Skip to content

deps(deps): bump the minor-and-patch group with 5 updates#73

Merged
github-actions[bot] merged 1 commit into
mainfrom
dependabot/npm_and_yarn/main/minor-and-patch-dbc5c9e761
Jun 8, 2026
Merged

deps(deps): bump the minor-and-patch group with 5 updates#73
github-actions[bot] merged 1 commit into
mainfrom
dependabot/npm_and_yarn/main/minor-and-patch-dbc5c9e761

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 8, 2026

Copy link
Copy Markdown
Contributor

Bumps the minor-and-patch group with 5 updates:

Package From To
@types/react 19.2.16 19.2.17
npm-check-updates 22.2.1 22.2.3
@electron/fuses 2.1.1 2.1.2
@rollup/rollup-win32-x64-msvc 4.61.0 4.61.1
electron 42.3.1 42.3.3

Updates @types/react from 19.2.16 to 19.2.17

Commits

Updates npm-check-updates from 22.2.1 to 22.2.3

Release notes

Sourced from npm-check-updates's releases.

v22.2.3

What's Changed

Full Changelog: raineorshine/npm-check-updates@v22.2.2...v22.2.3

v22.2.2

What's Changed

Full Changelog: raineorshine/npm-check-updates@v22.2.1...v22.2.2

Commits
  • 5814d25 22.2.3
  • 9f71155 docs(cooldown): document package manager cooldown configs
  • f076b61 Fall back to pnpm global config for minimumReleaseAge cooldown (#1777)
  • a0c4e64 fix: handle registries missing 'time' metadata during version resolution (#1763)
  • 4a83d68 build(deps-dev): bump tsx from 4.22.3 to 4.22.4 (#1778)
  • b745800 build(deps-dev): bump eslint-import-resolver-typescript (#1779)
  • e1f401a build(deps-dev): bump unplugin-dts from 1.0.1 to 1.0.2 (#1780)
  • 298c6f9 build(deps-dev): bump js-yaml from 4.1.1 to 4.2.0 (#1781)
  • 51c1870 build(deps-dev): bump semver from 7.8.0 to 7.8.1 (#1760)
  • 290d62b 22.2.2
  • Additional commits viewable in compare view

Updates @electron/fuses from 2.1.1 to 2.1.2

Release notes

Sourced from @​electron/fuses's releases.

v2.1.2

2.1.2 (2026-06-05)

Bug Fixes

  • replace extract-zip with @​electron-internal/extract-zip (#120) (67d4eed)
Commits
  • 67d4eed fix: replace extract-zip with @​electron-internal/extract-zip (#120)
  • abf5e3d build(deps): bump electron/github-app-auth-action from 2.0.0 to 2.1.0 (#117)
  • 8c2ba18 build: run yarn dedupe (#116)
  • 1d86813 build(deps): bump dsanders11/project-actions from 2.0.0 to 2.0.1 (#114)
  • 32dc905 build(deps): bump actions/setup-node from 6.3.0 to 6.4.0 (#115)
  • bbf0792 build(deps): bump postcss from 8.5.8 to 8.5.10 (#113)
  • b1d2d50 build(deps): bump @​xmldom/xmldom from 0.8.12 to 0.8.13 (#112)
  • 364f920 build(deps): bump vite from 8.0.3 to 8.0.8 (#111)
  • 919b5e6 build(deps): bump @​xmldom/xmldom from 0.8.10 to 0.8.12 (#110)
  • 5864276 build: TS6 + oxc.rs (#106)
  • Additional commits viewable in compare view

Updates @rollup/rollup-win32-x64-msvc from 4.61.0 to 4.61.1

Release notes

Sourced from @​rollup/rollup-win32-x64-msvc's releases.

v4.61.1

4.61.1

2026-06-04

Bug Fixes

  • Avoid extraneous newlines when adding headers via plugins (#6403)
  • Fix a rare issue where starting Rollup would hang on Windows (#6404)

Pull Requests

Changelog

Sourced from @​rollup/rollup-win32-x64-msvc's changelog.

4.61.1

2026-06-04

Bug Fixes

  • Avoid extraneous newlines when adding headers via plugins (#6403)
  • Fix a rare issue where starting Rollup would hang on Windows (#6404)

Pull Requests

Commits
  • b77daf0 4.61.1
  • 91b6dc4 fix: set report.excludeNetwork=true before getReport() to avoid blocking PTR ...
  • f2a0449 Improve documentation for manualPureFunctions (#6402)
  • 7bdce6c Does not add an extra leading line feed for addons (#6403)
  • See full diff in compare view

Updates electron from 42.3.1 to 42.3.3

Release notes

Sourced from electron's releases.

electron v42.3.3

Release Notes for v42.3.3

Fixes

  • Fixed a crash when calling node:wasi functions with fast API calls enabled. #51867
  • Improved external resize band positioning and scaling for frameless windows on Windows. #51561 (Also in 41, 43)

Other Changes

  • Fixed silent data truncation in Buffer/TextEncoder APIs and a crash in fs.writeFileSync with non-ASCII strings on Apple Silicon. #51849 (Also in 41, 43)
  • Improved app startup performance — the main process now boots from an embedded Node.js startup snapshot, framework bundles and preload scripts are cached as compiled V8 bytecode, and sandboxed renderer startup data is pushed ahead of navigation instead of fetched via blocking IPC. Preload stack traces now show the correct file path and line number. #51831 (Also in 43)

electron v42.3.2

Release Notes for v42.3.2

  • Fixed a crash in simdutf when processing strings in the main process
Commits
  • 22bbbc9 build: disable LLVM unroll-add-parallel-reductions on Apple targets (#51849)
  • 061dd9c fix: dangling CFunction pointer in node:wasi fast API calls (#51867)
  • 806162b build: update PGO profiles (42-x-y) (#51859)
  • 05aa3d4 perf: backport startup performance improvements to 42-x-y (#51602, #51697, #5...
  • c9effa6 build: do not require the Electron builtins profile in instrumented builds (#...
  • 5bb7bbd build: reland "build: revert "build: re-enable ThinLTO on macOS" (42-x-y)" (#...
  • 99d7df6 build: calibrate PGO collection workloads and fix renderer profile loss (#51854)
  • 9c669aa fix: improve resize band positioning and scaling for frameless windows on Win...
  • 03ce64c build: revert "build: re-enable ThinLTO on macOS" (42-x-y) (#51844)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
deps(deps): bump the minor-and-patch group with 5 updates
6d9dc41 
Bumps the minor-and-patch group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.2.16` | `19.2.17` |
| [npm-check-updates](https://github.com/raineorshine/npm-check-updates) | `22.2.1` | `22.2.3` |
| [@electron/fuses](https://github.com/electron/fuses) | `2.1.1` | `2.1.2` |
| [@rollup/rollup-win32-x64-msvc](https://github.com/rollup/rollup) | `4.61.0` | `4.61.1` |
| [electron](https://github.com/electron/electron) | `42.3.1` | `42.3.3` |


Updates `@types/react` from 19.2.16 to 19.2.17
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react)

Updates `npm-check-updates` from 22.2.1 to 22.2.3
- [Release notes](https://github.com/raineorshine/npm-check-updates/releases)
- [Changelog](https://github.com/raineorshine/npm-check-updates/blob/main/CHANGELOG.md)
- [Commits](raineorshine/npm-check-updates@v22.2.1...v22.2.3)

Updates `@electron/fuses` from 2.1.1 to 2.1.2
- [Release notes](https://github.com/electron/fuses/releases)
- [Commits](electron/fuses@v2.1.1...v2.1.2)

Updates `@rollup/rollup-win32-x64-msvc` from 4.61.0 to 4.61.1
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](rollup/rollup@v4.61.0...v4.61.1)

Updates `electron` from 42.3.1 to 42.3.3
- [Release notes](https://github.com/electron/electron/releases)
- [Commits](electron/electron@v42.3.1...v42.3.3)

---
updated-dependencies:
- dependency-name: "@types/react"
  dependency-version: 19.2.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: npm-check-updates
  dependency-version: 22.2.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: "@electron/fuses"
  dependency-version: 2.1.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: "@rollup/rollup-win32-x64-msvc"
  dependency-version: 4.61.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: electron
  dependency-version: 42.3.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added Dependencies Pull requests that update or fix project dependencies. javascript Pull requests that update javascript code labels Jun 8, 2026
@github-actions github-actions Bot merged commit 6d5d210 into main Jun 8, 2026
1 check passed
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/main/minor-and-patch-dbc5c9e761 branch June 8, 2026 11:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@enVId-tech enVId-tech

Labels

Dependencies Pull requests that update or fix project dependencies. javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@enVId-tech