Bump the eslint group with 5 updates #1106

dependabot · 2025-12-09T09:19:16Z

Bumps the eslint group with 5 updates:

Package	From	To
@eslint/js	`9.38.0`	`9.39.1`
@eslint/json	`0.13.2`	`0.14.0`
@typescript-eslint/eslint-plugin	`8.47.0`	`8.49.0`
@typescript-eslint/parser	`8.47.0`	`8.49.0`
typescript	`5.8.3`	`5.9.3`

Updates @eslint/js from 9.38.0 to 9.39.1

Release notes

Sourced from @eslint/js's releases.

v9.39.1

Bug Fixes

650753e fix: Only pass node to JS lang visitor methods (#20283) (Nicholas C. Zakas)

Documentation

51b51f4 docs: add a section on when to use extends vs cascading (#20268) (Tanuj Kanti)

b44d426 docs: Update README (GitHub Actions Bot)

Chores

92db329 chore: update @eslint/js version to 9.39.1 (#20284) (Francesco Trotta)

c7ebefc chore: package.json update for @eslint/js release (Jenkins)

61778f6 chore: update eslint-config-eslint dependency @eslint/js to ^9.39.0 (#20275) (renovate[bot])

d9ca2fc ci: Add rangeStrategy to eslint group in renovate config (#20266) (唯然)

009e507 test: fix version tests for ESLint v10 (#20274) (Milos Djermanovic)

v9.39.0

Features

cc57d87 feat: update error loc to key in no-dupe-class-members (#20259) (Tanuj Kanti)

126552f feat: update error location in for-direction and no-dupe-args (#20258) (Tanuj Kanti)

167d097 feat: update complexity rule to highlight only static block header (#20245) (jaymarvelz)

Bug Fixes

15f5c7c fix: forward traversal step.args to visitors (#20253) (jaymarvelz)

5a1a534 fix: allow JSDoc comments in object-shorthand rule (#20167) (Nitin Kumar)

e86b813 fix: Use more types from @eslint/core (#20257) (Nicholas C. Zakas)

927272d fix: correct Scope typings (#20198) (jaymarvelz)

37f76d9 fix: use AST.Program type for Program node (#20244) (Francesco Trotta)

ae07f0b fix: unify timing report for concurrent linting (#20188) (jaymarvelz)

b165d47 fix: correct Rule typings (#20199) (jaymarvelz)

fb97cda fix: improve error message for missing fix function in suggestions (#20218) (jaymarvelz)

Documentation

d3e81e3 docs: Always recommend to include a files property (#20158) (Percy Ma)

0f0385f docs: use consistent naming recommendation (#20250) (Alex M. Spieslechner)

a3b1456 docs: Update README (GitHub Actions Bot)

cf5f2dd docs: fix correct tag of no-useless-constructor (#20255) (Tanuj Kanti)

10b995c docs: add TS options and examples for nofunc in no-use-before-define (#20249) (Tanuj Kanti)

2584187 docs: remove repetitive word in comment (#20242) (reddaisyy)

637216b docs: update CLI flags migration instructions (#20238) (jaymarvelz)

e7cda3b docs: Update README (GitHub Actions Bot)

7b9446f docs: handle empty flags sections on the feature flags page (#20222) (sethamus)

Chores

dfe3c1b chore: update @eslint/js version to 9.39.0 (#20270) (Francesco Trotta)

2375a6d chore: package.json update for @eslint/js release (Jenkins)

a1f4e52 chore: update @eslint dependencies (#20265) (Francesco Trotta)

c7d3229 chore: update dependency @eslint/core to ^0.17.0 (#20256) (renovate[bot])

27549bc chore: update fuzz testing to not error if code sample minimizer fails (#20252) (Milos Djermanovic)

a1370ee ci: bump actions/setup-node from 5 to 6 (#20230) (dependabot[bot])

9e7fad4 chore: add script to auto-generate eslint:recommended configuration (#20208) (唯然)

Commits

c7ebefc chore: package.json update for @eslint/js release
2375a6d chore: package.json update for @eslint/js release
9e7fad4 chore: add script to auto-generate eslint:recommended configuration (#20208)
See full diff in compare view

Updates @eslint/json from 0.13.2 to 0.14.0

Release notes

Sourced from @eslint/json's releases.

json: v0.14.0

0.14.0 (2025-11-04)

Features

add support for getLocFromIndex and getIndexFromLoc (#109) (3292cc1)

Bug Fixes

correct the return type of applyInlineConfig (#162) (95c6238)

handle CR in JSONSourceCode (#170) (0f6cf86)

Changelog

Sourced from @eslint/json's changelog.

0.14.0 (2025-11-04)

Features

add support for getLocFromIndex and getIndexFromLoc (#109) (3292cc1)

Bug Fixes

correct the return type of applyInlineConfig (#162) (95c6238)

handle CR in JSONSourceCode (#170) (0f6cf86)

Commits

882445a chore: release 0.14.0 🚀 (#158)
469b913 docs: add missing json5 language to the bug-report.yml (#180)
565dd3e docs: Update README sponsors
ecb5533 chore: update github artifact actions (major) (#175)
d6f9446 chore: update eslint (#174)
028efbd docs: Update README sponsors
014bc12 docs: Update README sponsors
3d43048 ci: fix stale.yml (#173)
2bbb22b chore: update actions/setup-node action to v6 (#171)
0f6cf86 fix: handle CR in JSONSourceCode (#170)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @eslint/json since your current version.

Updates @typescript-eslint/eslint-plugin from 8.47.0 to 8.49.0

Release notes

Sourced from @typescript-eslint/eslint-plugin's releases.

v8.49.0

8.49.0 (2025-12-08)

🚀 Features

eslint-plugin: use Intl.Segmenter instead of graphemer (#11804)

🩹 Fixes

deps: update dependency prettier to v3.7.2 (#11820)

❤️ Thank You

Justin McBride

Kirk Waiblinger @kirkwaiblinger

You can read about our versioning strategy and releases on our website.

v8.48.1

8.48.1 (2025-12-02)

⏪ Reverts

eslint-plugin: revert "[no-redundant-type-constituents] use assignability checking for redundancy checks (#10744)" (#11812)

🩹 Fixes

eslint-plugin: [consistent-type-exports] check value flag before resolving alias (#11769)

eslint-plugin: honor ignored base types on generic classes (#11767)

eslint-plugin: [restrict-template-expressions] check base types in allow list (#11764, #11759)

❤️ Thank You

Josh Goldberg

OleksandraKordonets

SangheeSon @Higangssh

tao

You can read about our versioning strategy and releases on our website.

v8.48.0

8.48.0 (2025-11-24)

🚀 Features

eslint-plugin: [no-redundant-type-constituents] use assignability checking for redundancy checks (#10744)

rule-tester: remove workaround for jest circular structure error (#11772)

typescript-estree: gate all errors behind allowInvalidAST (#11693)

typescript-estree: replace fast-glob with tinyglobby (#11740)

... (truncated)

Changelog

Sourced from @typescript-eslint/eslint-plugin's changelog.

8.49.0 (2025-12-08)

🚀 Features

eslint-plugin: use Intl.Segmenter instead of graphemer (#11804)

🩹 Fixes

deps: update dependency prettier to v3.7.2 (#11820)

❤️ Thank You

Justin McBride

Kirk Waiblinger @kirkwaiblinger

You can read about our versioning strategy and releases on our website.

8.48.1 (2025-12-02)

🩹 Fixes

eslint-plugin: [restrict-template-expressions] check base types in allow list (#11764, #11759)

eslint-plugin: honor ignored base types on generic classes (#11767)

eslint-plugin: [consistent-type-exports] check value flag before resolving alias (#11769)

❤️ Thank You

Josh Goldberg

OleksandraKordonets

SangheeSon @Higangssh

tao

You can read about our versioning strategy and releases on our website.

8.48.0 (2025-11-24)

🚀 Features

eslint-plugin: [no-redundant-type-constituents] use assignability checking for redundancy checks (#10744)

🩹 Fixes

typescript-estree: disallow binding patterns in parameter properties (#11760)

eslint-plugin: [consistent-generic-constructors] ignore when constructor is typed array (#10477)

❤️ Thank You

Dima Barabash @dbarabashh

JamesHenry @JamesHenry

Josh Goldberg

... (truncated)

Commits

864595a chore(release): publish 8.49.0
32b7e89 chore(deps): update dependency @vitest/eslint-plugin to v1.5.1 (#11816)
56149a2 feat(eslint-plugin): use Intl.Segmenter instead of graphemer (#11804)
34a49a4 fix(deps): update dependency prettier to v3.7.2 (#11820)
d2d7ace docs: fixes bad link to jest docs in unbound-method rule page (#11823)
8fe3445 chore(release): publish 8.48.1
5ac66a6 fix(eslint-plugin): revert "[no-redundant-type-constituents] use assignabilit...
906cc3c fix(eslint-plugin): [restrict-template-expressions] check base types in allow...
16cf0f7 test(eslint-plugin): [consistent-type-exports] add more shadowed imports test...
0db02ac fix(eslint-plugin): honor ignored base types on generic classes (#11767)
Additional commits viewable in compare view

Updates @typescript-eslint/parser from 8.47.0 to 8.49.0

Release notes

Sourced from @typescript-eslint/parser's releases.

v8.49.0

8.49.0 (2025-12-08)

🚀 Features

eslint-plugin: use Intl.Segmenter instead of graphemer (#11804)

🩹 Fixes

deps: update dependency prettier to v3.7.2 (#11820)

❤️ Thank You

Justin McBride

Kirk Waiblinger @kirkwaiblinger

You can read about our versioning strategy and releases on our website.

v8.48.1

8.48.1 (2025-12-02)

⏪ Reverts

eslint-plugin: revert "[no-redundant-type-constituents] use assignability checking for redundancy checks (#10744)" (#11812)

🩹 Fixes

eslint-plugin: [consistent-type-exports] check value flag before resolving alias (#11769)

eslint-plugin: honor ignored base types on generic classes (#11767)

eslint-plugin: [restrict-template-expressions] check base types in allow list (#11764, #11759)

❤️ Thank You

Josh Goldberg

OleksandraKordonets

SangheeSon @Higangssh

tao

You can read about our versioning strategy and releases on our website.

v8.48.0

8.48.0 (2025-11-24)

🚀 Features

eslint-plugin: [no-redundant-type-constituents] use assignability checking for redundancy checks (#10744)

rule-tester: remove workaround for jest circular structure error (#11772)

typescript-estree: gate all errors behind allowInvalidAST (#11693)

typescript-estree: replace fast-glob with tinyglobby (#11740)

... (truncated)

Changelog

Sourced from @typescript-eslint/parser's changelog.

8.49.0 (2025-12-08)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.48.1 (2025-12-02)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.48.0 (2025-11-24)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

864595a chore(release): publish 8.49.0
32b7e89 chore(deps): update dependency @vitest/eslint-plugin to v1.5.1 (#11816)
8fe3445 chore(release): publish 8.48.1
6fb1551 chore(release): publish 8.48.0
a4dc42a chore: migrate to nx 22 (#11780)
See full diff in compare view

Updates typescript from 5.8.3 to 5.9.3

Release notes

Sourced from typescript's releases.

TypeScript 5.9.3

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

fixed issues query for Typescript 5.9.0 (Beta).

fixed issues query for Typescript 5.9.1 (RC).

No specific changes for TypeScript 5.9.2 (Stable)

fixed issues query for Typescript 5.9.3 (Stable).

Downloads are available on:

npm

TypeScript 5.9

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

fixed issues query for Typescript 5.9.0 (Beta).

fixed issues query for Typescript 5.9.1 (RC).

No specific changes for TypeScript 5.9.2 (Stable)

Downloads are available on:

npm

TypeScript 5.9 RC

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

fixed issues query for Typescript 5.9.0 (Beta).

fixed issues query for Typescript 5.9.1 (RC).

Downloads are available on:

npm

TypeScript 5.9 Beta

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement.

fixed issues query for Typescript 5.9.0 (Beta).

Downloads are available on:

npm

Commits

c63de15 Bump version to 5.9.3 and LKG
8428ca4 🤖 Pick PR #62438 (Fix incorrectly ignored dts file fr...) into release-5.9 (#...
a131cac 🤖 Pick PR #62351 (Add missing Float16Array constructo...) into release-5.9 (#...
0424333 🤖 Pick PR #62423 (Revert PR 61928) into release-5.9 (#62425)
bdb641a 🤖 Pick PR #62311 (Fix parenthesizer rules for manuall...) into release-5.9 (#...
0d9b9b9 🤖 Pick PR #61978 (Restructure CI to prepare for requi...) into release-5.9 (#...
2dce0c5 Intentionally regress one buggy declaration output to an older version (#62163)
5be3346 Bump version to 5.9.2 and LKG
ad825f2 Bump version to 5.9.1-rc and LKG
463a5bf Update LKG
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

changeset-bot · 2025-12-09T09:19:27Z

⚠️ No Changeset found

Latest commit: 828d128

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

socket-security · 2025-12-09T09:20:31Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Package	Supply Chain Security	Quality	Maintenance
eslint@9.38.0 ⏵ 8.57.1			^-44
eslint-config-next@15.3.6
@inkeep/cxkit-react@0.5.107
fumadocs-twoslash@3.1.1
fumadocs-docgen@2.0.0
fumadocs-mdx@11.6.1
@types/mdx@2.0.13
fumadocs-core@15.2.10
fumadocs-ui@15.2.10
@solana-program/memo@0.10.0 ⏵ 0.7.0		⁺¹	^-3
@types/node@24.10.0 ⏵ 22.13.8
@tailwindcss/postcss@4.1.4
postcss@8.5.3
next@15.3.6
@solana-program/compute-budget@0.11.0 ⏵ 0.8.0		⁺¹
@solana-program/address-lookup-table@0.10.0 ⏵ 0.7.0		⁺¹	^-1
@solana-program/system@0.10.0 ⏵ 0.7.0		⁺¹	^-2
react@19.2.1
@solana-program/token@0.9.0 ⏵ 0.5.1	⁺¹
@solana/webcrypto-ed25519-polyfill@5.1.0-canary-20251204203500
@solana/react@5.1.0-canary-20251204203500
@solana/compat@5.1.0-canary-20251204203500
@solana/web3.js@1.98.4 ⏵ 1.98.2
react-dom@19.2.1
lucide-react@0.484.0
@solana/kit@5.1.0-canary-20251204203500

View full report

bundlemon · 2025-12-09T09:22:37Z

BundleMon

Unchanged files (133)

Status	Path	Size	Limits
✅	@solana/kit production bundle _{kit/dist/index.production.min.js}	38.98KB	-
✅	rpc-graphql/dist/index.browser.mjs	18.82KB	-
✅	rpc-graphql/dist/index.native.mjs	18.81KB	-
✅	rpc-graphql/dist/index.node.mjs	18.81KB	-
✅	errors/dist/index.node.mjs	17.07KB	-
✅	errors/dist/index.browser.mjs	17.04KB	-
✅	errors/dist/index.native.mjs	17.04KB	-
✅	transaction-messages/dist/index.browser.mjs	7.29KB	-
✅	transaction-messages/dist/index.native.mjs	7.29KB	-
✅	transaction-messages/dist/index.node.mjs	7.29KB	-
✅	offchain-messages/dist/index.browser.mjs	4.89KB	-
✅	offchain-messages/dist/index.native.mjs	4.89KB	-
✅	offchain-messages/dist/index.node.mjs	4.89KB	-
✅	codecs-data-structures/dist/index.browser.mjs	4.69KB	-
✅	codecs-data-structures/dist/index.native.mjs	4.69KB	-
✅	codecs-data-structures/dist/index.node.mjs	4.69KB	-
✅	instruction-plans/dist/index.browser.mjs	3.71KB	-
✅	instruction-plans/dist/index.native.mjs	3.71KB	-
✅	instruction-plans/dist/index.node.mjs	3.71KB	-
✅	webcrypto-ed25519-polyfill/dist/index.node.mj s	3.61KB	-
✅	webcrypto-ed25519-polyfill/dist/index.browser .mjs	3.59KB	-
✅	webcrypto-ed25519-polyfill/dist/index.native. mjs	3.57KB	-
✅	codecs-core/dist/index.browser.mjs	3.43KB	-
✅	codecs-core/dist/index.native.mjs	3.43KB	-
✅	codecs-core/dist/index.node.mjs	3.43KB	-
✅	rpc-subscriptions/dist/index.browser.mjs	3.37KB	-
✅	rpc-subscriptions/dist/index.node.mjs	3.34KB	-
✅	rpc-subscriptions/dist/index.native.mjs	3.31KB	-
✅	rpc-transformers/dist/index.browser.mjs	2.93KB	-
✅	rpc-transformers/dist/index.native.mjs	2.93KB	-
✅	rpc-transformers/dist/index.node.mjs	2.93KB	-
✅	addresses/dist/index.browser.mjs	2.93KB	-
✅	addresses/dist/index.native.mjs	2.92KB	-
✅	addresses/dist/index.node.mjs	2.92KB	-
✅	signers/dist/index.browser.mjs	2.9KB	-
✅	signers/dist/index.native.mjs	2.9KB	-
✅	signers/dist/index.node.mjs	2.9KB	-
✅	transactions/dist/index.browser.mjs	2.87KB	-
✅	transactions/dist/index.native.mjs	2.86KB	-
✅	transactions/dist/index.node.mjs	2.86KB	-
✅	codecs-strings/dist/index.browser.mjs	2.53KB	-
✅	codecs-strings/dist/index.node.mjs	2.48KB	-
✅	codecs-strings/dist/index.native.mjs	2.45KB	-
✅	transaction-confirmation/dist/index.node.mjs	2.41KB	-
✅	transaction-confirmation/dist/index.native.mj s	2.36KB	-
✅	transaction-confirmation/dist/index.browser.m js	2.35KB	-
✅	sysvars/dist/index.browser.mjs	2.35KB	-
✅	sysvars/dist/index.native.mjs	2.34KB	-
✅	sysvars/dist/index.node.mjs	2.34KB	-
✅	react/dist/index.browser.mjs	2.31KB	-
✅	react/dist/index.native.mjs	2.31KB	-
✅	react/dist/index.node.mjs	2.31KB	-
✅	rpc-subscriptions-spec/dist/index.node.mjs	2.18KB	-
✅	rpc-subscriptions-spec/dist/index.native.mjs	2.13KB	-
✅	rpc-subscriptions-spec/dist/index.browser.mjs	2.13KB	-
✅	keys/dist/index.browser.mjs	2.08KB	-
✅	keys/dist/index.native.mjs	2.08KB	-
✅	keys/dist/index.node.mjs	2.08KB	-
✅	codecs-numbers/dist/index.native.mjs	2.01KB	-
✅	codecs-numbers/dist/index.browser.mjs	2.01KB	-
✅	codecs-numbers/dist/index.node.mjs	2.01KB	-
✅	rpc/dist/index.node.mjs	1.95KB	-
✅	rpc-transport-http/dist/index.browser.mjs	1.91KB	-
✅	rpc-transport-http/dist/index.native.mjs	1.9KB	-
✅	rpc/dist/index.native.mjs	1.81KB	-
✅	rpc/dist/index.browser.mjs	1.8KB	-
✅	subscribable/dist/index.node.mjs	1.8KB	-
✅	subscribable/dist/index.native.mjs	1.75KB	-
✅	subscribable/dist/index.browser.mjs	1.74KB	-
✅	rpc-transport-http/dist/index.node.mjs	1.72KB	-
✅	kit/dist/index.browser.mjs	1.69KB	-
✅	kit/dist/index.native.mjs	1.68KB	-
✅	kit/dist/index.node.mjs	1.68KB	-
✅	rpc-types/dist/index.browser.mjs	1.53KB	-
✅	rpc-types/dist/index.native.mjs	1.53KB	-
✅	rpc-types/dist/index.node.mjs	1.53KB	-
✅	rpc-subscriptions-channel-websocket/dist/inde x.node.mjs	1.33KB	-
✅	rpc-subscriptions-channel-websocket/dist/inde x.native.mjs	1.27KB	-
✅	rpc-subscriptions-channel-websocket/dist/inde x.browser.mjs	1.26KB	-
✅	options/dist/index.browser.mjs	1.18KB	-
✅	options/dist/index.native.mjs	1.18KB	-
✅	options/dist/index.node.mjs	1.17KB	-
✅	accounts/dist/index.browser.mjs	1.13KB	-
✅	accounts/dist/index.native.mjs	1.12KB	-
✅	accounts/dist/index.node.mjs	1.12KB	-
✅	rpc-api/dist/index.browser.mjs	976B	-
✅	rpc-api/dist/index.native.mjs	975B	-
✅	rpc-api/dist/index.node.mjs	973B	-
✅	compat/dist/index.browser.mjs	969B	-
✅	compat/dist/index.native.mjs	968B	-
✅	compat/dist/index.node.mjs	966B	-
✅	rpc-spec-types/dist/index.browser.mjs	962B	-
✅	rpc-spec-types/dist/index.native.mjs	961B	-
✅	rpc-spec-types/dist/index.node.mjs	959B	-
✅	rpc-subscriptions-api/dist/index.native.mjs	870B	-
✅	rpc-subscriptions-api/dist/index.node.mjs	869B	-
✅	rpc-subscriptions-api/dist/index.browser.mjs	868B	-
✅	rpc-spec/dist/index.browser.mjs	852B	-
✅	rpc-spec/dist/index.native.mjs	851B	-
✅	rpc-spec/dist/index.node.mjs	850B	-
✅	promises/dist/index.browser.mjs	799B	-
✅	promises/dist/index.native.mjs	798B	-
✅	promises/dist/index.node.mjs	797B	-
✅	assertions/dist/index.browser.mjs	783B	-
✅	instructions/dist/index.browser.mjs	771B	-
✅	instructions/dist/index.native.mjs	770B	-
✅	instructions/dist/index.node.mjs	768B	-
✅	fast-stable-stringify/dist/index.browser.mjs	726B	-
✅	fast-stable-stringify/dist/index.native.mjs	725B	-
✅	assertions/dist/index.native.mjs	724B	-
✅	fast-stable-stringify/dist/index.node.mjs	724B	-
✅	assertions/dist/index.node.mjs	723B	-
✅	programs/dist/index.browser.mjs	329B	-
✅	programs/dist/index.native.mjs	327B	-
✅	programs/dist/index.node.mjs	325B	-
✅	event-target-impl/dist/index.node.mjs	230B	-
✅	functional/dist/index.browser.mjs	154B	-
✅	functional/dist/index.native.mjs	152B	-
✅	text-encoding-impl/dist/index.native.mjs	152B	-
✅	functional/dist/index.node.mjs	151B	-
✅	codecs/dist/index.browser.mjs	137B	-
✅	codecs/dist/index.native.mjs	136B	-
✅	codecs/dist/index.node.mjs	134B	-
✅	event-target-impl/dist/index.browser.mjs	133B	-
✅	ws-impl/dist/index.node.mjs	131B	-
✅	text-encoding-impl/dist/index.browser.mjs	122B	-
✅	text-encoding-impl/dist/index.node.mjs	119B	-
✅	ws-impl/dist/index.browser.mjs	113B	-
✅	crypto-impl/dist/index.node.mjs	111B	-
✅	crypto-impl/dist/index.browser.mjs	109B	-
✅	rpc-parsed-types/dist/index.browser.mjs	66B	-
✅	rpc-parsed-types/dist/index.native.mjs	65B	-
✅	rpc-parsed-types/dist/index.node.mjs	63B	-

No change in files bundle size

Final result: ✅

View report in BundleMon website ➡️

Current branch size history | Target branch size history

mergify · 2025-12-09T09:29:56Z

Automerge label removed due to a CI failure

Bumps the eslint group with 5 updates: | Package | From | To | | --- | --- | --- | | [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js) | `9.38.0` | `9.39.1` | | [@eslint/json](https://github.com/eslint/json) | `0.13.2` | `0.14.0` | | [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.47.0` | `8.49.0` | | [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.47.0` | `8.49.0` | | [typescript](https://github.com/microsoft/TypeScript) | `5.8.3` | `5.9.3` | Updates `@eslint/js` from 9.38.0 to 9.39.1 - [Release notes](https://github.com/eslint/eslint/releases) - [Commits](https://github.com/eslint/eslint/commits/v9.39.1/packages/js) Updates `@eslint/json` from 0.13.2 to 0.14.0 - [Release notes](https://github.com/eslint/json/releases) - [Changelog](https://github.com/eslint/json/blob/main/CHANGELOG.md) - [Commits](eslint/json@json-v0.13.2...json-v0.14.0) Updates `@typescript-eslint/eslint-plugin` from 8.47.0 to 8.49.0 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.49.0/packages/eslint-plugin) Updates `@typescript-eslint/parser` from 8.47.0 to 8.49.0 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.49.0/packages/parser) Updates `typescript` from 5.8.3 to 5.9.3 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Commits](microsoft/TypeScript@v5.8.3...v5.9.3) --- updated-dependencies: - dependency-name: "@eslint/js" dependency-version: 9.39.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: eslint - dependency-name: "@eslint/json" dependency-version: 0.14.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: eslint - dependency-name: "@typescript-eslint/eslint-plugin" dependency-version: 8.49.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: eslint - dependency-name: "@typescript-eslint/parser" dependency-version: 8.49.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: eslint - dependency-name: typescript dependency-version: 5.9.3 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: eslint ... Signed-off-by: dependabot[bot] <support@github.com>

socket-security · 2025-12-12T19:15:33Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		Obfuscated code: npm `safer-buffer` is 94.0% likely obfuscated Confidence: 0.94 Location: Package overview From: docs/pnpm-lock.yaml → `npm/safer-buffer@2.1.2` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/safer-buffer@2.1.2`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

dependabot bot added the automerge Merge this Pull Request automatically once CI passes label Dec 9, 2025

mergify bot removed the automerge Merge this Pull Request automatically once CI passes label Dec 9, 2025

dependabot bot force-pushed the dependabot/npm_and_yarn/eslint-271c92def9 branch from ab8d5ed to 6e9a44a Compare December 12, 2025 09:18

dependabot bot force-pushed the dependabot/npm_and_yarn/eslint-271c92def9 branch from 6e9a44a to 828d128 Compare December 12, 2025 18:58

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the eslint group with 5 updates #1106

Bump the eslint group with 5 updates #1106

Uh oh!

dependabot bot commented on behalf of github Dec 9, 2025 •

edited

Loading

Uh oh!

changeset-bot bot commented Dec 9, 2025 •

edited

Loading

Uh oh!

socket-security bot commented Dec 9, 2025 •

edited

Loading

Uh oh!

bundlemon bot commented Dec 9, 2025 •

edited

Loading

Uh oh!

mergify bot commented Dec 9, 2025

Uh oh!

socket-security bot commented Dec 12, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Bump the eslint group with 5 updates #1106

Are you sure you want to change the base?

Bump the eslint group with 5 updates #1106

Uh oh!

Conversation

dependabot bot commented on behalf of github Dec 9, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v9.39.1

Bug Fixes

Documentation

Chores

v9.39.0

Features

Bug Fixes

Documentation

Chores

json: v0.14.0

0.14.0 (2025-11-04)

Features

Bug Fixes

0.14.0 (2025-11-04)

Features

Bug Fixes

v8.49.0

8.49.0 (2025-12-08)

🚀 Features

🩹 Fixes

❤️ Thank You

v8.48.1

8.48.1 (2025-12-02)

⏪ Reverts

🩹 Fixes

❤️ Thank You

v8.48.0

8.48.0 (2025-11-24)

🚀 Features

8.49.0 (2025-12-08)

🚀 Features

🩹 Fixes

❤️ Thank You

8.48.1 (2025-12-02)

🩹 Fixes

❤️ Thank You

8.48.0 (2025-11-24)

🚀 Features

🩹 Fixes

❤️ Thank You

v8.49.0

8.49.0 (2025-12-08)

🚀 Features

🩹 Fixes

❤️ Thank You

v8.48.1

8.48.1 (2025-12-02)

⏪ Reverts

🩹 Fixes

❤️ Thank You

v8.48.0

8.48.0 (2025-11-24)

🚀 Features

8.49.0 (2025-12-08)

8.48.1 (2025-12-02)

8.48.0 (2025-11-24)

TypeScript 5.9.3

TypeScript 5.9

TypeScript 5.9 RC

TypeScript 5.9 Beta

Uh oh!

changeset-bot bot commented Dec 9, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

⚠️ No Changeset found

Uh oh!

socket-security bot commented Dec 9, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

bundlemon bot commented Dec 9, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

BundleMon

Uh oh!

mergify bot commented Dec 9, 2025

dependabot bot commented on behalf of github Dec 9, 2025 •

edited

Loading

changeset-bot bot commented Dec 9, 2025 •

edited

Loading

socket-security bot commented Dec 9, 2025 •

edited

Loading

bundlemon bot commented Dec 9, 2025 •

edited

Loading