chore(deps): update all digest updates #52

Merged

renovate[bot] merged 1 commits from renovate/all-digest into master 2026-05-21 04:06:29 +04:00

Conversation 0 Commits 1 Files Changed 2

+4 -4

renovate[bot] commented 2026-05-21 04:06:27 +04:00

Collaborator

Copy Link

Copy Source

This PR contains the following updates:

Package	Change	Age	Confidence
astro (source)	6.3.5 → 6.3.6
npm (source)	11.14.1 → 11.15.0

---

Release Notes

withastro/astro (astro)

v6.3.6

Compare Source

Patch Changes

• #​16774 8f77583 Thanks @​astrobot-houston! - Fixes markdown images with empty alt text (![](image.jpg)) in content collections dropping the alt attribute entirely. The alt="" attribute is now correctly preserved in the rendered HTML output, which is important for accessibility (indicating decorative images).

• #​16776 3d10b5e Thanks @​matthewp! - Fixes HMR serving stale content when components are passed as props via getStaticPaths()

• #​16784 7453860 Thanks @​ematipico! - Improved the printing of the build time if it goes over the 60 seconds.

• #​16665 3dbbcee Thanks @​Princesseuh! - Fixes remote SVG sources erroring with dangerouslyProcessSVG after the v6.3 SVG-processing gate. The default Sharp service now resolves the output format from the source up-front when it can (URL extension, data: MIME, ESM metadata), and from the actual buffer at request time when it can't, so SVG sources pass through untouched without needing to set image.dangerouslyProcessSVG: true or an explicit format="svg".

  The error message has also been updated to point at format="svg" as the simpler workaround when an SVG source is encountered without dangerouslyProcessSVG enabled.

• #​16777 1754b91 Thanks @​matthewp! - Fixes HMR serving stale content for dynamically imported components through barrel files

• #​16730 068d924 Thanks @​harshagarwalnyu! - Fixes an issue where the file() content loader did not generate a valid JSON Schema for collections whose JSON or YAML data is a top-level array instead of an object.

npm/cli (npm)

v11.15.0

Compare Source

Features

• 0d5d899 #​9379 npm stage (@​reggi, @​Copilot)
• 1433740 #​9376 add permissions support to trust commands (#​9376) (@​github-actions[bot], @​reggi, @​Copilot)
• 8df10f5 #​9339 add allow-git/allow-file/allow-directory/allow-remote configs (@​owlstronaut)

Bug Fixes

• 39b625e #​9381 key stage download --json output by package name (#​9381) (@​reggi, @​Copilot)
• 6aa332d #​9339 allow min-release-age in npmrc to coexist with --before (@​raazkhnl)
• 468550f #​9339 refactor #failureNode, adjust tests and safety (@​owlstronaut)
• cabe249 #​9339 allow-remote=none does not block registry tarballs (@​owlstronaut)

Dependencies

• 8416a60 #​9383 socks@2.8.9
• 5e5a25b #​9383 lru-cache@11.5.0
• a6f9ad2 #​9383 ip-address@10.2.0
• 63f8114 #​9383 brace-expansion@5.0.6
• 6918b4c #​9383 bin-links@6.0.2
• bf84079 #​9383 tar@7.5.15
• bdef82c #​9383 semver@7.8.0
• 3f38a67 #​9383 hosted-git-info@9.0.3

Chores

• 816f3bf #​9383 dev dependency updates (@​owlstronaut)
• workspace: @npmcli/arborist@9.6.0
• workspace: @npmcli/config@10.9.1
• workspace: libnpmdiff@8.1.8
• workspace: libnpmexec@10.2.8
• workspace: libnpmfund@7.0.22
• workspace: libnpmpack@9.1.8
• workspace: libnpmpublish@11.2.0

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate.

This PR contains the following updates: | Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) | |---|---|---|---| | [astro](https://astro.build) ([source](https://github.com/withastro/astro/tree/HEAD/packages/astro)) | [`6.3.5` → `6.3.6`](https://renovatebot.com/diffs/npm/astro/6.3.5/6.3.6) |  |  | | [npm](https://docs.npmjs.com/) ([source](https://github.com/npm/cli)) | [`11.14.1` → `11.15.0`](https://renovatebot.com/diffs/npm/npm/11.14.1/11.15.0) |  |  | --- ### Release Notes <details> <summary>withastro/astro (astro)</summary> ### [`v6.3.6`](https://github.com/withastro/astro/blob/HEAD/packages/astro/CHANGELOG.md#636) [Compare Source](https://github.com/withastro/astro/compare/astro@6.3.5...astro@6.3.6) ##### Patch Changes - [#&#8203;16774](https://github.com/withastro/astro/pull/16774) [`8f77583`](https://github.com/withastro/astro/commit/8f7758313df4af52e83e039bb64c41006de93c4e) Thanks [@&#8203;astrobot-houston](https://github.com/astrobot-houston)! - Fixes markdown images with empty alt text (``) in content collections dropping the `alt` attribute entirely. The `alt=""` attribute is now correctly preserved in the rendered HTML output, which is important for accessibility (indicating decorative images). - [#&#8203;16776](https://github.com/withastro/astro/pull/16776) [`3d10b5e`](https://github.com/withastro/astro/commit/3d10b5e16256ff9999e757f86cf2c4f04c36a311) Thanks [@&#8203;matthewp](https://github.com/matthewp)! - Fixes HMR serving stale content when components are passed as props via `getStaticPaths()` - [#&#8203;16784](https://github.com/withastro/astro/pull/16784) [`7453860`](https://github.com/withastro/astro/commit/7453860fb4fb34017365c135678bfd76f1f9aeb5) Thanks [@&#8203;ematipico](https://github.com/ematipico)! - Improved the printing of the build time if it goes over the 60 seconds. - [#&#8203;16665](https://github.com/withastro/astro/pull/16665) [`3dbbcee`](https://github.com/withastro/astro/commit/3dbbcee0a7015867cb1b6770440ba51d1eee3445) Thanks [@&#8203;Princesseuh](https://github.com/Princesseuh)! - Fixes remote SVG sources erroring with `dangerouslyProcessSVG` after the v6.3 SVG-processing gate. The default Sharp service now resolves the output format from the source up-front when it can (URL extension, `data:` MIME, ESM metadata), and from the actual buffer at request time when it can't, so SVG sources pass through untouched without needing to set `image.dangerouslyProcessSVG: true` or an explicit `format="svg"`. The error message has also been updated to point at `format="svg"` as the simpler workaround when an SVG source is encountered without `dangerouslyProcessSVG` enabled. - [#&#8203;16777](https://github.com/withastro/astro/pull/16777) [`1754b91`](https://github.com/withastro/astro/commit/1754b91dec1e5d9839ddfc39fbf2ee1fbb9391a4) Thanks [@&#8203;matthewp](https://github.com/matthewp)! - Fixes HMR serving stale content for dynamically imported components through barrel files - [#&#8203;16730](https://github.com/withastro/astro/pull/16730) [`068d924`](https://github.com/withastro/astro/commit/068d924402dced7670530774f36cca301f91e60c) Thanks [@&#8203;harshagarwalnyu](https://github.com/harshagarwalnyu)! - Fixes an issue where the `file()` content loader did not generate a valid JSON Schema for collections whose JSON or YAML data is a top-level array instead of an object. </details> <details> <summary>npm/cli (npm)</summary> ### [`v11.15.0`](https://github.com/npm/cli/releases/tag/v11.15.0) [Compare Source](https://github.com/npm/cli/compare/v11.14.1...v11.15.0) ##### Features - [`0d5d899`](https://github.com/npm/cli/commit/0d5d899ea8a6981a2a1d3c724384d12fd1908a90) [#&#8203;9379](https://github.com/npm/cli/pull/9379) npm stage ([@&#8203;reggi](https://github.com/reggi), [@&#8203;Copilot](https://github.com/Copilot)) - [`1433740`](https://github.com/npm/cli/commit/1433740a8b42f9359a2178d00a40e3f770b6b1b2) [#&#8203;9376](https://github.com/npm/cli/pull/9376) add permissions support to trust commands ([#&#8203;9376](https://github.com/npm/cli/issues/9376)) ([@&#8203;github-actions](https://github.com/github-actions)\[bot], [@&#8203;reggi](https://github.com/reggi), [@&#8203;Copilot](https://github.com/Copilot)) - [`8df10f5`](https://github.com/npm/cli/commit/8df10f5a399048c9d2dd7eba1d65c0b4b6a5b1c8) [#&#8203;9339](https://github.com/npm/cli/pull/9339) add allow-git/allow-file/allow-directory/allow-remote configs ([@&#8203;owlstronaut](https://github.com/owlstronaut)) ##### Bug Fixes - [`39b625e`](https://github.com/npm/cli/commit/39b625e60628e7fdc96ee88cbe1c3b613bdc1ac5) [#&#8203;9381](https://github.com/npm/cli/pull/9381) key stage download --json output by package name ([#&#8203;9381](https://github.com/npm/cli/issues/9381)) ([@&#8203;reggi](https://github.com/reggi), [@&#8203;Copilot](https://github.com/Copilot)) - [`6aa332d`](https://github.com/npm/cli/commit/6aa332d4cc37c0981f29cfb7e1efc66eee65578c) [#&#8203;9339](https://github.com/npm/cli/pull/9339) allow min-release-age in npmrc to coexist with --before ([@&#8203;raazkhnl](https://github.com/raazkhnl)) - [`468550f`](https://github.com/npm/cli/commit/468550fb8f6ded97df03e6b8a82dbfbcb7b47d30) [#&#8203;9339](https://github.com/npm/cli/pull/9339) refactor #failureNode, adjust tests and safety ([@&#8203;owlstronaut](https://github.com/owlstronaut)) - [`cabe249`](https://github.com/npm/cli/commit/cabe2499347c17d97eecc3bbca3d96fe2f556d0d) [#&#8203;9339](https://github.com/npm/cli/pull/9339) allow-remote=none does not block registry tarballs ([@&#8203;owlstronaut](https://github.com/owlstronaut)) ##### Dependencies - [`8416a60`](https://github.com/npm/cli/commit/8416a6034d5998bdc3980fe0c682b26579ed207e) [#&#8203;9383](https://github.com/npm/cli/pull/9383) `socks@2.8.9` - [`5e5a25b`](https://github.com/npm/cli/commit/5e5a25b5a1f2c2cb6911be22fbf4456d3ed17d88) [#&#8203;9383](https://github.com/npm/cli/pull/9383) `lru-cache@11.5.0` - [`a6f9ad2`](https://github.com/npm/cli/commit/a6f9ad298531c6619f0b2df16e4ed3c27b616765) [#&#8203;9383](https://github.com/npm/cli/pull/9383) `ip-address@10.2.0` - [`63f8114`](https://github.com/npm/cli/commit/63f8114f275830f55c3b0427a2ca9fff4e4cf333) [#&#8203;9383](https://github.com/npm/cli/pull/9383) `brace-expansion@5.0.6` - [`6918b4c`](https://github.com/npm/cli/commit/6918b4cd149a3917e7d84beddb1b20138cc0ebac) [#&#8203;9383](https://github.com/npm/cli/pull/9383) `bin-links@6.0.2` - [`bf84079`](https://github.com/npm/cli/commit/bf84079a507c20d8215bc0154bac65e6d14b27f8) [#&#8203;9383](https://github.com/npm/cli/pull/9383) `tar@7.5.15` - [`bdef82c`](https://github.com/npm/cli/commit/bdef82c2e003b682f4be324a1a45a5a6b09d0ec1) [#&#8203;9383](https://github.com/npm/cli/pull/9383) `semver@7.8.0` - [`3f38a67`](https://github.com/npm/cli/commit/3f38a6777ae746e136756521e0134f92a4425c90) [#&#8203;9383](https://github.com/npm/cli/pull/9383) `hosted-git-info@9.0.3` ##### Chores - [`816f3bf`](https://github.com/npm/cli/commit/816f3bfeed3b8f19bd480ba305eb48c71e779f59) [#&#8203;9383](https://github.com/npm/cli/pull/9383) dev dependency updates ([@&#8203;owlstronaut](https://github.com/owlstronaut)) - [workspace](https://github.com/npm/cli/releases/tag/arborist-v9.6.0): `@npmcli/arborist@9.6.0` - [workspace](https://github.com/npm/cli/releases/tag/config-v10.9.1): `@npmcli/config@10.9.1` - [workspace](https://github.com/npm/cli/releases/tag/libnpmdiff-v8.1.8): `libnpmdiff@8.1.8` - [workspace](https://github.com/npm/cli/releases/tag/libnpmexec-v10.2.8): `libnpmexec@10.2.8` - [workspace](https://github.com/npm/cli/releases/tag/libnpmfund-v7.0.22): `libnpmfund@7.0.22` - [workspace](https://github.com/npm/cli/releases/tag/libnpmpack-v9.1.8): `libnpmpack@9.1.8` - [workspace](https://github.com/npm/cli/releases/tag/libnpmpublish-v11.2.0): `libnpmpublish@11.2.0` </details> --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNjMuMyIsInVwZGF0ZWRJblZlciI6IjQzLjE2My4zIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImF1dG9tYXRlZCIsImRlcGVuZGVuY2llcyJdfQ==-->

renovate[bot] added 1 commit 2026-05-21 04:06:27 +04:00

chore(deps): update all digest updates 2531ca5a83

renovate[bot] scheduled this pull request to auto merge when all checks succeed 2026-05-21 04:06:27 +04:00

renovate[bot] merged commit 2531ca5a83 into master 2026-05-21 04:06:29 +04:00

renovate[bot] deleted branch renovate/all-digest 2026-05-21 04:06:29 +04:00

Sign in to join this conversation.

Reviewers

No Reviewers

Labels

No items

No Label

Milestone

No items

No Milestone

Assignees

Clear assignees

renovatebot (renovate[bot]) valentineus (Valentin Popov)

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: valentineus/popov.link#52