build(deps): bump the minor-and-patch group with 3 updates

[dependabot]

Bumps the minor-and-patch group with 3 updates: dotenv, maplibre-gl and react-map-gl.

Updates dotenv from 17.4.1 to 17.4.2

Changelog

Sourced from dotenv's changelog.

17.4.2 (2026-04-12)

Changed

• Improved skill files - tightened up details (#1009)

Commits

• f116f70 17.4.2
• 3a81612 fix visual order of faq
• 13f55a8 Merge branch 'skill'
• 4bbbf73 reorganize faq
• c3da64b Merge pull request #1009 from motdotla/skill
• 6f743b1 update source
• fc2c624 update skill
• 972315b Tighten up skill
• 2795fce reorganize faq
• d5495d4 adjust skill
• Additional commits viewable in compare view

Updates maplibre-gl from 5.22.0 to 5.23.0

Release notes

Sourced from maplibre-gl's releases.

v5.23.0

✨ Features and improvements

• Add touchZoomRotate.setZoomRate() and touchZoomRotate.setZoomThreshold() to customize touch zoom speed and pinch sensitivity (#7271)
• Improve ability to communicate with imported scripts in workers and use makeRequest in workres as well (#7451) (by @​HarelM)
• Allow opacity and opacityWhenCovered in Marker and MarkerOptions to accept number in addition to string, and add maplibregl-marker-covered CSS class to Marker element when covered by 3D terrain or a globe (#7433) (by @​YuChunTsao)
• perf: add a bench for terrain rendering and fix _demMatrixCache lookup being wasted cycles by actually using the cache (#7400) (by @​CommanderStorm)

🐞 Bug fixes

• Fix polygon text label placement drifting far from center for convex polygons at high zoom due to coordinate rounding in geojson-vt (#7380) (by @​CommanderStorm)
• Ensure that a successful ArrayBuffer response from a custom protocol that is null/undefined is set to an empty ArrayBuffer (#7427) (by @​neodescis)
• Fix error in _contextRestored when map was initialized without a style (#7432) (by @​mvanhorn)
• Fix issue with the cache used for zoomLevelsToOverscale feature (#7450) (by @​HarelM)
• Update stylelint and fix old issues with the CSS (mainly change rgb to use spaces) (#7365) (by @​HarelM)

Changelog

Sourced from maplibre-gl's changelog.

5.23.0

✨ Features and improvements

• Add touchZoomRotate.setZoomRate() and touchZoomRotate.setZoomThreshold() to customize touch zoom speed and pinch sensitivity (#7271)
• Improve ability to communicate with imported scripts in workers and use makeRequest in workres as well (#7451) (by @​HarelM)
• Allow opacity and opacityWhenCovered in Marker and MarkerOptions to accept number in addition to string, and add maplibregl-marker-covered CSS class to Marker element when covered by 3D terrain or a globe (#7433) (by @​YuChunTsao)
• perf: add a bench for terrain rendering and fix _demMatrixCache lookup being wasted cycles by actually using the cache (#7400) (by @​CommanderStorm)

🐞 Bug fixes

• Fix polygon text label placement drifting far from center for convex polygons at high zoom due to coordinate rounding in geojson-vt (#7380) (by @​CommanderStorm)
• Ensure that a successful ArrayBuffer response from a custom protocol that is null/undefined is set to an empty ArrayBuffer (#7427) (by @​neodescis)
• Fix error in _contextRestored when map was initialized without a style (#7432) (by @​mvanhorn)
• Fix issue with the cache used for zoomLevelsToOverscale feature (#7450) (by @​HarelM)
• Update stylelint and fix old issues with the CSS (mainly change rgb to use spaces) (#7365) (by @​HarelM)

Commits

• 7f61f6f Bump js version to 5.23.0 (#7455)
• 6ace141 Update geojson-vt to version 6.1.0 (#7454)
• 1cbb01c chore(deps): bump codecov/codecov-action from 5.5.3 to 6.0.0 (#7358)
• 62c11c0 chore(deps-dev): bump stylelint from 16.26.1 to 17.6.0 (#7365)
• f40a683 test (#7452)
• d5c86fe Improve ability to import scripts in workers (#7451)
• f2072c3 fix: guard against null style in _contextRestored (#7446)
• 8072fe6 feat(marker): support number for opacity options (#7442)
• 3f6b54c Fix cache key for _zoomLevelsToOverscale experimental feature (#7450)
• 8584c2e chore(deps-dev): bump basic-ftp from 5.2.1 to 5.2.2 (#7447)
• Additional commits viewable in compare view

Updates react-map-gl from 8.1.0 to 8.1.1

Release notes

Sourced from react-map-gl's releases.

v8.1.1

• fix(react-maplibre): guard against undefined map.style in _updateStyleComponents (#2580)
• feat: Add GlobeControl for maplibre (#2554)
• Invoke setter with default when prop missing (#2560)
• fix: max depth exceeded error when dynamically changing map settings (#2535)

Changelog

Sourced from react-map-gl's changelog.

v8.1.1 (Apr 10, 2026)

• fix(react-maplibre): guard against undefined map.style in _updateStyleComponents (#2580)
• feat: Add GlobeControl for maplibre (#2554)
• Invoke setter with default when prop missing (#2560)
• fix: max depth exceeded error when dynamically changing map settings (#2535)

Commits

• f295bd5 v8.1.1
• 34855b7 fix(react-maplibre): guard against undefined map.style in _updateStyleCompone...
• b07df54 chore: Update workflows to use Corepack (#2576)
• a7896ff feat: Add GlobeControl for maplibre (#2554)
• 1d07287 Invoke setter with default when prop missing (#2560)
• d196fdc fix: max depth exceeded error when dynamically changing map settings (#2535)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Summary by CodeRabbit

• Chores
  • Updated runtime dependencies to the latest compatible versions for improved stability and performance.

[coderabbitai]

📝 Walkthrough

Walkthrough

Updates three runtime dependencies to newer versions: dotenv to ^17.4.2, maplibre-gl to ^5.23.0, and react-map-gl to ^8.1.1. No structural or configuration changes.

Changes

Cohort / File(s)	Summary
Dependency Version Updates package.json	Bumped dotenv, maplibre-gl, and react-map-gl to patch or minor versions.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately describes the changeset: it's a dependency version bump for three packages (dotenv, maplibre-gl, react-map-gl) following semantic versioning conventions.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch dependabot/npm_and_yarn/minor-and-patch-f8921c40ff

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

🧹 Nitpick comments (1)

package.json (1)

34-34: Patch includes bug fixes that may affect behavior.

Changes include:

• Guard against undefined map.style
• Setter invocation with defaults when props missing
• Max-depth error fix for dynamic map settings

Test map initialization and dynamic prop changes.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@package.json` at line 34, Guard against undefined map.style and ensure safe
defaulting when applying dynamic props: in initializeMap and updateMapProps,
check that map and map.style exist before reading or mutating (use map?.style or
early return) and call setStyle / other setter functions with explicit default
values when props are missing (e.g., pass defaults into setStyle, setCenter,
setZoom). Also replace any unbounded recursive logic in applyDynamicMapSettings
(or similarly named dynamic settings handler) with an iterative loop or add a
max-depth counter to prevent max call stack errors when applying nested/dynamic
settings. Ensure all changes target initializeMap, updateMapProps,
applyDynamicMapSettings, and setStyle (or the equivalent setter functions) so
map initialization and dynamic prop updates behave safely.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Nitpick comments:
In `@package.json`:
- Line 34: Guard against undefined map.style and ensure safe defaulting when
applying dynamic props: in initializeMap and updateMapProps, check that map and
map.style exist before reading or mutating (use map?.style or early return) and
call setStyle / other setter functions with explicit default values when props
are missing (e.g., pass defaults into setStyle, setCenter, setZoom). Also
replace any unbounded recursive logic in applyDynamicMapSettings (or similarly
named dynamic settings handler) with an iterative loop or add a max-depth
counter to prevent max call stack errors when applying nested/dynamic settings.
Ensure all changes target initializeMap, updateMapProps,
applyDynamicMapSettings, and setStyle (or the equivalent setter functions) so
map initialization and dynamic prop updates behave safely.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: bde931e2-b389-43d6-ba8a-eb850f630443

📥 Commits

Reviewing files that changed from the base of the PR and between 04ef505 and f707c7f.

⛔ Files ignored due to path filters (1)

• package-lock.json is excluded by !**/package-lock.json, !**/package-lock.json

📒 Files selected for processing (1)

• package.json