Skip to content

Bump npm dependencies#6783

Merged
bdukes merged 38 commits intodnnsoftware:developfrom
bdukes:bump-npm-dependencies
Nov 3, 2025
Merged

Bump npm dependencies#6783
bdukes merged 38 commits intodnnsoftware:developfrom
bdukes:bump-npm-dependencies

Conversation

@bdukes
Copy link
Copy Markdown
Contributor

@bdukes bdukes commented Oct 22, 2025
edited
Loading

Summary

This PR updates all of the npm dependencies that don't require upgrading React.

This PR also upgrades Yarn and sets the minimumReleaseAge configuration to 1440 (1 day), to limit installing very new packages. See https://pnpm.io/supply-chain-security for rationale.

@bdukes bdukes added this to the 10.1.3 milestone Oct 22, 2025
valadas
valadas approved these changes Oct 27, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

@valadas valadas left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Awesome, I tried the CI build and cannot find anything that broke with these updates. Thanks @bdukes !

@mitchelsellers
Copy link
Copy Markdown
Contributor

mitchelsellers commented Nov 1, 2025

@bdukes I'm sorry I approved the caniuse PR and that seems to have created a conflict on the lock file

bdukes added 25 commits November 3, 2025 08:18
@bdukes
Bump ESLint to 9.38.0
7eccf62 
Bump typescript-eslint to 8.46.2
Bump globals to 16.4.0
Bump @eslint/compat to 1.4.0
@bdukes
Bump ESLint-related packages
3fb26ac 
Bump @babel/eslint-parser to 7.28.4
Bump @stencil/eslint-plugin to 1.1.0
Bump @typescript-eslint/eslint-plugin to 8.46.2
Bump @typescript-eslint/parser to 8.46.2
Bump @typescript-eslint/utils to 8.46.2
Bump eslint-import-resolver-webpack to 0.13.10
Bump eslint-plugin-import to 2.32.0
Bump eslint-plugin-react to 7.37.5
Bump eslint-plugin-storybook to 9.1.13
Bump eslint-webpack-plugin to 5.0.2
@bdukes
Bump @dnncommunity/dnn-elements to 0.27.7
3bb5a01
@bdukes
Bump stencil and sass
f913536 
Bump sass to 1.93.2
Bump @stencil/core to 4.38.2
Bump @stencil/sass to 3.2.2
Bump @stencil/store to 2.2.0
@bdukes
Bump babel
bad8b86 
Bump @babel/core to 7.28.4
Bump @babel/plugin-transform-object-assign to 7.27.1
Bump @babel/plugin-transform-react-jsx to 7.27.1
Bump @babel/preset-env to 7.28.3
Bump @babel/preset-react to 7.27.1
Bump babel-jest to 30.2.0
Bump babel-loader to 10.0.0
@bdukes
Bump Yarn to 4.10.3
f036cb8
@bdukes
Require npm packages to be at least 24 hours old
ec3f920 
See https://pnpm.io/supply-chain-security
@bdukes
Bump storybook to 9.1.13
6f154db
@bdukes
Bump postcss to 8.5.6
99bf08b 
Bump autoprefixer to 10.4.21
Bump cssnano to 7.1.1
Bump postcss-cli to 11.0.1
Bump postcss-import to 16.1.1
@bdukes
Bump browser-sync to 3.0.4
e74e1b6
@bdukes
Bump @types/knockout to 3.4.77
2fb95b9
@bdukes
Bump @types/node to 24.9.0
f72a39c
@bdukes
Bump array.prototype.findindex to 2.2.4
8411654
@bdukes
Bump chokidar to 4.0.3
0ddf3e5
@bdukes
Remove unused cpy-cli package
bec445a
@bdukes
Bump dayjs to 1.11.18
d62690b
@bdukes
Bump dompurify to 3.3.0
e891270
@bdukes
Bump enzyme-adapter-react-16 to 1.15.8
658bb14
@bdukes
Bump esbuild to 0.25.11
eba709b
@bdukes
Remove unused fetch-mock package
cefb701
@bdukes
Bump glob to 11.0.3
57d5331
@bdukes
Remove unused fbjs package
0b47419
@bdukes
Bump file-loader to 6.2.0
7615d79
@bdukes
Bump html-react-parser to 5.2.7
00932c7
@bdukes
Bump jest to 30.2.0
afb7be5 
Platform/Website/Providers/DataProviders/SqlDataProvider/10.01.03.SqlDataProvider
bdukes added 13 commits November 3, 2025 08:18
@bdukes
Bump jiti to 2.6.1
cb3e712
@bdukes
Bump lerna to 9.0.0
97edeed
@bdukes
Bump less to 4.4.2
0517f08 
Bump less-loader to 12.3.0
@bdukes
Bump nanoid to 5.1.6
3f43e57
@bdukes
Remove unused object-assign package
8cda519
@bdukes
Bump throttle-debounce to 5.0.2
2e382fa
@bdukes
Bump typescript to 5.9.3
434ce62 
Bump tsx to 4.20.6
@bdukes
Bump webpack to 5.102.1
5c10047 
Bump webpack-bundle-analyzer to 4.10.2
Bump webpack-cli to 6.0.1
Bump webpack-dev-server to 5.2.2
@bdukes
Bump url-loader to 4.1.1
ad7e7c3
@bdukes
Bump source-map-loader to 5.0.0
f7f27a8 
Platform/Website/Providers/DataProviders/SqlDataProvider/10.01.03.SqlDataProvider
@bdukes
Bump zip-lib to 1.1.2
d0dd4b9
@bdukes
Bump react-modal to 3.16.3
a79e1d5 
Platform/Website/Providers/DataProviders/SqlDataProvider/10.01.03.SqlDataProvider
@bdukes
yarn dedupe
bf4a287
@bdukes bdukes force-pushed the bump-npm-dependencies branch from 60e7bee to bf4a287 Compare November 3, 2025 14:23
@bdukes bdukes enabled auto-merge (rebase) November 3, 2025 14:23
This was referenced Nov 3, 2025
Closed
Closed
@bdukes bdukes merged commit daa09c2 into dnnsoftware:develop Nov 3, 2025
3 checks passed
@bdukes bdukes deleted the bump-npm-dependencies branch November 3, 2025 14:42
@valadas valadas modified the milestones: 10.1.3, 10.2.0 Dec 3, 2025
@bdukes bdukes mentioned this pull request Feb 18, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mitchelsellers mitchelsellers mitchelsellers approved these changes

@valadas valadas valadas approved these changes

Assignees

No one assigned

Labels

Type: Maintenance

Projects

None yet

Milestone

10.2.0

Development

Successfully merging this pull request may close these issues.

3 participants

@bdukes @mitchelsellers @valadas