chore(deps): update all non-major dependencies by renovate[bot] · Pull Request #179 · TanStack/intent

renovate · 2026-06-22T00:34:53Z

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Type	Update
@codspeed/vitest-plugin (source)	`^5.5.0` → `^5.7.1`	devDependencies	minor
@tanstack/react-table (source)	`9.0.0-beta.16` → `9.0.0-beta.21`	dependencies	patch
CodSpeedHQ/action	`v4.17.5` → `v4.18.1`	action	minor
knip (source)	`^6.16.1` → `^6.23.0`	devDependencies	minor
nx (source)	`^22.7.5` → `^22.7.6`	devDependencies	patch
prettier (source)	`^3.8.4` → `^3.9.1`	devDependencies	minor
react (source)	`19.2.0` → `19.2.7`	dependencies	patch
react-dom (source)	`19.2.0` → `19.2.7`	dependencies	patch
semver	`^7.8.4` → `^7.8.5`	dependencies	patch
sherif	`^1.11.1` → `^1.12.0`	devDependencies	minor
tsdown (source)	`^0.22.2` → `^0.22.3`	devDependencies	patch
undici-types (source)	`8.4.1` → `8.5.0`	pnpm-workspace.overrides	minor
verdaccio (source)	`^6.7.2` → `^6.7.4`	devDependencies	patch
vitest (source)	`4.1.8` → `4.1.9`	devDependencies	patch
vitest-evals (source)	`^0.13.1` → `^0.14.0`	devDependencies	minor
zizmorcore/zizmor-action	`v0.5.6` → `v0.5.7`	action	patch

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

CodSpeedHQ/codspeed-node (@codspeed/vitest-plugin)

`v5.7.1`

Compare Source

What's Changed

fix: emit perf maps when not parsing the full inlining logs from V8 by @GuillaumeLagrange in #85

Full Changelog: CodSpeedHQ/codspeed-node@v5.7.0...v5.7.1

`v5.7.0`

Compare Source

Highlights

Dump full inlining information for higher optimization tiers in walltime so we can show more functions on the profiler. To test it out, set CODSPEED_WALLTIME_PROFILER=samply env variable in the codspeed action.
Added support for tinybench v5 and v6 in @codspeed/tinybench-plugin

What's Changed

Add necessary flags to dump optimized inlining info and fix walltime marker placement by @GuillaumeLagrange in #83

Full Changelog: CodSpeedHQ/codspeed-node@v5.6.0...v5.7.0

`v5.6.0`

Compare Source

What's Changed

feat: add MacOS support by @not-matthias in #81

Full Changelog: CodSpeedHQ/codspeed-node@v5.5.0...v5.6.0

TanStack/table (@tanstack/react-table)

`v9.0.0-beta.21`

Compare Source

Version 9.0.0-beta.21 - 6/26/26, 2:03 PM

Changes

Feat

improve getGroupingValue (#6351) (197fd75) by Kevin Van Cott

Packages

@tanstack/table-core@9.0.0-beta.21
@tanstack/table-devtools@9.0.0-beta.21
@tanstack/angular-table@9.0.0-beta.21
@tanstack/angular-table-devtools@9.0.0-beta.21
@tanstack/lit-table@9.0.0-beta.21
@tanstack/preact-table@9.0.0-beta.21
@tanstack/preact-table-devtools@9.0.0-beta.21
@tanstack/react-table@9.0.0-beta.21
@tanstack/react-table-devtools@9.0.0-beta.21
@tanstack/solid-table@9.0.0-beta.21
@tanstack/solid-table-devtools@9.0.0-beta.21
@tanstack/svelte-table@9.0.0-beta.21
@tanstack/vue-table@9.0.0-beta.21
@tanstack/vue-table-devtools@9.0.0-beta.21

`v9.0.0-beta.20`

Compare Source

Version 9.0.0-beta.20 - 6/26/26, 1:41 PM

Changes

Feat

initColumnInstanceData (#6349) (0a89a97) by Kevin Van Cott

Chore

update perf.md (2ee9de4) by Kevin Van Cott
package upgrades (#6346) (64b3642) by Kevin Van Cott

Packages

@tanstack/table-core@9.0.0-beta.20
@tanstack/table-devtools@9.0.0-beta.20
@tanstack/angular-table@9.0.0-beta.20
@tanstack/angular-table-devtools@9.0.0-beta.20
@tanstack/preact-table-devtools@9.0.0-beta.20
@tanstack/react-table@9.0.0-beta.20
@tanstack/react-table-devtools@9.0.0-beta.20
@tanstack/solid-table-devtools@9.0.0-beta.20
@tanstack/vue-table@9.0.0-beta.20
@tanstack/vue-table-devtools@9.0.0-beta.20
@tanstack/lit-table@9.0.0-beta.20
@tanstack/preact-table@9.0.0-beta.20
@tanstack/solid-table@9.0.0-beta.20
@tanstack/svelte-table@9.0.0-beta.20

