chore(deps): bump the minor-and-patch group across 1 directory with 18 updates

[dependabot]

Bumps the minor-and-patch group with 18 updates in the / directory:

Package	From	To
@clack/prompts	1.2.0	1.3.0
@prisma/client	7.6.0	7.8.0
graphql	16.13.2	16.14.0
undici	8.0.2	8.2.0
xstate	5.30.0	5.31.1
yaml	2.8.3	2.9.0
zod	4.3.6	4.4.3
@cloudflare/workers-types	4.20260405.1	4.20260511.1
@types/node	25.5.2	25.7.0
@typescript-eslint/eslint-plugin	8.58.0	8.59.3
@typescript-eslint/parser	8.58.0	8.59.3
auto-changelog	2.5.0	2.5.1
dotenv	17.4.1	17.4.2
eslint	10.2.0	10.3.0
jest	30.3.0	30.4.2
prettier	3.8.1	3.8.3
prisma	7.6.0	7.8.0
typescript	6.0.2	6.0.3

Updates @clack/prompts from 1.2.0 to 1.3.0

Release notes

Sourced from @​clack/prompts's releases.

@​clack/prompts@​1.3.0

Minor Changes

• ea5702e: fix: add engines field expressing node >=20.12 requirement
• 814ab9a: Add new multiline prompt for multi-line text input.

Patch Changes

• 5b897a7: Fix mixed type-only and runtime exports from @​clack/core.
• Updated dependencies [78fd3ae]
• Updated dependencies [ea5702e]
• Updated dependencies [814ab9a]
  • @​clack/core@​1.3.0

Changelog

Sourced from @​clack/prompts's changelog.

1.3.0

Minor Changes

• ea5702e: fix: add engines field expressing node >=20.12 requirement
• 814ab9a: Add new multiline prompt for multi-line text input.

Patch Changes

• 5b897a7: Fix mixed type-only and runtime exports from @​clack/core.
• Updated dependencies [78fd3ae]
• Updated dependencies [ea5702e]
• Updated dependencies [814ab9a]
  • @​clack/core@​1.3.0

Commits

• 05bfd43 [ci] release (#501)
• 5b897a7 fix: split type-only and runtime exports (#518)
• cd7e5cd deps: update pnpm and align node types version (#515)
• 970268b chore(deps): update deps in core and prompts packages (#512)
• ea5702e chore: add engines field to prompts and core (#514)
• ec432f9 docs: correct Progress example in README (#505)
• 663ae0d docs(@​clack/prompts): document missing prompt APIs in README (#503)
• 814ab9a feat(@​clack/core,@​clack/prompts): Multiline text input (#240)
• See full diff in compare view

Updates @prisma/client from 7.6.0 to 7.8.0

Release notes

Sourced from @​prisma/client's releases.

7.8.0

Today, we are excited to share the 7.8.0 stable release 🎉

🌟 Star this repo for notifications about new releases, bug fixes & features — or follow us on X!

Highlights

ORM

Features

Prisma Client

• Added a queryPlanCacheMaxSize option to the PrismaClient constructor for fine-grained control over the query plan cache. Pass 0 to disable the cache entirely, or omit it to use the default cache size. A larger value can improve performance in applications that execute many unique queries, while a smaller one can reduce memory usage. (#29503)

Bug Fixes

Prisma Client

• Fixed an equality filter panic and incorrect ::jsonb cast when filtering on PostgreSQL JSON list columns. Queries using where: { jsonListField: { equals: [...] } }prisma/prisma-engines#5804
• Fixed case-insensitive JSON field filtering (mode: insensitive), allowing where: { jsonField: { equals: "...", mode: "insensitive" } }prisma/prisma-engines#5806
• Fixed incorrect parameterization of enum values that have a custom database name set via @map. (#29422)
• Fixed a database parameter limit check (P2029), which could incorrectly reject or miss over-limit queries. (#29422)
• Fixed a regression that caused missing SQL Server VARCHARprisma/prisma-engines#5801

