fix(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@apollo/client (source)	3.12.9 -> 3.12.11
@astrojs/compiler (source)	2.10.3 -> 2.10.4
@babel/core (source)	7.26.7 -> 7.26.8
@babel/parser (source)	7.26.7 -> 7.26.8
@babel/preset-env (source)	7.26.7 -> 7.26.8
@babel/traverse (source)	7.26.7 -> 7.26.8
@babel/types (source)	7.26.7 -> 7.26.8
@graphql-tools/executor-http (source)	1.2.5 -> 1.2.6
@graphql-yoga/plugin-defer-stream (source)	3.10.11 -> 3.11.0
esbuild	0.24.2 -> 0.25.0
eslint (source)	9.19.0 -> 9.20.0
graphql-yoga (source)	5.10.11 -> 5.11.0
prettier (source)	3.4.2 -> 3.5.0
svelte (source)	5.19.8 -> 5.19.9

---

Release Notes

apollographql/apollo-client (@​apollo/client)

v3.12.11

Compare Source

Patch Changes

• #​12351 3da908b Thanks @​jerelmiller! - Fixes an issue where the wrong networkStatus and loading value was emitted from observableQuery when calling fetchMore with a no-cache fetch policy. The networkStatus now properly reports as ready and loading as false after the result is returned.

• #​12354 a24ef94 Thanks @​phryneas! - Fix missing main.d.cts file

v3.12.10

Compare Source

Patch Changes

• #​12341 f2bb0b9 Thanks @​phryneas! - useReadQuery/useQueryRefHandlers: Fix a "hook order" warning that might be emitted in React 19 dev mode.

• #​12342 219b26b Thanks @​phryneas! - Add graphql-ws ^6.0.3 as a valid peerDependency

withastro/compiler (@​astrojs/compiler)

v2.10.4

Compare Source

Patch Changes

• 8cae811: Fixes an issue with the conditional rendering of scripts.

  This change updates a v5.0 breaking change when experimental.directRenderScript became the default script handling behavior. If you have already successfully upgraded to Astro v5, you may need to review your script tags again and make sure they still behave as desired after this release. See the v5 Upgrade Guide for more details.

• 970f085: Fixes an issue when parsing elements inside foreign content (e.g. SVG), when they were inside an expression

• 6b6a134: Fixes a bug caused by having an extra space in the fragment tag in the TSX output

babel/babel (@​babel/core)

v7.26.8

Compare Source

v7.26.8 (2025-02-08)

🏠 Internal

• babel-preset-env
  • #​17097 Update dependency babel-plugin-polyfill-corejs3 to ^0.11.0

graphql-hive/gateway (@​graphql-tools/executor-http)

v1.2.6

Compare Source

Patch Changes

• #​598 8c80ac9 Thanks @​ardatan! - dependencies updates:

  • Removed dependency @graphql-hive/gateway-abort-signal-any@workspace:^ ↗︎ (from dependencies)

• #​598 8c80ac9 Thanks @​ardatan! - Use native AbortSignal, AbortController APIs instead of custom ones

dotansimha/graphql-yoga (@​graphql-yoga/plugin-defer-stream)

v3.11.0

Compare Source

evanw/esbuild (esbuild)

v0.25.0

Compare Source

This release deliberately contains backwards-incompatible changes. To avoid automatically picking up releases like this, you should either be pinning the exact version of esbuild in your package.json file (recommended) or be using a version range syntax that only accepts patch upgrades such as ^0.24.0 or ~0.24.0. See npm's documentation about semver for more information.

• Restrict access to esbuild's development server (GHSA-67mh-4wv8-2f99)

  This change addresses esbuild's first security vulnerability report. Previously esbuild set the Access-Control-Allow-Origin header to * to allow esbuild's development server to be flexible in how it's used for development. However, this allows the websites you visit to make HTTP requests to esbuild's local development server, which gives read-only access to your source code if the website were to fetch your source code's specific URL. You can read more information in the report.

  Starting with this release, CORS will now be disabled, and requests will now be denied if the host does not match the one provided to --serve=. The default host is 0.0.0.0, which refers to all of the IP addresses that represent the local machine (e.g. both 127.0.0.1 and 192.168.0.1). If you want to customize anything about esbuild's development server, you can put a proxy in front of esbuild and modify the incoming and/or outgoing requests.

  In addition, the serve() API call has been changed to return an array of hosts instead of a single host string. This makes it possible to determine all of the hosts that esbuild's development server will accept.

  Thanks to @​sapphi-red for reporting this issue.

• Delete output files when a build fails in watch mode (#​3643)

  It has been requested for esbuild to delete files when a build fails in watch mode. Previously esbuild left the old files in place, which could cause people to not immediately realize that the most recent build failed. With this release, esbuild will now delete all output files if a rebuild fails. Fixing the build error and triggering another rebuild will restore all output files again.

• Fix correctness issues with the CSS nesting transform (#​3620, #​3877, #​3933, #​3997, #​4005, #​4037, #​4038)

  This release fixes the following problems:

  • Naive expansion of CSS nesting can result in an exponential blow-up of generated CSS if each nesting level has multiple selectors. Previously esbuild sometimes collapsed individual nesting levels using :is() to limit expansion. However, this collapsing wasn't correct in some cases, so it has been removed to fix correctness issues.

    /* Original code */
    .parent {
      > .a,
      > .b1 > .b2 {
        color: red;
      }
    }
    
    /* Old output (with --supported:nesting=false) */
    .parent > :is(.a, .b1 > .b2) {
      color: red;
    }
    
    /* New output (with --supported:nesting=false) */
    .parent > .a,
    .parent > .b1 > .b2 {
      color: red;
    }

    Thanks to @​tim-we for working on a fix.

  • The & CSS nesting selector can be repeated multiple times to increase CSS specificity. Previously esbuild ignored this possibility and incorrectly considered && to have the same specificity as &. With this release, this should now work correctly:

    /* Original code (color should be red) */
    div {
      && { color: red }
      & { color: blue }
    }
    
    /* Old output (with --supported:nesting=false) */
    div {
      color: red;
    }
    div {
      color: blue;
    }
    
    /* New output (with --supported:nesting=false) */
    div:is(div) {
      color: red;
    }
    div {
      color: blue;
    }

    Thanks to @​CPunisher for working on a fix.

  • Previously transforming nested CSS incorrectly removed leading combinators from within pseudoclass selectors such as :where(). This edge case has been fixed and how has test coverage.

    /* Original code */
    a b:has(> span) {
      a & {
        color: green;
      }
    }
    
    /* Old output (with --supported:nesting=false) */
    a :is(a b:has(span)) {
      color: green;
    }
    
    /* New output (with --supported:nesting=false) */
    a :is(a b:has(> span)) {
      color: green;
    }

    This fix was contributed by @​NoremacNergfol.

  • The CSS minifier contains logic to remove the & selector when it can be implied, which happens when there is only one and it's the leading token. However, this logic was incorrectly also applied to selector lists inside of pseudo-class selectors such as :where(). With this release, the minifier will now avoid applying this logic in this edge case:

    /* Original code */
    .a {
      & .b { color: red }
      :where(& .b) { color: blue }
    }
    
    /* Old output (with --minify) */
    .a{.b{color:red}:where(.b){color:#​00f}}
    
    /* New output (with --minify) */
    .a{.b{color:red}:where(& .b){color:#​00f}}

• Fix some correctness issues with source maps (#​1745, #​3183, #​3613, #​3982)

  Previously esbuild incorrectly treated source map path references as file paths instead of as URLs. With this release, esbuild will now treat source map path references as URLs. This fixes the following problems with source maps:

  • File names in sourceMappingURL that contained a space previously did not encode the space as %20, which resulted in JavaScript tools (including esbuild) failing to read that path back in when consuming the generated output file. This should now be fixed.

  • Absolute URLs in sourceMappingURL that use the file:// scheme previously attempted to read from a folder called file:. These URLs should now be recognized and parsed correctly.

  • Entries in the sources array in the source map are now treated as URLs instead of file paths. The correct behavior for this is much more clear now that source maps has a formal specification. Many thanks to those who worked on the specification.

• Fix incorrect package for @esbuild/netbsd-arm64 (#​4018)

  Due to a copy+paste typo, the binary published to @esbuild/netbsd-arm64 was not actually for arm64, and didn't run in that environment. This release should fix running esbuild in that environment (NetBSD on 64-bit ARM). Sorry about the mistake.

• Fix a minification bug with bitwise operators and bigints (#​4065)

  This change removes an incorrect assumption in esbuild that all bitwise operators result in a numeric integer. That assumption was correct up until the introduction of bigints in ES2020, but is no longer correct because almost all bitwise operators now operate on both numbers and bigints. Here's an example of the incorrect minification:

  // Original code
  if ((a & b) !== 0) found = true
  
  // Old output (with --minify)
  a&b&&(found=!0);
  
  // New output (with --minify)
  (a&b)!==0&&(found=!0);

• Fix esbuild incorrectly rejecting valid TypeScript edge case (#​4027)

  The following TypeScript code is valid:

  export function open(async?: boolean): void {
    console.log(async as boolean)
  }

  Before this version, esbuild would fail to parse this with a syntax error as it expected the token sequence async as ... to be the start of an async arrow function expression async as => .... This edge case should be parsed correctly by esbuild starting with this release.

• Transform BigInt values into constructor calls when unsupported (#​4049)

  Previously esbuild would refuse to compile the BigInt literals (such as 123n) if they are unsupported in the configured target environment (such as with --target=es6). The rationale was that they cannot be polyfilled effectively because they change the behavior of JavaScript's arithmetic operators and JavaScript doesn't have operator overloading.

  However, this prevents using esbuild with certain libraries that would otherwise work if BigInt literals were ignored, such as with old versions of the buffer library before the library fixed support for running in environments without BigInt support. So with this release, esbuild will now turn BigInt literals into BigInt constructor calls (so 123n becomes BigInt(123)) and generate a warning in this case. You can turn off the warning with --log-override:bigint=silent or restore the warning to an error with --log-override:bigint=error if needed.

• Change how console API dropping works (#​4020)

  Previously the --drop:console feature replaced all method calls off of the console global with undefined regardless of how long the property access chain was (so it applied to console.log() and console.log.call(console) and console.log.not.a.method()). However, it was pointed out that this breaks uses of console.log.bind(console). That's also incompatible with Terser's implementation of the feature, which is where this feature originally came from (it does support bind). So with this release, using this feature with esbuild will now only replace one level of method call (unless extended by call or apply) and will replace the method being called with an empty function in complex cases:

  // Original code
  const x = console.log('x')
  const y = console.log.call(console, 'y')
  const z = console.log.bind(console)('z')
  
  // Old output (with --drop-console)
  const x = void 0;
  const y = void 0;
  const z = (void 0)("z");
  
  // New output (with --drop-console)
  const x = void 0;
  const y = void 0;
  const z = (() => {
  }).bind(console)("z");

  This should more closely match Terser's existing behavior.

• Allow BigInt literals as define values

  With this release, you can now use BigInt literals as define values, such as with --define:FOO=123n. Previously trying to do this resulted in a syntax error.

• Fix a bug with resolve extensions in node_modules (#​4053)

  The --resolve-extensions= option lets you specify the order in which to try resolving implicit file extensions. For complicated reasons, esbuild reorders TypeScript file extensions after JavaScript ones inside of node_modules so that JavaScript source code is always preferred to TypeScript source code inside of dependencies. However, this reordering had a bug that could accidentally change the relative order of TypeScript file extensions if one of them was a prefix of the other. That bug has been fixed in this release. You can see the issue for details.

• Better minification of statically-determined switch cases (#​4028)

  With this release, esbuild will now try to trim unused code within switch statements when the test expression and case expressions are primitive literals. This can arise when the test expression is an identifier that is substituted for a primitive literal at compile time. For example:

  // Original code
  switch (MODE) {
    case 'dev':
      installDevToolsConsole()
      break
    case 'prod':
      return
    default:
      throw new Error
  }
  
  // Old output (with --minify '--define:MODE="prod"')
  switch("prod"){case"dev":installDevToolsConsole();break;case"prod":return;default:throw new Error}
  
  // New output (with --minify '--define:MODE="prod"')
  return;

• Emit /* @​__KEY__ */ for string literals derived from property names (#​4034)

  Property name mangling is an advanced feature that shortens certain property names for better minification (I say "advanced feature" because it's very easy to break your code with it). Sometimes you need to store a property name in a string, such as obj.get('foo') instead of obj.foo. JavaScript minifiers such as esbuild and Terser have a convention where a /* @​__KEY__ */ comment before the string makes it behave like a property name. So obj.get(/* @​__KEY__ */ 'foo') allows the contents of the string 'foo' to be shortened.

  However, esbuild sometimes itself generates string literals containing property names when transforming code, such as when lowering class fields to ES6 or when transforming TypeScript decorators. Previously esbuild didn't generate its own /* @​__KEY__ */ comments in this case, which means that minifying your code by running esbuild again on its own output wouldn't work correctly (this does not affect people that both minify and transform their code in a single step).

  With this release, esbuild will now generate /* @​__KEY__ */ comments for property names in generated string literals. To avoid lots of unnecessary output for people that don't use this advanced feature, the generated comments will only be present when the feature is active. If you want to generate the comments but not actually mangle any property names, you can use a flag that has no effect such as --reserve-props=., which tells esbuild to not mangle any property names (but still activates this feature).

• The text loader now strips the UTF-8 BOM if present (#​3935)

  Some software (such as Notepad on Windows) can create text files that start with the three bytes 0xEF 0xBB 0xBF, which is referred to as the "byte order mark". This prefix is intended to be removed before using the text. Previously esbuild's text loader included this byte sequence in the string, which turns into a prefix of \uFEFF in a JavaScript string when decoded from UTF-8. With this release, esbuild's text loader will now remove these bytes when they occur at the start of the file.

• Omit legal comment output files when empty (#​3670)

  Previously configuring esbuild with --legal-comment=external or --legal-comment=linked would always generate a .LEGAL.txt output file even if it was empty. Starting with this release, esbuild will now only do this if the file will be non-empty. This should result in a more organized output directory in some cases.

• Update Go from 1.23.1 to 1.23.5 (#​4056, #​4057)

  This should have no effect on existing code as this version change does not change Go's operating system support. It may remove certain reports from vulnerability scanners that detect which version of the Go compiler esbuild uses.

  This PR was contributed by @​MikeWillCook.

• Allow passing a port of 0 to the development server (#​3692)

  Unix sockets interpret a port of 0 to mean "pick a random unused port in the ephemeral port range". However, esbuild's default behavior when the port is not specified is to pick the first unused port starting from 8000 and upward. This is more convenient because port 8000 is typically free, so you can for example restart the development server and reload your app in the browser without needing to change the port in the URL. Since esbuild is written in Go (which does not have optional fields like JavaScript), not specifying the port in Go means it defaults to 0, so previously passing a port of 0 to esbuild caused port 8000 to be picked.

  Starting with this release, passing a port of 0 to esbuild when using the CLI or the JS API will now pass port 0 to the OS, which will pick a random ephemeral port. To make this possible, the Port option in the Go API has been changed from uint16 to int (to allow for additional sentinel values) and passing a port of -1 in Go now picks a random port. Both the CLI and JS APIs now remap an explicitly-provided port of 0 into -1 for the internal Go API.

  Another option would have been to change Port in Go from uint16 to *uint16 (Go's closest equivalent of number | undefined). However, that would make the common case of providing an explicit port in Go very awkward as Go doesn't support taking the address of integer constants. This tradeoff isn't worth it as picking a random ephemeral port is a rare use case. So the CLI and JS APIs should now match standard Unix behavior when the port is 0, but you need to use -1 instead with Go API.

• Minification now avoids inlining constants with direct eval (#​4055)

  Direct eval can be used to introduce a new variable like this:

  const variable = false
  ;(function () {
    eval("var variable = true")
    console.log(variable)
  })()

  Previously esbuild inlined variable here (which became false), which changed the behavior of the code. This inlining is now avoided, but please keep in mind that direct eval breaks many assumptions that JavaScript tools hold about normal code (especially when bundling) and I do not recommend using it. There are usually better alternatives that have a more localized impact on your code. You can read more about this here: https://esbuild.github.io/link/direct-eval/

eslint/eslint (eslint)

v9.20.0

Compare Source

dotansimha/graphql-yoga (graphql-yoga)

v5.11.0

Compare Source

Minor Changes

• #​3727
  5fd15b8
  Thanks @​EmrysMyrddin! - Allow to configure the endpoint used by
  GraphiQL to send requests.

• #​3736
  d13b8a4
  Thanks @​ardatan! - Now it is possible to replace or wrap the logic
  how GraphQLParams handled;

  By default Yoga calls Envelop to handle the parameters, but now you can replace it with your own
  logic.

  Example: Wrap the GraphQL handling pipeline in an AsyncLocalStorage

  function myPlugin(): Plugin {
    const context = new AsyncLocalStorage();
    return {
      onParams({ paramsHandler, setParamsHandler }) {
        const store = { foo: 'bar' }
        setParamsHandler(payload => context.run(store, paramsHandler, payload))
     }
  }

prettier/prettier (prettier)

v3.5.0

Compare Source

diff

🔗 Release Notes

sveltejs/svelte (svelte)

v5.19.9

Compare Source

Patch Changes

• fix: ensure unowned derived dependencies are not duplicated when reactions are skipped (#​15232)

• fix: hydrate href that is part of spread attributes (#​15226)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[changeset-bot]

🦋 Changeset detected

Latest commit: a95d6aa

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 26 packages

Name	Type
@graphql-tools/schema	Patch
@graphql-tools/url-loader	Patch
@graphql-tools/utils	Minor
graphql-tools	Patch
@graphql-tools/load	Patch
@graphql-tools/mock	Patch
@graphql-tools/executor	Patch
@graphql-tools/graphql-tag-pluck	Patch
@graphql-tools/import	Patch
@graphql-tools/links	Patch
@graphql-tools/merge	Patch
@graphql-tools/node-require	Patch
@graphql-tools/relay-operation-optimizer	Patch
@graphql-tools/resolvers-composition	Patch
@graphql-tools/apollo-engine-loader	Patch
@graphql-tools/code-file-loader	Patch
@graphql-tools/git-loader	Patch
@graphql-tools/github-loader	Patch
@graphql-tools/graphql-file-loader	Patch
@graphql-tools/json-file-loader	Patch
@graphql-tools/module-loader	Patch
@graphql-tools/executor-apollo-link	Patch
@graphql-tools/executor-envelop	Patch
@graphql-tools/executor-legacy-ws	Patch
@graphql-tools/executor-urql-exchange	Patch
@graphql-tools/executor-yoga	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR. (Beta)
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[github-actions]

💻 Website Preview

The latest changes are available as preview in: https://2c9847cb.graphql-tools.pages.dev

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

[theguild-bot]

🚀 Snapshot Release (alpha)

The latest changes of this PR are available as alpha on npm (based on the declared changesets):

Package	Version	Info
@graphql-tools/executor	1.3.13-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/executor-apollo-link	1.0.13-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/executor-envelop	3.0.20-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/executor-legacy-ws	1.1.11-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/executor-urql-exchange	1.0.13-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/executor-yoga	3.0.20-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/graphql-tag-pluck	8.3.13-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
graphql-tools	9.0.12-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/import	7.0.12-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/links	9.0.21-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/load	8.0.13-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/apollo-engine-loader	8.0.14-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/code-file-loader	8.1.14-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/git-loader	8.0.18-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/github-loader	8.0.14-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/graphql-file-loader	8.0.13-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/json-file-loader	8.0.12-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/module-loader	8.0.12-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/url-loader	8.0.25-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/merge	9.0.18-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/mock	9.0.16-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/node-require	7.0.14-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/relay-operation-optimizer	7.0.13-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/resolvers-composition	7.0.12-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/schema	10.0.17-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎
@graphql-tools/utils	10.8.0-alpha-20250209213440-a95d6aa5e67221ea9d76a57e8e3a411847755fa3	npm ↗︎ unpkg ↗︎

[julianwilkinson]

Hey heads up this dependency upgrade breaks node 18 support because this depends on graphql-ws@6 which raised the minimum node version from 18 to 20