2.4.5/dependency updates#1613
Merged
Merged
Conversation
Bumps [serialize-javascript](https://github.com/yahoo/serialize-javascript) from 7.0.4 to 7.0.5. - [Release notes](https://github.com/yahoo/serialize-javascript/releases) - [Commits](yahoo/serialize-javascript@v7.0.4...v7.0.5) --- updated-dependencies: - dependency-name: serialize-javascript dependency-version: 7.0.5 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.23 to 4.18.1. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.23...4.18.1) --- updated-dependencies: - dependency-name: lodash dependency-version: 4.18.1 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [@babel/plugin-transform-modules-systemjs](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs) from 7.27.1 to 7.29.4. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.29.4/packages/babel-plugin-transform-modules-systemjs) --- updated-dependencies: - dependency-name: "@babel/plugin-transform-modules-systemjs" dependency-version: 7.29.4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
updates: - [github.com/astral-sh/ruff-pre-commit: v0.14.7 → v0.15.12](astral-sh/ruff-pre-commit@v0.14.7...v0.15.12) - [github.com/pre-commit/mirrors-eslint: v9.39.1 → v10.3.0](pre-commit/mirrors-eslint@v9.39.1...v10.3.0) - [github.com/crate-ci/typos: v1.40.0 → v1](crate-ci/typos@v1.40.0...v1) - [github.com/zizmorcore/zizmor-pre-commit: v1.18.0 → v1.24.1](zizmorcore/zizmor-pre-commit@v1.18.0...v1.24.1)
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
…dash-4.18.1 build(deps): bump lodash from 4.17.23 to 4.18.1
…bel/plugin-transform-modules-systemjs-7.29.4 build(deps-dev): bump @babel/plugin-transform-modules-systemjs from 7.27.1 to 7.29.4
Bumps [fast-uri](https://github.com/fastify/fast-uri) from 3.1.0 to 3.1.2. - [Release notes](https://github.com/fastify/fast-uri/releases) - [Commits](fastify/fast-uri@v3.1.0...v3.1.2) --- updated-dependencies: - dependency-name: fast-uri dependency-version: 3.1.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…st-uri-3.1.2 build(deps-dev): bump fast-uri from 3.1.0 to 3.1.2
|
Coverage is 95.064% — 2.4.5/dependency-updates into 2.4.5/release. No base build found for |
Bumps [yaml](https://github.com/eemeli/yaml) from 1.10.2 to 1.10.3. - [Release notes](https://github.com/eemeli/yaml/releases) - [Commits](eemeli/yaml@v1.10.2...v1.10.3) --- updated-dependencies: - dependency-name: yaml dependency-version: 1.10.3 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [flatted](https://github.com/WebReflection/flatted) from 3.4.1 to 3.4.2. - [Commits](WebReflection/flatted@v3.4.1...v3.4.2) --- updated-dependencies: - dependency-name: flatted dependency-version: 3.4.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps and [picomatch](https://github.com/micromatch/picomatch). These dependencies needed to be updated together. Updates `picomatch` from 2.3.1 to 2.3.2 - [Release notes](https://github.com/micromatch/picomatch/releases) - [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md) - [Commits](micromatch/picomatch@2.3.1...2.3.2) Updates `picomatch` from 4.0.2 to 4.0.4 - [Release notes](https://github.com/micromatch/picomatch/releases) - [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md) - [Commits](micromatch/picomatch@2.3.1...2.3.2) --- updated-dependencies: - dependency-name: picomatch dependency-version: 2.3.2 dependency-type: indirect - dependency-name: picomatch dependency-version: 4.0.4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…ml-1.10.3 build(deps): bump yaml from 1.10.2 to 1.10.3
…lti-bf05dc1ecf build(deps): bump picomatch
…rialize-javascript-7.0.5 build(deps-dev): bump serialize-javascript from 7.0.4 to 7.0.5
…atted-3.4.2 build(deps-dev): bump flatted from 3.4.1 to 3.4.2
build(pre-commit): pre-commit autoupdate by ci
Updates the requirements on [packaging](https://github.com/pypa/packaging) to permit the latest version. - [Release notes](https://github.com/pypa/packaging/releases) - [Changelog](https://github.com/pypa/packaging/blob/main/CHANGELOG.rst) - [Commits](pypa/packaging@23.2...26.0) --- updated-dependencies: - dependency-name: packaging dependency-version: '26.0' dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
