Skip to content

chore(deps): bump the production-dependencies group across 1 directory with 9 updates#1398

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-dependencies-42d2bf7c56
Open

chore(deps): bump the production-dependencies group across 1 directory with 9 updates#1398
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-dependencies-42d2bf7c56

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 12, 2026

Copy link
Copy Markdown
Contributor

Bumps the production-dependencies group with 9 updates in the / directory:

Package From To
@sentry/node 10.53.1 10.57.0
@aws-sdk/client-cloudwatch 3.1053.0 3.1068.0
aws-jwt-verify 5.1.1 5.2.1
axios 1.16.1 1.17.0
groq-sdk 1.2.0 1.2.1
lru-cache 11.5.0 11.5.1
posthog-node 5.35.2 5.37.0
sharp 0.34.5 0.35.1
@aws-sdk/client-ses 3.1053.0 3.1068.0

Updates @sentry/node from 10.53.1 to 10.57.0

Release notes

Sourced from @​sentry/node's releases.

10.57.0

Important Changes

  • feat(angular): Add support for Angular 22 (#21330)

    @sentry/angular now officially supports Angular 22.

  • ref(core): Deprecate sendDefaultPii in favor of dataCollection (#21277)

    sendDefaultPii is deprecated and will be removed in v11. The new dataCollection option lets you control each category of collected data. sendDefaultPii: true still works and maps to enabling all dataCollection categories. dataCollection.userInfo defaults to true when dataCollection is provided, meaning auto-populated user.* fields (e.g. IP address from a request) are collected by default. Data you set explicitly (like via Sentry.setUser()) is always sent regardless. When dataCollection is not set at all, the legacy sendDefaultPii behavior applies (userInfo: false by default) to preserve backward compatibility.

    Note that an empty dataCollection: {} falls back to more permissive defaults than sendDefaultPii: false, so replicate the old behavior by opting out explicitly:

    Sentry.init({
  dataCollection: {
    userInfo: false,
    genAI: { inputs: false, outputs: false },
    httpBodies: [],
    httpHeaders: { deny: ['forwarded', '-ip', 'remote-', 'via', '-user'] },
    cookies: { deny: ['forwarded', '-ip', 'remote-', 'via', '-user'] },
    queryParams: { deny: ['forwarded', '-ip', 'remote-', 'via', '-user'] },
  },
});

Other Changes

  • feat: Use dataCollection.frameContextLines for ContextLines integration (#21323)
  • feat(cloudflare): Auto instrument D1 based on env (#21276)
  • feat(core): Change default of dataCollection.userInfo to true (#21348)
  • feat(core): Default dataCollection.httpBodies to all valid body types (#21352)
  • feat(hono): Filter noisy transactions (favicon etc) (#21365)
  • fix(cloudflare): Don't track negatively sampled spans (#21367)
  • fix(core): Use safeDateNow calls for new Date() reads (#21351)
  • fix(nextjs): Shim pinoIntegration on edge runtime (#21347)
  • fix(node): Prevent PostgresJs integration from emitting duplicate spans per query (#21364)
  • fix(node-core): Read __SENTRY_SERVER_MODULES__ lazily so Turbopack injection is honored (#21339)
  • fix(react): Detect React Router v6/v7 navigations in a layout effect to propagate the correct trace (#21326)
  • fix(react): Remove unused react.componentStack event context (#21183)
  • fix(replays): Record sentry._internal.replay_is_buffering for spans (#21297)
  • chore: Bump volta node version from 20.19.2 to 20.19.5 (#21359)

... (truncated)

Changelog

Sourced from @​sentry/node's changelog.

10.57.0

Important Changes

  • feat(angular): Add support for Angular 22 (#21330)

    @sentry/angular now officially supports Angular 22.

  • ref(core): Deprecate sendDefaultPii in favor of dataCollection (#21277)

    sendDefaultPii is deprecated and will be removed in v11. The new dataCollection option lets you control each category of collected data. sendDefaultPii: true still works and maps to enabling all dataCollection categories. dataCollection.userInfo defaults to true when dataCollection is provided, meaning auto-populated user.* fields (e.g. IP address from a request) are collected by default. Data you set explicitly (like via Sentry.setUser()) is always sent regardless. When dataCollection is not set at all, the legacy sendDefaultPii behavior applies (userInfo: false by default) to preserve backward compatibility.

    Note that an empty dataCollection: {} falls back to more permissive defaults than sendDefaultPii: false, so replicate the old behavior by opting out explicitly:

    Sentry.init({
  dataCollection: {
    userInfo: false,
    genAI: { inputs: false, outputs: false },
    httpBodies: [],
    httpHeaders: { deny: ['forwarded', '-ip', 'remote-', 'via', '-user'] },
    cookies: { deny: ['forwarded', '-ip', 'remote-', 'via', '-user'] },
    queryParams: { deny: ['forwarded', '-ip', 'remote-', 'via', '-user'] },
  },
});

Other Changes

  • feat: Use dataCollection.frameContextLines for ContextLines integration (#21323)
  • feat(cloudflare): Auto instrument D1 based on env (#21276)
  • feat(core): Change default of dataCollection.userInfo to true (#21348)
  • feat(core): Default dataCollection.httpBodies to all valid body types (#21352)
  • feat(hono): Filter noisy transactions (favicon etc) (#21365)
  • fix(cloudflare): Don't track negatively sampled spans (#21367)
  • fix(core): Use safeDateNow calls for new Date() reads (#21351)
  • fix(nextjs): Shim pinoIntegration on edge runtime (#21347)
  • fix(node): Prevent PostgresJs integration from emitting duplicate spans per query (#21364)
  • fix(node-core): Read __SENTRY_SERVER_MODULES__ lazily so Turbopack injection is honored (#21339)
  • fix(react): Detect React Router v6/v7 navigations in a layout effect to propagate the correct trace (#21326)
  • fix(react): Remove unused react.componentStack event context (#21183)
  • fix(replays): Record sentry._internal.replay_is_buffering for spans (#21297)

... (truncated)

Commits
  • 950cf97 release: 10.57.0
  • 55f9343 Merge pull request #21369 from getsentry/prepare-release/10.57.0
  • 88d9d30 meta(changelog): Update changelog for 10.57.0
  • 03ffd25 fix(cloudflare): Don't track negatively sampled spans (#21367)
  • 7c19ead ref(node): Streamline sql-common (#21360)
  • 95df562 feat(hono): Filter noisy transactions (favicon etc) (#21365)
  • 92eb5d2 feat(deps): Bump hono from 4.12.18 to 4.12.21 (#21341)
  • c6f790b fix(node): Prevent PostgresJs integration from emitting duplicate spans per q...
  • d645349 ref(node): Streamline lru-memoizer instrumentation (#21350)
  • 4293015 feat(deps): Bump @​types/aws-lambda from 8.10.150 to 8.10.161 (#21105)
  • Additional commits viewable in compare view

Updates @aws-sdk/client-cloudwatch from 3.1053.0 to 3.1068.0

Release notes

Sourced from @​aws-sdk/client-cloudwatch's releases.

v3.1068.0

3.1068.0(2026-06-12)

Documentation Changes
  • client-iam: Updating documentation for select service-specific credential APIs (f572228a)
New Features
  • clients: update client endpoints as of 2026-06-12 (3f89d039)
  • client-acm: Certificate transparency logging opt-out is no longer available. Per compliance requirements, all public ACM certificates are automatically recorded in certificate transparency logs. The CertificateTransparencyLoggingPreference option is deprecated. (ca60b0f9)
  • client-eks: Patches missing enum values for EKS updates (c2df34dc)
  • client-sagemaker-runtime: Added support for inline request payloads to the InvokeEndpointAsync operation to allow users to provide the inference payload directly in the request Body (up to 128,000 bytes) as an alternative to uploading the payload to Amazon S3 and passing InputLocation. (c4e229dd)
  • client-glue: Adds support for retrieving Apache Iceberg table metadata via GetTable. Use the new AttributesToGet parameter with LATEST ICEBERG METADATA to receive schema, partition specs, sort orders, and table properties in the response. (f45445f9)
  • client-firehose: Update KeyARN in DeliveryStreamEncryptionConfigurationInput to accept KMS key ARNs only (not alias ARNs), matching service behavior. (80837cd3)
  • client-bedrock-agentcore: Added tagging and CMK support across optimization, an explanation field in recommendation output, and an insights feature to identify failure patterns, extract user intents, and summarize execution behavior (1c06496f)
  • client-devops-agent: Adds support for Trigger CRUD APIs (CreateTrigger, GetTrigger, UpdateTrigger, DeleteTrigger, ListTriggers) for managing schedule-based automation triggers in DevOps Agent agent spaces. (7139cf1e)
  • client-bedrock-agentcore-control: Added tagging and CMK support for optimizations and an insights feature to identify failure patterns, extract user intents, and summarize execution behavior (571ac1e7)

For list of updated packages, view updated-packages.md in assets-3.1068.0.zip

v3.1067.0

3.1067.0(2026-06-11)

Documentation Changes
  • suggest UndiciHttpHandler as an alternative request handler (#8092) (bd18a9f0)
New Features
  • client-eks: Introduce new CreateCluster parameters for Amazon EKS local clusters on AWS Outposts. Added etcdInstanceType for configuring the EC2 instance type for dedicated etcd instances, and spreadLevel for configuring the placement group spread level for Kubernetes control plane and etcd instances. (383363d5)
  • client-omics: Adds support for workflowName in the ListRuns API response. (fa2f4604)
  • client-neptune: Amazon Neptune now supports IPv6 dual-stack networking. You can create and manage Neptune DB clusters accessible over both IPv4 and IPv6 by specifying NetworkType as DUAL in CreateDBCluster, ModifyDBCluster, RestoreDBClusterFromSnapshot, and RestoreDBClusterToPointInTime API operations (ae089f94)
  • client-bedrock-agentcore: Adds support to perform cross account data plane actions on an AgentCore Memory resource (8d92e480)
  • client-healthlake: Adds the UpdateFHIRDatastore API and adds analytics, NLP, and profile configuration support to CreateFHIRDatastore and DescribeFHIRDatastore. (c74ab005)
  • client-bedrock-agentcore-control: Supports deterministic metadata for AgentCore Memory (af7a995a)
  • client-support: Adding new BDD representation of endpoint ruleset (cd9dac21)

For list of updated packages, view updated-packages.md in assets-3.1067.0.zip

v3.1066.0

3.1066.0(2026-06-10)

New Features

... (truncated)

Changelog

Sourced from @​aws-sdk/client-cloudwatch's changelog.

3.1068.0 (2026-06-12)

Note: Version bump only for package @​aws-sdk/client-cloudwatch

3.1067.0 (2026-06-11)

Note: Version bump only for package @​aws-sdk/client-cloudwatch

3.1066.0 (2026-06-10)

Note: Version bump only for package @​aws-sdk/client-cloudwatch

3.1065.0 (2026-06-09)

Features

  • client-cloudwatch: This release adds the APIs (AssociateDatasetKmsKey, DisassociateDatasetKmsKey, GetDataset) to manage encryption at rest for OpenTelemetry metrics in CloudWatch using AWS KMS customer managed keys. (67566cd)

3.1064.0 (2026-06-08)

Note: Version bump only for package @​aws-sdk/client-cloudwatch

3.1063.0 (2026-06-05)

Note: Version bump only for package @​aws-sdk/client-cloudwatch

... (truncated)

Commits

Updates aws-jwt-verify from 5.1.1 to 5.2.1

Release notes

Sourced from aws-jwt-verify's releases.

v5.2.1

What's Changed

Full Changelog: awslabs/aws-jwt-verify@v5.2.0...v5.2.1

v5.2.0

What's Changed

New Contributors

Full Changelog: awslabs/aws-jwt-verify@v5.1.1...v5.2.0

Commits
  • 28ead27 fix: CognitoJwtVerifier.hydrate() (#280)
  • 836abd4 docs: updated issuer (#278)
  • 111d491 Added doc example for Cognito identity pool token (#236)
  • 6cb51f3 chore(deps-dev): bump tmp from 0.2.5 to 0.2.7 in /tests/vite-app (#277)
  • 693210e feat: eusc region support (#276)
  • 444e7cf chore(deps): bump uuid and jest-junit (#275)
  • 008429f chore(deps): bump uuid and cypress in /tests/vite-app (#274)
  • 0446885 chore(deps-dev): bump vite from 6.4.1 to 6.4.2 in /tests/vite-app (#261)
  • a4ccd85 chore(deps): bump lodash from 4.17.23 to 4.18.1 in /tests/vite-app (#262)
  • 3672f34 chore(deps): bump fast-xml-builder from 1.1.5 to 1.2.0 in /tests/cognito (#265)
  • Additional commits viewable in compare view

Updates axios from 1.16.1 to 1.17.0

Release notes

Sourced from axios's releases.

v1.17.0 — June 1, 2026

This release adds Node HTTP zstd decompression, hardens config and release workflows, and fixes authentication, header, proxy, and type-handling regressions.

🔒 Security Fixes

  • Config Hardening: Guarded socketPath, params, and paramsSerializer reads with own-property checks to prevent inherited prototype values from affecting request behavior, including SSRF-sensitive paths. (#10901, #10922)
  • Release Publishing: Switched the publish workflow to npm staged publishing for safer, auditable package releases with provenance. (#10926)

🚀 New Features

  • HTTP Compression: Added Node HTTP adapter support for zstd response decompression, with transitional.advertiseZstdAcceptEncoding controlling whether zstd is advertised in Accept-Encoding. (#6792, #10920)

🐛 Bug Fixes

  • Authentication Handling: Restored Basic auth on same-origin Node redirects while continuing to strip credentials cross-origin, and aligned the fetch adapter with HTTP adapter behavior for URL-embedded Basic auth. (#10929, #10896)
  • Proxy TLS: Preserved user httpsAgent TLS options when tunneling HTTPS requests through HTTP CONNECT proxies. (#10957)
  • React Native FormData: Cleared default Content-Type for React Native FormData so multipart boundaries can be generated correctly. (#10898)
  • Headers: Silently skipped empty or whitespace-only header names instead of throwing, matching parsed-header behavior and avoiding React Native response crashes. (#10875)
  • Request Data Merging: Preserved enumerable symbol keys when cloning plain request data through axios merge logic. (#10812)
  • Bundler Compatibility: Converted resolveConfig from an arrow default export to a named function export to avoid webpack and Babel transform interop failures. (#10891)
  • Types: Corrected AxiosHeaders.toJSON() return types and updated CommonJS isCancel typings to narrow to CanceledError<T>. (#10956, #10952)
  • Build Tooling: Avoided emitting a null Authorization header from the GitHub build helper when GITHUB_TOKEN is unset. (#10931)

🔧 Maintenance & Chores

  • HTTP/2 Internals: Extracted Http2Sessions into its own helper module and added direct unit coverage for session pooling, timeout, and cleanup behavior. (#10861)
  • Package Publishing: Reduced published package size by switching to a files allowlist and dropping unneeded unminified bundle source maps. (#10939)
  • CI and Release Automation: Added bundle-size reporting, moved reports to the job summary, fixed bundle-size comparison coverage, added Node 26 to the matrix, pinned npm for staged publishing, and prepared the 1.17.0 release. (#10907, #10911, #10916, #10927, #10935, #10983)
  • Developer Workflow: Added a dev container and iterated on OpenSpec workflow files before removing them from the release branch. (#10925, #10914, #10958)
  • Documentation and Policy: Updated disclosure, contributor, collaboration, threat-model, advanced docs, README badges, release notes, moderator configuration, and project metadata. (#10890, #10889, #10921, #10945, #10905, #10933, #10915, #10887, #10955)
  • Dependencies: Bumped Babel tooling, Commitlint, ESLint, Rollup, Globals, Vitest, Playwright, fs-extra, qs, docs dependencies, and GitHub Actions dependencies including actions/dependency-review-action and zizmorcore/zizmor-action. (#10871, #10879, #10918, #10919, #10934, #10947, #10954, #10960)

🌟 New Contributors

We are thrilled to welcome our new contributors. Thank you for helping improve axios:

Full Changelog

Changelog

Sourced from axios's changelog.

v1.17.0 — June 1, 2026

This release adds Node HTTP zstd decompression, hardens config and release workflows, and fixes authentication, header, proxy, and type-handling regressions.

🔒 Security Fixes

  • Config Hardening: Guarded socketPath, params, and paramsSerializer reads with own-property checks to prevent inherited prototype values from affecting request behavior, including SSRF-sensitive paths. (#10901, #10922)
  • Release Publishing: Switched the publish workflow to npm staged publishing for safer, auditable package releases with provenance. (#10926)

🚀 New Features

  • HTTP Compression: Added Node HTTP adapter support for zstd response decompression, with transitional.advertiseZstdAcceptEncoding controlling whether zstd is advertised in Accept-Encoding. (#6792, #10920)

🐛 Bug Fixes

  • Authentication Handling: Restored Basic auth on same-origin Node redirects while continuing to strip credentials cross-origin, and aligned the fetch adapter with HTTP adapter behavior for URL-embedded Basic auth. (#10929, #10896)
  • Proxy TLS: Preserved user httpsAgent TLS options when tunneling HTTPS requests through HTTP CONNECT proxies. (#10957)
  • React Native FormData: Cleared default Content-Type for React Native FormData so multipart boundaries can be generated correctly. (#10898)
  • Headers: Silently skipped empty or whitespace-only header names instead of throwing, matching parsed-header behavior and avoiding React Native response crashes. (#10875)
  • Request Data Merging: Preserved enumerable symbol keys when cloning plain request data through axios merge logic. (#10812)
  • Bundler Compatibility: Converted resolveConfig from an arrow default export to a named function export to avoid webpack and Babel transform interop failures. (#10891)
  • Types: Corrected AxiosHeaders.toJSON() return types and updated CommonJS isCancel typings to narrow to CanceledError<T>. (#10956, #10952)
  • Build Tooling: Avoided emitting a null Authorization header from the GitHub build helper when GITHUB_TOKEN is unset. (#10931)

🔧 Maintenance & Chores

  • HTTP/2 Internals: Extracted Http2Sessions into its own helper module and added direct unit coverage for session pooling, timeout, and cleanup behavior. (#10861)
  • Package Publishing: Reduced published package size by switching to a files allowlist and dropping unneeded unminified bundle source maps. (#10939)
  • CI and Release Automation: Added bundle-size reporting, moved reports to the job summary, fixed bundle-size comparison coverage, added Node 26 to the matrix, pinned npm for staged publishing, and prepared the 1.17.0 release. (#10907, #10911, #10916, #10927, #10935, #10983)
  • Developer Workflow: Added a dev container and iterated on OpenSpec workflow files before removing them from the release branch. (#10925, #10914, #10958)
  • Documentation and Policy: Updated disclosure, contributor, collaboration, threat-model, advanced docs, README badges, release notes, moderator configuration, and project metadata. (#10890, #10889, #10921, #10945, #10905, #10933, #10915, #10887, #10955)
  • Dependencies: Bumped Babel tooling, Commitlint, ESLint, Rollup, Globals, Vitest, Playwright, fs-extra, qs, docs dependencies, and GitHub Actions dependencies including actions/dependency-review-action and zizmorcore/zizmor-action. (#10871, #10879, #10918, #10919, #10934, #10947, #10954, #10960)

🌟 New Contributors

We are thrilled to welcome our new contributors. Thank you for helping improve axios:

Full Changelog

Commits

Updates groq-sdk from 1.2.0 to 1.2.1

Release notes

Sourced from groq-sdk's releases.

v1.2.1

1.2.1 (2026-05-28)

Full Changelog: v1.2.0...v1.2.1

Bug Fixes

  • typescript: upgrade tsc-multi so that it works with Node 26 (4ab1f54)

Chores

  • GitHub Terraform: Create/Update .github/workflows/code-freeze-bypass.yaml [skip ci] (fa53cca)
  • GitHub Terraform: Create/Update .github/workflows/stale.yaml [skip ci] (07d7e5a)
  • internal: codegen related update (b9aa6b9)
  • lint: ignore Terraform-managed workflow yamls in prettier (e6d0c51)
  • tests: remove redundant File import (f978085)
Changelog

Sourced from groq-sdk's changelog.

1.2.1 (2026-05-28)

Full Changelog: v1.2.0...v1.2.1

Bug Fixes

  • typescript: upgrade tsc-multi so that it works with Node 26 (4ab1f54)

Chores

  • GitHub Terraform: Create/Update .github/workflows/code-freeze-bypass.yaml [skip ci] (fa53cca)
  • GitHub Terraform: Create/Update .github/workflows/stale.yaml [skip ci] (07d7e5a)
  • internal: codegen related update (b9aa6b9)
  • lint: ignore Terraform-managed workflow yamls in prettier (e6d0c51)
  • tests: remove redundant File import (f978085)
Commits
  • 92ec78c release: 1.2.1 (#262)
  • 07d7e5a chore: GitHub Terraform: Create/Update .github/workflows/stale.yaml [skip ci]
  • fa53cca chore: GitHub Terraform: Create/Update .github/workflows/code-freeze-bypass.y...
  • See full diff in compare view

Updates lru-cache from 11.5.0 to 11.5.1

Commits

Updates posthog-node from 5.35.2 to 5.37.0

Release notes

Sourced from posthog-node's releases.

posthog-node@5.37.0

5.37.0

Minor Changes

  • #3705 d6fc0a5 Thanks @​gustavohstrassburger! - feat(feature-flags): support the early_exit condition option in local evaluation. When a flag enables early exit, evaluation now stops and returns false as soon as a condition group's property filters match but the rollout percentage excludes the user, instead of falling through to later groups — matching the server-side evaluation behavior. (2026-06-12)

posthog-node@5.36.17

5.36.17

Patch Changes

  • Updated dependencies []:
    • @​posthog/core@​1.32.3

posthog-node@5.36.16

5.36.16

Patch Changes

  • Updated dependencies [25822ac]:
    • @​posthog/core@​1.32.2

posthog-node@5.36.15

5.36.15

Patch Changes

  • Updated dependencies []:
    • @​posthog/core@​1.32.1

posthog-node@5.36.14

5.36.14

Patch Changes

  • Updated dependencies [612f97a]: ...

    Description has been truncated

@dependabot
chore(deps): bump the production-dependencies group across 1 director…
f6010f7 
…y with 9 updates

Bumps the production-dependencies group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@sentry/node](https://github.com/getsentry/sentry-javascript) | `10.53.1` | `10.57.0` |
| [@aws-sdk/client-cloudwatch](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-cloudwatch) | `3.1053.0` | `3.1068.0` |
| [aws-jwt-verify](https://github.com/awslabs/aws-jwt-verify) | `5.1.1` | `5.2.1` |
| [axios](https://github.com/axios/axios) | `1.16.1` | `1.17.0` |
| [groq-sdk](https://github.com/groq/groq-typescript) | `1.2.0` | `1.2.1` |
| [lru-cache](https://github.com/isaacs/node-lru-cache) | `11.5.0` | `11.5.1` |
| [posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node) | `5.35.2` | `5.37.0` |
| [sharp](https://github.com/lovell/sharp) | `0.34.5` | `0.35.1` |
| [@aws-sdk/client-ses](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-ses) | `3.1053.0` | `3.1068.0` |



Updates `@sentry/node` from 10.53.1 to 10.57.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases)
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md)
- [Commits](getsentry/sentry-javascript@10.53.1...10.57.0)

Updates `@aws-sdk/client-cloudwatch` from 3.1053.0 to 3.1068.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-cloudwatch/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.1068.0/clients/client-cloudwatch)

Updates `aws-jwt-verify` from 5.1.1 to 5.2.1
- [Release notes](https://github.com/awslabs/aws-jwt-verify/releases)
- [Commits](awslabs/aws-jwt-verify@v5.1.1...v5.2.1)

Updates `axios` from 1.16.1 to 1.17.0
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](axios/axios@v1.16.1...v1.17.0)

Updates `groq-sdk` from 1.2.0 to 1.2.1
- [Release notes](https://github.com/groq/groq-typescript/releases)
- [Changelog](https://github.com/groq/groq-typescript/blob/main/CHANGELOG.md)
- [Commits](groq/groq-typescript@v1.2.0...v1.2.1)

Updates `lru-cache` from 11.5.0 to 11.5.1
- [Changelog](https://github.com/isaacs/node-lru-cache/blob/main/CHANGELOG.md)
- [Commits](isaacs/node-lru-cache@v11.5.0...v11.5.1)

Updates `posthog-node` from 5.35.2 to 5.37.0
- [Release notes](https://github.com/PostHog/posthog-js/releases)
- [Changelog](https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md)
- [Commits](https://github.com/PostHog/posthog-js/commits/posthog-node@5.37.0/packages/node)

Updates `sharp` from 0.34.5 to 0.35.1
- [Release notes](https://github.com/lovell/sharp/releases)
- [Commits](lovell/sharp@v0.34.5...v0.35.1)

Updates `@aws-sdk/client-ses` from 3.1053.0 to 3.1068.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-ses/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.1068.0/clients/client-ses)

---
updated-dependencies:
- dependency-name: "@sentry/node"
  dependency-version: 10.57.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: "@aws-sdk/client-cloudwatch"
  dependency-version: 3.1068.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: aws-jwt-verify
  dependency-version: 5.2.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: axios
  dependency-version: 1.17.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: groq-sdk
  dependency-version: 1.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: lru-cache
  dependency-version: 11.5.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: posthog-node
  dependency-version: 5.37.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: sharp
  dependency-version: 0.35.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: "@aws-sdk/client-ses"
  dependency-version: 3.1068.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 12, 2026
@jakebromberg jakebromberg mentioned this pull request Jun 14, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants