chore(deps-dev): bump the dev-dependencies-minor-patch group with 13 updates

[dependabot]

Bumps the dev-dependencies-minor-patch group with 13 updates:

Package	From	To
@cloudflare/vitest-pool-workers	0.12.19	0.12.20
typescript	5.8.3	5.9.3
openai	6.25.0	6.27.0
@nestjs/common	11.1.15	11.1.16
@nestjs/core	11.1.15	11.1.16
@nestjs/platform-express	11.1.15	11.1.16
@nestjs/platform-fastify	11.1.15	11.1.16
@nestjs/testing	11.1.15	11.1.16
fastify	5.7.4	5.8.1
@trpc/server	11.11.0	11.12.0
@cloudflare/vite-plugin	1.26.0	1.26.1
wrangler	4.70.0	4.71.0
electron	40.7.0	40.8.0

Updates @cloudflare/vitest-pool-workers from 0.12.19 to 0.12.20

Release notes

Sourced from @​cloudflare/vitest-pool-workers's releases.

@​cloudflare/vitest-pool-workers@​0.12.20

Patch Changes

• Updated dependencies [ec2459e]:
  • wrangler@4.71.0
  • miniflare@4.20260301.1

Changelog

Sourced from @​cloudflare/vitest-pool-workers's changelog.

0.12.20

Patch Changes

• Updated dependencies [ec2459e]:
  • wrangler@4.71.0
  • miniflare@4.20260301.1

Commits

• 9dff00c Version Packages (#12748)
• See full diff in compare view

Updates typescript from 5.8.3 to 5.9.3

Release notes

Sourced from typescript's releases.

TypeScript 5.9.3

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

• fixed issues query for Typescript 5.9.0 (Beta).
• fixed issues query for Typescript 5.9.1 (RC).
• No specific changes for TypeScript 5.9.2 (Stable)
• fixed issues query for Typescript 5.9.3 (Stable).

Downloads are available on:

• npm

TypeScript 5.9

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

• fixed issues query for Typescript 5.9.0 (Beta).
• fixed issues query for Typescript 5.9.1 (RC).
• No specific changes for TypeScript 5.9.2 (Stable)

Downloads are available on:

• npm

TypeScript 5.9 RC

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

• fixed issues query for Typescript 5.9.0 (Beta).
• fixed issues query for Typescript 5.9.1 (RC).

Downloads are available on:

• npm

TypeScript 5.9 Beta

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement.

• fixed issues query for Typescript 5.9.0 (Beta).

Downloads are available on:

• npm

Commits

• c63de15 Bump version to 5.9.3 and LKG
• 8428ca4 🤖 Pick PR #62438 (Fix incorrectly ignored dts file fr...) into release-5.9 (#...
• a131cac 🤖 Pick PR #62351 (Add missing Float16Array constructo...) into release-5.9 (#...
• 0424333 🤖 Pick PR #62423 (Revert PR 61928) into release-5.9 (#62425)
• bdb641a 🤖 Pick PR #62311 (Fix parenthesizer rules for manuall...) into release-5.9 (#...
• 0d9b9b9 🤖 Pick PR #61978 (Restructure CI to prepare for requi...) into release-5.9 (#...
• 2dce0c5 Intentionally regress one buggy declaration output to an older version (#62163)
• 5be3346 Bump version to 5.9.2 and LKG
• ad825f2 Bump version to 5.9.1-rc and LKG
• 463a5bf Update LKG
• Additional commits viewable in compare view

Updates openai from 6.25.0 to 6.27.0

Release notes

Sourced from openai's releases.

v6.27.0

6.27.0 (2026-03-05)

Full Changelog: v6.26.0...v6.27.0

Features

• api: The GA ComputerTool now uses the CompuerTool class. The 'computer_use_preview' tool is moved to ComputerUsePreview (0206188)

Chores

• internal: improve import alias names (9cc2478)

v6.26.0

6.26.0 (2026-03-05)

Full Changelog: v6.25.0...v6.26.0

Features

• api: gpt-5.4, tool search tool, and new computer tool (1d1e5a9)

Bug Fixes

• api: internal schema fixes (6b401ad)
• api: manual updates (2b54919)
• api: readd phase (4a0cf29)
• api: remove phase from message types, prompt_cache_key param in responses (088fca6)

Chores

• internal: codegen related update (6a0aa9e)
• internal: codegen related update (b2a4299)
• internal: move stringifyQuery implementation to internal function (f9f4660)
• internal: reduce warnings (7e19492)

Changelog

Sourced from openai's changelog.

6.27.0 (2026-03-05)

Full Changelog: v6.26.0...v6.27.0

Features

• api: The GA ComputerTool now uses the CompuerTool class. The 'computer_use_preview' tool is moved to ComputerUsePreview (0206188)

Chores

• internal: improve import alias names (9cc2478)

6.26.0 (2026-03-05)

Full Changelog: v6.25.0...v6.26.0

Features

• api: gpt-5.4, tool search tool, and new computer tool (1d1e5a9)

Bug Fixes

• api: internal schema fixes (6b401ad)
• api: manual updates (2b54919)
• api: readd phase (4a0cf29)
• api: remove phase from message types, prompt_cache_key param in responses (088fca6)

Chores

• internal: codegen related update (6a0aa9e)
• internal: codegen related update (b2a4299)
• internal: move stringifyQuery implementation to internal function (f9f4660)
• internal: reduce warnings (7e19492)

Commits

• 09de6c0 release: 6.27.0
• 0aeb1b5 feat(api): The GA ComputerTool now uses the CompuerTool class. The 'computer_...
• 3cf5bc2 chore(internal): improve import alias names
• 6a89ced release: 6.26.0
• e2b122f feat(api): gpt-5.4, tool search tool, and new computer tool
• 583240f chore(internal): codegen related update
• e53097f chore(internal): reduce warnings
• 1da125d chore(internal): codegen related update
• 67137ac codegen metadata
• 8605a10 fix(api): internal schema fixes
• Additional commits viewable in compare view

Updates @nestjs/common from 11.1.15 to 11.1.16

Release notes

Sourced from @​nestjs/common's releases.

v11.1.16 (2026-03-05)

Bug fixes

• microservices
  • #16506 fix(microservices): fix double callback when isdisposed or err is truthy (@​LhonRafaat)

Dependencies

• platform-express
  • #16507 fix(deps): update dependency multer to v2.1.1 (@​renovate[bot])

Committers: 2

• Lhon (@​LhonRafaat)
• Shahnoor Mujawar (@​shahnoormujawar)

Commits

• 315e698 chore(release): publish v11.1.16 release
• See full diff in compare view

Updates @nestjs/core from 11.1.15 to 11.1.16

Release notes

Sourced from @​nestjs/core's releases.

v11.1.16 (2026-03-05)

Bug fixes

• microservices
  • #16506 fix(microservices): fix double callback when isdisposed or err is truthy (@​LhonRafaat)

Dependencies

• platform-express
  • #16507 fix(deps): update dependency multer to v2.1.1 (@​renovate[bot])

Committers: 2

• Lhon (@​LhonRafaat)
• Shahnoor Mujawar (@​shahnoormujawar)

Commits

• 315e698 chore(release): publish v11.1.16 release
• c9268ff Merge pull request #16493 from shahnoormujawar/fix/unknown-dependencies-messa...
• e5fc974 fix(core): refine unknown dependencies message token display
• See full diff in compare view

Updates @nestjs/platform-express from 11.1.15 to 11.1.16

Release notes

Sourced from @​nestjs/platform-express's releases.

v11.1.16 (2026-03-05)

Bug fixes

• microservices
  • #16506 fix(microservices): fix double callback when isdisposed or err is truthy (@​LhonRafaat)

Dependencies

• platform-express
  • #16507 fix(deps): update dependency multer to v2.1.1 (@​renovate[bot])

Committers: 2

• Lhon (@​LhonRafaat)
• Shahnoor Mujawar (@​shahnoormujawar)

Commits

• 315e698 chore(release): publish v11.1.16 release
• 24956b5 fix(deps): update dependency multer to v2.1.1
• See full diff in compare view

Updates @nestjs/platform-fastify from 11.1.15 to 11.1.16

Release notes

Sourced from @​nestjs/platform-fastify's releases.

v11.1.16 (2026-03-05)

Bug fixes

• microservices
  • #16506 fix(microservices): fix double callback when isdisposed or err is truthy (@​LhonRafaat)

Dependencies

• platform-express
  • #16507 fix(deps): update dependency multer to v2.1.1 (@​renovate[bot])

Committers: 2

• Lhon (@​LhonRafaat)
• Shahnoor Mujawar (@​shahnoormujawar)

Commits

• 315e698 chore(release): publish v11.1.16 release
• See full diff in compare view

Updates @nestjs/testing from 11.1.15 to 11.1.16

Release notes

Sourced from @​nestjs/testing's releases.

v11.1.16 (2026-03-05)

Bug fixes

• microservices
  • #16506 fix(microservices): fix double callback when isdisposed or err is truthy (@​LhonRafaat)

Dependencies

• platform-express
  • #16507 fix(deps): update dependency multer to v2.1.1 (@​renovate[bot])

Committers: 2

• Lhon (@​LhonRafaat)
• Shahnoor Mujawar (@​shahnoormujawar)

Commits

• 315e698 chore(release): publish v11.1.16 release
• See full diff in compare view

Updates fastify from 5.7.4 to 5.8.1

Release notes

Sourced from fastify's releases.

v5.8.1

⚠️ Security Release

Fixes "Missing End Anchor in "subtypeNameReg" Allows Malformed Content-Types to Pass Validation": GHSA-573f-x89g-hqp9.

CVE-2026-3419

Full Changelog: fastify/fastify@v5.8.0...v5.8.1

v5.8.0

What's Changed

• docs(request): add host security warning references by @​mcollina in fastify/fastify#6476
• docs: fix note style by @​Fdawgs in fastify/fastify#6487
• chore: rename deploy website ci by @​Eomm in fastify/fastify#6492
• chore: support pino v9 and v10 by @​mcollina in fastify/fastify#6496
• chore: update logger types and fix TODO comment by @​Tony133 in fastify/fastify#6470
• refactor(test-types): migrate dummy-plugin to FastifyPluginAsync by @​Tony133 in fastify/fastify#6472
• docs: fix markdown typo in README.md by @​droppingbeans in fastify/fastify#6491
• test: cover non-numeric content-length client error path by @​mcollina in fastify/fastify#6500
• ci: remove tests-checker workflow by @​Tony133 in fastify/fastify#6481
• ci: remove stale.yml file by @​Tony133 in fastify/fastify#6504
• docs(security): remove hackerone references; change note style by @​Fdawgs in fastify/fastify#6501
• chore: rename @​sinclair/typebox to typebox by @​Tony133 in fastify/fastify#6494
• ci(links-check): add external link checker using linkinator-action by @​umxr in fastify/fastify#6386
• chore: upgrade borp to v1.0.0 by @​Tony133 in fastify/fastify#6510
• docs: Add OpenJS CNA reference to SECURITY.md by @​mcollina in fastify/fastify#6516
• fix: avoid mutating shared routerOptions across instances by @​mcollina in fastify/fastify#6515
• fix(types): accept async route hooks in shorthand options by @​mcollina in fastify/fastify#6514
• docs: Improve shutdown lifecycle documentation by @​kibertoad in fastify/fastify#6517
• chore: remove unused tsconfig.eslint.json by @​mrazauskas in fastify/fastify#6524
• feat: First-class support for handler-level timeouts by @​kibertoad in fastify/fastify#6521
• docs(security): clarify insecureHTTPParser threat model scope by @​mcollina in fastify/fastify#6533
• chore(license): standardise license notice by @​Fdawgs in fastify/fastify#6511
• docs: clarify anyOf nullable coercion behavior with primitive types by @​slegarraga in fastify/fastify#6531
• fix: remove format placeholder from FST_ERR_CTP_INVALID_MEDIA_TYPE message by @​super-mcgin in fastify/fastify#6528
• docs(reference/hooks): fix note style by @​Fdawgs in fastify/fastify#6538
• chore: Bump lycheeverse/lychee-action from 2.7.0 to 2.8.0 by @​dependabot[bot] in fastify/fastify#6539
• chore: Bump actions/dependency-review-action from 4.8.2 to 4.8.3 by @​dependabot[bot] in fastify/fastify#6540
• chore: Bump markdownlint-cli2 from 0.20.0 to 0.21.0 by @​dependabot[bot] in fastify/fastify#6542
• ci: remove broken links and add ecosystem link validator by @​mcollina in fastify/fastify#6421
• ci(validate-ecoystem-links): add job level permission by @​Fdawgs in fastify/fastify#6545
• style: remove trailing whitespace by @​Fdawgs in fastify/fastify#6543

New Contributors

• @​droppingbeans made their first contribution in fastify/fastify#6491
• @​umxr made their first contribution in fastify/fastify#6386
• @​slegarraga made their first contribution in fastify/fastify#6531
• @​super-mcgin made their first contribution in fastify/fastify#6528

Full Changelog: fastify/fastify@v5.7.4...v5.8.0

Commits

• 073ff81 Bumped v5.8.1
• 67f6c9b Merge commit from fork
• 161578a chore: sync version
• 9b06a78 Bumped v5.8.0
• bbdfe82 style: remove trailing whitespace (#6543)
• cd58ed4 ci(validate-ecoystem-links): add job level permission (#6545)
• 2590592 ci: remove broken links and add ecosystem link validator (#6421)
• 09b55b6 chore: Bump markdownlint-cli2 from 0.20.0 to 0.21.0 (#6542)
• 43c4e38 chore: Bump actions/dependency-review-action from 4.8.2 to 4.8.3 (#6540)
• 3b40573 chore: Bump lycheeverse/lychee-action from 2.7.0 to 2.8.0 (#6539)
• Additional commits viewable in compare view

Updates @trpc/server from 11.11.0 to 11.12.0

Commits

• 8a144e9 v11.12.0
• dad1281 fix: SSE subscriptions don't reconnect after maxDurationMs (#7094) (#7207)
• 6c2e9b3 chore(upgrade): Node 24, vitest 4 (#7200)
• See full diff in compare view

Updates @cloudflare/vite-plugin from 1.26.0 to 1.26.1

Release notes

Sourced from @​cloudflare/vite-plugin's releases.

@​cloudflare/vite-plugin@​1.26.1

Patch Changes

• Updated dependencies [5cc8fcf, ec2459e]:
  • @​cloudflare/unenv-preset@​2.15.0
  • wrangler@4.71.0
  • miniflare@4.20260301.1

Changelog

Sourced from @​cloudflare/vite-plugin's changelog.

1.26.1

Patch Changes

• Updated dependencies [5cc8fcf, ec2459e]:
  • @​cloudflare/unenv-preset@​2.15.0
  • wrangler@4.71.0
  • miniflare@4.20260301.1

Commits

• 9dff00c Version Packages (#12748)
• See full diff in compare view

Updates wrangler from 4.70.0 to 4.71.0

Release notes

Sourced from wrangler's releases.

wrangler@4.71.0

Minor Changes

• #11656 ec2459e Thanks @​prydt! - feat(hyperdrive): add MySQL SSL mode and Custom CA support

  Hyperdrive now supports MySQL-specific SSL modes (REQUIRED, VERIFY_CA, VERIFY_IDENTITY) alongside the existing PostgreSQL modes. The --sslmode flag now validates the provided value based on the database scheme (PostgreSQL or MySQL) and enforces appropriate CA certificate requirements for each.

  Usage:

  # MySQL with CA verification
  wrangler hyperdrive create my-config --connection-string="mysql://user:pass@host:3306/db" --sslmode=VERIFY_CA --ca-certificate-id=<cert-id>
  PostgreSQL (unchanged)
  wrangler hyperdrive create my-config --connection-string="postgres://user:pass@host:5432/db" --sslmode=verify-full --ca-certificate-id=<cert-id>

Patch Changes

• Updated dependencies [5cc8fcf]:
  • @​cloudflare/unenv-preset@​2.15.0
  • miniflare@4.20260301.1

Commits

• 9dff00c Version Packages (#12748)
• 331d4de Revert "Bump the workerd-and-workers-types group with 2 updates" (#12776)
• 48bbe20 Bump the workerd-and-workers-types group with 2 updates (#12768)
• ec2459e Add MySQL SSL options for hyperdrive creation (#11656)
• 5cc8fcf [unenv] Use the native workerd perf_hooks modules when available (#10618)
• See full diff in compare view

Updates electron from 40.7.0 to 40.8.0

Release notes

Sourced from electron's releases.

electron v40.8.0

Release Notes for v40.8.0

Features

• Added a reason property to the Notification 'closed' event on Windows to allow developers to know the reason the Notification was dismissed. #50030 (Also in 41)

Fixes

• Fixed shutdown crash on windows when hidden titlebar is enabled. #50053 (Also in 39, 41)

Other Changes

• Updated Chromium to 144.0.7559.236. #50060

Commits

• de61f6c feat: show toast dismissal reason on Windows (#50030)
• 90f85f2 chore: bump chromium to 144.0.7559.236 (40-x-y) (#50060)
• 60951cd fix: use proper quoting for exe paths and args on Windows (#50075)
• a3022df build: fix code-signing for MacOS x64 tests (#50072)
• 996fbfd chore: remove applescript from trash (#50065)
• 79d1e32 fix: uaf in non-client hittest during view teardown (#50053)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[cloudflare-workers-and-pages]

Deploying orpc with    Cloudflare Pages

Latest commit:	31a4ad0
Status:	⚡️  Build in progress...

View logs

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

[pkg-pr-new]

More templates

• @orpc/astro-playground
• @orpc/browser-extension-playground
• @orpc/bun-websocket-otel-playground
• @orpc/cloudflare-worker-playground
• @orpc/contract-first-playground
• @orpc/electron-playground
• @orpc/nest-playground
• @orpc/next-playground
• @orpc/nuxt-playground
• @orpc/solid-start-playground
• @orpc/svelte-kit-playground
• @orpc/tanstack-start-playground

@orpc/ai-sdk

npm i https://pkg.pr.new/@orpc/ai-sdk@1462

@orpc/arktype

npm i https://pkg.pr.new/@orpc/arktype@1462

@orpc/client

npm i https://pkg.pr.new/@orpc/client@1462

@orpc/contract

npm i https://pkg.pr.new/@orpc/contract@1462

@orpc/experimental-durable-iterator

npm i https://pkg.pr.new/@orpc/experimental-durable-iterator@1462

@orpc/hey-api

npm i https://pkg.pr.new/@orpc/hey-api@1462

@orpc/interop

npm i https://pkg.pr.new/@orpc/interop@1462

@orpc/json-schema

npm i https://pkg.pr.new/@orpc/json-schema@1462

@orpc/nest

npm i https://pkg.pr.new/@orpc/nest@1462

@orpc/openapi

npm i https://pkg.pr.new/@orpc/openapi@1462

@orpc/openapi-client

npm i https://pkg.pr.new/@orpc/openapi-client@1462

@orpc/otel

npm i https://pkg.pr.new/@orpc/otel@1462

@orpc/experimental-pino

npm i https://pkg.pr.new/@orpc/experimental-pino@1462

@orpc/experimental-publisher

npm i https://pkg.pr.new/@orpc/experimental-publisher@1462

@orpc/experimental-publisher-durable-object

npm i https://pkg.pr.new/@orpc/experimental-publisher-durable-object@1462

@orpc/experimental-ratelimit

npm i https://pkg.pr.new/@orpc/experimental-ratelimit@1462

@orpc/react

npm i https://pkg.pr.new/@orpc/react@1462

@orpc/react-query

npm i https://pkg.pr.new/@orpc/react-query@1462

@orpc/experimental-react-swr

npm i https://pkg.pr.new/@orpc/experimental-react-swr@1462

@orpc/server

npm i https://pkg.pr.new/@orpc/server@1462

@orpc/shared

npm i https://pkg.pr.new/@orpc/shared@1462

@orpc/solid-query

npm i https://pkg.pr.new/@orpc/solid-query@1462

@orpc/standard-server

npm i https://pkg.pr.new/@orpc/standard-server@1462

@orpc/standard-server-aws-lambda

npm i https://pkg.pr.new/@orpc/standard-server-aws-lambda@1462

@orpc/standard-server-fastify

npm i https://pkg.pr.new/@orpc/standard-server-fastify@1462

@orpc/standard-server-fetch

npm i https://pkg.pr.new/@orpc/standard-server-fetch@1462

@orpc/standard-server-node

npm i https://pkg.pr.new/@orpc/standard-server-node@1462

@orpc/standard-server-peer

npm i https://pkg.pr.new/@orpc/standard-server-peer@1462

@orpc/svelte-query

npm i https://pkg.pr.new/@orpc/svelte-query@1462

@orpc/tanstack-query

npm i https://pkg.pr.new/@orpc/tanstack-query@1462

@orpc/trpc

npm i https://pkg.pr.new/@orpc/trpc@1462

@orpc/valibot

npm i https://pkg.pr.new/@orpc/valibot@1462

@orpc/vue-colada

npm i https://pkg.pr.new/@orpc/vue-colada@1462

@orpc/vue-query

npm i https://pkg.pr.new/@orpc/vue-query@1462

@orpc/zod

npm i https://pkg.pr.new/@orpc/zod@1462

commit: fef75b1

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.