chore(deps): bump the npm-version-updates group across 1 directory with 25 updates by dependabot[bot] · Pull Request #83 · zitadel/example-auth-angular

dependabot · 2026-06-24T10:56:53Z

Bumps the npm-version-updates group with 24 updates in the / directory:

Package	From	To
@angular/common	`22.0.1`	`22.0.2`
@angular/compiler	`22.0.1`	`22.0.2`
@angular/core	`22.0.1`	`22.0.2`
@angular/platform-browser	`22.0.0`	`22.0.2`
@angular/router	`22.0.0`	`22.0.2`
@zitadel/angular-auth	`3.0.0`	`3.0.1`
zone.js	`0.15.1`	`0.16.2`
@angular/build	`22.0.0`	`22.0.4`
@angular/cli	`22.0.0`	`22.0.4`
@angular/compiler-cli	`22.0.0`	`22.0.2`
@commitlint/config-conventional	`20.5.3`	`21.1.0`
@eslint/js	`9.39.4`	`10.0.1`
@playwright/test	`1.60.0`	`1.61.1`
@tailwindcss/postcss	`4.3.0`	`4.3.1`
@types/jasmine	`5.1.15`	`6.0.0`
@types/node	`22.19.19`	`26.0.0`
autoprefixer	`10.5.0`	`10.5.1`
eslint	`9.39.4`	`10.5.0`
jasmine-core	`5.9.0`	`6.3.0`
karma-jasmine-html-reporter	`2.1.0`	`2.2.0`
knip	`5.88.1`	`6.18.0`
prettier	`3.8.3`	`3.8.4`
typescript-eslint	`8.60.0`	`8.62.0`
globals	`16.5.0`	`17.7.0`

Updates @angular/common from 22.0.1 to 22.0.2

Release notes

Sourced from @angular/common's releases.

22.0.2

common

Commit Description

escape anchor fragment in shadow DOM name selector

skip transfer cache for uncacheable HTTP traffic (#69316)

compiler

Commit Description

restrict possible event handler check to property names longer than 2 characters

core

Commit Description

avoid caching missing locale data

escape overlapping comment delimiters in escapeCommentText

guard against DOM clobbering in declareExperimentalWebMcpTool

preserve leave animation for sibling instances sharing a TNode

prevent unsubscribe during emit from throwing off other listeners

treat iframe credentialless as security-sensitive

detect existing signal dependency without checking all producer links

http

Commit Description

distinguish repeated transfer cache params

skip transfer cache for fetch credentialed requests (#69316)

migrations

Commit Description

migration skip any target are not build or test

Changelog

Sourced from @angular/common's changelog.

22.0.2 (2026-06-17)

common

Commit Type Description

94ea403563 fix escape anchor fragment in shadow DOM name selector

6c1f3e9d49 fix skip transfer cache for uncacheable HTTP traffic (#69316)

compiler

Commit Type Description

6f1171991a fix restrict possible event handler check to property names longer than 2 characters

core

Commit Type Description

528a34f766 fix avoid caching missing locale data

e17e8d5422 fix escape overlapping comment delimiters in escapeCommentText

59dea13f80 fix guard against DOM clobbering in declareExperimentalWebMcpTool

3a48abc15c fix preserve leave animation for sibling instances sharing a TNode

93d0a5f95c fix prevent unsubscribe during emit from throwing off other listeners

b32ee7ceb3 fix treat iframe credentialless as security-sensitive

f902d1d35e perf detect existing signal dependency without checking all producer links

http

Commit Type Description

6867f77ec7 fix distinguish repeated transfer cache params

7ef1399068 fix skip transfer cache for fetch credentialed requests (#69316)

migrations

Commit Type Description

15314c1736 fix migration skip any target are not build or test

22.1.0-next.0 (2026-06-10)

Deprecations

http

HttpClient.jsonp, HttpClientJsonpModule, and related JSONP classes/functions are deprecated. Use standard HTTP requests instead.

common

Commit Type Description

1ad6824d0d fix skip transfer cache for uncacheable HTTP traffic (#69017)

compiler

Commit Type Description

25c744c4d0 fix support foreign components defined outside top-level scope

compiler-cli

Commit Type Description

aeb55c8bc1 fix allow passing uninvoked signals as foreign component props

7c60a98b3c fix support import aliases in foreignImports (#68674)

... (truncated)

Commits

6867f77 fix(http): distinguish repeated transfer cache params
6c1f3e9 fix(common): skip transfer cache for uncacheable HTTP traffic (#69316)
7ef1399 fix(http): skip transfer cache for fetch credentialed requests (#69316)
94ea403 fix(common): escape anchor fragment in shadow DOM name selector
See full diff in compare view

Updates @angular/compiler from 22.0.1 to 22.0.2

Release notes

Sourced from @angular/compiler's releases.

22.0.2

common

Commit Description

escape anchor fragment in shadow DOM name selector

skip transfer cache for uncacheable HTTP traffic (#69316)

compiler

Commit Description

restrict possible event handler check to property names longer than 2 characters

core

Commit Description

avoid caching missing locale data

escape overlapping comment delimiters in escapeCommentText

guard against DOM clobbering in declareExperimentalWebMcpTool

preserve leave animation for sibling instances sharing a TNode

prevent unsubscribe during emit from throwing off other listeners

treat iframe credentialless as security-sensitive

detect existing signal dependency without checking all producer links

http

Commit Description

distinguish repeated transfer cache params

skip transfer cache for fetch credentialed requests (#69316)

migrations

Commit Description

migration skip any target are not build or test

Changelog

Sourced from @angular/compiler's changelog.

22.0.2 (2026-06-17)

common

Commit Type Description

94ea403563 fix escape anchor fragment in shadow DOM name selector

6c1f3e9d49 fix skip transfer cache for uncacheable HTTP traffic (#69316)

compiler

Commit Type Description

6f1171991a fix restrict possible event handler check to property names longer than 2 characters

core

Commit Type Description

528a34f766 fix avoid caching missing locale data

e17e8d5422 fix escape overlapping comment delimiters in escapeCommentText

59dea13f80 fix guard against DOM clobbering in declareExperimentalWebMcpTool

3a48abc15c fix preserve leave animation for sibling instances sharing a TNode

93d0a5f95c fix prevent unsubscribe during emit from throwing off other listeners

b32ee7ceb3 fix treat iframe credentialless as security-sensitive

f902d1d35e perf detect existing signal dependency without checking all producer links

http

Commit Type Description

6867f77ec7 fix distinguish repeated transfer cache params

7ef1399068 fix skip transfer cache for fetch credentialed requests (#69316)

migrations

Commit Type Description

15314c1736 fix migration skip any target are not build or test

22.1.0-next.0 (2026-06-10)

Deprecations

http

HttpClient.jsonp, HttpClientJsonpModule, and related JSONP classes/functions are deprecated. Use standard HTTP requests instead.

common

Commit Type Description

1ad6824d0d fix skip transfer cache for uncacheable HTTP traffic (#69017)

compiler

Commit Type Description

25c744c4d0 fix support foreign components defined outside top-level scope

compiler-cli

Commit Type Description

aeb55c8bc1 fix allow passing uninvoked signals as foreign component props

7c60a98b3c fix support import aliases in foreignImports (#68674)

... (truncated)

Commits

74f2b91 refactor(compiler): correct TcbInvalidReferenceOp initializer
b32ee7c fix(core): treat iframe credentialless as security-sensitive
f309727 refactor(compiler): Collect in-element comments
6f11719 fix(compiler): restrict possible event handler check to property names longer...
8bb3947 refactor: optimize dom security schema lookups
See full diff in compare view

Updates @angular/core from 22.0.1 to 22.0.2

Release notes

Sourced from @angular/core's releases.