Schema Engine

• Fixed a misleading error message in prisma migrate diff that referenced the --shadow-database-url CLI flag, which was removed in Prisma 7. (#29455)
• Fixed prisma migrate dev (and shadow database migration replay in general) failing with CREATE INDEX CONCURRENTLY cannot run inside a transaction blockprisma/prisma-engines#5799
• Fixed PostgreSQL introspection silently dropping sequence defaults when the database returns the schema-qualified form pg_catalog.nextval('sequence_name'::regclass) instead of the bare nextval(...). Columns backed by sequences now correctly appear as @default(autoincrement())prisma/prisma-engines#5802

Driver Adapters

• @​prisma/adapter-d1: Savepoint operations (createSavepoint, rollbackToSavepoint, releaseSavepoint) now silently no-op with debug logging instead of executing SQL statements, consistent with how the D1 adapter already treats top-level transactions. (#29499)

Open roles at Prisma

Interested in joining Prisma? We're growing and have several exciting opportunities across the company for developers who are passionate about building with Prisma. Explore our open positions on our Careers page and find the role that's right for you.

Enterprise support

Thousands of teams use Prisma and many of them already tap into our Enterprise & Agency Support Program for hands-on help with everything from schema integrations and performance tuning to security and compliance.

With this program you also get priority issue triage and bug fixes, expert scalability advice, and custom training so that your Prisma-powered apps stay rock-solid at any scale. Learn more or join: https://prisma.io/enterprise.

7.7.0

Today, we are excited to share the 7.7.0 stable release 🎉

🌟 Star this repo for notifications about new releases, bug fixes & features — or follow us on X!

... (truncated)

Commits

• 62b44ac chore(deps): update engines to 7.8.0-5.e96eae70cf4ade6a15d7e6064d5b0b4f7d835d...
• 4104864 feat: add a query plan cache size parameter (#29503)
• 723ba7b chore(deps): update engines to 7.8.0-4.8c287008617e9b12f313df99e2c821ae61ea9a...
• cadbafe chore(deps): update engines to 7.8.0-2.3187e3937290320ba3c7dbd5aa94af67942b44...
• f705533 chore(deps): update engines to 7.8.0-1.7b80cc56c645c6e03c7541474e6a7c8d91b70d...
• fbab4e8 Fix 29271 (#29303)
• 6a3c3cc chore: extract parameterization to client-engine-runtime (#29422)
• See full diff in compare view

Updates graphql from 16.13.2 to 16.14.0

Release notes

Sourced from graphql's releases.

v16.14.0 (2026-05-03)

New Feature 🚀

• #4317 Allow configuration of the ofType introspection depth (@​Nols1000)
• #4521 Add experimental support for directives on directive definitions (@​BoD)

Bug Fix 🐞

• #4652 Fix valueFromAST variable own-property checks (@​abishekgiri)

Docs 📝

• #4706 Fix mistake in GraphQLError guidance (@​benjie)

Committers: 4

• Abishek Kumar Giri(@​abishekgiri)
• Benjie(@​benjie)
• Benoit 'BoD' Lubek(@​BoD)
• Nils-Börge Margotti(@​Nols1000)

Commits

• 57b385b chore(release): v16.14.0 (#4720)
• 85700ed Fix mistake in GraphQLError guidance (#4706)
• 8eb6383 Allow configuration of the ofType introspection depth (#4317)
• ad9c519 Add support for directives on directive definitions (#4521)
• db2987c fix(valueFromAST): restore variable own-property checks (#4652)
• See full diff in compare view

Updates undici from 8.0.2 to 8.2.0

Release notes

Sourced from undici's releases.