`v9.0.0-beta.19`

Compare Source

Version 9.0.0-beta.19 - 6/25/26, 4:08 AM

Changes

Fix

improve row selection api performance (#6344) (f077ae7) by Kevin Van Cott

Docs

fix link (51298bb) by Kevin Van Cott
helpers guide, fix some example tsc errors (a7aae8b) by Kevin Van Cott
improve composable table guides (a471632) by Kevin Van Cott
rearrange docs sidebar some (4e8a35d) by Kevin Van Cott

Examples

standardize stress tests and remove re-render buttons (d1c84eb) by Kevin Van Cott

Packages

@tanstack/table-core@9.0.0-beta.19
@tanstack/angular-table@9.0.0-beta.19
@tanstack/lit-table@9.0.0-beta.19
@tanstack/table-devtools@9.0.0-beta.19
@tanstack/angular-table-devtools@9.0.0-beta.19
@tanstack/preact-table@9.0.0-beta.19
@tanstack/preact-table-devtools@9.0.0-beta.19
@tanstack/react-table@9.0.0-beta.19
@tanstack/react-table-devtools@9.0.0-beta.19
@tanstack/solid-table@9.0.0-beta.19
@tanstack/solid-table-devtools@9.0.0-beta.19
@tanstack/svelte-table@9.0.0-beta.19
@tanstack/vue-table@9.0.0-beta.19
@tanstack/vue-table-devtools@9.0.0-beta.19

`v9.0.0-beta.18`

Compare Source

Version 9.0.0-beta.18 - 6/24/26, 1:07 PM

Changes

Fix

expanding and paginated row model memo (#6342) (de74706) by Kevin Van Cott

Chore

update pnpm to 11.9.0 (#6341) (5c58673) by @Sheraff

Docs

update feature setup sections (17b84c3) by Kevin Van Cott

Packages

@tanstack/table-core@9.0.0-beta.18
@tanstack/table-devtools@9.0.0-beta.18
@tanstack/angular-table@9.0.0-beta.18
@tanstack/angular-table-devtools@9.0.0-beta.18
@tanstack/lit-table@9.0.0-beta.18
@tanstack/preact-table@9.0.0-beta.18
@tanstack/preact-table-devtools@9.0.0-beta.18
@tanstack/react-table@9.0.0-beta.18
@tanstack/react-table-devtools@9.0.0-beta.18
@tanstack/solid-table@9.0.0-beta.18
@tanstack/solid-table-devtools@9.0.0-beta.18
@tanstack/svelte-table@9.0.0-beta.18
@tanstack/vue-table@9.0.0-beta.18
@tanstack/vue-table-devtools@9.0.0-beta.18

`v9.0.0-beta.17`

Compare Source

Version 9.0.0-beta.17 - 6/20/26, 8:27 PM

Changes

Fix

add checks to dictionaries for ssr (#6338) (f237e20) by Kevin Van Cott

Chore

modify some typescript script generation (dde8248) by Kevin Van Cott

Packages

@tanstack/table-core@9.0.0-beta.17
@tanstack/table-devtools@9.0.0-beta.17
@tanstack/angular-table@9.0.0-beta.17
@tanstack/angular-table-devtools@9.0.0-beta.17
@tanstack/lit-table@9.0.0-beta.17
@tanstack/preact-table@9.0.0-beta.17
@tanstack/preact-table-devtools@9.0.0-beta.17
@tanstack/react-table@9.0.0-beta.17
@tanstack/react-table-devtools@9.0.0-beta.17
@tanstack/solid-table@9.0.0-beta.17
@tanstack/solid-table-devtools@9.0.0-beta.17
@tanstack/svelte-table@9.0.0-beta.17
@tanstack/vue-table@9.0.0-beta.17
@tanstack/vue-table-devtools@9.0.0-beta.17

CodSpeedHQ/action (CodSpeedHQ/action)

`v4.18.1`

Compare Source

Release Notes

🚀 Features

Bump go-runner to 1.2.1 by @adriencaccia in #421

Install codspeed-runner 4.18.1

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/CodSpeedHQ/codspeed/releases/download/v4.18.1/codspeed-runner-installer.sh | sh

Download codspeed-runner 4.18.1

File	Platform	Checksum
codspeed-runner-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
codspeed-runner-aarch64-unknown-linux-musl.tar.gz	ARM64 MUSL Linux	checksum
codspeed-runner-x86_64-unknown-linux-musl.tar.gz	x64 MUSL Linux	checksum

Full Runner Changelog: https://github.com/CodSpeedHQ/codspeed/blob/main/CHANGELOG.md

`v4.18.0`

Compare Source

Release Notes

🚀 Features

Bump valgrind-codspeed to 3.26.0-0codspeed4
Bump samply by @GuillaumeLagrange in #415
Set env var to have node dump inlining information by @GuillaumeLagrange
Change isolation logic to include samply and non root fallback by @GuillaumeLagrange
Add experimental --cycle-estimation flag by @not-matthias in #412
Make samply-codspeed a submodule rather than git rev with cargo by @GuillaumeLagrange in #416

🐛 Bug Fixes

Honor locally-installed valgrind on non-apt systems by @not-matthias in #414

Install codspeed-runner 4.18.0

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/CodSpeedHQ/codspeed/releases/download/v4.18.0/codspeed-runner-installer.sh | sh

Download codspeed-runner 4.18.0

File	Platform	Checksum
codspeed-runner-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
codspeed-runner-aarch64-unknown-linux-musl.tar.gz	ARM64 MUSL Linux	checksum
codspeed-runner-x86_64-unknown-linux-musl.tar.gz	x64 MUSL Linux	checksum

Full Runner Changelog: https://github.com/CodSpeedHQ/codspeed/blob/main/CHANGELOG.md

`v4.17.6`

Compare Source

Release Notes

🚀 Features

feat: skip hash check error when installing pre-release by @GuillaumeLagrange in #215
Show memtrack capability status in setup status by @not-matthias
Run memtrack sudo-less via file capabilities by @not-matthias
Use extra events when using samply on linux by @GuillaumeLagrange in #404
Update PerfEvent to also support samply format by @GuillaumeLagrange
Use isolation for with samply by @GuillaumeLagrange
Make eh_frame_hdr optional in unwind data (V4) by @not-matthias

🐛 Bug Fixes

Keep rolling buffer off during executor setup by @not-matthias in #411
Gate memory executor behind Linux target by @not-matthias
Enable tracking when running without IPC by @not-matthias
Tolerate RLIMIT_MEMLOCK EPERM on modern kernels by @not-matthias
Install libc6-dbg during valgrind setup by @not-matthias in #394
Skip rustup-wrapped proxy in trace-children by @not-matthias in #405
Retry streamed uploads on transient failures by @not-matthias in #399
Extract unwind data for binaries without eh_frame_hdr by @not-matthias

💼 Other

Drop OpenSSL, move TLS stack to rustls (#406) by @art049 in #406

🏗️ Refactor

Split executor privilege granting into grant_privileges by @not-matthias

📚 Documentation

Add unwind data version changelog by @not-matthias in #393

⚙️ Internals

chore: bump runner version to 4.17.6 by @github-actions[bot] in #216
Grant memtrack file capabilities before memory tests by @not-matthias in #407
Bump samply to support additional events by @GuillaumeLagrange
Add helper script to use local versions of samply and framehop easily by @GuillaumeLagrange

Install codspeed-runner 4.17.6

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/CodSpeedHQ/codspeed/releases/download/v4.17.6/codspeed-runner-installer.sh | sh

Download codspeed-runner 4.17.6

File	Platform	Checksum
codspeed-runner-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
codspeed-runner-aarch64-unknown-linux-musl.tar.gz	ARM64 MUSL Linux	checksum
codspeed-runner-x86_64-unknown-linux-musl.tar.gz	x64 MUSL Linux	checksum

Full Runner Changelog: https://github.com/CodSpeedHQ/codspeed/blob/main/CHANGELOG.md

Full Changelog: CodSpeedHQ/action@v4.17.5...v4.17.6

webpro-nl/knip (knip)

`v6.23.0`: Release 6.23.0

Compare Source

feat: add customCss to Starlight plugin (#1828) (f85d96f) - thanks @trueberryless!
fix: enable vite and vitest plugins when vite-plus is found (#1830) (62e9753) - thanks @ghostdevv!
feat: add support for @astrojs/markdoc (#1829) (94e2863) - thanks @trueberryless!
Support nub (resolve #1831) (8a6050e)
Don't report optimizeDeps and dedupe deps as unlisted (resolve #1832) (849b5ac)

`v6.22.0`: Release 6.22.0

Compare Source

Support XO v1+ (#1819) (1dffe36) - thanks @patrik-csak!
feat: detect execaNode scripts in execa visitor (#1824) (5095ae1) - thanks @gwagjiug!
Skip optional peerDeps referenced only via a host (resolve #1823) (7759a98)
docs: update npmjs.com links to npmx.dev (#1826) (11fe8bd) - thanks @serhalp!
docs: fix semi-broken link to DEVELOPMENT.md in CONTRIBUTING.md (#1827) (a5302b2) - thanks @serhalp!
feat: add support for Lunaria (#1825) (3e1b821) - thanks @trueberryless!
Fix lint issues (76c92e2)

`v6.21.0`: Release 6.21.0

Compare Source

Detect Vite config dependencies (resolve #1721) (8754c43)
fix: Update timerifyMethods to include resolveFromAST (#1814) (3c8deac) - thanks @gwagjiug!
Fix crash on null root export in package.json (resolve #1815) (9b8af2b)
Fix unresolved subpath imports with a colon prefix (resolve #1816) (f89db41)
Detect Next.js entry files in subdirectory (resolve #1817) (f32c6ea)

`v6.20.0`: Release 6.20.0

Compare Source

Add raw transfer opt-out (resolve #1813) (6f08c68)
Fix cached plugin config cycles (resolve #1811) (2bc2f24)

`v6.19.0`: Release 6.19.0

Compare Source

feat: support new optional sveltekit config pattern via vite config (#1810) (3fee8bf) - thanks @fubits1!
Optimize hot path string scanning (e30cfe7)
Update astro snapshot (71e71a7)

`v6.18.0`: Release 6.18.0

Compare Source

Update dependencies (pin oxc-resolver) (7dda4ec)
Resolve tsconfig paths for non-TS importers independent of oxc ownership (3b71565)
Format (64865f8)
Fix false positive for Vitest mocks (#1802) (ec93e20) - thanks @remcohaszing!
Mark npx-run binaries optional unless --no-install (resolve #1803) (203c31e)
Ignore pnpm [WARN] lines in ecosystem snapshots (392835a)
Update slonik snapshot (62d802b)
Update Jest entry patterns for Jest 30 (#1808) (d2caedd) - thanks @gwagjiug!
Report stale workspaces configuration keys as configuration hints (#1807) (9083c16) - thanks @WooWan!

`v6.17.2`: Release 6.17.2

Compare Source

Fix up jest plugin (63dbd65)
Detect coverage provider from bare vitest --coverage flag (#1800) (dc11d9f) - thanks @WooWan!
Don't disable configuration hints in workspace-scoped runs (#1791) (8ce1ec8) - thanks @WooWan!
Detect react-email v6 packages from non-numeric version ranges (resolve #1798) (27a1cae)
Discover workspaces included after a negated pattern (resolve #1797) (630e152)

`v6.17.1`: Release 6.17.1

Compare Source

Remove ignoreBinaries w/ tar (b13d0ca)
Wrap up docs/refs (29f3e46)
Update dependencies (7b2f345)
Fix up vscode-languageclient imports (820c233)

`v6.17.0`: Release 6.17.0

Compare Source

chore(mcp): add package metadata links (#1783) (e3d93b9) - thanks @sh962214-hub!
fix(capacitor): detect iOS platform with Swift Package Manager (#1787) (e6cc533) - thanks @jthrilly!
Support ignoreIssues per workspace (resolve #1782) (15a329a)
Add commitlint.config.mts (resolve #1784) (fa8eb6d)
Treat scoped and tilde SCSS imports as packages (resolve #1786) (98aa962)
Add followCursor setting for Imports/Exports views (resolve #1788) (67a0be8)
Flag undeclared sibling imports in published workspaces (resolve #1792) (aeabff7)
Fix type-check errors in vscode-knip (12f266e)
Note Markdown formatting with pnpm remark (bdffeec)
Bump some doc-related dependencies (3334193)
Update vscode-knip tool descriptions (be34178)
Overhaul docs (55e3f3b)
Improve mcp guidance (67483f0)
Fix repeated --fix-type arg (9bb0512)
Resolve module paths from selected tsconfig (resolve #1794) (1c2f398)
Update sanity snapshot (4ebce9c)
Add tar to globally ignored binaries (resolve #1796) (8c028e5)

nrwl/nx (nx)

`v22.7.6`

Compare Source

22.7.6 (2026-06-23)

🩹 Fixes

misc: bump happy-dom, tmp, and form-data to patched versions (#36013)

❤️ Thank You

Jack Hsu @jaysoo

prettier/prettier (prettier)

facebook/react (react)

`v19.2.7`: 19.2.7 (June 1st, 2026)

Compare Source

React Server Components

Fixed missing FormData entries in Server Actions which regressed in 19.2.6
(#36566 by @unstubbable)

`v19.2.6`: 19.2.6 (May 6th, 2026)

Compare Source

React Server Components

Type hardening and performance improvements
(by @eps1lon and @unstubbable)

`v19.2.5`: 19.2.5 (April 8th, 2026)

Compare Source

React Server Components

Add more cycle protections (#36236 by @eps1lon and @unstubbable)

`v19.2.4`: 19.2.4 (January 26th, 2026)

Compare Source

React Server Components

Add more DoS mitigations to Server Actions, and harden Server Components (#35632 by @gnoff, @lubieowoce, @sebmarkbage, @unstubbable)

`v19.2.3`: 19.2.3 (December 11th, 2025)

Compare Source

React Server Components

Add extra loop protection to React Server Functions (@sebmarkbage #35351)

`v19.2.2`: 19.2.2 (December 11th, 2025)

Compare Source

React Server Components

Move react-server-dom-webpack/*.unbundled to private react-server-dom-unbundled (@eps1lon #35290)
Patch Promise cycles and toString on Server Functions (@sebmarkbage, @unstubbable #35289)

`v19.2.1`: 19.2.1 (December 3rd, 2025)

Compare Source

React Server Components

Bring React Server Component fixes to Server Actions (@sebmarkbage #35277)

npm/node-semver (semver)

`v7.8.5`

Compare Source

Bug Fixes

9c8692a #878 include prereleases in tilde range lower bound with includePrerelease (#878) (@chatman-media)

QuiiBz/sherif (sherif)

`v1.12.0`

Compare Source

What's Changed

chore(ci): setup trusted publishing by @QuiiBz in #154
feat: support devEngines for root-package-manager-field rule by @MasterLambaster in #156

New Contributors

@MasterLambaster made their first contribution in #156

Full Changelog: QuiiBz/sherif@v1...v1.12.0

rolldown/tsdown (tsdown)

`v0.22.3`

Compare Source

🚨 Breaking Changes

Drop node 24.0 - 24.10 support - by @sxzz (a2eac)

🐞 Bug Fixes

Inline CI detection - by @sxzz (bfc64)

🏎 Performance

css: Skip renderChunk when no CSS has been collected - by @ShMcK in #967 (9f051)

View changes on GitHub

nodejs/undici (undici-types)

`v8.5.0`

Compare Source

⚠️ Security Release

This release line addresses 8 security advisories. Most are fixed in
v8.5.0; the SOCKS5 pool-reuse issue was fixed earlier in v8.2.0.

Action required: Upgrade to undici 8.5.0 or later.
npm install undici@^8.5.0

Summary

Advisory	CVE	Severity (CVSS)	Fixed in	Fix commit
GHSA-vxpw-j846-p89q	CVE-2026-12151	High (7.5)	8.5.0	`32dbf0b3`
GHSA-38rv-x7px-6hhq	CVE-2026-9675	High (7.5)	8.5.0	`b4c287b3`
GHSA-vmh5-mc38-953g	CVE-2026-9697	High (7.4)	8.5.0	`42d49559`
GHSA-hm92-r4w5-c3mj	CVE-2026-6734	High (7.5)	8.2.0	`a516f870`
GHSA-pr7r-676h-xcf6	CVE-2026-9678	Moderate (5.9)	8.5.0	`cb105d7c`
GHSA-p88m-4jfj-68fv	CVE-2026-9679	Moderate (5.9)	8.5.0	`5655ea43`
GHSA-g8m3-5g58-fq7m	CVE-2026-11525	Low (3.7)	8.5.0	`5655ea43`
GHSA-35p6-xmwp-9g52	CVE-2026-6733	Low (3.7)	8.5.0	`6ea54ef8`

High severity

WebSocket DoS via fragment count bypass — CVE-2026-12151

GHSA-vxpw-j846-p89q · CWE-400, CWE-770
Fix: 32dbf0b3 websocket: limit the number of fragments in a message (also c5ed7875 handle empty fragments and stream limits)

A malicious WebSocket server can stream a large number of small or empty
continuation frames. Undici enforced a limit on cumulat

✂ Note

PR body was truncated to here.

Configuration

📅 Schedule: (UTC)

Branch creation
- Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)
Automerge
- At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

coderabbitai · 2026-06-22T00:35:05Z

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

@coderabbitai resume to resume automatic reviews.
@coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

▶️ Resume reviews
🔍 Trigger review

📝 Walkthrough

Walkthrough

Routine dependency and tooling version bumps across the monorepo: GitHub Actions pins for CodSpeed and zizmor are updated, pnpm is upgraded to 11.8.0, vitest to 4.1.9, and several package dependencies (semver, tsdown, verdaccio, sherif, undici-types, react, react-dom, @tanstack/react-table) are bumped to newer versions.

Changes

Dependency and Tooling Version Bumps

Layer / File(s)	Summary
GitHub Actions pinned version bumps `.github/workflows/benchmarks.yml`, `.github/workflows/zizmor.yml`	`CodSpeedHQ/action` bumped from v4.17.5 to v4.17.6; `zizmorcore/zizmor-action` bumped from v0.5.6 to v0.5.7.
Root package.json and workspace toolchain bumps `package.json`, `pnpm-workspace.yaml`	pnpm bumped from 11.7.0 to 11.8.0 in `packageManager` and `engines`; `sherif` bumped to `^1.12.0`, `vitest` to `4.1.9`; `undici-types` workspace override updated to `8.5.0`.
Package and benchmark dependency bumps `packages/intent/package.json`, `benchmarks/intent/package.json`	`semver` bumped to `^7.8.5`, `tsdown` to `^0.22.3`, `verdaccio` to `^6.7.4`; `@codspeed/vitest-plugin` bumped to `^5.6.0`, `vitest` to `4.1.9`.
Eval fixture dependency bumps `evals/intent-discovery/fixtures/router-basic/package.json`, `evals/intent-discovery/fixtures/start-basic/package.json`, `evals/intent-discovery/fixtures/table-v9-basic/package.json`	`react` and `react-dom` bumped from `19.2.0` to `19.2.7` in all three fixtures; `@tanstack/react-table` bumped from `9.0.0-beta.16` to `9.0.0-beta.17` in `table-v9-basic`.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Possibly related issues

TanStack/intent#132: The main issue tracking dependency updates that are applied directly in this PR, covering all the same version bumps for toolchain and packages.

Possibly related PRs

TanStack/intent#164: Bumps the same CodSpeedHQ/action and zizmorcore/zizmor-action pinned revisions in the same workflow files.

Suggested reviewers

KevinVandy

Poem

🐇 A rabbit hops through the monorepo,
Sprinkling version bumps far and low,
pnpm, vitest, react so bright,
Semver, zizmor—all shiny and right!
Dependencies fresh, the lockfiles sing,
Hop hop hooray for each little thing! 🎉

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The PR body lists dependency updates but does not follow the required Changes/Checklist/Release Impact template.	Add the template sections with a brief change summary, checklist items, and release-impact selection; keep the dependency table as supporting detail.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title clearly and concisely describes the main purpose of the PR: updating non-major dependencies across the project.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

✨ Finishing Touches

📝 Generate docstrings

Create stacked PR
Commit on current branch

🧪 Generate unit tests (beta)

Create PR with unit tests
Commit unit tests in branch renovate/all-minor-patch

_{Comment @coderabbitai help to get the list of available commands.}

socket-security · 2026-06-22T00:35:57Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	react@19.2.0 ⏵ 19.2.7
	react-dom@19.2.0 ⏵ 19.2.7
	@tanstack/react-table@9.0.0-beta.16 ⏵ 9.0.0-beta.21				^-1

View full report

socket-security · 2026-06-22T00:35:59Z

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report

nx-cloud · 2026-06-24T00:20:38Z

View your CI Pipeline Execution ↗ for commit d0da768

Command	Status	Duration	Result
`nx affected --targets=test:eslint,test:sherif,t...`	✅ Succeeded	8s	View ↗
`nx run-many --targets=build --exclude=examples/**`	✅ Succeeded	2s	View ↗

☁️ Nx Cloud last updated this comment at 2026-06-24 12:53:02 UTC

pkg-pr-new · 2026-06-24T00:20:47Z

Open in StackBlitz

npm i https://pkg.pr.new/TanStack/intent/@tanstack/intent@179

commit: d0da768

renovate · 2026-06-24T16:17:33Z

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

any of the package files in this branch needs updating, or
the branch becomes conflicted, or
you click the rebase/retry checkbox if found above, or
you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: pnpm-lock.yaml

Scope: all 3 workspace projects
? Verifying lockfile against supply-chain policies (881 entries)...
Progress: resolved 1, reused 0, downloaded 0, added 0
Progress: resolved 13, reused 0, downloaded 0, added 0
Progress: resolved 17, reused 0, downloaded 0, added 0
Progress: resolved 18, reused 0, downloaded 0, added 0
Progress: resolved 19, reused 0, downloaded 0, added 0
Progress: resolved 21, reused 0, downloaded 0, added 0
Progress: resolved 22, reused 0, downloaded 0, added 0
[WARN] Request took 10122ms: https://registry.npmjs.org/@typescript-eslint%2Fscope-manager
[WARN] Request took 10898ms: https://registry.npmjs.org/@typescript-eslint%2Fparser
[WARN] Request took 14897ms: https://registry.npmjs.org/@types%2Fnode
Progress: resolved 23, reused 0, downloaded 0, added 0
[WARN] Request took 11261ms: https://registry.npmjs.org/@typescript-eslint%2Ftypescript-estree
[WARN] Request took 11903ms: https://registry.npmjs.org/@typescript-eslint%2Feslint-plugin
[WARN] Request took 16134ms: https://registry.npmjs.org/nx
Progress: resolved 24, reused 0, downloaded 0, added 0
[WARN] Request took 17000ms: https://registry.npmjs.org/typescript
Progress: resolved 26, reused 0, downloaded 0, added 0
Progress: resolved 117, reused 0, downloaded 0, added 0
Progress: resolved 231, reused 0, downloaded 0, added 0
Progress: resolved 274, reused 0, downloaded 0, added 0
Progress: resolved 280, reused 0, downloaded 0, added 0
Progress: resolved 292, reused 0, downloaded 0, added 0
Progress: resolved 370, reused 0, downloaded 4, added 0
Progress: resolved 498, reused 0, downloaded 4, added 0
[WARN] Request took 12208ms: https://registry.npmjs.org/@typescript-eslint%2Fvisitor-keys
[WARN] Request took 12471ms: https://registry.npmjs.org/@typescript-eslint%2Ftypes
Progress: resolved 510, reused 0, downloaded 4, added 0
[WARN] Request took 12647ms: https://registry.npmjs.org/@typescript-eslint%2Fscope-manager
Progress: resolved 523, reused 0, downloaded 4, added 0
[WARN] Request took 12549ms: https://registry.npmjs.org/nx
Progress: resolved 524, reused 0, downloaded 4, added 0
[WARN] Request took 14539ms: https://registry.npmjs.org/@typescript-eslint%2Fparser
[WARN] Request took 14552ms: https://registry.npmjs.org/@typescript-eslint%2Ftypescript-estree
Progress: resolved 525, reused 0, downloaded 4, added 0
[WARN] Request took 14992ms: https://registry.npmjs.org/@typescript-eslint%2Feslint-plugin
Progress: resolved 526, reused 0, downloaded 4, added 0
Progress: resolved 528, reused 0, downloaded 4, added 0
[WARN] Request took 10032ms: https://registry.npmjs.org/@typescript-eslint%2Feslint-plugin
Progress: resolved 559, reused 0, downloaded 4, added 0
Progress: resolved 690, reused 0, downloaded 4, added 0
Progress: resolved 692, reused 0, downloaded 4, added 0
[WARN] Request took 22349ms: https://registry.npmjs.org/vite
✓ Lockfile passes supply-chain policies (881 entries in 37.1s)
Progress: resolved 693, reused 0, downloaded 4, added 0
Progress: resolved 707, reused 0, downloaded 4, added 0
Progress: resolved 796, reused 0, downloaded 7, added 0
Progress: resolved 797, reused 0, downloaded 7, added 0
Progress: resolved 807, reused 0, downloaded 7, added 0
Progress: resolved 859, reused 0, downloaded 7, added 0
[ERR_PNPM_NO_MATURE_MATCHING_VERSION] 2 versions do not meet the minimumReleaseAge constraint:
  knip@6.23.0 was published at 2026-06-28T08:03:43.117Z, within the minimumReleaseAge cutoff (2026-06-27T08:40:39.557Z)
  prettier@3.9.1 was published at 2026-06-27T23:04:57.318Z, within the minimumReleaseAge cutoff (2026-06-27T08:40:39.557Z)

renovate Bot requested a review from a team as a code owner June 22, 2026 00:34

renovate Bot added the dependencies label Jun 22, 2026

renovate Bot force-pushed the renovate/all-minor-patch branch 7 times, most recently from 0bdbc1d to e1820a8 Compare June 24, 2026 00:20

renovate Bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from d0da768 to 9377778 Compare June 24, 2026 16:17

renovate Bot force-pushed the renovate/all-minor-patch branch 5 times, most recently from b7fcb31 to 61f2b13 Compare June 28, 2026 02:08

chore(deps): update all non-major dependencies

305675d

renovate Bot force-pushed the renovate/all-minor-patch branch from 61f2b13 to 305675d Compare June 28, 2026 08:41