22.0.2

common

Commit Description

escape anchor fragment in shadow DOM name selector

skip transfer cache for uncacheable HTTP traffic (#69316)

compiler

Commit Description

restrict possible event handler check to property names longer than 2 characters

core

Commit Description

avoid caching missing locale data

escape overlapping comment delimiters in escapeCommentText

guard against DOM clobbering in declareExperimentalWebMcpTool

preserve leave animation for sibling instances sharing a TNode

prevent unsubscribe during emit from throwing off other listeners

treat iframe credentialless as security-sensitive

detect existing signal dependency without checking all producer links

http

Commit Description

distinguish repeated transfer cache params

skip transfer cache for fetch credentialed requests (#69316)

migrations

Commit Description

migration skip any target are not build or test

Changelog

Sourced from @angular/core's changelog.

22.0.2 (2026-06-17)

common

Commit Type Description

94ea403563 fix escape anchor fragment in shadow DOM name selector

6c1f3e9d49 fix skip transfer cache for uncacheable HTTP traffic (#69316)

compiler

Commit Type Description

6f1171991a fix restrict possible event handler check to property names longer than 2 characters

core

Commit Type Description

528a34f766 fix avoid caching missing locale data

e17e8d5422 fix escape overlapping comment delimiters in escapeCommentText

59dea13f80 fix guard against DOM clobbering in declareExperimentalWebMcpTool

3a48abc15c fix preserve leave animation for sibling instances sharing a TNode

93d0a5f95c fix prevent unsubscribe during emit from throwing off other listeners

b32ee7ceb3 fix treat iframe credentialless as security-sensitive

f902d1d35e perf detect existing signal dependency without checking all producer links

http

Commit Type Description

6867f77ec7 fix distinguish repeated transfer cache params

7ef1399068 fix skip transfer cache for fetch credentialed requests (#69316)

migrations

Commit Type Description

15314c1736 fix migration skip any target are not build or test

22.1.0-next.0 (2026-06-10)

Deprecations

http

HttpClient.jsonp, HttpClientJsonpModule, and related JSONP classes/functions are deprecated. Use standard HTTP requests instead.

common

Commit Type Description

1ad6824d0d fix skip transfer cache for uncacheable HTTP traffic (#69017)

compiler

Commit Type Description

25c744c4d0 fix support foreign components defined outside top-level scope

compiler-cli

Commit Type Description

aeb55c8bc1 fix allow passing uninvoked signals as foreign component props

7c60a98b3c fix support import aliases in foreignImports (#68674)

... (truncated)

Commits

152601e refactor(core): add childSignalProp to ReactiveNodeKind
59dea13 fix(core): guard against DOM clobbering in declareExperimentalWebMcpTool
81cb457 refactor(router): Add handling for ActivatedRoute-scoped injector
f902d1d perf(core): detect existing signal dependency without checking all producer l...
e17e8d5 fix(core): escape overlapping comment delimiters in escapeCommentText
0f1cfe3 build: update cross-repo angular dependencies to v22.0.2
b32ee7c fix(core): treat iframe credentialless as security-sensitive
93d0a5f fix(core): prevent unsubscribe during emit from throwing off other listeners
528a34f fix(core): avoid caching missing locale data
6f11719 fix(compiler): restrict possible event handler check to property names longer...
Additional commits viewable in compare view

Updates @angular/platform-browser from 22.0.0 to 22.0.2

Release notes

Sourced from @angular/platform-browser's releases.

22.0.2

common

Commit Description

escape anchor fragment in shadow DOM name selector

skip transfer cache for uncacheable HTTP traffic (#69316)

compiler

Commit Description

restrict possible event handler check to property names longer than 2 characters

core

Commit Description

avoid caching missing locale data

escape overlapping comment delimiters in escapeCommentText

guard against DOM clobbering in declareExperimentalWebMcpTool

preserve leave animation for sibling instances sharing a TNode

prevent unsubscribe during emit from throwing off other listeners

treat iframe credentialless as security-sensitive

detect existing signal dependency without checking all producer links

http

Commit Description

distinguish repeated transfer cache params

skip transfer cache for fetch credentialed requests (#69316)

migrations

Commit Description

migration skip any target are not build or test

22.0.1

common

Commit Description

escape CSS string-terminating characters in escapeCssUrl

Limits date format string length

prevent prototype pollution in formatDateTime

use cryptographically secure SHA-256 for transfer cache key generation

compiler

Commit Description

disallow i18n event attributes

more robust logic to check if regex can be optimized

sanitize href/xlink:href attributes of any element of the MathML namespace

sanitize two-way properties

compiler-cli

Commit Description

bind switch exhaustive check expressions

core

... (truncated)

Changelog

Sourced from @angular/platform-browser's changelog.

22.0.2 (2026-06-17)

common

Commit Type Description

94ea403563 fix escape anchor fragment in shadow DOM name selector

6c1f3e9d49 fix skip transfer cache for uncacheable HTTP traffic (#69316)

compiler

Commit Type Description

6f1171991a fix restrict possible event handler check to property names longer than 2 characters

core

Commit Type Description

528a34f766 fix avoid caching missing locale data

e17e8d5422 fix escape overlapping comment delimiters in escapeCommentText

59dea13f80 fix guard against DOM clobbering in declareExperimentalWebMcpTool

3a48abc15c fix preserve leave animation for sibling instances sharing a TNode

93d0a5f95c fix prevent unsubscribe during emit from throwing off other listeners

b32ee7ceb3 fix treat iframe credentialless as security-sensitive

f902d1d35e perf detect existing signal dependency without checking all producer links

http

Commit Type Description

6867f77ec7 fix distinguish repeated transfer cache params

7ef1399068 fix skip transfer cache for fetch credentialed requests (#69316)

migrations

Commit Type Description

15314c1736 fix migration skip any target are not build or test

22.1.0-next.0 (2026-06-10)

Deprecations

http

HttpClient.jsonp, HttpClientJsonpModule, and related JSONP classes/functions are deprecated. Use standard HTTP requests instead.

common

Commit Type Description

1ad6824d0d fix skip transfer cache for uncacheable HTTP traffic (#69017)

compiler

Commit Type Description

25c744c4d0 fix support foreign components defined outside top-level scope

compiler-cli

Commit Type Description

aeb55c8bc1 fix allow passing uninvoked signals as foreign component props

7c60a98b3c fix support import aliases in foreignImports (#68674)

... (truncated)

Commits

See full diff in compare view

Updates @angular/router from 22.0.0 to 22.0.2

Release notes

Sourced from @angular/router's releases.

22.0.2

common

Commit Description

escape anchor fragment in shadow DOM name selector

skip transfer cache for uncacheable HTTP traffic (#69316)

compiler

Commit Description

restrict possible event handler check to property names longer than 2 characters

core

Commit Description

avoid caching missing locale data

escape overlapping comment delimiters in escapeCommentText

guard against DOM clobbering in declareExperimentalWebMcpTool

preserve leave animation for sibling instances sharing a TNode

prevent unsubscribe during emit from throwing off other listeners

treat iframe credentialless as security-sensitive

detect existing signal dependency without checking all producer links

http

Commit Description

distinguish repeated transfer cache params

skip transfer cache for fetch credentialed requests (#69316)

migrations

Commit Description

migration skip any target are not build or test

22.0.1

common

Commit Description

escape CSS string-terminating characters in escapeCssUrl

Limits date format string length

prevent prototype pollution in formatDateTime

use cryptographically secure SHA-256 for transfer cache key generation

compiler

Commit Description

disallow i18n event attributes

more robust logic to check if regex can be optimized

sanitize href/xlink:href attributes of any element of the MathML namespace

sanitize two-way properties

compiler-cli

Commit Description

bind switch exhaustive check expressions

core

... (truncated)

Changelog

Sourced from @angular/router's changelog.

22.0.2 (2026-06-17)

common

Commit Type Description

94ea403563 fix escape anchor fragment in shadow DOM name selector

6c1f3e9d49 fix skip transfer cache for uncacheable HTTP traffic (#69316)

compiler

Commit Type Description

6f1171991a fix restrict possible event handler check to property names longer than 2 characters

core

Commit Type Description

528a34f766 fix avoid caching missing locale data

e17e8d5422 fix escape overlapping comment delimiters in escapeCommentText

59dea13f80 fix guard against DOM clobbering in declareExperimentalWebMcpTool

3a48abc15c fix preserve leave animation for sibling instances sharing a TNode

93d0a5f95c fix prevent unsubscribe during emit from throwing off other listeners

b32ee7ceb3 fix treat iframe credentialless as security-sensitive

f902d1d35e perf detect existing signal dependency without checking all producer links

http

Commit Type Description

6867f77ec7 fix distinguish repeated transfer cache params

7ef1399068 fix skip transfer cache for fetch credentialed requests (#69316)

migrations

Commit Type Description

15314c1736 fix migration skip any target are not build or test

22.1.0-next.0 (2026-06-10)

Deprecations

http

HttpClient.jsonp, HttpClientJsonpModule, and related JSONP classes/functions are deprecated. Use standard HTTP requests instead.

common

Commit Type Description

1ad6824d0d fix skip transfer cache for uncacheable HTTP traffic (#69017)

compiler

Commit Type Description

25c744c4d0 fix support foreign components defined outside top-level scope

compiler-cli

Commit Type Description

aeb55c8bc1 fix allow passing uninvoked signals as foreign component props

7c60a98b3c fix support import aliases in foreignImports (#68674)

... (truncated)

Commits

81cb457 refactor(router): Add handling for ActivatedRoute-scoped injector
43edc84 fix(router): use native URL object for navigation boundary and comparison
See full diff in compare view

Updates @zitadel/angular-auth from 3.0.0 to 3.0.1

Release notes

Sourced from @zitadel/angular-auth's releases.

v3.0.1

3.0.1 (2026-06-21)

Commits

f3b6d5c chore(release): 3.0.1 [skip ci]
6c538a1 chore(deps): bump the npm-security-updates group across 1 directory with 2 up...
29efee7 chore(release): use semantic-release default branches
787418b ci: add concurrency group to release workflow
d0309cb chore(eslint): align preset and dep versions across the fleet (#46)
19713a3 chore(qodana): bump linter to jetbrains/qodana-js:2026.1
See full diff in compare view

Updates zone.js from 0.15.1 to 0.16.2

Changelog

Sourced from zone.js's changelog.

0.16.2 (2026-05-06)

feat(zone.js): support vitest patchin...
Description has been truncated

…th 25 updates Bumps the npm-version-updates group with 24 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@angular/common](https://github.com/angular/angular/tree/HEAD/packages/common) | `22.0.1` | `22.0.2` | | [@angular/compiler](https://github.com/angular/angular/tree/HEAD/packages/compiler) | `22.0.1` | `22.0.2` | | [@angular/core](https://github.com/angular/angular/tree/HEAD/packages/core) | `22.0.1` | `22.0.2` | | [@angular/platform-browser](https://github.com/angular/angular/tree/HEAD/packages/platform-browser) | `22.0.0` | `22.0.2` | | [@angular/router](https://github.com/angular/angular/tree/HEAD/packages/router) | `22.0.0` | `22.0.2` | | [@zitadel/angular-auth](https://github.com/zitadel/angular-auth) | `3.0.0` | `3.0.1` | | [zone.js](https://github.com/angular/angular/tree/HEAD/packages/zone.js) | `0.15.1` | `0.16.2` | | [@angular/build](https://github.com/angular/angular-cli) | `22.0.0` | `22.0.4` | | [@angular/cli](https://github.com/angular/angular-cli) | `22.0.0` | `22.0.4` | | [@angular/compiler-cli](https://github.com/angular/angular/tree/HEAD/packages/compiler-cli) | `22.0.0` | `22.0.2` | | [@commitlint/config-conventional](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/config-conventional) | `20.5.3` | `21.1.0` | | [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js) | `9.39.4` | `10.0.1` | | [@playwright/test](https://github.com/microsoft/playwright) | `1.60.0` | `1.61.1` | | [@tailwindcss/postcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-postcss) | `4.3.0` | `4.3.1` | | [@types/jasmine](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jasmine) | `5.1.15` | `6.0.0` | | [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `22.19.19` | `26.0.0` | | [autoprefixer](https://github.com/postcss/autoprefixer) | `10.5.0` | `10.5.1` | | [eslint](https://github.com/eslint/eslint) | `9.39.4` | `10.5.0` | | [jasmine-core](https://github.com/jasmine/jasmine) | `5.9.0` | `6.3.0` | | [karma-jasmine-html-reporter](https://github.com/dfederm/karma-jasmine-html-reporter) | `2.1.0` | `2.2.0` | | [knip](https://github.com/webpro-nl/knip/tree/HEAD/packages/knip) | `5.88.1` | `6.18.0` | | [prettier](https://github.com/prettier/prettier) | `3.8.3` | `3.8.4` | | [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) | `8.60.0` | `8.62.0` | | [globals](https://github.com/sindresorhus/globals) | `16.5.0` | `17.7.0` | Updates `@angular/common` from 22.0.1 to 22.0.2 - [Release notes](https://github.com/angular/angular/releases) - [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md) - [Commits](https://github.com/angular/angular/commits/v22.0.2/packages/common) Updates `@angular/compiler` from 22.0.1 to 22.0.2 - [Release notes](https://github.com/angular/angular/releases) - [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md) - [Commits](https://github.com/angular/angular/commits/v22.0.2/packages/compiler) Updates `@angular/core` from 22.0.1 to 22.0.2 - [Release notes](https://github.com/angular/angular/releases) - [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md) - [Commits](https://github.com/angular/angular/commits/v22.0.2/packages/core) Updates `@angular/platform-browser` from 22.0.0 to 22.0.2 - [Release notes](https://github.com/angular/angular/releases) - [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md) - [Commits](https://github.com/angular/angular/commits/v22.0.2/packages/platform-browser) Updates `@angular/router` from 22.0.0 to 22.0.2 - [Release notes](https://github.com/angular/angular/releases) - [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md) - [Commits](https://github.com/angular/angular/commits/v22.0.2/packages/router) Updates `@zitadel/angular-auth` from 3.0.0 to 3.0.1 - [Release notes](https://github.com/zitadel/angular-auth/releases) - [Changelog](https://github.com/zitadel/angular-auth/blob/main/release.config.mjs) - [Commits](zitadel/angular-auth@v3.0.0...v3.0.1) Updates `zone.js` from 0.15.1 to 0.16.2 - [Release notes](https://github.com/angular/angular/releases) - [Changelog](https://github.com/angular/angular/blob/main/packages/zone.js/CHANGELOG.md) - [Commits](https://github.com/angular/angular/commits/zone.js-0.16.2/packages/zone.js) Updates `@angular/build` from 22.0.0 to 22.0.4 - [Release notes](https://github.com/angular/angular-cli/releases) - [Changelog](https://github.com/angular/angular-cli/blob/main/CHANGELOG.md) - [Commits](angular/angular-cli@v22.0.0...v22.0.4) Updates `@angular/cli` from 22.0.0 to 22.0.4 - [Release notes](https://github.com/angular/angular-cli/releases) - [Changelog](https://github.com/angular/angular-cli/blob/main/CHANGELOG.md) - [Commits](angular/angular-cli@v22.0.0...v22.0.4) Updates `@angular/compiler-cli` from 22.0.0 to 22.0.2 - [Release notes](https://github.com/angular/angular/releases) - [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md) - [Commits](https://github.com/angular/angular/commits/v22.0.2/packages/compiler-cli) Updates `@commitlint/config-conventional` from 20.5.3 to 21.1.0 - [Release notes](https://github.com/conventional-changelog/commitlint/releases) - [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/config-conventional/CHANGELOG.md) - [Commits](https://github.com/conventional-changelog/commitlint/commits/v21.1.0/@commitlint/config-conventional) Updates `@eslint/js` from 9.39.4 to 10.0.1 - [Release notes](https://github.com/eslint/eslint/releases) - [Commits](https://github.com/eslint/eslint/commits/v10.0.1/packages/js) Updates `@playwright/test` from 1.60.0 to 1.61.1 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](microsoft/playwright@v1.60.0...v1.61.1) Updates `@tailwindcss/postcss` from 4.3.0 to 4.3.1 - [Release notes](https://github.com/tailwindlabs/tailwindcss/releases) - [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/tailwindlabs/tailwindcss/commits/v4.3.1/packages/@tailwindcss-postcss) Updates `@types/jasmine` from 5.1.15 to 6.0.0 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jasmine) Updates `@types/node` from 22.19.19 to 26.0.0 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) Updates `autoprefixer` from 10.5.0 to 10.5.1 - [Release notes](https://github.com/postcss/autoprefixer/releases) - [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md) - [Commits](postcss/autoprefixer@10.5.0...10.5.1) Updates `eslint` from 9.39.4 to 10.5.0 - [Release notes](https://github.com/eslint/eslint/releases) - [Commits](eslint/eslint@v9.39.4...v10.5.0) Updates `jasmine-core` from 5.9.0 to 6.3.0 - [Release notes](https://github.com/jasmine/jasmine/releases) - [Changelog](https://github.com/jasmine/jasmine/blob/main/RELEASE.md) - [Commits](jasmine/jasmine@v5.9.0...v6.3.0) Updates `karma-jasmine-html-reporter` from 2.1.0 to 2.2.0 - [Release notes](https://github.com/dfederm/karma-jasmine-html-reporter/releases) - [Commits](dfederm/karma-jasmine-html-reporter@v2.1.0...v2.2.0) Updates `knip` from 5.88.1 to 6.18.0 - [Release notes](https://github.com/webpro-nl/knip/releases) - [Commits](https://github.com/webpro-nl/knip/commits/knip@6.18.0/packages/knip) Updates `prettier` from 3.8.3 to 3.8.4 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](prettier/prettier@3.8.3...3.8.4) Updates `tailwindcss` from 4.3.0 to 4.3.1 - [Release notes](https://github.com/tailwindlabs/tailwindcss/releases) - [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/tailwindlabs/tailwindcss/commits/v4.3.1/packages/tailwindcss) Updates `typescript-eslint` from 8.60.0 to 8.62.0 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.62.0/packages/typescript-eslint) Updates `globals` from 16.5.0 to 17.7.0 - [Release notes](https://github.com/sindresorhus/globals/releases) - [Commits](sindresorhus/globals@v16.5.0...v17.7.0) --- updated-dependencies: - dependency-name: "@angular/common" dependency-version: 22.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: "@angular/compiler" dependency-version: 22.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: "@angular/core" dependency-version: 22.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: "@angular/platform-browser" dependency-version: 22.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: "@angular/router" dependency-version: 22.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: "@zitadel/angular-auth" dependency-version: 3.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: zone.js dependency-version: 0.16.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-version-updates - dependency-name: "@angular/build" dependency-version: 22.0.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: "@angular/cli" dependency-version: 22.0.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: "@angular/compiler-cli" dependency-version: 22.0.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: "@commitlint/config-conventional" dependency-version: 21.1.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: npm-version-updates - dependency-name: "@eslint/js" dependency-version: 10.0.1 dependency-type: direct:development update-type: version-update:semver-major dependency-group: npm-version-updates - dependency-name: "@playwright/test" dependency-version: 1.61.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-version-updates - dependency-name: "@tailwindcss/postcss" dependency-version: 4.3.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: "@types/jasmine" dependency-version: 6.0.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: npm-version-updates - dependency-name: "@types/node" dependency-version: 26.0.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: npm-version-updates - dependency-name: autoprefixer dependency-version: 10.5.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: eslint dependency-version: 10.5.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: npm-version-updates - dependency-name: jasmine-core dependency-version: 6.3.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: npm-version-updates - dependency-name: karma-jasmine-html-reporter dependency-version: 2.2.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-version-updates - dependency-name: knip dependency-version: 6.18.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: npm-version-updates - dependency-name: prettier dependency-version: 3.8.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: tailwindcss dependency-version: 4.3.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-version-updates - dependency-name: typescript-eslint dependency-version: 8.62.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-version-updates - dependency-name: globals dependency-version: 17.7.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: npm-version-updates ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2026-06-24T23:57:00Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 24, 2026

dependabot Bot closed this Jun 24, 2026

dependabot Bot deleted the dependabot/npm_and_yarn/npm-version-updates-b8cf1944f5 branch June 24, 2026 23:57

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump the npm-version-updates group across 1 directory with 25 updates#83

chore(deps): bump the npm-version-updates group across 1 directory with 25 updates#83
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/npm-version-updates-b8cf1944f5

dependabot Bot commented on behalf of github Jun 24, 2026 •

edited

Loading

Uh oh!

dependabot Bot commented on behalf of github Jun 24, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Commit	Description
	escape anchor fragment in shadow DOM name selector
	skip transfer cache for uncacheable HTTP traffic (#69316)

Commit	Description
	avoid caching missing locale data
	escape overlapping comment delimiters in escapeCommentText
	guard against DOM clobbering in declareExperimentalWebMcpTool
	preserve leave animation for sibling instances sharing a TNode
	prevent unsubscribe during emit from throwing off other listeners
	treat iframe credentialless as security-sensitive
	detect existing signal dependency without checking all producer links

Commit	Description
	distinguish repeated transfer cache params
	skip transfer cache for fetch credentialed requests (#69316)

Commit	Type	Description
94ea403563	fix	escape anchor fragment in shadow DOM name selector
6c1f3e9d49	fix	skip transfer cache for uncacheable HTTP traffic (#69316)

Commit	Type	Description
528a34f766	fix	avoid caching missing locale data
e17e8d5422	fix	escape overlapping comment delimiters in escapeCommentText
59dea13f80	fix	guard against DOM clobbering in declareExperimentalWebMcpTool
3a48abc15c	fix	preserve leave animation for sibling instances sharing a TNode
93d0a5f95c	fix	prevent unsubscribe during emit from throwing off other listeners
b32ee7ceb3	fix	treat iframe credentialless as security-sensitive
f902d1d35e	perf	detect existing signal dependency without checking all producer links

Commit	Type	Description
6867f77ec7	fix	distinguish repeated transfer cache params
7ef1399068	fix	skip transfer cache for fetch credentialed requests (#69316)

Commit	Type	Description
aeb55c8bc1	fix	allow passing uninvoked signals as foreign component props
7c60a98b3c	fix	support import aliases in foreignImports (#68674)

Commit	Description
	escape CSS string-terminating characters in escapeCssUrl
	Limits date format string length
	prevent prototype pollution in formatDateTime
	use cryptographically secure SHA-256 for transfer cache key generation

Commit	Description
	disallow i18n event attributes
	more robust logic to check if regex can be optimized
	sanitize `href`/`xlink:href` attributes of any element of the MathML namespace
	sanitize two-way properties

Uh oh!

Conversation

dependabot Bot commented on behalf of github Jun 24, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

22.0.2

common

compiler

core

http

migrations

22.0.2 (2026-06-17)

common

compiler

core

http

migrations

22.1.0-next.0 (2026-06-10)

Deprecations

http

common

compiler

compiler-cli

22.0.2

common

compiler

core

http

migrations

22.0.2 (2026-06-17)

common

compiler

core

http

migrations

22.1.0-next.0 (2026-06-10)

Deprecations

http

common

compiler

compiler-cli

22.0.2

common

compiler

core

http

migrations

22.0.2 (2026-06-17)

common

compiler

core

http

migrations

22.1.0-next.0 (2026-06-10)

Deprecations

http

common

compiler

compiler-cli

22.0.2

common

compiler

core

http

migrations

22.0.1

common

compiler

compiler-cli

core

22.0.2 (2026-06-17)

common

compiler

core

http

migrations

22.1.0-next.0 (2026-06-10)

Deprecations

http

common

compiler

dependabot Bot commented on behalf of github Jun 24, 2026 •

edited

Loading