chore(deps): update all dependencies by renovate[bot] · Pull Request #303 · ProverCoderAI/docker-git

renovate · 2026-05-14T21:57:47Z

This PR contains the following updates:

Package	Change	Age	Confidence
@vitejs/plugin-react (source)	`^6.0.1` → `^6.0.2`
eslint (source)	`^10.3.0` → `^10.4.0`
jscpd	`^4.2.0` → `^4.2.1`

cc @skulidropek

Release Notes

vitejs/vite-plugin-react (@vitejs/plugin-react)

`v6.0.2`

Compare Source

Allow all options in reactCompilerPreset (#1189)

This is a type only change. Only compilationMode and target options were available for reactCompilerPreset.

eslint/eslint (eslint)

`v10.4.0`

Compare Source

kucherenko/jscpd (jscpd)

`v4.2.1`

Compare Source

Configuration

📅 Schedule: (UTC)

Branch creation
- At any time (no schedule defined)
Automerge
- At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

coderabbitai · 2026-05-14T21:58:21Z

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro Plus

Run ID: bf8c0882-9390-45ac-b57d-1eb1374d9ac2

📥 Commits

Reviewing files that changed from the base of the PR and between 32c049d and d7f1e23.

⛔ Files ignored due to path filters (1)

bun.lock is excluded by !**/*.lock

📒 Files selected for processing (4)

packages/api/package.json
packages/app/package.json
packages/docker-git-session-sync/package.json
packages/lib/package.json

📜 Recent review details

⏰ Context from checks skipped due to timeout of 900000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (9)

GitHub Check: E2E (Runtime volumes + SSH)
GitHub Check: E2E (Clone auto-open SSH)
GitHub Check: Lint
GitHub Check: E2E (Clone cache)
GitHub Check: E2E (Login context)
GitHub Check: E2E (OpenCode)
GitHub Check: Test
GitHub Check: E2E (Browser command)
GitHub Check: Final build (windows-latest)

🧰 Additional context used

📓 Path-based instructions (3)

**/*.{js,ts,jsx,tsx,py,java,go,rb,php,sh,bash,yml,yaml,json,env*,toml,cfg,config,dockerfile,dockerignore}

📄 CodeRabbit inference engine (Custom checks)

Fail if changed files expose credentials, tokens, private-keys, or PII in source, generated config, logs, or CI output

Files:

packages/api/package.json
packages/docker-git-session-sync/package.json
packages/lib/package.json
packages/app/package.json

**/{package*.json,requirements*.txt,setup.py,setup.cfg,Pipfile,Pipfile.lock,pyproject.toml,pom.xml,build.gradle,Gemfile,Gemfile.lock,go.mod,go.sum,composer.json,Cargo.toml,Cargo.lock}

📄 CodeRabbit inference engine (Custom checks)

Fail if dependency or package-manager changes materially increase supply-chain risk without justification

Files:

packages/api/package.json
packages/docker-git-session-sync/package.json
packages/lib/package.json
packages/app/package.json

**/*

⚙️ CodeRabbit configuration file

**/*: Ты строгий ревьюер SPEC DRIVEN DEVELOPMENT.

Перед выводами изучи README.md, другие *.md файлы, linked issues,
PR description, PR comments/discussion и релевантную кодовую базу.

Сверь изменения с исходным ТЗ/спекой и обсуждением. Флагай любой уход
от спеки, недокументированное изменение поведения, отсутствие тестов
для заявленного поведения и security-риск. Если спека не видна,
попроси автора добавить ее в issue или PR description.

Проверь решение с точки зрения формальной верификации: какие инварианты,
предусловия и постусловия можно доказать математически, а где доказуемость
слабая. Оцени решение с точки зрения теории игр: устойчивы ли стимулы,
нет ли выгодного обхода правил, и какое решение было бы сильнее.

Files:

packages/api/package.json
packages/docker-git-session-sync/package.json
packages/lib/package.json
packages/app/package.json

🔇 Additional comments (4)

packages/docker-git-session-sync/package.json (1)

42-42: Подтвердите совместимость обновления через сборку пакета.

Для этого изменения нужно приложить подтверждение, что bun run build в packages/docker-git-session-sync проходит после bump до @vitejs/plugin-react@^6.0.2, иначе совместимость Vite-интеграции не доказана.

As per coding guidelines: "Action: ensure the Vite build used by this package still succeeds (bun run build in this workspace...)"

packages/app/package.json (1)

105-105: Подтвердите обязательные прогоны после bump devDependencies.

На Line 105, Line 109 и Line 119 обновлены инструменты сборки/линтинга. Добавьте в PR (или в CI summary) подтверждение успешных прогонов: bun run lint, bun run lint:effect, bun run test, bun run typecheck для packages/app, плюс короткий smoke-check CLI (docker-git --help) после сборки, чтобы зафиксировать отсутствие регрессий в контракте runtime.

As per coding guidelines "PR 303 only bumps npm dev dependencies, so no intentional changes to docker-git’s runtime behavior are expected. After merging, do a quick smoke check of CLI-facing behavior..." and "Action: re-run bun run lint, bun run lint:effect, bun run test, and bun run typecheck...".

Also applies to: 109-109, 119-119

packages/api/package.json (1)

46-46: Подтвердите прогоном, что eslint@^10.4.0 не ломает lint-конфиг api.

Изменение на Line 46 выглядит ожидаемым, но нужно подтвердить отсутствия регрессий после обновления линтера через bun run lint в этом workspace.

