Skip to content

npm-frontend: bump the web-patches-updates group across 1 directory with 4 updates#6334

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/sources/packages/web/web-patches-updates-71d8b8989f
Open

npm-frontend: bump the web-patches-updates group across 1 directory with 4 updates#6334
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/sources/packages/web/web-patches-updates-71d8b8989f

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 7, 2026

Copy link
Copy Markdown
Contributor

Bumps the web-patches-updates group with 4 updates in the /sources/packages/web directory: axios, uuid, vue and vuetify.

Updates axios from 1.18.0 to 1.18.1

Release notes

Sourced from axios's releases.

v1.18.1 — June 21, 2026

This release focuses on Node HTTP adapter fixes, safer AxiosError serialisation, runtime/type correctness fixes, documentation updates, and dependency maintenance.

🐛 Bug Fixes

  • AxiosError Serialisation: Made AxiosError#cause non-enumerable to prevent circular JSON serialisation failures when errors include nested causes. (#10913)
  • Node HTTP Adapter: Guarded socket.setKeepAlive for proxy agent streams, accepted path-only URLs when socketPath is configured, deferred environment proxy handling to Node, and explicitly passed maxBodyLength through to follow-redirects. (#10917, #10930, #10942, #10993)
  • Runtime and Type Correctness: Fixed several runtime crashes, type definition mismatches, and incorrect error handling paths. (#10959, #11021)
  • AxiosURLSearchParams: Switched the encoder callback to an arrow function so encoder.call(this) receives the AxiosURLSearchParams instance correctly. (#11019)

🔧 Maintenance & Chores

  • Documentation: Documented sensitive headers and status transition behaviour, prepared cleaned-up docs, added Deno install instructions, and clarified that request data is request-specific (#11007, #11010, #11023, #11025)

  • Dependencies: Bumped vite, rollup, form-data, js-yaml, and multer across the root project, docs, smoke tests, and module test workspaces. (#11011, #11012, #11013, #11014, #11015, #11016, #11017, #11026)

🌟 New Contributors

We are thrilled to welcome our new contributors. Thank you for helping improve axios:

Full Changelog

Changelog

Sourced from axios's changelog.

Changelog

Commits
  • a209bfb chore(release): prepare release 1.18.1 (#11027)
  • fa6a55e chore(deps-dev): bump multer from 2.1.1 to 2.2.0 (#11026)
  • 40e7be8 docs: clarifies that request data is request-specific in axios (#11025)
  • a446b39 fix(AxiosURLSearchParams): use arrow function so encoder.call(this) receives ...
  • cf1306a docs: add Deno to install instructions (#11023)
  • b32880a fix: incorrect use of error (#11021)
  • 1792eda fix: ensure maxBodyLength is explicitly passed to follow-redirects (#10993)
  • 30499d6 fix: various runtime crashes and type definition mismatches (#10959)
  • 20ce9c4 fix(http): defer env proxy handling to Node (#10942)
  • e64bcf9 chore(deps): merge branch 'v1.x' into tests/module/cjs (#11014)
  • Additional commits viewable in compare view

Updates uuid from 14.0.0 to 14.0.1

Release notes

Sourced from uuid's releases.

v14.0.1

14.0.1 (2026-06-20)

Bug Fixes

  • add types condition to node export for moduleResolution bundler (#961) (27ffae5)
Changelog

Sourced from uuid's changelog.

14.0.1 (2026-06-20)

Bug Fixes

  • add types condition to node export for moduleResolution bundler (#961) (27ffae5)
Commits
Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.


Updates vue from 3.5.38 to 3.5.39

Release notes

Sourced from vue's releases.

v3.5.39

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

Changelog

Sourced from vue's changelog.

3.5.39 (2026-06-25)

Bug Fixes

Commits
  • c0606e9 release: v3.5.39
  • 4b659e6 fix(runtime-dom): preserve option modifier event names (#8338)
  • 232f402 fix(types): support named tuple emits (#12676)
  • 671997a fix(teleport): handle teleport unmount edge case (#12705)
  • 164af63 fix(hydration): respect data-allow-mismatch on conditional branches (#12801)
  • 2f374cd fix(runtime-core): normalize function children for elements and Teleport (#9108)
  • 87b73b6 fix(runtime-core): preserve once event listener name (#8341)
  • 027da6b fix(ssr): dedupe inherited scope ids during vnode rendering (#15005)
  • 024cf06 fix(hydration): force patch dynamic props when hydrating (#9083)
  • be7ce31 fix(compiler-core): correct filter rewrite recursion (#14959)
  • Additional commits viewable in compare view

Updates vuetify from 4.1.2 to 4.1.3

Release notes

Sourced from vuetify's releases.

v4.1.3

[!IMPORTANT] Vuetify Needs Your Support! The OpenCollective funds dried up. We are currently unable to compensate our contributors for their continued work on the framework and the ecosystem tools.

If Vuetify is part of your stack, please consider sponsoring the project so we can continue delivering updates and fixes.

Sponsor via Open Collective

Even if you look with optimism into the future (despite obvious economic signals), it is not responsible to keep your largest open source dependency in this poor financial state. Vuetify is on the borrowed time - if anything happens to maintainers primary employment, they are more likely to drop off.

Every contribution helps us keep Vuetify alive and signals to maintainers that their effort is appreciated.

Thank you.


🔧 Bug Fixes

  • rounded: translate 2xl, 3xl, etc. to classes (0ea03f4), closes #22978
  • VAutocomplete: don't trigger keydown listener during IME composition (#22974) (c1ef7fa)
  • VDataTable: keep rows visible after hiding a column with a custom filter (#22971) (aea8e77), closes #22863
  • VDataTable: apply text-align to columns with align 'start' (02f5f81), closes #22979
  • VDateInput: derive display format from date adapter locale (#22976) (962cda0)
  • VDateInput: do not ignore the first click when actions are visible (7fb5ef8)
  • VOtpInput: move focus correctly in RTL mode (f0145aa)
  • VOtpInput: pasting from mobile device (5c39a64), closes #22931
  • VSelect/VAutocomplete/VCombobox: respect no-auto-scroll (adb2597), closes #22920
  • locale: correctly resolve Kurdish locale to RTL (4782312)
Commits
  • a153728 chore(release): publish v4.1.3
  • aea8e77 fix(VDataTable): keep rows visible after hiding a column with a custom filter...
  • adb2597 fix(VSelect/VAutocomplete/VCombobox): respect no-auto-scroll
  • c1ef7fa fix(VAutocomplete): don't trigger keydown listener during IME composition (#2...
  • 0ea03f4 fix(rounded): translate 2xl, 3xl, etc. to classes
  • f0145aa fix(VOtpInput): move focus correctly in RTL mode
  • 02f5f81 fix(VDataTable): apply text-align to columns with align 'start'
  • 4782312 fix(locale): correctly resolve Kurdish locale to RTL
  • 962cda0 fix(VDateInput): derive display format from date adapter locale (#22976)
  • 5c39a64 fix(VOtpInput): pasting from mobile device
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…ith 4 updates

Bumps the web-patches-updates group with 4 updates in the /sources/packages/web directory: [axios](https://github.com/axios/axios), [uuid](https://github.com/uuidjs/uuid), [vue](https://github.com/vuejs/core) and [vuetify](https://github.com/vuetifyjs/vuetify/tree/HEAD/packages/vuetify).


Updates `axios` from 1.18.0 to 1.18.1
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](axios/axios@v1.18.0...v1.18.1)

Updates `uuid` from 14.0.0 to 14.0.1
- [Release notes](https://github.com/uuidjs/uuid/releases)
- [Changelog](https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md)
- [Commits](uuidjs/uuid@v14.0.0...v14.0.1)

Updates `vue` from 3.5.38 to 3.5.39
- [Release notes](https://github.com/vuejs/core/releases)
- [Changelog](https://github.com/vuejs/core/blob/main/CHANGELOG.md)
- [Commits](vuejs/core@v3.5.38...v3.5.39)

Updates `vuetify` from 4.1.2 to 4.1.3
- [Release notes](https://github.com/vuetifyjs/vuetify/releases)
- [Commits](https://github.com/vuetifyjs/vuetify/commits/v4.1.3/packages/vuetify)

---
updated-dependencies:
- dependency-name: axios
  dependency-version: 1.18.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: web-patches-updates
- dependency-name: uuid
  dependency-version: 14.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: web-patches-updates
- dependency-name: vue
  dependency-version: 3.5.39
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: web-patches-updates
- dependency-name: vuetify
  dependency-version: 4.1.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: web-patches-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added Dependencies Pull requests that update a dependency file npm Used by the dependabot pull requests to identify PRs related to npm package upgrades. Web portal labels Jul 7, 2026
@sonarqubecloud

sonarqubecloud Bot commented Jul 7, 2026

Copy link
Copy Markdown

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

Dependencies Pull requests that update a dependency file npm Used by the dependabot pull requests to identify PRs related to npm package upgrades. Web portal

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants