Skip to content

Bump the frontend-dependencies group across 1 directory with 25 updates#88

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/frontend/frontend-dependencies-6004b2085a
Open

Bump the frontend-dependencies group across 1 directory with 25 updates#88
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/frontend/frontend-dependencies-6004b2085a

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 15, 2026

Copy link
Copy Markdown

Bumps the frontend-dependencies group with 25 updates in the /frontend directory:

Package From To
@payloadcms/db-postgres 3.85.0 3.86.0
@payloadcms/next 3.85.0 3.86.0
@payloadcms/richtext-lexical 3.85.0 3.86.0
@payloadcms/ui 3.85.0 3.86.0
cross-env 7.0.3 10.1.0
dotenv 16.4.7 17.4.2
graphql 16.14.2 17.0.2
next 16.2.6 16.2.10
payload 3.85.0 3.86.0
react 19.2.6 19.2.7
@types/react 19.2.14 19.2.17
react-dom 19.2.6 19.2.7
sharp 0.34.2 0.35.3
@playwright/test 1.58.2 1.61.1
@testing-library/react 16.3.0 16.3.2
@types/node 22.19.9 26.1.1
@vitejs/plugin-react 4.5.2 6.0.3
eslint 9.39.5 10.7.0
eslint-config-next 16.2.6 16.2.10
fallow 2.89.0 3.6.0
jsdom 28.0.0 29.1.1
tsx 4.21.0 4.23.1
typescript 5.7.3 7.0.2
vite-tsconfig-paths 6.0.5 6.1.1
vitest 4.0.18 4.1.10

Updates @payloadcms/db-postgres from 3.85.0 to 3.86.0

Release notes

Sourced from @​payloadcms/db-postgres's releases.

v3.86.0

v3.86.0 (2026-07-10)

🚀 Features

  • collection-level disableBulkDelete (#17207) (ca02cdc)
  • plugin-form-builder: v3 backport to support translations (#17255) (2cde8c8)
  • ui: add livePreview.openByDefault config option (#17213) (f23b693)

🐛 Bug Fixes

  • coerce schedulePublish doc.value to collection ID type before update (#17238) (7de11b2)
  • escape regex metacharacters in isURLAllowed pathname allow-list (#17237) (2061859)
  • respect disabled GraphQL config, v3 backport (#17228) (9e9c35a)
  • allow access to files reuploaded on a draft (#17209) (f02d22a)
  • plugin-multi-tenant: run tenant delete cleanup inside the request transaction (#17175) (d128fde)
  • sdk: use qs-esm allowEmptyArrays parameter (#17208) (c7dc68e)
  • ui: presentational fields skipped in form state when admin.condition is false (#17224) (f31f26d)
  • ui: prevent slug field error tooltip from hiding lock button (#15885) (908fba1)

⚙️ CI

🤝 Contributors

v3.85.2

v3.85.2 (2026-07-01)

🐛 Bug Fixes

  • payload bin fails with tsx on node v23.5+ (#17081) (afb0226)
  • regenerate reused array and block row IDs during bulk update (3.x) (#17018) (e526c88)
  • prevent type generation script from hanging on storage-r2 (#17020) (b681448)
  • prevent reordering from unpublishing documents that have a newer draft (#16969) (b4d43c0)
  • db-mongodb: remove duplicate IDs in nested relationship queries (#17019) (8533dfb)

... (truncated)

Commits

Updates @payloadcms/next from 3.85.0 to 3.86.0

Release notes

Sourced from @​payloadcms/next's releases.

v3.86.0

v3.86.0 (2026-07-10)

🚀 Features

  • collection-level disableBulkDelete (#17207) (ca02cdc)
  • plugin-form-builder: v3 backport to support translations (#17255) (2cde8c8)
  • ui: add livePreview.openByDefault config option (#17213) (f23b693)

🐛 Bug Fixes

  • coerce schedulePublish doc.value to collection ID type before update (#17238) (7de11b2)
  • escape regex metacharacters in isURLAllowed pathname allow-list (#17237) (2061859)
  • respect disabled GraphQL config, v3 backport (#17228) (9e9c35a)
  • allow access to files reuploaded on a draft (#17209) (f02d22a)
  • plugin-multi-tenant: run tenant delete cleanup inside the request transaction (#17175) (d128fde)
  • sdk: use qs-esm allowEmptyArrays parameter (#17208) (c7dc68e)
  • ui: presentational fields skipped in form state when admin.condition is false (#17224) (f31f26d)
  • ui: prevent slug field error tooltip from hiding lock button (#15885) (908fba1)

⚙️ CI

🤝 Contributors

v3.85.2

v3.85.2 (2026-07-01)

🐛 Bug Fixes

  • payload bin fails with tsx on node v23.5+ (#17081) (afb0226)
  • regenerate reused array and block row IDs during bulk update (3.x) (#17018) (e526c88)
  • prevent type generation script from hanging on storage-r2 (#17020) (b681448)
  • prevent reordering from unpublishing documents that have a newer draft (#16969) (b4d43c0)
  • db-mongodb: remove duplicate IDs in nested relationship queries (#17019) (8533dfb)

... (truncated)

Commits
  • 81e04d7 chore(release): v3.86.0 [skip ci]
  • 9e9c35a fix: respect disabled GraphQL config, v3 backport (#17228)
  • f23b693 feat(ui): add livePreview.openByDefault config option (#17213)
  • ca02cdc feat: collection-level disableBulkDelete (#17207)
  • 624ac51 chore(release): v3.85.2 [skip ci]
  • a8c8da8 chore(release): v3.85.1 [skip ci]
  • 6c81355 fix: add type declarations for css export (TypeScript 6 compat) (#16348)
  • See full diff in compare view

Updates @payloadcms/richtext-lexical from 3.85.0 to 3.86.0

Release notes

Sourced from @​payloadcms/richtext-lexical's releases.

v3.86.0

v3.86.0 (2026-07-10)

🚀 Features

  • collection-level disableBulkDelete (#17207) (ca02cdc)
  • plugin-form-builder: v3 backport to support translations (#17255) (2cde8c8)
  • ui: add livePreview.openByDefault config option (#17213) (f23b693)

🐛 Bug Fixes

  • coerce schedulePublish doc.value to collection ID type before update (#17238) (7de11b2)
  • escape regex metacharacters in isURLAllowed pathname allow-list (#17237) (2061859)
  • respect disabled GraphQL config, v3 backport (#17228) (9e9c35a)
  • allow access to files reuploaded on a draft (#17209) (f02d22a)
  • plugin-multi-tenant: run tenant delete cleanup inside the request transaction (#17175) (d128fde)
  • sdk: use qs-esm allowEmptyArrays parameter (#17208) (c7dc68e)
  • ui: presentational fields skipped in form state when admin.condition is false (#17224) (f31f26d)
  • ui: prevent slug field error tooltip from hiding lock button (#15885) (908fba1)

⚙️ CI

🤝 Contributors

v3.85.2

v3.85.2 (2026-07-01)

🐛 Bug Fixes

  • payload bin fails with tsx on node v23.5+ (#17081) (afb0226)
  • regenerate reused array and block row IDs during bulk update (3.x) (#17018) (e526c88)
  • prevent type generation script from hanging on storage-r2 (#17020) (b681448)
  • prevent reordering from unpublishing documents that have a newer draft (#16969) (b4d43c0)
  • db-mongodb: remove duplicate IDs in nested relationship queries (#17019) (8533dfb)

... (truncated)

Commits
  • 81e04d7 chore(release): v3.86.0 [skip ci]
  • 624ac51 chore(release): v3.85.2 [skip ci]
  • c0affcb fix(richtext-lexical): preserve hard line breaks on markdown import (#17061)
  • a8c8da8 chore(release): v3.85.1 [skip ci]
  • See full diff in compare view

Updates @payloadcms/ui from 3.85.0 to 3.86.0

Release notes

Sourced from @​payloadcms/ui's releases.

v3.86.0

v3.86.0 (2026-07-10)

🚀 Features

  • collection-level disableBulkDelete (#17207) (ca02cdc)
  • plugin-form-builder: v3 backport to support translations (#17255) (2cde8c8)
  • ui: add livePreview.openByDefault config option (#17213) (f23b693)

🐛 Bug Fixes

  • coerce schedulePublish doc.value to collection ID type before update (#17238) (7de11b2)
  • escape regex metacharacters in isURLAllowed pathname allow-list (#17237) (2061859)
  • respect disabled GraphQL config, v3 backport (#17228) (9e9c35a)
  • allow access to files reuploaded on a draft (#17209) (f02d22a)
  • plugin-multi-tenant: run tenant delete cleanup inside the request transaction (#17175) (d128fde)
  • sdk: use qs-esm allowEmptyArrays parameter (#17208) (c7dc68e)
  • ui: presentational fields skipped in form state when admin.condition is false (#17224) (f31f26d)
  • ui: prevent slug field error tooltip from hiding lock button (#15885) (908fba1)

⚙️ CI

🤝 Contributors

v3.85.2

v3.85.2 (2026-07-01)

🐛 Bug Fixes

  • payload bin fails with tsx on node v23.5+ (#17081) (afb0226)
  • regenerate reused array and block row IDs during bulk update (3.x) (#17018) (e526c88)
  • prevent type generation script from hanging on storage-r2 (#17020) (b681448)
  • prevent reordering from unpublishing documents that have a newer draft (#16969) (b4d43c0)
  • db-mongodb: remove duplicate IDs in nested relationship queries (#17019) (8533dfb)

... (truncated)

Commits
  • 81e04d7 chore(release): v3.86.0 [skip ci]
  • 2061859 fix: escape regex metacharacters in isURLAllowed pathname allow-list (#17237)
  • f31f26d fix(ui): presentational fields skipped in form state when admin.condition is ...
  • 908fba1 fix(ui): prevent slug field error tooltip from hiding lock button (#15885)
  • ca02cdc feat: collection-level disableBulkDelete (#17207)
  • 624ac51 chore(release): v3.85.2 [skip ci]
  • 9691e42 fix(ui): preserve polymorphic upload bulk select relation (#17112)
  • 16152e2 fix(ui): list relationship cell shows (Untitled) for draft-only titles (#16979)
  • 29afa77 fix(ui): respect admin.condition on row fields (#16954)
  • a8c8da8 chore(release): v3.85.1 [skip ci]
  • Additional commits viewable in compare view

Updates cross-env from 7.0.3 to 10.1.0

Release notes

Sourced from cross-env's releases.

v10.1.0

10.1.0 (2025-09-29)

Features

  • add support for default value syntax (152ae6a)

For example:

"dev:server": "cross-env wrangler dev --port ${PORT:-8787}",

If PORT is already set, use that value, otherwise fallback to 8787.

Learn more about Shell Parameter Expansion

v10.0.0

10.0.0 (2025-07-25)

TL;DR: You should probably not have to change anything if:

  • You're using a modern maintained version of Node.js (v20+ is tested)
  • You're only using the CLI (most of you are as that's the intended purpose)

In this release (which should have been v8 except I had some issues with automated releases 🙈), I've updated all the things and modernized the package. This happened in #261

Was this needed? Not really, but I just thought it'd be fun to modernize this package.

Here's the highlights of what was done.

  • Replace Jest with Vitest for testing
  • Convert all source files from .js to .ts with proper TypeScript types
  • Use zshy for ESM-only builds (removes CJS support)
  • Adopt @​epic-web/config for TypeScript, ESLint, and Prettier
  • Update to Node.js >=20 requirement
  • Remove kcd-scripts dependency
  • Add comprehensive e2e tests with GitHub Actions matrix testing
  • Update GitHub workflow with caching and cross-platform testing
  • Modernize documentation and remove outdated sections
  • Update all dependencies to latest versions
  • Add proper TypeScript declarations and exports

The tool maintains its original functionality while being completely modernized with the latest tooling and best practices

BREAKING CHANGES

  • This is a major rewrite that changes the module format from CommonJS to ESM-only. The package now requires Node.js >=20 and only exports ESM modules (not relevant in most cases).
Commits
  • 152ae6a feat: add support ofr default value syntax
  • bd70d1a chore: upgrade zshy
  • 8e0b190 chore(ci): get coverage
  • 8635e80 fix(release): manually release a major version
  • 3a58f22 chore: fix npmrc registry
  • b70bfff chore(ci): add names to steps and workflows
  • cc5759d fix(release): manually release a major version
  • 080a859 chore: remove publish script
  • 31e5bc7 chore(ci): restore built files
  • 81e9c34 chore(ci): add back semantic-release
  • Additional commits viewable in compare view

Updates dotenv from 16.4.7 to 17.4.2

Changelog

Sourced from dotenv's changelog.

17.4.2 (2026-04-12)

Changed

  • Improved skill files - tightened up details (#1009)

17.4.1 (2026-04-05)

Changed

  • Change text injecting to injected (#1005)

17.4.0 (2026-04-01)

Added

  • Add skills/ folder with focused agent skills: skills/dotenv/SKILL.md (core usage) and skills/dotenvx/SKILL.md (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (npx skills add motdotla/dotenv)

Changed

  • Tighten up logs: ◇ injecting env (14) from .env (#1003)

17.3.1 (2026-02-12)

Changed

  • Fix as2 example command in README and update spanish README

17.3.0 (2026-02-12)

Added

  • Add a new README section on dotenv’s approach to the agentic future.

Changed

  • Rewrite README to get humans started more quickly with less noise while simultaneously making more accessible for llms and agents to go deeper into details.

17.2.4 (2026-02-05)

Changed

  • Make DotenvPopulateInput accept NodeJS.ProcessEnv type (#915)
  • Give back to dotenv by checking out my newest project vestauth. It is auth for agents. Thank you for using my software.

17.2.3 (2025-09-29)

Changed

  • Fixed typescript error definition (#912)

... (truncated)

Commits

Updates graphql from 16.14.2 to 17.0.2

Release notes

Sourced from graphql's releases.

v17.0.2 (2026-07-03)

Bug Fix 🐞

Polish 💅

Committers: 2

v17.0.1 (2026-06-16)

Bug Fix 🐞

  • #4824 fix(diagnostics): emit asyncStart after promise settlement to match native tracePromise (@​logaretm)

Internal 🏠

Committers: 2

v17.0.0 (2026-06-15)

New Feature 🚀

Bug Fix 🐞

Docs 📝

... (truncated)

Commits
  • 71606d7 chore(release): v17.0.2
  • 101de34 fix: detect default-value changes on input object fields (#4832)
  • 82da713 fix(mapSchemaConfig): fix context for schema argument mapper (#4829)
  • 9617473 chore(release): v17.0.1
  • 851bd6a chore(release): protect latest release channels (#4825)
  • c471d36 fix(diagnostics): emit asyncStart after promise settlement to match native `t...
  • 3f3895f chore(npm): remove obsolete ESM-only package build (#4823)
  • c7e494a chore(release): v17.0.0
  • d977f66 docs: post 17.rc-0 update (#4817)
  • 39f865f docs: document @experimental_disableErrorPropagation (#4820)
  • Additional commits viewable in compare view

Updates next from 16.2.6 to 16.2.10

Release notes

Sourced from next's releases.

v16.2.10

Contains no changes except publishing @next/swc-wasm-web which was accidentally not published since 16.2.4.

v16.2.9

Empty release to ensure next@latest points at a stable release. Next.js only allows publishing with Trusted Publishing enabled. In order to fix NPM dist-tags, we have to release a new version. Updating dist-tags is not possible with Trusted Publishing.

v16.2.8

Release with no changes in an attempt to fix next@latest pointing at a prerelease version.

v16.2.7

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

  • Backport documentation fixes for v16.2 (#93804)
  • [backport] Patch playwright-core to resolve _finishedPromise on requestFailed (#93920)
  • [backport] Fix dev mode hydration failure when page is served from HTTP cache (#93492)
  • [backport] Fix catch-all router.query corruption with basePath + rewrites (#93917)
  • [backport] Encode non-ASCII characters in cache tags at construction (#93918)
  • [backport] Fix server action forwarding loop with middleware rewrites (#93919)
  • [backport] Turbopack: switch from base40 to base38 hash encoding (#93932)
  • [ci] Disable hanging node 24 typescript tests on 16.2 backport branch (#94164)
  • [backport] Fix "type: module" in project dir when using standalone or adapters (#94050)
  • [backport] Propagate adapter preferred regions (#94200)
  • [16.2.x] Don't drop FormData entries (#94240)
  • [backport] feat(turbopack): add LocalPathOrProjectPath PostCSS config resolution (#94284)

Credits

Huge thanks to @​eps1lon, @​icyJoseph, @​unstubbable, @​mischnic, @​bgw, @​timneutkens, and @​lukesandberg for helping!

Commits

Updates payload from 3.85.0 to 3.86.0

Release notes

Sourced from payload's releases.

v3.86.0

v3.86.0 (2026-07-10)

🚀 Features

  • collection-level disableBulkDelete (#17207) (ca02cdc)
  • plugin-form-builder: v3 backport to support translations (#17255) (2cde8c8)
  • ui: add livePreview.openByDefault config option (#17213) (f23b693)

🐛 Bug Fixes

  • coerce schedulePublish doc.value to collection ID type before update (#17238) (7de11b2)
  • escape regex metacharacters in isURLAllowed pathname allow-list (#17237) (2061859)
  • respect disabled GraphQL config, v3 backport (#17228) (9e9c35a)
  • allow access to files reuploaded on a draft (#17209) (f02d22a)
  • plugin-multi-tenant: run tenant delete cleanup inside the request transaction (#17175) (d128fde)
  • sdk: use qs-esm allowEmptyArrays parameter (#17208) (c7dc68e)
  • ui: presentational fields skipped in form state when admin.condition is false (#17224) (f31f26d)
  • ui: prevent slug field error tooltip from hiding lock button (#15885) (908fba1)

⚙️ CI

🤝 Contributors

v3.85.2

v3.85.2 (2026-07-01)

🐛 Bug Fixes

  • payload bin fails with tsx on node v23.5+ (#17081) (afb0226)
  • regenerate reused array and block row IDs during bulk update (3.x) (#17018) (e526c88)
  • prevent type generation script from hanging on storage-r2 (#17020) (b681448)
  • prevent reordering from unpublishing documents that have a newer draft (#16969) (b4d43c0)
  • db-mongodb: remove duplicate IDs in nested relationship queries (#17019) (8533dfb)

... (truncated)

Commits
  • 81e04d7 chore(release): v3.86.0 [skip ci]
  • 7de11b2 fix: coerce schedulePublish doc.value to collection ID type before update (#1...
  • 2061859 fix: escape regex metacharacters in isURLAllowed pathname allow-list (#17237)
  • f23b693 feat(ui): add livePreview.openByDefault config option (#17213)
  • f02d22a fix: allow access to files reuploaded on a draft (#17209)
  • c7dc68e fix(sdk): use qs-esm allowEmptyArrays parameter (#17208)
  • ca02cdc feat: collection-level disableBulkDelete (#17207)
  • 624ac51 chore(release): v3.85.2 [skip ci]
  • ac000e5 fix(deps): resolve high severity audit vulnerabilities (#17086)
  • afb0226 fix: payload bin fails with tsx on node v23.5+ (#17081)
  • Additional commits viewable in compare view

Updates react from 19.2.6 to 19.2.7

Release notes

Sourced from react's releases.

19.2.7 (June 1st, 2026)

React Server Components

Changelog

Sourced from react's changelog.

19.2.7 (June 1, 2026)

React Server Components

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for react since your current version.


Updates @types/react from 19.2.14 to 19.2.17

Commits

Updates react-dom from 19.2.6 to 19.2.7

Release notes

Sourced from react-dom's releases.

19.2.7 (June 1st, 2026)

React Server Components

Changelog

Sourced from react-dom's changelog.

19.2.7 (June 1, 2026)

React Server Components

Commits
Maintainer changes

This version was pushed to npm by ...

Description has been truncated

@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/frontend/frontend-dependencies-6004b2085a branch from 370d02d to 4be1deb Compare July 16, 2026 06:17
Bumps the frontend-dependencies group with 25 updates in the /frontend directory:

| Package | From | To |
| --- | --- | --- |
| [@payloadcms/db-postgres](https://github.com/payloadcms/payload/tree/HEAD/packages/db-postgres) | `3.85.0` | `3.86.0` |
| [@payloadcms/next](https://github.com/payloadcms/payload/tree/HEAD/packages/next) | `3.85.0` | `3.86.0` |
| [@payloadcms/richtext-lexical](https://github.com/payloadcms/payload/tree/HEAD/packages/richtext-lexical) | `3.85.0` | `3.86.0` |
| [@payloadcms/ui](https://github.com/payloadcms/payload/tree/HEAD/packages/ui) | `3.85.0` | `3.86.0` |
| [cross-env](https://github.com/kentcdodds/cross-env) | `7.0.3` | `10.1.0` |
| [dotenv](https://github.com/motdotla/dotenv) | `16.4.7` | `17.4.2` |
| [graphql](https://github.com/graphql/graphql-js) | `16.14.2` | `17.0.2` |
| [next](https://github.com/vercel/next.js) | `16.2.6` | `16.2.10` |
| [payload](https://github.com/payloadcms/payload/tree/HEAD/packages/payload) | `3.85.0` | `3.86.0` |
| [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.6` | `19.2.7` |
| [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) | `19.2.14` | `19.2.17` |
| [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.6` | `19.2.7` |
| [sharp](https://github.com/lovell/sharp) | `0.34.2` | `0.35.3` |
| [@playwright/test](https://github.com/microsoft/playwright) | `1.58.2` | `1.61.1` |
| [@testing-library/react](https://github.com/testing-library/react-testing-library) | `16.3.0` | `16.3.2` |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `22.19.9` | `26.1.1` |
| [@vitejs/plugin-react](https://github.com/vitejs/vite-plugin-react/tree/HEAD/packages/plugin-react) | `4.5.2` | `6.0.3` |
| [eslint](https://github.com/eslint/eslint) | `9.39.5` | `10.7.0` |
| [eslint-config-next](https://github.com/vercel/next.js/tree/HEAD/packages/eslint-config-next) | `16.2.6` | `16.2.10` |
| [fallow](https://github.com/fallow-rs/fallow) | `2.89.0` | `3.6.0` |
| [jsdom](https://github.com/jsdom/jsdom) | `28.0.0` | `29.1.1` |
| [tsx](https://github.com/privatenumber/tsx) | `4.21.0` | `4.23.1` |
| [typescript](https://github.com/microsoft/TypeScript) | `5.7.3` | `7.0.2` |
| [vite-tsconfig-paths](https://github.com/aleclarson/vite-tsconfig-paths) | `6.0.5` | `6.1.1` |
| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `4.0.18` | `4.1.10` |



Updates `@payloadcms/db-postgres` from 3.85.0 to 3.86.0
- [Release notes](https://github.com/payloadcms/payload/releases)
- [Commits](https://github.com/payloadcms/payload/commits/v3.86.0/packages/db-postgres)

Updates `@payloadcms/next` from 3.85.0 to 3.86.0
- [Release notes](https://github.com/payloadcms/payload/releases)
- [Commits](https://github.com/payloadcms/payload/commits/v3.86.0/packages/next)

Updates `@payloadcms/richtext-lexical` from 3.85.0 to 3.86.0
- [Release notes](https://github.com/payloadcms/payload/releases)
- [Commits](https://github.com/payloadcms/payload/commits/v3.86.0/packages/richtext-lexical)

Updates `@payloadcms/ui` from 3.85.0 to 3.86.0
- [Release notes](https://github.com/payloadcms/payload/releases)
- [Commits](https://github.com/payloadcms/payload/commits/v3.86.0/packages/ui)

Updates `cross-env` from 7.0.3 to 10.1.0
- [Release notes](https://github.com/kentcdodds/cross-env/releases)
- [Changelog](https://github.com/kentcdodds/cross-env/blob/main/CHANGELOG.md)
- [Commits](kentcdodds/cross-env@v7.0.3...v10.1.0)

Updates `dotenv` from 16.4.7 to 17.4.2
- [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md)
- [Commits](motdotla/dotenv@v16.4.7...v17.4.2)

Updates `graphql` from 16.14.2 to 17.0.2
- [Release notes](https://github.com/graphql/graphql-js/releases)
- [Commits](graphql/graphql-js@v16.14.2...v17.0.2)

Updates `next` from 16.2.6 to 16.2.10
- [Release notes](https://github.com/vercel/next.js/releases)
- [Commits](vercel/next.js@v16.2.6...v16.2.10)

Updates `payload` from 3.85.0 to 3.86.0
- [Release notes](https://github.com/payloadcms/payload/releases)
- [Commits](https://github.com/payloadcms/payload/commits/v3.86.0/packages/payload)

Updates `react` from 19.2.6 to 19.2.7
- [Release notes](https://github.com/facebook/react/releases)
- [Changelog](https://github.com/react/react/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/react/commits/v19.2.7/packages/react)

Updates `@types/react` from 19.2.14 to 19.2.17
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react)

Updates `react-dom` from 19.2.6 to 19.2.7
- [Release notes](https://github.com/facebook/react/releases)
- [Changelog](https://github.com/react/react/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/react/commits/v19.2.7/packages/react-dom)

Updates `sharp` from 0.34.2 to 0.35.3
- [Release notes](https://github.com/lovell/sharp/releases)
- [Commits](lovell/sharp@v0.34.2...v0.35.3)

Updates `@playwright/test` from 1.58.2 to 1.61.1
- [Release notes](https://github.com/microsoft/playwright/releases)
- [Commits](microsoft/playwright@v1.58.2...v1.61.1)

Updates `@testing-library/react` from 16.3.0 to 16.3.2
- [Release notes](https://github.com/testing-library/react-testing-library/releases)
- [Changelog](https://github.com/testing-library/react-testing-library/blob/main/CHANGELOG.md)
- [Commits](testing-library/react-testing-library@v16.3.0...v16.3.2)

Updates `@types/node` from 22.19.9 to 26.1.1
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Updates `@types/react` from 19.2.14 to 19.2.17
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react)

Updates `@vitejs/plugin-react` from 4.5.2 to 6.0.3
- [Release notes](https://github.com/vitejs/vite-plugin-react/releases)
- [Changelog](https://github.com/vitejs/vite-plugin-react/blob/main/packages/plugin-react/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite-plugin-react/commits/plugin-react@6.0.3/packages/plugin-react)

Updates `eslint` from 9.39.5 to 10.7.0
- [Release notes](https://github.com/eslint/eslint/releases)
- [Commits](eslint/eslint@v9.39.5...v10.7.0)

Updates `eslint-config-next` from 16.2.6 to 16.2.10
- [Release notes](https://github.com/vercel/next.js/releases)
- [Commits](https://github.com/vercel/next.js/commits/v16.2.10/packages/eslint-config-next)

Updates `fallow` from 2.89.0 to 3.6.0
- [Release notes](https://github.com/fallow-rs/fallow/releases)
- [Changelog](https://github.com/fallow-rs/fallow/blob/main/CHANGELOG.md)
- [Commits](fallow-rs/fallow@v2.89.0...v3.6.0)

Updates `jsdom` from 28.0.0 to 29.1.1
- [Release notes](https://github.com/jsdom/jsdom/releases)
- [Commits](jsdom/jsdom@v28.0.0...v29.1.1)

Updates `tsx` from 4.21.0 to 4.23.1
- [Release notes](https://github.com/privatenumber/tsx/releases)
- [Changelog](https://github.com/privatenumber/tsx/blob/master/release.config.cjs)
- [Commits](privatenumber/tsx@v4.21.0...v4.23.1)

Updates `typescript` from 5.7.3 to 7.0.2
- [Release notes](https://github.com/microsoft/TypeScript/releases)
- [Commits](https://github.com/microsoft/TypeScript/commits)

Updates `vite-tsconfig-paths` from 6.0.5 to 6.1.1
- [Release notes](https://github.com/aleclarson/vite-tsconfig-paths/releases)
- [Commits](aleclarson/vite-tsconfig-paths@v6.0.5...v6.1.1)

Updates `vitest` from 4.0.18 to 4.1.10
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Changelog](https://github.com/vitest-dev/vitest/blob/main/docs/releases.md)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.10/packages/vitest)

---
updated-dependencies:
- dependency-name: "@payloadcms/db-postgres"
  dependency-version: 3.86.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: frontend-dependencies
- dependency-name: "@payloadcms/next"
  dependency-version: 3.86.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: frontend-dependencies
- dependency-name: "@payloadcms/richtext-lexical"
  dependency-version: 3.86.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: frontend-dependencies
- dependency-name: "@payloadcms/ui"
  dependency-version: 3.86.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: frontend-dependencies
- dependency-name: "@playwright/test"
  dependency-version: 1.61.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: frontend-dependencies
- dependency-name: "@testing-library/react"
  dependency-version: 16.3.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: frontend-dependencies
- dependency-name: "@types/node"
  dependency-version: 26.1.1
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: frontend-dependencies
- dependency-name: "@types/react"
  dependency-version: 19.2.17
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: frontend-dependencies
- dependency-name: "@types/react"
  dependency-version: 19.2.17
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: frontend-dependencies
- dependency-name: "@vitejs/plugin-react"
  dependency-version: 6.0.3
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: frontend-dependencies
- dependency-name: cross-env
  dependency-version: 10.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: frontend-dependencies
- dependency-name: dotenv
  dependency-version: 17.4.2
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: frontend-dependencies
- dependency-name: eslint
  dependency-version: 10.7.0
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: frontend-dependencies
- dependency-name: eslint-config-next
  dependency-version: 16.2.10
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: frontend-dependencies
- dependency-name: fallow
  dependency-version: 3.5.1
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: frontend-dependencies
- dependency-name: graphql
  dependency-version: 17.0.2
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: frontend-dependencies
- dependency-name: jsdom
  dependency-version: 29.1.1
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: frontend-dependencies
- dependency-name: next
  dependency-version: 16.2.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: frontend-dependencies
- dependency-name: payload
  dependency-version: 3.86.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: frontend-dependencies
- dependency-name: react
  dependency-version: 19.2.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: frontend-dependencies
- dependency-name: react-dom
  dependency-version: 19.2.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: frontend-dependencies
- dependency-name: sharp
  dependency-version: 0.35.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: frontend-dependencies
- dependency-name: tsx
  dependency-version: 4.23.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: frontend-dependencies
- dependency-name: typescript
  dependency-version: 7.0.2
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: frontend-dependencies
- dependency-name: vite-tsconfig-paths
  dependency-version: 6.1.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: frontend-dependencies
- dependency-name: vitest
  dependency-version: 4.1.10
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: frontend-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/frontend/frontend-dependencies-6004b2085a branch from 4be1deb to 5f4cc0b Compare July 17, 2026 06:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants