Skip to content

fix(deps): bump the production-deps group with 9 updates#71

Merged
github-actions[bot] merged 2 commits into
mainfrom
dependabot/npm_and_yarn/production-deps-63e82f88b7
Jun 6, 2026
Merged

fix(deps): bump the production-deps group with 9 updates#71
github-actions[bot] merged 2 commits into
mainfrom
dependabot/npm_and_yarn/production-deps-63e82f88b7

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Jun 3, 2026

Bumps the production-deps group with 9 updates:

Package From To
@aws-sdk/client-s3 3.1053.0 3.1057.0
@nestjs/common 11.1.23 11.1.24
@nestjs/core 11.1.23 11.1.24
@nestjs/platform-express 11.1.23 11.1.24
ioredis 5.10.1 5.11.0
nestjs-cls 6.2.0 6.2.1
nodemailer 8.0.7 8.0.10
lucide-react 1.16.0 1.17.0
react-hook-form 7.76.0 7.77.0

Updates @aws-sdk/client-s3 from 3.1053.0 to 3.1057.0

Release notes

Sourced from @​aws-sdk/client-s3's releases.

v3.1057.0

3.1057.0(2026-05-29)

Bug Fixes
  • client-rds-data:
    • ArrayValue member element types are now nullable: booleanValues is (boolean | null)[], longValues and doubleValues are (number | null)[], stringValues is (string | null)[], and arrayValues is (ArrayValue | null)[]. This reflects that SQL array responses can contain NULL elements. Existing TypeScript code that reads elements as non-nullable values won't compile; migrate by changing the target type to nullable, using the nullish coalescing operator ?? to supply a default, or using .filter(v => v !== null). (43e8abc9)
Chores
  • codegen:
New Features
  • clients: update client endpoints as of 2026-05-29 (100e59e3)
  • client-codeguru-security: Adding new BDD representation of endpoint ruleset (b5e79600)
  • client-auto-scaling-plans: Adding new BDD representation of endpoint ruleset (be4de620)
  • client-connect-contact-lens: Adding new BDD representation of endpoint ruleset (5356eaf4)
  • client-connectcampaignsv2: Adding new BDD representation of endpoint ruleset (610e00f6)
  • client-cloudsearch: Adding new BDD representation of endpoint ruleset (954a5629)
  • client-account: Adding new BDD representation of endpoint ruleset (043ec31b)
  • client-directory-service-data: Adding new BDD representation of endpoint ruleset (a4c4696b)
  • client-bedrock: Automated Reasoning checks - Added two build workflows for policies. Iterative Refine Policy uses AI to update policy definitions based on test results and feedback. Resolve Policy Ambiguities consolidates ambiguous variables in Automated Reasoning policies, a common source of ambiguous validation. (dc971ce1)
  • client-lex-models-v2: Adding new BDD representation of endpoint ruleset (46879a2b)
  • client-application-insights: Adding new BDD representation of endpoint ruleset (8188d14a)
  • client-quicksight: Adds support for creating, updating, describing, listing, and deleting an OAuthClientApplication resource, a new quicksight resource that allows customers to store OAuth configurations to connect to their databases via 3 Legged OAuth. (62d39a81)
  • client-bedrock-agentcore-control: Reference your own AWS Secrets Manager secrets when configuring credential providers, giving you control over encryption, rotation, and access policies instead of using service-managed secrets. (ac8eac96)
  • client-codecatalyst: Adding new BDD representation of endpoint ruleset (5d0951a1)
  • client-grafana: Adding new BDD representation of endpoint ruleset (a0c1dbf4)
  • client-drs: Adding new BDD representation of endpoint ruleset (af7bbc33)
  • client-cloudsearch-domain: Adding new BDD representation of endpoint ruleset (84e5f9f0)
  • client-networkflowmonitor: Adding new BDD representation of endpoint ruleset (2571d33c)
  • client-mailmanager: Adding new BDD representation of endpoint ruleset (89075b5d)
  • client-route53resolver: Added BatchCreateFirewallRule, BatchUpdateFirewallRule, BatchDeleteFirewallRule, and ListFirewallRuleTypes APIs. Added FirewallRuleType support to Firewall Rule APIs. (a5c6d722)
  • client-pcs: Adding new BDD representation of endpoint ruleset (eec245d2)
  • client-inspector-scan: Adding new BDD representation of endpoint ruleset (f4eb5511)
  • client-sesv2: This release introduces support for Tenant Suppression Lists (3de2020c)
  • client-chime: Adding new BDD representation of endpoint ruleset (f8e2cde5)
  • client-proton: Adding new BDD representation of endpoint ruleset (937b25e0)
  • client-lex-runtime-v2: Adding new BDD representation of endpoint ruleset (2e4709c6)
  • client-ssm-guiconnect: Adding new BDD representation of endpoint ruleset (e5c019d3)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-s3's changelog.

3.1057.0 (2026-05-29)

Note: Version bump only for package @​aws-sdk/client-s3

3.1056.0 (2026-05-28)

Note: Version bump only for package @​aws-sdk/client-s3

3.1055.0 (2026-05-27)

Note: Version bump only for package @​aws-sdk/client-s3

3.1054.0 (2026-05-26)

Note: Version bump only for package @​aws-sdk/client-s3

Commits

Updates @nestjs/common from 11.1.23 to 11.1.24

Release notes

Sourced from @​nestjs/common's releases.

v11.1.24 (2026-05-25)

Bug fixes

Enhancements

Dependencies

Committers: 2

Commits

Updates @nestjs/core from 11.1.23 to 11.1.24

Release notes

Sourced from @​nestjs/core's releases.

v11.1.24 (2026-05-25)

Bug fixes

Enhancements

Dependencies

Committers: 2

Commits
  • d8a0ab8 chore(release): publish v11.1.24 release
  • 3ed595e fix(core): keep dependency parent registry internal
  • 1b8c8b0 fix(core): propagate dependency tree cache resets
  • 4c07009 fix(core): reset dependency tree cache on metadata changes
  • ff95b3f Merge pull request #16997 from hbinhng/feat/warn-late-use-websocket-adapter
  • 2dccece chore: update readmes
  • d956db4 feat(core): warn on late websocket adapter registration
  • See full diff in compare view

Updates @nestjs/platform-express from 11.1.23 to 11.1.24

Release notes

Sourced from @​nestjs/platform-express's releases.

v11.1.24 (2026-05-25)

Bug fixes

Enhancements

Dependencies

Committers: 2

Commits

Updates ioredis from 5.10.1 to 5.11.0

Release notes

Sourced from ioredis's releases.

v5.11.0

5.11.0 (2026-05-26)

Bug Fixes

Features

Changelog

Sourced from ioredis's changelog.

5.11.0 (2026-05-26)

Bug Fixes

Features

Commits

Updates nestjs-cls from 6.2.0 to 6.2.1

Release notes

Sourced from nestjs-cls's releases.

nestjs-cls@6.2.1

6.2.1 "nestjs-cls" (2026-05-25)

Bug Fixes

  • core: establish ALS root context at init to mitigate enterWith leak on Node < 24 (#577) (05b8fb0)
  • core: improve ClsPluginsHooksHost error message and document app.init() requirement (#578) (2a4e874)
Commits
  • a5ae454 chore: release packages [skip ci]
  • 2a4e874 fix(core): improve ClsPluginsHooksHost error message and document app.init() ...
  • 05b8fb0 fix(core): establish ALS root context at init to mitigate enterWith leak on N...
  • 9327408 chore: release packages [skip ci]
  • a2db84a fix(transactional-adapter-typeorm): support TypeORM 1.0.0 (#576)
  • f145c8e build(deps-dev): bump the graphql group across 1 directory with 3 updates (#523)
  • fe26f70 build(deps-dev): bump the nestjs group across 1 directory with 12 updates (#527)
  • 395b7bb build(deps-dev): bump the prisma group across 1 directory with 3 updates (#496)
  • da39867 build(deps): bump svgo from 3.3.2 to 3.3.3 (#503)
  • 6e75866 build(deps-dev): bump mercurius from 16.7.0 to 16.8.0 (#506)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for nestjs-cls since your current version.


Updates nodemailer from 8.0.7 to 8.0.10

Release notes

Sourced from nodemailer's releases.

v8.0.10

8.0.10 (2026-05-29)

Bug Fixes

  • fall back to lower-severity handler when custom logger lacks a level method (6d849df)

v8.0.9

8.0.9 (2026-05-26)

Bug Fixes

  • two pending security advisories (jsonTransport access bypass, List-* CRLF injection) (#1820) (5f69497)

v8.0.8

8.0.8 (2026-05-23)

Bug Fixes

  • enforce strict TLS for OAuth2 and Ethereal credential requests (#1818) (833d6e5)
  • four listener/stream leaks in SMTP transport, connection, pool (#1817) (850bb91)
Changelog

Sourced from nodemailer's changelog.

8.0.10 (2026-05-29)

Bug Fixes

  • fall back to lower-severity handler when custom logger lacks a level method (6d849df)

8.0.9 (2026-05-26)

Bug Fixes

  • two pending security advisories (jsonTransport access bypass, List-* CRLF injection) (#1820) (5f69497)

8.0.8 (2026-05-23)

Bug Fixes

  • enforce strict TLS for OAuth2 and Ethereal credential requests (#1818) (833d6e5)
  • four listener/stream leaks in SMTP transport, connection, pool (#1817) (850bb91)
Commits
  • 948ae3f chore(master): release 8.0.10 (#1823)
  • 9eedad9 docs: add SECURITY.md policy (#1824)
  • 6d849df fix: fall back to lower-severity handler when custom logger lacks a level method
  • 07303cb chore(master): release 8.0.9 (#1821)
  • 5f69497 fix: two pending security advisories (jsonTransport access bypass, List-* CRL...
  • 15138a8 chore(master): release 8.0.8 (#1819)
  • 850bb91 fix: four listener/stream leaks in SMTP transport, connection, pool (#1817)
  • 833d6e5 fix: enforce strict TLS for OAuth2 and Ethereal credential requests (#1818)
  • See full diff in compare view

Updates lucide-react from 1.16.0 to 1.17.0

Release notes

Sourced from lucide-react's releases.

Version 1.17.0

What's Changed

Full Changelog: lucide-icons/lucide@1.16.0...1.17.0

Commits

Updates react-hook-form from 7.76.0 to 7.77.0

Release notes

Sourced from react-hook-form's releases.

Version 7.77.0

🥡 feat: add resetDefaultValues API (#13427)

https://react-hook-form.com/docs/useform/resetdefaultvalues

const { resetDefaultValues } = useForm();
resetDefaultValues(currentValues);

🐚 harden get() against prototype-path traversal (proto / constructor / prototype) (#13479) 🐞 fix FieldArray errors overriding nested fields (#13476) 🐞 fix inconsistent reset({}) behavior requiring double-call to take effect (#13473) 🐞 fix: preserve values with shouldUnregister (#13464) 🐞 fix stale isDirty in subscribe payload after reset(..., { keepValues: true }) (#13461) 👝 save bundle size (#13468)

thanks to @​puneetdixit200 & @​dfedoryshchev

Version 7.76.1

🐞 fix: pass options parameter through setValues to enable validation (#13457) 🐞 fix(setValues): emit whole-form change without stale name/type (#13450) 🚗 perf(setValues): thread skipClone through setFieldValue (#13448) 🚗 perf(setValues): skip redundant per-field deep clones (#13445) Revert "🐞 fix: treat NaN as empty when valueAsNumber is true in validateField (#13388)"

thanks to @​philibea & @​maxkostow

Changelog

Sourced from react-hook-form's changelog.

[7.77.0] - 2026-05-31

Added

  • resetDefaultValues API

Fixed

  • Stale isDirty in subscribe payload after reset(..., { keepValues: true })
  • Preserve values with shouldUnregister
  • Inconsistent reset({}) behavior requiring double-call to take effect
  • FieldArray errors overriding nested fields

Security

  • Harden get() against prototype-path traversal (__proto__ / constructor / prototype)

Performance

  • Bundle size reduction

[7.76.1] - 2026-05-23

Fixed

  • Revert notify all matching field-array roots on nested setValue updates
  • Revert treat NaN as empty when valueAsNumber is true in validateField
  • setValues pass options parameter through to enable validation
  • setValues emit whole-form change without stale name/type

Performance

  • setValues skip redundant per-field deep clones
  • setValues thread skipClone through setFieldValue
Commits
  • 5b20741 7.77.0
  • f1a02d3 🧪 add regression coverage for createFormControl + useController remount defau...
  • ba88c3d 📚 docs: fix JSDoc for UseFormWatch (#13486)
  • 54198d9 🥡 feat: add resetDefaultValues API (#13427)
  • fe8276e 📚 docs: fix duplicate "de" in es-ES README image alt text (#13481)
  • 6aa81f9 🐚 harden get() against prototype-path traversal (__proto__ / `constructor...
  • 645478b 🐞 fix FieldArray errors overriding nested fields (#13476)
  • 889c752 🧪 add regression coverage for dynamic nested names with useController and wat...
  • 581321c 🐞 fix inconsistent reset({}) behavior requiring double-call to take effect (#...
  • f8eb2d7 🌭 upgrade deps (#13470)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
fix(deps): bump the production-deps group with 9 updates
9fdc718 
Bumps the production-deps group with 9 updates:

| Package | From | To |
| --- | --- | --- |
| [@aws-sdk/client-s3](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-s3) | `3.1053.0` | `3.1057.0` |
| [@nestjs/common](https://github.com/nestjs/nest/tree/HEAD/packages/common) | `11.1.23` | `11.1.24` |
| [@nestjs/core](https://github.com/nestjs/nest/tree/HEAD/packages/core) | `11.1.23` | `11.1.24` |
| [@nestjs/platform-express](https://github.com/nestjs/nest/tree/HEAD/packages/platform-express) | `11.1.23` | `11.1.24` |
| [ioredis](https://github.com/luin/ioredis) | `5.10.1` | `5.11.0` |
| [nestjs-cls](https://github.com/Papooch/nestjs-cls) | `6.2.0` | `6.2.1` |
| [nodemailer](https://github.com/nodemailer/nodemailer) | `8.0.7` | `8.0.10` |
| [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `1.16.0` | `1.17.0` |
| [react-hook-form](https://github.com/react-hook-form/react-hook-form) | `7.76.0` | `7.77.0` |


Updates `@aws-sdk/client-s3` from 3.1053.0 to 3.1057.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-s3/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.1057.0/clients/client-s3)

Updates `@nestjs/common` from 11.1.23 to 11.1.24
- [Release notes](https://github.com/nestjs/nest/releases)
- [Commits](https://github.com/nestjs/nest/commits/v11.1.24/packages/common)

Updates `@nestjs/core` from 11.1.23 to 11.1.24
- [Release notes](https://github.com/nestjs/nest/releases)
- [Commits](https://github.com/nestjs/nest/commits/v11.1.24/packages/core)

Updates `@nestjs/platform-express` from 11.1.23 to 11.1.24
- [Release notes](https://github.com/nestjs/nest/releases)
- [Commits](https://github.com/nestjs/nest/commits/v11.1.24/packages/platform-express)

Updates `ioredis` from 5.10.1 to 5.11.0
- [Release notes](https://github.com/luin/ioredis/releases)
- [Changelog](https://github.com/redis/ioredis/blob/main/CHANGELOG.md)
- [Commits](redis/ioredis@v5.10.1...v5.11.0)

Updates `nestjs-cls` from 6.2.0 to 6.2.1
- [Release notes](https://github.com/Papooch/nestjs-cls/releases)
- [Commits](https://github.com/Papooch/nestjs-cls/compare/nestjs-cls@6.2.0...nestjs-cls@6.2.1)

Updates `nodemailer` from 8.0.7 to 8.0.10
- [Release notes](https://github.com/nodemailer/nodemailer/releases)
- [Changelog](https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md)
- [Commits](nodemailer/nodemailer@v8.0.7...v8.0.10)

Updates `lucide-react` from 1.16.0 to 1.17.0
- [Release notes](https://github.com/lucide-icons/lucide/releases)
- [Commits](https://github.com/lucide-icons/lucide/commits/1.17.0/packages/lucide-react)

Updates `react-hook-form` from 7.76.0 to 7.77.0
- [Release notes](https://github.com/react-hook-form/react-hook-form/releases)
- [Changelog](https://github.com/react-hook-form/react-hook-form/blob/master/CHANGELOG.md)
- [Commits](react-hook-form/react-hook-form@v7.76.0...v7.77.0)

---
updated-dependencies:
- dependency-name: "@aws-sdk/client-s3"
  dependency-version: 3.1057.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-deps
- dependency-name: "@nestjs/common"
  dependency-version: 11.1.24
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-deps
- dependency-name: "@nestjs/core"
  dependency-version: 11.1.24
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-deps
- dependency-name: "@nestjs/platform-express"
  dependency-version: 11.1.24
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-deps
- dependency-name: ioredis
  dependency-version: 5.11.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-deps
- dependency-name: nestjs-cls
  dependency-version: 6.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-deps
- dependency-name: nodemailer
  dependency-version: 8.0.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-deps
- dependency-name: lucide-react
  dependency-version: 1.17.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-deps
- dependency-name: react-hook-form
  dependency-version: 7.77.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency npm npm dependency updates labels Jun 3, 2026
@github-actions github-actions Bot enabled auto-merge (squash) June 3, 2026 14:03
@github-actions github-actions Bot merged commit 68a99d4 into main Jun 6, 2026
14 checks passed
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/production-deps-63e82f88b7 branch June 6, 2026 13:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency npm npm dependency updates

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@kneshi