fix(deps): update dependencies (non-major)

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
@aws-sdk/client-s3 (source)	3.896.0 -> 3.916.0
@aws-sdk/s3-request-presigner (source)	3.896.0 -> 3.916.0
@codemirror/legacy-modes	6.5.1 -> 6.5.2
@codemirror/view	6.38.4 -> 6.38.6
@next/bundle-analyzer (source)	15.5.4 -> 15.5.6
@octokit/types	15.0.0 -> 15.0.1
@playwright/test (source)	1.55.1 -> 1.56.1
@prisma/client (source)	5.17.0 -> 5.22.0
@supabase/realtime-js (source)	2.15.6 -> 2.76.1
@testing-library/jest-dom	6.8.0 -> 6.9.1
@types/node (source)	22.18.6 -> 22.18.12
@types/react (source)	19.1.15 -> 19.2.2
@types/react-dom (source)	19.1.9 -> 19.2.2
@typescript-eslint/eslint-plugin (source)	7.16.1 -> 7.18.0
@typescript-eslint/parser (source)	7.16.1 -> 7.18.0
@vitejs/plugin-react (source)	5.0.4 -> 5.1.0
eslint (source)	8.57.0 -> 8.57.1
eslint-config-prettier	9.1.0 -> 9.1.2
jsdom	27.0.0 -> 27.0.1
katex (source)	0.16.22 -> 0.16.25
lint-staged	16.2.3 -> 16.2.6
motion	12.23.22 -> 12.23.24
pnpm (source)	10.17.1 -> 10.19.0
prettier-plugin-tailwindcss	0.6.5 -> 0.7.1
prisma (source)	5.17.0 -> 5.22.0
react (source)	19.1.1 -> 19.2.0
react-dom (source)	19.1.1 -> 19.2.0
react-hook-form (source)	7.63.0 -> 7.65.0
tailwindcss (source)	3.4.5 -> 3.4.18
typescript (source)	5.5.3 -> 5.9.3
zod (source)	4.1.11 -> 4.1.12

---

Release Notes

aws/aws-sdk-js-v3 (@​aws-sdk/client-s3)

v3.916.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.914.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.913.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.911.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.910.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.908.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.907.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.906.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.901.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.899.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

aws/aws-sdk-js-v3 (@​aws-sdk/s3-request-presigner)

v3.916.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

v3.914.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

v3.913.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

v3.911.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

v3.910.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

v3.908.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

v3.907.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

v3.906.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

v3.901.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

v3.899.0

Compare Source

Note: Version bump only for package @​aws-sdk/s3-request-presigner

codemirror/legacy-modes (@​codemirror/legacy-modes)

v6.5.2

Compare Source

Bug fixes

Properly tokenize multi-line strings in TOML mode.

Properly declare comment syntax metadata for the Q language.

codemirror/view (@​codemirror/view)

v6.38.6

Compare Source

Bug fixes

Work around a regression in Safari 26 that causes fragments of old selections to remain visible.

v6.38.5

Compare Source

Bug fixes

Avoid firing text changes that cover unchanged text on Android.

Fix an issue where the editor could, in some circumstances, insert a stray newline when typing over a document that ended in a block widget.

Work around an issue in Safari 26 that causes inappropriate scrolling on focus in some circumstances.

vercel/next.js (@​next/bundle-analyzer)

v15.5.6

Compare Source

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• Turbopack: don't define process.cwd() in node_modules #​83452

Credits

Huge thanks to @​mischnic for helping!

v15.5.5

Compare Source

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• Split code-frame into separate compiled package (#​84238)
• Add deprecation warning to Runtime config (#​84650)
• fix: unstable_cache should perform blocking revalidation during ISR revalidation (#​84716)
• feat: experimental.middlewareClientMaxBodySize body cloning limit (#​84722)
• fix: missing next/link types with typedRoutes (#​84779)

Misc Changes

• docs: early October improvements and fixes (#​84334)

Credits

Huge thanks to @​devjiwonchoi, @​ztanner, and @​icyJoseph for helping!

octokit/types.ts (@​octokit/types)

v15.0.1

Compare Source

Bug Fixes

• reduce complexity (#​687) (a0529c1)

microsoft/playwright (@​playwright/test)

v1.56.1

Compare Source

Highlights

#​37871 chore: allow local-network-access permission in chromium
#​37891 fix(agents): remove workspaceFolder ref from vscode mcp
#​37759 chore: rename agents to test agents
#​37757 chore(mcp): fallback to cwd when resolving test config

Browser Versions

• Chromium 141.0.7390.37
• Mozilla Firefox 142.0.1
• WebKit 26.0

v1.56.0

Compare Source

Playwright Agents

Introducing Playwright Agents, three custom agent definitions designed to guide LLMs through the core process of building a Playwright test:

• 🎭 planner explores the app and produces a Markdown test plan
• 🎭 generator transforms the Markdown plan into the Playwright Test files
• 🎭 healer executes the test suite and automatically repairs failing tests

Run npx playwright init-agents with your client of choice to generate the latest agent definitions:

### Generate agent files for each agentic loop
### Visual Studio Code
npx playwright init-agents --loop=vscode

### Claude Code
npx playwright init-agents --loop=claude

### opencode
npx playwright init-agents --loop=opencode

[!NOTE]
VS Code v1.105 (currently on the VS Code Insiders channel) is needed for the agentic experience in VS Code. It will become stable shortly, we are a bit ahead of times with this functionality!

Learn more about Playwright Agents

New APIs

• New methods page.consoleMessages() and page.pageErrors() for retrieving the most recent console messages from the page
• New method page.requests() for retrieving the most recent network requests from the page
• Added --test-list and --test-list-invert to allow manual specification of specific tests from a file

UI Mode and HTML Reporter

• Added option to 'html' reporter to disable the "Copy prompt" button
• Added option to 'html' reporter and UI Mode to merge files, collapsing test and describe blocks into a single unified list
• Added option to UI Mode mirroring the --update-snapshots options
• Added option to UI Mode to run only a single worker at a time

Breaking Changes

• Event browserContext.on('backgroundpage') has been deprecated and will not be emitted. Method browserContext.backgroundPages() will return an empty list

Miscellaneous

• Aria snapshots render and compare input placeholder
• Added environment variable PLAYWRIGHT_TEST to Playwright worker processes to allow discriminating on testing status

Browser Versions

• Chromium 141.0.7390.37
• Mozilla Firefox 142.0.1
• WebKit 26.0

prisma/prisma (@​prisma/client)

v5.22.0

Compare Source

Today, we are excited to share the 5.22.0 stable release 🎉

🌟 Help us spread the word about Prisma by starring the repo ☝️ or posting on X about the release.

Highlights

Further Tracing Improvements

In our ongoing effort to stabilize the tracing Preview feature, we’ve made our spans compliant with OpenTelemetry Semantic Conventions for Database Client Calls. This should lead to better compatibility with tools such as DataDog and Sentry.

We’ve also included numerous bug fixes that should make this Preview feature easier to work with.

Metrics bug fix

Occasionally, connection pool metrics would become negative or grow unbounded. In this release, connection pool metrics should stay consistent.

Connection Pool Timeout fix

In a specific case, there could be issues where fetching a new connection from the connection pool would time out, regardless of the state of the application and connection pool. If you have experience connection pool issues accessing a PostgreSQL database with TLS encryption in a resource-constrained environment (such as Function-as-a-Service offerings or very small VPS) this should resolve those issues.

Special thanks to @​youxq for their pull request and help resolving this issue!

Join us

Looking to make an impact on Prisma in a big way? We're hiring!

Learn more on our careers page: https://www.prisma.io/careers

Fixes and improvements

Prisma Migrate

• removing @unique in schema.prisma does not generate SQL to do so

Prisma

• Prisma generate randomly fails on Ubuntu due to missing internal .so libquery_engine-debian-openssl-1.1.x.so.node
• Timed out fetching a new connection from the connection pool.
• Some prisma:engine:connection spans have no parent
• Query-related spans outside of prisma:engine:itx_runner are disconnected from the tree
• Tracing with dataproxy/mini-proxy: itx_runner span and it's children are missing sometimes
• Incorrect OpenTelemetry span reported by Prisma
• OTEL spans are not recognised as spans from a database
• SQL Injection bug - D1 adaptor throws "Conversion failed: expected a datetime string in column" when string column contains any ISO date
• Prisma generate randomly fails on Ubuntu due to missing internal .so libquery_engine-debian-openssl-1.1.x.so.node

Credits

Huge thanks to @​tmm1, @​Takur0, @​hinaloe, @​andyjy, and @​youxq for helping!

v5.21.1

Compare Source

• Fixed a bug where migrations were not using shadow database correctly in some edge cases

v5.21.0

Compare Source

Today, we are excited to share the 5.21.0 release 🎉

🌟 Help us spread the word about Prisma by starring the repo ☝️ or posting on X about the release.

Highlights

Better support for tracing in MongoDB

The tracing Preview feature now has full support for MongoDB with previously missing functionality now implemented. This is a part of the ongoing effort to stabilize this Preview feature and release it in General Availability.

tracing is a Preview feature that enables built-in support for OpenTelemetry instrumentation inside the Prisma Client and provides deep insights into the performance and timing of your queries. See our documentation for more information.

For an easy to use and zero-configuration tracing instrumentation tool with a dashboard that provides an overview of your queries, statistics, and AI-powered recommendations, try Prisma Optimize.

WebAssembly engine size decrease for edge functions

Due to recent changes, some users experienced a steep increase of the bundle size in Prisma 5.20 when using the driverAdapters Preview feature, going over the 1 MB limit on the free tier of Cloudflare Workers. This has now been fixed.

Fixes and improvements

Prisma Engines

• Avoid regex crate for wasm bundle size (to keep cloudflare free plan)

Credits

Huge thanks to @​austin-tildei, @​LucianBuzzo, @​mcuelenaere, @​pagewang0, @​key-moon, @​pranayat, @​yubrot, @​skyzh for helping!

v5.20.0

Compare Source

🌟 Help us spread the word about Prisma by starring the repo or posting on X about the release. 🌟

Highlights

strictUndefinedChecks in Preview

With Prisma ORM 5.20.0, the Preview feature strictUndefinedChecks will disallow any value that is explicitly undefined and will be a runtime error. This change is direct feedback from this GitHub issue and follows our latest proposal on the same issue.

To demonstrate the change, take the following code snippet:

prisma.table.deleteMany({
  where: {
    // If `nullableThing` is nullish, this query will remove all data.
    email: nullableThing?.property,
  }
})

In Prisma ORM 5.19.0 and below, this could result in unintended behavior. In Prisma ORM 5.20.0, if the strictUndefinedChecks Preview feature is enabled, you will get a runtime error instead:

Invalid \`prisma.user.findMany()\` invocation in
/client/tests/functional/strictUndefinedChecks/test.ts:0:0
  XX })
  XX 
  XX test('throws on undefined input field', async () => {
→ XX   const result = prisma.user.deleteMany({
         where: {
           email: undefined
                  ~~~~~~~~~
         }
       })
Invalid value for argument \`where\`: explicitly \`undefined\` values are not allowed."

We have also introduced the Prisma.skip symbol, which will allow you to get the previous behavior if desired.

prisma.table.findMany({
  where: {
    // Use Prisma.skip to skip parts of the query
    email: nullableEmail ?? Prisma.skip
  }
})

From Prisma ORM 5.20.0 onward, we recommend enabling strictUndefinedChecks, along with the TypeScript compiler option exactOptionalPropertyTypes, which will help catch cases of undefined values at compile time. Together, these two changes will help protect your Prisma queries from potentially destructive behavior.

strictUndefinedChecks will be a valid Preview feature for the remainder of Prisma ORM 5. With our next major version, this behavior will become the default and the Preview feature will be “graduated” to Generally Available.

If you have any questions or feedback about strictUndefinedChecks, please ask/comment in our dedicated Preview feature GitHub discussion.

typedSql bug fix

Thank you to everyone who has tried out our typedSql Preview feature and provided feedback! This release has a quick fix for typescript files generated when Prisma Schema enums had hyphens.

Fixes and improvements

Prisma

• Prisma incorrectly parses CRDB's FK constraint error as not available.
• Invalid TypeScript files created by generate when typedSql is enabled and enum contains hyphens.
• @prisma/internals didn't list ts-toolbelt in dependencies.
• using $extends prevents model comments from being passed to TypeScript

Prisma Engines

• Planetscale engine tests: interactive_tx
• Fix broken engine size publishing workflow

Credits

Huge thanks to @​mcuelenaere, @​pagewang0, @​key-moon, @​pranayat, @​yubrot, @​thijmenjk, @​mydea, @​HRM, @​haaawk, @​baileywickham, @​brian-dlee, @​nickcarnival, @​eruditmorina, @​nzakas, and @​gutyerrez for helping!

v5.19.1

Compare Source

Today, we are issuing the 5.19.1 patch release.

What's Changed

We've fixed the following issues:

• #​25103
• #​25137
• #​25104
• #​25101

Full Changelog: prisma/prisma@5.19.0...5.19.x, prisma/prisma-engines@5.19.0...5.19.x

v5.19.0

Compare Source

Today, we are excited to share the 5.19.0 stable release 🎉

🌟 Help us spread the word about Prisma by starring the repo or posting on X about the release. 🌟

Highlights

Introducing TypedSQL

TypedSQL is a brand new way to interact with your database from Prisma Client. After enabling the typedSql Preview feature, you’re able to write SQL queries in a new sql subdirectory of your prisma directory. These queries are then checked by Prisma during using the new --sql flag of prisma generate and added to your client for use in your code.

To get started with TypedSQL:

1. Make sure that you have the latest version of prisma and @prisma/client installed:

   npm install -D prisma@latest
   npm install @​prisma/client@latest
   

2. Enable the typedSql Preview feature in your Prisma Schema.

      generator client {
        provider = "prisma-client-js"
        previewFeatures = ["typedSql"]
      }
   

3. Create a sql subdirectory of your prisma directory.

   mkdir -p prisma/sql
   

4. You can now add .sql files to the sql directory! Each file can contain one sql query and the name must be a valid JS identifier. For this example, say you had the file getUsersWithPosts.sql with the following contents:

   SELECT u.id, u.name, COUNT(p.id) as "postCount"
   FROM "User" u
   LEFT JOIN "Post" p ON u.id = p."authorId"
   GROUP BY u.id, u.name

5. Import your SQL query into your code with the @prisma/client/sql import:

      import { PrismaClient } from '@​prisma/client'
      import { getUsersWithPosts } from '@​prisma/client/sql'
   
      const prisma = new PrismaClient()
   
      const usersWithPostCounts = await prisma.$queryRawTyped(getUsersWithPosts)
      console.log(usersWithPostCounts)

There’s a lot more to talk about with TypedSQL. We think that the combination of the high-level Prisma Client API and the low-level TypedSQL will make for a great developer experience for all of our users.

To learn more about behind the “why” of TypedSQL be sure to check out our announcement blog post.

For docs, check out our new TypedSQL section.

Bug fixes

Driver adapters and D1

A few issues with our driverAdapters Preview feature and Cloudflare D1 support were resolved via prisma/prisma-engines#4970 and #​24922

• Mathematic operations such as max, min, eq, etc in queries when using Cloudflare D1.
• Resolved issues when comparing BigInt IDs when relationMode="prisma" was enabled and Cloudflare D1 was being used.

Joins

• #​23742 fixes Prisma Client not supporting deeply nested some clauses when the relationJoins Preview feature was enabled.

MongoDB

The MongoDB driver for Rust (that our query engine users under the hood) had behavior that prioritized IPv4 connections over IPv6 connections. In IPv6-only environments, this could lead to significant "cold starts" where the query engine had to wait for IPv4 to fail before the driver would try IPv6.

With help from the MongoDB team, this has been resolved. The driver will now try IPv4 and IPv6 connections in parallel and then move forward with the first response. This should prevent cold start issues that have been seen with MongoDB in Prisma Accelerate.

Thank you to the MongoDB team!

Join us

Looking to make an impact on Prisma in a big way? We're now hiring engineers for the ORM team!

• Senior Engineer (TypeScript): This person will be primarily working on the TypeScript side and evolving our Prisma client. Rust knowledge (or desire to learn Rust) is a plus.
• Senior Engineer (Rust): This person will be focused on the prisma-engines Rust codebase. TypeScript knowledge (or, again, a desire to learn) is a plus.

Credits

Huge thanks to @​mcuelenaere, @​pagewang0, @​Druue, @​key-moon, @​Jolg42, @​pranayat, @​ospfranco, @​yubrot, @​skyzh for helping!

v5.18.0

Compare Source

🌟 Help us spread the word about Prisma by starring the repo or tweeting about the release. 🌟

Highlights

Native support for UUIDv7

Previous to this release, the Prisma Schema function uuid() did not accept any arguments and created a UUIDv4 ID. While sufficient in many cases, UUIDv4 has a few drawbacks, namely that it is not temporally sortable.

UUIDv7 attempts to resolve this issue, making it easy to temporally sort your database rows by ID!

To support this, we’ve updated the uuid() function in Prisma Schema to accept an optional, integer argument. Right now, the only valid values are 4 and 7, with 4 being the default.

model User {
  id   String @​id @​default(uuid()) // defaults to 4
  name String
}

model User {
  id   String @​id @​default(uuid(4)) // same as above, but explicit
  name String
}

model User {
  id   String @​id @​default(uuid(7)) // will use UUIDv7 instead of UUIDv4
  name String
}

Bug squashing

We’ve squashed a number of bugs this release, special thanks to everyone who helped us! A few select highlights are:

• SQLite db will now be created and read from the correct location when using prismaSchemaFolder.
• Empty Json[] fields will now return [] instead of null when accessed through a join using the relationJoins Preview feature.

Fixes and improvements

Prisma

• Support UUID v7

Language tools (e.g. VS Code)

• Support fetching references for a model

Share your feedback about Prisma ORM

We want to know how you like working with Prisma ORM in your projects! Please take our 2min survey and let us know what you like or where we can improve 🙏

Credits

Huge thanks to @​mcuelenaere, @​pagewang0, @​Druue, @​key-moon, @​Jolg42, @​pranayat, @​ospfranco, @​yubrot, @​skyzh, @​haaawk for helping!

supabase/supabase-js (@​supabase/realtime-js)

v2.76.1

Compare Source

🩹 Fixes

• repo: add missing tslib dependency to core packages (#​1789)

❤️ Thank You

• Katerina Skroumpelou @​mandarini

v2.76.0

Compare Source

🚀 Features

• realtime: enhance RealtimeChannel type (#​1747)
• realtime: realtime explicit REST call (#​1751)

🩹 Fixes

• realtime: manipulate URLs using URL object (#​1769)

❤️ Thank You

• Filipe Cabaço @​filipecabaco
• Guilherme Souza
• Katerina Skroumpelou @​mandarini

v2.75.1

Compare Source

This was a version bump only for @​supabase/realtime-js to align it with other projects, there were no code changes.

v2.75.0

Compare Source

This was a version bump only for @​supabase/realtime-js to align it with other projects, there were no code changes.

v2.74.0

Compare Source

🚀 Features

• realtime: add support to configure Broadcast Replay (#​1623)

❤️ Thank You

• Eduardo Gurgel

testing-library/jest-dom (@​testing-library/jest-dom)

v6.9.1

Compare Source

Bug Fixes

• Fix undefined Node error (nodejs) (#​707) (0ff8904)

v6.9.0

Compare Source

Features

• Add .toAppearBefore/.toAppearAfter matcher (#​702) (95f870a)

typescript-eslint/typescript-eslint (@​typescript-eslint/eslint-plugin)

v7.18.0

Compare Source

🩹 Fixes

• eslint-plugin: [no-unnecessary-type-assertion] prevent runtime error when asserting a variable declared in default TS lib

• eslint-plugin: [unbound-method] report on destructuring in function parameters

• eslint-plugin: [no-duplicate-type-constituents] shouldn't report on error types

• eslint-plugin: [strict-boolean-expressions] support branded booleans

❤️ Thank You

• auvred
• Oliver Salzburg
• Vinccool96
• Yukihiro Hasegawa

You can read about our versioning strategy and releases on our website.

v7.17.0

Compare Source

🚀 Features

• eslint-plugin: backport no-unsafe-function type, no-wrapper-object-types from v8 to v7

• eslint-plugin: [return-await] add option to report in error-handling scenarios only, and deprecate "never"

🩹 Fixes

• eslint-plugin: [no-floating-promises] check top-level type assertions (and more)

• eslint-plugin: [strict-boolean-expressions] consider assertion function argument a boolean context

• eslint-plugin: [no-unnecessary-condition] false positive on optional private field

❤️ Thank You

• Armano
• Josh Goldberg ✨
• Kirk Waiblinger
• StyleShit

You can read about our versioning strategy and releases on our website.

typescript-eslint/typescript-eslint (@​typescript-eslint/parser)

v7.18.0

[Compare Source](https://redirect.github.com/typescript-eslint/typescript-esli

---

Configuration

📅 Schedule: Branch creation - "before 4am on sunday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Comments	Updated (UTC)
programming-in-th	Error			Sep 27, 2025 8:24pm

[github-actions]

Coverage Report

Status	Category	Percentage	Covered / Total
🔵	Lines	1.38%	135 / 9781
🔵	Statements	1.38%	135 / 9781
🔵	Functions	43.91%	83 / 189
🔵	Branches	47.52%	96 / 202

File Coverage

No changed files found.

Generated in workflow #1961 for commit 012e4ac by the Vitest Coverage Report Action