As per coding guidelines "packages/api/package.json: Action: run this package’s bun run lint (it runs eslint .) to catch any rule/config incompatibilities introduced by the eslint bump; no other package settings changed."

packages/lib/package.json (1)

69-69: Нужна верификация toolchain после bump eslint и jscpd в lib.

Для изменений на Line 69 и Line 80 стоит подтвердить, что bun run lint, bun run lint:effect и bun test проходят без новых несовместимостей/ложных срабатываний.

As per coding guidelines "packages/lib/package.json: Action: run bun run lint and bun run lint:effect (uses eslint.effect-ts-check.config.mjs) and bun test to ensure lint/duplication checks still pass; exported surface (exports/types) is unchanged."

Also applies to: 80-80

📝 Walkthrough

Summary by CodeRabbit

Chores
- Обновлены инструменты разработки в нескольких пакетах: плагин сборки React обновлён до более новой мажорной версии патча.
- Обновлён линтер (eslint) до последней минорной версии в нескольких пакетах.
- Обновлён инструмент для поиска дублирующегося кода (jscpd) до новой патч-версии.

Walkthrough

Внесены патч/минорные обновления devDependencies: @vitejs/plugin-react → ^6.0.2 (app, docker-git-session-sync), eslint → ^10.4.0 (app, api, lib) и jscpd → ^4.2.1 (app, lib).

Changes

Обновление devDependencies (Vite, eslint, jscpd)

Layer / File(s)	Summary
Обновления в packages/app `packages/app/package.json`	`@vitejs/plugin-react` → `^6.0.2`, `eslint` → `^10.4.0`, `jscpd` → `^4.2.1`.
Обновление плагина Vite React в session-sync `packages/docker-git-session-sync/package.json`	`@vitejs/plugin-react` обновлён с `^6.0.1` до `^6.0.2`.
Обновление eslint в api и lib `packages/api/package.json`, `packages/lib/package.json`	`eslint` обновлён с `^10.3.0` до `^10.4.0`.
Обновление jscpd в lib `packages/lib/package.json`	`jscpd` обновлён с `^4.2.0` до `^4.2.1`.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Possibly related issues

Dependency Dashboard #99 — похожий bump @vitejs/plugin-react в package.json по репозиторию.
Dependency Dashboard dist-deps-prune#2 — пересечение по обновлениям eslint, jscpd, @vitejs/plugin-react.
Dependency Dashboard component-tagger#2 — схожие изменения devDependencies (@vitejs/plugin-react, eslint, jscpd).

Possibly related PRs

ProverCoderAI/docker-git#296 — пересекается по bump jscpd и общим dev-dependency обновлениям.

Suggested reviewers

skulidropek

Important

Pre-merge checks failed

Please resolve all errors before merging. Addressing warnings is optional.

❌ Failed checks (1 error, 1 warning)

Check name	Status	Explanation	Resolution
Requirements Alignment	❌ Error	PR claims to update 3 packages but adds 949 files. Contradicts spec of dependency-only updates.	Verify commit scope. If only deps intended, revert extra files. Create separate commits for infrastructure changes. Document all modifications in PR description.
Description check	⚠️ Warning	Описание PR значительно не соответствует требуемому шаблону репозитория; отсутствуют обязательные секции как 'Source TZ / Issues', 'Summary', 'Requirements Alignment' и 'Verification'.	Добавьте обязательные секции из шаблона: номер issue, краткое резюме, информацию о соответствии требованиям и процедуру верификации.

✅ Passed checks (5 passed)

Check name	Status	Explanation
Title check	✅ Passed	Заголовок PR четко и кратко описывает основную цель — обновление зависимостей, что полностью соответствует содержанию changeset.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Security Regression	✅ Passed	PR updates only devDependencies: `@vitejs/plugin-react` 6.0.1→6.0.2, eslint 10.3.0→10.4.0, jscpd 4.2.0→4.2.1. No code/config changes. No known vulnerabilities in updated versions.

✨ Finishing Touches

🧪 Generate unit tests (beta)

Create PR with unit tests
Commit unit tests in branch renovate/all

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

renovate Bot assigned skulidropek May 14, 2026

renovate Bot requested a review from skulidropek May 14, 2026 21:57

chore(deps): update all dependencies

d7f1e23

renovate Bot changed the title ~~chore(deps): update dependency @vitejs/plugin-react to ^6.0.2~~ chore(deps): update all dependencies May 15, 2026

renovate Bot force-pushed the renovate/all branch from 32c049d to d7f1e23 Compare May 15, 2026 16:42

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update all dependencies#303

chore(deps): update all dependencies#303
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/all

renovate Bot commented May 14, 2026 •

edited

Loading

Uh oh!

coderabbitai Bot commented May 14, 2026 •

edited

Loading

Summary by CodeRabbit

Walkthrough

Changes

Estimated code review effort

Possibly related issues

Possibly related PRs

Suggested reviewers

Pre-merge checks failed

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

renovate Bot commented May 14, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

v6.0.2

Allow all options in reactCompilerPreset (#​1189)

v10.4.0

v4.2.1

Configuration

Uh oh!

coderabbitai Bot commented May 14, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Summary by CodeRabbit

Walkthrough

Changes

Estimated code review effort

Possibly related issues

Possibly related PRs

Suggested reviewers

Pre-merge checks failed

❌ Failed checks (1 error, 1 warning)

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

renovate Bot commented May 14, 2026 •

edited

Loading

`v6.0.2`

Allow all options in reactCompilerPreset (#1189)

`v10.4.0`

`v4.2.1`

coderabbitai Bot commented May 14, 2026 •

edited

Loading