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

chore(deps): update all non-major dependencies#179

chore(deps): update all non-major dependencies#179
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/all-minor-patch

renovate Bot commented Jun 22, 2026 •

edited

Loading

Uh oh!

coderabbitai Bot commented Jun 22, 2026 •

edited

Loading

Reviews paused

Walkthrough

Changes

Estimated code review effort

Possibly related issues

Possibly related PRs

Suggested reviewers

Poem

❌ Failed checks (1 warning)

Uh oh!

socket-security Bot commented Jun 22, 2026 •

edited

Loading

Uh oh!

socket-security Bot commented Jun 22, 2026 •

edited

Loading

Uh oh!

nx-cloud Bot commented Jun 24, 2026 •

edited

Loading

Uh oh!

pkg-pr-new Bot commented Jun 24, 2026 •

edited

Loading

Uh oh!

renovate Bot commented Jun 24, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Uh oh!

Uh oh!

Conversation

renovate Bot commented Jun 22, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

What's Changed

Highlights

What's Changed

What's Changed

Changes

Feat

Packages

Changes

Feat

Chore

Packages

Changes

Fix

Docs

Examples

Packages

Changes

Fix

Chore

Docs

Packages

Changes

Fix

Chore

Packages

Release Notes

🚀 Features

Install codspeed-runner 4.18.1

Install prebuilt binaries via shell script

Download codspeed-runner 4.18.1

Release Notes

🚀 Features

🐛 Bug Fixes

Install codspeed-runner 4.18.0

Install prebuilt binaries via shell script

Download codspeed-runner 4.18.0

Release Notes

🚀 Features

🐛 Bug Fixes

💼 Other

🏗️ Refactor

📚 Documentation

⚙️ Internals

Install codspeed-runner 4.17.6

Install prebuilt binaries via shell script

Download codspeed-runner 4.17.6

v6.23.0: Release 6.23.0

v6.22.0: Release 6.22.0

v6.21.0: Release 6.21.0

v6.20.0: Release 6.20.0

v6.19.0: Release 6.19.0

v6.18.0: Release 6.18.0

v6.17.2: Release 6.17.2

v6.17.1: Release 6.17.1

v6.17.0: Release 6.17.0

22.7.6 (2026-06-23)

🩹 Fixes

❤️ Thank You

v19.2.7: 19.2.7 (June 1st, 2026)

React Server Components

v19.2.6: 19.2.6 (May 6th, 2026)

React Server Components

v19.2.5: 19.2.5 (April 8th, 2026)

React Server Components

v19.2.4: 19.2.4 (January 26th, 2026)

React Server Components

v19.2.3: 19.2.3 (December 11th, 2025)

React Server Components

v19.2.2: 19.2.2 (December 11th, 2025)

React Server Components

v19.2.1: 19.2.1 (December 3rd, 2025)

React Server Components

Bug Fixes

What's Changed

renovate Bot commented Jun 22, 2026 •

edited

Loading

`v6.23.0`: Release 6.23.0

`v6.22.0`: Release 6.22.0

`v6.21.0`: Release 6.21.0

`v6.20.0`: Release 6.20.0

`v6.19.0`: Release 6.19.0

`v6.18.0`: Release 6.18.0

`v6.17.2`: Release 6.17.2

`v6.17.1`: Release 6.17.1

`v6.17.0`: Release 6.17.0

`v19.2.7`: 19.2.7 (June 1st, 2026)

`v19.2.6`: 19.2.6 (May 6th, 2026)

`v19.2.5`: 19.2.5 (April 8th, 2026)

`v19.2.4`: 19.2.4 (January 26th, 2026)

`v19.2.3`: 19.2.3 (December 11th, 2025)

`v19.2.2`: 19.2.2 (December 11th, 2025)

`v19.2.1`: 19.2.1 (December 3rd, 2025)

coderabbitai Bot commented Jun 22, 2026 •

edited

Loading

socket-security Bot commented Jun 22, 2026 •

edited

Loading

socket-security Bot commented Jun 22, 2026 •

edited

Loading

nx-cloud Bot commented Jun 24, 2026 •

edited

Loading

pkg-pr-new Bot commented Jun 24, 2026 •

edited

Loading

renovate Bot commented Jun 24, 2026 •

edited

Loading