v8.2.0

What's Changed

• chore: use native addAbortListener by @​trivikr in nodejs/undici#5021
• fix: fix the logic for the UNDICI_NO_WASM_SIMD environment variable by @​ShenHongFei in nodejs/undici#5026
• fix(http2): send body for non-expectsPayload methods with content by @​mcollina in nodejs/undici#5030
• fix(fetch): correct 'navigator' typo to 'navigate' in fetchFinale by @​deepview-autofix in nodejs/undici#5044
• fix(webidl): correct signed integer bounds in ConvertToInt by @​deepview-autofix in nodejs/undici#5038
• fix(fetch): use || for CRLF check in multipart formdata-parser by @​deepview-autofix in nodejs/undici#5049
• fix(websocket): correct argument order in WebSocketStream UTF-8 failure by @​deepview-autofix in nodejs/undici#5050
• fix(pool): propagate useH2c to connector when connections > 1 by @​SAY-5 in nodejs/undici#5031
• fix(cache): return immutable staleAt in milliseconds by @​deepview-autofix in nodejs/undici#5048
• fix(socks5-proxy-agent): use per-origin pools to prevent cross-origin routing by @​deepview-autofix in nodejs/undici#5041
• fix(cache): evict oldest entries first in SqliteCacheStore prune by @​deepview-autofix in nodejs/undici#5039
• fix(socks5): correctly expand IPv6 '::' compressed notation by @​deepview-autofix in nodejs/undici#5046
• Remove unused func and unnecessary shim by @​tsctx in nodejs/undici#5053
• fix: reject malformed content-length request headers by @​trivikr in nodejs/undici#5060
• fix(request): reject NaN highWaterMark during option validation by @​trivikr in nodejs/undici#5062
• docs: fix broken links in docsify sidebar by @​maruthang in nodejs/undici#5065
• fix(fetch): prefer filename* over filename in multipart form-data by @​maruthang in nodejs/undici#5068
• fix(http2): reject websocket upgrades on non-200 responses by @​trivikr in nodejs/undici#5072
• feat: support username-only proxy authentication in ProxyAgent by @​rossilor95 in nodejs/undici#4935
• build(deps): bump uWebSockets.js from v20.58.0 to v20.64.0 in /benchmarks by @​dependabot[bot] in nodejs/undici#5083
• fix(client-h2): stop double-decrementing kOpenStreams on stream timeout by @​SAY-5 in nodejs/undici#5076
• fix(http2): reject upgrade streams closed before response headers by @​trivikr in nodejs/undici#5069
• fix(http2): allow GET and HEAD request bodies over h2 by @​trivikr in nodejs/undici#5058
• fix(cache): include query in cache key when opts.path is undefined by @​maruthang in nodejs/undici#5081
• fix: avoid premature cleanup of dispatcher in Agent by @​bienzaaron in nodejs/undici#5034
• fix(http2): record ping failures on the socket by @​trivikr in nodejs/undici#5075
• add undici security policy by @​mcollina in nodejs/undici#5056
• fix(mock): make filterCalls AND operator actually intersect results by @​deepview-autofix in nodejs/undici#5045
• fix(socks5): enforce authenticated state before CONNECT by @​trivikr in nodejs/undici#5097
• fix(cache): skip expired sqlite vary entries during lookup by @​trivikr in nodejs/undici#5095
• fix: enforce maxCachedSessions in TLS session cache by @​trivikr in nodejs/undici#5102
• fix(socks5): encode embedded IPv4 tails in IPv6 literals correctly by @​trivikr in nodejs/undici#5099
• fix: handle invalid HTTP/2 connection headers (#4356) by @​mcollina in nodejs/undici#5101
• fix(interceptor): add throwOnMaxRedirect to types and interceptor opts by @​maruthang in nodejs/undici#5066
• fix(websocket): avoid double-closing canceled stream readers by @​colinaaa in nodejs/undici#5105
• fix(cache): persist vary when updating sqlite cache entries by @​trivikr in nodejs/undici#5109
• refactor(h1): track HEAD keep-alive override as boolean by @​trivikr in nodejs/undici#5110
• client: cache llhttp wasm buffer view by @​trivikr in nodejs/undici#5115
• deps: update llhttp to 9.3.1 by @​mcollina in nodejs/undici#5113
• fix(http2): preserve accepted streams after GOAWAY by @​trivikr in nodejs/undici#5090
• fix: reuse parser WeakRef for timeout callbacks by @​trivikr in nodejs/undici#5125
• fix: stop buffering data after SOCKS5 connect by @​trivikr in nodejs/undici#5118
• perf(http2): avoid response header reserialization by @​trivikr in nodejs/undici#5085
• fix(cache): enforce sqlite maxCount after insert by @​trivikr in nodejs/undici#5112
• perf: reduce EventSourceStream parser allocations by @​trivikr in nodejs/undici#5032
• types(dispatcher): use OutgoingHttpHeaders for request headers by @​maruthang in nodejs/undici#5067
• cleanup: delete redundant .gitkeep file by @​shivarm in nodejs/undici#5133
• fix(http2): respect peer max concurrent streams by @​trivikr in nodejs/undici#5135

... (truncated)

Commits

• bf684f7 Bumped v8.2.0 (#5152)
• 0ca054a fix: replace stale pool clients under connection limit (#5145)
• 7af90e9 perf: avoid redundant scans in BalancedPool dispatcher selection (#5146)
• abb9d06 fix: validate H2CClient maxConcurrentStreams option (#5143)
• 72a7591 perf(http2): avoid cloning headers when removing status (#5127)
• 96fd5e9 fix(cache): allow streamed entries at maxEntrySize limit (#5129)
• f41e53f perf: use byteLength property for binary body chunks (#5126)
• bec4961 chore(deps): add lockfile (#5139)
• 86f1242 perf(http2): reduce writeH2 per-request callback allocations (#5138)
• cad3f70 perf(client): parse h1 content-length statelessly (#5124)
• Additional commits viewable in compare view

Updates xstate from 5.30.0 to 5.31.1

Release notes

Sourced from xstate's releases.

xstate@5.31.1

Patch Changes

• #5525 f79ea13 Thanks @​davidkpiano! - Fixed route transition guards so named guards registered with setup({ guards }) are resolved for route.guard.

  const machine = setup({
    guards: {
      isReady: ({ context }) => context.ready
    }
  }).createMachine({
    states: {
      review: {
        id: 'review',
        route: {
          guard: 'isReady'
        }
      }
    }
  });

xstate@5.31.0

Minor Changes

• #5429 9d9c1fe Thanks @​davidkpiano! - Add mapState(snapshot, mapper) to map a snapshot to values based on active state(s).

  import { mapState } from 'xstate';
  const results = mapState(snapshot, {
  states: {
  loading: { map: () => 'Loading...' },
  success: { map: (snap) => snap.context.data },
  error: { map: (snap) => snap.context.error.message }
  }
  });
  console.log(results);
  // E.g. if snapshot.value === 'loading', then:
  // [
  //   { stateNode: { key: 'loading' }, result: 'Loading...' }
  // ]

• #5430 e543599 Thanks @​davidkpiano! - Add maxIterations option to configure the maximum number of microsteps allowed before throwing an infinite loop error. The default is Infinity (no limit) to avoid breaking existing machines.

  You can configure it when creating a machine:

... (truncated)

Commits

• fb3876f Version Packages (#5526)
• f79ea13 [core] Fix route string guard resolution (#5525)
• 37a967a Version Packages (#5522)
• c4bb9e3 Fix missing build step in publish workflow (#5521)
• 09f1ad7 Version Packages (#5519)
• 3a881f5 [@​xstate/store] Fix synchronous updates through nested atom dependencies and ...
• 811c71c Tighten up publishing security (#5517)
• eedb353 Version Packages (#5514)
• d15455b [@​xstate/store] Fix synchronous updates to atom dependencies during a subscri...
• 4e70096 Version Packages (#5511)
• Additional commits viewable in compare view

Updates yaml from 2.8.3 to 2.9.0

Release notes

Sourced from yaml's releases.

v2.9.0

The changes here are really only patches, but I'm releasing this as a minor version to note a small change to the documentation of parseDocument() and parseAllDocuments(): I've removed the claim that they'll "never throw".

It remains the case that practically all non-malicious inputs will be handled without emitting an error, but there is a decent chance that code paths remain where e.g. a RangeError due to call stack exhaustion can be triggered by malicious inputs. Up to now, I've considered these as security vulnerabilities, and in fact it's the only category of error for which yaml CVEs have been issued so far.

Starting from this release, I'll be considering such errors as bugs, but not vulnerabilities. I do welcome people and/or LLMs looking for them, but please report them as normal issues rather than suspected security vulnerabilities. This also applies to previously undiscovered bugs in earlier releases.

• fix: Avoid calling Array.prototype.push.apply() with large source array
• fix(lexer): Avoid recursive calls that may exhaust the call stack

v2.8.4

• Disable alias resolution with maxAliasCount:0 (#677)
• Handle invalid unicode escapes (e1a1a77)
• Apply minFractionDigits only to decimal strings (#676)

Commits

• ddb21b0 2.9.0
• 167365b docs: Clarify that not all errors can be avoided
• 6eca2a7 fix: Avoid calling Array.prototype.push.apply() with large source array
• 0543cd5 fix(lexer): Avoid recursive calls that may exhaust the call stack
• ccdf743 2.8.4
• f625789 fix: Disable alias resolution with maxAliasCount:0 (#677)
• e1a1a77 fix: Handle invalid unicode escapes
• a163ea0 style: Satify Prettier
• b2a5a6c fix: Apply minFractionDigits only to decimal strings (#676)
• 93c951b chore: Bump JSR version to v2.8.3 (#673)
• Additional commits viewable in compare view

Updates zod from 4.3.6 to 4.4.3

Release notes

Sourced from zod's releases.

v4.4.3

Commits:

• 4c2fa95ce3f3390fbc522324e406b4e9e89b88f9 docs: use Zernio primary wordmark for gold sponsor logo
• 2aeec83eb135e3a83756e973ef44845fc5a455d2 docs: prune lapsed gold sponsors and rebalance logo sizing
• 7391be88ac1ee5cd02057f5ccc012a1f5df4efd0 docs: prune lapsed silver/bronze sponsors and add active ones
• 2c703322a21b4e2b12f33f49ea8430c451a68b4f docs: normalize bronze sponsor logos to github avatar pattern
• 9195250cab0e7950efe39c3926d6c203b4b0a170 docs: remove Mintlify from bronze sponsors (churned)
• b8dffe9e62f17e6571e6249d05cc5102b54d94e4 docs: remove Numeric and Speakeasy (2+ missed monthly cycles)
• 1cab69383fcdeae2a366d5e2a2fc4d8fc765d168 fix(v4): restore catch handling for absent object keys (#5937) (#5939)
• c2be4f819064eed62c7c350a2d399b5faecd15f8 fix(v4): generalize optin/fallback to transform; restore preprocess on absent keys (#5941)
• f3c9ec03ba7a28ae72d25cc295f38674bee0f559 4.4.3
• 1fb56a5c18c27102dbc92260a4007c7732a0ccca docs: document release procedure in AGENTS.md

v4.4.2

Commits:

• 0c62df0ea19fd05abdf90473e9eef7eea530fab2 Clean up docs navigation and stale labels (#5901)
• 20cc794895cc8604fe0c87d83a5d1c3f89fad0ac chore: add security policy and refresh tooling deps
• 6fbe07b0177efdd1bf1c0b05160e70d7a0702337 fix(docs): heading anchor links now include the hash so it doesnt scoll all the way up, follows navbar logic (#5791)
• 4bbed1b1c73eca4ce9e59b1189ed236aa6c8b5bd Tighten discriminated union option typing
• bbac3e567e7fccfaaf7cdc97f1ce30c295e2c908 Update PR guidance for agents
• cf0dc942a32805c292fff59ade20a7ace980735a Merge remote-tracking branch 'origin/main' into fix-discriminated-union-key-constraint
• 292c894a5fd2aa42e527900b83d8d7a3009a709c docs: add Zernio gold sponsor
• 1fc9f311c28dcf80d0bb5a36b177086cbc3d8eca docs: document codec inversion
• 1373c85da9aeff704a9762d27bc58699618aefb7 docs: remove AI disclosure guidance
• e20d02b473c08e3a4e557bc610b1b5fac079b649 chore: ignore triage notes
• e58ea4d91b1dfe8194b73508203213cbc7e9c936 docs: test Zod Mini tab code heights
• 905761a5d127e8d5dd2ebb3bc88c75cb0b8149ff docs: document preprocess input type narrowing
• bf64bac850d4dee2b7dde7e64909d5d796d32043 chore: tighten test guidance in AGENTS.md
• 8ec4e73f4c4693b6361ad591be40fb41eb8a9f95 chore: update play.ts scratch
• 02c2baf7d0d615872fa4528a8020603b71211702 Make z.preprocess defer optionality to inner schema (#5929)
• 88015df8e25c44fb5385eb3ef28935119cd5edea fix(docs): drop deprecated baseUrl from tsconfig
• c59d4474e3b4cad1b323462186cf607178ce8267 4.4.2

v4.4.1

Commits:

• 481f7be4238c83ed58183f921b2646f340a91c6a ci: gate release publishing on full test workflow
• 95ccab423aec720b2523c3a64cdc7e3204537cc7 test(v3): restore optional undefined expectations
• cede2c63739a5823d6aa5093d291e9a111da943d fix(v4): reject tuple holes before required defaults (#5900)
• edd0bf0f5ada4a8dc581c259407d7bbad0a71ea7 release: 4.4.1
• 180d83d1dbe6a59260710cc8637a3dea2281ee56 docs: remove Jazz featured sponsor

v4.4.0

4.4.0

This is a minor release with a wide set of correctness and soundness fixes. Some fixes intentionally make Zod stricter, so code that depended on previously accepted invalid or ambiguous inputs may need small updates.

Potentially breaking bug fixes

... (truncated)

Commits

• 1fb56a5 docs: document release procedure in AGENTS.md
• f3c9ec0 4.4.3
• c2be4f8 fix(v4): generalize optin/fallback to transform; restore preprocess on absent...
• 1cab693 fix(v4): restore catch handling for absent object keys (#5937) (#5939)
• b8dffe9 docs: remove Numeric and Speakeasy (2+ missed monthly cycles)
• 9195250 docs: remove Mintlify from bronze sponsors (churned)
• 2c70332 docs: normalize bronze sponsor logos to github avatar pattern
• 7391be8 docs: prune lapsed silver/bronze sponsors and add active ones
• 2aeec83 docs: prune lapsed gold sponsors and rebalance logo sizing
• 4c2fa95 docs: use Zernio primary wordmark for gold sponsor logo
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for zod since your current version.

Updates @cloudflare/workers-types from 4.20260405.1 to 4.20260511.1

Commits

• See full diff in compare view

Updates @types/node from 25.5.2 to 25.7.0

Commits

• See full diff in compare view

Updates @typescript-eslint/eslint-plugin from 8.58.0 to 8.59.3

Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.59.3

8.59.3 (2026-05-11)

This was a version bump only, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

v8.59.2

8.59.2 (2026-05-04)

🩹 Fixes

• eslint-plugin: [no-unsafe-type-assertion] handle crash on recursive template literal types (#12150)
• eslint-plugin: [no-deprecated] object destructuring values should be treated as declarations (#12292)
• rule-tester: add TypeScript as a peer dependency (#12288)

❤️ Thank You

• Dariusz Czajkowski
• Dima Barabash
• Kirk Waiblinger @​kirkwaiblinger

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

v8.59.1

8.59.1 (2026-04-27)

🩹 Fixes

• eslint-plugin: [no-unnecessary-type-assertion] fix crash "TypeError: checker.getTypeArguments is not a function" (#12246)
• eslint-plugin: [no-unnecessary-type-assertion] preserve index signatures in undefined unions (#12257)
• eslint-plugin: [no-unnecessary-type-assertion] preserve phantom type arguments in generic inference (#12269)
• eslint-plugin: [no-unnecessary-type-assertion] avoid false positive in logical assignment assertions (#12278)
• eslint-plugin: [no-unnecessary-type-arguments] handle instantiation expressions (#12220)
• eslint-plugin: [no-unnecessary-condition] treat void as nullish in no-unnecessary-condition (#12241)

❤️ Thank You

• anasm266 @​anasm266
• Anshika Jain @​Anshikakalpana
• Ulrich Stark
• yugo innami @​nami8824

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

... (truncated)

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.59.3 (2026-05-11)

This was a version bump only for eslint-plugin to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

8.59.2 (2026-05-04)

🩹 Fixes

• eslint-plugin: [no-deprecated] object destructuring values should be treated as declarations (#12292)
• eslint-plugin: [no-unsafe-type-assertion] handle crash on recursive template literal types (#12150)

❤️ Thank You

• Dima Barabash
• Kirk Waiblinger @​kirkwaiblinger

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

8.59.1 (2026-04-27)

🩹 Fixes

• eslint-plugin: [no-unnecessary-condition] treat void as nullish in no-unnecessary-condition (#12241)
• eslint-plugin: [no-unnecessary-type-arguments] handle instantiation expressions (#12220)
• eslint-plugin: [no-unnecessary-type-assertion] avoid false positive in logical assignment assertions (#12278)
• eslint-plugin: [no-unnecessary-type-assertion] preserve phantom type arguments in generic inference (#12269)
• eslint-plugin: [no-unnecessary-type-assertion] preserve index signatures in undefined unions (#12257)
• eslint-plugin: [no-unnecessary-type-assertion] fix crash "TypeError: checker.getTypeArguments is not a function" (#12246)

❤️ Thank You

• anasm266 @​anasm266
• Anshika Jain @​Anshikakalpana
• Ulrich Stark
• yugo innami @​nami8824

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

8.59.0 (2026-04-20)

🚀 Features

... (truncated)

Commits

• 48e13c0 chore(release): publish 8.59.3
• e26dc80 docs: update stale links to latest (#12313)
• 44f9625 chore(deps): update vitest monorepo to v4.1.5 (#12307)
• 2ec35f1 chore(release): publish 8.59.2
• ec3ef25 test: make no-useless-empty-export tests fully static (#12260)
• 60d0a51 chore(eslint-plugin): switch auto-generated test cases to hand-written in no-...
• 5c53da2 fix(eslint-plugin): [no-deprecated] object destructuring values should be tre...
• 80c28a1 fix(eslint-plugin): [no-unsafe-type-assertion] handle crash on recursive temp...
• b7b2670 test: make no-this-alias tests fully static (#12258)
• 5245793 chore(release): publish 8.59.1
• Additional commits viewable in compare view

Updates @typescript-eslint/parser from 8.58.0 to 8.59.3

Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.59.3

8.59.3 (2026-05-11)

This was a version bump only, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

v8.59.2

8.59.2 (2026-05-04)

🩹 Fixes

• eslint-plugin: [no-unsafe-type-assertion] handle crash on recursive template literal types (#12150)
• eslint-plugin: [no-deprecated] object destructuring values should be treated as declarations (#12292)
• rule-tester: add TypeScript as a peer dependency (#12288)

❤️ Thank You

• Dariusz Czajkowski
• Dima Barabash
• Kirk Waiblinger @​kirkwaiblinger

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

v8.59.1

8.59.1 (2026-04-27)

🩹 Fixes

• eslint-plugin: [no-unnecessary-type-assertion] fix crash "TypeError: checker.getTypeArguments is not a function" (#12246)
• eslint-plugin: [no-unnecessary-type-assertion] preserve index signatures in undefined unions (#12257)
• eslint-plugin: [no-unnecessary-type-assertion] preserve phantom type arguments in generic inference (#12269)
• eslint-plugin: [no-unnecessary-type-assertion] avoid false positive in logical assignment assertions (#12278)
• eslint-plugin: [no-unnecessary-type-arguments] handle instantiation expressions (#12220)
• eslint-plugin: [no-unnecessary-condition] treat void as nullish in no-unnecessary-condition (#12241)

❤️ Thank You

• anasm266 @​anasm266
• Anshika Jain @​Anshikakalpana
• Ulrich Stark
• yugo innami @​nami8824

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

... (truncated)

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.59.3 (2026-05-11)

This was a version bump only for parser to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

8.59.2 (2026-05-04)

This was a version bump only for parser to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

8.59.1 (2026-04-27)

This was a version bump only for parser to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

8.59.0 (2026-04-20)

This was a version bump only for parser to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

8.58.2 (2026-04-13)

🩹 Fixes

• remove tsbuildinfo cache file from published packages (#12187)

❤️ Thank You

• Abhijeet Singh @​cseas

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

8.58.1 (2026-04-08)

This was a version bump only for parser to align it with other projects, there were no code changes.

... (truncated)

Commits

• 48e13c0 chore(release): publish 8.59.3
• 44f9625 chore(deps): update vitest monorepo to v4.1.5 (#12307)
• 2ec35f1 chore(release): publish 8.59.2
• 5245793 chore(release): publish 8.59.1
• ea9ae4f chore(release): publish 8.59.0
• 90c2803 chore(release): publish 8.58.2
• be6b49a fix: remove tsbuildinfo cache file from published packages (#12187)
• 5311ed3 chore(release): publish 8.58.1
• See full diff in compare view

Updates auto-changelog from 2.5.0 to 2.5.1

Changelog

Sourced from auto-changelog's changelog.

v2.5.1

• [Fix] corrected base and target references in devops compare url [#297](https://github.com/CookPete/auto-changelog/issues/297)
• Only apps should have lockfiles

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[github-actions]

Test Coverage Report

Overall Coverage: 96.59%

Metric	Percentage
Statements	95.96%
Branches	87.3%
Functions	94.96%
Lines	96.59%

View detailed coverage report