it. This is useful for CI/CD pipelines, pre-commit hooks, or any scenario where you want to ensure types have been committed after configuration changes.

    When types are up-to-date, the command exits with code 0:

    $ wrangler types --check
✨ Types at worker-configuration.d.ts are up to date.

    When types are out-of-date, the command exits with code 1:

    $ wrangler types --check
✘ [ERROR] Types at worker-configuration.d.ts are out of date. Run `wrangler types` to regenerate.

    You can also use it with a custom output path:

    $ wrangler types ./custom-types.d.ts --check

  • #11529 43d5363 Thanks @​matthewdavidrodgers! - Add ability to enable higher asset count limits for Pages deployments

    Wrangler can now read asset count limits from JWT claims during Pages deployments, allowing users to be enabled for higher limits (up to 100,000 assets) on a per-account basis. The default limit remains at 20,000 assets.

  • #11755 0f8d69d Thanks @​nikitassharma! - Users can now specify constraints.tiers for their container applications. tier is deprecated in favor of tiers. If left unset, we will default to tiers: [1, 2]. Note that constraints is an experimental feature.

Patch Changes

  • #11820 b0e54b2 Thanks @​MattieTK! - Add AI agent detection to analytics events

    Wrangler now detects when commands are executed by AI coding agents (such as Claude Code, Cursor, GitHub Copilot, etc.) using the am-i-vibing library. This information is included as an agent property in all analytics events, helping Cloudflare understand how developers interact with Wrangler through AI assistants.

... (truncated)

Commits
  • 37a8607 Version Packages (#11890)
  • 99b1f32 fix: execute git commands in pages deploy safely (#11889)
  • e98c95a Version Packages (#11836)
  • ad65efa Add --check flag to wrangler types (#11852)
  • beb96af feat(unenv-preset): add support for native node:sqlite module (#11841)
  • b0e54b2 [wrangler] Add AI agent detection to analytics events (#11820)
  • 2203af4 Add Node.js 24 and 25 compatibility to the test suites for Miniflare, Wrangle...
  • b6148ed chore(deps): bump the workerd-and-workers-types group with 2 updates (#11872)
  • 0eb973d Do not warn user when using a redirected config that came from a config with ...
  • 0f8d69d containers: users can set multiple tiers for constraints (#11755)
  • Additional commits viewable in compare view

Updates fastify from 4.29.1 to 5.7.3

Release notes

Sourced from fastify's releases.

v5.7.3

⚠️ Security Release

What's Changed

Full Changelog: fastify/fastify@v5.7.2...v5.7.3

v5.7.2

⚠️ Notice ⚠️

Parsing of the content-type header has been improved to a strict parser in PR #6414. This means only header values in the form described in RFC 9110 are accepted.

What's Changed

New Contributors

Full Changelog: fastify/fastify@v5.7.1...v5.7.2

v5.7.1

What's Changed

Full Changelog: fastify/fastify@v5.7.0...v5.7.1

v5.7.0

What's Changed

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps): bump the npm_and_yarn group across 2 directories with 3 …
b62816b 
…updates

Bumps the npm_and_yarn group with 3 updates in the / directory: [fastify](https://github.com/fastify/fastify), [@sveltejs/kit](https://github.com/sveltejs/kit/tree/HEAD/packages/kit) and [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler).
Bumps the npm_and_yarn group with 1 update in the /libs/backend directory: [fastify](https://github.com/fastify/fastify).


Updates `fastify` from 4.29.1 to 5.7.3
- [Release notes](https://github.com/fastify/fastify/releases)
- [Commits](fastify/fastify@v4.29.1...v5.7.3)

Updates `@sveltejs/kit` from 2.47.3 to 2.49.5
- [Release notes](https://github.com/sveltejs/kit/releases)
- [Changelog](https://github.com/sveltejs/kit/blob/main/packages/kit/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/kit/commits/@sveltejs/kit@2.49.5/packages/kit)

Updates `wrangler` from 4.45.0 to 4.59.1
- [Release notes](https://github.com/cloudflare/workers-sdk/releases)
- [Commits](https://github.com/cloudflare/workers-sdk/commits/wrangler@4.59.1/packages/wrangler)

Updates `fastify` from 4.29.1 to 5.7.3
- [Release notes](https://github.com/fastify/fastify/releases)
- [Commits](fastify/fastify@v4.29.1...v5.7.3)

---
updated-dependencies:
- dependency-name: fastify
  dependency-version: 5.7.3
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: "@sveltejs/kit"
  dependency-version: 2.49.5
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: wrangler
  dependency-version: 4.59.1
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: fastify
  dependency-version: 5.7.3
  dependency-type: direct:production
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Feb 19, 2026
@dependabot dependabot bot mentioned this pull request Feb 19, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants