Skip to content

chore: production deploy#5812

Merged
supabase-cli-releaser[bot] merged 48 commits into
mainfrom
develop
Jul 7, 2026
Merged

chore: production deploy#5812
supabase-cli-releaser[bot] merged 48 commits into
mainfrom
develop

Conversation

@supabase-cli-releaser

Copy link
Copy Markdown
Contributor

dependabot Bot and others added 30 commits July 1, 2026 00:12
Bumps the actions-major group with 2 updates:
[actions/upload-artifact](https://github.com/actions/upload-artifact)
and
[actions/download-artifact](https://github.com/actions/download-artifact).

Updates `actions/upload-artifact` from 4.6.2 to 7.0.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/upload-artifact/releases">actions/upload-artifact's
releases</a>.</em></p>
<blockquote>
<h2>v7.0.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Update the readme with direct upload details by <a
href="https://github.com/danwkennedy"><code>@​danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/upload-artifact/pull/795">actions/upload-artifact#795</a></li>
<li>Readme: bump all the example versions to v7 by <a
href="https://github.com/danwkennedy"><code>@​danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/upload-artifact/pull/796">actions/upload-artifact#796</a></li>
<li>Include changes in typespec/ts-http-runtime 0.3.5 by <a
href="https://github.com/yacaovsnc"><code>@​yacaovsnc</code></a> in <a
href="https://redirect.github.com/actions/upload-artifact/pull/797">actions/upload-artifact#797</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/upload-artifact/compare/v7...v7.0.1">https://github.com/actions/upload-artifact/compare/v7...v7.0.1</a></p>
<h2>v7.0.0</h2>
<h2>v7 What's new</h2>
<h3>Direct Uploads</h3>
<p>Adds support for uploading single files directly (unzipped). Callers
can set the new <code>archive</code> parameter to <code>false</code> to
skip zipping the file during upload. Right now, we only support single
files. The action will fail if the glob passed resolves to multiple
files. The <code>name</code> parameter is also ignored with this
setting. Instead, the name of the artifact will be the name of the
uploaded file.</p>
<h3>ESM</h3>
<p>To support new versions of the <code>@actions/*</code> packages,
we've upgraded the package to ESM.</p>
<h2>What's Changed</h2>
<ul>
<li>Add proxy integration test by <a
href="https://github.com/Link"><code>@​Link</code></a>- in <a
href="https://redirect.github.com/actions/upload-artifact/pull/754">actions/upload-artifact#754</a></li>
<li>Upgrade the module to ESM and bump dependencies by <a
href="https://github.com/danwkennedy"><code>@​danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/upload-artifact/pull/762">actions/upload-artifact#762</a></li>
<li>Support direct file uploads by <a
href="https://github.com/danwkennedy"><code>@​danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/upload-artifact/pull/764">actions/upload-artifact#764</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/Link"><code>@​Link</code></a>- made
their first contribution in <a
href="https://redirect.github.com/actions/upload-artifact/pull/754">actions/upload-artifact#754</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/upload-artifact/compare/v6...v7.0.0">https://github.com/actions/upload-artifact/compare/v6...v7.0.0</a></p>
<h2>v6.0.0</h2>
<h2>v6 - What's new</h2>
<blockquote>
<p>[!IMPORTANT]
actions/upload-artifact@v6 now runs on Node.js 24 (<code>runs.using:
node24</code>) and requires a minimum Actions Runner version of 2.327.1.
If you are using self-hosted runners, ensure they are updated before
upgrading.</p>
</blockquote>
<h3>Node.js 24</h3>
<p>This release updates the runtime to Node.js 24. v5 had preliminary
support for Node.js 24, however this action was by default still running
on Node.js 20. Now this action by default will run on Node.js 24.</p>
<h2>What's Changed</h2>
<ul>
<li>Upload Artifact Node 24 support by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/upload-artifact/pull/719">actions/upload-artifact#719</a></li>
<li>fix: update <code>@​actions/artifact</code> for Node.js 24 punycode
deprecation by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/upload-artifact/pull/744">actions/upload-artifact#744</a></li>
<li>prepare release v6.0.0 for Node.js 24 support by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/upload-artifact/pull/745">actions/upload-artifact#745</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0">https://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0</a></p>
<h2>v5.0.0</h2>
<h2>What's Changed</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/actions/upload-artifact/commit/043fb46d1a93c77aae656e7c1c64a875d1fc6a0a"><code>043fb46</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/upload-artifact/issues/797">#797</a>
from actions/yacaovsnc/update-dependency</li>
<li><a
href="https://github.com/actions/upload-artifact/commit/634250c1388765ea7ed0f053e636f1f399000b94"><code>634250c</code></a>
Include changes in typespec/ts-http-runtime 0.3.5</li>
<li><a
href="https://github.com/actions/upload-artifact/commit/e454baaac2be505c9450e11b8f3215c6fc023ce8"><code>e454baa</code></a>
Readme: bump all the example versions to v7 (<a
href="https://redirect.github.com/actions/upload-artifact/issues/796">#796</a>)</li>
<li><a
href="https://github.com/actions/upload-artifact/commit/74fad66b98a6d799dc004d3353ccd0e6f6b2530e"><code>74fad66</code></a>
Update the readme with direct upload details (<a
href="https://redirect.github.com/actions/upload-artifact/issues/795">#795</a>)</li>
<li><a
href="https://github.com/actions/upload-artifact/commit/bbbca2ddaa5d8feaa63e36b76fdaad77386f024f"><code>bbbca2d</code></a>
Support direct file uploads (<a
href="https://redirect.github.com/actions/upload-artifact/issues/764">#764</a>)</li>
<li><a
href="https://github.com/actions/upload-artifact/commit/589182c5a4cec8920b8c1bce3e2fab1c97a02296"><code>589182c</code></a>
Upgrade the module to ESM and bump dependencies (<a
href="https://redirect.github.com/actions/upload-artifact/issues/762">#762</a>)</li>
<li><a
href="https://github.com/actions/upload-artifact/commit/47309c993abb98030a35d55ef7ff34b7fa1074b5"><code>47309c9</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/upload-artifact/issues/754">#754</a>
from actions/Link-/add-proxy-integration-tests</li>
<li><a
href="https://github.com/actions/upload-artifact/commit/02a8460834e70dab0ce194c64360c59dc1475ef0"><code>02a8460</code></a>
Add proxy integration test</li>
<li><a
href="https://github.com/actions/upload-artifact/commit/b7c566a772e6b6bfb58ed0dc250532a479d7789f"><code>b7c566a</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/upload-artifact/issues/745">#745</a>
from actions/upload-artifact-v6-release</li>
<li><a
href="https://github.com/actions/upload-artifact/commit/e516bc8500aaf3d07d591fcd4ae6ab5f9c391d5b"><code>e516bc8</code></a>
docs: correct description of Node.js 24 support in README</li>
<li>Additional commits viewable in <a
href="https://github.com/actions/upload-artifact/compare/ea165f8d65b6e75b540449e92b4886f43607fa02...043fb46d1a93c77aae656e7c1c64a875d1fc6a0a">compare
view</a></li>
</ul>
</details>
<br />

Updates `actions/download-artifact` from 4.3.0 to 8.0.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/download-artifact/releases">actions/download-artifact's
releases</a>.</em></p>
<blockquote>
<h2>v8.0.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Support for CJK characters in the artifact name by <a
href="https://github.com/danwkennedy"><code>@​danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/download-artifact/pull/471">actions/download-artifact#471</a></li>
<li>Add a regression test for artifact name + content-type mismatches by
<a href="https://github.com/danwkennedy"><code>@​danwkennedy</code></a>
in <a
href="https://redirect.github.com/actions/download-artifact/pull/472">actions/download-artifact#472</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/download-artifact/compare/v8...v8.0.1">https://github.com/actions/download-artifact/compare/v8...v8.0.1</a></p>
<h2>v8.0.0</h2>
<h2>v8 - What's new</h2>
<blockquote>
<p>[!IMPORTANT]
actions/download-artifact@v8 has been migrated to an ESM module. This
should be transparent to the caller but forks might need to make
significant changes.</p>
</blockquote>
<blockquote>
<p>[!IMPORTANT]
Hash mismatches will now error by default. Users can override this
behavior with a setting change (see below).</p>
</blockquote>
<h3>Direct downloads</h3>
<p>To support direct uploads in <code>actions/upload-artifact</code>,
the action will no longer attempt to unzip all downloaded files.
Instead, the action checks the <code>Content-Type</code> header ahead of
unzipping and skips non-zipped files. Callers wishing to download a
zipped file as-is can also set the new <code>skip-decompress</code>
parameter to <code>true</code>.</p>
<h3>Enforced checks (breaking)</h3>
<p>A previous release introduced digest checks on the download. If a
download hash didn't match the expected hash from the server, the action
would log a warning. Callers can now configure the behavior on mismatch
with the <code>digest-mismatch</code> parameter. To be secure by
default, we are now defaulting the behavior to <code>error</code> which
will fail the workflow run.</p>
<h3>ESM</h3>
<p>To support new versions of the @actions/* packages, we've upgraded
the package to ESM.</p>
<h2>What's Changed</h2>
<ul>
<li>Don't attempt to un-zip non-zipped downloads by <a
href="https://github.com/danwkennedy"><code>@​danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/download-artifact/pull/460">actions/download-artifact#460</a></li>
<li>Add a setting to specify what to do on hash mismatch and default it
to <code>error</code> by <a
href="https://github.com/danwkennedy"><code>@​danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/download-artifact/pull/461">actions/download-artifact#461</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/download-artifact/compare/v7...v8.0.0">https://github.com/actions/download-artifact/compare/v7...v8.0.0</a></p>
<h2>v7.0.0</h2>
<h2>v7 - What's new</h2>
<blockquote>
<p>[!IMPORTANT]
actions/download-artifact@v7 now runs on Node.js 24 (<code>runs.using:
node24</code>) and requires a minimum Actions Runner version of 2.327.1.
If you are using self-hosted runners, ensure they are updated before
upgrading.</p>
</blockquote>
<h3>Node.js 24</h3>
<p>This release updates the runtime to Node.js 24. v6 had preliminary
support for Node 24, however this action was by default still running on
Node.js 20. Now this action by default will run on Node.js 24.</p>
<h2>What's Changed</h2>
<ul>
<li>Update GHES guidance to include reference to Node 20 version by <a
href="https://github.com/patrikpolyak"><code>@​patrikpolyak</code></a>
in <a
href="https://redirect.github.com/actions/download-artifact/pull/440">actions/download-artifact#440</a></li>
<li>Download Artifact Node24 support by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/download-artifact/pull/415">actions/download-artifact#415</a></li>
<li>fix: update <code>@​actions/artifact</code> to fix Node.js 24
punycode deprecation by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/download-artifact/pull/451">actions/download-artifact#451</a></li>
<li>prepare release v7.0.0 for Node.js 24 support by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/download-artifact/pull/452">actions/download-artifact#452</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c"><code>3e5f45b</code></a>
Add regression tests for CJK characters (<a
href="https://redirect.github.com/actions/download-artifact/issues/471">#471</a>)</li>
<li><a
href="https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd"><code>e6d03f6</code></a>
Add a regression test for artifact name + content-type mismatches (<a
href="https://redirect.github.com/actions/download-artifact/issues/472">#472</a>)</li>
<li><a
href="https://github.com/actions/download-artifact/commit/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3"><code>70fc10c</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/download-artifact/issues/461">#461</a>
from actions/danwkennedy/digest-mismatch-behavior</li>
<li><a
href="https://github.com/actions/download-artifact/commit/f258da9a506b755b84a09a531814700b86ccfc62"><code>f258da9</code></a>
Add change docs</li>
<li><a
href="https://github.com/actions/download-artifact/commit/ccc058e5fbb0bb2352213eaec3491e117cbc4a5c"><code>ccc058e</code></a>
Fix linting issues</li>
<li><a
href="https://github.com/actions/download-artifact/commit/bd7976ba57ecea96e6f3df575eb922d11a12a9fd"><code>bd7976b</code></a>
Add a setting to specify what to do on hash mismatch and default it to
<code>error</code></li>
<li><a
href="https://github.com/actions/download-artifact/commit/ac21fcf45e0aaee541c0f7030558bdad38d77d6c"><code>ac21fcf</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/download-artifact/issues/460">#460</a>
from actions/danwkennedy/download-no-unzip</li>
<li><a
href="https://github.com/actions/download-artifact/commit/15999bff51058bc7c19b50ebbba518eaef7c26c0"><code>15999bf</code></a>
Add note about package bumps</li>
<li><a
href="https://github.com/actions/download-artifact/commit/974686ed5098c7f9c9289ec946b9058e496a2561"><code>974686e</code></a>
Bump the version to <code>v8</code> and add release notes</li>
<li><a
href="https://github.com/actions/download-artifact/commit/fbe48b1d2756394be4cd4358ed3bc1343b330e75"><code>fbe48b1</code></a>
Update test names to make it clearer what they do</li>
<li>Additional commits viewable in <a
href="https://github.com/actions/download-artifact/compare/d3f86a106a0bac45b974a628896c90dbdf5c8093...3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c">compare
view</a></li>
</ul>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…emplates with 2 updates (#5745)

Bumps the docker-minor group in /apps/cli-go/pkg/config/templates with 2
updates: supabase/realtime and supabase/storage-api.

Updates `supabase/realtime` from v2.112.1 to v2.112.2

Updates `supabase/storage-api` from v1.61.7 to v1.61.9


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…/apps/cli-go/pkg/config/templates (#5746)

Bumps supabase/postgres from 17.6.1.140 to 17.6.1.141.


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=supabase/postgres&package-manager=docker&previous-version=17.6.1.140&new-version=17.6.1.141)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Adds a stack-owned sync script that derives `DEFAULT_VERSIONS` from the
Dockerfile manifest Dependabot already updates, and adds a
Dependabot-only workflow that pushes the synced manifest back to Docker
image update PRs with the existing GitHub App token pattern.

Also syncs the current `DEFAULT_VERSIONS` values to the Dockerfile
manifest and makes version-sensitive tests derive expectations from the
manifest defaults where appropriate.

Linear: CLI-1589
## TL;DR: 

adds smol contextual eszip read error to deploy failures

## ref:

- towards: #5735
## Summary

Adds a documented hotfix release path that reuses the existing
production PR gate instead of introducing a separate approval flow.

Hotfix PRs can now target main from hotfix/* branches, and successful
stable Release runs on main automatically sync main back into develop so
the released commit stays in the integration branch before the next
scheduled promotion.

The release process docs now describe the dry-run, merge,
release-monitoring, and back-port expectations for urgent stable fixes.

Addresses
https://linear.app/supabase/issue/CLI-1579/define-a-clear-hotfix-release-workflow
Bumps the npm-major group with 9 updates:

| Package | From | To |
| --- | --- | --- |
|
[@anthropic-ai/claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-typescript)
| `0.3.186` | `0.3.187` |
|
[posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node)
| `5.38.2` | `5.38.4` |
|
[@effect/atom-react](https://github.com/Effect-TS/effect-smol/tree/HEAD/packages/atom/react)
| `4.0.0-beta.85` | `4.0.0-beta.87` |
|
[@effect/platform-bun](https://github.com/Effect-TS/effect/tree/HEAD/packages/platform-bun)
| `4.0.0-beta.85` | `4.0.0-beta.87` |
|
[@effect/platform-node](https://github.com/Effect-TS/effect/tree/HEAD/packages/platform-node)
| `4.0.0-beta.85` | `4.0.0-beta.87` |
|
[@effect/sql-pg](https://github.com/Effect-TS/effect/tree/HEAD/packages/sql-pg)
| `4.0.0-beta.85` | `4.0.0-beta.87` |
|
[@typescript/native-preview](https://github.com/microsoft/typescript-go)
| `7.0.0-dev.20260622.1` | `7.0.0-dev.20260623.1` |
|
[effect](https://github.com/Effect-TS/effect/tree/HEAD/packages/effect)
| `4.0.0-beta.85` | `4.0.0-beta.87` |
| [tldts](https://github.com/remusao/tldts) | `6.1.86` | `7.4.4` |

Updates `@anthropic-ai/claude-agent-sdk` from 0.3.186 to 0.3.187
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/releases">@​anthropic-ai/claude-agent-sdk's
releases</a>.</em></p>
<blockquote>
<h2>v0.3.187</h2>
<h2>What's changed</h2>
<ul>
<li>Added <code>sandbox.credentials</code> to SDK settings types for
configuring credential file and environment variable denial in sandboxed
commands</li>
</ul>
<h2>Update</h2>
<pre lang="sh"><code>npm install @anthropic-ai/claude-agent-sdk@0.3.187
# or
yarn add @anthropic-ai/claude-agent-sdk@0.3.187
# or
pnpm add @anthropic-ai/claude-agent-sdk@0.3.187
# or
bun add @anthropic-ai/claude-agent-sdk@0.3.187
</code></pre>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md">@​anthropic-ai/claude-agent-sdk's
changelog</a>.</em></p>
<blockquote>
<h2>0.3.187</h2>
<ul>
<li>Added <code>sandbox.credentials</code> to SDK settings types for
configuring credential file and environment variable denial in sandboxed
commands</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/anthropics/claude-agent-sdk-typescript/commit/4279d963e4537c437ed97575e0703a0accf78a30"><code>4279d96</code></a>
chore: Update CHANGELOG.md</li>
<li>See full diff in <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/compare/v0.3.186...v0.3.187">compare
view</a></li>
</ul>
</details>
<br />

Updates `posthog-node` from 5.38.2 to 5.38.4
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/PostHog/posthog-js/releases">posthog-node's
releases</a>.</em></p>
<blockquote>
<h2>posthog-node@5.38.4</h2>
<h2>5.38.4</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/PostHog/posthog-js/pull/3938">#3938</a>
<a
href="https://github.com/PostHog/posthog-js/commit/6391106fd4bcbddb9a63a13338929a4c1918a70a"><code>6391106</code></a>
Thanks <a
href="https://github.com/dustinbyrne"><code>@​dustinbyrne</code></a>! -
Respect <code>disable_capture_url_hashes</code> when capturing Express
and NestJS request URLs.
(2026-06-23)</li>
</ul>
<h2>posthog-node@5.38.3</h2>
<h2>5.38.3</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/PostHog/posthog-js/pull/3937">#3937</a>
<a
href="https://github.com/PostHog/posthog-js/commit/4d59d0e10f92ad3444e14dc171997c21aba57929"><code>4d59d0e</code></a>
Thanks <a
href="https://github.com/marandaneto"><code>@​marandaneto</code></a>! -
Deprecate the Node SDK Sentry integration and point users to PostHog
Error Tracking for Node.
(2026-06-23)</li>
<li>Updated dependencies [<a
href="https://github.com/PostHog/posthog-js/commit/440e370fda48d629352f3280471a228ee973dcb0"><code>440e370</code></a>]:
<ul>
<li><code>@​posthog/core</code><a
href="https://github.com/1"><code>@​1</code></a>.37.0</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md">posthog-node's
changelog</a>.</em></p>
<blockquote>
<h2>5.38.4</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/PostHog/posthog-js/pull/3938">#3938</a>
<a
href="https://github.com/PostHog/posthog-js/commit/6391106fd4bcbddb9a63a13338929a4c1918a70a"><code>6391106</code></a>
Thanks <a
href="https://github.com/dustinbyrne"><code>@​dustinbyrne</code></a>! -
Respect <code>disable_capture_url_hashes</code> when capturing Express
and NestJS request URLs.
(2026-06-23)</li>
</ul>
<h2>5.38.3</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/PostHog/posthog-js/pull/3937">#3937</a>
<a
href="https://github.com/PostHog/posthog-js/commit/4d59d0e10f92ad3444e14dc171997c21aba57929"><code>4d59d0e</code></a>
Thanks <a
href="https://github.com/marandaneto"><code>@​marandaneto</code></a>! -
Deprecate the Node SDK Sentry integration and point users to PostHog
Error Tracking for Node.
(2026-06-23)</li>
<li>Updated dependencies [<a
href="https://github.com/PostHog/posthog-js/commit/440e370fda48d629352f3280471a228ee973dcb0"><code>440e370</code></a>]:
<ul>
<li><code>@​posthog/core</code><a
href="https://github.com/1"><code>@​1</code></a>.37.0</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/PostHog/posthog-js/commit/2a60c21134dd118c2367e56129bc9427079c3841"><code>2a60c21</code></a>
chore: update versions and lockfile [version bump]</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/6391106fd4bcbddb9a63a13338929a4c1918a70a"><code>6391106</code></a>
fix(node): respect URL hash capture config (<a
href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3938">#3938</a>)</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/a3136c6de3114ee3d58e59a0c86f2b9c4f59a2b0"><code>a3136c6</code></a>
chore: update versions and lockfile [version bump]</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/bf6947d3e12ac512c99185be9b8b134c04eb563a"><code>bf6947d</code></a>
feat(react-native): support session replay event triggers (<a
href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3932">#3932</a>)</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/2628a1af5f06f73cb2252de002e0da4b2d1a25a5"><code>2628a1a</code></a>
chore: update versions and lockfile [version bump]</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/4d59d0e10f92ad3444e14dc171997c21aba57929"><code>4d59d0e</code></a>
chore(node): mark Sentry integration deprecated (<a
href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3937">#3937</a>)</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/1481f6d1ffe768d86637e5bc72722e91173a25e2"><code>1481f6d</code></a>
chore: update versions and lockfile [version bump]</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/a4c4d31435430dd44c5fdec83bcaf362a79a18de"><code>a4c4d31</code></a>
chore: template public API snapshot versions (<a
href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3934">#3934</a>)</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/c28b16143d04caade1d024819017b89cef3162ad"><code>c28b161</code></a>
feat: strip URL hashes from captured URLs (<a
href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3921">#3921</a>)</li>
<li>See full diff in <a
href="https://github.com/PostHog/posthog-js/commits/posthog-node@5.38.4/packages/node">compare
view</a></li>
</ul>
</details>
<br />

Updates `@effect/atom-react` from 4.0.0-beta.85 to 4.0.0-beta.87
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/Effect-TS/effect-smol/blob/main/packages/atom/react/CHANGELOG.md">@​effect/atom-react's
changelog</a>.</em></p>
<blockquote>
<h2>4.0.0-beta.87</h2>
<h3>Patch Changes</h3>
<ul>
<li>Updated dependencies [<a
href="https://github.com/Effect-TS/effect-smol/commit/5a0c1a4faee5707b5cc35e646ff1ffdad70f1956"><code>5a0c1a4</code></a>,
<a
href="https://github.com/Effect-TS/effect-smol/commit/1eea2ea3795ba47316b82b1ac8d4612c0ba389ed"><code>1eea2ea</code></a>]:
<ul>
<li>effect@4.0.0-beta.87</li>
</ul>
</li>
</ul>
<h2>4.0.0-beta.86</h2>
<h3>Patch Changes</h3>
<ul>
<li>Updated dependencies [<a
href="https://github.com/Effect-TS/effect-smol/commit/0b5795a0ab4395e8f15955d8d96f2303084bfc64"><code>0b5795a</code></a>,
<a
href="https://github.com/Effect-TS/effect-smol/commit/3e3a859ec6351a9e0d31674aabbd48fcefabb12e"><code>3e3a859</code></a>,
<a
href="https://github.com/Effect-TS/effect-smol/commit/7dbec240dbf3bca599a20c486632abce694ef5ab"><code>7dbec24</code></a>,
<a
href="https://github.com/Effect-TS/effect-smol/commit/d8c00a171ac7141e8adc08c332d1162d9a9d56fc"><code>d8c00a1</code></a>,
<a
href="https://github.com/Effect-TS/effect-smol/commit/85b631701e935866f2762bd595237aa718370cd9"><code>85b6317</code></a>,
<a
href="https://github.com/Effect-TS/effect-smol/commit/6d0fda0d0cbdfffc523c89c57dfdb1608f84fb12"><code>6d0fda0</code></a>,
<a
href="https://github.com/Effect-TS/effect-smol/commit/108a9335ff8571928197e5847a09c28ac83d6f46"><code>108a933</code></a>,
<a
href="https://github.com/Effect-TS/effect-smol/commit/7e1f455fab5005d769b939c91e519d450f802cf9"><code>7e1f455</code></a>,
<a
href="https://github.com/Effect-TS/effect-smol/commit/46b3e79944cfdae7901eb148135c85b7eb39834e"><code>46b3e79</code></a>]:
<ul>
<li>effect@4.0.0-beta.86</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/Effect-TS/effect-smol/commit/a2e306a0d8be2d2da7f7f564ad16f9a0090becdb"><code>a2e306a</code></a>
Version Packages (beta) (<a
href="https://github.com/Effect-TS/effect-smol/tree/HEAD/packages/atom/react/issues/2467">#2467</a>)</li>
<li><a
href="https://github.com/Effect-TS/effect-smol/commit/595bb5e42203f5bca2db78bcaf206b40ae772391"><code>595bb5e</code></a>
Version Packages (beta) (<a
href="https://github.com/Effect-TS/effect-smol/tree/HEAD/packages/atom/react/issues/2447">#2447</a>)</li>
<li>See full diff in <a
href="https://github.com/Effect-TS/effect-smol/commits/@effect/atom-react@4.0.0-beta.87/packages/atom/react">compare
view</a></li>
</ul>
</details>
<br />

Updates `@effect/platform-bun` from 4.0.0-beta.85 to 4.0.0-beta.87
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/Effect-TS/effect/commits/HEAD/packages/platform-bun">compare
view</a></li>
</ul>
</details>
<br />

Updates `@effect/platform-node` from 4.0.0-beta.85 to 4.0.0-beta.87
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/Effect-TS/effect/commits/HEAD/packages/platform-node">compare
view</a></li>
</ul>
</details>
<br />

Updates `@effect/sql-pg` from 4.0.0-beta.85 to 4.0.0-beta.87
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/Effect-TS/effect/commits/HEAD/packages/sql-pg">compare
view</a></li>
</ul>
</details>
<br />

Updates `@typescript/native-preview` from 7.0.0-dev.20260622.1 to
7.0.0-dev.20260623.1
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/microsoft/typescript-go/commits">compare
view</a></li>
</ul>
</details>
<br />

Updates `effect` from 4.0.0-beta.85 to 4.0.0-beta.87
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/Effect-TS/effect/commits/HEAD/packages/effect">compare
view</a></li>
</ul>
</details>
<br />

Updates `tldts` from 6.1.86 to 7.4.4
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/remusao/tldts/releases">tldts's
releases</a>.</em></p>
<blockquote>
<h2>v7.4.4</h2>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2614">#2614</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>Authors: 1</h4>
<ul>
<li>Rémi (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
<h2>v7.4.3</h2>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2605">#2605</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>:nut_and_bolt: Dependencies</h4>
<ul>
<li>Bump rollup from 4.61.0 to 4.61.1 <a
href="https://redirect.github.com/remusao/tldts/pull/2602">#2602</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
<li>Bump typescript-eslint from 8.60.0 to 8.60.1 <a
href="https://redirect.github.com/remusao/tldts/pull/2601">#2601</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
<li>Bump rollup from 4.60.4 to 4.61.0 <a
href="https://redirect.github.com/remusao/tldts/pull/2600">#2600</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
</ul>
<h4>Authors: 2</h4>
<ul>
<li><a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a></li>
<li>Rémi (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
<h2>v7.4.2</h2>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2597">#2597</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>:nut_and_bolt: Dependencies</h4>
<ul>
<li>Bump eslint-plugin-prettier from 5.5.5 to 5.5.6 <a
href="https://redirect.github.com/remusao/tldts/pull/2598">#2598</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
</ul>
<h4>Authors: 2</h4>
<ul>
<li><a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a></li>
<li>Rémi (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
<h2>v7.4.1</h2>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts-icann</code>,
<code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2595">#2595</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>:memo: Documentation</h4>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/remusao/tldts/blob/master/CHANGELOG.md">tldts's
changelog</a>.</em></p>
<blockquote>
<h1>v7.4.4 (Tue Jun 23 2026)</h1>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2614">#2614</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>Authors: 1</h4>
<ul>
<li>Rémi (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
<hr />
<h1>v7.4.3 (Mon Jun 15 2026)</h1>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2605">#2605</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>:nut_and_bolt: Dependencies</h4>
<ul>
<li>Bump rollup from 4.61.0 to 4.61.1 <a
href="https://redirect.github.com/remusao/tldts/pull/2602">#2602</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
<li>Bump typescript-eslint from 8.60.0 to 8.60.1 <a
href="https://redirect.github.com/remusao/tldts/pull/2601">#2601</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
<li>Bump rollup from 4.60.4 to 4.61.0 <a
href="https://redirect.github.com/remusao/tldts/pull/2600">#2600</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
</ul>
<h4>Authors: 2</h4>
<ul>
<li><a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a></li>
<li>Rémi (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
<hr />
<h1>v7.4.2 (Sat May 30 2026)</h1>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2597">#2597</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>:nut_and_bolt: Dependencies</h4>
<ul>
<li>Bump eslint-plugin-prettier from 5.5.5 to 5.5.6 <a
href="https://redirect.github.com/remusao/tldts/pull/2598">#2598</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
</ul>
<h4>Authors: 2</h4>
<ul>
<li><a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a></li>
<li>Rémi (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
<hr />
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/remusao/tldts/commit/8712f6f2c91f66365819f798073a3e3ea6efbc12"><code>8712f6f</code></a>
Bump version to: v7.4.4 [skip ci]</li>
<li><a
href="https://github.com/remusao/tldts/commit/e8026b69191af83a4c4c5c0a2c91e86a37cb5198"><code>e8026b6</code></a>
Update CHANGELOG.md [skip ci]</li>
<li><a
href="https://github.com/remusao/tldts/commit/1cd9297dbad125ea53cde0fdc298cd976455ff7f"><code>1cd9297</code></a>
Update upstream public suffix list (<a
href="https://redirect.github.com/remusao/tldts/issues/2614">#2614</a>)</li>
<li><a
href="https://github.com/remusao/tldts/commit/4447fc1a98b7566bdd2f7d054171aaeb261a17db"><code>4447fc1</code></a>
Bump version to: v7.4.3 [skip ci]</li>
<li><a
href="https://github.com/remusao/tldts/commit/c4f38f8a1ffc556caef6b3d3419054377e72176e"><code>c4f38f8</code></a>
Update CHANGELOG.md [skip ci]</li>
<li><a
href="https://github.com/remusao/tldts/commit/4f4ca83bb6f20a541037d355ed80451b505f8e78"><code>4f4ca83</code></a>
Update upstream public suffix list (<a
href="https://redirect.github.com/remusao/tldts/issues/2605">#2605</a>)</li>
<li><a
href="https://github.com/remusao/tldts/commit/e3e66769c2a0d116a82698b16d969b6912f303cd"><code>e3e6676</code></a>
Bump rollup from 4.61.0 to 4.61.1 (<a
href="https://redirect.github.com/remusao/tldts/issues/2602">#2602</a>)</li>
<li><a
href="https://github.com/remusao/tldts/commit/1487cf1695ceaf3a712b1b5647dee1ead8731a5f"><code>1487cf1</code></a>
Bump typescript-eslint from 8.60.0 to 8.60.1 (<a
href="https://redirect.github.com/remusao/tldts/issues/2601">#2601</a>)</li>
<li><a
href="https://github.com/remusao/tldts/commit/744d854f8ccea56f38552f7f03e2fcefde96dd4d"><code>744d854</code></a>
Bump rollup from 4.60.4 to 4.61.0 (<a
href="https://redirect.github.com/remusao/tldts/issues/2600">#2600</a>)</li>
<li><a
href="https://github.com/remusao/tldts/commit/4c41bb21f1d20fd8f71716c3fc7abd97a5e2f2a6"><code>4c41bb2</code></a>
Bump version to: v7.4.2 [skip ci]</li>
<li>Additional commits viewable in <a
href="https://github.com/remusao/tldts/compare/v6.1.86...v7.4.4">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~GitHub%20Actions">GitHub Actions</a>, a new
releaser for tldts since your current version.</p>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Julien Goux <hi@jgoux.dev>
Fixes CLI-1541

Adds Linear release synchronization to the CLI release workflow after
the GitHub Release is published. Stable releases sync when the stable
Linear pipeline key is configured, and beta prereleases sync only when
the beta pipeline key is configured.

The release sync attaches links back to the GitHub Release and the
release workflow run so Linear releases have the published artifact
context reviewers need.
## Summary

Reverts the release workflow handoff from uploaded artifacts back to
`actions/cache` now that the repository has more GitHub cache capacity.

This restores the previous run-scoped cache keys for CLI build outputs
across smoke, publish, Homebrew, Scoop, and preview-package jobs while
keeping the newer pinned `actions/cache` version from the dependency
bump.

Reverts #5740
#5714)

Fixes `supabase db schema declarative sync --experimental` (and other
pg-delta flows) hanging indefinitely at 0% CPU after the shadow-database
work completes.

Closes supabase/pg-toolbelt#312

There are two independent causes, both needed to unblock the command:

## 1. The Edge Runtime worker never exits

The pg-delta scripts run in a one-shot Edge Runtime container and rely
on the event loop draining for the worker to be destroyed and the
container to stop. The catalog-export script opens a real connection
pool (`createManagedPool`); when a keepalive handle stays registered
after `close()` resolves, the worker never exits, so the container never
stops. Only the error path force-closed the loop (`throw new
Error("")`); the success path did not.

Fix: force-close the event loop on the **success** path of every
pg-delta script once its output is flushed, so the worker is torn down
deterministically:

- `templates/pgdelta_catalog_export.ts` — catalog snapshot (the path
reported in #312)
- `templates/pgdelta.ts` — diff SOURCE→TARGET
- `templates/pgdelta_declarative_export.ts` — declarative file export
- `templates/pgdelta_declarative_apply.ts` — apply declarative schema
- the inline catalog-export script in `internal/db/pgcache/cache.go` —
the `db start` / `db push` migrations-catalog cache path

The byte-for-byte embedded copies in `legacy-pgdelta.deno-templates.ts`
are kept in sync.

## 2. Following the container log stream hangs under podman

With the worker now exiting, the container stops — but the parent still
hung for podman users. A goroutine dump on the stuck `__catalog`
subprocess showed the block in `stdcopy.StdCopy` reading the
`Follow:true` Docker log stream (`DockerStreamLogs`): podman's
`/containers/<id>/logs?follow` endpoint does not close when the
container stops, so the read never gets EOF and blocks forever. Docker
closes it, which is why this only reproduced on podman.

Fix: run the bounded edge-runtime scripts via a new
`DockerRunOnceWaitWithConfig`, which detects completion by polling
`ContainerInspect` (reliable on podman) and then reads the buffered logs
**without following**. The shared `DockerStreamLogs` (live streaming for
`functions serve`) and `DockerRunOnceWithConfig` (large streaming output
for `db dump`) are intentionally left unchanged, so only the bounded
pg-delta/edge-runtime path changes behaviour.

Regression coverage is added for both: guard tests asserting each
script's success path force-closes, and a test pinning that the runner
reads captured output and maps the inspected exit code without following
the log stream.

https://claude.ai/code/session_01XbxecW4DVmwgQB1YX321K3

---------

Co-authored-by: Claude <noreply@anthropic.com>
Update the Live E2E workflow schedule from hourly to daily execution.

**Changes:**
- Updated cron schedule from `"23 * * * *"` (hourly) to `"23 6 * * *"`
(daily at 6:23 AM UTC)
- Updated workflow documentation comments to reflect the new daily
cadence
- Updated finalize job comment to reference "next day" instead of "next
hour"

This reduces the frequency of scheduled beta channel testing from every
hour to once per day, which should reduce CI resource usage while still
maintaining regular validation of the `@beta` channel.

https://claude.ai/code/session_01LtXPZUBWv6YFNmMGVKxtY2

Co-authored-by: Claude <noreply@anthropic.com>
## Summary

Improve CLI parser errors when a flag is passed before a subcommand even
though it belongs to descendant subcommands. The formatter now inspects
the command tree and appends a hint with the corrected placement, while
suppressing secondary unknown-subcommand noise caused by the misplaced
flag value.

This fixes the confusing `network-restrictions --project-ref <ref> get
--experimental` output by suggesting `network-restrictions get
--project-ref <value>`.

No linked issue found.
## Summary

- Align next `supabase services` local rows with the stack version
resolution used by `supabase start`, including linked baselines and
local `.temp` overrides.
- Keep legacy `supabase services` on the Go-compatible path: read
`config.toml`, use legacy Postgres image resolution, and preserve the
Deno 1 edge-runtime image override.
- Keep shared service row rendering source-agnostic, with each command
handler supplying the image and version source it actually runs.

## Context

This prevents false local/linked mismatch warnings when config values or
temp pins drift from the runtime source of truth. The next shell now
follows stack runtime versions; the legacy shell follows the
Go-compatible config and image path until it is retired.
This PR was automatically created to sync API types from the
infrastructure repository.

Changes were detected in the generated API code after syncing with the
latest spec from infrastructure.

Co-authored-by: supabase-cli-releaser[bot] <246109035+supabase-cli-releaser[bot]@users.noreply.github.com>
… in /apps/cli-go in the go-minor group across 1 directory (#5757)

Bumps the go-minor group with 1 update in the /apps/cli-go directory:
[github.com/posthog/posthog-go](https://github.com/posthog/posthog-go).

Updates `github.com/posthog/posthog-go` from 1.16.1 to 1.16.2
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/posthog/posthog-go/releases">github.com/posthog/posthog-go's
releases</a>.</em></p>
<blockquote>
<h2>1.16.2</h2>
<h2>Unreleased</h2>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/PostHog/posthog-go/blob/main/CHANGELOG.md">github.com/posthog/posthog-go's
changelog</a>.</em></p>
<blockquote>
<h2>1.16.2</h2>
<h3>Patch Changes</h3>
<ul>
<li>76de226: Dedupe <code>$feature_flag_called</code> events by feature
flag response value.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/PostHog/posthog-go/commit/89309b8b1d09a95b3bdd341cf4ab664f7986f8b3"><code>89309b8</code></a>
chore: release v1.16.2 [version bump] [skip ci]</li>
<li><a
href="https://github.com/PostHog/posthog-go/commit/76de22619371f1900384a1945440f17020481b64"><code>76de226</code></a>
fix: Dedupe feature flag called events by response (<a
href="https://redirect.github.com/posthog/posthog-go/issues/234">#234</a>)</li>
<li>See full diff in <a
href="https://github.com/posthog/posthog-go/compare/v1.16.1...v1.16.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/posthog/posthog-go&package-manager=go_modules&previous-version=1.16.1&new-version=1.16.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the npm-major group with 9 updates:

| Package | From | To |
| --- | --- | --- |
|
[@anthropic-ai/claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-typescript)
| `0.3.187` | `0.3.191` |
|
[@anthropic-ai/sdk](https://github.com/anthropics/anthropic-sdk-typescript)
| `0.105.0` | `0.106.0` |
|
[posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node)
| `5.38.4` | `5.38.5` |
|
[@effect/atom-react](https://github.com/Effect-TS/effect-smol/tree/HEAD/packages/atom/react)
| `4.0.0-beta.87` | `4.0.0-beta.88` |
|
[@effect/platform-bun](https://github.com/Effect-TS/effect/tree/HEAD/packages/platform-bun)
| `4.0.0-beta.87` | `4.0.0-beta.88` |
|
[@effect/platform-node](https://github.com/Effect-TS/effect/tree/HEAD/packages/platform-node)
| `4.0.0-beta.87` | `4.0.0-beta.88` |
|
[@effect/sql-pg](https://github.com/Effect-TS/effect/tree/HEAD/packages/sql-pg)
| `4.0.0-beta.87` | `4.0.0-beta.88` |
|
[@typescript/native-preview](https://github.com/microsoft/typescript-go)
| `7.0.0-dev.20260623.1` | `7.0.0-dev.20260624.1` |
|
[effect](https://github.com/Effect-TS/effect/tree/HEAD/packages/effect)
| `4.0.0-beta.87` | `4.0.0-beta.88` |

Updates `@anthropic-ai/claude-agent-sdk` from 0.3.187 to 0.3.191
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/releases">@​anthropic-ai/claude-agent-sdk's
releases</a>.</em></p>
<blockquote>
<h2>v0.3.191</h2>
<h2>What's changed</h2>
<ul>
<li>Added <code>old_source</code> field to <code>NotebookEdit</code>
tool results for <code>replace</code> and <code>delete</code>
operations, enabling inline diffs</li>
<li>Added <code>seven_day_overage_included</code> to
<code>SDKRateLimitInfo.rateLimitType</code> for per-model weekly usage
limits</li>
<li>Added <code>model_scoped</code> array to usage response for
per-model weekly limit windows with utilization and reset times</li>
<li>Fixed fast mode reverting to standard after the first turn when
<code>settingSources</code> includes user/project settings</li>
</ul>
<h2>Update</h2>
<pre lang="sh"><code>npm install @anthropic-ai/claude-agent-sdk@0.3.191
# or
yarn add @anthropic-ai/claude-agent-sdk@0.3.191
# or
pnpm add @anthropic-ai/claude-agent-sdk@0.3.191
# or
bun add @anthropic-ai/claude-agent-sdk@0.3.191
</code></pre>
<h2>v0.3.190</h2>
<h2>What's changed</h2>
<ul>
<li>Updated to parity with Claude Code v2.1.190</li>
</ul>
<h2>Update</h2>
<pre lang="sh"><code>npm install @anthropic-ai/claude-agent-sdk@0.3.190
# or
yarn add @anthropic-ai/claude-agent-sdk@0.3.190
# or
pnpm add @anthropic-ai/claude-agent-sdk@0.3.190
# or
bun add @anthropic-ai/claude-agent-sdk@0.3.190
</code></pre>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md">@​anthropic-ai/claude-agent-sdk's
changelog</a>.</em></p>
<blockquote>
<h2>0.3.191</h2>
<ul>
<li>Added <code>old_source</code> field to <code>NotebookEdit</code>
tool results for <code>replace</code> and <code>delete</code>
operations, enabling inline diffs</li>
<li>Added <code>seven_day_overage_included</code> to
<code>SDKRateLimitInfo.rateLimitType</code> for per-model weekly usage
limits</li>
<li>Added <code>model_scoped</code> array to usage response for
per-model weekly limit windows with utilization and reset times</li>
<li>Fixed fast mode reverting to standard after the first turn when
<code>settingSources</code> includes user/project settings</li>
</ul>
<h2>0.3.190</h2>
<ul>
<li>Updated to parity with Claude Code v2.1.190</li>
</ul>
<h2>0.3.188</h2>
<ul>
<li>Updated to parity with Claude Code v2.1.188</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/anthropics/claude-agent-sdk-typescript/commit/7eef35db19c40d527a790b06f1a4fad42ff8b078"><code>7eef35d</code></a>
chore: Update CHANGELOG.md</li>
<li><a
href="https://github.com/anthropics/claude-agent-sdk-typescript/commit/b9c030b225bd0c09d31d26d025864dbcde9fcfc5"><code>b9c030b</code></a>
chore: Update CHANGELOG.md</li>
<li>See full diff in <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/compare/v0.3.187...v0.3.191">compare
view</a></li>
</ul>
</details>
<br />

Updates `@anthropic-ai/sdk` from 0.105.0 to 0.106.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/anthropic-sdk-typescript/releases">@​anthropic-ai/sdk's
releases</a>.</em></p>
<blockquote>
<h2>sdk: v0.106.0</h2>
<h2>0.106.0 (2026-06-24)</h2>
<p>Full Changelog: <a
href="https://github.com/anthropics/anthropic-sdk-typescript/compare/sdk-v0.105.0...sdk-v0.106.0">sdk-v0.105.0...sdk-v0.106.0</a></p>
<h3>Features</h3>
<ul>
<li><strong>client:</strong> add support for system.message streaming
events (<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/a7c14b7ffc8295e34d8c159d1374f170d2b87767">a7c14b7</a>)</li>
</ul>
<h3>Bug Fixes</h3>
<ul>
<li><strong>helpers:</strong> single source for x-stainless-helper,
append semantics, and tag the fallback middleware (<a
href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/107">#107</a>)
(<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/106bea081439ece2cb0170e56b24c5f039af5e16">106bea0</a>)</li>
</ul>
<h3>Chores</h3>
<ul>
<li><strong>api:</strong> add support for new refusal category (<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/b38fd01d15bcd519aa66cd640a8ad40310ae9d01">b38fd01</a>)</li>
<li><strong>api:</strong> add support for sending User Profile ID in
request headers (<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/198583e2fc3236f62a85ef7be0bfdfdea2164264">198583e</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/anthropic-sdk-typescript/blob/main/CHANGELOG.md">@​anthropic-ai/sdk's
changelog</a>.</em></p>
<blockquote>
<h2>0.106.0 (2026-06-24)</h2>
<p>Full Changelog: <a
href="https://github.com/anthropics/anthropic-sdk-typescript/compare/sdk-v0.105.0...sdk-v0.106.0">sdk-v0.105.0...sdk-v0.106.0</a></p>
<h3>Features</h3>
<ul>
<li><strong>client:</strong> add support for system.message streaming
events (<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/a7c14b7ffc8295e34d8c159d1374f170d2b87767">a7c14b7</a>)</li>
</ul>
<h3>Bug Fixes</h3>
<ul>
<li><strong>helpers:</strong> single source for x-stainless-helper,
append semantics, and tag the fallback middleware (<a
href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/107">#107</a>)
(<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/106bea081439ece2cb0170e56b24c5f039af5e16">106bea0</a>)</li>
</ul>
<h3>Chores</h3>
<ul>
<li><strong>api:</strong> add support for new refusal category (<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/b38fd01d15bcd519aa66cd640a8ad40310ae9d01">b38fd01</a>)</li>
<li><strong>api:</strong> add support for sending User Profile ID in
request headers (<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/198583e2fc3236f62a85ef7be0bfdfdea2164264">198583e</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/0ffdbfa41186434824e98c90473b5c4ba5501045"><code>0ffdbfa</code></a>
chore: release main (<a
href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/1098">#1098</a>)</li>
<li>See full diff in <a
href="https://github.com/anthropics/anthropic-sdk-typescript/compare/sdk-v0.105.0...sdk-v0.106.0">compare
view</a></li>
</ul>
</details>
<br />

Updates `posthog-node` from 5.38.4 to 5.38.5
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/PostHog/posthog-js/releases">posthog-node's
releases</a>.</em></p>
<blockquote>
<h2>posthog-node@5.38.5</h2>
<h2>5.38.5</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/PostHog/posthog-js/pull/3955">#3955</a>
<a
href="https://github.com/PostHog/posthog-js/commit/8e9689a9018d184b80f32fc4874686d7243970e2"><code>8e9689a</code></a>
Thanks <a
href="https://github.com/marandaneto"><code>@​marandaneto</code></a>! -
Dedupe feature flag called events per returned flag value.
(2026-06-24)</li>
<li>Updated dependencies [<a
href="https://github.com/PostHog/posthog-js/commit/8e9689a9018d184b80f32fc4874686d7243970e2"><code>8e9689a</code></a>]:
<ul>
<li><code>@​posthog/core</code><a
href="https://github.com/1"><code>@​1</code></a>.37.3</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md">posthog-node's
changelog</a>.</em></p>
<blockquote>
<h2>5.38.5</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/PostHog/posthog-js/pull/3955">#3955</a>
<a
href="https://github.com/PostHog/posthog-js/commit/8e9689a9018d184b80f32fc4874686d7243970e2"><code>8e9689a</code></a>
Thanks <a
href="https://github.com/marandaneto"><code>@​marandaneto</code></a>! -
Dedupe feature flag called events per returned flag value.
(2026-06-24)</li>
<li>Updated dependencies [<a
href="https://github.com/PostHog/posthog-js/commit/8e9689a9018d184b80f32fc4874686d7243970e2"><code>8e9689a</code></a>]:
<ul>
<li><code>@​posthog/core</code><a
href="https://github.com/1"><code>@​1</code></a>.37.3</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/PostHog/posthog-js/commit/5c4838f1671ece80d153aaeb6d946bb3e8c8240a"><code>5c4838f</code></a>
chore: update versions and lockfile [version bump]</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/8e9689a9018d184b80f32fc4874686d7243970e2"><code>8e9689a</code></a>
fix: Dedupe feature flag called events by response (<a
href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3955">#3955</a>)</li>
<li>See full diff in <a
href="https://github.com/PostHog/posthog-js/commits/posthog-node@5.38.5/packages/node">compare
view</a></li>
</ul>
</details>
<br />

Updates `@effect/atom-react` from 4.0.0-beta.87 to 4.0.0-beta.88
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/Effect-TS/effect-smol/blob/main/packages/atom/react/CHANGELOG.md">@​effect/atom-react's
changelog</a>.</em></p>
<blockquote>
<h2>4.0.0-beta.88</h2>
<h3>Patch Changes</h3>
<ul>
<li>Updated dependencies [<a
href="https://github.com/Effect-TS/effect-smol/commit/911f1b84790ce42b3a70c95b33e6f6fd9e74de8b"><code>911f1b8</code></a>,
<a
href="https://github.com/Effect-TS/effect-smol/commit/8beeeea52879d8613a39468848f01c3092bd54d4"><code>8beeeea</code></a>,
<a
href="https://github.com/Effect-TS/effect-smol/commit/c306fcfeb1ef38455156932a1faf49292b1318da"><code>c306fcf</code></a>]:
<ul>
<li>effect@4.0.0-beta.88</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/Effect-TS/effect-smol/commit/46b3836f2505c9de34c342994b9197204eefe082"><code>46b3836</code></a>
Version Packages (beta) (<a
href="https://github.com/Effect-TS/effect-smol/tree/HEAD/packages/atom/react/issues/2473">#2473</a>)</li>
<li>See full diff in <a
href="https://github.com/Effect-TS/effect-smol/commits/@effect/atom-react@4.0.0-beta.88/packages/atom/react">compare
view</a></li>
</ul>
</details>
<br />

Updates `@effect/platform-bun` from 4.0.0-beta.87 to 4.0.0-beta.88
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/Effect-TS/effect/commits/HEAD/packages/platform-bun">compare
view</a></li>
</ul>
</details>
<br />

Updates `@effect/platform-node` from 4.0.0-beta.87 to 4.0.0-beta.88
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/Effect-TS/effect/commits/HEAD/packages/platform-node">compare
view</a></li>
</ul>
</details>
<br />

Updates `@effect/sql-pg` from 4.0.0-beta.87 to 4.0.0-beta.88
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/Effect-TS/effect/commits/HEAD/packages/sql-pg">compare
view</a></li>
</ul>
</details>
<br />

Updates `@typescript/native-preview` from 7.0.0-dev.20260623.1 to
7.0.0-dev.20260624.1
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/microsoft/typescript-go/commits">compare
view</a></li>
</ul>
</details>
<br />

Updates `effect` from 4.0.0-beta.87 to 4.0.0-beta.88
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/Effect-TS/effect/commits/HEAD/packages/effect">compare
view</a></li>
</ul>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
## TL;DR 
makes `db query --output-format json` resolve to JSON even when `--agent
no` is used

## ref:
- Closes #5762
## TL;DR

`functions deploy` was excluding monorepo imports outside `supabase/` 

this fixes it by using the nearest git root as the source boundary,
following existing pattern

## ref:

- Closes #3467
- Related #5735
- Related #4550
Follows up on #5753 by letting API sync PRs satisfy the approval
requirement automatically.

This adds a dedicated approval step after the generated API sync PR is
created. The step uses the shared account PAT stored in
`AUTO_APPROVE_PR_PAT`, while the existing GitHub App token continues to
own PR creation and auto-merge setup.
## Current Behavior

Go registers `sso add/update --domains/--add-domains/--remove-domains`
and `postgres-config update/delete --config` as pflag `StringSliceVar`,
which CSV-splits each occurrence (via `encoding/csv`) and accumulates
across repeats. The legacy TS port only supported flag repetition
(`Flag.atLeast(0)`), so a single comma-separated value like `--domains
a.com,b.com` produced one malformed string (`"a.com,b.com"`) instead of
two domains — sent to the API as-is, or (for `postgres-config`) failing
the `key=value` split validation.

Fixes #CLI-1853

## Expected Behavior

`--domains a.com,b.com` (and `--config foo=bar,baz=qux`) now CSV-split
per-occurrence and accumulate across repeats, matching Go's
`pflag.StringSliceVar`/`encoding/csv` semantics exactly — including
quoted-comma handling (`'"a,b",c'` → `["a,b", "c"]`) and Go's
`csv.Reader` malformed-input error messages.

The CSV-parsing algorithm already existed for `--schema` flags (`gen
types`, `db lint`, `db dump`, `db pull`, `db diff`, `db schema
{generate,sync}`) in `legacy-schema-flags.ts`. This extracts the generic
algorithm into a new shared `legacy-string-slice-flag.ts` module
(`legacyParseStringSliceFlag`) so the four newly-fixed flags reuse it
instead of duplicating it; `legacy-schema-flags.ts` now delegates to the
shared module while keeping its schema-specific CSV re-encoder
(`legacySchemaToCsvField`) untouched.

Out of scope: the ticket's "bonus" item (aligning `sso update`'s domains
mutex error message with cobra's group-error template) is deferred — it
depends on the separate functions-mutex-template fix (CLI-1860), which
hasn't landed yet.

CLOSES CLI-1853
…ctive confirm hangs (#5725)

## What changed

`db pull`'s initial-migra path (no local migrations, migra engine) is
now native — it no longer delegates to the bundled Go binary. It seeds
the migration file with a native `pg_dump` of the remote schema, then
appends the migra diff, mirroring Go's `dumpRemoteSchema` +
`diffRemoteSchema(nil)` + `swallowInitialInSync` /
`ensureMigrationWritten`.

The pg_dump machinery is hoisted out of `db/dump/` into
`db/shared/legacy-pg-dump.{scripts,env,run}.ts` and shared by `db dump`
and `db pull`; `db dump` is refactored onto the new shared
`legacyStreamPgDump` runner (no behavior change).

## Non-interactive confirm-prompt hang fix

A new `db pull` live test surfaced a real, pre-existing bug: in **text
mode on a non-TTY stdin** (CI/piped), a confirm prompt **blocks
forever** — clack's `confirm` never resolves without a keypress, so the
intended `Effect.orElseSucceed` default never fires. Go's
`console.PromptYesNo` returns the prompt's default on a non-terminal
without blocking. The handlers now gate on the `Tty` service and take
Go's default before prompting, matching the canonical legacy pattern
(`secrets/unset`, `projects/delete`).

Fixed in the three commands that shared this latent hang:

| Command | Prompt | Non-TTY default |
| --- | --- | --- |
| `db pull` | "Update remote migration history table?" | `true`
(proceeds) |
| `config push` | per-service "Keep it enabled?" / "push `<svc>`
config?" | `true` (proceeds) |
| `logout` | "Do you want to log out?" | `false` (cancels) |

Each gets non-TTY integration coverage; the `db pull` no-hang behavior
is also proven end-to-end by the live test.

## Why

`db dump` is already a native pg_dump port, so the dependency `db pull`
was waiting on (its `"needs pg_dump — delegate to Go"` comment) is gone.
This removes the last Go delegation from the common `db pull` path.

## Still delegated

`db pull --experimental` (structured dump) continues to delegate to Go.
Its blocker is not pg_dump but `format.WriteStructuredSchemas`, which
parses each dumped statement with a PostgreSQL DDL AST parser
(`multigres`, ~50 node types) to route objects into structured files —
there is no TS equivalent yet, so it is tracked separately. (The
statement splitter `parser.Split` and the structured-file writer are
already ported; only the AST router is missing.)

## Reviewer notes

- Parity-sensitive points in `db pull`: stderr ordering (`Dumping
schema…` before `Creating shadow…`), append-vs-overwrite on the diff
pass, `swallowInitialInSync` (an empty diff after a non-empty dump is
success), and the IPv4 transaction-pooler fallback on the dump pass
(warning printed once, not re-printed on the retry — matching Go's
`RunWithPoolerFallback`).
- Adds `*.live.test.ts` for `db dump` and `db pull` that exercise the
real data plane via the `supabase/cli-e2e-ci` harness (Linux only; gated
by `describeLiveProject`). These are the first data-plane live tests in
the repo, and the `db pull` test is what caught the non-TTY hang.
…#5767)

## Summary
- Bump the effect catalog entries (`effect`, `@effect/atom-react`,
`@effect/platform-bun`, `@effect/platform-node`, `@effect/sql-pg`,
`@effect/vitest`) in `pnpm-workspace.yaml` from `4.0.0-beta.88` to
`4.0.0-beta.93`, matching the latest published `beta` dist-tag
- Fast-forward the `.repos/effect` submodule from `49b5a569` to latest
`main` (`455ecc9a`)
- Fix `apps/cli` login handler for the upstream `UrlParams.makeUrl` ->
`Url.make` rename (effect-smol#2518)
…0.3.193 in the npm-major group (#5773)

Bumps the npm-major group with 1 update:
[@anthropic-ai/claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-typescript).

Updates `@anthropic-ai/claude-agent-sdk` from 0.3.191 to 0.3.193
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/releases">@​anthropic-ai/claude-agent-sdk's
releases</a>.</em></p>
<blockquote>
<h2>v0.3.193</h2>
<h2>What's changed</h2>
<ul>
<li>Added <code>promptSuggestions</code> option to Browser SDK
<code>query()</code> to opt the remote CLI into emitting follow-up
suggestions</li>
<li>Fixed brief console window flashes on Windows when spawning CLI
subprocesses</li>
</ul>
<h2>Update</h2>
<pre lang="sh"><code>npm install @anthropic-ai/claude-agent-sdk@0.3.193
# or
yarn add @anthropic-ai/claude-agent-sdk@0.3.193
# or
pnpm add @anthropic-ai/claude-agent-sdk@0.3.193
# or
bun add @anthropic-ai/claude-agent-sdk@0.3.193
</code></pre>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md">@​anthropic-ai/claude-agent-sdk's
changelog</a>.</em></p>
<blockquote>
<h2>0.3.193</h2>
<ul>
<li>Added <code>promptSuggestions</code> option to Browser SDK
<code>query()</code> to opt the remote CLI into emitting follow-up
suggestions</li>
<li>Fixed brief console window flashes on Windows when spawning CLI
subprocesses</li>
</ul>
<h2>0.3.192</h2>
<ul>
<li>Updated to parity with Claude Code v2.1.192</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/anthropics/claude-agent-sdk-typescript/commit/761e2bec6fc34e2de0ae1015fbf0d372f8957b28"><code>761e2be</code></a>
chore: Update CHANGELOG.md</li>
<li>See full diff in <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/compare/v0.3.191...v0.3.193">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@anthropic-ai/claude-agent-sdk&package-manager=npm_and_yarn&previous-version=0.3.191&new-version=0.3.193)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the actions-major group with 2 updates:
[useblacksmith/checkout](https://github.com/useblacksmith/checkout) and
[aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials).

Updates `useblacksmith/checkout` from
41cdeedae8edb2e684ba22896a5fd2a3cb85db6b to
c9796daa2a4bdebdab5bd16be2c09a70cd4e1121
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/useblacksmith/checkout/blob/main/CHANGELOG.md">useblacksmith/checkout's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<h2>V6.0.0</h2>
<ul>
<li>Persist creds to a separate file by <a
href="https://github.com/ericsciple"><code>@​ericsciple</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2286">actions/checkout#2286</a></li>
<li>Update README to include Node.js 24 support details and requirements
by <a href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a>
in <a
href="https://redirect.github.com/actions/checkout/pull/2248">actions/checkout#2248</a></li>
</ul>
<h2>V5.0.1</h2>
<ul>
<li>Port v6 cleanup to v5 by <a
href="https://github.com/ericsciple"><code>@​ericsciple</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2301">actions/checkout#2301</a></li>
</ul>
<h2>V5.0.0</h2>
<ul>
<li>Update actions checkout to use node 24 by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2226">actions/checkout#2226</a></li>
</ul>
<h2>V4.3.1</h2>
<ul>
<li>Port v6 cleanup to v4 by <a
href="https://github.com/ericsciple"><code>@​ericsciple</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2305">actions/checkout#2305</a></li>
</ul>
<h2>V4.3.0</h2>
<ul>
<li>docs: update README.md by <a
href="https://github.com/motss"><code>@​motss</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1971">actions/checkout#1971</a></li>
<li>Add internal repos for checking out multiple repositories by <a
href="https://github.com/mouismail"><code>@​mouismail</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1977">actions/checkout#1977</a></li>
<li>Documentation update - add recommended permissions to Readme by <a
href="https://github.com/benwells"><code>@​benwells</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2043">actions/checkout#2043</a></li>
<li>Adjust positioning of user email note and permissions heading by <a
href="https://github.com/joshmgross"><code>@​joshmgross</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2044">actions/checkout#2044</a></li>
<li>Update README.md by <a
href="https://github.com/nebuk89"><code>@​nebuk89</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2194">actions/checkout#2194</a></li>
<li>Update CODEOWNERS for actions by <a
href="https://github.com/TingluoHuang"><code>@​TingluoHuang</code></a>
in <a
href="https://redirect.github.com/actions/checkout/pull/2224">actions/checkout#2224</a></li>
<li>Update package dependencies by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2236">actions/checkout#2236</a></li>
</ul>
<h2>v4.2.2</h2>
<ul>
<li><code>url-helper.ts</code> now leverages well-known environment
variables by <a href="https://github.com/jww3"><code>@​jww3</code></a>
in <a
href="https://redirect.github.com/actions/checkout/pull/1941">actions/checkout#1941</a></li>
<li>Expand unit test coverage for <code>isGhes</code> by <a
href="https://github.com/jww3"><code>@​jww3</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1946">actions/checkout#1946</a></li>
</ul>
<h2>v4.2.1</h2>
<ul>
<li>Check out other refs/* by commit if provided, fall back to ref by <a
href="https://github.com/orhantoy"><code>@​orhantoy</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1924">actions/checkout#1924</a></li>
</ul>
<h2>v4.2.0</h2>
<ul>
<li>Add Ref and Commit outputs by <a
href="https://github.com/lucacome"><code>@​lucacome</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li>
<li>Dependency updates by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>- <a
href="https://redirect.github.com/actions/checkout/pull/1777">actions/checkout#1777</a>,
<a
href="https://redirect.github.com/actions/checkout/pull/1872">actions/checkout#1872</a></li>
</ul>
<h2>v4.1.7</h2>
<ul>
<li>Bump the minor-npm-dependencies group across 1 directory with 4
updates by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1739">actions/checkout#1739</a></li>
<li>Bump actions/checkout from 3 to 4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1697">actions/checkout#1697</a></li>
<li>Check out other refs/* by commit by <a
href="https://github.com/orhantoy"><code>@​orhantoy</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1774">actions/checkout#1774</a></li>
<li>Pin actions/checkout's own workflows to a known, good, stable
version. by <a href="https://github.com/jww3"><code>@​jww3</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1776">actions/checkout#1776</a></li>
</ul>
<h2>v4.1.6</h2>
<ul>
<li>Check platform to set archive extension appropriately by <a
href="https://github.com/cory-miller"><code>@​cory-miller</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1732">actions/checkout#1732</a></li>
</ul>
<h2>v4.1.5</h2>
<ul>
<li>Update NPM dependencies by <a
href="https://github.com/cory-miller"><code>@​cory-miller</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1703">actions/checkout#1703</a></li>
<li>Bump github/codeql-action from 2 to 3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1694">actions/checkout#1694</a></li>
<li>Bump actions/setup-node from 1 to 4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1696">actions/checkout#1696</a></li>
<li>Bump actions/upload-artifact from 2 to 4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1695">actions/checkout#1695</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/useblacksmith/checkout/commit/c9796daa2a4bdebdab5bd16be2c09a70cd4e1121"><code>c9796da</code></a>
feat(blacksmith-cache): add BLACKSMITH_BYPASS_CHECKOUT control-plane
kill swi...</li>
<li><a
href="https://github.com/useblacksmith/checkout/commit/626e346ec335920dbc1deaaa911380ccbc35254b"><code>626e346</code></a>
clarify(blacksmith-cache): make hydration-in-progress fallback log
explicit (...</li>
<li><a
href="https://github.com/useblacksmith/checkout/commit/e24db849895960b0c2863e7b441998cd0092c104"><code>e24db84</code></a>
Update checkout from private beta to beta (<a
href="https://redirect.github.com/useblacksmith/checkout/issues/24">#24</a>)</li>
<li>See full diff in <a
href="https://github.com/useblacksmith/checkout/compare/41cdeedae8edb2e684ba22896a5fd2a3cb85db6b...c9796daa2a4bdebdab5bd16be2c09a70cd4e1121">compare
view</a></li>
</ul>
</details>
<br />

Updates `aws-actions/configure-aws-credentials` from 6.2.0 to 6.2.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws-actions/configure-aws-credentials/releases">aws-actions/configure-aws-credentials's
releases</a>.</em></p>
<blockquote>
<h2>v6.2.1</h2>
<h2><a
href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.2.0...v6.2.1">6.2.1</a>
(2026-06-26)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>enforce allowed-account-ids on all auth paths (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1847">#1847</a>)
(<a
href="https://github.com/aws-actions/configure-aws-credentials/commit/4d281fbc56a82e63c3fc14f2cc22361f34c97493">4d281fb</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md">aws-actions/configure-aws-credentials's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<p>All notable changes to this project will be documented in this file.
See <a
href="https://github.com/conventional-changelog/standard-version">standard-version</a>
for commit guidelines.</p>
<h2><a
href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.2.0...v6.2.1">6.2.1</a>
(2026-06-26)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>enforce allowed-account-ids on all auth paths (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1847">#1847</a>)
(<a
href="https://github.com/aws-actions/configure-aws-credentials/commit/4d281fbc56a82e63c3fc14f2cc22361f34c97493">4d281fb</a>)</li>
</ul>
<h2><a
href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.1.3...v6.2.0">6.2.0</a>
(2026-06-01)</h2>
<h3>Features</h3>
<ul>
<li>add additional session tags by default (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1775">#1775</a>)
(<a
href="https://github.com/aws-actions/configure-aws-credentials/commit/e0ba7685077379a14a82d01fefd511490344ebfc">e0ba768</a>)</li>
<li>add more retry logic and better logging (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1764">#1764</a>)
(<a
href="https://github.com/aws-actions/configure-aws-credentials/commit/540d0c13aedb8d55501d220bd2f0b3cdedfe84e8">540d0c1</a>)</li>
<li>add regex validation to role-session-name (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1765">#1765</a>)
(<a
href="https://github.com/aws-actions/configure-aws-credentials/commit/e35449909c6ede5083a48ba4b8bbfaaa1cf09ba1">e354499</a>)</li>
<li>Allow custom session tags to be passed when assuming a role (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1759">#1759</a>)
(<a
href="https://github.com/aws-actions/configure-aws-credentials/commit/61f50f630f383628add73c1eab3f1935ba07da2b">61f50f6</a>)</li>
<li>expose run id in STS client user-agent (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1774">#1774</a>)
(<a
href="https://github.com/aws-actions/configure-aws-credentials/commit/29d1be30273e7ef371d59fccf6ec54572c64ec89">29d1be3</a>)</li>
<li>support custom STS endpoints (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1762">#1762</a>)
(<a
href="https://github.com/aws-actions/configure-aws-credentials/commit/8d52d05d7a4521fa52b39de50cb6114b12e5c332">8d52d05</a>)</li>
</ul>
<h3>Bug Fixes</h3>
<ul>
<li>skip credential check on output-env-credentials: false (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1778">#1778</a>)
(<a
href="https://github.com/aws-actions/configure-aws-credentials/commit/58e7c47adf77846879008deadfeeef8a6969fe6c">58e7c47</a>)</li>
<li>assumeRole failing from session tag size too large (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1808">#1808</a>)
(<a
href="https://github.com/aws-actions/configure-aws-credentials/commit/d6f5dc331b44474b19a52caaf85fa4d637b13c8e">d6f5dc3</a>)</li>
</ul>
<h2><a
href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.1.2...v6.1.3">6.1.3</a>
(2026-05-28)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>fix: allow kubelet token symlink in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1805">#1805</a></li>
</ul>
<h2><a
href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.1.1...v6.1.2">6.1.2</a>
(2026-05-26)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>additional filesystem checks (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1799">#1799</a>)
(<a
href="https://github.com/aws-actions/configure-aws-credentials/commit/c39f282697aca8a78c522ecf1f7da9899a31432c">c39f282</a>)</li>
</ul>
<h2><a
href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.1.0...v6.1.1">6.1.1</a>
(2026-05-05)</h2>
<h3>Miscellaneous Chores</h3>
<ul>
<li>various dependency updates</li>
</ul>
<h2><a
href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.0.0...v6.1.0">6.1.0</a>
(2026-04-06)</h2>
<h3>Features</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/aws-actions/configure-aws-credentials/commit/254c19bd240aabef8777f48595e9d2d7b972184b"><code>254c19b</code></a>
chore(main): release 6.2.1 (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1849">#1849</a>)</li>
<li><a
href="https://github.com/aws-actions/configure-aws-credentials/commit/a20cf827fed7baafaae4bd5a5b13c4e01ec52d16"><code>a20cf82</code></a>
chore: Update dist</li>
<li><a
href="https://github.com/aws-actions/configure-aws-credentials/commit/4d281fbc56a82e63c3fc14f2cc22361f34c97493"><code>4d281fb</code></a>
fix: enforce allowed-account-ids on all auth paths (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1847">#1847</a>)</li>
<li><a
href="https://github.com/aws-actions/configure-aws-credentials/commit/e004cdcd2873919dbd2e62aa51128bedb3181599"><code>e004cdc</code></a>
chore(deps-dev): bump <code>@​smithy/property-provider</code> from 4.4.0
to 4.4.2 (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1845">#1845</a>)</li>
<li><a
href="https://github.com/aws-actions/configure-aws-credentials/commit/88aa3695d39bdc4ffcd902ce03587c567df913d3"><code>88aa369</code></a>
chore: Update dist</li>
<li><a
href="https://github.com/aws-actions/configure-aws-credentials/commit/687331b27278daad9d9838f8bddbb1e3c6cbaac0"><code>687331b</code></a>
chore(deps): bump <code>@​aws-sdk/client-sts</code> from 3.1069.0 to
3.1075.0 (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1841">#1841</a>)</li>
<li><a
href="https://github.com/aws-actions/configure-aws-credentials/commit/ea607be060c8e3ae284ff63fe4efcb25815ca966"><code>ea607be</code></a>
chore: Update dist</li>
<li><a
href="https://github.com/aws-actions/configure-aws-credentials/commit/6d136066d82fe4eac695569a7d890a947af01f15"><code>6d13606</code></a>
chore(deps): bump <code>@​smithy/node-http-handler</code> from 4.8.0 to
4.8.2 (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1842">#1842</a>)</li>
<li><a
href="https://github.com/aws-actions/configure-aws-credentials/commit/71a32ae4081db8e73dec8e0fa2efccf6207c4c46"><code>71a32ae</code></a>
chore: Update dist</li>
<li><a
href="https://github.com/aws-actions/configure-aws-credentials/commit/b290f2ca793bd2a4db0dc019b45a841126093958"><code>b290f2c</code></a>
chore(deps-dev): bump <code>@​aws-sdk/credential-provider-env</code> (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1844">#1844</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/aws-actions/configure-aws-credentials/compare/e7f100cf4c008499ea8adda475de1042d6975c7b...254c19bd240aabef8777f48595e9d2d7b972184b">compare
view</a></li>
</ul>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…/apps/cli-go/pkg/config/templates (#5759)

Bumps supabase/postgres from 17.6.1.141 to 17.6.1.142.


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=supabase/postgres&package-manager=docker&previous-version=17.6.1.141&new-version=17.6.1.142)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
This PR was automatically created to sync the generated `@supabase/api`
package with the latest Management API OpenAPI document.

Changes were detected in the upstream OpenAPI document exposed by
`https://api.supabase.com/api/v1-json`.

---------

Co-authored-by: jgoux <1443499+jgoux@users.noreply.github.com>
Co-authored-by: Julien Goux <hi@jgoux.dev>
…emplates with 3 updates (#5758)

Bumps the docker-minor group in /apps/cli-go/pkg/config/templates with 3
updates: supabase/realtime, supabase/storage-api and supabase/logflare.

Updates `supabase/realtime` from v2.112.2 to v2.112.3

Updates `supabase/storage-api` from v1.61.9 to v1.61.11

Updates `supabase/logflare` from 1.45.6 to 1.46.0


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: Julien Goux <hi@jgoux.dev>
## Summary
- Preserve explicit `[db.migrations].schema_paths` order when preparing
declared schemas for `db diff`.
- Expand directory schema path entries deterministically without
overriding explicit file/glob order.
- Use pg-delta declarative apply only when schema_paths is unset or
points directly at the declarative directory.

Fixes #3854

## Testing
- `go test ./internal/db/diff ./internal/db/declarative ./cmd`

---------

Co-authored-by: Julien Goux <hi@jgoux.dev>
…ase setup (#5761)

## What kind of change does this PR introduce?

Adds a `mise.toml` along with enhancements to our `CONTRIBUTING.md` so
first-time contributors have a quick and easy way to install all the
correct versions of all of the required software (Node, Bun, Go,
`golangci-lint`, pnpm) to get tests running.

I tried to minimize the amount of additional configuration, utilizing
existing files (e.g., `.nvmrc`, `go.mod`, `package.json`) as the
respective versioning sources of truth where applicable.

I also chose not to commit [a `mise.lock`
lockfile](https://mise.en.dev/dev-tools/mise-lock.html) for simplicity's
sake but I'm happy to add it if folks want to lean into `mise` further
in this repo.

## What is the current behavior?

If someone clones the repo for the first time, they'll need to manually
download all of the executables (Node, Bun, Go, golangci-lint) and look
in a few different places to determine which versions to use.

## What is the new behavior?

Now, users can install `mise` and run `mise install` and it'll install
the correct versions of all the required software:



https://github.com/user-attachments/assets/4cad1a5c-417c-403a-9ffb-57c88979902b

---------

Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
Co-authored-by: Julien Goux <hi@jgoux.dev>
## What kind of change does this PR introduce?

Follow-up enhancement to #5761. Adds
[a `mise.lock` lockfile](https://mise.jdx.dev/dev-tools/mise-lock.html)
and uses that as our cache key (as opposed to building our own).

## What is the current behavior?

`mise` cache in CI is built by manually grabbing all of the source files
and creating our own hash.

## What is the new behavior?

Uses the `mise.lock` file to create the file hash. Hopefully same
caching behavior as before.
kanadgupta and others added 16 commits July 3, 2026 17:46
## What kind of change does this PR introduce?

Upgrades `golangci-lint` to the latest version, per my findings in
#5778 (comment)

## What is the current behavior?

The build succeeds, but the `golangci-lint` version isn't pointing to an
actual commit in the repo:

```
$ golangci-lint --version
golangci-lint has version v2.1.6 built with go1.25.11 from (unknown, modified: ?, mod sum: "h1:LXqShFfAGM5BDzEOWD2SL1IzJAgUOqES/HRBsfKjI+w=") on (unknown)
```

## What is the new behavior?

The `golangci-lint` version now points to an actual commit in the repo:

```sh
$ golangci-lint --version
golangci-lint has version 2.12.2 built with go1.26.2 from c0d3ddc9 on 2026-05-06T11:07:58Z
```

Hopefully no other changes in behavior!
Bumps the npm-major group with 3 updates:
[@anthropic-ai/claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-typescript),
[posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node)
and
[@typescript/native-preview](https://github.com/microsoft/typescript-go).

Updates `@anthropic-ai/claude-agent-sdk` from 0.3.193 to 0.3.195
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/releases">@​anthropic-ai/claude-agent-sdk's
releases</a>.</em></p>
<blockquote>
<h2>v0.3.195</h2>
<h2>What's changed</h2>
<ul>
<li>Added <code>Query.reinitialize()</code> to re-send the initialize
control request and redeliver pending permission/dialog prompts after a
transport gap</li>
<li>Fixed <code>commands_changed</code> event not being emitted for
synced skills when the skill list resolves before the change-detector
subscribes</li>
</ul>
<h2>Update</h2>
<pre lang="sh"><code>npm install @anthropic-ai/claude-agent-sdk@0.3.195
# or
yarn add @anthropic-ai/claude-agent-sdk@0.3.195
# or
pnpm add @anthropic-ai/claude-agent-sdk@0.3.195
# or
bun add @anthropic-ai/claude-agent-sdk@0.3.195
</code></pre>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md">@​anthropic-ai/claude-agent-sdk's
changelog</a>.</em></p>
<blockquote>
<h2>0.3.195</h2>
<ul>
<li>Added <code>Query.reinitialize()</code> to re-send the initialize
control request and redeliver pending permission/dialog prompts after a
transport gap</li>
<li>Fixed <code>commands_changed</code> event not being emitted for
synced skills when the skill list resolves before the change-detector
subscribes</li>
</ul>
<h2>0.3.194</h2>
<ul>
<li>Updated to parity with Claude Code v2.1.194</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/anthropics/claude-agent-sdk-typescript/commit/b09861c916b7fde909223218695693071e086323"><code>b09861c</code></a>
chore: Update CHANGELOG.md</li>
<li>See full diff in <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/compare/v0.3.193...v0.3.195">compare
view</a></li>
</ul>
</details>
<br />

Updates `posthog-node` from 5.38.5 to 5.38.6
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/PostHog/posthog-js/releases">posthog-node's
releases</a>.</em></p>
<blockquote>
<h2>posthog-node@5.38.6</h2>
<h2>5.38.6</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/PostHog/posthog-js/pull/3896">#3896</a>
<a
href="https://github.com/PostHog/posthog-js/commit/606ef43d69fd09a00a67df2a404d8739cc50c654"><code>606ef43</code></a>
Thanks <a
href="https://github.com/GauthierPLM"><code>@​GauthierPLM</code></a>! -
Only stamp $groups from the top-level <code>groups</code> when present
(2026-06-26)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md">posthog-node's
changelog</a>.</em></p>
<blockquote>
<h2>5.38.6</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/PostHog/posthog-js/pull/3896">#3896</a>
<a
href="https://github.com/PostHog/posthog-js/commit/606ef43d69fd09a00a67df2a404d8739cc50c654"><code>606ef43</code></a>
Thanks <a
href="https://github.com/GauthierPLM"><code>@​GauthierPLM</code></a>! -
Only stamp $groups from the top-level <code>groups</code> when present
(2026-06-26)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/PostHog/posthog-js/commit/d2faa824af1af2cb50b47178fb953bfc8812b389"><code>d2faa82</code></a>
chore: update versions and lockfile [version bump]</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/606ef43d69fd09a00a67df2a404d8739cc50c654"><code>606ef43</code></a>
fix: preserve $groups passed via properties (<a
href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3896">#3896</a>)</li>
<li>See full diff in <a
href="https://github.com/PostHog/posthog-js/commits/posthog-node@5.38.6/packages/node">compare
view</a></li>
</ul>
</details>
<br />

Updates `@typescript/native-preview` from 7.0.0-dev.20260624.1 to
7.0.0-dev.20260626.1
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/microsoft/typescript-go/commits">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~microsoft1es">microsoft1es</a>, a new
releaser for <code>@​typescript/native-preview</code> since your current
version.</p>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
## What changed

- Lets legacy `supabase gen types --project-id` generate Go, Swift, and
Python types by resolving a temporary database connection and running
pg-meta.
- Keeps TypeScript project-ref generation on the Management API typegen
endpoint, while non-TypeScript project-ref flows use the project
database host plus a temporary login role.
- Updates side-effect docs and integration coverage for project-ref type
generation across TypeScript, Go, Swift, and Python.
- Adds e2e coverage for tokenless local typegen and an env-gated live
remote project matrix across all supported typegen languages.

## Why

Python type generation with `--project-id` failed before it could reach
pg-meta, and the first fix used the preview-branch config endpoint.
Production project refs return `404 Preview branch not found` from that
endpoint because `/v1/branches/{ref}` is branch-only.

Non-TypeScript type generation is still pg-meta-based, so project-ref
flows need to construct a live database connection instead of calling
the TypeScript-only typegen endpoint or asking the user to provide
`--db-url`.

## Reviewer context

Non-TypeScript project-ref generation still requires Docker because it
continues to use pg-meta. The change is limited to how the CLI resolves
the database connection for project refs: it fetches the project
database host and creates a temporary login role rather than reading or
storing the project's database password.

The live remote e2e matrix is skipped unless
`SUPABASE_TYPEGEN_E2E_REMOTE=1`, `SUPABASE_TEST_PROJECT_REF`, and
`SUPABASE_ACCESS_TOKEN` are set. The local e2e matrix runs without a
token and points the API profile at an unreachable local URL to catch
accidental Management API usage on the `--local` path.

Closes CLI-1812

---------

Co-authored-by: Claude <noreply@anthropic.com>
Co-authored-by: Julien Goux <hi@jgoux.dev>
…the actions-major group (#5791)

Bumps the actions-major group with 1 update:
[golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action).

Updates `golangci/golangci-lint-action` from 9.2.1 to 9.3.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golangci/golangci-lint-action/releases">golangci/golangci-lint-action's
releases</a>.</em></p>
<blockquote>
<h2>v9.3.0</h2>
<!-- raw HTML omitted -->
<h2>What's Changed</h2>
<h3>Changes</h3>
<ul>
<li>feat: add no-run-logs-group as experimental option by <a
href="https://github.com/ldez"><code>@​ldez</code></a> in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1403">golangci/golangci-lint-action#1403</a></li>
</ul>
<h3>Dependencies</h3>
<ul>
<li>build(deps): bump github/codeql-action from 4.35.4 to 4.35.5 in the
github-actions group by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1395">golangci/golangci-lint-action#1395</a></li>
<li>build(deps): bump tmp from 0.2.5 to 0.2.6 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1397">golangci/golangci-lint-action#1397</a></li>
<li>build(deps): bump github/codeql-action from 4.35.5 to 4.36.0 in the
github-actions group by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1398">golangci/golangci-lint-action#1398</a></li>
<li>build(deps): bump tmp from 0.2.6 to 0.2.7 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1399">golangci/golangci-lint-action#1399</a></li>
<li>build(deps-dev): bump js-yaml from 4.1.1 to 4.2.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1400">golangci/golangci-lint-action#1400</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/golangci/golangci-lint-action/compare/v9.2.1...v9.3.0">https://github.com/golangci/golangci-lint-action/compare/v9.2.1...v9.3.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/golangci/golangci-lint-action/commit/ba0d7d2ec06a0ea1cb5fa41b2e4a3ab91d21278a"><code>ba0d7d2</code></a>
chore: prepare release v9.3.0</li>
<li><a
href="https://github.com/golangci/golangci-lint-action/commit/efd0857dc49487d73b2e08936ea47b04e894a2b1"><code>efd0857</code></a>
feat: add no-run-logs-group as experimental option (<a
href="https://redirect.github.com/golangci/golangci-lint-action/issues/1403">#1403</a>)</li>
<li><a
href="https://github.com/golangci/golangci-lint-action/commit/ed485de1ff3b974c764ba768d82dda2e035d091e"><code>ed485de</code></a>
build(deps): bump undici from 6.24.0 to 6.27.0</li>
<li><a
href="https://github.com/golangci/golangci-lint-action/commit/8872e8d04c73fcdce3d942f99fbbe16ea722b6de"><code>8872e8d</code></a>
build(deps-dev): bump js-yaml from 4.1.1 to 4.2.0 (<a
href="https://redirect.github.com/golangci/golangci-lint-action/issues/1400">#1400</a>)</li>
<li><a
href="https://github.com/golangci/golangci-lint-action/commit/b163415b470349e75dbab89538e4165e7402f2b9"><code>b163415</code></a>
build(deps): bump tmp from 0.2.6 to 0.2.7 (<a
href="https://redirect.github.com/golangci/golangci-lint-action/issues/1399">#1399</a>)</li>
<li><a
href="https://github.com/golangci/golangci-lint-action/commit/e52a9f899623adbdb986c05b9a8f7a8cf4138fc3"><code>e52a9f8</code></a>
build(deps): bump github/codeql-action from 4.35.5 to 4.36.0 in the
github-ac...</li>
<li><a
href="https://github.com/golangci/golangci-lint-action/commit/8182aa34940a5c3d28dbb24ce802921d8aa7b434"><code>8182aa3</code></a>
build(deps): bump tmp from 0.2.5 to 0.2.6 (<a
href="https://redirect.github.com/golangci/golangci-lint-action/issues/1397">#1397</a>)</li>
<li><a
href="https://github.com/golangci/golangci-lint-action/commit/5403a413dee20909aad15f1ecb21377539fcc4df"><code>5403a41</code></a>
build(deps): bump github/codeql-action from 4.35.4 to 4.35.5 in the
github-ac...</li>
<li>See full diff in <a
href="https://github.com/golangci/golangci-lint-action/compare/82606bf257cbaff209d206a39f5134f0cfbfd2ee...ba0d7d2ec06a0ea1cb5fa41b2e4a3ab91d21278a">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golangci/golangci-lint-action&package-manager=github_actions&previous-version=9.2.1&new-version=9.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…#5790)

Bumps the npm-major group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [fumadocs-core](https://github.com/fuma-nama/fumadocs) | `16.10.5` |
`16.10.6` |
| [fumadocs-mdx](https://github.com/fuma-nama/fumadocs) | `15.0.12` |
`15.0.13` |
| [fumadocs-ui](https://github.com/fuma-nama/fumadocs) | `16.10.5` |
`16.10.6` |
|
[@typescript/native-preview](https://github.com/microsoft/typescript-go)
| `7.0.0-dev.20260626.1` | `7.0.0-dev.20260628.1` |
| [tldts](https://github.com/remusao/tldts) | `6.1.86` | `7.4.5` |


Updates `fumadocs-core` from 16.10.5 to 16.10.6
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/593302d01c6e7b95c93a6a5f91227cc25f3386f3"><code>593302d</code></a>
Version Packages (<a
href="https://redirect.github.com/fuma-nama/fumadocs/issues/3382">#3382</a>)</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/923e5819fb8c4e5b84a25a9288607c2e0726bf94"><code>923e581</code></a>
docs: add more FAQs</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/9fae790dba9baf26f84d86bbe58078ae8de60509"><code>9fae790</code></a>
add missing changesets</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/6ab44adc3b080a3427c333a53d47e4da81d5c5be"><code>6ab44ad</code></a>
update lock file</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/b0381838dc2a1cd519a8c90213c00604613914e6"><code>b038183</code></a>
fix(local-md): fix deprecation warnings</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/4bf7f0d01594424c3d0b91ec1e02bd4ca8a8352d"><code>4bf7f0d</code></a>
fix(tanstack-start-spa): remove getPageMarkdownUrl, unused and identical
to s...</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/d0b57c828e54918b600fa5c94ed687f89dfb38b5"><code>d0b57c8</code></a>
fix(api-docs): inline ref-parser</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/839e3aaa45924730f7e3cc13403ea22b0112e20a"><code>839e3aa</code></a>
feat(core): handle BASE_PATH automatically</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/88d1a8a14986ea29b319e9575e64ee7df556ef56"><code>88d1a8a</code></a>
fix(tanstack-start): api search for SPA with serve (<a
href="https://redirect.github.com/fuma-nama/fumadocs/issues/3378">#3378</a>)</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/4abdb050e4cfc0c6e06ca75869885b970c5fb078"><code>4abdb05</code></a>
refactor: use cnfast</li>
<li>Additional commits viewable in <a
href="https://github.com/fuma-nama/fumadocs/compare/fumadocs@16.10.5...fumadocs@16.10.6">compare
view</a></li>
</ul>
</details>
<br />

Updates `fumadocs-mdx` from 15.0.12 to 15.0.13
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/fuma-nama/fumadocs/releases">fumadocs-mdx's
releases</a>.</em></p>
<blockquote>
<h2>fumadocs-mdx@15.0.13</h2>
<h3>Require <code>collection</code> query param at regex matching</h3>
<p>Instead of passing through all JSON/YAML files, the meta loader now
requires <code>collection</code> query param to be triggered.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/47b8b635b95c305a07a307baaafa7e81873f9132"><code>47b8b63</code></a>
Version Packages (<a
href="https://redirect.github.com/fuma-nama/fumadocs/issues/3384">#3384</a>)</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/baacf1a67df9d14d768da70dde0f9fe0ed3003cd"><code>baacf1a</code></a>
perf(mdx): require <code>collection</code> query param at regex
matching</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/593302d01c6e7b95c93a6a5f91227cc25f3386f3"><code>593302d</code></a>
Version Packages (<a
href="https://redirect.github.com/fuma-nama/fumadocs/issues/3382">#3382</a>)</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/923e5819fb8c4e5b84a25a9288607c2e0726bf94"><code>923e581</code></a>
docs: add more FAQs</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/9fae790dba9baf26f84d86bbe58078ae8de60509"><code>9fae790</code></a>
add missing changesets</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/6ab44adc3b080a3427c333a53d47e4da81d5c5be"><code>6ab44ad</code></a>
update lock file</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/b0381838dc2a1cd519a8c90213c00604613914e6"><code>b038183</code></a>
fix(local-md): fix deprecation warnings</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/4bf7f0d01594424c3d0b91ec1e02bd4ca8a8352d"><code>4bf7f0d</code></a>
fix(tanstack-start-spa): remove getPageMarkdownUrl, unused and identical
to s...</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/d0b57c828e54918b600fa5c94ed687f89dfb38b5"><code>d0b57c8</code></a>
fix(api-docs): inline ref-parser</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/839e3aaa45924730f7e3cc13403ea22b0112e20a"><code>839e3aa</code></a>
feat(core): handle BASE_PATH automatically</li>
<li>Additional commits viewable in <a
href="https://github.com/fuma-nama/fumadocs/compare/fumadocs-mdx@15.0.12...fumadocs-mdx@15.0.13">compare
view</a></li>
</ul>
</details>
<br />

Updates `fumadocs-ui` from 16.10.5 to 16.10.6
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/593302d01c6e7b95c93a6a5f91227cc25f3386f3"><code>593302d</code></a>
Version Packages (<a
href="https://redirect.github.com/fuma-nama/fumadocs/issues/3382">#3382</a>)</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/923e5819fb8c4e5b84a25a9288607c2e0726bf94"><code>923e581</code></a>
docs: add more FAQs</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/9fae790dba9baf26f84d86bbe58078ae8de60509"><code>9fae790</code></a>
add missing changesets</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/6ab44adc3b080a3427c333a53d47e4da81d5c5be"><code>6ab44ad</code></a>
update lock file</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/b0381838dc2a1cd519a8c90213c00604613914e6"><code>b038183</code></a>
fix(local-md): fix deprecation warnings</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/4bf7f0d01594424c3d0b91ec1e02bd4ca8a8352d"><code>4bf7f0d</code></a>
fix(tanstack-start-spa): remove getPageMarkdownUrl, unused and identical
to s...</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/d0b57c828e54918b600fa5c94ed687f89dfb38b5"><code>d0b57c8</code></a>
fix(api-docs): inline ref-parser</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/839e3aaa45924730f7e3cc13403ea22b0112e20a"><code>839e3aa</code></a>
feat(core): handle BASE_PATH automatically</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/88d1a8a14986ea29b319e9575e64ee7df556ef56"><code>88d1a8a</code></a>
fix(tanstack-start): api search for SPA with serve (<a
href="https://redirect.github.com/fuma-nama/fumadocs/issues/3378">#3378</a>)</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/4abdb050e4cfc0c6e06ca75869885b970c5fb078"><code>4abdb05</code></a>
refactor: use cnfast</li>
<li>Additional commits viewable in <a
href="https://github.com/fuma-nama/fumadocs/compare/fumadocs@16.10.5...fumadocs@16.10.6">compare
view</a></li>
</ul>
</details>
<br />

Updates `@typescript/native-preview` from 7.0.0-dev.20260626.1 to
7.0.0-dev.20260628.1
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/microsoft/typescript-go/commits">compare
view</a></li>
</ul>
</details>
<br />

Updates `tldts` from 6.1.86 to 7.4.5
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/remusao/tldts/releases">tldts's
releases</a>.</em></p>
<blockquote>
<h2>v7.4.5</h2>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2617">#2617</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>Authors: 1</h4>
<ul>
<li>Rémi (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
<h2>v7.4.4</h2>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2614">#2614</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>Authors: 1</h4>
<ul>
<li>Rémi (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
<h2>v7.4.3</h2>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2605">#2605</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>:nut_and_bolt: Dependencies</h4>
<ul>
<li>Bump rollup from 4.61.0 to 4.61.1 <a
href="https://redirect.github.com/remusao/tldts/pull/2602">#2602</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
<li>Bump typescript-eslint from 8.60.0 to 8.60.1 <a
href="https://redirect.github.com/remusao/tldts/pull/2601">#2601</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
<li>Bump rollup from 4.60.4 to 4.61.0 <a
href="https://redirect.github.com/remusao/tldts/pull/2600">#2600</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
</ul>
<h4>Authors: 2</h4>
<ul>
<li><a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a></li>
<li>Rémi (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
<h2>v7.4.2</h2>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2597">#2597</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>:nut_and_bolt: Dependencies</h4>
<ul>
<li>Bump eslint-plugin-prettier from 5.5.5 to 5.5.6 <a
href="https://redirect.github.com/remusao/tldts/pull/2598">#2598</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
</ul>
<h4>Authors: 2</h4>
<ul>
<li><a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/remusao/tldts/blob/master/CHANGELOG.md">tldts's
changelog</a>.</em></p>
<blockquote>
<h1>v7.4.5 (Sun Jun 28 2026)</h1>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2617">#2617</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>Authors: 1</h4>
<ul>
<li>Rémi (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
<hr />
<h1>v7.4.4 (Tue Jun 23 2026)</h1>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2614">#2614</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>Authors: 1</h4>
<ul>
<li>Rémi (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
<hr />
<h1>v7.4.3 (Mon Jun 15 2026)</h1>
<h4>:scroll: Update Public Suffix List</h4>
<ul>
<li><code>tldts-experimental</code>, <code>tldts</code>
<ul>
<li>Update upstream public suffix list <a
href="https://redirect.github.com/remusao/tldts/pull/2605">#2605</a> (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
</li>
</ul>
<h4>:nut_and_bolt: Dependencies</h4>
<ul>
<li>Bump rollup from 4.61.0 to 4.61.1 <a
href="https://redirect.github.com/remusao/tldts/pull/2602">#2602</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
<li>Bump typescript-eslint from 8.60.0 to 8.60.1 <a
href="https://redirect.github.com/remusao/tldts/pull/2601">#2601</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
<li>Bump rollup from 4.60.4 to 4.61.0 <a
href="https://redirect.github.com/remusao/tldts/pull/2600">#2600</a> (<a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a>)</li>
</ul>
<h4>Authors: 2</h4>
<ul>
<li><a
href="https://github.com/dependabot%5Bbot%5D"><code>@​dependabot[bot]</code></a></li>
<li>Rémi (<a
href="https://github.com/remusao"><code>@​remusao</code></a>)</li>
</ul>
<hr />
<h1>v7.4.2 (Sat May 30 2026)</h1>
<h4>:scroll: Update Public Suffix List</h4>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/remusao/tldts/commit/a854d8c53d2e65ece5a1c09dac5723308f13ec20"><code>a854d8c</code></a>
Bump version to: v7.4.5 [skip ci]</li>
<li><a
href="https://github.com/remusao/tldts/commit/ec23b8e273db2c03303d8034b34e2dc747067788"><code>ec23b8e</code></a>
Update CHANGELOG.md [skip ci]</li>
<li><a
href="https://github.com/remusao/tldts/commit/ef6c3b01f33d357b7258a114a673a9788a9c4ff6"><code>ef6c3b0</code></a>
Update upstream public suffix list (<a
href="https://redirect.github.com/remusao/tldts/issues/2617">#2617</a>)</li>
<li><a
href="https://github.com/remusao/tldts/commit/8712f6f2c91f66365819f798073a3e3ea6efbc12"><code>8712f6f</code></a>
Bump version to: v7.4.4 [skip ci]</li>
<li><a
href="https://github.com/remusao/tldts/commit/e8026b69191af83a4c4c5c0a2c91e86a37cb5198"><code>e8026b6</code></a>
Update CHANGELOG.md [skip ci]</li>
<li><a
href="https://github.com/remusao/tldts/commit/1cd9297dbad125ea53cde0fdc298cd976455ff7f"><code>1cd9297</code></a>
Update upstream public suffix list (<a
href="https://redirect.github.com/remusao/tldts/issues/2614">#2614</a>)</li>
<li><a
href="https://github.com/remusao/tldts/commit/4447fc1a98b7566bdd2f7d054171aaeb261a17db"><code>4447fc1</code></a>
Bump version to: v7.4.3 [skip ci]</li>
<li><a
href="https://github.com/remusao/tldts/commit/c4f38f8a1ffc556caef6b3d3419054377e72176e"><code>c4f38f8</code></a>
Update CHANGELOG.md [skip ci]</li>
<li><a
href="https://github.com/remusao/tldts/commit/4f4ca83bb6f20a541037d355ed80451b505f8e78"><code>4f4ca83</code></a>
Update upstream public suffix list (<a
href="https://redirect.github.com/remusao/tldts/issues/2605">#2605</a>)</li>
<li><a
href="https://github.com/remusao/tldts/commit/e3e66769c2a0d116a82698b16d969b6912f303cd"><code>e3e6676</code></a>
Bump rollup from 4.61.0 to 4.61.1 (<a
href="https://redirect.github.com/remusao/tldts/issues/2602">#2602</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/remusao/tldts/compare/v6.1.86...v7.4.5">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~GitHub%20Actions">GitHub Actions</a>, a new
releaser for tldts since your current version.</p>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
## Current Behavior

Go gates `postgres-config {get,update,delete}`, `ssl-enforcement
{get,update}`, and `network-bans {get,remove}` behind the global
`--experimental` flag in the root `PersistentPreRunE`
(`apps/cli-go/cmd/root.go:56-93`). The TS port's
`legacyRequireExperimental` helper
(`shared/legacy-experimental-gate.ts`) was wired only into the storage
leaves, so these 7 commands ran unconditionally, without ever requiring
`--experimental`.

Fixes #CLI-1854

## Expected Behavior

All 7 leaves now fail with `must set the --experimental flag to run this
command` unless `--experimental` (or `SUPABASE_EXPERIMENTAL`) is set,
matching Go exactly.

Wiring this in required more than adding a `yield*` line:
`legacyManagementApiRuntimeLayer` (used by all 7 leaves) eagerly
resolves an access token as part of its own layer construction. Since
`Command.provide(layer)` builds that layer *before* the handler body's
first yield ever runs, leaving the gate check inside the handler while
the layer stayed on `Command.provide` would let a missing-token error
mask the missing-`--experimental` error — verified against the built
binary before the fix (`postgres-config get` with no credentials and no
`--experimental` showed `LegacyPlatformAuthRequiredError`, not the gate
error). Each leaf now moves `legacyManagementApiRuntimeLayer` to an
inline `Effect.provide` applied *after* the gate check, matching Go's
actual `PersistentPreRunE` order (experimental check, then the
`IsManagementAPI` login check — `root.go:91-109`). Re-verified against
the built binary post-fix for all 7 leaves.

Also corrects the `legacy-experimental-gate.ts` doc comment, which
previously had cobra's `PersistentPreRunE`/`ValidateFlagGroups` ordering
backwards, and now accurately notes that the 4 pre-existing storage
leaves still have the mutex-check-before-gate ordering bug (tracked
separately) rather than presenting their ordering as the correct example
to copy.
…an-ip (#5769)

## Current Behavior

`supabase network-bans remove --project-ref <bad-ref> --db-unban-ip
<bad-ip>` surfaces the invalid-IP error first, because the TS handler
validated `--db-unban-ip` before resolving the project ref.

## Expected Behavior

Go resolves the project ref in `PersistentPreRunE`, which cobra always
runs before `RunE`'s IP validation (`cmd/root.go:108-114` vs
`internal/bans/update/update.go:12-25`). So an invalid ref must surface
before an invalid IP, matching Go. The handler now resolves the ref
first, and the IP validation loop runs inside the same
`Effect.ensuring(linkedProjectCache.cache(ref))` scope that Go's
`ensureProjectGroupsCached` mirrors.

Added regression tests covering both the unresolved-ref (no linked
project) and invalid-ref (`--project-ref BADREF`) cases combined with an
invalid `--db-unban-ip`, asserting the ref error wins and no API call is
made.

Fixes CLI-1856
## Current Behavior

cobra auto-registers a `--no-descriptions` flag on the
`bash`/`zsh`/`fish`/`powershell` completion subcommands whenever
descriptions are enabled, which is the Go CLI's default. The TS proxy
commands declared no flags at all, so `supabase completion zsh
--no-descriptions` (and the other three shells) failed with an
UnrecognizedOption error in TS before ever reaching the Go binary.

## Expected Behavior

Each of the four completion leaves now declares `--no-descriptions`
(name, default, and description matching cobra's
`compCmdNoDescFlagName`/`compCmdNoDescFlagDefault`/`compCmdNoDescFlagDesc`
constants exactly) and forwards it to the Go binary proxy. Since the
flag is identical across all four leaves in the same command family,
it's hoisted into `completion.flags.ts` rather than redeclared four
times, following the same pattern already used for `--linked`/`--local`
in `storage.flags.ts`.

Fixes CLI-1858
## Current Behavior

Go's cobra runs `PersistentPreRunE` (which includes the `--experimental`
gate, `apps/cli-go/cmd/root.go:91-96`) before `ValidateFlagGroups()`
(mutual-exclusivity checks, `cobra@v1.10.2/command.go:985,1010`). The TS
port's `storage ls/cp/mv/rm` had this backwards — checking
`--linked`/`--local` exclusivity before the `--experimental` gate — so
`supabase storage ls --linked --local` (without `--experimental`)
surfaced the mutex error in TS instead of Go's "must set the
--experimental flag" error.

Fixes CLI-1855

## Expected Behavior

All 4 storage leaves now run the experimental gate first, matching Go's
precedence exactly (verified against the built binary). Also corrects
the inline comments in those files and the shared
`legacy-experimental-gate.ts` doc, which claimed Go gates experimental
"after flag-group validation" — this was backwards per cobra's actual
execution order.

An existing e2e test (`storage.e2e.test.ts`) asserted the old (wrong)
precedence for `--linked --local` without `--experimental`; fixed it to
add `--experimental` so it keeps testing the mutex message it originally
intended, at the real subprocess boundary. New ordering coverage for all
4 leaves lives in a new integration suite
(`storage.experimental-gate.integration.test.ts`) rather than
duplicating it in e2e, per this repo's e2e scope policy.

Out of scope: the same gate-vs-mutex-check ordering bug also exists in
`db schema declarative generate`/`sync` (verified against Go source),
unrelated command family — filing as a separate follow-up rather than
expanding this PR.
…tus (#5770)

## Current Behavior

The TS `status` command only declares `--override-name`. Go's `status`
also registers two hidden flags, `--exclude` and `--ignore-health-check`
(`cmd/status.go:38-42`). Because the Effect CLI parser rejects
undeclared flags before the command proxies to the Go binary, `supabase
status --exclude db` and `supabase status --ignore-health-check` fail
with an UnrecognizedOption error in TS while working fine in Go.

## Expected Behavior

Both flags are now declared as hidden (matching Go's `MarkHidden`) and
forwarded verbatim to the Go binary proxy, following the same pattern
already used for `--override-name` and for `start`'s hidden flags.
`SIDE_EFFECTS.md` documents the new flags with references to the Go
source lines they mirror.

Fixes CLI-1857
Trims unit tests that only asserted exported symbols, object shape, or
redundant constant properties, while keeping package export contracts
that guard real behavior.

Removes low-value literal default-version assertions from the stack unit
tests without adding new CI surface area.

Strengthens JWT generation coverage by checking the decoded header and
payload plus the HMAC signature instead of only checking that the token
has three segments.
## What

Make `supabase gen types --local` honor
`SUPABASE_INTERNAL_IMAGE_REGISTRY` for **any** registry when pulling the
`postgres-meta` image, instead of only special-casing `docker.io`.

Closes #5785.

## Why

On GitHub-hosted runners (shared egress IPs), `public.ecr.aws` is
frequently rate-limited. `supabase/setup-cli` exports
`SUPABASE_INTERNAL_IMAGE_REGISTRY=ghcr.io` precisely to avoid this
(`core.exportVariable(CLI_CONFIG_REGISTRY, "ghcr.io")`). `supabase
start` honors it, but `gen types` did not: it kept running `docker run
public.ecr.aws/supabase/postgres-meta:<tag>` and failed with

```
docker: toomanyrequests: Rate exceeded
```

even with `SUPABASE_INTERNAL_IMAGE_REGISTRY=ghcr.io` set in the step
env.

### Root cause

- `apps/cli/src/legacy/commands/gen/types/types.handler.ts` —
`runPgMeta` spawns the container with `resolvePgmetaImage(...)`.
- `apps/cli/src/legacy/commands/gen/types/types.shared.ts` —
`resolvePgmetaImage` only special-cased
`SUPABASE_INTERNAL_IMAGE_REGISTRY === "docker.io"`; any other value fell
through to `dockerImageForService`.
- `packages/stack/src/versions.ts` — `dockerImageForService` hardcodes
`DEFAULT_REGISTRY = "public.ecr.aws/supabase"` and does not read the env
var.

The Go CLI honored the override (with multi-registry fallback) via
`GetRegistryImageUrl` in `apps/cli-go/internal/utils/docker.go`, so this
is a regression in the TypeScript rewrite.

## How

Resolve the image through the existing `legacyGetRegistryImageUrl`
helper (`apps/cli/src/legacy/shared/legacy-docker-registry.ts`) — the
documented 1:1 port of Go's `GetRegistryImageUrl`, already used by
`supabase start` and `test db` (`test/db/db.handler.ts` for `pg_prove`).
It honors `SUPABASE_INTERNAL_IMAGE_REGISTRY` for any registry, returns
Docker Hub images unchanged for `docker.io`, and defaults to the ECR
mirror when unset.

Output is unchanged in the two pre-existing cases:

| `SUPABASE_INTERNAL_IMAGE_REGISTRY` | before | after |
| --- | --- | --- |
| _(unset)_ | `public.ecr.aws/supabase/postgres-meta:v<tag>` |
`public.ecr.aws/supabase/postgres-meta:v<tag>` |
| `docker.io` | `supabase/postgres-meta:v<tag>` |
`supabase/postgres-meta:v<tag>` |
| `ghcr.io` | `public.ecr.aws/supabase/postgres-meta:v<tag>` ❌ |
`ghcr.io/supabase/postgres-meta:v<tag>` ✅ |
| `my.registry` | `public.ecr.aws/supabase/postgres-meta:v<tag>` ❌ |
`my.registry/supabase/postgres-meta:v<tag>` ✅ |

## Tests

Added regression guards in `types.unit.test.ts` for the default (ECR),
`ghcr.io`, and an arbitrary mirror. The `ghcr.io` case fails against the
old code.

- `types.unit.test.ts`: 26/26 pass
- `types.integration.test.ts`: 71/71 pass
- `types:check` / `lint:check` / `fmt:check` / `knip:check`: clean

---------

Co-authored-by: swiflyme <252834199+swiflyme@users.noreply.github.com>
Co-authored-by: Claude Fable 5 <noreply@anthropic.com>
Co-authored-by: Julien Goux <hi@jgoux.dev>
…emplates with 2 updates (#5781)

Bumps the docker-minor group in /apps/cli-go/pkg/config/templates with 2
updates: supabase/realtime and supabase/storage-api.

Updates `supabase/realtime` from v2.112.3 to v2.112.4

Updates `supabase/storage-api` from v1.61.11 to v1.61.13


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: Julien Goux <hi@jgoux.dev>
This PR was automatically created to sync API types from the
infrastructure repository.

Changes were detected in the generated API code after syncing with the
latest spec from infrastructure.

Co-authored-by: supabase-cli-releaser[bot] <246109035+supabase-cli-releaser[bot]@users.noreply.github.com>
…n /apps/cli-go in the go-minor group across 1 directory (#5805)

Bumps the go-minor group with 1 update in the /apps/cli-go directory:
[github.com/posthog/posthog-go](https://github.com/posthog/posthog-go).

Updates `github.com/posthog/posthog-go` from 1.16.2 to 1.17.2
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/posthog/posthog-go/releases">github.com/posthog/posthog-go's
releases</a>.</em></p>
<blockquote>
<h2>1.17.2</h2>
<h2>Unreleased</h2>
<h2>1.17.1</h2>
<h2>Unreleased</h2>
<h2>1.17.0</h2>
<h2>Unreleased</h2>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/PostHog/posthog-go/blob/main/CHANGELOG.md">github.com/posthog/posthog-go's
changelog</a>.</em></p>
<blockquote>
<h2>1.17.2</h2>
<h3>Patch Changes</h3>
<ul>
<li>d98ef79: Retry feature flag requests after transient network errors
only. The feature flag request retry count defaults to 1 and can be set
to 0 to disable retries.</li>
</ul>
<h2>1.17.1</h2>
<h3>Patch Changes</h3>
<ul>
<li>651b303: Preserve caller-provided system context values when
building capture v1 event properties.</li>
<li>e0eb8bd: Send capture batches uncompressed when request-body
compression fails instead of failing the batch.</li>
<li>71f5c2e: Expose capture default properties to BeforeSend hooks
before serialization.</li>
</ul>
<h2>1.17.0</h2>
<h3>Minor Changes</h3>
<ul>
<li>ff0e74b: Enrich capture-v1 failure reporting with typed errors and
verbose result logging. When <code>CaptureMode</code> is
<code>CaptureModeAnalyticsV1</code>, <code>Callback.Failure</code> now
receives either a <code>*CaptureEventError</code> (a single event the
server dropped, or one still asking to retry once attempts are exhausted
— exposing <code>EventUUID</code>, <code>Result</code>,
<code>Details</code>, and <code>Exhausted</code>) or a
<code>*CaptureRequestError</code> (a whole request that failed on a
non-2xx status, transport error, or malformed body — exposing
<code>StatusCode</code>, <code>Code</code>, <code>Description</code>,
and unwrapping to the underlying error). Inspect them with
<code>errors.As</code>. Additionally, with <code>Verbose: true</code>
the SDK logs one debug line per 2xx response summarizing the per-event
directive counts (ok/warning/drop/retry/other) so partial-submission
outcomes are easy to debug. The legacy path and its callback errors are
unchanged.</li>
<li>ff0e74b: Add opt-in capture-v1 support via a new
<code>Config.CaptureMode</code> option. It defaults to
<code>CaptureModeLegacy</code> (the existing <code>POST /batch/</code>
endpoint), so upgrading is transparent and requires no code changes. Set
<code>CaptureMode: posthog.CaptureModeAnalyticsV1</code> to send events
to <code>POST /i/v1/analytics/events</code> instead, which uses Bearer
auth, per-event delivery results, and partial retry (only the events the
server asks to retry are re-sent). For v1, the <code>Callback</code>
interface is unchanged but outcomes become per-event: a
<code>drop</code> result fails an individual event (and can fire
<code>Failure</code> on an HTTP 200), <code>warning</code> counts as
success, and a uuid missing from the results is silently dropped. All
other configuration (host, API key, <code>Callback</code>,
<code>Logger</code>, <code>MaxRetries</code>, <code>Compression</code>)
is reused across both modes.</li>
<li>ff0e74b: Add zstd, deflate, and brotli compression for the
capture-v1 path, alongside the existing gzip. Select one via
<code>Config.Compression</code> (<code>CompressionZstd</code>,
<code>CompressionDeflate</code>, <code>CompressionBrotli</code>) and the
SDK sets the matching <code>Content-Encoding</code> header
(<code>zstd</code>, <code>deflate</code>, <code>br</code>). These three
codecs require <code>CaptureMode: posthog.CaptureModeAnalyticsV1</code>
— the legacy <code>POST /batch/</code> endpoint only understands gzip,
so configuring them with <code>CaptureModeLegacy</code> returns a
validation error. <code>CompressionGzip</code> and
<code>CompressionNone</code> continue to work on both capture modes. All
codecs use pure-Go libraries (stdlib <code>compress/zlib</code>,
<code>github.com/klauspost/compress/zstd</code>,
<code>github.com/andybalholm/brotli</code>), so
<code>CGO_ENABLED=0</code> builds are unaffected.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/PostHog/posthog-go/commit/c2ee6b1961f69364a7244b82f6904df3986198de"><code>c2ee6b1</code></a>
chore: release v1.17.2 [version bump] [skip ci]</li>
<li><a
href="https://github.com/PostHog/posthog-go/commit/d98ef794a2aab07c5b4ff4ad20f9256cb25cceab"><code>d98ef79</code></a>
fix(flags): retry flag requests on transient network errors (<a
href="https://redirect.github.com/posthog/posthog-go/issues/240">#240</a>)</li>
<li><a
href="https://github.com/PostHog/posthog-go/commit/63feb5ed26416bc9b6bb9cb8253a7000a35b85f7"><code>63feb5e</code></a>
chore: release v1.17.1 [version bump] [skip ci]</li>
<li><a
href="https://github.com/PostHog/posthog-go/commit/e0eb8bd7ad3451a9d653f3be8146c9bd04e788f0"><code>e0eb8bd</code></a>
fix: fall back to uncompressed on compression failure (<a
href="https://redirect.github.com/posthog/posthog-go/issues/242">#242</a>)</li>
<li><a
href="https://github.com/PostHog/posthog-go/commit/651b303c38c4aeef534b74a2e2acab3724839df9"><code>651b303</code></a>
fix: preserve v1 caller system context (<a
href="https://redirect.github.com/posthog/posthog-go/issues/243">#243</a>)</li>
<li><a
href="https://github.com/PostHog/posthog-go/commit/71f5c2edf7fcb81094af958a86d1b37bccac0065"><code>71f5c2e</code></a>
fix: expose capture defaults to BeforeSend hooks (<a
href="https://redirect.github.com/posthog/posthog-go/issues/244">#244</a>)</li>
<li><a
href="https://github.com/PostHog/posthog-go/commit/45e5e96ddee854f5664dc84724ec00092abbe901"><code>45e5e96</code></a>
chore: release v1.17.0 [version bump] [skip ci]</li>
<li><a
href="https://github.com/PostHog/posthog-go/commit/ff0e74b4ef82282e875923f5388ab1d480fb70b7"><code>ff0e74b</code></a>
feat(capture): add v1 wire types and serialization (unwired) (<a
href="https://redirect.github.com/posthog/posthog-go/issues/235">#235</a>)</li>
<li><a
href="https://github.com/PostHog/posthog-go/commit/2832a6ecaa8831c63841af113c8debd2da19306e"><code>2832a6e</code></a>
chore: use pnpm setup runtime action (<a
href="https://redirect.github.com/posthog/posthog-go/issues/241">#241</a>)</li>
<li>See full diff in <a
href="https://github.com/posthog/posthog-go/compare/v1.16.2...v1.17.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/posthog/posthog-go&package-manager=go_modules&previous-version=1.16.2&new-version=1.17.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the npm-major group with 8 updates:

| Package | From | To |
| --- | --- | --- |
|
[@anthropic-ai/claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-typescript)
| `0.3.195` | `0.3.196` |
|
[@anthropic-ai/sdk](https://github.com/anthropics/anthropic-sdk-typescript)
| `0.106.0` | `0.107.0` |
|
[posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node)
| `5.38.6` | `5.38.8` |
| [fumadocs-core](https://github.com/fuma-nama/fumadocs) | `16.10.6` |
`16.10.7` |
| [fumadocs-ui](https://github.com/fuma-nama/fumadocs) | `16.10.6` |
`16.10.7` |
|
[@typescript/native-preview](https://github.com/microsoft/typescript-go)
| `7.0.0-dev.20260628.1` | `7.0.0-dev.20260629.1` |
| [oxfmt](https://github.com/oxc-project/oxc/tree/HEAD/npm/oxfmt) |
`0.56.0` | `0.57.0` |
| [oxlint](https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint) |
`1.71.0` | `1.72.0` |

Updates `@anthropic-ai/claude-agent-sdk` from 0.3.195 to 0.3.196
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/releases">@​anthropic-ai/claude-agent-sdk's
releases</a>.</em></p>
<blockquote>
<h2>v0.3.196</h2>
<h2>What's changed</h2>
<ul>
<li>Added <code>prompt_id</code> field to hook input payloads for
correlating hook events with OpenTelemetry prompt-level events</li>
<li>Fixed control protocol deduplication dropping tool-use IDs after
1000 resolutions, which could cause duplicate <code>tool_result</code>
deliveries in long-running sessions</li>
</ul>
<h2>Update</h2>
<pre lang="sh"><code>npm install @anthropic-ai/claude-agent-sdk@0.3.196
# or
yarn add @anthropic-ai/claude-agent-sdk@0.3.196
# or
pnpm add @anthropic-ai/claude-agent-sdk@0.3.196
# or
bun add @anthropic-ai/claude-agent-sdk@0.3.196
</code></pre>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md">@​anthropic-ai/claude-agent-sdk's
changelog</a>.</em></p>
<blockquote>
<h2>0.3.196</h2>
<ul>
<li>Added <code>prompt_id</code> field to hook input payloads for
correlating hook events with OpenTelemetry prompt-level events</li>
<li>Fixed control protocol deduplication dropping tool-use IDs after
1000 resolutions, which could cause duplicate <code>tool_result</code>
deliveries in long-running sessions</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/anthropics/claude-agent-sdk-typescript/commit/e2590471106ec492152e7219833748d86c4f6041"><code>e259047</code></a>
chore: Update CHANGELOG.md</li>
<li>See full diff in <a
href="https://github.com/anthropics/claude-agent-sdk-typescript/compare/v0.3.195...v0.3.196">compare
view</a></li>
</ul>
</details>
<br />

Updates `@anthropic-ai/sdk` from 0.106.0 to 0.107.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/anthropic-sdk-typescript/releases">@​anthropic-ai/sdk's
releases</a>.</em></p>
<blockquote>
<h2>sdk: v0.107.0</h2>
<h2>0.107.0 (2026-06-29)</h2>
<p>Full Changelog: <a
href="https://github.com/anthropics/anthropic-sdk-typescript/compare/sdk-v0.106.0...sdk-v0.107.0">sdk-v0.106.0...sdk-v0.107.0</a></p>
<h3>Features</h3>
<ul>
<li><strong>api:</strong> add support for 20260318 web fetch and support
tools (<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/d7057ea73ba564d1e89cff40c58a85d9375ccbbf">d7057ea</a>)</li>
</ul>
<h3>Bug Fixes</h3>
<ul>
<li><strong>agent-toolset:</strong> bound canonicalize symlink hops;
resolve glob matches before confinement check (<a
href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/142">#142</a>)
(<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/277be80af68eb088e954c0008dc1aa932375afe2">277be80</a>)</li>
<li><strong>types:</strong> restore BatchCreateParams.Request.params
dropped by codegen merge (<a
href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/165">#165</a>)
(<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/c6b68d248e037617017fc00f928dbeb9091f917d">c6b68d2</a>)</li>
</ul>
<h3>Chores</h3>
<ul>
<li><strong>api:</strong> accept user profile ID's when counting tokens
(<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/6cda67e3b9d97505aa24e318cd22e28837760025">6cda67e</a>)</li>
<li><strong>docs:</strong> updates to descriptions and example values
(<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/51a5f8138f8e771a84456628ec9d31b6257d2f3f">51a5f81</a>)</li>
</ul>
<h3>Documentation</h3>
<ul>
<li>update readme requirements to match anthropic docs (<a
href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/146">#146</a>)
(<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/3818412d371372fa1054b34a7293853fb3bfbef3">3818412</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/anthropics/anthropic-sdk-typescript/blob/main/CHANGELOG.md">@​anthropic-ai/sdk's
changelog</a>.</em></p>
<blockquote>
<h2>0.107.0 (2026-06-29)</h2>
<p>Full Changelog: <a
href="https://github.com/anthropics/anthropic-sdk-typescript/compare/sdk-v0.106.0...sdk-v0.107.0">sdk-v0.106.0...sdk-v0.107.0</a></p>
<h3>Features</h3>
<ul>
<li><strong>api:</strong> add support for 20260318 web fetch and support
tools (<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/d7057ea73ba564d1e89cff40c58a85d9375ccbbf">d7057ea</a>)</li>
</ul>
<h3>Bug Fixes</h3>
<ul>
<li><strong>agent-toolset:</strong> bound canonicalize symlink hops;
resolve glob matches before confinement check (<a
href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/142">#142</a>)
(<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/277be80af68eb088e954c0008dc1aa932375afe2">277be80</a>)</li>
<li><strong>types:</strong> restore BatchCreateParams.Request.params
dropped by codegen merge (<a
href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/165">#165</a>)
(<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/c6b68d248e037617017fc00f928dbeb9091f917d">c6b68d2</a>)</li>
</ul>
<h3>Chores</h3>
<ul>
<li><strong>api:</strong> accept user profile ID's when counting tokens
(<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/6cda67e3b9d97505aa24e318cd22e28837760025">6cda67e</a>)</li>
<li><strong>docs:</strong> updates to descriptions and example values
(<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/51a5f8138f8e771a84456628ec9d31b6257d2f3f">51a5f81</a>)</li>
</ul>
<h3>Documentation</h3>
<ul>
<li>update readme requirements to match anthropic docs (<a
href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/146">#146</a>)
(<a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/3818412d371372fa1054b34a7293853fb3bfbef3">3818412</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/f1662fe32c03a9e08b48c4220c18a96c9bfc15eb"><code>f1662fe</code></a>
chore: release main</li>
<li><a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/c7d44fd31e92c886bf576203a37afce846f3aa00"><code>c7d44fd</code></a>
fix(types): restore BatchCreateParams.Request.params dropped by codegen
merge...</li>
<li><a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/e3458100bb6df816575eb4df6f23b24519f8a59c"><code>e345810</code></a>
feat(api): add support for 20260318 web fetch and support tools</li>
<li><a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/c625b047e19c29a86c60b24be3e89cd505d44b66"><code>c625b04</code></a>
fix(agent-toolset): bound canonicalize symlink hops; resolve glob
matches bef...</li>
<li><a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/3a7c513c8f85541c753a46b2f24d58f408d06f38"><code>3a7c513</code></a>
chore(docs): updates to descriptions and example values</li>
<li><a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/756ec9ef460c951e1c488718e9191d3b9cd573e7"><code>756ec9e</code></a>
docs: update readme requirements to match anthropic docs (<a
href="https://redirect.github.com/anthropics/anthropic-sdk-typescript/issues/146">#146</a>)</li>
<li><a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/9d37c71c2911671e7e2a37dcb8eb71b4395f65ae"><code>9d37c71</code></a>
chore(api): accept user profile ID's when counting tokens</li>
<li><a
href="https://github.com/anthropics/anthropic-sdk-typescript/commit/d3c49c7b70af3d55fafb97053edda9cf502eca94"><code>d3c49c7</code></a>
codegen metadata</li>
<li>See full diff in <a
href="https://github.com/anthropics/anthropic-sdk-typescript/compare/sdk-v0.106.0...sdk-v0.107.0">compare
view</a></li>
</ul>
</details>
<br />

Updates `posthog-node` from 5.38.6 to 5.38.8
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/PostHog/posthog-js/releases">posthog-node's
releases</a>.</em></p>
<blockquote>
<h2>posthog-node@5.38.8</h2>
<h2>5.38.8</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/PostHog/posthog-js/pull/3974">#3974</a>
<a
href="https://github.com/PostHog/posthog-js/commit/08b404b5cd5506041df0ecc512ea9d950a3387e7"><code>08b404b</code></a>
Thanks <a href="https://github.com/mjfaga"><code>@​mjfaga</code></a>! -
Fix local evaluation ignoring the <code>in</code>/<code>not_in</code>
operator on cohort-based flag conditions. &quot;Not in
cohort&quot; was evaluated as &quot;in cohort&quot;, inverting
cohort-exclusion flags. Now applies the operator to
the cohort membership result. (2026-06-29)</li>
</ul>
<h2>posthog-node@5.38.7</h2>
<h2>5.38.7</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/PostHog/posthog-js/pull/3961">#3961</a>
<a
href="https://github.com/PostHog/posthog-js/commit/619a25ce5d4aa5a5f82724863facff4e0029e44b"><code>619a25c</code></a>
Thanks <a
href="https://github.com/marandaneto"><code>@​marandaneto</code></a>! -
Retry feature flag requests after transient network errors only. The
feature flag request retry count defaults to 1 and can be set to 0 to
disable retries.
(2026-06-29)</li>
<li>Updated dependencies [<a
href="https://github.com/PostHog/posthog-js/commit/619a25ce5d4aa5a5f82724863facff4e0029e44b"><code>619a25c</code></a>]:
<ul>
<li><code>@​posthog/core</code><a
href="https://github.com/1"><code>@​1</code></a>.38.1</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md">posthog-node's
changelog</a>.</em></p>
<blockquote>
<h2>5.38.8</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/PostHog/posthog-js/pull/3974">#3974</a>
<a
href="https://github.com/PostHog/posthog-js/commit/08b404b5cd5506041df0ecc512ea9d950a3387e7"><code>08b404b</code></a>
Thanks <a href="https://github.com/mjfaga"><code>@​mjfaga</code></a>! -
Fix local evaluation ignoring the <code>in</code>/<code>not_in</code>
operator on cohort-based flag conditions. &quot;Not in
cohort&quot; was evaluated as &quot;in cohort&quot;, inverting
cohort-exclusion flags. Now applies the operator to
the cohort membership result. (2026-06-29)</li>
</ul>
<h2>5.38.7</h2>
<h3>Patch Changes</h3>
<ul>
<li><a
href="https://redirect.github.com/PostHog/posthog-js/pull/3961">#3961</a>
<a
href="https://github.com/PostHog/posthog-js/commit/619a25ce5d4aa5a5f82724863facff4e0029e44b"><code>619a25c</code></a>
Thanks <a
href="https://github.com/marandaneto"><code>@​marandaneto</code></a>! -
Retry feature flag requests after transient network errors only. The
feature flag request retry count defaults to 1 and can be set to 0 to
disable retries.
(2026-06-29)</li>
<li>Updated dependencies [<a
href="https://github.com/PostHog/posthog-js/commit/619a25ce5d4aa5a5f82724863facff4e0029e44b"><code>619a25c</code></a>]:
<ul>
<li><code>@​posthog/core</code><a
href="https://github.com/1"><code>@​1</code></a>.38.1</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/PostHog/posthog-js/commit/479d5ea0c5e926aab4c196b85fffdc003541a722"><code>479d5ea</code></a>
chore: update versions and lockfile [version bump]</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/08b404b5cd5506041df0ecc512ea9d950a3387e7"><code>08b404b</code></a>
fix(node): apply in/not_in operator on flag-level cohort conditions in
local ...</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/272c193def3036b88d156b59f18857f99aa43cc1"><code>272c193</code></a>
chore: update versions and lockfile [version bump]</li>
<li><a
href="https://github.com/PostHog/posthog-js/commit/619a25ce5d4aa5a5f82724863facff4e0029e44b"><code>619a25c</code></a>
fix(flags): retry flag requests on transient network errors (<a
href="https://github.com/PostHog/posthog-js/tree/HEAD/packages/node/issues/3961">#3961</a>)</li>
<li>See full diff in <a
href="https://github.com/PostHog/posthog-js/commits/posthog-node@5.38.8/packages/node">compare
view</a></li>
</ul>
</details>
<br />

Updates `fumadocs-core` from 16.10.6 to 16.10.7
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/084bb7b63bec2715100826b2cba6bf473db3310c"><code>084bb7b</code></a>
Version Packages (<a
href="https://redirect.github.com/fuma-nama/fumadocs/issues/3387">#3387</a>)</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/3922dccafd38efd9dab595676ee9e13c0b90bbb1"><code>3922dcc</code></a>
fix(ui): base path in page actions</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/47b8b635b95c305a07a307baaafa7e81873f9132"><code>47b8b63</code></a>
Version Packages (<a
href="https://redirect.github.com/fuma-nama/fumadocs/issues/3384">#3384</a>)</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/baacf1a67df9d14d768da70dde0f9fe0ed3003cd"><code>baacf1a</code></a>
perf(mdx): require <code>collection</code> query param at regex
matching</li>
<li>See full diff in <a
href="https://github.com/fuma-nama/fumadocs/compare/fumadocs@16.10.6...fumadocs@16.10.7">compare
view</a></li>
</ul>
</details>
<br />

Updates `fumadocs-ui` from 16.10.6 to 16.10.7
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/084bb7b63bec2715100826b2cba6bf473db3310c"><code>084bb7b</code></a>
Version Packages (<a
href="https://redirect.github.com/fuma-nama/fumadocs/issues/3387">#3387</a>)</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/3922dccafd38efd9dab595676ee9e13c0b90bbb1"><code>3922dcc</code></a>
fix(ui): base path in page actions</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/47b8b635b95c305a07a307baaafa7e81873f9132"><code>47b8b63</code></a>
Version Packages (<a
href="https://redirect.github.com/fuma-nama/fumadocs/issues/3384">#3384</a>)</li>
<li><a
href="https://github.com/fuma-nama/fumadocs/commit/baacf1a67df9d14d768da70dde0f9fe0ed3003cd"><code>baacf1a</code></a>
perf(mdx): require <code>collection</code> query param at regex
matching</li>
<li>See full diff in <a
href="https://github.com/fuma-nama/fumadocs/compare/fumadocs@16.10.6...fumadocs@16.10.7">compare
view</a></li>
</ul>
</details>
<br />

Updates `@typescript/native-preview` from 7.0.0-dev.20260628.1 to
7.0.0-dev.20260629.1
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/microsoft/typescript-go/commits">compare
view</a></li>
</ul>
</details>
<br />

Updates `oxfmt` from 0.56.0 to 0.57.0
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/oxc-project/oxc/commit/5306f24d9e82ae36ad9c3c964f33075bc589c799"><code>5306f24</code></a>
release(apps): oxlint v1.72.0 &amp;&amp; oxfmt v0.57.0 (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxfmt/issues/23935">#23935</a>)</li>
<li>See full diff in <a
href="https://github.com/oxc-project/oxc/commits/oxfmt_v0.57.0/npm/oxfmt">compare
view</a></li>
</ul>
</details>
<br />

Updates `oxlint` from 1.71.0 to 1.72.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/oxc-project/oxc/releases">oxlint's
releases</a>.</em></p>
<blockquote>
<h2>oxlint v1.27.0 &amp;&amp; oxfmt v0.12.0</h2>
<h1>Oxlint v1.27.0</h1>
<h3>🚀 Features</h3>
<ul>
<li>222a8f0 linter/plugins: Implement
<code>SourceCode#isSpaceBetween</code> (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15498">#15498</a>)
(overlookmotel)</li>
<li>2f9735d linter/plugins: Implement
<code>context.languageOptions</code> (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15486">#15486</a>)
(overlookmotel)</li>
<li>bc731ff linter/plugins: Stub out all <code>Context</code> APIs (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15479">#15479</a>)
(overlookmotel)</li>
<li>5822cb4 linter/plugins: Add <code>extend</code> method to
<code>FILE_CONTEXT</code> (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15477">#15477</a>)
(overlookmotel)</li>
<li>7b1e6f3 apps: Add pure rust binaries and release to github (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15469">#15469</a>)
(Boshen)</li>
<li>2a89b43 linter: Introduce debug assertions after fixes to assert
validity (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15389">#15389</a>)
(camc314)</li>
<li>ad3c45a editor: Add <code>oxc.path.node</code> option (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15040">#15040</a>)
(Sysix)</li>
</ul>
<h3>🐛 Bug Fixes</h3>
<ul>
<li>6f3cd77 linter/no-var: Incorrect warning for blocks (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15504">#15504</a>)
(Hamir Mahal)</li>
<li>6957fb9 linter/plugins: Do not allow access to
<code>Context#id</code> in <code>createOnce</code> (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15489">#15489</a>)
(overlookmotel)</li>
<li>7409630 linter/plugins: Allow access to <code>cwd</code> in
<code>createOnce</code> in ESLint interop mode (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15488">#15488</a>)
(overlookmotel)</li>
<li>732205e parser: Reject <code>using</code> / <code>await using</code>
in a switch <code>case</code> / <code>default</code> clause (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15225">#15225</a>)
(sapphi-red)</li>
<li>a17ca32 linter/plugins: Replace <code>Context</code> class (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15448">#15448</a>)
(overlookmotel)</li>
<li>ecf2f7b language_server: Fail gracefully when tsgolint executable
not found (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15436">#15436</a>)
(camc314)</li>
<li>3c8d3a7 lang-server: Improve logging in failure case for tsgolint
(<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15299">#15299</a>)
(camc314)</li>
<li>ef71410 linter: Use jsx if source type is JS in fix debug assertion
(<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15434">#15434</a>)
(camc314)</li>
<li>e32bbf6 linter/no-var: Handle TypeScript declare keyword in fixer
(<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15426">#15426</a>)
(camc314)</li>
<li>6565dbe linter/switch-case-braces: Skip comments when searching for
<code>:</code> token (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15425">#15425</a>)
(camc314)</li>
<li>85bd19a linter/prefer-class-fields: Insert value after type
annotation in fixer (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15423">#15423</a>)
(camc314)</li>
<li>fde753e linter/plugins: Block access to
<code>context.settings</code> in <code>createOnce</code> (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15394">#15394</a>)
(overlookmotel)</li>
<li>ddd9f9f linter/forward-ref-uses-ref: Dont suggest removing wrapper
in invalid positions (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15388">#15388</a>)
(camc314)</li>
<li>dac2a9c linter/no-template-curly-in-string: Remove fixer (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15387">#15387</a>)
(camc314)</li>
<li>989b8e3 linter/no-var: Only fix to <code>const</code> if the var has
an initializer (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15385">#15385</a>)
(camc314)</li>
<li>cc403f5 linter/plugins: Return empty object for unimplemented
parserServices (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15364">#15364</a>)
(magic-akari)</li>
</ul>
<h3>⚡ Performance</h3>
<ul>
<li>25d577e language_server: Start tools in parallel (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15500">#15500</a>)
(Sysix)</li>
<li>3c57291 linter/plugins: Optimize loops (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15449">#15449</a>)
(overlookmotel)</li>
<li>3166233 linter/plugins: Remove <code>Arc</code>s (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15431">#15431</a>)
(overlookmotel)</li>
<li>9de1322 linter/plugins: Lazily deserialize settings JSON (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15395">#15395</a>)
(overlookmotel)</li>
<li>3049ec2 linter/plugins: Optimize <code>deepFreezeSettings</code> (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15392">#15392</a>)
(overlookmotel)</li>
<li>444ebfd linter/plugins: Use single object for
<code>parserServices</code> (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15378">#15378</a>)
(overlookmotel)</li>
</ul>
<h3>📚 Documentation</h3>
<ul>
<li>97d2104 linter: Update comment in lint.rs about default value for
tsconfig path (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15530">#15530</a>)
(Connor Shea)</li>
<li>2c6bd9e linter: Always refer as &quot;ES2015&quot; instead of
&quot;ES6&quot; (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15411">#15411</a>)
(sapphi-red)</li>
<li>a0c5203 linter/import/named: Update &quot;ES7&quot; comment in
examples (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15410">#15410</a>)
(sapphi-red)</li>
<li>3dc24b5 linter,minifier: Always refer as &quot;ES Modules&quot;
instead of &quot;ES6 Modules&quot; (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15409">#15409</a>)
(sapphi-red)</li>
<li>2ad77fb linter/no-this-before-super: Correct &quot;Why is this
bad?&quot; section (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15408">#15408</a>)
(sapphi-red)</li>
<li>57f0ce1 linter: Add backquotes where appropriate (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/15407">#15407</a>)
(sapphi-red)</li>
</ul>
<h1>Oxfmt v0.12.0</h1>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/oxc-project/oxc/blob/main/npm/oxlint/CHANGELOG.md">oxlint's
changelog</a>.</em></p>
<blockquote>
<h2>[1.72.0] - 2026-06-29</h2>
<h3>🚀 Features</h3>
<ul>
<li>1c8f50c linter: Add schema for
<code>eslint/no-restricted-import</code> (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/23642">#23642</a>)
(Sysix)</li>
</ul>
<h3>🐛 Bug Fixes</h3>
<ul>
<li>742be36 refactor/node/handle-callback-err: Reject invalid regex
config (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/23740">#23740</a>)
(camc314)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/oxc-project/oxc/commit/5306f24d9e82ae36ad9c3c964f33075bc589c799"><code>5306f24</code></a>
release(apps): oxlint v1.72.0 &amp;&amp; oxfmt v0.57.0 (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/23935">#23935</a>)</li>
<li><a
href="https://github.com/oxc-project/oxc/commit/742be3616fc8df27053b09bdf9ff166e16761838"><code>742be36</code></a>
fix(refactor/node/handle-callback-err): reject invalid regex config (<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/23740">#23740</a>)</li>
<li><a
href="https://github.com/oxc-project/oxc/commit/1c8f50c67ff636b9d8193d3d7be1511a7960f25d"><code>1c8f50c</code></a>
feat(linter): add schema for <code>eslint/no-restricted-import</code>
(<a
href="https://github.com/oxc-project/oxc/tree/HEAD/npm/oxlint/issues/23642">#23642</a>)</li>
<li>See full diff in <a
href="https://github.com/oxc-project/oxc/commits/oxlint_v1.72.0/npm/oxlint">compare
view</a></li>
</ul>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@supabase-cli-releaser supabase-cli-releaser Bot requested a review from a team as a code owner July 7, 2026 03:13
@supabase-cli-releaser supabase-cli-releaser Bot added the do not merge Approve to apply; do not merge. label Jul 7, 2026
dependabot Bot and others added 2 commits July 7, 2026 06:20
…emplates with 3 updates (#5806)

Bumps the docker-minor group in /apps/cli-go/pkg/config/templates with 3
updates: supabase/studio, supabase/realtime and supabase/storage-api.

Updates `supabase/studio` from 2026.06.29-sha-20290c7 to
2026.07.06-sha-66cf431

Updates `supabase/realtime` from v2.112.4 to v2.112.6

Updates `supabase/storage-api` from v1.61.13 to v1.62.5


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
…/apps/cli-go/pkg/config/templates (#5807)

Bumps supabase/postgres from 17.6.1.142 to 17.6.1.143.


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=supabase/postgres&package-manager=docker&previous-version=17.6.1.142&new-version=17.6.1.143)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@supabase-cli-releaser supabase-cli-releaser Bot merged commit 6d4c198 into main Jul 7, 2026
86 of 87 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

do not merge Approve to apply; do not merge.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

7 participants