Skip to content

chore(deps): bump the npm-updates group across 1 directory with 14 updates#281

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/samples/weather-forecast/npm-updates-5c9916a2ed
Open

chore(deps): bump the npm-updates group across 1 directory with 14 updates#281
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/samples/weather-forecast/npm-updates-5c9916a2ed

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 14, 2026

Copy link
Copy Markdown
Contributor

Bumps the npm-updates group with 14 updates in the /samples/weather-forecast directory:

Package From To
@staffbase/widget-sdk 3.18.0 3.19.1
acorn 8.16.0 8.17.0
axios 1.16.0 1.18.1
dayjs 1.11.20 1.11.21
@mui/system 9.0.1 9.2.0
@rjsf/core 6.5.2 6.6.2
@rjsf/mui 6.5.2 6.6.2
@rjsf/utils 6.5.2 6.6.2
@rjsf/validator-ajv8 6.5.2 6.6.2
js-base64 3.7.8 3.8.0
prettier 3.8.3 3.9.4
ts-loader 9.5.7 9.6.2
webpack 5.106.2 5.108.4
webpack-cli 7.0.2 7.2.1

Updates @staffbase/widget-sdk from 3.18.0 to 3.19.1

Commits

Updates acorn from 8.16.0 to 8.17.0

Commits
  • 5b9d16c Mark version 8.17.0
  • 449f9fa Make linter happy
  • 9e1bced Add a strict option to turn on strict mode for scripts
  • 8a47812 Convert stack overflow errors to SyntaxError instances
  • 3bc83f9 Update maintainer email
  • 3f40dbe Bump test262
  • 8bd0290 Improve handling of using/await using in for loops
  • f25fded Upgrade some dev dependencies
  • 27781e4 Remove unnecessary test
  • 2dded4b Forbid 'new super()'
  • Additional commits viewable in compare view

Updates axios from 1.16.0 to 1.18.1

Release notes

Sourced from axios's releases.

v1.18.1 — June 21, 2026

This release focuses on Node HTTP adapter fixes, safer AxiosError serialisation, runtime/type correctness fixes, documentation updates, and dependency maintenance.

🐛 Bug Fixes

  • AxiosError Serialisation: Made AxiosError#cause non-enumerable to prevent circular JSON serialisation failures when errors include nested causes. (#10913)
  • Node HTTP Adapter: Guarded socket.setKeepAlive for proxy agent streams, accepted path-only URLs when socketPath is configured, deferred environment proxy handling to Node, and explicitly passed maxBodyLength through to follow-redirects. (#10917, #10930, #10942, #10993)
  • Runtime and Type Correctness: Fixed several runtime crashes, type definition mismatches, and incorrect error handling paths. (#10959, #11021)
  • AxiosURLSearchParams: Switched the encoder callback to an arrow function so encoder.call(this) receives the AxiosURLSearchParams instance correctly. (#11019)

🔧 Maintenance & Chores

  • Documentation: Documented sensitive headers and status transition behaviour, prepared cleaned-up docs, added Deno install instructions, and clarified that request data is request-specific (#11007, #11010, #11023, #11025)

  • Dependencies: Bumped vite, rollup, form-data, js-yaml, and multer across the root project, docs, smoke tests, and module test workspaces. (#11011, #11012, #11013, #11014, #11015, #11016, #11017, #11026)

🌟 New Contributors

We are thrilled to welcome our new contributors. Thank you for helping improve axios:

Full Changelog

v1.18.0 — June 13, 2026

This release hardens redirect and URL handling, improves the validateStatus configuration semantics, and includes updates to documentation, dependencies, and release metadata.

🔒 Security Fixes

  • Redirect Header Safety: Added Node HTTP adapter support for stripping caller-specified sensitive headers on cross-origin redirects, helping prevent custom auth headers such as API keys from leaking to another origin. (#10892)

  • URL And Request Hardening: Rejects malformed http: and https: URLs that omit // with ERR_INVALID_URL, while tightening prototype-pollution-safe config reads, stream size limits, FormData depth handling, data URL sizing, and local NO_PROXY matching. (#11000)

🐛 Bug Fixes

  • Status Validation: Added transitional.validateStatusUndefinedResolves so applications can opt in to treating validateStatus: undefined like the option was omitted, while validateStatus: null remains the explicit way to accept every status. (#10899)

🔧 Maintenance & Chores

  • Documentation: Published the v1.17.0 release notes, fixed a changelog typo, clarified the package update PR policy, and marked the proxy request config as Node.js-only in the advanced docs. (#10984, #10988, #10992, #10995)

  • Dependencies: Bumped @babel/core, @babel/preset-env, @commitlint/cli, @commitlint/config-conventional, @rollup/plugin-babel, @rollup/plugin-commonjs, @vitest/browser, @vitest/browser-playwright, eslint, lint-staged, rollup, vitest, and actions/checkout. (#10989, #10996, #10997)

  • Release Metadata: Prepared the 1.18.0 release by updating package metadata and the runtime VERSION value. (#11003)

... (truncated)

Changelog

Sourced from axios's changelog.

Changelog

v1.18.0 — June 13, 2026

This release hardens redirect and URL handling, improves the validateStatus configuration semantics, and includes updates to documentation, dependencies, and release metadata.

🔒 Security Fixes

  • Redirect Header Safety: Added Node HTTP adapter support for stripping caller-specified sensitive headers on cross-origin redirects, helping prevent custom auth headers such as API keys from leaking to another origin. (#10892)

  • URL And Request Hardening: Rejects malformed http: and https: URLs that omit // with ERR_INVALID_URL, while tightening prototype-pollution-safe config reads, stream size limits, FormData depth handling, data URL sizing, and local NO_PROXY matching. (#11000)

🐛 Bug Fixes

  • Status Validation: Added transitional.validateStatusUndefinedResolves so applications can opt in to treating validateStatus: undefined like the option was omitted, while validateStatus: null remains the explicit way to accept every status. (#10899)

🔧 Maintenance & Chores

  • Documentation: Published the v1.17.0 release notes, fixed a changelog typo, clarified the package update PR policy, and marked the proxy request config as Node.js-only in the advanced docs. (#10984, #10988, #10992, #10995)

  • Dependencies: Bumped @babel/core, @babel/preset-env, @commitlint/cli, @commitlint/config-conventional, @rollup/plugin-babel, @rollup/plugin-commonjs, @vitest/browser, @vitest/browser-playwright, eslint, lint-staged, rollup, vitest, and actions/checkout. (#10989, #10996, #10997)

  • Release Metadata: Prepared the 1.18.0 release by updating package metadata and the runtime VERSION value. (#11003)

🌟 New Contributors

We are thrilled to welcome our new contributors. Thank you for helping improve axios:

Full Changelog

v1.17.0 — June 1, 2026

This release adds Node HTTP zstd decompression, hardens config and release workflows, and fixes authentication, header, proxy, and type-handling regressions.

🔒 Security Fixes

  • Config Hardening: Guarded socketPath, params, and paramsSerializer reads with own-property checks to prevent inherited prototype values from affecting request behavior, including SSRF-sensitive paths. (#10901, #10922)
  • Release Publishing: Switched the publish workflow to npm staged publishing for safer, auditable package releases with provenance. (#10926)

🚀 New Features

  • HTTP Compression: Added Node HTTP adapter support for zstd response decompression, with transitional.advertiseZstdAcceptEncoding controlling whether zstd is advertised in Accept-Encoding. (#6792, #10920)

🐛 Bug Fixes

  • Authentication Handling: Restored Basic auth on same-origin Node redirects while continuing to strip credentials cross-origin, and aligned the fetch adapter with HTTP adapter behavior for URL-embedded Basic auth. (#10929, #10896)

... (truncated)

Commits
  • a209bfb chore(release): prepare release 1.18.1 (#11027)
  • fa6a55e chore(deps-dev): bump multer from 2.1.1 to 2.2.0 (#11026)
  • 40e7be8 docs: clarifies that request data is request-specific in axios (#11025)
  • a446b39 fix(AxiosURLSearchParams): use arrow function so encoder.call(this) receives ...
  • cf1306a docs: add Deno to install instructions (#11023)
  • b32880a fix: incorrect use of error (#11021)
  • 1792eda fix: ensure maxBodyLength is explicitly passed to follow-redirects (#10993)
  • 30499d6 fix: various runtime crashes and type definition mismatches (#10959)
  • 20ce9c4 fix(http): defer env proxy handling to Node (#10942)
  • e64bcf9 chore(deps): merge branch 'v1.x' into tests/module/cjs (#11014)
  • Additional commits viewable in compare view

Updates dayjs from 1.11.20 to 1.11.21

Release notes

Sourced from dayjs's releases.

v1.11.21

1.11.21 (2026-05-26)

Bug Fixes

Changelog

Sourced from dayjs's changelog.

1.11.21 (2026-05-26)

Bug Fixes

Commits

Updates @mui/system from 9.0.1 to 9.2.0

Release notes

Sourced from @​mui/system's releases.

v9.2.0

A big thanks to the 9 contributors who made this release possible.

@mui/material@9.1.3

@mui/utils@9.1.3

  • [utils] Add opt-in DataAttributesOverrides augmentation for slot props (#48554) @​LukasTy

Docs

Core

All contributors of this release in alphabetical order: @​brijeshb42, @​greymoth-jp, @​Janpot, @​LukasTy, @​michelengelen, @​mturac, @​Prakash1185, @​siriwatknp, @​Sushantplive

v9.1.2

A big thanks to the 5 contributors who made this release possible.

@mui/material@9.1.2

@mui/system@9.1.2

Docs

... (truncated)

Changelog

Sourced from @​mui/system's changelog.

9.2.0

Jul 3, 2026

A big thanks to the 9 contributors who made this release possible.

@mui/material@9.2.0

@mui/utils@9.2.0

  • [utils] Add opt-in DataAttributesOverrides augmentation for slot props (#48554) @​LukasTy

Docs

Core

All contributors of this release in alphabetical order: @​brijeshb42, @​greymoth-jp, @​Janpot, @​LukasTy, @​michelengelen, @​mturac, @​Prakash1185, @​siriwatknp, @​Sushantplive

9.1.2

Jun 23, 2026

A big thanks to the 5 contributors who made this release possible.

@mui/material@9.1.2

  • [autocomplete] Don't submit forms when committing freeSolo value with Enter key (#48679) @​mj12albert

... (truncated)

Commits

Updates @rjsf/core from 6.5.2 to 6.6.2

Release notes

Sourced from @​rjsf/core's releases.

6.6.2

@​rjsf/core

  • Fixed schema-change handling so dependent enum updates sanitize invalid scalar field data without over-sanitizing root, object, array, readonly, or disabled field changes, fixing #3838
  • Updated Form tests to verify fix for #1357 and #2492
    • Also added console message suppression support to the tests to reduce noise
  • Updated MultiSchemaField by skipping next option recalculation when a user selects an option, fixing #3833
  • Updated Form's validate() function to pass the original schema to AJV when no pre-resolved schema is provided, fixing #3368
  • Improved performance of IconButtons in all themes, ArrayField components and ObjectField components using memoization, partially fixing #3183
  • Fixed ObjectField so renaming an additionalProperties key to an empty string is no longer silently dropped, using Object.hasOwn instead of a falsy check (#5098)

@​rjsf/utils

  • Updated sanitizeDataForNewSchema() to preserve valid enum values while replacing or clearing stale values across enum, oneOf, and anyOf schema changes, fixing #3838
  • Updated sanitizeDataForNewSchema() to filter out invalid enum values in arrays, fixing #1357 and #2492

Dev / docs / playground

  • Upgraded vitest and jsdom to the latest to remove deprecated package warnings
  • Fix a documentation error related to precedence when setting default values (#5089)

6.6.1

Dev / docs / playground

  • Updated peer dependencies to 6.6.x

6.6.0

New feature

Added the validator-ata package to give users an alternative validation system

@​rjsf/core

  • Updated Form to stop using removeOptionalEmptyObjects() and deprecating removeEmptyOptionalObjects prop

@​rjsf/utils

  • Adopted the svelte-jsonschema-form algorithm for omitExtraData(), adding in support for the code from removeOptionalEmptyObjects(), exporting the isValueEmpty() function from the library
  • Deprecated the removeOptionalEmptyObject() and toPathSchema() functions, toPathSchema() on SchemaUtilsType and the PathSchema type
  • Added relaxOptionsForScoring() utility that normalizes a oneOf/anyOf option list for scoring with optional $refs resolution Converts boolean schemas to object equivalents and widens additionalProperties: false → true so that getClosestMatchingOption does not produce false negatives when form data contains keys not declared in properties
  • Fixed resolveAnyOrOneOfSchemas (called by schemaParser with expandAllBranches=true) to use getFirstMatchingOption on the options returned from relaxOptionsForScoring() so that they are captured for precompiled validators
  • Extracted the shallowAllOfMerge() function from retrieveSchema.ts into its own file for additional use in omitExtraData.ts

@​rjsf/validator-ajv8

  • Added integration tests verifying that getFirstMatchingOption, getClosestMatchingOption, and omitExtraData work correctly when given an AJV8PrecompiledValidator compiled from a oneOf schema whose branches carry additionalProperties: false (both direct options and options defined via $ref)

@​rjsf/validator-ata

... (truncated)

Changelog

Sourced from @​rjsf/core's changelog.

6.6.2

@​rjsf/core

  • Fixed schema-change handling so dependent enum updates sanitize invalid scalar field data without over-sanitizing root, object, array, readonly, or disabled field changes, fixing #3838
  • Updated Form tests to verify fix for #1357 and #2492
    • Also added console message suppression support to the tests to reduce noise
  • Updated MultiSchemaField by skipping next option recalculation when a user selects an option, fixing #3833
  • Updated Form's validate() function to pass the original schema to AJV when no pre-resolved schema is provided, fixing #3368
  • Improved performance of IconButtons in all themes, ArrayField components and ObjectField components using memoization, partially fixing #3183
  • Fixed ObjectField so renaming an additionalProperties key to an empty string is no longer silently dropped, using Object.hasOwn instead of a falsy check (#5098)

@​rjsf/utils

  • Updated sanitizeDataForNewSchema() to preserve valid enum values while replacing or clearing stale values across enum, oneOf, and anyOf schema changes, fixing #3838
  • Updated sanitizeDataForNewSchema() to filter out invalid enum values in arrays, fixing #1357 and #2492

Dev / docs / playground

  • Upgraded vitest and jsdom to the latest to remove deprecated package warnings
  • Fix a documentation error related to precedence when setting default values (#5089)

6.6.1

Dev / docs / playground

  • Updated peer dependencies to 6.6.x

6.6.0

@​rjsf/core

  • Updated Form to stop using removeOptionalEmptyObjects() and deprecating removeEmptyOptionalObjects prop

@​rjsf/utils

  • Adopted the svelte-jsonschema-form algorithm for omitExtraData(), adding in support for the code from removeOptionalEmptyObjects(), exporting the isValueEmpty() function from the library
  • Deprecated the removeOptionalEmptyObject() and toPathSchema() functions, toPathSchema() on SchemaUtilsType and the PathSchema type
  • Added relaxOptionsForScoring() utility that normalizes a oneOf/anyOf option list for scoring with optional $refs resolution Converts boolean schemas to object equivalents and widens additionalProperties: false → true so that getClosestMatchingOption does not produce false negatives when form data contains keys not declared in properties
  • Fixed resolveAnyOrOneOfSchemas (called by schemaParser with expandAllBranches=true) to use getFirstMatchingOption on the options returned from relaxOptionsForScoring() so that they are captured for precompiled validators
  • Extracted the shallowAllOfMerge() function from retrieveSchema.ts into its own file for additional use in omitExtraData.ts

@​rjsf/validator-ajv8

  • Added integration tests verifying that getFirstMatchingOption, getClosestMatchingOption, and omitExtraData work correctly when given an AJV8PrecompiledValidator compiled from a oneOf schema whose branches carry additionalProperties: false (both direct options and options defined via $ref)

@​rjsf/validator-ata

  • Added @rjsf/validator-ata, an ata-validator backed alternative to @rjsf/validator-ajv8. The public surface mirrors the AJV package (customizeValidator(), ValidatorType<T, S, F>, custom formats, transformErrors, customValidate, suppressDuplicateFiltering), so swapping the import is enough for existing forms to keep working. AJV-only options (AjvClass, ajvFormatOptions, ajvOptionsOverrides) are replaced by ataOptionsOverrides, and the ata-validator format set is always installed. Depends on ata-validator ^0.17.4, which carries stable ATA#### error codes and rich error metadata (expected, received, schemaSource, dataFrame, suggestion, docUrl) that transformErrors can consume. See the validator-ata API reference for the full list of differences (#5063)

... (truncated)

Commits
  • 48da402 - Added a few missing rules, fixing code due to one of them
  • b5c4680 - sorted the rules in .oxlintrc.json alphabetically to improve searchabili...
  • d74e529 Releasing 6.6.2
  • c02350a chore(deps): bump @​ant-design/icons from 6.2.3 to 6.2.5 (#5099)
  • 38b2c1f fix(core): empty-string key rename in additionalProperties no longer silently...
  • da85e05 feat(lint): add airbnb-extended import, jsx-a11y, vitest, react-perf and node...
  • 03e474a Additional eslint config airbnb extended (#5113)
  • 1e81ac8 feat(lint): add airbnb-extended errors.ts and best-practices.ts rules to oxli...
  • cc3d927 fix(antd): fix DateWidget/DateTimeWidget popup positioning in playground (#5105)
  • 7bc0eea feat(lint): add airbnb-extended errors/es6/variables rules to oxlintrc and fi...
  • Additional commits viewable in compare view

Updates @rjsf/mui from 6.5.2 to 6.6.2

Release notes

Sourced from @​rjsf/mui's releases.

6.6.2

@​rjsf/core

  • Fixed schema-change handling so dependent enum updates sanitize invalid scalar field data without over-sanitizing root, object, array, readonly, or disabled field changes, fixing #3838
  • Updated Form tests to verify fix for #1357 and #2492
    • Also added console message suppression support to the tests to reduce noise
  • Updated MultiSchemaField by skipping next option recalculation when a user selects an option, fixing #3833
  • Updated Form's validate() function to pass the original schema to AJV when no pre-resolved schema is provided, fixing #3368
  • Improved performance of IconButtons in all themes, ArrayField components and ObjectField components using memoization, partially fixing #3183
  • Fixed ObjectField so renaming an additionalProperties key to an empty string is no longer silently dropped, using Object.hasOwn instead of a falsy check (#5098)

@​rjsf/utils

  • Updated sanitizeDataForNewSchema() to preserve valid enum values while replacing or clearing stale values across enum, oneOf, and anyOf schema changes, fixing #3838
  • Updated sanitizeDataForNewSchema() to filter out invalid enum values in arrays, fixing #1357 and #2492

Dev / docs / playground

  • Upgraded vitest and jsdom to the latest to remove deprecated package warnings
  • Fix a documentation error related to precedence when setting default values (#5089)

6.6.1

Dev / docs / playground

  • Updated peer dependencies to 6.6.x

6.6.0

New feature

Added the validator-ata package to give users an alternative validation system

@​rjsf/core

  • Updated Form to stop using removeOptionalEmptyObjects() and deprecating removeEmptyOptionalObjects prop

@​rjsf/utils

  • Adopted the svelte-jsonschema-form algorithm for omitExtraData(), adding in support for the code from removeOptionalEmptyObjects(), exporting the isValueEmpty() function from the library
  • Deprecated the removeOptionalEmptyObject() and toPathSchema() functions, toPathSchema() on SchemaUtilsType and the PathSchema type
  • Added relaxOptionsForScoring() utility that normalizes a oneOf/anyOf option list for scoring with optional $refs resolution Converts boolean schemas to object equivalents and widens additionalProperties: false → true so that getClosestMatchingOption does not produce false negatives when form data contains keys not declared in properties
  • Fixed resolveAnyOrOneOfSchemas (called by schemaParser with expandAllBranches=true) to use getFirstMatchingOption on the options returned from relaxOptionsForScoring() so that they are captured for precompiled validators
  • Extracted the shallowAllOfMerge() function from retrieveSchema.ts into its own file for additional use in omitExtraData.ts

@​rjsf/validator-ajv8

  • Added integration tests verifying that getFirstMatchingOption, getClosestMatchingOption, and omitExtraData work correctly when given an AJV8PrecompiledValidator compiled from a oneOf schema whose branches carry additionalProperties: false (both direct options and options defined via $ref)

@​rjsf/validator-ata

... (truncated)

Changelog

Sourced from @​rjsf/mui's changelog.

6.6.2

@​rjsf/core

  • Fixed schema-change handling so dependent enum updates sanitize invalid scalar field data without over-sanitizing root, object, array, readonly, or disabled field changes, fixing #3838
  • Updated Form tests to verify fix for #1357 and #2492
    • Also added console message suppression support to the tests to reduce noise
  • Updated MultiSchemaField by skipping next option recalculation when a user selects an option, fixing #3833
  • Updated Form's validate() function to pass the original schema to AJV when no pre-resolved schema is provided, fixing #3368
  • Improved performance of IconButtons in all themes, ArrayField components and ObjectField components using memoization, partially fixing #3183
  • Fixed ObjectField so renaming an additionalProperties key to an empty string is no longer silently dropped, using Object.hasOwn instead of a falsy check (#5098)

@​rjsf/utils

  • Updated sanitizeDataForNewSchema() to preserve valid enum values while replacing or clearing stale values across enum, oneOf, and anyOf schema changes, fixing #3838
  • Updated sanitizeDataForNewSchema() to filter out invalid enum values in arrays, fixing #1357 and #2492

Dev / docs / playground

  • Upgraded vitest and jsdom to the latest to remove deprecated package warnings
  • Fix a documentation error related to precedence when setting default values (#5089)

6.6.1

Dev / docs / playground

  • Updated peer dependencies to 6.6.x

6.6.0

@​rjsf/core

  • Updated Form to stop using removeOptionalEmptyObjects() and deprecating removeEmptyOptionalObjects prop

@​rjsf/utils

  • Adopted the svelte-jsonschema-form algorithm for omitExtraData(), adding in support for the code from removeOptionalEmptyObjects(), exporting the isValueEmpty() function from the library
  • Deprecated the removeOptionalEmptyObject() and toPathSchema() functions, toPathSchema() on SchemaUtilsType and the PathSchema type
  • Added relaxOptionsForScoring() utility that normalizes a oneOf/anyOf option list for scoring with optional $refs resolution Converts boolean schemas to object equivalents and widens additionalProperties: false → true so that getClosestMatchingOption does not produce false negatives when form data contains keys not declared in properties
  • Fixed resolveAnyOrOneOfSchemas (called by schemaParser with expandAllBranches=true) to use getFirstMatchingOption on the options returned from relaxOptionsForScoring() so that they are captured for precompiled validators
  • Extracted the shallowAllOfMerge() function from retrieveSchema.ts into its own file for additional use in omitExtraData.ts

@​rjsf/validator-ajv8

  • Added integration tests verifying that getFirstMatchingOption, getClosestMatchingOption, and omitExtraData work correctly when given an AJV8PrecompiledValidator compiled from a oneOf schema whose branches carry additionalProperties: false (both direct options and options defined via $ref)

@​rjsf/validator-ata

  • Added @rjsf/validator-ata, an ata-validator backed alternative to @rjsf/validator-ajv8. The public surface mirrors the AJV package (customizeValidator(), ValidatorType<T, S, F>, custom formats, transformErrors, customValidate, suppressDuplicateFiltering), so swapping the import is enough for existing forms to keep working. AJV-only options (AjvClass, ajvFormatOptions, ajvOptionsOverrides) are replaced by ataOptionsOverrides, and the ata-validator format set is always installed. Depends on ata-validator ^0.17.4, which carries stable ATA#### error codes and rich error metadata (expected, received, schemaSource, dataFrame, suggestion, docUrl) that transformErrors can consume. See the validator-ata API reference for the full list of differences (#5063)

... (truncated)

Commits
  • 48da402 - Added a few missing rules, fixing code due to one of them
  • b5c4680 - sorted the rules in .oxlintrc.json alphabetically to improve searchabili...
  • d74e529 Releasing 6.6.2
  • c02350a chore(deps): bump @​ant-design/icons from 6.2.3 to 6.2.5 (#5099)
  • 38b2c1f fix(core): empty-string key rename in additionalProperties no longer silently...
  • da85e05 feat(lint): add airbnb-extended import, jsx-a11y, vitest, react-perf and node...
  • 03e474a Additional eslint config airbnb extended (#5113)
  • 1e81ac8 feat(lint): add airbnb-extended errors.ts and best-practices.ts rules to oxli...
  • cc3d927 fix(antd): fix DateWidget/DateTimeWidget popup positioning in playground (#5105)
  • 7bc0eea feat(lint): add airbnb-extended errors/es6/variables rules to oxlintrc and fi...
  • Additional commits viewable in...

    Description has been truncated

…dates

Bumps the npm-updates group with 14 updates in the /samples/weather-forecast directory:

| Package | From | To |
| --- | --- | --- |
| [@staffbase/widget-sdk](https://github.com/Staffbase/widget-sdk) | `3.18.0` | `3.19.1` |
| [acorn](https://github.com/acornjs/acorn) | `8.16.0` | `8.17.0` |
| [axios](https://github.com/axios/axios) | `1.16.0` | `1.18.1` |
| [dayjs](https://github.com/iamkun/dayjs) | `1.11.20` | `1.11.21` |
| [@mui/system](https://github.com/mui/material-ui/tree/HEAD/packages/mui-system) | `9.0.1` | `9.2.0` |
| [@rjsf/core](https://github.com/rjsf-team/react-jsonschema-form) | `6.5.2` | `6.6.2` |
| [@rjsf/mui](https://github.com/rjsf-team/react-jsonschema-form) | `6.5.2` | `6.6.2` |
| [@rjsf/utils](https://github.com/rjsf-team/react-jsonschema-form) | `6.5.2` | `6.6.2` |
| [@rjsf/validator-ajv8](https://github.com/rjsf-team/react-jsonschema-form) | `6.5.2` | `6.6.2` |
| [js-base64](https://github.com/dankogai/js-base64) | `3.7.8` | `3.8.0` |
| [prettier](https://github.com/prettier/prettier) | `3.8.3` | `3.9.4` |
| [ts-loader](https://github.com/TypeStrong/ts-loader) | `9.5.7` | `9.6.2` |
| [webpack](https://github.com/webpack/webpack) | `5.106.2` | `5.108.4` |
| [webpack-cli](https://github.com/webpack/webpack-cli) | `7.0.2` | `7.2.1` |



Updates `@staffbase/widget-sdk` from 3.18.0 to 3.19.1
- [Commits](https://github.com/Staffbase/widget-sdk/commits)

Updates `acorn` from 8.16.0 to 8.17.0
- [Commits](acornjs/acorn@8.16.0...8.17.0)

Updates `axios` from 1.16.0 to 1.18.1
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](axios/axios@v1.16.0...v1.18.1)

Updates `dayjs` from 1.11.20 to 1.11.21
- [Release notes](https://github.com/iamkun/dayjs/releases)
- [Changelog](https://github.com/iamkun/dayjs/blob/dev/CHANGELOG.md)
- [Commits](iamkun/dayjs@v1.11.20...v1.11.21)

Updates `@mui/system` from 9.0.1 to 9.2.0
- [Release notes](https://github.com/mui/material-ui/releases)
- [Changelog](https://github.com/mui/material-ui/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mui/material-ui/commits/v9.2.0/packages/mui-system)

Updates `@rjsf/core` from 6.5.2 to 6.6.2
- [Release notes](https://github.com/rjsf-team/react-jsonschema-form/releases)
- [Changelog](https://github.com/rjsf-team/react-jsonschema-form/blob/main/CHANGELOG.md)
- [Commits](rjsf-team/react-jsonschema-form@6.5.2...6.6.2)

Updates `@rjsf/mui` from 6.5.2 to 6.6.2
- [Release notes](https://github.com/rjsf-team/react-jsonschema-form/releases)
- [Changelog](https://github.com/rjsf-team/react-jsonschema-form/blob/main/CHANGELOG.md)
- [Commits](rjsf-team/react-jsonschema-form@6.5.2...6.6.2)

Updates `@rjsf/utils` from 6.5.2 to 6.6.2
- [Release notes](https://github.com/rjsf-team/react-jsonschema-form/releases)
- [Changelog](https://github.com/rjsf-team/react-jsonschema-form/blob/main/CHANGELOG.md)
- [Commits](rjsf-team/react-jsonschema-form@6.5.2...6.6.2)

Updates `@rjsf/validator-ajv8` from 6.5.2 to 6.6.2
- [Release notes](https://github.com/rjsf-team/react-jsonschema-form/releases)
- [Changelog](https://github.com/rjsf-team/react-jsonschema-form/blob/main/CHANGELOG.md)
- [Commits](rjsf-team/react-jsonschema-form@6.5.2...6.6.2)

Updates `js-base64` from 3.7.8 to 3.8.0
- [Commits](dankogai/js-base64@3.7.8...3.8.0)

Updates `prettier` from 3.8.3 to 3.9.4
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@3.8.3...3.9.4)

Updates `ts-loader` from 9.5.7 to 9.6.2
- [Release notes](https://github.com/TypeStrong/ts-loader/releases)
- [Changelog](https://github.com/TypeStrong/ts-loader/blob/main/CHANGELOG.md)
- [Commits](TypeStrong/ts-loader@v9.5.7...v9.6.2)

Updates `webpack` from 5.106.2 to 5.108.4
- [Release notes](https://github.com/webpack/webpack/releases)
- [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md)
- [Commits](webpack/webpack@v5.106.2...v5.108.4)

Updates `webpack-cli` from 7.0.2 to 7.2.1
- [Release notes](https://github.com/webpack/webpack-cli/releases)
- [Changelog](https://github.com/webpack/webpack-cli/blob/main/CHANGELOG.md)
- [Commits](https://github.com/webpack/webpack-cli/compare/webpack-cli@7.0.2...webpack-cli@7.2.1)

---
updated-dependencies:
- dependency-name: "@staffbase/widget-sdk"
  dependency-version: 3.19.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-updates
- dependency-name: acorn
  dependency-version: 8.17.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-updates
- dependency-name: axios
  dependency-version: 1.18.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-updates
- dependency-name: dayjs
  dependency-version: 1.11.21
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-updates
- dependency-name: "@mui/system"
  dependency-version: 9.2.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-updates
- dependency-name: "@rjsf/core"
  dependency-version: 6.6.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-updates
- dependency-name: "@rjsf/mui"
  dependency-version: 6.6.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-updates
- dependency-name: "@rjsf/utils"
  dependency-version: 6.6.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-updates
- dependency-name: "@rjsf/validator-ajv8"
  dependency-version: 6.6.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-updates
- dependency-name: js-base64
  dependency-version: 3.8.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-updates
- dependency-name: prettier
  dependency-version: 3.9.4
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-updates
- dependency-name: ts-loader
  dependency-version: 9.6.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-updates
- dependency-name: webpack
  dependency-version: 5.108.4
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-updates
- dependency-name: webpack-cli
  dependency-version: 7.2.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update an action file javascript Pull requests that update Javascript code minor Pull requests with new features labels Jul 14, 2026
@dependabot
dependabot Bot requested a review from a team as a code owner July 14, 2026 06:06
@dependabot
dependabot Bot requested review from nurislam03 and robertvangor July 14, 2026 06:06
@dependabot dependabot Bot added dependencies Pull requests that update an action file javascript Pull requests that update Javascript code minor Pull requests with new features labels Jul 14, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update an action file javascript Pull requests that update Javascript code minor Pull requests with new features

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants