chore: production deploy#5812
Merged
Merged
Conversation
Bumps the actions-major group with 2 updates: [actions/upload-artifact](https://github.com/actions/upload-artifact) and [actions/download-artifact](https://github.com/actions/download-artifact). Updates `actions/upload-artifact` from 4.6.2 to 7.0.1 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/upload-artifact/releases">actions/upload-artifact's releases</a>.</em></p> <blockquote> <h2>v7.0.1</h2> <h2>What's Changed</h2> <ul> <li>Update the readme with direct upload details by <a href="https://github.com/danwkennedy"><code>@danwkennedy</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/795">actions/upload-artifact#795</a></li> <li>Readme: bump all the example versions to v7 by <a href="https://github.com/danwkennedy"><code>@danwkennedy</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/796">actions/upload-artifact#796</a></li> <li>Include changes in typespec/ts-http-runtime 0.3.5 by <a href="https://github.com/yacaovsnc"><code>@yacaovsnc</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/797">actions/upload-artifact#797</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/upload-artifact/compare/v7...v7.0.1">https://github.com/actions/upload-artifact/compare/v7...v7.0.1</a></p> <h2>v7.0.0</h2> <h2>v7 What's new</h2> <h3>Direct Uploads</h3> <p>Adds support for uploading single files directly (unzipped). Callers can set the new <code>archive</code> parameter to <code>false</code> to skip zipping the file during upload. Right now, we only support single files. The action will fail if the glob passed resolves to multiple files. The <code>name</code> parameter is also ignored with this setting. Instead, the name of the artifact will be the name of the uploaded file.</p> <h3>ESM</h3> <p>To support new versions of the <code>@actions/*</code> packages, we've upgraded the package to ESM.</p> <h2>What's Changed</h2> <ul> <li>Add proxy integration test by <a href="https://github.com/Link"><code>@Link</code></a>- in <a href="https://redirect.github.com/actions/upload-artifact/pull/754">actions/upload-artifact#754</a></li> <li>Upgrade the module to ESM and bump dependencies by <a href="https://github.com/danwkennedy"><code>@danwkennedy</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/762">actions/upload-artifact#762</a></li> <li>Support direct file uploads by <a href="https://github.com/danwkennedy"><code>@danwkennedy</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/764">actions/upload-artifact#764</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Link"><code>@Link</code></a>- made their first contribution in <a href="https://redirect.github.com/actions/upload-artifact/pull/754">actions/upload-artifact#754</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/upload-artifact/compare/v6...v7.0.0">https://github.com/actions/upload-artifact/compare/v6...v7.0.0</a></p> <h2>v6.0.0</h2> <h2>v6 - What's new</h2> <blockquote> <p>[!IMPORTANT] actions/upload-artifact@v6 now runs on Node.js 24 (<code>runs.using: node24</code>) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.</p> </blockquote> <h3>Node.js 24</h3> <p>This release updates the runtime to Node.js 24. v5 had preliminary support for Node.js 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.</p> <h2>What's Changed</h2> <ul> <li>Upload Artifact Node 24 support by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/719">actions/upload-artifact#719</a></li> <li>fix: update <code>@actions/artifact</code> for Node.js 24 punycode deprecation by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/744">actions/upload-artifact#744</a></li> <li>prepare release v6.0.0 for Node.js 24 support by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/745">actions/upload-artifact#745</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0">https://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0</a></p> <h2>v5.0.0</h2> <h2>What's Changed</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/upload-artifact/commit/043fb46d1a93c77aae656e7c1c64a875d1fc6a0a"><code>043fb46</code></a> Merge pull request <a href="https://redirect.github.com/actions/upload-artifact/issues/797">#797</a> from actions/yacaovsnc/update-dependency</li> <li><a href="https://github.com/actions/upload-artifact/commit/634250c1388765ea7ed0f053e636f1f399000b94"><code>634250c</code></a> Include changes in typespec/ts-http-runtime 0.3.5</li> <li><a href="https://github.com/actions/upload-artifact/commit/e454baaac2be505c9450e11b8f3215c6fc023ce8"><code>e454baa</code></a> Readme: bump all the example versions to v7 (<a href="https://redirect.github.com/actions/upload-artifact/issues/796">#796</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/74fad66b98a6d799dc004d3353ccd0e6f6b2530e"><code>74fad66</code></a> Update the readme with direct upload details (<a href="https://redirect.github.com/actions/upload-artifact/issues/795">#795</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/bbbca2ddaa5d8feaa63e36b76fdaad77386f024f"><code>bbbca2d</code></a> Support direct file uploads (<a href="https://redirect.github.com/actions/upload-artifact/issues/764">#764</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/589182c5a4cec8920b8c1bce3e2fab1c97a02296"><code>589182c</code></a> Upgrade the module to ESM and bump dependencies (<a href="https://redirect.github.com/actions/upload-artifact/issues/762">#762</a>)</li> <li><a href="https://github.com/actions/upload-artifact/commit/47309c993abb98030a35d55ef7ff34b7fa1074b5"><code>47309c9</code></a> Merge pull request <a href="https://redirect.github.com/actions/upload-artifact/issues/754">#754</a> from actions/Link-/add-proxy-integration-tests</li> <li><a href="https://github.com/actions/upload-artifact/commit/02a8460834e70dab0ce194c64360c59dc1475ef0"><code>02a8460</code></a> Add proxy integration test</li> <li><a href="https://github.com/actions/upload-artifact/commit/b7c566a772e6b6bfb58ed0dc250532a479d7789f"><code>b7c566a</code></a> Merge pull request <a href="https://redirect.github.com/actions/upload-artifact/issues/745">#745</a> from actions/upload-artifact-v6-release</li> <li><a href="https://github.com/actions/upload-artifact/commit/e516bc8500aaf3d07d591fcd4ae6ab5f9c391d5b"><code>e516bc8</code></a> docs: correct description of Node.js 24 support in README</li> <li>Additional commits viewable in <a href="https://github.com/actions/upload-artifact/compare/ea165f8d65b6e75b540449e92b4886f43607fa02...043fb46d1a93c77aae656e7c1c64a875d1fc6a0a">compare view</a></li> </ul> </details> <br /> Updates `actions/download-artifact` from 4.3.0 to 8.0.1 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/download-artifact/releases">actions/download-artifact's releases</a>.</em></p> <blockquote> <h2>v8.0.1</h2> <h2>What's Changed</h2> <ul> <li>Support for CJK characters in the artifact name by <a href="https://github.com/danwkennedy"><code>@danwkennedy</code></a> in <a href="https://redirect.github.com/actions/download-artifact/pull/471">actions/download-artifact#471</a></li> <li>Add a regression test for artifact name + content-type mismatches by <a href="https://github.com/danwkennedy"><code>@danwkennedy</code></a> in <a href="https://redirect.github.com/actions/download-artifact/pull/472">actions/download-artifact#472</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/download-artifact/compare/v8...v8.0.1">https://github.com/actions/download-artifact/compare/v8...v8.0.1</a></p> <h2>v8.0.0</h2> <h2>v8 - What's new</h2> <blockquote> <p>[!IMPORTANT] actions/download-artifact@v8 has been migrated to an ESM module. This should be transparent to the caller but forks might need to make significant changes.</p> </blockquote> <blockquote> <p>[!IMPORTANT] Hash mismatches will now error by default. Users can override this behavior with a setting change (see below).</p> </blockquote> <h3>Direct downloads</h3> <p>To support direct uploads in <code>actions/upload-artifact</code>, the action will no longer attempt to unzip all downloaded files. Instead, the action checks the <code>Content-Type</code> header ahead of unzipping and skips non-zipped files. Callers wishing to download a zipped file as-is can also set the new <code>skip-decompress</code> parameter to <code>true</code>.</p> <h3>Enforced checks (breaking)</h3> <p>A previous release introduced digest checks on the download. If a download hash didn't match the expected hash from the server, the action would log a warning. Callers can now configure the behavior on mismatch with the <code>digest-mismatch</code> parameter. To be secure by default, we are now defaulting the behavior to <code>error</code> which will fail the workflow run.</p> <h3>ESM</h3> <p>To support new versions of the @actions/* packages, we've upgraded the package to ESM.</p> <h2>What's Changed</h2> <ul> <li>Don't attempt to un-zip non-zipped downloads by <a href="https://github.com/danwkennedy"><code>@danwkennedy</code></a> in <a href="https://redirect.github.com/actions/download-artifact/pull/460">actions/download-artifact#460</a></li> <li>Add a setting to specify what to do on hash mismatch and default it to <code>error</code> by <a href="https://github.com/danwkennedy"><code>@danwkennedy</code></a> in <a href="https://redirect.github.com/actions/download-artifact/pull/461">actions/download-artifact#461</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/download-artifact/compare/v7...v8.0.0">https://github.com/actions/download-artifact/compare/v7...v8.0.0</a></p> <h2>v7.0.0</h2> <h2>v7 - What's new</h2> <blockquote> <p>[!IMPORTANT] actions/download-artifact@v7 now runs on Node.js 24 (<code>runs.using: node24</code>) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.</p> </blockquote> <h3>Node.js 24</h3> <p>This release updates the runtime to Node.js 24. v6 had preliminary support for Node 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.</p> <h2>What's Changed</h2> <ul> <li>Update GHES guidance to include reference to Node 20 version by <a href="https://github.com/patrikpolyak"><code>@patrikpolyak</code></a> in <a href="https://redirect.github.com/actions/download-artifact/pull/440">actions/download-artifact#440</a></li> <li>Download Artifact Node24 support by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/download-artifact/pull/415">actions/download-artifact#415</a></li> <li>fix: update <code>@actions/artifact</code> to fix Node.js 24 punycode deprecation by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/download-artifact/pull/451">actions/download-artifact#451</a></li> <li>prepare release v7.0.0 for Node.js 24 support by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/download-artifact/pull/452">actions/download-artifact#452</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c"><code>3e5f45b</code></a> Add regression tests for CJK characters (<a href="https://redirect.github.com/actions/download-artifact/issues/471">#471</a>)</li> <li><a href="https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd"><code>e6d03f6</code></a> Add a regression test for artifact name + content-type mismatches (<a href="https://redirect.github.com/actions/download-artifact/issues/472">#472</a>)</li> <li><a href="https://github.com/actions/download-artifact/commit/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3"><code>70fc10c</code></a> Merge pull request <a href="https://redirect.github.com/actions/download-artifact/issues/461">#461</a> from actions/danwkennedy/digest-mismatch-behavior</li> <li><a href="https://github.com/actions/download-artifact/commit/f258da9a506b755b84a09a531814700b86ccfc62"><code>f258da9</code></a> Add change docs</li> <li><a href="https://github.com/actions/download-artifact/commit/ccc058e5fbb0bb2352213eaec3491e117cbc4a5c"><code>ccc058e</code></a> Fix linting issues</li> <li><a href="https://github.com/actions/download-artifact/commit/bd7976ba57ecea96e6f3df575eb922d11a12a9fd"><code>bd7976b</code></a> Add a setting to specify what to do on hash mismatch and default it to <code>error</code></li> <li><a href="https://github.com/actions/download-artifact/commit/ac21fcf45e0aaee541c0f7030558bdad38d77d6c"><code>ac21fcf</code></a> Merge pull request <a href="https://redirect.github.com/actions/download-artifact/issues/460">#460</a> from actions/danwkennedy/download-no-unzip</li> <li><a href="https://github.com/actions/download-artifact/commit/15999bff51058bc7c19b50ebbba518eaef7c26c0"><code>15999bf</code></a> Add note about package bumps</li> <li><a href="https://github.com/actions/download-artifact/commit/974686ed5098c7f9c9289ec946b9058e496a2561"><code>974686e</code></a> Bump the version to <code>v8</code> and add release notes</li> <li><a href="https://github.com/actions/download-artifact/commit/fbe48b1d2756394be4cd4358ed3bc1343b330e75"><code>fbe48b1</code></a> Update test names to make it clearer what they do</li> <li>Additional commits viewable in <a href="https://github.com/actions/download-artifact/compare/d3f86a106a0bac45b974a628896c90dbdf5c8093...3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…emplates with 2 updates (#5745) Bumps the docker-minor group in /apps/cli-go/pkg/config/templates with 2 updates: supabase/realtime and supabase/storage-api. Updates `supabase/realtime` from v2.112.1 to v2.112.2 Updates `supabase/storage-api` from v1.61.7 to v1.61.9 Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…/apps/cli-go/pkg/config/templates (#5746) Bumps supabase/postgres from 17.6.1.140 to 17.6.1.141. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Adds a stack-owned sync script that derives `DEFAULT_VERSIONS` from the Dockerfile manifest Dependabot already updates, and adds a Dependabot-only workflow that pushes the synced manifest back to Docker image update PRs with the existing GitHub App token pattern. Also syncs the current `DEFAULT_VERSIONS` values to the Dockerfile manifest and makes version-sensitive tests derive expectations from the manifest defaults where appropriate. Linear: CLI-1589
## TL;DR: adds smol contextual eszip read error to deploy failures ## ref: - towards: #5735
## Summary Adds a documented hotfix release path that reuses the existing production PR gate instead of introducing a separate approval flow. Hotfix PRs can now target main from hotfix/* branches, and successful stable Release runs on main automatically sync main back into develop so the released commit stays in the integration branch before the next scheduled promotion. The release process docs now describe the dry-run, merge, release-monitoring, and back-port expectations for urgent stable fixes. Addresses https://linear.app/supabase/issue/CLI-1579/define-a-clear-hotfix-release-workflow
Bumps the npm-major group with 9 updates: | Package | From | To | | --- | --- | --- | | [@anthropic-ai/claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-typescript) | `0.3.186` | `0.3.187` | | [posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node) | `5.38.2` | `5.38.4` | | [@effect/atom-react](https://github.com/Effect-TS/effect-smol/tree/HEAD/packages/atom/react) | `4.0.0-beta.85` | `4.0.0-beta.87` | | [@effect/platform-bun](https://github.com/Effect-TS/effect/tree/HEAD/packages/platform-bun) | `4.0.0-beta.85` | `4.0.0-beta.87` | | [@effect/platform-node](https://github.com/Effect-TS/effect/tree/HEAD/packages/platform-node) | `4.0.0-beta.85` | `4.0.0-beta.87` | | [@effect/sql-pg](https://github.com/Effect-TS/effect/tree/HEAD/packages/sql-pg) | `4.0.0-beta.85` | `4.0.0-beta.87` | | [@typescript/native-preview](https://github.com/microsoft/typescript-go) | `7.0.0-dev.20260622.1` | `7.0.0-dev.20260623.1` | | [effect](https://github.com/Effect-TS/effect/tree/HEAD/packages/effect) | `4.0.0-beta.85` | `4.0.0-beta.87` | | [tldts](https://github.com/remusao/tldts) | `6.1.86` | `7.4.4` | Updates `@anthropic-ai/claude-agent-sdk` from 0.3.186 to 0.3.187 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/anthropics/claude-agent-sdk-typescript/releases">@anthropic-ai/claude-agent-sdk's releases</a>.</em></p> <blockquote> <h2>v0.3.187</h2> <h2>What's changed</h2> <ul> <li>Added <code>sandbox.credentials</code> to SDK settings types for configuring credential file and environment variable denial in sandboxed commands</li> </ul> <h2>Update</h2> <pre lang="sh"><code>npm install @anthropic-ai/claude-agent-sdk@0.3.187 # or yarn add @anthropic-ai/claude-agent-sdk@0.3.187 # or pnpm add @anthropic-ai/claude-agent-sdk@0.3.187 # or bun add @anthropic-ai/claude-agent-sdk@0.3.187 </code></pre> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md">@anthropic-ai/claude-agent-sdk's changelog</a>.</em></p> <blockquote> <h2>0.3.187</h2> <ul> <li>Added <code>sandbox.credentials</code> to SDK settings types for configuring credential file and environment variable denial in sandboxed commands</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/anthropics/claude-agent-sdk-typescript/commit/4279d963e4537c437ed97575e0703a0accf78a30"><code>4279d96</code></a> chore: Update CHANGELOG.md</li> <li>See full diff in <a href="https://github.com/anthropics/claude-agent-sdk-typescript/compare/v0.3.186...v0.3.187">compare view</a></li> </ul> </details> <br /> Updates `posthog-node` from 5.38.2 to 5.38.4 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/PostHog/posthog-js/releases">posthog-node's releases</a>.</em></p> <blockquote> <h2>posthog-node@5.38.4</h2> <h2>5.38.4</h2> <h3>Patch Changes</h3> <ul> <li><a href="https://redirect.github.com/PostHog/posthog-js/pull/3938">#3938</a> <a href="https://github.com/PostHog/posthog-js/commit/6391106fd4bcbddb9a63a13338929a4c1918a70a"><code>6391106</code></a> Thanks <a href="https://github.com/dustinbyrne"><code>@dustinbyrne</code></a>! - Respect <code>disable_capture_url_hashes</code> when capturing Express and NestJS request URLs. (2026-06-23)</li> </ul> <h2>posthog-node@5.38.3</h2> <h2>5.38.3</h2> <h3>Patch Changes</h3> <ul> <li><a href="https://redirect.github.com/PostHog/posthog-js/pull/3937">#3937</a> <a href="https://github.com/PostHog/posthog-js/commit/4d59d0e10f92ad3444e14dc171997c21aba57929"><code>4d59d0e</code></a> Thanks <a href="https://github.com/marandaneto"><code>@marandaneto</code></a>! - Deprecate the Node SDK Sentry integration and point users to PostHog Error Tracking for Node. (2026-06-23)</li> <li>Updated dependencies [<a href="https://github.com/PostHog/posthog-js/commit/440e370fda48d629352f3280471a228ee973dcb0"><code>440e370</code></a>]: <ul> <li><code>@posthog/core</code><a href="https://github.com/1"><code>@1</code></a>.37.0</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md">posthog-node's changelog</a>.</em></p> <blockquote> <h2>5.38.4</h2> <h3>Patch Changes</h3> <ul> <li><a href="https://redirect.github.com/PostHog/posthog-js/pull/3938">#3938</a> <a href="https://github.com/PostHog/posthog-js/commit/6391106fd4bcbddb9a63a13338929a4c1918a70a"><code>6391106</code></a> Thanks <a href="https://github.com/dustinbyrne"><code>@dustinbyrne</code></a>! - Respect <code>disable_capture_url_hashes</code> when capturing Express and NestJS request URLs. (2026-06-23)</li> </ul> <h2>5.38.3</h2> <h3>Patch Changes</h3> <ul> <li><a href="https://redirect.github.com/PostHog/posthog-js/pull/3937">#3937</a> <a href="https://github.com/PostHog/posthog-js/commit/4d59d0e10f92ad3444e14dc171997c21aba57929"><code>4d59d0e</code></a> Thanks <a href="https://github.com/marandaneto"><code>@marandaneto</code></a>! - Deprecate the Node SDK Sentry integration and point users to PostHog Error Tracking for Node. (2026-06-23)</li> <li>Updated dependencies [<a href="https://github.com/PostHog/posthog-js/commit/440e370fda48d629352f3280471a228ee973dcb0"><code>440e370</code></a>]: <ul> <li><code>@posthog/core</code><a href="https://github.com/1"><code>@1</code></a>.37.0</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PostHog/posthog-js/commit/2a60c21134dd118c2367e56129bc9427079c3841"><code>2a60c21</code></a> chore: update versions and lockfile [version bump]</li> <li><a href="https://github.com/PostHog/posthog-js/commit/6391106fd4bcbddb9a63a13338929a4c1918a70a"><code>6391106</code></a> fix(node): respect URL hash capture config (<a href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3938">#3938</a>)</li> <li><a href="https://github.com/PostHog/posthog-js/commit/a3136c6de3114ee3d58e59a0c86f2b9c4f59a2b0"><code>a3136c6</code></a> chore: update versions and lockfile [version bump]</li> <li><a href="https://github.com/PostHog/posthog-js/commit/bf6947d3e12ac512c99185be9b8b134c04eb563a"><code>bf6947d</code></a> feat(react-native): support session replay event triggers (<a href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3932">#3932</a>)</li> <li><a href="https://github.com/PostHog/posthog-js/commit/2628a1af5f06f73cb2252de002e0da4b2d1a25a5"><code>2628a1a</code></a> chore: update versions and lockfile [version bump]</li> <li><a href="https://github.com/PostHog/posthog-js/commit/4d59d0e10f92ad3444e14dc171997c21aba57929"><code>4d59d0e</code></a> chore(node): mark Sentry integration deprecated (<a href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3937">#3937</a>)</li> <li><a href="https://github.com/PostHog/posthog-js/commit/1481f6d1ffe768d86637e5bc72722e91173a25e2"><code>1481f6d</code></a> chore: update versions and lockfile [version bump]</li> <li><a href="https://github.com/PostHog/posthog-js/commit/a4c4d31435430dd44c5fdec83bcaf362a79a18de"><code>a4c4d31</code></a> chore: template public API snapshot versions (<a href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3934">#3934</a>)</li> <li><a href="https://github.com/PostHog/posthog-js/commit/c28b16143d04caade1d024819017b89cef3162ad"><code>c28b161</code></a> feat: strip URL hashes from captured URLs (<a href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3921">#3921</a>)</li> <li>See full diff in <a href="https://github.com/PostHog/posthog-js/commits/posthog-node@5.38.4/packages/node">compare view</a></li> </ul> </details> <br /> Updates `@effect/atom-react` from 4.0.0-beta.85 to 4.0.0-beta.87 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Effect-TS/effect-smol/blob/main/packages/atom/react/CHANGELOG.md">@effect/atom-react's changelog</a>.</em></p> <blockquote> <h2>4.0.0-beta.87</h2> <h3>Patch Changes</h3> <ul> <li>Updated dependencies [<a href="https://github.com/Effect-TS/effect-smol/commit/5a0c1a4faee5707b5cc35e646ff1ffdad70f1956"><code>5a0c1a4</code></a>, <a href="https://github.com/Effect-TS/effect-smol/commit/1eea2ea3795ba47316b82b1ac8d4612c0ba389ed"><code>1eea2ea</code></a>]: <ul> <li>effect@4.0.0-beta.87</li> </ul> </li> </ul> <h2>4.0.0-beta.86</h2> <h3>Patch Changes</h3> <ul> <li>Updated dependencies [<a href="https://github.com/Effect-TS/effect-smol/commit/0b5795a0ab4395e8f15955d8d96f2303084bfc64"><code>0b5795a</code></a>, <a href="https://github.com/Effect-TS/effect-smol/commit/3e3a859ec6351a9e0d31674aabbd48fcefabb12e"><code>3e3a859</code></a>, <a href="https://github.com/Effect-TS/effect-smol/commit/7dbec240dbf3bca599a20c486632abce694ef5ab"><code>7dbec24</code></a>, <a href="https://github.com/Effect-TS/effect-smol/commit/d8c00a171ac7141e8adc08c332d1162d9a9d56fc"><code>d8c00a1</code></a>, <a href="https://github.com/Effect-TS/effect-smol/commit/85b631701e935866f2762bd595237aa718370cd9"><code>85b6317</code></a>, <a href="https://github.com/Effect-TS/effect-smol/commit/6d0fda0d0cbdfffc523c89c57dfdb1608f84fb12"><code>6d0fda0</code></a>, <a href="https://github.com/Effect-TS/effect-smol/commit/108a9335ff8571928197e5847a09c28ac83d6f46"><code>108a933</code></a>, <a href="https://github.com/Effect-TS/effect-smol/commit/7e1f455fab5005d769b939c91e519d450f802cf9"><code>7e1f455</code></a>, <a href="https://github.com/Effect-TS/effect-smol/commit/46b3e79944cfdae7901eb148135c85b7eb39834e"><code>46b3e79</code></a>]: <ul> <li>effect@4.0.0-beta.86</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/Effect-TS/effect-smol/commit/a2e306a0d8be2d2da7f7f564ad16f9a0090becdb"><code>a2e306a</code></a> Version Packages (beta) (<a href="https://github.com/Effect-TS/effect-smol/tree/HEAD/packages/atom/react/issues/2467">#2467</a>)</li> <li><a href="https://github.com/Effect-TS/effect-smol/commit/595bb5e42203f5bca2db78bcaf206b40ae772391"><code>595bb5e</code></a> Version Packages (beta) (<a href="https://github.com/Effect-TS/effect-smol/tree/HEAD/packages/atom/react/issues/2447">#2447</a>)</li> <li>See full diff in <a href="https://github.com/Effect-TS/effect-smol/commits/@effect/atom-react@4.0.0-beta.87/packages/atom/react">compare view</a></li> </ul> </details> <br /> Updates `@effect/platform-bun` from 4.0.0-beta.85 to 4.0.0-beta.87 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Effect-TS/effect/commits/HEAD/packages/platform-bun">compare view</a></li> </ul> </details> <br /> Updates `@effect/platform-node` from 4.0.0-beta.85 to 4.0.0-beta.87 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Effect-TS/effect/commits/HEAD/packages/platform-node">compare view</a></li> </ul> </details> <br /> Updates `@effect/sql-pg` from 4.0.0-beta.85 to 4.0.0-beta.87 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Effect-TS/effect/commits/HEAD/packages/sql-pg">compare view</a></li> </ul> </details> <br /> Updates `@typescript/native-preview` from 7.0.0-dev.20260622.1 to 7.0.0-dev.20260623.1 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/microsoft/typescript-go/commits">compare view</a></li> </ul> </details> <br /> Updates `effect` from 4.0.0-beta.85 to 4.0.0-beta.87 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Effect-TS/effect/commits/HEAD/packages/effect">compare view</a></li> </ul> </details> <br /> Updates `tldts` from 6.1.86 to 7.4.4 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/remusao/tldts/releases">tldts's releases</a>.</em></p> <blockquote> <h2>v7.4.4</h2> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2614">#2614</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>Authors: 1</h4> <ul> <li>Rémi (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> <h2>v7.4.3</h2> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2605">#2605</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>:nut_and_bolt: Dependencies</h4> <ul> <li>Bump rollup from 4.61.0 to 4.61.1 <a href="https://redirect.github.com/remusao/tldts/pull/2602">#2602</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> <li>Bump typescript-eslint from 8.60.0 to 8.60.1 <a href="https://redirect.github.com/remusao/tldts/pull/2601">#2601</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> <li>Bump rollup from 4.60.4 to 4.61.0 <a href="https://redirect.github.com/remusao/tldts/pull/2600">#2600</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> </ul> <h4>Authors: 2</h4> <ul> <li><a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a></li> <li>Rémi (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> <h2>v7.4.2</h2> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2597">#2597</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>:nut_and_bolt: Dependencies</h4> <ul> <li>Bump eslint-plugin-prettier from 5.5.5 to 5.5.6 <a href="https://redirect.github.com/remusao/tldts/pull/2598">#2598</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> </ul> <h4>Authors: 2</h4> <ul> <li><a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a></li> <li>Rémi (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> <h2>v7.4.1</h2> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts-icann</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2595">#2595</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>:memo: Documentation</h4> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/remusao/tldts/blob/master/CHANGELOG.md">tldts's changelog</a>.</em></p> <blockquote> <h1>v7.4.4 (Tue Jun 23 2026)</h1> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2614">#2614</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>Authors: 1</h4> <ul> <li>Rémi (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> <hr /> <h1>v7.4.3 (Mon Jun 15 2026)</h1> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2605">#2605</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>:nut_and_bolt: Dependencies</h4> <ul> <li>Bump rollup from 4.61.0 to 4.61.1 <a href="https://redirect.github.com/remusao/tldts/pull/2602">#2602</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> <li>Bump typescript-eslint from 8.60.0 to 8.60.1 <a href="https://redirect.github.com/remusao/tldts/pull/2601">#2601</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> <li>Bump rollup from 4.60.4 to 4.61.0 <a href="https://redirect.github.com/remusao/tldts/pull/2600">#2600</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> </ul> <h4>Authors: 2</h4> <ul> <li><a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a></li> <li>Rémi (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> <hr /> <h1>v7.4.2 (Sat May 30 2026)</h1> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2597">#2597</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>:nut_and_bolt: Dependencies</h4> <ul> <li>Bump eslint-plugin-prettier from 5.5.5 to 5.5.6 <a href="https://redirect.github.com/remusao/tldts/pull/2598">#2598</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> </ul> <h4>Authors: 2</h4> <ul> <li><a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a></li> <li>Rémi (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> <hr /> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/remusao/tldts/commit/8712f6f2c91f66365819f798073a3e3ea6efbc12"><code>8712f6f</code></a> Bump version to: v7.4.4 [skip ci]</li> <li><a href="https://github.com/remusao/tldts/commit/e8026b69191af83a4c4c5c0a2c91e86a37cb5198"><code>e8026b6</code></a> Update CHANGELOG.md [skip ci]</li> <li><a href="https://github.com/remusao/tldts/commit/1cd9297dbad125ea53cde0fdc298cd976455ff7f"><code>1cd9297</code></a> Update upstream public suffix list (<a href="https://redirect.github.com/remusao/tldts/issues/2614">#2614</a>)</li> <li><a href="https://github.com/remusao/tldts/commit/4447fc1a98b7566bdd2f7d054171aaeb261a17db"><code>4447fc1</code></a> Bump version to: v7.4.3 [skip ci]</li> <li><a href="https://github.com/remusao/tldts/commit/c4f38f8a1ffc556caef6b3d3419054377e72176e"><code>c4f38f8</code></a> Update CHANGELOG.md [skip ci]</li> <li><a href="https://github.com/remusao/tldts/commit/4f4ca83bb6f20a541037d355ed80451b505f8e78"><code>4f4ca83</code></a> Update upstream public suffix list (<a href="https://redirect.github.com/remusao/tldts/issues/2605">#2605</a>)</li> <li><a href="https://github.com/remusao/tldts/commit/e3e66769c2a0d116a82698b16d969b6912f303cd"><code>e3e6676</code></a> Bump rollup from 4.61.0 to 4.61.1 (<a href="https://redirect.github.com/remusao/tldts/issues/2602">#2602</a>)</li> <li><a href="https://github.com/remusao/tldts/commit/1487cf1695ceaf3a712b1b5647dee1ead8731a5f"><code>1487cf1</code></a> Bump typescript-eslint from 8.60.0 to 8.60.1 (<a href="https://redirect.github.com/remusao/tldts/issues/2601">#2601</a>)</li> <li><a href="https://github.com/remusao/tldts/commit/744d854f8ccea56f38552f7f03e2fcefde96dd4d"><code>744d854</code></a> Bump rollup from 4.60.4 to 4.61.0 (<a href="https://redirect.github.com/remusao/tldts/issues/2600">#2600</a>)</li> <li><a href="https://github.com/remusao/tldts/commit/4c41bb21f1d20fd8f71716c3fc7abd97a5e2f2a6"><code>4c41bb2</code></a> Bump version to: v7.4.2 [skip ci]</li> <li>Additional commits viewable in <a href="https://github.com/remusao/tldts/compare/v6.1.86...v7.4.4">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~GitHub%20Actions">GitHub Actions</a>, a new releaser for tldts since your current version.</p> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Julien Goux <hi@jgoux.dev>
Fixes CLI-1541 Adds Linear release synchronization to the CLI release workflow after the GitHub Release is published. Stable releases sync when the stable Linear pipeline key is configured, and beta prereleases sync only when the beta pipeline key is configured. The release sync attaches links back to the GitHub Release and the release workflow run so Linear releases have the published artifact context reviewers need.
## Summary Reverts the release workflow handoff from uploaded artifacts back to `actions/cache` now that the repository has more GitHub cache capacity. This restores the previous run-scoped cache keys for CLI build outputs across smoke, publish, Homebrew, Scoop, and preview-package jobs while keeping the newer pinned `actions/cache` version from the dependency bump. Reverts #5740
#5714) Fixes `supabase db schema declarative sync --experimental` (and other pg-delta flows) hanging indefinitely at 0% CPU after the shadow-database work completes. Closes supabase/pg-toolbelt#312 There are two independent causes, both needed to unblock the command: ## 1. The Edge Runtime worker never exits The pg-delta scripts run in a one-shot Edge Runtime container and rely on the event loop draining for the worker to be destroyed and the container to stop. The catalog-export script opens a real connection pool (`createManagedPool`); when a keepalive handle stays registered after `close()` resolves, the worker never exits, so the container never stops. Only the error path force-closed the loop (`throw new Error("")`); the success path did not. Fix: force-close the event loop on the **success** path of every pg-delta script once its output is flushed, so the worker is torn down deterministically: - `templates/pgdelta_catalog_export.ts` — catalog snapshot (the path reported in #312) - `templates/pgdelta.ts` — diff SOURCE→TARGET - `templates/pgdelta_declarative_export.ts` — declarative file export - `templates/pgdelta_declarative_apply.ts` — apply declarative schema - the inline catalog-export script in `internal/db/pgcache/cache.go` — the `db start` / `db push` migrations-catalog cache path The byte-for-byte embedded copies in `legacy-pgdelta.deno-templates.ts` are kept in sync. ## 2. Following the container log stream hangs under podman With the worker now exiting, the container stops — but the parent still hung for podman users. A goroutine dump on the stuck `__catalog` subprocess showed the block in `stdcopy.StdCopy` reading the `Follow:true` Docker log stream (`DockerStreamLogs`): podman's `/containers/<id>/logs?follow` endpoint does not close when the container stops, so the read never gets EOF and blocks forever. Docker closes it, which is why this only reproduced on podman. Fix: run the bounded edge-runtime scripts via a new `DockerRunOnceWaitWithConfig`, which detects completion by polling `ContainerInspect` (reliable on podman) and then reads the buffered logs **without following**. The shared `DockerStreamLogs` (live streaming for `functions serve`) and `DockerRunOnceWithConfig` (large streaming output for `db dump`) are intentionally left unchanged, so only the bounded pg-delta/edge-runtime path changes behaviour. Regression coverage is added for both: guard tests asserting each script's success path force-closes, and a test pinning that the runner reads captured output and maps the inspected exit code without following the log stream. https://claude.ai/code/session_01XbxecW4DVmwgQB1YX321K3 --------- Co-authored-by: Claude <noreply@anthropic.com>
Update the Live E2E workflow schedule from hourly to daily execution. **Changes:** - Updated cron schedule from `"23 * * * *"` (hourly) to `"23 6 * * *"` (daily at 6:23 AM UTC) - Updated workflow documentation comments to reflect the new daily cadence - Updated finalize job comment to reference "next day" instead of "next hour" This reduces the frequency of scheduled beta channel testing from every hour to once per day, which should reduce CI resource usage while still maintaining regular validation of the `@beta` channel. https://claude.ai/code/session_01LtXPZUBWv6YFNmMGVKxtY2 Co-authored-by: Claude <noreply@anthropic.com>
## Summary Improve CLI parser errors when a flag is passed before a subcommand even though it belongs to descendant subcommands. The formatter now inspects the command tree and appends a hint with the corrected placement, while suppressing secondary unknown-subcommand noise caused by the misplaced flag value. This fixes the confusing `network-restrictions --project-ref <ref> get --experimental` output by suggesting `network-restrictions get --project-ref <value>`. No linked issue found.
## Summary - Align next `supabase services` local rows with the stack version resolution used by `supabase start`, including linked baselines and local `.temp` overrides. - Keep legacy `supabase services` on the Go-compatible path: read `config.toml`, use legacy Postgres image resolution, and preserve the Deno 1 edge-runtime image override. - Keep shared service row rendering source-agnostic, with each command handler supplying the image and version source it actually runs. ## Context This prevents false local/linked mismatch warnings when config values or temp pins drift from the runtime source of truth. The next shell now follows stack runtime versions; the legacy shell follows the Go-compatible config and image path until it is retired.
This PR was automatically created to sync API types from the infrastructure repository. Changes were detected in the generated API code after syncing with the latest spec from infrastructure. Co-authored-by: supabase-cli-releaser[bot] <246109035+supabase-cli-releaser[bot]@users.noreply.github.com>
… in /apps/cli-go in the go-minor group across 1 directory (#5757) Bumps the go-minor group with 1 update in the /apps/cli-go directory: [github.com/posthog/posthog-go](https://github.com/posthog/posthog-go). Updates `github.com/posthog/posthog-go` from 1.16.1 to 1.16.2 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/posthog/posthog-go/releases">github.com/posthog/posthog-go's releases</a>.</em></p> <blockquote> <h2>1.16.2</h2> <h2>Unreleased</h2> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/PostHog/posthog-go/blob/main/CHANGELOG.md">github.com/posthog/posthog-go's changelog</a>.</em></p> <blockquote> <h2>1.16.2</h2> <h3>Patch Changes</h3> <ul> <li>76de226: Dedupe <code>$feature_flag_called</code> events by feature flag response value.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PostHog/posthog-go/commit/89309b8b1d09a95b3bdd341cf4ab664f7986f8b3"><code>89309b8</code></a> chore: release v1.16.2 [version bump] [skip ci]</li> <li><a href="https://github.com/PostHog/posthog-go/commit/76de22619371f1900384a1945440f17020481b64"><code>76de226</code></a> fix: Dedupe feature flag called events by response (<a href="https://redirect.github.com/posthog/posthog-go/issues/234">#234</a>)</li> <li>See full diff in <a href="https://github.com/posthog/posthog-go/compare/v1.16.1...v1.16.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the npm-major group with 9 updates: | Package | From | To | | --- | --- | --- | | [@anthropic-ai/claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-typescript) | `0.3.187` | `0.3.191` | | [@anthropic-ai/sdk](https://github.com/anthropics/anthropic-sdk-typescript) | `0.105.0` | `0.106.0` | | [posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node) | `5.38.4` | `5.38.5` | | [@effect/atom-react](https://github.com/Effect-TS/effect-smol/tree/HEAD/packages/atom/react) | `4.0.0-beta.87` | `4.0.0-beta.88` | | [@effect/platform-bun](https://github.com/Effect-TS/effect/tree/HEAD/packages/platform-bun) | `4.0.0-beta.87` | `4.0.0-beta.88` | | [@effect/platform-node](https://github.com/Effect-TS/effect/tree/HEAD/packages/platform-node) | `4.0.0-beta.87` | `4.0.0-beta.88` | | [@effect/sql-pg](https://github.com/Effect-TS/effect/tree/HEAD/packages/sql-pg) | `4.0.0-beta.87` | `4.0.0-beta.88` | | [@typescript/native-preview](https://github.com/microsoft/typescript-go) | `7.0.0-dev.20260623.1` | `7.0.0-dev.20260624.1` | | [effect](https://github.com/Effect-TS/effect/tree/HEAD/packages/effect) | `4.0.0-beta.87` | `4.0.0-beta.88` | Updates `@anthropic-ai/claude-agent-sdk` from 0.3.187 to 0.3.191 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/anthropics/claude-agent-sdk-typescript/releases">@anthropic-ai/claude-agent-sdk's releases</a>.</em></p> <blockquote> <h2>v0.3.191</h2> <h2>What's changed</h2> <ul> <li>Added <code>old_source</code> field to <code>NotebookEdit</code> tool results for <code>replace</code> and <code>delete</code> operations, enabling inline diffs</li> <li>Added <code>seven_day_overage_included</code> to <code>SDKRateLimitInfo.rateLimitType</code> for per-model weekly usage limits</li> <li>Added <code>model_scoped</code> array to usage response for per-model weekly limit windows with utilization and reset times</li> <li>Fixed fast mode reverting to standard after the first turn when <code>settingSources</code> includes user/project settings</li> </ul> <h2>Update</h2> <pre lang="sh"><code>npm install @anthropic-ai/claude-agent-sdk@0.3.191 # or yarn add @anthropic-ai/claude-agent-sdk@0.3.191 # or pnpm add @anthropic-ai/claude-agent-sdk@0.3.191 # or bun add @anthropic-ai/claude-agent-sdk@0.3.191 </code></pre> <h2>v0.3.190</h2> <h2>What's changed</h2> <ul> <li>Updated to parity with Claude Code v2.1.190</li> </ul> <h2>Update</h2> <pre lang="sh"><code>npm install @anthropic-ai/claude-agent-sdk@0.3.190 # or yarn add @anthropic-ai/claude-agent-sdk@0.3.190 # or pnpm add @anthropic-ai/claude-agent-sdk@0.3.190 # or bun add @anthropic-ai/claude-agent-sdk@0.3.190 </code></pre> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md">@anthropic-ai/claude-agent-sdk's changelog</a>.</em></p> <blockquote> <h2>0.3.191</h2> <ul> <li>Added <code>old_source</code> field to <code>NotebookEdit</code> tool results for <code>replace</code> and <code>delete</code> operations, enabling inline diffs</li> <li>Added <code>seven_day_overage_included</code> to <code>SDKRateLimitInfo.rateLimitType</code> for per-model weekly usage limits</li> <li>Added <code>model_scoped</code> array to usage response for per-model weekly limit windows with utilization and reset times</li> <li>Fixed fast mode reverting to standard after the first turn when <code>settingSources</code> includes user/project settings</li> </ul> <h2>0.3.190</h2> <ul> <li>Updated to parity with Claude Code v2.1.190</li> </ul> <h2>0.3.188</h2> <ul> <li>Updated to parity with Claude Code v2.1.188</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/anthropics/claude-agent-sdk-typescript/commit/7eef35db19c40d527a790b06f1a4fad42ff8b078"><code>7eef35d</code></a> chore: Update CHANGELOG.md</li> <li><a href="https://github.com/anthropics/claude-agent-sdk-typescript/commit/b9c030b225bd0c09d31d26d025864dbcde9fcfc5"><code>b9c030b</code></a> chore: Update CHANGELOG.md</li> <li>See full diff in <a href="https://github.com/anthropics/claude-agent-sdk-typescript/compare/v0.3.187...v0.3.191">compare view</a></li> </ul> </details> <br /> Updates `@anthropic-ai/sdk` from 0.105.0 to 0.106.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/anthropics/anthropic-sdk-typescript/releases">@anthropic-ai/sdk's releases</a>.</em></p> <blockquote> <h2>sdk: v0.106.0</h2> <h2>0.106.0 (2026-06-24)</h2> <p>Full Changelog: <a href="https://github.com/anthropics/anthropic-sdk-typescript/compare/sdk-v0.105.0...sdk-v0.106.0">sdk-v0.105.0...sdk-v0.106.0</a></p> <h3>Features</h3> <ul> <li><strong>client:</strong> add support for system.message streaming events (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/a7c14b7ffc8295e34d8c159d1374f170d2b87767">a7c14b7</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li><strong>helpers:</strong> single source for x-stainless-helper, append semantics, and tag the fallback middleware (<a href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/107">#107</a>) (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/106bea081439ece2cb0170e56b24c5f039af5e16">106bea0</a>)</li> </ul> <h3>Chores</h3> <ul> <li><strong>api:</strong> add support for new refusal category (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/b38fd01d15bcd519aa66cd640a8ad40310ae9d01">b38fd01</a>)</li> <li><strong>api:</strong> add support for sending User Profile ID in request headers (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/198583e2fc3236f62a85ef7be0bfdfdea2164264">198583e</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/anthropics/anthropic-sdk-typescript/blob/main/CHANGELOG.md">@anthropic-ai/sdk's changelog</a>.</em></p> <blockquote> <h2>0.106.0 (2026-06-24)</h2> <p>Full Changelog: <a href="https://github.com/anthropics/anthropic-sdk-typescript/compare/sdk-v0.105.0...sdk-v0.106.0">sdk-v0.105.0...sdk-v0.106.0</a></p> <h3>Features</h3> <ul> <li><strong>client:</strong> add support for system.message streaming events (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/a7c14b7ffc8295e34d8c159d1374f170d2b87767">a7c14b7</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li><strong>helpers:</strong> single source for x-stainless-helper, append semantics, and tag the fallback middleware (<a href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/107">#107</a>) (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/106bea081439ece2cb0170e56b24c5f039af5e16">106bea0</a>)</li> </ul> <h3>Chores</h3> <ul> <li><strong>api:</strong> add support for new refusal category (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/b38fd01d15bcd519aa66cd640a8ad40310ae9d01">b38fd01</a>)</li> <li><strong>api:</strong> add support for sending User Profile ID in request headers (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/198583e2fc3236f62a85ef7be0bfdfdea2164264">198583e</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/0ffdbfa41186434824e98c90473b5c4ba5501045"><code>0ffdbfa</code></a> chore: release main (<a href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/1098">#1098</a>)</li> <li>See full diff in <a href="https://github.com/anthropics/anthropic-sdk-typescript/compare/sdk-v0.105.0...sdk-v0.106.0">compare view</a></li> </ul> </details> <br /> Updates `posthog-node` from 5.38.4 to 5.38.5 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/PostHog/posthog-js/releases">posthog-node's releases</a>.</em></p> <blockquote> <h2>posthog-node@5.38.5</h2> <h2>5.38.5</h2> <h3>Patch Changes</h3> <ul> <li><a href="https://redirect.github.com/PostHog/posthog-js/pull/3955">#3955</a> <a href="https://github.com/PostHog/posthog-js/commit/8e9689a9018d184b80f32fc4874686d7243970e2"><code>8e9689a</code></a> Thanks <a href="https://github.com/marandaneto"><code>@marandaneto</code></a>! - Dedupe feature flag called events per returned flag value. (2026-06-24)</li> <li>Updated dependencies [<a href="https://github.com/PostHog/posthog-js/commit/8e9689a9018d184b80f32fc4874686d7243970e2"><code>8e9689a</code></a>]: <ul> <li><code>@posthog/core</code><a href="https://github.com/1"><code>@1</code></a>.37.3</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md">posthog-node's changelog</a>.</em></p> <blockquote> <h2>5.38.5</h2> <h3>Patch Changes</h3> <ul> <li><a href="https://redirect.github.com/PostHog/posthog-js/pull/3955">#3955</a> <a href="https://github.com/PostHog/posthog-js/commit/8e9689a9018d184b80f32fc4874686d7243970e2"><code>8e9689a</code></a> Thanks <a href="https://github.com/marandaneto"><code>@marandaneto</code></a>! - Dedupe feature flag called events per returned flag value. (2026-06-24)</li> <li>Updated dependencies [<a href="https://github.com/PostHog/posthog-js/commit/8e9689a9018d184b80f32fc4874686d7243970e2"><code>8e9689a</code></a>]: <ul> <li><code>@posthog/core</code><a href="https://github.com/1"><code>@1</code></a>.37.3</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PostHog/posthog-js/commit/5c4838f1671ece80d153aaeb6d946bb3e8c8240a"><code>5c4838f</code></a> chore: update versions and lockfile [version bump]</li> <li><a href="https://github.com/PostHog/posthog-js/commit/8e9689a9018d184b80f32fc4874686d7243970e2"><code>8e9689a</code></a> fix: Dedupe feature flag called events by response (<a href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3955">#3955</a>)</li> <li>See full diff in <a href="https://github.com/PostHog/posthog-js/commits/posthog-node@5.38.5/packages/node">compare view</a></li> </ul> </details> <br /> Updates `@effect/atom-react` from 4.0.0-beta.87 to 4.0.0-beta.88 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Effect-TS/effect-smol/blob/main/packages/atom/react/CHANGELOG.md">@effect/atom-react's changelog</a>.</em></p> <blockquote> <h2>4.0.0-beta.88</h2> <h3>Patch Changes</h3> <ul> <li>Updated dependencies [<a href="https://github.com/Effect-TS/effect-smol/commit/911f1b84790ce42b3a70c95b33e6f6fd9e74de8b"><code>911f1b8</code></a>, <a href="https://github.com/Effect-TS/effect-smol/commit/8beeeea52879d8613a39468848f01c3092bd54d4"><code>8beeeea</code></a>, <a href="https://github.com/Effect-TS/effect-smol/commit/c306fcfeb1ef38455156932a1faf49292b1318da"><code>c306fcf</code></a>]: <ul> <li>effect@4.0.0-beta.88</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/Effect-TS/effect-smol/commit/46b3836f2505c9de34c342994b9197204eefe082"><code>46b3836</code></a> Version Packages (beta) (<a href="https://github.com/Effect-TS/effect-smol/tree/HEAD/packages/atom/react/issues/2473">#2473</a>)</li> <li>See full diff in <a href="https://github.com/Effect-TS/effect-smol/commits/@effect/atom-react@4.0.0-beta.88/packages/atom/react">compare view</a></li> </ul> </details> <br /> Updates `@effect/platform-bun` from 4.0.0-beta.87 to 4.0.0-beta.88 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Effect-TS/effect/commits/HEAD/packages/platform-bun">compare view</a></li> </ul> </details> <br /> Updates `@effect/platform-node` from 4.0.0-beta.87 to 4.0.0-beta.88 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Effect-TS/effect/commits/HEAD/packages/platform-node">compare view</a></li> </ul> </details> <br /> Updates `@effect/sql-pg` from 4.0.0-beta.87 to 4.0.0-beta.88 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Effect-TS/effect/commits/HEAD/packages/sql-pg">compare view</a></li> </ul> </details> <br /> Updates `@typescript/native-preview` from 7.0.0-dev.20260623.1 to 7.0.0-dev.20260624.1 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/microsoft/typescript-go/commits">compare view</a></li> </ul> </details> <br /> Updates `effect` from 4.0.0-beta.87 to 4.0.0-beta.88 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Effect-TS/effect/commits/HEAD/packages/effect">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
## TL;DR makes `db query --output-format json` resolve to JSON even when `--agent no` is used ## ref: - Closes #5762
Follows up on #5753 by letting API sync PRs satisfy the approval requirement automatically. This adds a dedicated approval step after the generated API sync PR is created. The step uses the shared account PAT stored in `AUTO_APPROVE_PR_PAT`, while the existing GitHub App token continues to own PR creation and auto-merge setup.
## Current Behavior
Go registers `sso add/update --domains/--add-domains/--remove-domains`
and `postgres-config update/delete --config` as pflag `StringSliceVar`,
which CSV-splits each occurrence (via `encoding/csv`) and accumulates
across repeats. The legacy TS port only supported flag repetition
(`Flag.atLeast(0)`), so a single comma-separated value like `--domains
a.com,b.com` produced one malformed string (`"a.com,b.com"`) instead of
two domains — sent to the API as-is, or (for `postgres-config`) failing
the `key=value` split validation.
Fixes #CLI-1853
## Expected Behavior
`--domains a.com,b.com` (and `--config foo=bar,baz=qux`) now CSV-split
per-occurrence and accumulate across repeats, matching Go's
`pflag.StringSliceVar`/`encoding/csv` semantics exactly — including
quoted-comma handling (`'"a,b",c'` → `["a,b", "c"]`) and Go's
`csv.Reader` malformed-input error messages.
The CSV-parsing algorithm already existed for `--schema` flags (`gen
types`, `db lint`, `db dump`, `db pull`, `db diff`, `db schema
{generate,sync}`) in `legacy-schema-flags.ts`. This extracts the generic
algorithm into a new shared `legacy-string-slice-flag.ts` module
(`legacyParseStringSliceFlag`) so the four newly-fixed flags reuse it
instead of duplicating it; `legacy-schema-flags.ts` now delegates to the
shared module while keeping its schema-specific CSV re-encoder
(`legacySchemaToCsvField`) untouched.
Out of scope: the ticket's "bonus" item (aligning `sso update`'s domains
mutex error message with cobra's group-error template) is deferred — it
depends on the separate functions-mutex-template fix (CLI-1860), which
hasn't landed yet.
CLOSES CLI-1853
…ctive confirm hangs (#5725) ## What changed `db pull`'s initial-migra path (no local migrations, migra engine) is now native — it no longer delegates to the bundled Go binary. It seeds the migration file with a native `pg_dump` of the remote schema, then appends the migra diff, mirroring Go's `dumpRemoteSchema` + `diffRemoteSchema(nil)` + `swallowInitialInSync` / `ensureMigrationWritten`. The pg_dump machinery is hoisted out of `db/dump/` into `db/shared/legacy-pg-dump.{scripts,env,run}.ts` and shared by `db dump` and `db pull`; `db dump` is refactored onto the new shared `legacyStreamPgDump` runner (no behavior change). ## Non-interactive confirm-prompt hang fix A new `db pull` live test surfaced a real, pre-existing bug: in **text mode on a non-TTY stdin** (CI/piped), a confirm prompt **blocks forever** — clack's `confirm` never resolves without a keypress, so the intended `Effect.orElseSucceed` default never fires. Go's `console.PromptYesNo` returns the prompt's default on a non-terminal without blocking. The handlers now gate on the `Tty` service and take Go's default before prompting, matching the canonical legacy pattern (`secrets/unset`, `projects/delete`). Fixed in the three commands that shared this latent hang: | Command | Prompt | Non-TTY default | | --- | --- | --- | | `db pull` | "Update remote migration history table?" | `true` (proceeds) | | `config push` | per-service "Keep it enabled?" / "push `<svc>` config?" | `true` (proceeds) | | `logout` | "Do you want to log out?" | `false` (cancels) | Each gets non-TTY integration coverage; the `db pull` no-hang behavior is also proven end-to-end by the live test. ## Why `db dump` is already a native pg_dump port, so the dependency `db pull` was waiting on (its `"needs pg_dump — delegate to Go"` comment) is gone. This removes the last Go delegation from the common `db pull` path. ## Still delegated `db pull --experimental` (structured dump) continues to delegate to Go. Its blocker is not pg_dump but `format.WriteStructuredSchemas`, which parses each dumped statement with a PostgreSQL DDL AST parser (`multigres`, ~50 node types) to route objects into structured files — there is no TS equivalent yet, so it is tracked separately. (The statement splitter `parser.Split` and the structured-file writer are already ported; only the AST router is missing.) ## Reviewer notes - Parity-sensitive points in `db pull`: stderr ordering (`Dumping schema…` before `Creating shadow…`), append-vs-overwrite on the diff pass, `swallowInitialInSync` (an empty diff after a non-empty dump is success), and the IPv4 transaction-pooler fallback on the dump pass (warning printed once, not re-printed on the retry — matching Go's `RunWithPoolerFallback`). - Adds `*.live.test.ts` for `db dump` and `db pull` that exercise the real data plane via the `supabase/cli-e2e-ci` harness (Linux only; gated by `describeLiveProject`). These are the first data-plane live tests in the repo, and the `db pull` test is what caught the non-TTY hang.
…#5767) ## Summary - Bump the effect catalog entries (`effect`, `@effect/atom-react`, `@effect/platform-bun`, `@effect/platform-node`, `@effect/sql-pg`, `@effect/vitest`) in `pnpm-workspace.yaml` from `4.0.0-beta.88` to `4.0.0-beta.93`, matching the latest published `beta` dist-tag - Fast-forward the `.repos/effect` submodule from `49b5a569` to latest `main` (`455ecc9a`) - Fix `apps/cli` login handler for the upstream `UrlParams.makeUrl` -> `Url.make` rename (effect-smol#2518)
…0.3.193 in the npm-major group (#5773) Bumps the npm-major group with 1 update: [@anthropic-ai/claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-typescript). Updates `@anthropic-ai/claude-agent-sdk` from 0.3.191 to 0.3.193 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/anthropics/claude-agent-sdk-typescript/releases">@anthropic-ai/claude-agent-sdk's releases</a>.</em></p> <blockquote> <h2>v0.3.193</h2> <h2>What's changed</h2> <ul> <li>Added <code>promptSuggestions</code> option to Browser SDK <code>query()</code> to opt the remote CLI into emitting follow-up suggestions</li> <li>Fixed brief console window flashes on Windows when spawning CLI subprocesses</li> </ul> <h2>Update</h2> <pre lang="sh"><code>npm install @anthropic-ai/claude-agent-sdk@0.3.193 # or yarn add @anthropic-ai/claude-agent-sdk@0.3.193 # or pnpm add @anthropic-ai/claude-agent-sdk@0.3.193 # or bun add @anthropic-ai/claude-agent-sdk@0.3.193 </code></pre> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md">@anthropic-ai/claude-agent-sdk's changelog</a>.</em></p> <blockquote> <h2>0.3.193</h2> <ul> <li>Added <code>promptSuggestions</code> option to Browser SDK <code>query()</code> to opt the remote CLI into emitting follow-up suggestions</li> <li>Fixed brief console window flashes on Windows when spawning CLI subprocesses</li> </ul> <h2>0.3.192</h2> <ul> <li>Updated to parity with Claude Code v2.1.192</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/anthropics/claude-agent-sdk-typescript/commit/761e2bec6fc34e2de0ae1015fbf0d372f8957b28"><code>761e2be</code></a> chore: Update CHANGELOG.md</li> <li>See full diff in <a href="https://github.com/anthropics/claude-agent-sdk-typescript/compare/v0.3.191...v0.3.193">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the actions-major group with 2 updates: [useblacksmith/checkout](https://github.com/useblacksmith/checkout) and [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials). Updates `useblacksmith/checkout` from 41cdeedae8edb2e684ba22896a5fd2a3cb85db6b to c9796daa2a4bdebdab5bd16be2c09a70cd4e1121 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/useblacksmith/checkout/blob/main/CHANGELOG.md">useblacksmith/checkout's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h2>V6.0.0</h2> <ul> <li>Persist creds to a separate file by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2286">actions/checkout#2286</a></li> <li>Update README to include Node.js 24 support details and requirements by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2248">actions/checkout#2248</a></li> </ul> <h2>V5.0.1</h2> <ul> <li>Port v6 cleanup to v5 by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2301">actions/checkout#2301</a></li> </ul> <h2>V5.0.0</h2> <ul> <li>Update actions checkout to use node 24 by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2226">actions/checkout#2226</a></li> </ul> <h2>V4.3.1</h2> <ul> <li>Port v6 cleanup to v4 by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2305">actions/checkout#2305</a></li> </ul> <h2>V4.3.0</h2> <ul> <li>docs: update README.md by <a href="https://github.com/motss"><code>@motss</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1971">actions/checkout#1971</a></li> <li>Add internal repos for checking out multiple repositories by <a href="https://github.com/mouismail"><code>@mouismail</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1977">actions/checkout#1977</a></li> <li>Documentation update - add recommended permissions to Readme by <a href="https://github.com/benwells"><code>@benwells</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2043">actions/checkout#2043</a></li> <li>Adjust positioning of user email note and permissions heading by <a href="https://github.com/joshmgross"><code>@joshmgross</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2044">actions/checkout#2044</a></li> <li>Update README.md by <a href="https://github.com/nebuk89"><code>@nebuk89</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2194">actions/checkout#2194</a></li> <li>Update CODEOWNERS for actions by <a href="https://github.com/TingluoHuang"><code>@TingluoHuang</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2224">actions/checkout#2224</a></li> <li>Update package dependencies by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2236">actions/checkout#2236</a></li> </ul> <h2>v4.2.2</h2> <ul> <li><code>url-helper.ts</code> now leverages well-known environment variables by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1941">actions/checkout#1941</a></li> <li>Expand unit test coverage for <code>isGhes</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1946">actions/checkout#1946</a></li> </ul> <h2>v4.2.1</h2> <ul> <li>Check out other refs/* by commit if provided, fall back to ref by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1924">actions/checkout#1924</a></li> </ul> <h2>v4.2.0</h2> <ul> <li>Add Ref and Commit outputs by <a href="https://github.com/lucacome"><code>@lucacome</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li> <li>Dependency updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a>- <a href="https://redirect.github.com/actions/checkout/pull/1777">actions/checkout#1777</a>, <a href="https://redirect.github.com/actions/checkout/pull/1872">actions/checkout#1872</a></li> </ul> <h2>v4.1.7</h2> <ul> <li>Bump the minor-npm-dependencies group across 1 directory with 4 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1739">actions/checkout#1739</a></li> <li>Bump actions/checkout from 3 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1697">actions/checkout#1697</a></li> <li>Check out other refs/* by commit by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1774">actions/checkout#1774</a></li> <li>Pin actions/checkout's own workflows to a known, good, stable version. by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1776">actions/checkout#1776</a></li> </ul> <h2>v4.1.6</h2> <ul> <li>Check platform to set archive extension appropriately by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1732">actions/checkout#1732</a></li> </ul> <h2>v4.1.5</h2> <ul> <li>Update NPM dependencies by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1703">actions/checkout#1703</a></li> <li>Bump github/codeql-action from 2 to 3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1694">actions/checkout#1694</a></li> <li>Bump actions/setup-node from 1 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1696">actions/checkout#1696</a></li> <li>Bump actions/upload-artifact from 2 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1695">actions/checkout#1695</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/useblacksmith/checkout/commit/c9796daa2a4bdebdab5bd16be2c09a70cd4e1121"><code>c9796da</code></a> feat(blacksmith-cache): add BLACKSMITH_BYPASS_CHECKOUT control-plane kill swi...</li> <li><a href="https://github.com/useblacksmith/checkout/commit/626e346ec335920dbc1deaaa911380ccbc35254b"><code>626e346</code></a> clarify(blacksmith-cache): make hydration-in-progress fallback log explicit (...</li> <li><a href="https://github.com/useblacksmith/checkout/commit/e24db849895960b0c2863e7b441998cd0092c104"><code>e24db84</code></a> Update checkout from private beta to beta (<a href="https://redirect.github.com/useblacksmith/checkout/issues/24">#24</a>)</li> <li>See full diff in <a href="https://github.com/useblacksmith/checkout/compare/41cdeedae8edb2e684ba22896a5fd2a3cb85db6b...c9796daa2a4bdebdab5bd16be2c09a70cd4e1121">compare view</a></li> </ul> </details> <br /> Updates `aws-actions/configure-aws-credentials` from 6.2.0 to 6.2.1 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/aws-actions/configure-aws-credentials/releases">aws-actions/configure-aws-credentials's releases</a>.</em></p> <blockquote> <h2>v6.2.1</h2> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.2.0...v6.2.1">6.2.1</a> (2026-06-26)</h2> <h3>Bug Fixes</h3> <ul> <li>enforce allowed-account-ids on all auth paths (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1847">#1847</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/4d281fbc56a82e63c3fc14f2cc22361f34c97493">4d281fb</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md">aws-actions/configure-aws-credentials's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. See <a href="https://github.com/conventional-changelog/standard-version">standard-version</a> for commit guidelines.</p> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.2.0...v6.2.1">6.2.1</a> (2026-06-26)</h2> <h3>Bug Fixes</h3> <ul> <li>enforce allowed-account-ids on all auth paths (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1847">#1847</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/4d281fbc56a82e63c3fc14f2cc22361f34c97493">4d281fb</a>)</li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.1.3...v6.2.0">6.2.0</a> (2026-06-01)</h2> <h3>Features</h3> <ul> <li>add additional session tags by default (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1775">#1775</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/e0ba7685077379a14a82d01fefd511490344ebfc">e0ba768</a>)</li> <li>add more retry logic and better logging (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1764">#1764</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/540d0c13aedb8d55501d220bd2f0b3cdedfe84e8">540d0c1</a>)</li> <li>add regex validation to role-session-name (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1765">#1765</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/e35449909c6ede5083a48ba4b8bbfaaa1cf09ba1">e354499</a>)</li> <li>Allow custom session tags to be passed when assuming a role (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1759">#1759</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/61f50f630f383628add73c1eab3f1935ba07da2b">61f50f6</a>)</li> <li>expose run id in STS client user-agent (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1774">#1774</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/29d1be30273e7ef371d59fccf6ec54572c64ec89">29d1be3</a>)</li> <li>support custom STS endpoints (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1762">#1762</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/8d52d05d7a4521fa52b39de50cb6114b12e5c332">8d52d05</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>skip credential check on output-env-credentials: false (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1778">#1778</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/58e7c47adf77846879008deadfeeef8a6969fe6c">58e7c47</a>)</li> <li>assumeRole failing from session tag size too large (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1808">#1808</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/d6f5dc331b44474b19a52caaf85fa4d637b13c8e">d6f5dc3</a>)</li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.1.2...v6.1.3">6.1.3</a> (2026-05-28)</h2> <h3>Bug Fixes</h3> <ul> <li>fix: allow kubelet token symlink in <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1805">#1805</a></li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.1.1...v6.1.2">6.1.2</a> (2026-05-26)</h2> <h3>Bug Fixes</h3> <ul> <li>additional filesystem checks (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1799">#1799</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/c39f282697aca8a78c522ecf1f7da9899a31432c">c39f282</a>)</li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.1.0...v6.1.1">6.1.1</a> (2026-05-05)</h2> <h3>Miscellaneous Chores</h3> <ul> <li>various dependency updates</li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.0.0...v6.1.0">6.1.0</a> (2026-04-06)</h2> <h3>Features</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/254c19bd240aabef8777f48595e9d2d7b972184b"><code>254c19b</code></a> chore(main): release 6.2.1 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1849">#1849</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/a20cf827fed7baafaae4bd5a5b13c4e01ec52d16"><code>a20cf82</code></a> chore: Update dist</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/4d281fbc56a82e63c3fc14f2cc22361f34c97493"><code>4d281fb</code></a> fix: enforce allowed-account-ids on all auth paths (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1847">#1847</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/e004cdcd2873919dbd2e62aa51128bedb3181599"><code>e004cdc</code></a> chore(deps-dev): bump <code>@smithy/property-provider</code> from 4.4.0 to 4.4.2 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1845">#1845</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/88aa3695d39bdc4ffcd902ce03587c567df913d3"><code>88aa369</code></a> chore: Update dist</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/687331b27278daad9d9838f8bddbb1e3c6cbaac0"><code>687331b</code></a> chore(deps): bump <code>@aws-sdk/client-sts</code> from 3.1069.0 to 3.1075.0 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1841">#1841</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/ea607be060c8e3ae284ff63fe4efcb25815ca966"><code>ea607be</code></a> chore: Update dist</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/6d136066d82fe4eac695569a7d890a947af01f15"><code>6d13606</code></a> chore(deps): bump <code>@smithy/node-http-handler</code> from 4.8.0 to 4.8.2 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1842">#1842</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/71a32ae4081db8e73dec8e0fa2efccf6207c4c46"><code>71a32ae</code></a> chore: Update dist</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/b290f2ca793bd2a4db0dc019b45a841126093958"><code>b290f2c</code></a> chore(deps-dev): bump <code>@aws-sdk/credential-provider-env</code> (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1844">#1844</a>)</li> <li>Additional commits viewable in <a href="https://github.com/aws-actions/configure-aws-credentials/compare/e7f100cf4c008499ea8adda475de1042d6975c7b...254c19bd240aabef8777f48595e9d2d7b972184b">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…/apps/cli-go/pkg/config/templates (#5759) Bumps supabase/postgres from 17.6.1.141 to 17.6.1.142. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
This PR was automatically created to sync the generated `@supabase/api` package with the latest Management API OpenAPI document. Changes were detected in the upstream OpenAPI document exposed by `https://api.supabase.com/api/v1-json`. --------- Co-authored-by: jgoux <1443499+jgoux@users.noreply.github.com> Co-authored-by: Julien Goux <hi@jgoux.dev>
…emplates with 3 updates (#5758) Bumps the docker-minor group in /apps/cli-go/pkg/config/templates with 3 updates: supabase/realtime, supabase/storage-api and supabase/logflare. Updates `supabase/realtime` from v2.112.2 to v2.112.3 Updates `supabase/storage-api` from v1.61.9 to v1.61.11 Updates `supabase/logflare` from 1.45.6 to 1.46.0 Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Julien Goux <hi@jgoux.dev>
## Summary - Preserve explicit `[db.migrations].schema_paths` order when preparing declared schemas for `db diff`. - Expand directory schema path entries deterministically without overriding explicit file/glob order. - Use pg-delta declarative apply only when schema_paths is unset or points directly at the declarative directory. Fixes #3854 ## Testing - `go test ./internal/db/diff ./internal/db/declarative ./cmd` --------- Co-authored-by: Julien Goux <hi@jgoux.dev>
…ase setup (#5761) ## What kind of change does this PR introduce? Adds a `mise.toml` along with enhancements to our `CONTRIBUTING.md` so first-time contributors have a quick and easy way to install all the correct versions of all of the required software (Node, Bun, Go, `golangci-lint`, pnpm) to get tests running. I tried to minimize the amount of additional configuration, utilizing existing files (e.g., `.nvmrc`, `go.mod`, `package.json`) as the respective versioning sources of truth where applicable. I also chose not to commit [a `mise.lock` lockfile](https://mise.en.dev/dev-tools/mise-lock.html) for simplicity's sake but I'm happy to add it if folks want to lean into `mise` further in this repo. ## What is the current behavior? If someone clones the repo for the first time, they'll need to manually download all of the executables (Node, Bun, Go, golangci-lint) and look in a few different places to determine which versions to use. ## What is the new behavior? Now, users can install `mise` and run `mise install` and it'll install the correct versions of all the required software: https://github.com/user-attachments/assets/4cad1a5c-417c-403a-9ffb-57c88979902b --------- Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com> Co-authored-by: Julien Goux <hi@jgoux.dev>
## What kind of change does this PR introduce? Follow-up enhancement to #5761. Adds [a `mise.lock` lockfile](https://mise.jdx.dev/dev-tools/mise-lock.html) and uses that as our cache key (as opposed to building our own). ## What is the current behavior? `mise` cache in CI is built by manually grabbing all of the source files and creating our own hash. ## What is the new behavior? Uses the `mise.lock` file to create the file hash. Hopefully same caching behavior as before.
## What kind of change does this PR introduce? Upgrades `golangci-lint` to the latest version, per my findings in #5778 (comment) ## What is the current behavior? The build succeeds, but the `golangci-lint` version isn't pointing to an actual commit in the repo: ``` $ golangci-lint --version golangci-lint has version v2.1.6 built with go1.25.11 from (unknown, modified: ?, mod sum: "h1:LXqShFfAGM5BDzEOWD2SL1IzJAgUOqES/HRBsfKjI+w=") on (unknown) ``` ## What is the new behavior? The `golangci-lint` version now points to an actual commit in the repo: ```sh $ golangci-lint --version golangci-lint has version 2.12.2 built with go1.26.2 from c0d3ddc9 on 2026-05-06T11:07:58Z ``` Hopefully no other changes in behavior!
Bumps the npm-major group with 3 updates: [@anthropic-ai/claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-typescript), [posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node) and [@typescript/native-preview](https://github.com/microsoft/typescript-go). Updates `@anthropic-ai/claude-agent-sdk` from 0.3.193 to 0.3.195 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/anthropics/claude-agent-sdk-typescript/releases">@anthropic-ai/claude-agent-sdk's releases</a>.</em></p> <blockquote> <h2>v0.3.195</h2> <h2>What's changed</h2> <ul> <li>Added <code>Query.reinitialize()</code> to re-send the initialize control request and redeliver pending permission/dialog prompts after a transport gap</li> <li>Fixed <code>commands_changed</code> event not being emitted for synced skills when the skill list resolves before the change-detector subscribes</li> </ul> <h2>Update</h2> <pre lang="sh"><code>npm install @anthropic-ai/claude-agent-sdk@0.3.195 # or yarn add @anthropic-ai/claude-agent-sdk@0.3.195 # or pnpm add @anthropic-ai/claude-agent-sdk@0.3.195 # or bun add @anthropic-ai/claude-agent-sdk@0.3.195 </code></pre> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md">@anthropic-ai/claude-agent-sdk's changelog</a>.</em></p> <blockquote> <h2>0.3.195</h2> <ul> <li>Added <code>Query.reinitialize()</code> to re-send the initialize control request and redeliver pending permission/dialog prompts after a transport gap</li> <li>Fixed <code>commands_changed</code> event not being emitted for synced skills when the skill list resolves before the change-detector subscribes</li> </ul> <h2>0.3.194</h2> <ul> <li>Updated to parity with Claude Code v2.1.194</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/anthropics/claude-agent-sdk-typescript/commit/b09861c916b7fde909223218695693071e086323"><code>b09861c</code></a> chore: Update CHANGELOG.md</li> <li>See full diff in <a href="https://github.com/anthropics/claude-agent-sdk-typescript/compare/v0.3.193...v0.3.195">compare view</a></li> </ul> </details> <br /> Updates `posthog-node` from 5.38.5 to 5.38.6 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/PostHog/posthog-js/releases">posthog-node's releases</a>.</em></p> <blockquote> <h2>posthog-node@5.38.6</h2> <h2>5.38.6</h2> <h3>Patch Changes</h3> <ul> <li><a href="https://redirect.github.com/PostHog/posthog-js/pull/3896">#3896</a> <a href="https://github.com/PostHog/posthog-js/commit/606ef43d69fd09a00a67df2a404d8739cc50c654"><code>606ef43</code></a> Thanks <a href="https://github.com/GauthierPLM"><code>@GauthierPLM</code></a>! - Only stamp $groups from the top-level <code>groups</code> when present (2026-06-26)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md">posthog-node's changelog</a>.</em></p> <blockquote> <h2>5.38.6</h2> <h3>Patch Changes</h3> <ul> <li><a href="https://redirect.github.com/PostHog/posthog-js/pull/3896">#3896</a> <a href="https://github.com/PostHog/posthog-js/commit/606ef43d69fd09a00a67df2a404d8739cc50c654"><code>606ef43</code></a> Thanks <a href="https://github.com/GauthierPLM"><code>@GauthierPLM</code></a>! - Only stamp $groups from the top-level <code>groups</code> when present (2026-06-26)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PostHog/posthog-js/commit/d2faa824af1af2cb50b47178fb953bfc8812b389"><code>d2faa82</code></a> chore: update versions and lockfile [version bump]</li> <li><a href="https://github.com/PostHog/posthog-js/commit/606ef43d69fd09a00a67df2a404d8739cc50c654"><code>606ef43</code></a> fix: preserve $groups passed via properties (<a href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3896">#3896</a>)</li> <li>See full diff in <a href="https://github.com/PostHog/posthog-js/commits/posthog-node@5.38.6/packages/node">compare view</a></li> </ul> </details> <br /> Updates `@typescript/native-preview` from 7.0.0-dev.20260624.1 to 7.0.0-dev.20260626.1 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/microsoft/typescript-go/commits">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~microsoft1es">microsoft1es</a>, a new releaser for <code>@typescript/native-preview</code> since your current version.</p> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
## What changed
- Lets legacy `supabase gen types --project-id` generate Go, Swift, and
Python types by resolving a temporary database connection and running
pg-meta.
- Keeps TypeScript project-ref generation on the Management API typegen
endpoint, while non-TypeScript project-ref flows use the project
database host plus a temporary login role.
- Updates side-effect docs and integration coverage for project-ref type
generation across TypeScript, Go, Swift, and Python.
- Adds e2e coverage for tokenless local typegen and an env-gated live
remote project matrix across all supported typegen languages.
## Why
Python type generation with `--project-id` failed before it could reach
pg-meta, and the first fix used the preview-branch config endpoint.
Production project refs return `404 Preview branch not found` from that
endpoint because `/v1/branches/{ref}` is branch-only.
Non-TypeScript type generation is still pg-meta-based, so project-ref
flows need to construct a live database connection instead of calling
the TypeScript-only typegen endpoint or asking the user to provide
`--db-url`.
## Reviewer context
Non-TypeScript project-ref generation still requires Docker because it
continues to use pg-meta. The change is limited to how the CLI resolves
the database connection for project refs: it fetches the project
database host and creates a temporary login role rather than reading or
storing the project's database password.
The live remote e2e matrix is skipped unless
`SUPABASE_TYPEGEN_E2E_REMOTE=1`, `SUPABASE_TEST_PROJECT_REF`, and
`SUPABASE_ACCESS_TOKEN` are set. The local e2e matrix runs without a
token and points the API profile at an unreachable local URL to catch
accidental Management API usage on the `--local` path.
Closes CLI-1812
---------
Co-authored-by: Claude <noreply@anthropic.com>
Co-authored-by: Julien Goux <hi@jgoux.dev>
…the actions-major group (#5791) Bumps the actions-major group with 1 update: [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action). Updates `golangci/golangci-lint-action` from 9.2.1 to 9.3.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/golangci/golangci-lint-action/releases">golangci/golangci-lint-action's releases</a>.</em></p> <blockquote> <h2>v9.3.0</h2> <!-- raw HTML omitted --> <h2>What's Changed</h2> <h3>Changes</h3> <ul> <li>feat: add no-run-logs-group as experimental option by <a href="https://github.com/ldez"><code>@ldez</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1403">golangci/golangci-lint-action#1403</a></li> </ul> <h3>Dependencies</h3> <ul> <li>build(deps): bump github/codeql-action from 4.35.4 to 4.35.5 in the github-actions group by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1395">golangci/golangci-lint-action#1395</a></li> <li>build(deps): bump tmp from 0.2.5 to 0.2.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1397">golangci/golangci-lint-action#1397</a></li> <li>build(deps): bump github/codeql-action from 4.35.5 to 4.36.0 in the github-actions group by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1398">golangci/golangci-lint-action#1398</a></li> <li>build(deps): bump tmp from 0.2.6 to 0.2.7 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1399">golangci/golangci-lint-action#1399</a></li> <li>build(deps-dev): bump js-yaml from 4.1.1 to 4.2.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1400">golangci/golangci-lint-action#1400</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/golangci/golangci-lint-action/compare/v9.2.1...v9.3.0">https://github.com/golangci/golangci-lint-action/compare/v9.2.1...v9.3.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golangci/golangci-lint-action/commit/ba0d7d2ec06a0ea1cb5fa41b2e4a3ab91d21278a"><code>ba0d7d2</code></a> chore: prepare release v9.3.0</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/efd0857dc49487d73b2e08936ea47b04e894a2b1"><code>efd0857</code></a> feat: add no-run-logs-group as experimental option (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1403">#1403</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/ed485de1ff3b974c764ba768d82dda2e035d091e"><code>ed485de</code></a> build(deps): bump undici from 6.24.0 to 6.27.0</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/8872e8d04c73fcdce3d942f99fbbe16ea722b6de"><code>8872e8d</code></a> build(deps-dev): bump js-yaml from 4.1.1 to 4.2.0 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1400">#1400</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/b163415b470349e75dbab89538e4165e7402f2b9"><code>b163415</code></a> build(deps): bump tmp from 0.2.6 to 0.2.7 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1399">#1399</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/e52a9f899623adbdb986c05b9a8f7a8cf4138fc3"><code>e52a9f8</code></a> build(deps): bump github/codeql-action from 4.35.5 to 4.36.0 in the github-ac...</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/8182aa34940a5c3d28dbb24ce802921d8aa7b434"><code>8182aa3</code></a> build(deps): bump tmp from 0.2.5 to 0.2.6 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1397">#1397</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/5403a413dee20909aad15f1ecb21377539fcc4df"><code>5403a41</code></a> build(deps): bump github/codeql-action from 4.35.4 to 4.35.5 in the github-ac...</li> <li>See full diff in <a href="https://github.com/golangci/golangci-lint-action/compare/82606bf257cbaff209d206a39f5134f0cfbfd2ee...ba0d7d2ec06a0ea1cb5fa41b2e4a3ab91d21278a">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…#5790) Bumps the npm-major group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [fumadocs-core](https://github.com/fuma-nama/fumadocs) | `16.10.5` | `16.10.6` | | [fumadocs-mdx](https://github.com/fuma-nama/fumadocs) | `15.0.12` | `15.0.13` | | [fumadocs-ui](https://github.com/fuma-nama/fumadocs) | `16.10.5` | `16.10.6` | | [@typescript/native-preview](https://github.com/microsoft/typescript-go) | `7.0.0-dev.20260626.1` | `7.0.0-dev.20260628.1` | | [tldts](https://github.com/remusao/tldts) | `6.1.86` | `7.4.5` | Updates `fumadocs-core` from 16.10.5 to 16.10.6 <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/fuma-nama/fumadocs/commit/593302d01c6e7b95c93a6a5f91227cc25f3386f3"><code>593302d</code></a> Version Packages (<a href="https://redirect.github.com/fuma-nama/fumadocs/issues/3382">#3382</a>)</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/923e5819fb8c4e5b84a25a9288607c2e0726bf94"><code>923e581</code></a> docs: add more FAQs</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/9fae790dba9baf26f84d86bbe58078ae8de60509"><code>9fae790</code></a> add missing changesets</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/6ab44adc3b080a3427c333a53d47e4da81d5c5be"><code>6ab44ad</code></a> update lock file</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/b0381838dc2a1cd519a8c90213c00604613914e6"><code>b038183</code></a> fix(local-md): fix deprecation warnings</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/4bf7f0d01594424c3d0b91ec1e02bd4ca8a8352d"><code>4bf7f0d</code></a> fix(tanstack-start-spa): remove getPageMarkdownUrl, unused and identical to s...</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/d0b57c828e54918b600fa5c94ed687f89dfb38b5"><code>d0b57c8</code></a> fix(api-docs): inline ref-parser</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/839e3aaa45924730f7e3cc13403ea22b0112e20a"><code>839e3aa</code></a> feat(core): handle BASE_PATH automatically</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/88d1a8a14986ea29b319e9575e64ee7df556ef56"><code>88d1a8a</code></a> fix(tanstack-start): api search for SPA with serve (<a href="https://redirect.github.com/fuma-nama/fumadocs/issues/3378">#3378</a>)</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/4abdb050e4cfc0c6e06ca75869885b970c5fb078"><code>4abdb05</code></a> refactor: use cnfast</li> <li>Additional commits viewable in <a href="https://github.com/fuma-nama/fumadocs/compare/fumadocs@16.10.5...fumadocs@16.10.6">compare view</a></li> </ul> </details> <br /> Updates `fumadocs-mdx` from 15.0.12 to 15.0.13 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/fuma-nama/fumadocs/releases">fumadocs-mdx's releases</a>.</em></p> <blockquote> <h2>fumadocs-mdx@15.0.13</h2> <h3>Require <code>collection</code> query param at regex matching</h3> <p>Instead of passing through all JSON/YAML files, the meta loader now requires <code>collection</code> query param to be triggered.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/fuma-nama/fumadocs/commit/47b8b635b95c305a07a307baaafa7e81873f9132"><code>47b8b63</code></a> Version Packages (<a href="https://redirect.github.com/fuma-nama/fumadocs/issues/3384">#3384</a>)</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/baacf1a67df9d14d768da70dde0f9fe0ed3003cd"><code>baacf1a</code></a> perf(mdx): require <code>collection</code> query param at regex matching</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/593302d01c6e7b95c93a6a5f91227cc25f3386f3"><code>593302d</code></a> Version Packages (<a href="https://redirect.github.com/fuma-nama/fumadocs/issues/3382">#3382</a>)</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/923e5819fb8c4e5b84a25a9288607c2e0726bf94"><code>923e581</code></a> docs: add more FAQs</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/9fae790dba9baf26f84d86bbe58078ae8de60509"><code>9fae790</code></a> add missing changesets</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/6ab44adc3b080a3427c333a53d47e4da81d5c5be"><code>6ab44ad</code></a> update lock file</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/b0381838dc2a1cd519a8c90213c00604613914e6"><code>b038183</code></a> fix(local-md): fix deprecation warnings</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/4bf7f0d01594424c3d0b91ec1e02bd4ca8a8352d"><code>4bf7f0d</code></a> fix(tanstack-start-spa): remove getPageMarkdownUrl, unused and identical to s...</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/d0b57c828e54918b600fa5c94ed687f89dfb38b5"><code>d0b57c8</code></a> fix(api-docs): inline ref-parser</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/839e3aaa45924730f7e3cc13403ea22b0112e20a"><code>839e3aa</code></a> feat(core): handle BASE_PATH automatically</li> <li>Additional commits viewable in <a href="https://github.com/fuma-nama/fumadocs/compare/fumadocs-mdx@15.0.12...fumadocs-mdx@15.0.13">compare view</a></li> </ul> </details> <br /> Updates `fumadocs-ui` from 16.10.5 to 16.10.6 <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/fuma-nama/fumadocs/commit/593302d01c6e7b95c93a6a5f91227cc25f3386f3"><code>593302d</code></a> Version Packages (<a href="https://redirect.github.com/fuma-nama/fumadocs/issues/3382">#3382</a>)</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/923e5819fb8c4e5b84a25a9288607c2e0726bf94"><code>923e581</code></a> docs: add more FAQs</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/9fae790dba9baf26f84d86bbe58078ae8de60509"><code>9fae790</code></a> add missing changesets</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/6ab44adc3b080a3427c333a53d47e4da81d5c5be"><code>6ab44ad</code></a> update lock file</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/b0381838dc2a1cd519a8c90213c00604613914e6"><code>b038183</code></a> fix(local-md): fix deprecation warnings</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/4bf7f0d01594424c3d0b91ec1e02bd4ca8a8352d"><code>4bf7f0d</code></a> fix(tanstack-start-spa): remove getPageMarkdownUrl, unused and identical to s...</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/d0b57c828e54918b600fa5c94ed687f89dfb38b5"><code>d0b57c8</code></a> fix(api-docs): inline ref-parser</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/839e3aaa45924730f7e3cc13403ea22b0112e20a"><code>839e3aa</code></a> feat(core): handle BASE_PATH automatically</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/88d1a8a14986ea29b319e9575e64ee7df556ef56"><code>88d1a8a</code></a> fix(tanstack-start): api search for SPA with serve (<a href="https://redirect.github.com/fuma-nama/fumadocs/issues/3378">#3378</a>)</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/4abdb050e4cfc0c6e06ca75869885b970c5fb078"><code>4abdb05</code></a> refactor: use cnfast</li> <li>Additional commits viewable in <a href="https://github.com/fuma-nama/fumadocs/compare/fumadocs@16.10.5...fumadocs@16.10.6">compare view</a></li> </ul> </details> <br /> Updates `@typescript/native-preview` from 7.0.0-dev.20260626.1 to 7.0.0-dev.20260628.1 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/microsoft/typescript-go/commits">compare view</a></li> </ul> </details> <br /> Updates `tldts` from 6.1.86 to 7.4.5 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/remusao/tldts/releases">tldts's releases</a>.</em></p> <blockquote> <h2>v7.4.5</h2> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2617">#2617</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>Authors: 1</h4> <ul> <li>Rémi (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> <h2>v7.4.4</h2> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2614">#2614</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>Authors: 1</h4> <ul> <li>Rémi (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> <h2>v7.4.3</h2> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2605">#2605</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>:nut_and_bolt: Dependencies</h4> <ul> <li>Bump rollup from 4.61.0 to 4.61.1 <a href="https://redirect.github.com/remusao/tldts/pull/2602">#2602</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> <li>Bump typescript-eslint from 8.60.0 to 8.60.1 <a href="https://redirect.github.com/remusao/tldts/pull/2601">#2601</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> <li>Bump rollup from 4.60.4 to 4.61.0 <a href="https://redirect.github.com/remusao/tldts/pull/2600">#2600</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> </ul> <h4>Authors: 2</h4> <ul> <li><a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a></li> <li>Rémi (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> <h2>v7.4.2</h2> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2597">#2597</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>:nut_and_bolt: Dependencies</h4> <ul> <li>Bump eslint-plugin-prettier from 5.5.5 to 5.5.6 <a href="https://redirect.github.com/remusao/tldts/pull/2598">#2598</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> </ul> <h4>Authors: 2</h4> <ul> <li><a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/remusao/tldts/blob/master/CHANGELOG.md">tldts's changelog</a>.</em></p> <blockquote> <h1>v7.4.5 (Sun Jun 28 2026)</h1> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2617">#2617</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>Authors: 1</h4> <ul> <li>Rémi (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> <hr /> <h1>v7.4.4 (Tue Jun 23 2026)</h1> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2614">#2614</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>Authors: 1</h4> <ul> <li>Rémi (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> <hr /> <h1>v7.4.3 (Mon Jun 15 2026)</h1> <h4>:scroll: Update Public Suffix List</h4> <ul> <li><code>tldts-experimental</code>, <code>tldts</code> <ul> <li>Update upstream public suffix list <a href="https://redirect.github.com/remusao/tldts/pull/2605">#2605</a> (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> </li> </ul> <h4>:nut_and_bolt: Dependencies</h4> <ul> <li>Bump rollup from 4.61.0 to 4.61.1 <a href="https://redirect.github.com/remusao/tldts/pull/2602">#2602</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> <li>Bump typescript-eslint from 8.60.0 to 8.60.1 <a href="https://redirect.github.com/remusao/tldts/pull/2601">#2601</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> <li>Bump rollup from 4.60.4 to 4.61.0 <a href="https://redirect.github.com/remusao/tldts/pull/2600">#2600</a> (<a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a>)</li> </ul> <h4>Authors: 2</h4> <ul> <li><a href="https://github.com/dependabot%5Bbot%5D"><code>@dependabot[bot]</code></a></li> <li>Rémi (<a href="https://github.com/remusao"><code>@remusao</code></a>)</li> </ul> <hr /> <h1>v7.4.2 (Sat May 30 2026)</h1> <h4>:scroll: Update Public Suffix List</h4> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/remusao/tldts/commit/a854d8c53d2e65ece5a1c09dac5723308f13ec20"><code>a854d8c</code></a> Bump version to: v7.4.5 [skip ci]</li> <li><a href="https://github.com/remusao/tldts/commit/ec23b8e273db2c03303d8034b34e2dc747067788"><code>ec23b8e</code></a> Update CHANGELOG.md [skip ci]</li> <li><a href="https://github.com/remusao/tldts/commit/ef6c3b01f33d357b7258a114a673a9788a9c4ff6"><code>ef6c3b0</code></a> Update upstream public suffix list (<a href="https://redirect.github.com/remusao/tldts/issues/2617">#2617</a>)</li> <li><a href="https://github.com/remusao/tldts/commit/8712f6f2c91f66365819f798073a3e3ea6efbc12"><code>8712f6f</code></a> Bump version to: v7.4.4 [skip ci]</li> <li><a href="https://github.com/remusao/tldts/commit/e8026b69191af83a4c4c5c0a2c91e86a37cb5198"><code>e8026b6</code></a> Update CHANGELOG.md [skip ci]</li> <li><a href="https://github.com/remusao/tldts/commit/1cd9297dbad125ea53cde0fdc298cd976455ff7f"><code>1cd9297</code></a> Update upstream public suffix list (<a href="https://redirect.github.com/remusao/tldts/issues/2614">#2614</a>)</li> <li><a href="https://github.com/remusao/tldts/commit/4447fc1a98b7566bdd2f7d054171aaeb261a17db"><code>4447fc1</code></a> Bump version to: v7.4.3 [skip ci]</li> <li><a href="https://github.com/remusao/tldts/commit/c4f38f8a1ffc556caef6b3d3419054377e72176e"><code>c4f38f8</code></a> Update CHANGELOG.md [skip ci]</li> <li><a href="https://github.com/remusao/tldts/commit/4f4ca83bb6f20a541037d355ed80451b505f8e78"><code>4f4ca83</code></a> Update upstream public suffix list (<a href="https://redirect.github.com/remusao/tldts/issues/2605">#2605</a>)</li> <li><a href="https://github.com/remusao/tldts/commit/e3e66769c2a0d116a82698b16d969b6912f303cd"><code>e3e6676</code></a> Bump rollup from 4.61.0 to 4.61.1 (<a href="https://redirect.github.com/remusao/tldts/issues/2602">#2602</a>)</li> <li>Additional commits viewable in <a href="https://github.com/remusao/tldts/compare/v6.1.86...v7.4.5">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~GitHub%20Actions">GitHub Actions</a>, a new releaser for tldts since your current version.</p> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
## Current Behavior
Go gates `postgres-config {get,update,delete}`, `ssl-enforcement
{get,update}`, and `network-bans {get,remove}` behind the global
`--experimental` flag in the root `PersistentPreRunE`
(`apps/cli-go/cmd/root.go:56-93`). The TS port's
`legacyRequireExperimental` helper
(`shared/legacy-experimental-gate.ts`) was wired only into the storage
leaves, so these 7 commands ran unconditionally, without ever requiring
`--experimental`.
Fixes #CLI-1854
## Expected Behavior
All 7 leaves now fail with `must set the --experimental flag to run this
command` unless `--experimental` (or `SUPABASE_EXPERIMENTAL`) is set,
matching Go exactly.
Wiring this in required more than adding a `yield*` line:
`legacyManagementApiRuntimeLayer` (used by all 7 leaves) eagerly
resolves an access token as part of its own layer construction. Since
`Command.provide(layer)` builds that layer *before* the handler body's
first yield ever runs, leaving the gate check inside the handler while
the layer stayed on `Command.provide` would let a missing-token error
mask the missing-`--experimental` error — verified against the built
binary before the fix (`postgres-config get` with no credentials and no
`--experimental` showed `LegacyPlatformAuthRequiredError`, not the gate
error). Each leaf now moves `legacyManagementApiRuntimeLayer` to an
inline `Effect.provide` applied *after* the gate check, matching Go's
actual `PersistentPreRunE` order (experimental check, then the
`IsManagementAPI` login check — `root.go:91-109`). Re-verified against
the built binary post-fix for all 7 leaves.
Also corrects the `legacy-experimental-gate.ts` doc comment, which
previously had cobra's `PersistentPreRunE`/`ValidateFlagGroups` ordering
backwards, and now accurately notes that the 4 pre-existing storage
leaves still have the mutex-check-before-gate ordering bug (tracked
separately) rather than presenting their ordering as the correct example
to copy.
…an-ip (#5769) ## Current Behavior `supabase network-bans remove --project-ref <bad-ref> --db-unban-ip <bad-ip>` surfaces the invalid-IP error first, because the TS handler validated `--db-unban-ip` before resolving the project ref. ## Expected Behavior Go resolves the project ref in `PersistentPreRunE`, which cobra always runs before `RunE`'s IP validation (`cmd/root.go:108-114` vs `internal/bans/update/update.go:12-25`). So an invalid ref must surface before an invalid IP, matching Go. The handler now resolves the ref first, and the IP validation loop runs inside the same `Effect.ensuring(linkedProjectCache.cache(ref))` scope that Go's `ensureProjectGroupsCached` mirrors. Added regression tests covering both the unresolved-ref (no linked project) and invalid-ref (`--project-ref BADREF`) cases combined with an invalid `--db-unban-ip`, asserting the ref error wins and no API call is made. Fixes CLI-1856
## Current Behavior cobra auto-registers a `--no-descriptions` flag on the `bash`/`zsh`/`fish`/`powershell` completion subcommands whenever descriptions are enabled, which is the Go CLI's default. The TS proxy commands declared no flags at all, so `supabase completion zsh --no-descriptions` (and the other three shells) failed with an UnrecognizedOption error in TS before ever reaching the Go binary. ## Expected Behavior Each of the four completion leaves now declares `--no-descriptions` (name, default, and description matching cobra's `compCmdNoDescFlagName`/`compCmdNoDescFlagDefault`/`compCmdNoDescFlagDesc` constants exactly) and forwards it to the Go binary proxy. Since the flag is identical across all four leaves in the same command family, it's hoisted into `completion.flags.ts` rather than redeclared four times, following the same pattern already used for `--linked`/`--local` in `storage.flags.ts`. Fixes CLI-1858
## Current Behavior Go's cobra runs `PersistentPreRunE` (which includes the `--experimental` gate, `apps/cli-go/cmd/root.go:91-96`) before `ValidateFlagGroups()` (mutual-exclusivity checks, `cobra@v1.10.2/command.go:985,1010`). The TS port's `storage ls/cp/mv/rm` had this backwards — checking `--linked`/`--local` exclusivity before the `--experimental` gate — so `supabase storage ls --linked --local` (without `--experimental`) surfaced the mutex error in TS instead of Go's "must set the --experimental flag" error. Fixes CLI-1855 ## Expected Behavior All 4 storage leaves now run the experimental gate first, matching Go's precedence exactly (verified against the built binary). Also corrects the inline comments in those files and the shared `legacy-experimental-gate.ts` doc, which claimed Go gates experimental "after flag-group validation" — this was backwards per cobra's actual execution order. An existing e2e test (`storage.e2e.test.ts`) asserted the old (wrong) precedence for `--linked --local` without `--experimental`; fixed it to add `--experimental` so it keeps testing the mutex message it originally intended, at the real subprocess boundary. New ordering coverage for all 4 leaves lives in a new integration suite (`storage.experimental-gate.integration.test.ts`) rather than duplicating it in e2e, per this repo's e2e scope policy. Out of scope: the same gate-vs-mutex-check ordering bug also exists in `db schema declarative generate`/`sync` (verified against Go source), unrelated command family — filing as a separate follow-up rather than expanding this PR.
…tus (#5770) ## Current Behavior The TS `status` command only declares `--override-name`. Go's `status` also registers two hidden flags, `--exclude` and `--ignore-health-check` (`cmd/status.go:38-42`). Because the Effect CLI parser rejects undeclared flags before the command proxies to the Go binary, `supabase status --exclude db` and `supabase status --ignore-health-check` fail with an UnrecognizedOption error in TS while working fine in Go. ## Expected Behavior Both flags are now declared as hidden (matching Go's `MarkHidden`) and forwarded verbatim to the Go binary proxy, following the same pattern already used for `--override-name` and for `start`'s hidden flags. `SIDE_EFFECTS.md` documents the new flags with references to the Go source lines they mirror. Fixes CLI-1857
Trims unit tests that only asserted exported symbols, object shape, or redundant constant properties, while keeping package export contracts that guard real behavior. Removes low-value literal default-version assertions from the stack unit tests without adding new CI surface area. Strengthens JWT generation coverage by checking the decoded header and payload plus the HMAC signature instead of only checking that the token has three segments.
## What Make `supabase gen types --local` honor `SUPABASE_INTERNAL_IMAGE_REGISTRY` for **any** registry when pulling the `postgres-meta` image, instead of only special-casing `docker.io`. Closes #5785. ## Why On GitHub-hosted runners (shared egress IPs), `public.ecr.aws` is frequently rate-limited. `supabase/setup-cli` exports `SUPABASE_INTERNAL_IMAGE_REGISTRY=ghcr.io` precisely to avoid this (`core.exportVariable(CLI_CONFIG_REGISTRY, "ghcr.io")`). `supabase start` honors it, but `gen types` did not: it kept running `docker run public.ecr.aws/supabase/postgres-meta:<tag>` and failed with ``` docker: toomanyrequests: Rate exceeded ``` even with `SUPABASE_INTERNAL_IMAGE_REGISTRY=ghcr.io` set in the step env. ### Root cause - `apps/cli/src/legacy/commands/gen/types/types.handler.ts` — `runPgMeta` spawns the container with `resolvePgmetaImage(...)`. - `apps/cli/src/legacy/commands/gen/types/types.shared.ts` — `resolvePgmetaImage` only special-cased `SUPABASE_INTERNAL_IMAGE_REGISTRY === "docker.io"`; any other value fell through to `dockerImageForService`. - `packages/stack/src/versions.ts` — `dockerImageForService` hardcodes `DEFAULT_REGISTRY = "public.ecr.aws/supabase"` and does not read the env var. The Go CLI honored the override (with multi-registry fallback) via `GetRegistryImageUrl` in `apps/cli-go/internal/utils/docker.go`, so this is a regression in the TypeScript rewrite. ## How Resolve the image through the existing `legacyGetRegistryImageUrl` helper (`apps/cli/src/legacy/shared/legacy-docker-registry.ts`) — the documented 1:1 port of Go's `GetRegistryImageUrl`, already used by `supabase start` and `test db` (`test/db/db.handler.ts` for `pg_prove`). It honors `SUPABASE_INTERNAL_IMAGE_REGISTRY` for any registry, returns Docker Hub images unchanged for `docker.io`, and defaults to the ECR mirror when unset. Output is unchanged in the two pre-existing cases: | `SUPABASE_INTERNAL_IMAGE_REGISTRY` | before | after | | --- | --- | --- | | _(unset)_ | `public.ecr.aws/supabase/postgres-meta:v<tag>` | `public.ecr.aws/supabase/postgres-meta:v<tag>` | | `docker.io` | `supabase/postgres-meta:v<tag>` | `supabase/postgres-meta:v<tag>` | | `ghcr.io` | `public.ecr.aws/supabase/postgres-meta:v<tag>` ❌ | `ghcr.io/supabase/postgres-meta:v<tag>` ✅ | | `my.registry` | `public.ecr.aws/supabase/postgres-meta:v<tag>` ❌ | `my.registry/supabase/postgres-meta:v<tag>` ✅ | ## Tests Added regression guards in `types.unit.test.ts` for the default (ECR), `ghcr.io`, and an arbitrary mirror. The `ghcr.io` case fails against the old code. - `types.unit.test.ts`: 26/26 pass - `types.integration.test.ts`: 71/71 pass - `types:check` / `lint:check` / `fmt:check` / `knip:check`: clean --------- Co-authored-by: swiflyme <252834199+swiflyme@users.noreply.github.com> Co-authored-by: Claude Fable 5 <noreply@anthropic.com> Co-authored-by: Julien Goux <hi@jgoux.dev>
…emplates with 2 updates (#5781) Bumps the docker-minor group in /apps/cli-go/pkg/config/templates with 2 updates: supabase/realtime and supabase/storage-api. Updates `supabase/realtime` from v2.112.3 to v2.112.4 Updates `supabase/storage-api` from v1.61.11 to v1.61.13 Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Julien Goux <hi@jgoux.dev>
This PR was automatically created to sync API types from the infrastructure repository. Changes were detected in the generated API code after syncing with the latest spec from infrastructure. Co-authored-by: supabase-cli-releaser[bot] <246109035+supabase-cli-releaser[bot]@users.noreply.github.com>
…n /apps/cli-go in the go-minor group across 1 directory (#5805) Bumps the go-minor group with 1 update in the /apps/cli-go directory: [github.com/posthog/posthog-go](https://github.com/posthog/posthog-go). Updates `github.com/posthog/posthog-go` from 1.16.2 to 1.17.2 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/posthog/posthog-go/releases">github.com/posthog/posthog-go's releases</a>.</em></p> <blockquote> <h2>1.17.2</h2> <h2>Unreleased</h2> <h2>1.17.1</h2> <h2>Unreleased</h2> <h2>1.17.0</h2> <h2>Unreleased</h2> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/PostHog/posthog-go/blob/main/CHANGELOG.md">github.com/posthog/posthog-go's changelog</a>.</em></p> <blockquote> <h2>1.17.2</h2> <h3>Patch Changes</h3> <ul> <li>d98ef79: Retry feature flag requests after transient network errors only. The feature flag request retry count defaults to 1 and can be set to 0 to disable retries.</li> </ul> <h2>1.17.1</h2> <h3>Patch Changes</h3> <ul> <li>651b303: Preserve caller-provided system context values when building capture v1 event properties.</li> <li>e0eb8bd: Send capture batches uncompressed when request-body compression fails instead of failing the batch.</li> <li>71f5c2e: Expose capture default properties to BeforeSend hooks before serialization.</li> </ul> <h2>1.17.0</h2> <h3>Minor Changes</h3> <ul> <li>ff0e74b: Enrich capture-v1 failure reporting with typed errors and verbose result logging. When <code>CaptureMode</code> is <code>CaptureModeAnalyticsV1</code>, <code>Callback.Failure</code> now receives either a <code>*CaptureEventError</code> (a single event the server dropped, or one still asking to retry once attempts are exhausted — exposing <code>EventUUID</code>, <code>Result</code>, <code>Details</code>, and <code>Exhausted</code>) or a <code>*CaptureRequestError</code> (a whole request that failed on a non-2xx status, transport error, or malformed body — exposing <code>StatusCode</code>, <code>Code</code>, <code>Description</code>, and unwrapping to the underlying error). Inspect them with <code>errors.As</code>. Additionally, with <code>Verbose: true</code> the SDK logs one debug line per 2xx response summarizing the per-event directive counts (ok/warning/drop/retry/other) so partial-submission outcomes are easy to debug. The legacy path and its callback errors are unchanged.</li> <li>ff0e74b: Add opt-in capture-v1 support via a new <code>Config.CaptureMode</code> option. It defaults to <code>CaptureModeLegacy</code> (the existing <code>POST /batch/</code> endpoint), so upgrading is transparent and requires no code changes. Set <code>CaptureMode: posthog.CaptureModeAnalyticsV1</code> to send events to <code>POST /i/v1/analytics/events</code> instead, which uses Bearer auth, per-event delivery results, and partial retry (only the events the server asks to retry are re-sent). For v1, the <code>Callback</code> interface is unchanged but outcomes become per-event: a <code>drop</code> result fails an individual event (and can fire <code>Failure</code> on an HTTP 200), <code>warning</code> counts as success, and a uuid missing from the results is silently dropped. All other configuration (host, API key, <code>Callback</code>, <code>Logger</code>, <code>MaxRetries</code>, <code>Compression</code>) is reused across both modes.</li> <li>ff0e74b: Add zstd, deflate, and brotli compression for the capture-v1 path, alongside the existing gzip. Select one via <code>Config.Compression</code> (<code>CompressionZstd</code>, <code>CompressionDeflate</code>, <code>CompressionBrotli</code>) and the SDK sets the matching <code>Content-Encoding</code> header (<code>zstd</code>, <code>deflate</code>, <code>br</code>). These three codecs require <code>CaptureMode: posthog.CaptureModeAnalyticsV1</code> — the legacy <code>POST /batch/</code> endpoint only understands gzip, so configuring them with <code>CaptureModeLegacy</code> returns a validation error. <code>CompressionGzip</code> and <code>CompressionNone</code> continue to work on both capture modes. All codecs use pure-Go libraries (stdlib <code>compress/zlib</code>, <code>github.com/klauspost/compress/zstd</code>, <code>github.com/andybalholm/brotli</code>), so <code>CGO_ENABLED=0</code> builds are unaffected.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PostHog/posthog-go/commit/c2ee6b1961f69364a7244b82f6904df3986198de"><code>c2ee6b1</code></a> chore: release v1.17.2 [version bump] [skip ci]</li> <li><a href="https://github.com/PostHog/posthog-go/commit/d98ef794a2aab07c5b4ff4ad20f9256cb25cceab"><code>d98ef79</code></a> fix(flags): retry flag requests on transient network errors (<a href="https://redirect.github.com/posthog/posthog-go/issues/240">#240</a>)</li> <li><a href="https://github.com/PostHog/posthog-go/commit/63feb5ed26416bc9b6bb9cb8253a7000a35b85f7"><code>63feb5e</code></a> chore: release v1.17.1 [version bump] [skip ci]</li> <li><a href="https://github.com/PostHog/posthog-go/commit/e0eb8bd7ad3451a9d653f3be8146c9bd04e788f0"><code>e0eb8bd</code></a> fix: fall back to uncompressed on compression failure (<a href="https://redirect.github.com/posthog/posthog-go/issues/242">#242</a>)</li> <li><a href="https://github.com/PostHog/posthog-go/commit/651b303c38c4aeef534b74a2e2acab3724839df9"><code>651b303</code></a> fix: preserve v1 caller system context (<a href="https://redirect.github.com/posthog/posthog-go/issues/243">#243</a>)</li> <li><a href="https://github.com/PostHog/posthog-go/commit/71f5c2edf7fcb81094af958a86d1b37bccac0065"><code>71f5c2e</code></a> fix: expose capture defaults to BeforeSend hooks (<a href="https://redirect.github.com/posthog/posthog-go/issues/244">#244</a>)</li> <li><a href="https://github.com/PostHog/posthog-go/commit/45e5e96ddee854f5664dc84724ec00092abbe901"><code>45e5e96</code></a> chore: release v1.17.0 [version bump] [skip ci]</li> <li><a href="https://github.com/PostHog/posthog-go/commit/ff0e74b4ef82282e875923f5388ab1d480fb70b7"><code>ff0e74b</code></a> feat(capture): add v1 wire types and serialization (unwired) (<a href="https://redirect.github.com/posthog/posthog-go/issues/235">#235</a>)</li> <li><a href="https://github.com/PostHog/posthog-go/commit/2832a6ecaa8831c63841af113c8debd2da19306e"><code>2832a6e</code></a> chore: use pnpm setup runtime action (<a href="https://redirect.github.com/posthog/posthog-go/issues/241">#241</a>)</li> <li>See full diff in <a href="https://github.com/posthog/posthog-go/compare/v1.16.2...v1.17.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the npm-major group with 8 updates: | Package | From | To | | --- | --- | --- | | [@anthropic-ai/claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-typescript) | `0.3.195` | `0.3.196` | | [@anthropic-ai/sdk](https://github.com/anthropics/anthropic-sdk-typescript) | `0.106.0` | `0.107.0` | | [posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node) | `5.38.6` | `5.38.8` | | [fumadocs-core](https://github.com/fuma-nama/fumadocs) | `16.10.6` | `16.10.7` | | [fumadocs-ui](https://github.com/fuma-nama/fumadocs) | `16.10.6` | `16.10.7` | | [@typescript/native-preview](https://github.com/microsoft/typescript-go) | `7.0.0-dev.20260628.1` | `7.0.0-dev.20260629.1` | | [oxfmt](https://github.com/oxc-project/oxc/tree/HEAD/npm/oxfmt) | `0.56.0` | `0.57.0` | | [oxlint](https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint) | `1.71.0` | `1.72.0` | Updates `@anthropic-ai/claude-agent-sdk` from 0.3.195 to 0.3.196 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/anthropics/claude-agent-sdk-typescript/releases">@anthropic-ai/claude-agent-sdk's releases</a>.</em></p> <blockquote> <h2>v0.3.196</h2> <h2>What's changed</h2> <ul> <li>Added <code>prompt_id</code> field to hook input payloads for correlating hook events with OpenTelemetry prompt-level events</li> <li>Fixed control protocol deduplication dropping tool-use IDs after 1000 resolutions, which could cause duplicate <code>tool_result</code> deliveries in long-running sessions</li> </ul> <h2>Update</h2> <pre lang="sh"><code>npm install @anthropic-ai/claude-agent-sdk@0.3.196 # or yarn add @anthropic-ai/claude-agent-sdk@0.3.196 # or pnpm add @anthropic-ai/claude-agent-sdk@0.3.196 # or bun add @anthropic-ai/claude-agent-sdk@0.3.196 </code></pre> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md">@anthropic-ai/claude-agent-sdk's changelog</a>.</em></p> <blockquote> <h2>0.3.196</h2> <ul> <li>Added <code>prompt_id</code> field to hook input payloads for correlating hook events with OpenTelemetry prompt-level events</li> <li>Fixed control protocol deduplication dropping tool-use IDs after 1000 resolutions, which could cause duplicate <code>tool_result</code> deliveries in long-running sessions</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/anthropics/claude-agent-sdk-typescript/commit/e2590471106ec492152e7219833748d86c4f6041"><code>e259047</code></a> chore: Update CHANGELOG.md</li> <li>See full diff in <a href="https://github.com/anthropics/claude-agent-sdk-typescript/compare/v0.3.195...v0.3.196">compare view</a></li> </ul> </details> <br /> Updates `@anthropic-ai/sdk` from 0.106.0 to 0.107.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/anthropics/anthropic-sdk-typescript/releases">@anthropic-ai/sdk's releases</a>.</em></p> <blockquote> <h2>sdk: v0.107.0</h2> <h2>0.107.0 (2026-06-29)</h2> <p>Full Changelog: <a href="https://github.com/anthropics/anthropic-sdk-typescript/compare/sdk-v0.106.0...sdk-v0.107.0">sdk-v0.106.0...sdk-v0.107.0</a></p> <h3>Features</h3> <ul> <li><strong>api:</strong> add support for 20260318 web fetch and support tools (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/d7057ea73ba564d1e89cff40c58a85d9375ccbbf">d7057ea</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li><strong>agent-toolset:</strong> bound canonicalize symlink hops; resolve glob matches before confinement check (<a href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/142">#142</a>) (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/277be80af68eb088e954c0008dc1aa932375afe2">277be80</a>)</li> <li><strong>types:</strong> restore BatchCreateParams.Request.params dropped by codegen merge (<a href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/165">#165</a>) (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/c6b68d248e037617017fc00f928dbeb9091f917d">c6b68d2</a>)</li> </ul> <h3>Chores</h3> <ul> <li><strong>api:</strong> accept user profile ID's when counting tokens (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/6cda67e3b9d97505aa24e318cd22e28837760025">6cda67e</a>)</li> <li><strong>docs:</strong> updates to descriptions and example values (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/51a5f8138f8e771a84456628ec9d31b6257d2f3f">51a5f81</a>)</li> </ul> <h3>Documentation</h3> <ul> <li>update readme requirements to match anthropic docs (<a href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/146">#146</a>) (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/3818412d371372fa1054b34a7293853fb3bfbef3">3818412</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/anthropics/anthropic-sdk-typescript/blob/main/CHANGELOG.md">@anthropic-ai/sdk's changelog</a>.</em></p> <blockquote> <h2>0.107.0 (2026-06-29)</h2> <p>Full Changelog: <a href="https://github.com/anthropics/anthropic-sdk-typescript/compare/sdk-v0.106.0...sdk-v0.107.0">sdk-v0.106.0...sdk-v0.107.0</a></p> <h3>Features</h3> <ul> <li><strong>api:</strong> add support for 20260318 web fetch and support tools (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/d7057ea73ba564d1e89cff40c58a85d9375ccbbf">d7057ea</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li><strong>agent-toolset:</strong> bound canonicalize symlink hops; resolve glob matches before confinement check (<a href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/142">#142</a>) (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/277be80af68eb088e954c0008dc1aa932375afe2">277be80</a>)</li> <li><strong>types:</strong> restore BatchCreateParams.Request.params dropped by codegen merge (<a href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/165">#165</a>) (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/c6b68d248e037617017fc00f928dbeb9091f917d">c6b68d2</a>)</li> </ul> <h3>Chores</h3> <ul> <li><strong>api:</strong> accept user profile ID's when counting tokens (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/6cda67e3b9d97505aa24e318cd22e28837760025">6cda67e</a>)</li> <li><strong>docs:</strong> updates to descriptions and example values (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/51a5f8138f8e771a84456628ec9d31b6257d2f3f">51a5f81</a>)</li> </ul> <h3>Documentation</h3> <ul> <li>update readme requirements to match anthropic docs (<a href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/146">#146</a>) (<a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/3818412d371372fa1054b34a7293853fb3bfbef3">3818412</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/f1662fe32c03a9e08b48c4220c18a96c9bfc15eb"><code>f1662fe</code></a> chore: release main</li> <li><a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/c7d44fd31e92c886bf576203a37afce846f3aa00"><code>c7d44fd</code></a> fix(types): restore BatchCreateParams.Request.params dropped by codegen merge...</li> <li><a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/e3458100bb6df816575eb4df6f23b24519f8a59c"><code>e345810</code></a> feat(api): add support for 20260318 web fetch and support tools</li> <li><a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/c625b047e19c29a86c60b24be3e89cd505d44b66"><code>c625b04</code></a> fix(agent-toolset): bound canonicalize symlink hops; resolve glob matches bef...</li> <li><a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/3a7c513c8f85541c753a46b2f24d58f408d06f38"><code>3a7c513</code></a> chore(docs): updates to descriptions and example values</li> <li><a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/756ec9ef460c951e1c488718e9191d3b9cd573e7"><code>756ec9e</code></a> docs: update readme requirements to match anthropic docs (<a href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/146">#146</a>)</li> <li><a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/9d37c71c2911671e7e2a37dcb8eb71b4395f65ae"><code>9d37c71</code></a> chore(api): accept user profile ID's when counting tokens</li> <li><a href="https://github.com/anthropics/anthropic-sdk-typescript/commit/d3c49c7b70af3d55fafb97053edda9cf502eca94"><code>d3c49c7</code></a> codegen metadata</li> <li>See full diff in <a href="https://github.com/anthropics/anthropic-sdk-typescript/compare/sdk-v0.106.0...sdk-v0.107.0">compare view</a></li> </ul> </details> <br /> Updates `posthog-node` from 5.38.6 to 5.38.8 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/PostHog/posthog-js/releases">posthog-node's releases</a>.</em></p> <blockquote> <h2>posthog-node@5.38.8</h2> <h2>5.38.8</h2> <h3>Patch Changes</h3> <ul> <li><a href="https://redirect.github.com/PostHog/posthog-js/pull/3974">#3974</a> <a href="https://github.com/PostHog/posthog-js/commit/08b404b5cd5506041df0ecc512ea9d950a3387e7"><code>08b404b</code></a> Thanks <a href="https://github.com/mjfaga"><code>@mjfaga</code></a>! - Fix local evaluation ignoring the <code>in</code>/<code>not_in</code> operator on cohort-based flag conditions. "Not in cohort" was evaluated as "in cohort", inverting cohort-exclusion flags. Now applies the operator to the cohort membership result. (2026-06-29)</li> </ul> <h2>posthog-node@5.38.7</h2> <h2>5.38.7</h2> <h3>Patch Changes</h3> <ul> <li><a href="https://redirect.github.com/PostHog/posthog-js/pull/3961">#3961</a> <a href="https://github.com/PostHog/posthog-js/commit/619a25ce5d4aa5a5f82724863facff4e0029e44b"><code>619a25c</code></a> Thanks <a href="https://github.com/marandaneto"><code>@marandaneto</code></a>! - Retry feature flag requests after transient network errors only. The feature flag request retry count defaults to 1 and can be set to 0 to disable retries. (2026-06-29)</li> <li>Updated dependencies [<a href="https://github.com/PostHog/posthog-js/commit/619a25ce5d4aa5a5f82724863facff4e0029e44b"><code>619a25c</code></a>]: <ul> <li><code>@posthog/core</code><a href="https://github.com/1"><code>@1</code></a>.38.1</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md">posthog-node's changelog</a>.</em></p> <blockquote> <h2>5.38.8</h2> <h3>Patch Changes</h3> <ul> <li><a href="https://redirect.github.com/PostHog/posthog-js/pull/3974">#3974</a> <a href="https://github.com/PostHog/posthog-js/commit/08b404b5cd5506041df0ecc512ea9d950a3387e7"><code>08b404b</code></a> Thanks <a href="https://github.com/mjfaga"><code>@mjfaga</code></a>! - Fix local evaluation ignoring the <code>in</code>/<code>not_in</code> operator on cohort-based flag conditions. "Not in cohort" was evaluated as "in cohort", inverting cohort-exclusion flags. Now applies the operator to the cohort membership result. (2026-06-29)</li> </ul> <h2>5.38.7</h2> <h3>Patch Changes</h3> <ul> <li><a href="https://redirect.github.com/PostHog/posthog-js/pull/3961">#3961</a> <a href="https://github.com/PostHog/posthog-js/commit/619a25ce5d4aa5a5f82724863facff4e0029e44b"><code>619a25c</code></a> Thanks <a href="https://github.com/marandaneto"><code>@marandaneto</code></a>! - Retry feature flag requests after transient network errors only. The feature flag request retry count defaults to 1 and can be set to 0 to disable retries. (2026-06-29)</li> <li>Updated dependencies [<a href="https://github.com/PostHog/posthog-js/commit/619a25ce5d4aa5a5f82724863facff4e0029e44b"><code>619a25c</code></a>]: <ul> <li><code>@posthog/core</code><a href="https://github.com/1"><code>@1</code></a>.38.1</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PostHog/posthog-js/commit/479d5ea0c5e926aab4c196b85fffdc003541a722"><code>479d5ea</code></a> chore: update versions and lockfile [version bump]</li> <li><a href="https://github.com/PostHog/posthog-js/commit/08b404b5cd5506041df0ecc512ea9d950a3387e7"><code>08b404b</code></a> fix(node): apply in/not_in operator on flag-level cohort conditions in local ...</li> <li><a href="https://github.com/PostHog/posthog-js/commit/272c193def3036b88d156b59f18857f99aa43cc1"><code>272c193</code></a> chore: update versions and lockfile [version bump]</li> <li><a href="https://github.com/PostHog/posthog-js/commit/619a25ce5d4aa5a5f82724863facff4e0029e44b"><code>619a25c</code></a> fix(flags): retry flag requests on transient network errors (<a href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3961">#3961</a>)</li> <li>See full diff in <a href="https://github.com/PostHog/posthog-js/commits/posthog-node@5.38.8/packages/node">compare view</a></li> </ul> </details> <br /> Updates `fumadocs-core` from 16.10.6 to 16.10.7 <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/fuma-nama/fumadocs/commit/084bb7b63bec2715100826b2cba6bf473db3310c"><code>084bb7b</code></a> Version Packages (<a href="https://redirect.github.com/fuma-nama/fumadocs/issues/3387">#3387</a>)</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/3922dccafd38efd9dab595676ee9e13c0b90bbb1"><code>3922dcc</code></a> fix(ui): base path in page actions</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/47b8b635b95c305a07a307baaafa7e81873f9132"><code>47b8b63</code></a> Version Packages (<a href="https://redirect.github.com/fuma-nama/fumadocs/issues/3384">#3384</a>)</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/baacf1a67df9d14d768da70dde0f9fe0ed3003cd"><code>baacf1a</code></a> perf(mdx): require <code>collection</code> query param at regex matching</li> <li>See full diff in <a href="https://github.com/fuma-nama/fumadocs/compare/fumadocs@16.10.6...fumadocs@16.10.7">compare view</a></li> </ul> </details> <br /> Updates `fumadocs-ui` from 16.10.6 to 16.10.7 <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/fuma-nama/fumadocs/commit/084bb7b63bec2715100826b2cba6bf473db3310c"><code>084bb7b</code></a> Version Packages (<a href="https://redirect.github.com/fuma-nama/fumadocs/issues/3387">#3387</a>)</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/3922dccafd38efd9dab595676ee9e13c0b90bbb1"><code>3922dcc</code></a> fix(ui): base path in page actions</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/47b8b635b95c305a07a307baaafa7e81873f9132"><code>47b8b63</code></a> Version Packages (<a href="https://redirect.github.com/fuma-nama/fumadocs/issues/3384">#3384</a>)</li> <li><a href="https://github.com/fuma-nama/fumadocs/commit/baacf1a67df9d14d768da70dde0f9fe0ed3003cd"><code>baacf1a</code></a> perf(mdx): require <code>collection</code> query param at regex matching</li> <li>See full diff in <a href="https://github.com/fuma-nama/fumadocs/compare/fumadocs@16.10.6...fumadocs@16.10.7">compare view</a></li> </ul> </details> <br /> Updates `@typescript/native-preview` from 7.0.0-dev.20260628.1 to 7.0.0-dev.20260629.1 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/microsoft/typescript-go/commits">compare view</a></li> </ul> </details> <br /> Updates `oxfmt` from 0.56.0 to 0.57.0 <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/oxc-project/oxc/commit/5306f24d9e82ae36ad9c3c964f33075bc589c799"><code>5306f24</code></a> release(apps): oxlint v1.72.0 && oxfmt v0.57.0 (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxfmt/issues/23935">#23935</a>)</li> <li>See full diff in <a href="https://github.com/oxc-project/oxc/commits/oxfmt_v0.57.0/npm/oxfmt">compare view</a></li> </ul> </details> <br /> Updates `oxlint` from 1.71.0 to 1.72.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/oxc-project/oxc/releases">oxlint's releases</a>.</em></p> <blockquote> <h2>oxlint v1.27.0 && oxfmt v0.12.0</h2> <h1>Oxlint v1.27.0</h1> <h3>🚀 Features</h3> <ul> <li>222a8f0 linter/plugins: Implement <code>SourceCode#isSpaceBetween</code> (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15498">#15498</a>) (overlookmotel)</li> <li>2f9735d linter/plugins: Implement <code>context.languageOptions</code> (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15486">#15486</a>) (overlookmotel)</li> <li>bc731ff linter/plugins: Stub out all <code>Context</code> APIs (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15479">#15479</a>) (overlookmotel)</li> <li>5822cb4 linter/plugins: Add <code>extend</code> method to <code>FILE_CONTEXT</code> (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15477">#15477</a>) (overlookmotel)</li> <li>7b1e6f3 apps: Add pure rust binaries and release to github (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15469">#15469</a>) (Boshen)</li> <li>2a89b43 linter: Introduce debug assertions after fixes to assert validity (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15389">#15389</a>) (camc314)</li> <li>ad3c45a editor: Add <code>oxc.path.node</code> option (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15040">#15040</a>) (Sysix)</li> </ul> <h3>🐛 Bug Fixes</h3> <ul> <li>6f3cd77 linter/no-var: Incorrect warning for blocks (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15504">#15504</a>) (Hamir Mahal)</li> <li>6957fb9 linter/plugins: Do not allow access to <code>Context#id</code> in <code>createOnce</code> (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15489">#15489</a>) (overlookmotel)</li> <li>7409630 linter/plugins: Allow access to <code>cwd</code> in <code>createOnce</code> in ESLint interop mode (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15488">#15488</a>) (overlookmotel)</li> <li>732205e parser: Reject <code>using</code> / <code>await using</code> in a switch <code>case</code> / <code>default</code> clause (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15225">#15225</a>) (sapphi-red)</li> <li>a17ca32 linter/plugins: Replace <code>Context</code> class (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15448">#15448</a>) (overlookmotel)</li> <li>ecf2f7b language_server: Fail gracefully when tsgolint executable not found (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15436">#15436</a>) (camc314)</li> <li>3c8d3a7 lang-server: Improve logging in failure case for tsgolint (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15299">#15299</a>) (camc314)</li> <li>ef71410 linter: Use jsx if source type is JS in fix debug assertion (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15434">#15434</a>) (camc314)</li> <li>e32bbf6 linter/no-var: Handle TypeScript declare keyword in fixer (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15426">#15426</a>) (camc314)</li> <li>6565dbe linter/switch-case-braces: Skip comments when searching for <code>:</code> token (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15425">#15425</a>) (camc314)</li> <li>85bd19a linter/prefer-class-fields: Insert value after type annotation in fixer (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15423">#15423</a>) (camc314)</li> <li>fde753e linter/plugins: Block access to <code>context.settings</code> in <code>createOnce</code> (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15394">#15394</a>) (overlookmotel)</li> <li>ddd9f9f linter/forward-ref-uses-ref: Dont suggest removing wrapper in invalid positions (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15388">#15388</a>) (camc314)</li> <li>dac2a9c linter/no-template-curly-in-string: Remove fixer (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15387">#15387</a>) (camc314)</li> <li>989b8e3 linter/no-var: Only fix to <code>const</code> if the var has an initializer (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15385">#15385</a>) (camc314)</li> <li>cc403f5 linter/plugins: Return empty object for unimplemented parserServices (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15364">#15364</a>) (magic-akari)</li> </ul> <h3>⚡ Performance</h3> <ul> <li>25d577e language_server: Start tools in parallel (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15500">#15500</a>) (Sysix)</li> <li>3c57291 linter/plugins: Optimize loops (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15449">#15449</a>) (overlookmotel)</li> <li>3166233 linter/plugins: Remove <code>Arc</code>s (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15431">#15431</a>) (overlookmotel)</li> <li>9de1322 linter/plugins: Lazily deserialize settings JSON (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15395">#15395</a>) (overlookmotel)</li> <li>3049ec2 linter/plugins: Optimize <code>deepFreezeSettings</code> (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15392">#15392</a>) (overlookmotel)</li> <li>444ebfd linter/plugins: Use single object for <code>parserServices</code> (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15378">#15378</a>) (overlookmotel)</li> </ul> <h3>📚 Documentation</h3> <ul> <li>97d2104 linter: Update comment in lint.rs about default value for tsconfig path (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15530">#15530</a>) (Connor Shea)</li> <li>2c6bd9e linter: Always refer as "ES2015" instead of "ES6" (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15411">#15411</a>) (sapphi-red)</li> <li>a0c5203 linter/import/named: Update "ES7" comment in examples (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15410">#15410</a>) (sapphi-red)</li> <li>3dc24b5 linter,minifier: Always refer as "ES Modules" instead of "ES6 Modules" (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15409">#15409</a>) (sapphi-red)</li> <li>2ad77fb linter/no-this-before-super: Correct "Why is this bad?" section (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15408">#15408</a>) (sapphi-red)</li> <li>57f0ce1 linter: Add backquotes where appropriate (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15407">#15407</a>) (sapphi-red)</li> </ul> <h1>Oxfmt v0.12.0</h1> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/oxc-project/oxc/blob/main/npm/oxlint/CHANGELOG.md">oxlint's changelog</a>.</em></p> <blockquote> <h2>[1.72.0] - 2026-06-29</h2> <h3>🚀 Features</h3> <ul> <li>1c8f50c linter: Add schema for <code>eslint/no-restricted-import</code> (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/23642">#23642</a>) (Sysix)</li> </ul> <h3>🐛 Bug Fixes</h3> <ul> <li>742be36 refactor/node/handle-callback-err: Reject invalid regex config (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/23740">#23740</a>) (camc314)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/oxc-project/oxc/commit/5306f24d9e82ae36ad9c3c964f33075bc589c799"><code>5306f24</code></a> release(apps): oxlint v1.72.0 && oxfmt v0.57.0 (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/23935">#23935</a>)</li> <li><a href="https://github.com/oxc-project/oxc/commit/742be3616fc8df27053b09bdf9ff166e16761838"><code>742be36</code></a> fix(refactor/node/handle-callback-err): reject invalid regex config (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/23740">#23740</a>)</li> <li><a href="https://github.com/oxc-project/oxc/commit/1c8f50c67ff636b9d8193d3d7be1511a7960f25d"><code>1c8f50c</code></a> feat(linter): add schema for <code>eslint/no-restricted-import</code> (<a href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/23642">#23642</a>)</li> <li>See full diff in <a href="https://github.com/oxc-project/oxc/commits/oxlint_v1.72.0/npm/oxlint">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…emplates with 3 updates (#5806) Bumps the docker-minor group in /apps/cli-go/pkg/config/templates with 3 updates: supabase/studio, supabase/realtime and supabase/storage-api. Updates `supabase/studio` from 2026.06.29-sha-20290c7 to 2026.07.06-sha-66cf431 Updates `supabase/realtime` from v2.112.4 to v2.112.6 Updates `supabase/storage-api` from v1.61.13 to v1.62.5 Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
…/apps/cli-go/pkg/config/templates (#5807) Bumps supabase/postgres from 17.6.1.142 to 17.6.1.143. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
jgoux
approved these changes
Jul 7, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
mise-based workflow for initial codebase setup (chore(dev/onboarding): set upmise-based workflow for initial codebase setup #5761)golangci-lintto latest (chore(deps): bumpgolangci-lintto latest #5779)