chore(deps): bump the minor-and-patch group across 1 directory with 13 updates

[dependabot]

Bumps the minor-and-patch group with 13 updates in the / directory:

Package	From	To
@auth/core	0.37.0	0.41.1
@codemirror/state	6.5.4	6.6.0
@codemirror/view	6.39.16	6.41.0
@sentry/solid	10.43.0	10.47.0
@tanstack/solid-virtual	3.13.21	3.13.23
@tauri-apps/plugin-deep-link	2.4.7	2.4.8
@tauri-apps/plugin-dialog	2.6.0	2.7.0
@tauri-apps/plugin-fs	2.4.5	2.5.0
@tauri-apps/plugin-updater	2.10.0	2.10.1
convex	1.32.0	1.34.1
solid-js	1.9.11	1.9.12
vite-plugin-solid	2.11.10	2.11.12
vitest	4.1.0	4.1.2

Updates @auth/core from 0.37.0 to 0.41.1

Release notes

Sourced from @​auth/core's releases.

@​auth/core@​0.41.1

Bugfixes

• security issue from nodemailer (#13305)

Other

• update links for Credentials-based Authentication (#13258)

@​auth/core@​0.41.0

Features

• providers: support custom baseURL for Gitlab (#13260) (745751e9)

Other

• fix build
• adjust default fusionauth provider details (#10868)

@​auth/core@​0.40.0

Features

• providers: Mailgun region selection (#13027) (e0168ed1)

Bugfixes

• core: undefined providerId (#12947) (dd211c56)
• providers: Microsoft Entra ID (#12616) (e16b07b8)
• providers: enable OIDC capabilities for Keycloak (#12964) (0adbd101)

Other

• docs: fix typo Avaliable Scopes -> Available Scopes (#13009) (22c1b8b0)
• typo succesful -> successful (#12973)
• fix typo profie -> profile (#12987)

Commits

• 089f0e3 chore(release): bump package version(s) [skip ci]
• 2824fa1 feat: add next 16 support (#13298)
• 8f3b2c7 fix: security issue from nodemailer (#13305)
• 240e343 docs: update the Prisma ORM page to use Prisma Postgres (#13299)
• 0bcd32d chore(drizzle): migrate sqliteTable to array API (#13280)
• 90188fa ci: enable merge queue (#13288)
• 8d02b3d docs: remove carbon developer ads widget from docs sidebar (#13286)
• c8cd9b1 chore: remove unused script (#13279)
• 3a7c669 docs: update links for Credentials-based Authentication (#13258)
• e9e2b50 chore(release): bump package version(s) [skip ci]
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by bekacru, a new releaser for @​auth/core since your current version.

Updates @codemirror/state from 6.5.4 to 6.6.0

Changelog

Sourced from @​codemirror/state's changelog.

6.6.0 (2026-03-12)

New features

EditorSelection.range now takes an optional assoc argument.

SelectionRange.extend can now be given a third argument to specify associativity.

Commits

• 821d9b7 Mark version 6.6.0
• e035c74 Support an assoc argument to EditorSelection.range and SelectionRange.extend
• eef74db Add type conversions to asArray
• See full diff in compare view

Updates @codemirror/view from 6.39.16 to 6.41.0

Changelog

Sourced from @​codemirror/view's changelog.

6.41.0 (2026-04-01)

Bug fixes

Fix an issue where EditorView.posAtCoords could incorrectly return a position near a higher element on the line, in mixed-font-size lines.

Expand the workaround for the Webkit bug that causes nonexistent selections to stay visible to be active on non-Safari Webkit browsers.

New features

The new EditorView.cursorScrollMargin facet can now be used to configure the extra space used when scrolling the cursor into view.

6.40.0 (2026-03-12)

Bug fixes

Fix a bug that caused Shift-Enter/Backspace/Delete on iOS to lose the shift modifier when delivered to key event handlers.

Fix an issue where EditorView.moveVertically could move to the wrong place in wrapped lines with a large line height.

Make sure the selection head associativity is properly set for mouse selections made with shift held down.

New features

WidgetType.updateDOM is now called with the previous widget value as third argument.

6.39.17 (2026-03-10)

Bug fixes

Improve touch tap-selection on line wrapping boundaries.

Make drawSelection draw our own selection handles on iOS.

Fix an issue where posAtCoords, when querying line wrapping points, got confused by extra empty client rectangles produced by Safari.

Commits

• a0a5ed9 Mark version 6.41.0
• c834ebf Enable the workaround for ghost selections in all forms of Webkit
• 49d72c4 Improve posAtCoords in non-uniform height lines
• 4935d24 Make the margin used when scrolling the cursor into view configurable
• ed7d625 Remove duplicated slash in forum url in README
• c3770d3 Fix forum link in readme
• 4773b2e Mark version 6.40.0
• 773a0ee Properly track associativity for shift-click selections
• 3612d3f Bring back the vertical scan loop in moveVertically
• bc58375 Don't put Shift-Enter/Backspace/Del through the iOS pending key hack
• Additional commits viewable in compare view

Updates @sentry/solid from 10.43.0 to 10.47.0

Release notes

Sourced from @​sentry/solid's releases.

10.47.0

Important Changes

• feat(node-core): Add OTLP integration for node-core/light (#19729)

  Added otlpIntegration at @sentry/node-core/light/otlp for users who manage their own OpenTelemetry setup and want to send trace data to Sentry without adopting the full @sentry/node SDK.

  import { NodeTracerProvider } from '@opentelemetry/sdk-trace-node';
  import * as Sentry from '@sentry/node-core/light';
  import { otlpIntegration } from '@sentry/node-core/light/otlp';
  const provider = new NodeTracerProvider();
  provider.register();
  Sentry.init({
  dsn: 'DSN',
  integrations: [
  otlpIntegration({
  // Export OTel spans to Sentry via OTLP (default: true)
  setupOtlpTracesExporter: true,
  }),
  ],
  });

  The integration links Sentry errors to OTel traces and exports spans to Sentry via OTLP.

• feat(node, bun): Add runtime metrics integrations for Node.js and Bun (#19923, #19979)

  New nodeRuntimeMetricsIntegration and bunRuntimeMetricsIntegration automatically collect runtime health metrics and send them to Sentry on a configurable interval (default: 30s). Collected metrics include memory (RSS, heap used/total), CPU utilization, event loop utilization, and process uptime. Node additionally collects event loop delay percentiles (p50, p99). Extra metrics like CPU time and external memory are available as opt-in.

  // Node.js
  import * as Sentry from '@sentry/node';
  Sentry.init({
  dsn: '...',
  integrations: [Sentry.nodeRuntimeMetricsIntegration()],
  });
  // Bun
  import * as Sentry from '@​sentry/bun';
  Sentry.init({
  dsn: '...',
  integrations: [Sentry.bunRuntimeMetricsIntegration()],
  });

... (truncated)

Changelog

Sourced from @​sentry/solid's changelog.

10.47.0

Important Changes

• feat(node-core): Add OTLP integration for node-core/light (#19729)

  Added otlpIntegration at @sentry/node-core/light/otlp for users who manage their own OpenTelemetry setup and want to send trace data to Sentry without adopting the full @sentry/node SDK.

  import { NodeTracerProvider } from '@opentelemetry/sdk-trace-node';
  import * as Sentry from '@sentry/node-core/light';
  import { otlpIntegration } from '@sentry/node-core/light/otlp';
  const provider = new NodeTracerProvider();
  provider.register();
  Sentry.init({
  dsn: 'DSN',
  integrations: [
  otlpIntegration({
  // Export OTel spans to Sentry via OTLP (default: true)
  setupOtlpTracesExporter: true,
  }),
  ],
  });

  The integration links Sentry errors to OTel traces and exports spans to Sentry via OTLP.

• feat(node, bun): Add runtime metrics integrations for Node.js and Bun (#19923, #19979)

  New nodeRuntimeMetricsIntegration and bunRuntimeMetricsIntegration automatically collect runtime health metrics and send them to Sentry on a configurable interval (default: 30s). Collected metrics include memory (RSS, heap used/total), CPU utilization, event loop utilization, and process uptime. Node additionally collects event loop delay percentiles (p50, p99). Extra metrics like CPU time and external memory are available as opt-in.

  // Node.js
  import * as Sentry from '@sentry/node';
  Sentry.init({
  dsn: '...',
  integrations: [Sentry.nodeRuntimeMetricsIntegration()],
  });
  // Bun
  import * as Sentry from '@​sentry/bun';
  Sentry.init({
  dsn: '...',
  integrations: [Sentry.bunRuntimeMetricsIntegration()],

... (truncated)

Commits

• a5a4e73 release: 10.47.0
• c7477bb Merge pull request #20050 from getsentry/prepare-release/10.47.0
• 3d4e38d meta(changelog): Update changelog for 10.47.0
• 2c0ce6f feat(deps): Bump OpenTelemetry dependencies (#20046)
• 8f08fcb fix(browser-tests): Pin axios to 1.13.5 to avoid compromised 1.14.1 (#20047)
• 3815492 fix(profiling): Disable profiling in worker threads (#20040)
• 61edc25 Merge pull request #19890 from getsentry/fix/react-router-debug-id-double-inj...
• 28f94f3 fix(react-router): Disable debug ID injection in Vite plugin to prevent doubl...
• 9bfc682 ref(browser-tests): Add waitForMetricRequest helper (#20002)
• 08cab24 fix(node): Deduplicate sentry-trace and baggage headers on outgoing reque...
• Additional commits viewable in compare view

Updates @tanstack/solid-virtual from 3.13.21 to 3.13.23

Release notes

Sourced from @​tanstack/solid-virtual's releases.

@​tanstack/solid-virtual@​3.13.23

Patch Changes

• Updated dependencies [7ece2d5]:
  • @​tanstack/virtual-core@​3.13.23

@​tanstack/solid-virtual@​3.13.22

Patch Changes

• Updated dependencies [54d771a, d3416c3]:
  • @​tanstack/virtual-core@​3.13.22

Changelog

Sourced from @​tanstack/solid-virtual's changelog.

3.13.23

Patch Changes

• Updated dependencies [7ece2d5]:
  • @​tanstack/virtual-core@​3.13.23

3.13.22

Patch Changes

• Updated dependencies [54d771a, d3416c3]:
  • @​tanstack/virtual-core@​3.13.22

Commits

• 9394e13 ci: Version Packages (#1149)
• c2f1c39 ci: Version Packages (#1139)
• See full diff in compare view

Updates @tauri-apps/plugin-deep-link from 2.4.7 to 2.4.8

Release notes

Sourced from @​tauri-apps/plugin-deep-link's releases.

deep-link-js v2.4.8

[2.4.8]

• 024ec0c2 (#3214 by @​joshIsCoding) Account for differing Android VIEW intent in ChromeOS, fixing deep-link behaviour on Chromium platforms.
• 015e817c (#3186 by @​lucasfernog) Validate Android new intent is actually a deep link before triggering the onOpenUrl event.

npm warn Unknown user config "always-auth". This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.
npm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run "npm pkg fix" to address these errors.
npm warn publish errors corrected:
npm warn publish "repository" was changed from a string to an object
npm warn publish "repository.url" was normalized to "git+https://github.com/tauri-apps/plugins-workspace.git"
npm notice
npm notice 📦  @tauri-apps/plugin-deep-link@2.4.8
npm notice Tarball Contents
npm notice 888B LICENSE.spdx
npm notice 6.2kB README.md
npm notice 3.5kB dist-js/index.cjs
npm notice 2.9kB dist-js/index.d.ts
npm notice 3.4kB dist-js/index.js
npm notice 801B package.json
npm notice Tarball Details
npm notice name: @tauri-apps/plugin-deep-link
npm notice version: 2.4.8
npm notice filename: tauri-apps-plugin-deep-link-2.4.8.tgz
npm notice package size: 4.4 kB
npm notice unpacked size: 17.7 kB
npm notice shasum: b719b40051bb5485fe146542213fdfc5c84a00b9
npm notice integrity: sha512-Cd2Cs960MGuGO[...]EumHjr+64V4fw==
npm notice total files: 6
npm notice
npm notice Publishing to https://registry.npmjs.org/ with tag latest and public access
npm notice publish Signed provenance statement with source and build information from GitHub Actions
npm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=1235992793
+ @tauri-apps/plugin-deep-link@2.4.8

deep-link v2.4.8

[2.4.8]

• 024ec0c2 (#3214 by @​joshIsCoding) Account for differing Android VIEW intent in ChromeOS, fixing deep-link behaviour on Chromium platforms.
• 015e817c (#3186 by @​lucasfernog) Validate Android new intent is actually a deep link before triggering the onOpenUrl event.

... (truncated)

Commits

• d6a3898 Publish New Versions (v2) (#3268)
• 2e5bcdf chore(deps): fix audits (#3373)
• 4374b4f chore(notification): remove unused dev-deps (#3372)
• f75d21d chore(deps): remove used of tauri-utils build feature (#3360)
• 4b95f5e chore(deps): update dependency eslint to v10.1.0 (#3357)
• 99c3e37 chore(deps): bump tar in /plugins/updater/tests/updater-migration/v1-app (#3352)
• eaac19a chore(deps): update rust crate tar to v0.4.45 [security] (#3353)
• 5183e31 chore(deps): update dependency typescript-eslint to v8.57.1 (#3344)
• 2c0883e chore(deps): update dependency vite to v8 (#3346)
• 024ec0c fix(deep-link): ChromeOS deep link calls filtered and ignored by plugin (fix ...
• Additional commits viewable in compare view

Updates @tauri-apps/plugin-dialog from 2.6.0 to 2.7.0

Release notes

Sourced from @​tauri-apps/plugin-dialog's releases.

dialog-js v2.7.0

[2.7.0]

• 24154472 (#3287 by @​Legend-Master) Re-use message command in Rust side for ask and confirm commands, allow-ask and allow-confirm permissions are now aliases to allow-message

Dependencies

• Upgraded to fs-js@2.5.0

npm warn Unknown user config "always-auth". This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.
npm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run "npm pkg fix" to address these errors.
npm warn publish errors corrected:
npm warn publish "repository" was changed from a string to an object
npm warn publish "repository.url" was normalized to "git+https://github.com/tauri-apps/plugins-workspace.git"
npm notice
npm notice 📦  @tauri-apps/plugin-dialog@2.7.0
npm notice Tarball Contents
npm notice 888B LICENSE.spdx
npm notice 3.5kB README.md
npm notice 6.9kB dist-js/index.cjs
npm notice 14.6kB dist-js/index.d.ts
npm notice 6.8kB dist-js/index.js
npm notice 11B dist-js/init.d.ts
npm notice 657B package.json
npm notice Tarball Details
npm notice name: @tauri-apps/plugin-dialog
npm notice version: 2.7.0
npm notice filename: tauri-apps-plugin-dialog-2.7.0.tgz
npm notice package size: 6.7 kB
npm notice unpacked size: 33.3 kB
npm notice shasum: b510ecd42d9900725eaf51f42ec98523c40d29b4
npm notice integrity: sha512-4nS/hfGMGCXiA[...]RtrKXkANKDHvw==
npm notice total files: 7
npm notice
npm notice Publishing to https://registry.npmjs.org/ with tag latest and public access
npm notice publish Signed provenance statement with source and build information from GitHub Actions
npm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=1235993203
+ @tauri-apps/plugin-dialog@2.7.0

dialog v2.7.0

[2.7.0]

• 24154472 (#3287 by @​Legend-Master) Re-use message command in Rust side for ask and confirm commands, allow-ask and allow-confirm permissions are now aliases to allow-message

... (truncated)

Commits

• 51b430b ci: delete .changes/updater-new-bundle-support.md
• fd439b1 Publish New Versions (v2) (#2964)
• 2522b71 fix(deep-link): revert the breaking change introduced by #2928 (#2970)
• 9021a73 chore(deps): update dependency rollup to v4.50.0 (#2966)
• 625bb1c feat(log): re-export the log crate (#2965)
• 6215afe chore(deps): update dependency rollup to v4.49.0 (#2962)
• 8cf8eea feat(updater): inject bundle_type into endpoint url (#2960)
• 509eba8 feat: support message dialogs with 3 buttons (#2641)
• 9ac5fe8 feat(updater): support bundle-specific targets (#2624)
• c247410 chore(deps): update dependency typescript-eslint to v8.41.0 (#2956)
• Additional commits viewable in compare view

Updates @tauri-apps/plugin-fs from 2.4.5 to 2.5.0

Release notes

Sourced from @​tauri-apps/plugin-fs's releases.

dialog-js v2.5.0

[2.5.0]

• dff6fa98 (#3034 by @​onehumandev) Add pickerMode option to file picker (currently only used on iOS)

Dependencies

• Upgraded to fs-js@2.4.5

feat

• c23fa03f (#3098 by @​Lepidopteran) Add xdg-portal as an optional feature for rfd

npm warn Unknown user config "always-auth". This will stop working in the next major version of npm.
npm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run "npm pkg fix" to address these errors.
npm warn publish errors corrected:
npm warn publish "repository" was changed from a string to an object
npm warn publish "repository.url" was normalized to "git+https://github.com/tauri-apps/plugins-workspace.git"
npm notice
npm notice 📦  @tauri-apps/plugin-dialog@2.5.0
npm notice Tarball Contents
npm notice 888B LICENSE.spdx
npm notice 3.5kB README.md
npm notice 6.4kB dist-js/index.cjs
npm notice 12.2kB dist-js/index.d.ts
npm notice 6.3kB dist-js/index.js
npm notice 11B dist-js/init.d.ts
npm notice 656B package.json
npm notice Tarball Details
npm notice name: @tauri-apps/plugin-dialog
npm notice version: 2.5.0
npm notice filename: tauri-apps-plugin-dialog-2.5.0.tgz
npm notice package size: 5.8 kB
npm notice unpacked size: 30.0 kB
npm notice shasum: 52057077b52cc51643ac9829d48c2c590e5e1a54
npm notice integrity: sha512-I0R0ygwRd9AN8[...]lxPHD5vDcFjiA==
npm notice total files: 7
npm notice
npm notice Security Notice: Classic tokens have been revoked. Granular tokens are now limited to 90 days and require 2FA by default. Update your CI/CD workflows to avoid disruption. Learn more https://gh.io/all-npm-classic-tokens-revoked
npm notice Publishing to https://registry.npmjs.org/ with tag latest and public access
npm notice publish Signed provenance statement with source and build information from GitHub Actions
npm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=804721691
+ @tauri-apps/plugin-dialog@2.5.0

... (truncated)

Commits

• d6a3898 Publish New Versions (v2) (#3268)
• 2e5bcdf chore(deps): fix audits (#3373)
• 4374b4f chore(notification): remove unused dev-deps (#3372)
• f75d21d chore(deps): remove used of tauri-utils build feature (#3360)
• 4b95f5e chore(deps): update dependency eslint to v10.1.0 (#3357)
• 99c3e37 chore(deps): bump tar in /plugins/updater/tests/updater-migration/v1-app (#3352)
• eaac19a chore(deps): update rust crate tar to v0.4.45 [security] (#3353)
• 5183e31 chore(deps): update dependency typescript-eslint to v8.57.1 (#3344)
• 2c0883e chore(deps): update dependency vite to v8 (#3346)
• 024ec0c fix(deep-link): ChromeOS deep link calls filtered and ignored by plugin (fix ...
• Additional commits viewable in compare view

Updates @tauri-apps/plugin-updater from 2.10.0 to 2.10.1

Release notes

Sourced from @​tauri-apps/plugin-updater's releases.

updater-js v2.10.1

[2.10.1]

• 31ab6f8d (#3285 by @​hrzlgnm) fix: preserve file extension of updater package, otherwise users may get confused when presented with a sudo dialog suggesting to install a file with the extension .rpm using dpkg -i

npm warn Unknown user config "always-auth". This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.
npm warn publish npm auto-corrected some errors in your package.json when publishing.  Please run "npm pkg fix" to address these errors.
npm warn publish errors corrected:
npm warn publish "repository" was changed from a string to an object
npm warn publish "repository.url" was normalized to "git+https://github.com/tauri-apps/plugins-workspace.git"
npm notice
npm notice 📦  @tauri-apps/plugin-updater@2.10.1
npm notice Tarball Contents
npm notice 888B LICENSE.spdx
npm notice 3.1kB README.md
npm notice 2.6kB dist-js/index.cjs
npm notice 2.3kB dist-js/index.d.ts
npm notice 2.6kB dist-js/index.js
npm notice 659B package.json
npm notice Tarball Details
npm notice name: @tauri-apps/plugin-updater
npm notice version: 2.10.1
npm notice filename: tauri-apps-plugin-updater-2.10.1.tgz
npm notice package size: 3.7 kB
npm notice unpacked size: 12.1 kB
npm notice shasum: ea0efd766890394b6c719b9fc21de7da0029c69c
npm notice integrity: sha512-NFYMg+tWOZPJd[...]Y1WVCNHnh3eRA==
npm notice total files: 6
npm notice
npm notice Publishing to https://registry.npmjs.org/ with tag latest and public access
npm notice publish Signed provenance statement with source and build information from GitHub Actions
npm notice publish Provenance statement published to transparency log: https://search.sigstore.dev/?logIndex=1235993797
+ @tauri-apps/plugin-updater@2.10.1

updater v2.10.1

[2.10.1]

• 31ab6f8d (#3285 by @​hrzlgnm) fix: preserve file extension of updater package, otherwise users may get confused when presented with a sudo dialog suggesting to install a file with the extension .rpm using dpkg -i

</tr></table> 

... (truncated)

Commits

• d6a3898 Publish New Versions (v2) (#3268)
• 2e5bcdf chore(deps): fix audits (#3373)
• 4374b4f chore(notification): remove unused dev-deps (#3372)
• f75d21d chore(deps): remove used of tauri-utils build feature (#3360)
• 4b95f5e chore(deps): update dependency eslint to v10.1.0 (#3357)
• 99c3e37 chore(deps): bump tar in /plugins/updater/tests/updater-migration/v1-app (#3352)
• eaac19a chore(deps): update rust crate tar to v0.4.45 [security] (#3353)
• 5183e31 chore(deps): update dependency typescript-eslint to v8.57.1 (#3344)
• 2c0883e chore(deps): update dependency vite to v8 (#3346)
• 024ec0c fix(deep-link): ChromeOS deep link calls filtered and ignored by plugin (fix ...
• Additional commits viewable in compare view

Updates convex from 1.32.0 to 1.34.1

Changelog

Sourced from convex's changelog.

1.34.1

• Hides the --yes flag on npx convex deploy to discourage YOLO agents being run in privileged environments from pushing to production.
• Improves client backoff strategy to reconnect more quickly. The changes in 1.34.0 did not correctly reset backoff sufficiently after reconnect.
• AI files will not be installed by default in non-interactive environments.
• Disabling AI files is now tracked with an "enabled" flag in convex.json that hides nags for initial setup and updates when set to false.
• Fix ai-files re-prompting to install files on setup when they already exist.
• Fix local deployments returning stale credentials when ports change.

1.34.0

• The CLI can now automatically provide Convex AI context files (AGENTS.md, CLAUDE.md, guidelines/state files) to your project when using npx convex dev. You can manage Convex AI files using the new npx convex ai-files command:
  • npx convex ai-files install - Install or refresh AI files
  • npx convex ai-files update - Update to latest available AI files
  • npx convex ai-files status - Show what is installed and what is stale
  • npx convex ai-files disable - Suppress install and staleness messages in npx convex dev
  • npx convex ai-files enable - Re-enable install and staleness messages
  • npx convex ai-files remove - Remove Convex-managed AI files
• Adds new npx convex deployment commands:
  • npx convex deployment create allows you to create new cloud deployments for a project
  • npx convex deployment select allows you to select the deployment to use in your project directory when running commands
• CLI commands now support the --deployment flag to select a deployment to target. It accepts a deployment name (e.g. joyful-capybara-123), ref (e.g. dev/james), dev (for your personal dev deployment), or prod (for your project’s default production deployment). You can also select deployments in other projects with project-slug:ref or team-slug:project-slug:ref.
• Improves websocket client backoff behavior.
• No longer recreates convex/README.md when convex/ already exists.

1.33.1

• Fixes the ConvexProviderWithClerk to fetch the JWT template if the (new) Convex integration is not enabled. It is safe to both set the JWT template and enable the integration. In 1.33.0 it broke if you only had the JWT template specified.

1.33.0

• npx convex env set can now:
  • Accept a value interactively

... (truncated)

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by ianatconvex, a new releaser for convex since your current version.

Updates solid-js from 1.9.11 to 1.9.12

Commits

• See full diff in compare view

Updates vite-plugin-solid from 2.11.10 to 2.11.12

Release notes

Sourced from vite-plugin-solid's releases.

vite-plugin-solid@2.11.12

Patch Changes

• 9e46d91: fix: preserve jsx for rolldown dep scan

vite-plugin-solid@2.11.11

Patch Changes

• 7f39675: Add vite 8 in peer deps

Changelog

Sourced from vite-plugin-solid's changelog.

2.11.12

Patch Changes

• 9e46d91: fix: preserve jsx for rolldown dep scan

2.11.11

Patch Changes

• 7f39675: Add vite 8 in peer deps

Commits

• 9a3f3a6 Version Packages (#254)
• 9e46d91 [main] fix: preserve jsx for rolldown/vite8 dep scan (#251)
• 7843a41 ci: extend changeset workflow to next branch (#247)
• 9c7a3a5 Merge pull request #246 from solidjs/ci--trusted-publishing-permissions
• 25fb0a1 ci: trusted publishing permissions
• 04eec66 Merge pull request #245 from solidjs/chore--bump-github-ci-to-node-24
• 52f1033 chore: bump github ci to node 24
• 37dcf09 Version Packages (#244)
• 7f39675 [main] Allow vite 8 in peerDeps (#242)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for vite-plugin-solid since your current version.

Updates vitest from 4.1.0 to 4.1.2

Release notes

Sourced from vitest's releases.

v4.1.2

This release bumps Vitest's flatted version and removes version pinning to resolve flatted's CVE related issues (vitest-dev/vitest#9975).

   🐞 Bug Fixes

• Don't resolve setupFiles from parent directory  -  by @​hi-ogawa in vitest-dev/vitest#9960 (7aa93)
• Ensure sequential mock/unmock resolution  -  by @​hi-ogawa and Claude Opus 4.6 in vitest-dev/vitest#9830 (7c065)
• browser: Take failure screenshot if toMatchScreenshot can't capture a stable screenshot  -  by @​macarie in vitest-dev/vitest#9847 (faace)
• coverage: Correct coverageConfigDefaults values and types  -  by @​Arthie in vitest-dev/vitest#9940 (b3c99)
• pretty-format: Fix output limit over counting  -  by @​hi-ogawa in vitest-dev/vitest#9965 (d3b7a)
• Disable colors if agent is detected  -  by @​sheremet-va and @​AriPerkkio in vitest-dev/vitest#9851 (6f97b)

    View changes on GitHub

v4.1.1

   🚀 Features

• experimental:
  • Expose matchesTags to test if the current filter matches tags  -  by @​sheremet-va in vitest-dev/vitest#9913 (eec53)
  • Introduce experimental.vcsProvider  -  by @​sheremet-va in vitest-dev/vitest#9928 (56115)

   🐞 Bug Fixes

• Mark TestProject.testFilesList internal properly  -  by @​sapphi-red in vitest-dev/vitest#9867 (54f26)
• Detect fixture that returns without calling use  -  by @​oilater in vitest-dev/vitest#9831 and vitest-dev/vitest#9861 (633ae)
• Drop vite 8.beta support  -  by @​AriPerkkio in vitest-dev/vitest#9862 (b78f5)
• Type regression in vi.mocked() static class methods  -  by @​purepear and @​hi-ogawa in vitest-dev/vitest#9857 (90926)
• Properly re-evaluate actual modules of mocked external  -  by @​hi-ogawa in vitest-dev/vitest#9898 (ae5ec)
• Preserve coverage report when html reporter overlaps  -  by @​hi-ogawa in vitest-dev/vitest#9889 (2d81a)
• Provide vi.advanceTimers to the preview provider  -  by @​sheremet-va in vitest-dev/vitest#9891 (1bc3e)
• Don't leak event listener in playwright provider  -  by @​sheremet-va in vitest-dev/vitest#9910 (d9355)
• Open browser in --standalone mode without running tests  -  by @​sheremet-va in vitest-dev/vitest#9911 (e78ad)
• Guard disposable and optional body  -  by @​sheremet-va in vitest-dev/vitest#9912 (6fdb2)
• Resolve retry.condition RegExp serialization issue  -  by @​nstepien and @​hi-ogawa in vitest-dev/vitest#9942 (7b605)
• collect:
  • Don't treat extra props on test return as tests  -  by @​sheremet-va in vitest-dev/vitest#9871 (141e7)
• coverage:
  • Simplify provider types  -  by @​AriPerkkio in vitest-dev/vitest#9931 (aaf9f)
  • Load built-in provider without module runner  -  by @​AriPerkkio in vitest-dev/vitest#9939 (bf892)
• expect:
  • Soft assertions continue after .resolves/.rejects promise errors  -  by @​mixelburg, Maks Pikov, Claude Opus 4.6 (1M context) and @​hi-ogawa in vitest-dev/vitest#9843 (6d74b)
  • Fix sinon-chai style API  -  by @​hi-ogawa in vitest-dev/vitest#9943 (0f08d)
• pretty-format:
  • Limit output for large object  -  by @​hi-ogawa and Claude Opus 4.6 (1M context) in vitest-dev/vitest#9949 (0d5f9)

...

Description has been truncated