deps: bump the dependencies-minor group across 1 directory with 8 updates #99

dependabot · 2025-08-06T15:04:11Z

Bumps the dependencies-minor group with 8 updates in the / directory:

Package	From	To
@remix-run/express	`2.16.8`	`2.17.0`
@remix-run/node	`2.16.8`	`2.17.0`
@remix-run/react	`2.16.8`	`2.17.0`
isbot	`5.1.28`	`5.1.29`
lucide-react	`0.525.0`	`0.536.0`
@remix-run/dev	`2.16.8`	`2.17.0`
sass	`1.89.2`	`1.90.0`
typescript	`5.8.3`	`5.9.2`

Updates @remix-run/express from 2.16.8 to 2.17.0

Release notes

Sourced from @remix-run/express's releases.

v2.17.0

See the changelog for the release notes: https://github.com/remix-run/remix/blob/v2/CHANGELOG.md#v2170

Changelog

Sourced from @remix-run/express's changelog.

v2.17.0

Date: 2025-07-25

Minor Changes

create-remix - Redirect users to create-react-router instead of create-remix (#10686, #10688)

Remix v2 is in maintenance mode so we don't want new Remix apps to be created

Changes by Package

create-remix

Full Changelog: v2.16.8...v2.17.0

Commits

3000859 chore: Update version for release (#10698)
3004a98 chore: Update version for release (pre) (#10692)
fc5cb1f chore: Update version for release (pre) (#10691)
See full diff in compare view

Updates @remix-run/node from 2.16.8 to 2.17.0

Release notes

Sourced from @remix-run/node's releases.

v2.17.0

See the changelog for the release notes: https://github.com/remix-run/remix/blob/v2/CHANGELOG.md#v2170

Changelog

Sourced from @remix-run/node's changelog.

v2.17.0

Date: 2025-07-25

Minor Changes

create-remix - Redirect users to create-react-router instead of create-remix (#10686, #10688)

Remix v2 is in maintenance mode so we don't want new Remix apps to be created

Changes by Package

create-remix

Full Changelog: v2.16.8...v2.17.0

Commits

3000859 chore: Update version for release (#10698)
3004a98 chore: Update version for release (pre) (#10692)
fc5cb1f chore: Update version for release (pre) (#10691)
See full diff in compare view

Updates @remix-run/react from 2.16.8 to 2.17.0

Release notes

Sourced from @remix-run/react's releases.

v2.17.0

See the changelog for the release notes: https://github.com/remix-run/remix/blob/v2/CHANGELOG.md#v2170

Changelog

Sourced from @remix-run/react's changelog.

v2.17.0

Date: 2025-07-25

Minor Changes

create-remix - Redirect users to create-react-router instead of create-remix (#10686, #10688)

Remix v2 is in maintenance mode so we don't want new Remix apps to be created

Changes by Package

create-remix

Full Changelog: v2.16.8...v2.17.0

Commits

3000859 chore: Update version for release (#10698)
3004a98 chore: Update version for release (pre) (#10692)
fc5cb1f chore: Update version for release (pre) (#10691)
See full diff in compare view

Updates isbot from 5.1.28 to 5.1.29

Changelog

Sourced from isbot's changelog.

5.1.29

[Pattern] Pattern update

Commits

b5c2ccd pattern updates
2624251 nothing
e7a7b9c Last time I said it works I was kidding
af6f18c Potential fix for code scanning alert no. 3: Workflow does not contain permis...
5777a54 Alter issue template
d9e7b87 nothing
31d1575 maintenance I swear to dog...
See full diff in compare view

Updates lucide-react from 0.525.0 to 0.536.0

Release notes

Sourced from lucide-react's releases.

Version 0.536.0

What's Changed

fix(icons): arcified message icons & fixed optical volume by @karsa-mistmere in lucide-icons/lucide#3473

fix(icons): changed hospital icon by @karsa-mistmere in lucide-icons/lucide#2969

fix(@lucide/svelte): Add .js extensions to imports by @abdel-17 in lucide-icons/lucide#2950

fix(lucide-vue-next): Support for kebabCase props by @ericfennis in lucide-icons/lucide#3477

fix(icons): changed a-arrow-* icons by @jguddas in lucide-icons/lucide#3474

fix(icons): arcified cake-slice icon by @jguddas in lucide-icons/lucide#3345

feat(lucide-static): include aliases in icons directory by @jguddas in lucide-icons/lucide#3368

feat(icons): added turntable icon by @karsa-mistmere in lucide-icons/lucide#3429

New Contributors

@abdel-17 made their first contribution in lucide-icons/lucide#2950

Full Changelog: lucide-icons/lucide@0.535.0...0.536.0

Version 0.535.0

What's Changed

ci: add "telegram" to close-issue-with-banned-phrases by @jguddas in lucide-icons/lucide#3475

fix(lucide-static): properly select icons dir for tags & error if no metadata found by @AlexProgrammerDE in lucide-icons/lucide#3411

fix(docs): update prop name from absolute-stroke-width to absoluteStrokeWidth in vue-next guide by @epifaniofrancisco in lucide-icons/lucide#3322

feat(SvgPreview): add features from lucide studio by @jguddas in lucide-icons/lucide#3365

chore: icon alias improvements by @jguddas in lucide-icons/lucide#2861

fix(icons): changed tiny heart icons by @karsa-mistmere in lucide-icons/lucide#3471

chore(docs): Update vitepress deps by @ericfennis in lucide-icons/lucide#3470

feat(icons): added hand-fist icon by @karsa-mistmere in lucide-icons/lucide#1843

New Contributors

@AlexProgrammerDE made their first contribution in lucide-icons/lucide#3411

Full Changelog: lucide-icons/lucide@0.534.0...0.535.0

Version 0.534.0

What's Changed

fix(icons): changed settings icon by @karsa-mistmere in lucide-icons/lucide#3467

fix(icons): changed mails, tags, files, file-stack, book-copy and folders icon by @jguddas in lucide-icons/lucide#2935

fix(icons): changed gavel icon by @karsa-mistmere in lucide-icons/lucide#3465

fix(icons): changed sun-moon icon & arcified moon icons by @karsa-mistmere in lucide-icons/lucide#3380

Full Changelog: lucide-icons/lucide@0.533.0...0.534.0

Version 0.533.0

What's Changed

fix(docs): Icon Component Example for Svelte 5 does not compile by @Zlendy in lucide-icons/lucide#3416

fix(icons): changed sailboat icon by @karsa-mistmere in lucide-icons/lucide#3460

fix(icons): Changed a-large-small icon by @vichotech in lucide-icons/lucide#3396

fix(icons): added rounding to heart-* icons by @jguddas in lucide-icons/lucide#3061

fix(icons): changed folder-symlink icon by @jguddas in lucide-icons/lucide#2558

fix(icons): Rounded and optically-centred flag-triangle-* icons by @jamiemlaw in lucide-icons/lucide#3438

... (truncated)

Commits

e71198d chore: icon alias improvements (#2861)
See full diff in compare view

Updates @remix-run/dev from 2.16.8 to 2.17.0

Release notes

Sourced from @remix-run/dev's releases.

v2.17.0

See the changelog for the release notes: https://github.com/remix-run/remix/blob/v2/CHANGELOG.md#v2170

Changelog

Sourced from @remix-run/dev's changelog.

v2.17.0

Date: 2025-07-25

Minor Changes

create-remix - Redirect users to create-react-router instead of create-remix (#10686, #10688)

Remix v2 is in maintenance mode so we don't want new Remix apps to be created

Changes by Package

create-remix

Full Changelog: v2.16.8...v2.17.0

Commits

3000859 chore: Update version for release (#10698)
3004a98 chore: Update version for release (pre) (#10692)
fc5cb1f chore: Update version for release (pre) (#10691)
See full diff in compare view

Updates sass from 1.89.2 to 1.90.0

Release notes

Sourced from sass's releases.

Dart Sass 1.90.0

To install Sass 1.90.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

Allow a @forwarded module to be loaded with a configuration when that module has already been loaded with a different configuration and the module doesn't define any variables that would have been configured anyway.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.90.0

Allow a @forwarded module to be loaded with a configuration when that module has already been loaded with a different configuration and the module doesn't define any variables that would have been configured anyway.

Commits

d6f4f17 Allow unused configurations to go past @forward (#2600)
02fa098 Bump @types/jest from 29.5.14 to 30.0.0 in /pkg/sass-parser (#2591)
008bbef Update embedded-host-node release pipeline (#2609)
d3e1abf Bump jest from 29.7.0 to 30.0.4 in /pkg/sass-parser (#2603)
b27c3ae Fix CI by pinning postcss version to 8.5.5 and disable app armor for browser ...
a42380f Bump jest-extended from 5.0.3 to 6.0.0 in /pkg/sass-parser (#2587)
See full diff in compare view

Updates typescript from 5.8.3 to 5.9.2

Release notes

Sourced from typescript's releases.

TypeScript 5.9

For release notes, check out the release announcement

fixed issues query for Typescript 5.9.0 (Beta).

fixed issues query for Typescript 5.9.1 (RC).

No specific changes for TypeScript 5.9.2 (Stable)

Downloads are available on:

npm

TypeScript 5.9 RC

For release notes, check out the release announcement

fixed issues query for Typescript 5.9.0 (Beta).

fixed issues query for Typescript 5.9.1 (RC).

Downloads are available on:

npm

TypeScript 5.9 Beta

For release notes, check out the release announcement.

fixed issues query for Typescript 5.9.0 (Beta).

Downloads are available on:

npm

Commits

be86783 Give more specific errors for verbatimModuleSyntax (#62113)
22ef577 LEGO: Pull request from lego/hb_5378966c-b857-470a-8675-daebef4a6da1_20250714...
d5a414c Don't use noErrorTruncation when printing types with maximumLength set (#...
f14b5c8 Remove unused and confusing dom.iterable.d.ts file (#62037)
2778e84 Restore AbortSignal.abort (#62086)
65cb4bd LEGO: Pull request from lego/hb_5378966c-b857-470a-8675-daebef4a6da1_20250710...
9e20e03 Clear out checker-level stacks on pop (#62016)
87740bc Fix for Issue 61081 (#61221)
833a8d4 Fix Symbol completion priority and cursor positioning (#61945)
0018c9f LEGO: Pull request from lego/hb_5378966c-b857-470a-8675-daebef4a6da1_20250702...
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…ates Bumps the dependencies-minor group with 8 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@remix-run/express](https://github.com/remix-run/remix/tree/HEAD/packages/remix-express) | `2.16.8` | `2.17.0` | | [@remix-run/node](https://github.com/remix-run/remix/tree/HEAD/packages/remix-node) | `2.16.8` | `2.17.0` | | [@remix-run/react](https://github.com/remix-run/remix/tree/HEAD/packages/remix-react) | `2.16.8` | `2.17.0` | | [isbot](https://github.com/omrilotan/isbot) | `5.1.28` | `5.1.29` | | [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `0.525.0` | `0.536.0` | | [@remix-run/dev](https://github.com/remix-run/remix/tree/HEAD/packages/remix-dev) | `2.16.8` | `2.17.0` | | [sass](https://github.com/sass/dart-sass) | `1.89.2` | `1.90.0` | | [typescript](https://github.com/microsoft/TypeScript) | `5.8.3` | `5.9.2` | Updates `@remix-run/express` from 2.16.8 to 2.17.0 - [Release notes](https://github.com/remix-run/remix/releases) - [Changelog](https://github.com/remix-run/remix/blob/main/CHANGELOG.md) - [Commits](https://github.com/remix-run/remix/commits/@remix-run/[email protected]/packages/remix-express) Updates `@remix-run/node` from 2.16.8 to 2.17.0 - [Release notes](https://github.com/remix-run/remix/releases) - [Changelog](https://github.com/remix-run/remix/blob/main/CHANGELOG.md) - [Commits](https://github.com/remix-run/remix/commits/@remix-run/[email protected]/packages/remix-node) Updates `@remix-run/react` from 2.16.8 to 2.17.0 - [Release notes](https://github.com/remix-run/remix/releases) - [Changelog](https://github.com/remix-run/remix/blob/main/CHANGELOG.md) - [Commits](https://github.com/remix-run/remix/commits/@remix-run/[email protected]/packages/remix-react) Updates `isbot` from 5.1.28 to 5.1.29 - [Changelog](https://github.com/omrilotan/isbot/blob/main/CHANGELOG.md) - [Commits](omrilotan/isbot@v5.1.28...v5.1.29) Updates `lucide-react` from 0.525.0 to 0.536.0 - [Release notes](https://github.com/lucide-icons/lucide/releases) - [Commits](https://github.com/lucide-icons/lucide/commits/0.536.0/packages/lucide-react) Updates `@remix-run/dev` from 2.16.8 to 2.17.0 - [Release notes](https://github.com/remix-run/remix/releases) - [Changelog](https://github.com/remix-run/remix/blob/main/CHANGELOG.md) - [Commits](https://github.com/remix-run/remix/commits/@remix-run/[email protected]/packages/remix-dev) Updates `sass` from 1.89.2 to 1.90.0 - [Release notes](https://github.com/sass/dart-sass/releases) - [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md) - [Commits](sass/dart-sass@1.89.2...1.90.0) Updates `typescript` from 5.8.3 to 5.9.2 - [Release notes](https://github.com/microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release-publish.yml) - [Commits](microsoft/TypeScript@v5.8.3...v5.9.2) --- updated-dependencies: - dependency-name: "@remix-run/express" dependency-version: 2.17.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@remix-run/node" dependency-version: 2.17.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@remix-run/react" dependency-version: 2.17.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: isbot dependency-version: 5.1.29 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies-minor - dependency-name: lucide-react dependency-version: 0.536.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: "@remix-run/dev" dependency-version: 2.17.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: sass dependency-version: 1.90.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor - dependency-name: typescript dependency-version: 5.9.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependencies-minor ... Signed-off-by: dependabot[bot] <[email protected]>

socket-security · 2025-08-06T15:05:07Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Package	Supply Chain Security	Quality	Maintenance
@remix-run/express@2.16.8 ⏵ 2.17.0			^-1
@remix-run/node@2.16.8 ⏵ 2.17.0			^-1
@remix-run/react@2.16.8 ⏵ 2.17.0			^-1
@remix-run/dev@2.16.8 ⏵ 2.17.0			⁺¹
typescript@5.8.3 ⏵ 5.9.2	⁺¹	⁺¹
isbot@5.1.28 ⏵ 5.1.29	⁺¹		⁺⁵
lucide-react@0.525.0 ⏵ 0.536.0	⁺¹	⁺¹
sass@1.89.2 ⏵ 1.90.0			⁺⁵

View full report

socket-security · 2025-08-06T15:05:08Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		`[email protected]` has a License Policy Violation. License: CC-BY-4.0 (package/ThirdPartyNoticeText.txt) License: MIT-Khronos-old (package/ThirdPartyNoticeText.txt) From: package-lock.json → `npm/[email protected]` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `[email protected]`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/[email protected]`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Aug 6, 2025

dependabot bot requested a review from a team as a code owner August 6, 2025 15:04

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Aug 6, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

deps: bump the dependencies-minor group across 1 directory with 8 updates #99

deps: bump the dependencies-minor group across 1 directory with 8 updates #99

Uh oh!

dependabot bot commented on behalf of github Aug 6, 2025 •

edited

Loading

Uh oh!

socket-security bot commented Aug 6, 2025

Uh oh!

socket-security bot commented Aug 6, 2025

Uh oh!

Uh oh!

deps: bump the dependencies-minor group across 1 directory with 8 updates #99

Are you sure you want to change the base?

deps: bump the dependencies-minor group across 1 directory with 8 updates #99

Uh oh!

Conversation

dependabot bot commented on behalf of github Aug 6, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v2.17.0

v2.17.0

Minor Changes

Changes by Package

v2.17.0

v2.17.0

Minor Changes

Changes by Package

v2.17.0

v2.17.0

Minor Changes

Changes by Package

5.1.29

Version 0.536.0

What's Changed

New Contributors

Version 0.535.0

What's Changed

New Contributors

Version 0.534.0

What's Changed

Version 0.533.0

What's Changed

v2.17.0

v2.17.0

Minor Changes

Changes by Package

Dart Sass 1.90.0

Changes

1.90.0

TypeScript 5.9

TypeScript 5.9 RC

TypeScript 5.9 Beta

Uh oh!

socket-security bot commented Aug 6, 2025

Uh oh!

socket-security bot commented Aug 6, 2025

Uh oh!

Uh oh!

dependabot bot commented on behalf of github Aug 6, 2025 •

edited

Loading