{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":9524646,"defaultBranch":"master","name":"rodcast.github.io","ownerLogin":"rodcast","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2013-04-18T15:09:01.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/226556?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1725526620.0","currentOid":""},"activityList":{"items":[{"before":"fdf7bc17958a28c01e4977c56cd489689843b607","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/types/node-22.5.4","pushedAt":"2024-09-05T08:57:00.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"72e6e3dbf9170393a4e6a01f34b7e8d22772b2c4","after":"ba7d44897974d0693a88bbac53909d7a99144389","ref":"refs/heads/master","pushedAt":"2024-09-05T08:56:53.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"rodcast","name":"Rodrigo Castilho","path":"/rodcast","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/226556?s=80&v=4"},"commit":{"message":"build(deps): bump @types/node from 22.5.3 to 22.5.4 (#245)\n\nBumps\r\n[@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node)\r\nfrom 22.5.3 to 22.5.4.\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=22.5.3&new-version=22.5.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"build(deps): bump @types/node from 22.5.3 to 22.5.4 (#245)"}},{"before":"9e936a728e107ffd0c276622497118341ecd37aa","after":"fdf7bc17958a28c01e4977c56cd489689843b607","ref":"refs/heads/dependabot/npm_and_yarn/types/node-22.5.4","pushedAt":"2024-09-05T08:55:41.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump @types/node from 22.5.3 to 22.5.4\n\nBumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.5.3 to 22.5.4.\n- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)\n- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)\n\n---\nupdated-dependencies:\n- dependency-name: \"@types/node\"\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump @types/node from 22.5.3 to 22.5.4"}},{"before":"5c6ae205c59cdaa459179409999011b9ec78af61","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/next/third-parties-14.2.8","pushedAt":"2024-09-05T08:55:09.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"594f9251c86a66b80e494b4a2b0e9a3ab728097d","after":"72e6e3dbf9170393a4e6a01f34b7e8d22772b2c4","ref":"refs/heads/master","pushedAt":"2024-09-05T08:55:02.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"rodcast","name":"Rodrigo Castilho","path":"/rodcast","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/226556?s=80&v=4"},"commit":{"message":"build(deps): bump @next/third-parties from 14.2.7 to 14.2.8 (#244)\n\nBumps\r\n[@next/third-parties](https://github.com/vercel/next.js/tree/HEAD/packages/third-parties)\r\nfrom 14.2.7 to 14.2.8.\r\n
\r\nRelease notes\r\n

Sourced from @​next/third-parties's\r\nreleases.

\r\n
\r\n

v14.2.8

\r\n

What's Changed

\r\n
\r\n

[!NOTE]
\r\nThis release is backporting bug fixes and minor improvements. It does\r\nnot include all pending features/changes on canary.

\r\n
\r\n

Support esmExternals in app directory

\r\n
    \r\n
  • Support esm externals in app router (#65041)
    • \r\n
  • Turbopack: Allow client components from foreign code in app routes\r\n(#64751)
    • \r\n
  • Turbopack: add support for esm externals in app dir (#64918)
    • \r\n
  • other related PRs: #66990\r\n#66727\r\n#66286\r\n#65519
    • \r\n
\r\n

Reading cookies set in middleware in components and actions

\r\n
    \r\n
  • initialize ALS with cookies in middleware (#65008)
    • \r\n
  • fix middleware cookie initialization (#65820)
    • \r\n
  • ensure cookies set in middleware can be read in a server action (#67924)
    • \r\n
  • fix: merged middleware cookies should preserve options (#67956)
    • \r\n
\r\n

Metadata and icons

\r\n
    \r\n
  • support facebook-specific metadata (fb:app_id,\r\nfb:admins) in generateMetaData (#65713)
    • \r\n
  • Always collect static icons for all segments (#68712)
    • \r\n
  • Fix favicon merging with customized icons (#67982)
    • \r\n
  • Warn metadataBase missing in standalone mode or non vercel\r\ndeployment (#66296)
    • \r\n
\r\n

Parallel routes fixes

\r\n
    \r\n
  • fix missing stylesheets when parallel routes are present (#69507)
    • \r\n
\r\n

Draft mode and edge improvements

\r\n
    \r\n
  • fix: unstable_cache should not cache new result in draft mode (#67772)
    • \r\n
  • Add draft mode flag for multi-zone (#68997)
    • \r\n
  • Fix edge preview props are not matched with cookie (#67779)
    • \r\n
  • other related PRs: #65426,\r\n#67787,\r\n#64946,\r\n#64313,\r\n#64370
    • \r\n
\r\n

next/image fixes

\r\n
    \r\n
  • Allow external image urls with _next/image pathname to be rendered\r\nvia Image component (#69586)
    • \r\n
\r\n

Server actions improvements

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@next/third-parties&package-manager=npm_and_yarn&previous-version=14.2.7&new-version=14.2.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"build(deps): bump @next/third-parties from 14.2.7 to 14.2.8 (#244)"}},{"before":"cb93fdc5dfde98459a29d1bf3e73ff51863adc11","after":"9e936a728e107ffd0c276622497118341ecd37aa","ref":"refs/heads/dependabot/npm_and_yarn/types/node-22.5.4","pushedAt":"2024-09-05T08:54:25.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump @types/node from 22.5.3 to 22.5.4\n\nBumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.5.3 to 22.5.4.\n- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)\n- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)\n\n---\nupdated-dependencies:\n- dependency-name: \"@types/node\"\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump @types/node from 22.5.3 to 22.5.4"}},{"before":"490f688cbbeb2f17da95b727300b5c2bdd3f6fb8","after":"5c6ae205c59cdaa459179409999011b9ec78af61","ref":"refs/heads/dependabot/npm_and_yarn/next/third-parties-14.2.8","pushedAt":"2024-09-05T08:53:40.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump @next/third-parties from 14.2.7 to 14.2.8\n\nBumps [@next/third-parties](https://github.com/vercel/next.js/tree/HEAD/packages/third-parties) from 14.2.7 to 14.2.8.\n- [Release notes](https://github.com/vercel/next.js/releases)\n- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)\n- [Commits](https://github.com/vercel/next.js/commits/v14.2.8/packages/third-parties)\n\n---\nupdated-dependencies:\n- dependency-name: \"@next/third-parties\"\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump @next/third-parties from 14.2.7 to 14.2.8"}},{"before":"c140f9138a8ebd2afe09cc57db459479ce1df6c3","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/eslint-config-next-14.2.8","pushedAt":"2024-09-05T08:52:59.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"302838f68fdc03e9a17eac4a91f397abd29d99f0","after":"594f9251c86a66b80e494b4a2b0e9a3ab728097d","ref":"refs/heads/master","pushedAt":"2024-09-05T08:52:52.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"rodcast","name":"Rodrigo Castilho","path":"/rodcast","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/226556?s=80&v=4"},"commit":{"message":"build(deps): bump eslint-config-next from 14.2.7 to 14.2.8 (#243)\n\n[//]: # (dependabot-start)\r\n⚠️ **Dependabot is rebasing this PR** ⚠️ \r\n\r\nRebasing might not happen immediately, so don't worry if this takes some\r\ntime.\r\n\r\nNote: if you make any changes to this PR yourself, they will take\r\nprecedence over the rebase.\r\n\r\n---\r\n\r\n[//]: # (dependabot-end)\r\n\r\nBumps\r\n[eslint-config-next](https://github.com/vercel/next.js/tree/HEAD/packages/eslint-config-next)\r\nfrom 14.2.7 to 14.2.8.\r\n
\r\nRelease notes\r\n

Sourced from eslint-config-next's\r\nreleases.

\r\n
\r\n

v14.2.8

\r\n

What's Changed

\r\n
\r\n

[!NOTE]
\r\nThis release is backporting bug fixes and minor improvements. It does\r\nnot include all pending features/changes on canary.

\r\n
\r\n

Support esmExternals in app directory

\r\n
    \r\n
  • Support esm externals in app router (#65041)
    • \r\n
  • Turbopack: Allow client components from foreign code in app routes\r\n(#64751)
    • \r\n
  • Turbopack: add support for esm externals in app dir (#64918)
    • \r\n
  • other related PRs: #66990\r\n#66727\r\n#66286\r\n#65519
    • \r\n
\r\n

Reading cookies set in middleware in components and actions

\r\n
    \r\n
  • initialize ALS with cookies in middleware (#65008)
    • \r\n
  • fix middleware cookie initialization (#65820)
    • \r\n
  • ensure cookies set in middleware can be read in a server action (#67924)
    • \r\n
  • fix: merged middleware cookies should preserve options (#67956)
    • \r\n
\r\n

Metadata and icons

\r\n
    \r\n
  • support facebook-specific metadata (fb:app_id,\r\nfb:admins) in generateMetaData (#65713)
    • \r\n
  • Always collect static icons for all segments (#68712)
    • \r\n
  • Fix favicon merging with customized icons (#67982)
    • \r\n
  • Warn metadataBase missing in standalone mode or non vercel\r\ndeployment (#66296)
    • \r\n
\r\n

Parallel routes fixes

\r\n
    \r\n
  • fix missing stylesheets when parallel routes are present (#69507)
    • \r\n
\r\n

Draft mode and edge improvements

\r\n
    \r\n
  • fix: unstable_cache should not cache new result in draft mode (#67772)
    • \r\n
  • Add draft mode flag for multi-zone (#68997)
    • \r\n
  • Fix edge preview props are not matched with cookie (#67779)
    • \r\n
  • other related PRs: #65426,\r\n#67787,\r\n#64946,\r\n#64313,\r\n#64370
    • \r\n
\r\n

next/image fixes

\r\n
    \r\n
  • Allow external image urls with _next/image pathname to be rendered\r\nvia Image component (#69586)
    • \r\n
\r\n

Server actions improvements

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 63b999c\r\nv14.2.8
    • \r\n
  • c021c2f\r\nfeat: enable @​typescript-eslint/recommended in\r\ncreate-next-app --typescript (...
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=eslint-config-next&package-manager=npm_and_yarn&previous-version=14.2.7&new-version=14.2.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"build(deps): bump eslint-config-next from 14.2.7 to 14.2.8 (#243)"}},{"before":"08eb62f3f27eb3f3dfc14d506cc6428017f07712","after":"c140f9138a8ebd2afe09cc57db459479ce1df6c3","ref":"refs/heads/dependabot/npm_and_yarn/eslint-config-next-14.2.8","pushedAt":"2024-09-05T08:52:24.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump eslint-config-next from 14.2.7 to 14.2.8\n\nBumps [eslint-config-next](https://github.com/vercel/next.js/tree/HEAD/packages/eslint-config-next) from 14.2.7 to 14.2.8.\n- [Release notes](https://github.com/vercel/next.js/releases)\n- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)\n- [Commits](https://github.com/vercel/next.js/commits/v14.2.8/packages/eslint-config-next)\n\n---\nupdated-dependencies:\n- dependency-name: eslint-config-next\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump eslint-config-next from 14.2.7 to 14.2.8"}},{"before":"d1f957a0b2b68999b10b4830fb3cbc524e432e2e","after":"490f688cbbeb2f17da95b727300b5c2bdd3f6fb8","ref":"refs/heads/dependabot/npm_and_yarn/next/third-parties-14.2.8","pushedAt":"2024-09-05T08:52:22.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump @next/third-parties from 14.2.7 to 14.2.8\n\nBumps [@next/third-parties](https://github.com/vercel/next.js/tree/HEAD/packages/third-parties) from 14.2.7 to 14.2.8.\n- [Release notes](https://github.com/vercel/next.js/releases)\n- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)\n- [Commits](https://github.com/vercel/next.js/commits/v14.2.8/packages/third-parties)\n\n---\nupdated-dependencies:\n- dependency-name: \"@next/third-parties\"\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump @next/third-parties from 14.2.7 to 14.2.8"}},{"before":"62b223789cf312edcb188cee1a89edd1a199094d","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/next-14.2.8","pushedAt":"2024-09-05T08:50:52.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"44655e81f0afd948fc621ad6b19e9349127db760","after":"302838f68fdc03e9a17eac4a91f397abd29d99f0","ref":"refs/heads/master","pushedAt":"2024-09-05T08:50:45.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"rodcast","name":"Rodrigo Castilho","path":"/rodcast","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/226556?s=80&v=4"},"commit":{"message":"build(deps): bump next from 14.2.7 to 14.2.8 (#242)\n\nBumps [next](https://github.com/vercel/next.js) from 14.2.7 to 14.2.8.\r\n
\r\nRelease notes\r\n

Sourced from next's\r\nreleases.

\r\n
\r\n

v14.2.8

\r\n

What's Changed

\r\n
\r\n

[!NOTE]
\r\nThis release is backporting bug fixes and minor improvements. It does\r\nnot include all pending features/changes on canary.

\r\n
\r\n

Support esmExternals in app directory

\r\n
    \r\n
  • Support esm externals in app router (#65041)
    • \r\n
  • Turbopack: Allow client components from foreign code in app routes\r\n(#64751)
    • \r\n
  • Turbopack: add support for esm externals in app dir (#64918)
    • \r\n
  • other related PRs: #66990\r\n#66727\r\n#66286\r\n#65519
    • \r\n
\r\n

Reading cookies set in middleware in components and actions

\r\n
    \r\n
  • initialize ALS with cookies in middleware (#65008)
    • \r\n
  • fix middleware cookie initialization (#65820)
    • \r\n
  • ensure cookies set in middleware can be read in a server action (#67924)
    • \r\n
  • fix: merged middleware cookies should preserve options (#67956)
    • \r\n
\r\n

Metadata and icons

\r\n
    \r\n
  • support facebook-specific metadata (fb:app_id,\r\nfb:admins) in generateMetaData (#65713)
    • \r\n
  • Always collect static icons for all segments (#68712)
    • \r\n
  • Fix favicon merging with customized icons (#67982)
    • \r\n
  • Warn metadataBase missing in standalone mode or non vercel\r\ndeployment (#66296)
    • \r\n
\r\n

Parallel routes fixes

\r\n
    \r\n
  • fix missing stylesheets when parallel routes are present (#69507)
    • \r\n
\r\n

Draft mode and edge improvements

\r\n
    \r\n
  • fix: unstable_cache should not cache new result in draft mode (#67772)
    • \r\n
  • Add draft mode flag for multi-zone (#68997)
    • \r\n
  • Fix edge preview props are not matched with cookie (#67779)
    • \r\n
  • other related PRs: #65426,\r\n#67787,\r\n#64946,\r\n#64313,\r\n#64370
    • \r\n
\r\n

next/image fixes

\r\n
    \r\n
  • Allow external image urls with _next/image pathname to be rendered\r\nvia Image component (#69586)
    • \r\n
\r\n

Server actions improvements

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 63b999c\r\nv14.2.8
    • \r\n
  • 55e4ef2\r\nAllow external image urls with _next/image pathname to be rendered via\r\nImage ...
    • \r\n
  • d09b769\r\nfeat(turbopack): add support for esm externals in app dir (#64918)
    • \r\n
  • dafdc81\r\ntest: convert app-external.test.ts to nextTestSetup
    • \r\n
  • 2c80812\r\nTurbopack: Allow client components from foreign code in app routes (#64751)
    • \r\n
  • 6473113\r\nImprove SWC transform ID generation (#69183)
    • \r\n
  • 9c4efb9\r\nApply optimization for unused actions (#69178)
    • \r\n
  • 5eff016\r\nrefactor: create shared utils for mod resource (#69145)
    • \r\n
  • c8bde3e\r\noptimize server actions (#66523)
    • \r\n
  • 562df1f\r\nEnsure we match comment minify behavior between terser and swc (#68372)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=next&package-manager=npm_and_yarn&previous-version=14.2.7&new-version=14.2.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"build(deps): bump next from 14.2.7 to 14.2.8 (#242)"}},{"before":null,"after":"cb93fdc5dfde98459a29d1bf3e73ff51863adc11","ref":"refs/heads/dependabot/npm_and_yarn/types/node-22.5.4","pushedAt":"2024-09-05T04:19:48.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump @types/node from 22.5.3 to 22.5.4\n\nBumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.5.3 to 22.5.4.\n- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)\n- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)\n\n---\nupdated-dependencies:\n- dependency-name: \"@types/node\"\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump @types/node from 22.5.3 to 22.5.4"}},{"before":null,"after":"d1f957a0b2b68999b10b4830fb3cbc524e432e2e","ref":"refs/heads/dependabot/npm_and_yarn/next/third-parties-14.2.8","pushedAt":"2024-09-05T04:19:36.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump @next/third-parties from 14.2.7 to 14.2.8\n\nBumps [@next/third-parties](https://github.com/vercel/next.js/tree/HEAD/packages/third-parties) from 14.2.7 to 14.2.8.\n- [Release notes](https://github.com/vercel/next.js/releases)\n- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)\n- [Commits](https://github.com/vercel/next.js/commits/v14.2.8/packages/third-parties)\n\n---\nupdated-dependencies:\n- dependency-name: \"@next/third-parties\"\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump @next/third-parties from 14.2.7 to 14.2.8"}},{"before":null,"after":"08eb62f3f27eb3f3dfc14d506cc6428017f07712","ref":"refs/heads/dependabot/npm_and_yarn/eslint-config-next-14.2.8","pushedAt":"2024-09-05T04:19:28.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump eslint-config-next from 14.2.7 to 14.2.8\n\nBumps [eslint-config-next](https://github.com/vercel/next.js/tree/HEAD/packages/eslint-config-next) from 14.2.7 to 14.2.8.\n- [Release notes](https://github.com/vercel/next.js/releases)\n- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)\n- [Commits](https://github.com/vercel/next.js/commits/v14.2.8/packages/eslint-config-next)\n\n---\nupdated-dependencies:\n- dependency-name: eslint-config-next\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump eslint-config-next from 14.2.7 to 14.2.8"}},{"before":null,"after":"62b223789cf312edcb188cee1a89edd1a199094d","ref":"refs/heads/dependabot/npm_and_yarn/next-14.2.8","pushedAt":"2024-09-05T04:19:07.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump next from 14.2.7 to 14.2.8\n\nBumps [next](https://github.com/vercel/next.js) from 14.2.7 to 14.2.8.\n- [Release notes](https://github.com/vercel/next.js/releases)\n- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)\n- [Commits](https://github.com/vercel/next.js/compare/v14.2.7...v14.2.8)\n\n---\nupdated-dependencies:\n- dependency-name: next\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump next from 14.2.7 to 14.2.8"}},{"before":"195bf19be7bf62af0ed25a660ccb246fe8e99189","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/types/node-22.5.3","pushedAt":"2024-09-04T08:29:05.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"a026c43828af3f1bbe3d5f204b52b897368240c4","after":"44655e81f0afd948fc621ad6b19e9349127db760","ref":"refs/heads/master","pushedAt":"2024-09-04T08:28:57.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"rodcast","name":"Rodrigo Castilho","path":"/rodcast","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/226556?s=80&v=4"},"commit":{"message":"build(deps): bump @types/node from 22.5.2 to 22.5.3 (#241)\n\nBumps\r\n[@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node)\r\nfrom 22.5.2 to 22.5.3.\r\n
\r\nCommits\r\n
    \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=22.5.2&new-version=22.5.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"build(deps): bump @types/node from 22.5.2 to 22.5.3 (#241)"}},{"before":null,"after":"195bf19be7bf62af0ed25a660ccb246fe8e99189","ref":"refs/heads/dependabot/npm_and_yarn/types/node-22.5.3","pushedAt":"2024-09-04T04:35:12.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump @types/node from 22.5.2 to 22.5.3\n\nBumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.5.2 to 22.5.3.\n- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)\n- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)\n\n---\nupdated-dependencies:\n- dependency-name: \"@types/node\"\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump @types/node from 22.5.2 to 22.5.3"}},{"before":"ccdbe9adf6139558e702f04dd75460384bbd7bce","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/types/node-22.5.2","pushedAt":"2024-09-02T08:57:20.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"c7abb58930b966479dab0540c1a1bf87c769b63f","after":"a026c43828af3f1bbe3d5f204b52b897368240c4","ref":"refs/heads/master","pushedAt":"2024-09-02T08:57:13.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"rodcast","name":"Rodrigo Castilho","path":"/rodcast","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/226556?s=80&v=4"},"commit":{"message":"build(deps): bump @types/node from 22.5.1 to 22.5.2 (#240)\n\n[//]: # (dependabot-start)\r\n⚠️ **Dependabot is rebasing this PR** ⚠️ \r\n\r\nRebasing might not happen immediately, so don't worry if this takes some\r\ntime.\r\n\r\nNote: if you make any changes to this PR yourself, they will take\r\nprecedence over the rebase.\r\n\r\n---\r\n\r\n[//]: # (dependabot-end)\r\n\r\nBumps\r\n[@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node)\r\nfrom 22.5.1 to 22.5.2.\r\n
\r\nCommits\r\n
    \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=22.5.1&new-version=22.5.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"build(deps): bump @types/node from 22.5.1 to 22.5.2 (#240)"}},{"before":"e1ebe1b33ca01fe1d4e57c2a04b37a5dc22ab758","after":"ccdbe9adf6139558e702f04dd75460384bbd7bce","ref":"refs/heads/dependabot/npm_and_yarn/types/node-22.5.2","pushedAt":"2024-09-02T08:56:38.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump @types/node from 22.5.1 to 22.5.2\n\nBumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.5.1 to 22.5.2.\n- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)\n- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)\n\n---\nupdated-dependencies:\n- dependency-name: \"@types/node\"\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump @types/node from 22.5.1 to 22.5.2"}},{"before":"b704d006a450ac75bb36dc5b0cae0075005384c9","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/types/react-18.3.5","pushedAt":"2024-09-02T08:55:08.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"d4c7e65aebf106c808c12dc1192cf2d5f2a5d3ec","after":"c7abb58930b966479dab0540c1a1bf87c769b63f","ref":"refs/heads/master","pushedAt":"2024-09-02T08:55:02.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"rodcast","name":"Rodrigo Castilho","path":"/rodcast","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/226556?s=80&v=4"},"commit":{"message":"build(deps): bump @types/react from 18.3.4 to 18.3.5 (#239)\n\nBumps\r\n[@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react)\r\nfrom 18.3.4 to 18.3.5.\r\n
\r\nCommits\r\n
    \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/react&package-manager=npm_and_yarn&previous-version=18.3.4&new-version=18.3.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"build(deps): bump @types/react from 18.3.4 to 18.3.5 (#239)"}},{"before":null,"after":"e1ebe1b33ca01fe1d4e57c2a04b37a5dc22ab758","ref":"refs/heads/dependabot/npm_and_yarn/types/node-22.5.2","pushedAt":"2024-09-02T04:18:03.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump @types/node from 22.5.1 to 22.5.2\n\nBumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.5.1 to 22.5.2.\n- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)\n- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)\n\n---\nupdated-dependencies:\n- dependency-name: \"@types/node\"\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump @types/node from 22.5.1 to 22.5.2"}},{"before":null,"after":"b704d006a450ac75bb36dc5b0cae0075005384c9","ref":"refs/heads/dependabot/npm_and_yarn/types/react-18.3.5","pushedAt":"2024-09-02T04:17:53.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump @types/react from 18.3.4 to 18.3.5\n\nBumps [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) from 18.3.4 to 18.3.5.\n- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)\n- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react)\n\n---\nupdated-dependencies:\n- dependency-name: \"@types/react\"\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump @types/react from 18.3.4 to 18.3.5"}},{"before":"928cb44c80c73bfa118774d721e236a0277f9e36","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/micromatch-4.0.8","pushedAt":"2024-08-28T08:46:30.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"0644c216bb97e1311822307dbd20773ca90e2458","after":"d4c7e65aebf106c808c12dc1192cf2d5f2a5d3ec","ref":"refs/heads/master","pushedAt":"2024-08-28T08:46:22.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"rodcast","name":"Rodrigo Castilho","path":"/rodcast","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/226556?s=80&v=4"},"commit":{"message":"build(deps): bump micromatch from 4.0.5 to 4.0.8 (#238)\n\nBumps [micromatch](https://github.com/micromatch/micromatch) from 4.0.5\r\nto 4.0.8.\r\n
\r\nRelease notes\r\n

Sourced from micromatch's\r\nreleases.

\r\n
\r\n

4.0.8

\r\n

Ultimate release that fixes both CVE-2024-4067 and CVE-2024-4068. We\r\nconsider the issues low-priority, so even if you see automated scanners\r\nsaying otherwise, don't be scared.

\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from micromatch's\r\nchangelog.

\r\n
\r\n

[4.0.8] - 2024-08-22

\r\n
    \r\n
  • backported CVE-2024-4067 fix (from v4.0.6) over to 4.x branch
    • \r\n
\r\n

[4.0.7] - 2024-05-22

\r\n
    \r\n
  • this is basically v4.0.5, with some README updates
    • \r\n
  • it is vulnerable to CVE-2024-4067
    • \r\n
  • Updated braces to v3.0.3 to avoid CVE-2024-4068
    • \r\n
  • does NOT break API compatibility
    • \r\n
\r\n

[4.0.6] - 2024-05-21

\r\n
    \r\n
  • Added hasBraces to check if a pattern contains\r\nbraces.
    • \r\n
  • Fixes CVE-2024-4067
    • \r\n
  • BREAKS API COMPATIBILITY
    • \r\n
  • Should be labeled as a major release, but it's not.
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 8bd704e\r\n4.0.8
    • \r\n
  • a0e6841\r\nrun verb to generate README documentation
    • \r\n
  • 4ec2884\r\nMerge branch 'v4' into hauserkristof-feature/v4.0.8
    • \r\n
  • 03aa805\r\nMerge pull request #266\r\nfrom hauserkristof/feature/v4.0.8
    • \r\n
  • 814f5f7\r\nlint
    • \r\n
  • 67fcce6\r\nfix: CHANGELOG about braces & CVE-2024-4068, v4.0.5
    • \r\n
  • 113f2e3\r\nfix: CVE numbers in CHANGELOG
    • \r\n
  • d9dbd9a\r\nfeat: updated CHANGELOG
    • \r\n
  • 2ab1315\r\nfix: use actions/setup-node@v4
    • \r\n
  • 1406ea3\r\nfeat: rework test to work on macos with node 10,12 and 14
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=micromatch&package-manager=npm_and_yarn&previous-version=4.0.5&new-version=4.0.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/rodcast/rodcast.github.io/network/alerts).\r\n\r\n
","shortMessageHtmlLink":"build(deps): bump micromatch from 4.0.5 to 4.0.8 (#238)"}},{"before":"7fb9f28a936ebd852ff954e3570f80244c0b7889","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/next-14.2.7","pushedAt":"2024-08-28T08:43:41.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAErZr9IgA","startCursor":null,"endCursor":null}},"title":"Activity · rodcast/rodcast.github.io"}