Update dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update
@actions/github (source)	9.0.0 → 9.1.0			dependencies	minor
@aws-sdk/client-s3 (source)	3.1025.0 → 3.1029.0			dependencies	minor
@aws-sdk/s3-request-presigner (source)	3.1025.0 → 3.1029.0			dependencies	minor
@headlessui/react (source)	2.2.9 → 2.2.10			dependencies	patch
@tanstack/react-query (source)	5.96.2 → 5.99.0			dependencies	minor
@types/bun (source)	1.3.11 → 1.3.12			dependencies	patch
@types/bun (source)	1.3.11 → 1.3.12			devDependencies	patch
bun (source)	1.3.11 → 1.3.12				patch
cypress (source)	15.13.0 → 15.13.1			devDependencies	patch
jimp	1.6.0 → 1.6.1			dependencies	patch
nx (source)	22.6.4 → 22.6.5			devDependencies	patch
oven/bun	1.3.11 → 1.3.12			final	patch
prettier (source)	3.8.1 → 3.8.2			devDependencies	patch
react (source)	19.2.4 → 19.2.5			dependencies	patch
react (source)	19.2.4 → 19.2.5			devDependencies	patch
react-dom (source)	19.2.4 → 19.2.5			dependencies	patch
react-dom (source)	19.2.4 → 19.2.5			devDependencies	patch
typescript-eslint (source)	8.58.0 → 8.58.1			devDependencies	patch

---

Release Notes

actions/toolkit (@​actions/github)

v9.1.0

• Append actions_orchestration_id to user-agent when the ACTIONS_ORCHESTRATION_ID environment variable is set #​2364

aws/aws-sdk-js-v3 (@​aws-sdk/client-s3)

v3.1029.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1028.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1027.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1026.0

Compare Source

Features

• client-s3: Updated list of the valid AWS Region values for the LocationConstraint parameter for general purpose buckets. (229167d)

aws/aws-sdk-js-v3 (@​aws-sdk/s3-request-presigner)

v3.1029.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

v3.1028.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

v3.1027.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

v3.1026.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

tailwindlabs/headlessui (@​headlessui/react)

v2.2.10

Compare Source

Fixed

• Don’t render <Portal> while hydrating (#​3825)
• Fix passing props on Fragment error due to Symbol(react.lazy) (#​3873)

TanStack/query (@​tanstack/react-query)

v5.99.0

Compare Source

Patch Changes

• Updated dependencies []:
  • @​tanstack/query-core@​5.99.0

v5.98.0

Compare Source

Patch Changes

• Updated dependencies []:
  • @​tanstack/query-core@​5.98.0

v5.97.0

Compare Source

Patch Changes

• Updated dependencies [2bfb12c]:
  • @​tanstack/query-core@​5.97.0

oven-sh/bun (bun)

v1.3.12: Bun v1.3.12

Compare Source

To install Bun v1.3.12

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.3.12:

bun upgrade

Read Bun v1.3.12's release notes on Bun's blog

Thanks to 8 contributors!

• @​alii
• @​ant-kurt
• @​cirospaciari
• @​dylan-conway
• @​gameroman
• @​jarred-sumner
• @​robobun
• @​sosukesuzuki

cypress-io/cypress (cypress)

v15.13.1

Compare Source

Changelog: https://docs.cypress.io/app/references/changelog#15-13-1

jimp-dev/jimp (jimp)

v1.6.1

Compare Source

🎉 This release contains work from new contributors! 🎉

Thanks for all your work!

❤️ Denys Kashkovskyi (@​Kashkovsky)

❤️ Viki (@​vikiboss)

🐛 Bug Fix

• fix docs imports (@​hipstersmoothie)
• @jimp/core, @jimp/plugin-quantize, @jimp/wasm-avif, @jimp/wasm-jpeg, @jimp/wasm-png, @jimp/wasm-webp
  • Update file-type from ^16 to ^21.3.3 in @​jimp/core #​1400 (@​Kashkovsky @​hipstersmoothie)

⚠️ Pushed to main

• @jimp/core
  • Doc updates (closes #​1342) (@​hipstersmoothie)

📝 Documentation

• docs: correct GitHub repo link #​1340 (@​vikiboss)

Authors: 3

• Andrew Lisowski (@​hipstersmoothie)
• Denys Kashkovskyi (@​Kashkovsky)
• Viki (@​vikiboss)

nrwl/nx (nx)

v22.6.5

Compare Source

22.6.5 (2026-04-10)

🚀 Features

• core: allow generate command to skip project graph creation (#​35170)
• core: use CNW variant 1 cloud prompt in nx init (#​35155)
• core: prompt for setup mode when running nx init in empty git directory (#​35226)
• misc: lock in CNW cloud prompt A/B winner and add new variants (#​35154)

🩹 Fixes

• angular: add storybook and playwright as implicit dependencies (#​35224)
• bundling: bump esbuild for new projects to a version compatible with vite 8 (#​35132)
• core: clean up legacy .gemini/skills during configure-ai-agents (#​35117)
• core: copy pnpm install configuration to generated package.json (#​35016, #​30240)
• core: display actual error message when plugin loading fails (#​35138, #​35137)
• core: bump axios to 1.13.5 to resolve CVE-2026-25639 (#​35148, #​35145)
• core: update and pin ejs to 5.0.1 (#​35157)
• core: misc tui perf fixes (#​35187)
• core: replace LGPL-licensed @​ltd/j-toml with BSD-3-Clause smol-toml (#​35188)
• core: kill discrete tasks and use tree-kill for batch cleanup on SIGINT (#​35175)
• core: support cross-file variable references in .env files (#​34956, #​34955)
• core: disable Yarn scripts for temp nx@​latest installs (#​35210)
• core: use fresh package manager cache for e2e tests (#​35211)
• core: prevent phantom connections and dead polling in plugin workers (#​34823, #​34388)
• core: add prettier config inputs to astro-docs format target (#​35222)
• core: add vale-changed.mjs script to vale target inputs (41a71dd97d)
• core: add missing build inputs for angular-rspack example projects (d71dcc6a9a)
• core: add run-native-target script input to dotnet build-analyzer (#​35221)
• core: overwrite inferred script target when nx prop defines executor or command (#​35227)
• core: update cleanup mock to match async signature in package-json spec (c9d51d31f9)
• gradle: prevent Gradle and Maven daemon accumulation during project graph recalculation (#​35143)
• gradle: use namespace import for tree-kill to match codebase convention (7c4f4af802)
• js: resolve ENOWORKSPACES test error in setupVerdaccio for @​nx/js:library generator (#​34755)
• js: include npm overrides in generated lockfile (#​35192, #​34529)
• linter: infer extended tsconfig files as task inputs (#​35190)
• maven: prevent batch executor hang from premature worker exit (#​35001, #​34757)
• maven: use require for tree-kill to avoid esModuleInterop mismatch between lib and spec configs (8bd4c182ca)
• misc: use workspace root for package manager detection and normalize paths in plugins (#​35116)
• misc: stream Framer proxy responses and add edge function timing (#​35215)
• misc: bump axios to 1.15.0 for all packages (#​35237)
• repo: clean Angular CLI restore target before cache copy (#​35121)
• repo: update issue-notifier.yml (#​35178)

❤️ Thank You

• Alexandre Ducarne @​JiggyJinjo
• Claude
• Claude Opus 4.6
• Claude Opus 4.6 (1M context)
• Craigory Coppola @​AgentEnder
• FrozenPandaz @​FrozenPandaz
• FUASHI LOT-BILL
• Jack Hsu @​jaysoo
• James Henry @​JamesHenry
• Jason Jean @​FrozenPandaz
• Leosvel Pérez Espinosa @​leosvelperez
• leosvelperez @​leosvelperez
• MaxKless @​MaxKless
• Parker Norwood @​parker-norwood
• Robert Sidzinka
• Steven Nance
• Victor Savkin @​vsavkin

prettier/prettier (prettier)

v3.8.2

Compare Source

facebook/react (react)

v19.2.5: 19.2.5 (April 8th, 2026)

Compare Source

React Server Components

• Add more cycle protections (#​36236 by @​eps1lon and @​unstubbable)

typescript-eslint/typescript-eslint (typescript-eslint)

v8.58.1

Compare Source

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.