chore(deps): stack passing Dependabot bumps (@astrojs/preact 6, @primer/react-brand 0.69, @types/node 26)#113
Merged
Merged
Conversation
…/node 26 Stacks three passing Dependabot bumps (#110, #109, #111) into one branch with a single consolidated lockfile. Verified locally with Node 22: astro check, astro build, and Playwright tests all pass. Excludes #112 (astro 7): it pulls Vite 8 (rolldown), whose built-in postcss-import cannot resolve Tailwind v4's @import "tailwindcss", which needs a dedicated migration. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Contributor
There was a problem hiding this comment.
Pull request overview
This PR consolidates three passing Dependabot dependency bumps into a single branch, updating package.json and producing one unified package-lock.json for the repo’s Node/Astro toolchain.
Changes:
- Bump
@astrojs/preactfrom^5.1.5to^6.0.0. - Bump
@primer/react-brandfrom^0.68.0to^0.69.0. - Bump
@types/nodefrom^25.9.3to^26.0.0and update the lockfile accordingly.
Show a summary per file
| File | Description |
|---|---|
| package.json | Updates the three dependency/devDependency version ranges. |
| package-lock.json | Re-locks dependencies for the consolidated bumps (including transitive updates like Vite and undici-types). |
Copilot's findings
Tip
Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
- Files reviewed: 1/2 changed files
- Comments generated: 1
Comment on lines
+14
to
+15
| "@astrojs/preact": "^6.0.0", | ||
| "@primer/react-brand": "^0.69.0", |
This was referenced Jun 24, 2026
Closed
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Stacks the three passing open Dependabot PRs into a single branch with one consolidated
package-lock.json:@astrojs/preact5.1.5 → 6.0.0@primer/react-brand0.68.0 → 0.69.0 (minor-and-patch group)@types/node25.9.3 → 26.0.0Verification (local, Node 22 to match CI)
npm run check(astro check)npm run build(astro build)npm run test(Playwright)Each bump was also verified individually on its own branch before stacking, then re-verified together on this consolidated branch.
Excluded: #112 (astro 6.4.8 → 7.0.0)
Astro 7 depends on Vite 8 (rolldown). The repo's
overrides.vitepin (^7) was the first blocker (rollupOptions.input should not be an html file when building for SSR); bumping it to^8gets past that, but Vite 8's built-inpostcss-importthen fails to resolve Tailwind v4's@import "tailwindcss"(ENOENT … open '…/tailwindcss'). That's a real toolchain migration (Vite 8 / rolldown + Tailwind), not a safe dependency bump, so #112 is left open for dedicated follow-up.Supersedes #109, #110, #111.