…ith 8 updates Bumps the dev-dependencies group with 8 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) | `7.28.0` | `7.29.0` | | [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) | `7.28.0` | `7.29.5` | | [babel-loader](https://github.com/babel/babel-loader) | `10.0.0` | `10.1.1` | | [eslint](https://github.com/eslint/eslint) | `8.56.0` | `10.3.0` | | [mini-css-extract-plugin](https://github.com/webpack/mini-css-extract-plugin) | `2.9.0` | `2.10.2` | | [sass](https://github.com/sass/dart-sass) | `1.94.2` | `1.99.0` | | [webpack](https://github.com/webpack/webpack) | `5.105.0` | `5.106.2` | | [webpack-cli](https://github.com/webpack/webpack-cli) | `6.0.1` | `7.0.2` | Updates `@babel/core` from 7.28.0 to 7.29.0 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.29.0/packages/babel-core) Updates `@babel/preset-env` from 7.28.0 to 7.29.5 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.29.5/packages/babel-preset-env) Updates `babel-loader` from 10.0.0 to 10.1.1 - [Release notes](https://github.com/babel/babel-loader/releases) - [Changelog](https://github.com/babel/babel-loader/blob/main/CHANGELOG.md) - [Commits](babel/babel-loader@v10.0.0...v10.1.1) Updates `eslint` from 8.56.0 to 10.3.0 - [Release notes](https://github.com/eslint/eslint/releases) - [Commits](eslint/eslint@v8.56.0...v10.3.0) Updates `mini-css-extract-plugin` from 2.9.0 to 2.10.2 - [Release notes](https://github.com/webpack/mini-css-extract-plugin/releases) - [Changelog](https://github.com/webpack/mini-css-extract-plugin/blob/main/CHANGELOG.md) - [Commits](webpack/mini-css-extract-plugin@v2.9.0...v2.10.2) Updates `sass` from 1.94.2 to 1.99.0 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](sass/dart-sass@1.94.2...1.99.0) Updates `webpack` from 5.105.0 to 5.106.2 - [Release notes](https://github.com/webpack/webpack/releases) - [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md) - [Commits](webpack/webpack@v5.105.0...v5.106.2) Updates `webpack-cli` from 6.0.1 to 7.0.2 - [Release notes](https://github.com/webpack/webpack-cli/releases) - [Changelog](https://github.com/webpack/webpack-cli/blob/main/CHANGELOG.md) - [Commits](https://github.com/webpack/webpack-cli/compare/webpack-cli@6.0.1...webpack-cli@7.0.2) --- updated-dependencies: - dependency-name: "@babel/core" dependency-version: 7.29.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: "@babel/preset-env" dependency-version: 7.29.5 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: babel-loader dependency-version: 10.1.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: eslint dependency-version: 10.3.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: dev-dependencies - dependency-name: mini-css-extract-plugin dependency-version: 2.10.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: sass dependency-version: 1.99.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: webpack dependency-version: 5.106.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: webpack-cli dependency-version: 7.0.2 dependency-type: direct:development update-type: version-update:semver-major dependency-group: dev-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>
…dates Updates the requirements on [pytest-github-actions-annotate-failures](https://github.com/pytest-dev/pytest-github-actions-annotate-failures), [django-allauth](https://github.com/sponsors/pennersr) and [gunicorn](https://github.com/benoitc/gunicorn) to permit the latest version. Updates `pytest-github-actions-annotate-failures` to 0.4.0 - [Release notes](https://github.com/pytest-dev/pytest-github-actions-annotate-failures/releases) - [Commits](pytest-dev/pytest-github-actions-annotate-failures@v0.2.0...v0.4.0) Updates `django-allauth` to 65.16.1 - [Commits](https://github.com/sponsors/pennersr/commits) Updates `gunicorn` to 26.0.0 - [Release notes](https://github.com/benoitc/gunicorn/releases) - [Commits](benoitc/gunicorn@23.0.0...26.0.0) --- updated-dependencies: - dependency-name: django-allauth dependency-version: 65.15.0 dependency-type: direct:development dependency-group: optional - dependency-name: gunicorn dependency-version: 25.2.0 dependency-type: direct:development dependency-group: optional - dependency-name: pytest-github-actions-annotate-failures dependency-version: 0.4.0 dependency-type: direct:development dependency-group: optional ... Signed-off-by: dependabot[bot] <support@github.com>
…updates Bumps the github-actions group with 2 updates in the / directory: [hynek/build-and-inspect-python-package](https://github.com/hynek/build-and-inspect-python-package) and [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish). Updates `hynek/build-and-inspect-python-package` from 2.14.0 to 2.18.0 - [Release notes](https://github.com/hynek/build-and-inspect-python-package/releases) - [Changelog](https://github.com/hynek/build-and-inspect-python-package/blob/main/CHANGELOG.md) - [Commits](hynek/build-and-inspect-python-package@efb823f...d44ca7d) Updates `pypa/gh-action-pypi-publish` from 6733eb7d741f0b11ec6a39b58540dab7590f9b7d to cef221092ed1bacb1cc03d23a2d87d1d172e277b - [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases) - [Commits](pypa/gh-action-pypi-publish@6733eb7...cef2210) --- updated-dependencies: - dependency-name: hynek/build-and-inspect-python-package dependency-version: 2.18.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: pypa/gh-action-pypi-publish dependency-version: cef221092ed1bacb1cc03d23a2d87d1d172e277b dependency-type: direct:production dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
…updates/optional-526a97c033 build(deps-dev): bump the optional group across 1 directory with 3 updates
…dependency-updates/github-actions-f20bb74b9c build(deps): bump the github-actions group across 1 directory with 2 updates
Updates the requirements on [setuptools](https://github.com/pypa/setuptools) to permit the latest version. - [Release notes](https://github.com/pypa/setuptools/releases) - [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst) - [Commits](pypa/setuptools@v73.0.0...v82.0.0) --- updated-dependencies: - dependency-name: setuptools dependency-version: 82.0.0 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>
…updates/setuptools-gte-73-and-lt-83 build(deps-dev): update setuptools requirement from <81,>=73 to >=73,<83
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
… 6 updates Bumps the prod-dependencies group with 6 updates in the / directory: | Package | From | To | | --- | --- | --- | | [html-to-text](https://github.com/html-to-text/node-html-to-text) | `9.0.5` | `10.0.0` | | [jquery](https://github.com/jquery/jquery) | `3.7.1` | `3.7.1` | | [react-datepicker](https://github.com/Hacker0x01/react-datepicker) | `8.10.0` | `9.1.0` | | [react-diff-viewer-continued](https://github.com/Aeolun/react-diff-viewer-continued) | `3.4.0` | `4.2.2` | | [react-dropzone](https://github.com/react-dropzone/react-dropzone) | `14.3.8` | `15.0.0` | | [use-debounce](https://github.com/xnimorz/use-debounce) | `10.0.3` | `10.1.1` | Updates `html-to-text` from 9.0.5 to 10.0.0 - [Commits](html-to-text/node-html-to-text@9.0.5...10.0.0) Updates `jquery` from 3.7.1 to 4.0.0 - [Release notes](https://github.com/jquery/jquery/releases) - [Changelog](https://github.com/jquery/jquery/blob/main/changelog.md) - [Commits](jquery/jquery@3.7.1...4.0.0) Updates `react-datepicker` from 8.10.0 to 9.1.0 - [Release notes](https://github.com/Hacker0x01/react-datepicker/releases) - [Commits](Hacker0x01/react-datepicker@v8.10.0...v9.1.0) Updates `react-diff-viewer-continued` from 3.4.0 to 4.2.2 - [Release notes](https://github.com/Aeolun/react-diff-viewer-continued/releases) - [Changelog](https://github.com/Aeolun/react-diff-viewer-continued/blob/main/CHANGELOG.md) - [Commits](Aeolun/react-diff-viewer-continued@v3.4.0...v4.2.2) Updates `react-dropzone` from 14.3.8 to 15.0.0 - [Release notes](https://github.com/react-dropzone/react-dropzone/releases) - [Commits](react-dropzone/react-dropzone@v14.3.8...v15.0.0) Updates `use-debounce` from 10.0.3 to 10.1.1 - [Release notes](https://github.com/xnimorz/use-debounce/releases) - [Changelog](https://github.com/xnimorz/use-debounce/blob/master/CHANGELOG.md) - [Commits](https://github.com/xnimorz/use-debounce/commits) --- updated-dependencies: - dependency-name: html-to-text dependency-version: 10.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: prod-dependencies - dependency-name: jquery dependency-version: 4.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: prod-dependencies - dependency-name: react-datepicker dependency-version: 9.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: prod-dependencies - dependency-name: react-diff-viewer-continued dependency-version: 4.2.2 dependency-type: direct:production update-type: version-update:semver-major dependency-group: prod-dependencies - dependency-name: react-dropzone dependency-version: 15.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: prod-dependencies - dependency-name: use-debounce dependency-version: 10.1.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
…pendency-updates/prod-dependencies-6cd3be3caa build(deps): bump the prod-dependencies group across 1 directory with 6 updates
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
This reverts commit c7ff02f.
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Dependency updates for 2.4.5
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Updates the requirements on [django-allauth](https://github.com/sponsors/pennersr) and [pytest-playwright](https://github.com/microsoft/playwright-pytest) to permit the latest version. Updates `django-allauth` to 65.17.0 - [Commits](https://github.com/sponsors/pennersr/commits) Updates `pytest-playwright` to 0.8.0 - [Release notes](https://github.com/microsoft/playwright-pytest/releases) - [Commits](microsoft/playwright-pytest@v0.7.2...v0.8.0) --- updated-dependencies: - dependency-name: django-allauth dependency-version: 65.17.0 dependency-type: direct:development dependency-group: optional - dependency-name: pytest-playwright dependency-version: 0.8.0 dependency-type: direct:development dependency-group: optional ... Signed-off-by: dependabot[bot] <support@github.com>
jochenklar
requested changes
Jun 1, 2026
jochenklar
left a comment
jochenklar
left a comment
Member
There was a problem hiding this comment.
Thanks! The is only a tiny issue left. I was not sure how we update. I would just use pre-commit autoupdate --freeze locally. Up to you.
| - react@18.3.1 | ||
| - repo: https://github.com/crate-ci/typos | ||
| rev: v1.40.0 | ||
| rev: v1 |
Member
There was a problem hiding this comment.
This will cause a warning, lets use the --frozen version as discussed.
Member
Author
There was a problem hiding this comment.
ok, yes, I have added the frozen versions and also removed the autoupdate from the ci, so it needs to be done manually from now on.
| vertical-align: top; | ||
| } | ||
|
|
||
| td[class*="marker"] { |
Member
There was a problem hiding this comment.
I adjusted the styling here a bit.
Member
Author
There was a problem hiding this comment.
ok, thanks! Looks good and simple without the extra white blob around the +/-
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
…al autoupdate Signed-off-by: David Wallace <david.wallace@tu-darmstadt.de>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Description
Dependency and maintenance updates for
2.4.5/release.This PR updates frontend, Python, CI, and pre-commit dependencies; pins GitHub Actions to full commit SHAs; and adds Dependabot constraints to keep ESLint on v8 and jQuery on v3.x for now.
It also includes compatibility fixes after the frontend dependency updates, especially around import diff rendering with
react-diff-viewer-continued, plus styling improvements for field diffs.The e2e test setup was refactored to share Playwright fixtures across test modules, improve live-server host handling, collect JavaScript errors more reliably, and make selected management/project e2e tests more robust.
Main areas changed:
package.json/package-lock.jsonpyproject.tomlpytest.raisescleanup