chore(deps)(deps): bump react-day-picker from 9.14.0 to 10.0.1

[dependabot]

Bumps react-day-picker from 9.14.0 to 10.0.1.

Release notes

Sourced from react-day-picker's releases.

v10.0.1

What's Changed

• fix: apply inline styles to all component slots by @​gpbl in gpbl/react-day-picker#2995
• fix: add @​types/react as optional peer dependency by @​mrmckeb in gpbl/react-day-picker#2997

New Contributors

• @​mrmckeb made their first contribution in gpbl/react-day-picker#2997

Full Changelog: gpbl/react-day-picker@v10.0.0...v10.0.1

v10.0.0

DayPicker v10 removes the public APIs deprecated in v9 and introduces a new @daypicker/react package name. Non-Gregorian calendars are now published as standalone @daypicker/* packages.

If your app already uses the current v9 API, the upgrade should be relatively small. If your app still relies on deprecated v9 APIs, those usages should be updated before upgrading.

See the full v10 changelog, the upgrade guide, and the v10 announcement for questions and upgrade feedback.

Install

npm install react-day-picker@latest

For new projects, prefer the scoped package name:

npm install @daypicker/react@latest

import { DayPicker } from "@daypicker/react";
import "@daypicker/react/style.css";

The react-day-picker package remains available in v10 for compatibility.

Breaking Changes

Deprecated navigation props removed

Removed prop	Use instead
fromMonth	startMonth
fromYear	startMonth={new Date(year, 0)}
toMonth	endMonth
toYear	endMonth={new Date(year, 11)}
fromDate	hidden={{ before: date }} and optionally startMonth
toDate	hidden={{ after: date }} and optionally endMonth

Deprecated focus and event props removed

... (truncated)

Changelog

Sourced from react-day-picker's changelog.

v10.0.1

Release date: 2026-05-12

This patch release fixes inline styles for component slots and adds @types/react as an optional peer dependency for strict package managers.

What's Changed

• fix: apply inline styles to all component slots by @​gpbl in #2995
• fix: add @types/react as an optional peer dependency by @​mrmckeb in #2997

v10.0.0

Release date: 2026-05-08

This major release introduces the @daypicker/react package name, publishes calendar add-on packages under the @daypicker/* scope, and removes public APIs that were deprecated in v9.

Upgrading to v10

Upgrading from v9 should be straightforward if your app does not use any deprecated APIs. See the upgrading guide for details. If you use one of the non-Gregorian calendars, such as Persian, Hebrew, Buddhist, Ethiopic, or Hijri, install the corresponding calendar add-on package alongside DayPicker.

Package Name

For new projects, prefer the @daypicker/react package:

import { DayPicker } from "@daypicker/react";
import "@daypicker/react/style.css";

The react-day-picker package remains available for compatibility and exposes the same DayPicker API in v10.

Calendar Packages

Calendar add-on packages are now published under the @daypicker/* scope. Install the add-on package for the calendar you need alongside @daypicker/react. For example, to use the Persian calendar:

npm install @daypicker/react @daypicker/persian

Breaking Changes

• Removed deprecated props: fromDate, toDate, fromMonth, toMonth, fromYear, toYear, initialFocus.
• Removed deprecated event props: onWeekNumberClick, onDayKeyUp, onDayKeyPress, onDayPointerEnter, onDayPointerLeave, onDayTouchCancel, onDayTouchEnd, onDayTouchMove, onDayTouchStart.
• Removed deprecated type exports from types/deprecated.
• Removed deprecated aliases: formatMonthCaption, formatYearCaption, labelDay, labelCaption, isMatch, isDateInRange.
• Removed the deprecated components.Button customization entry.
• Removed deprecated DeprecatedUI compatibility typing for classNames and styles.
• Removed deprecated DateLib exports: FormatOptions, LabelOptions, dateLib, and DateLib.Date.
• Removed the deprecated react-day-picker/jalali subpath. Use react-day-picker/persian.

... (truncated)

Commits

• 6d3929d build: version packages (#2996)
• 885ec9e fix: add @types/react as optional peer dependency (#2997)
• 42c8436 fix: apply inline styles to component slots (#2995)
• 4cce3e2 docs: remove next install references
• 9af420c docs: promote v10 website docs (#2990)
• 2c5ba1f build: version packages (#2989)
• b55a878 fix: correct dropdown navigation in multi-month calendars (#2977)
• 6af9b1f docs: fill type alias API descriptions (#2991)
• 2907c64 build: version packages (next) (#2965)
• cdc5a64 docs: update v8 website references
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

Note

Medium Risk
Upgrades a date-picker dependency across a major version, which can introduce runtime/typing breakages in Calendar/DateRangePicker usage if any removed v9 APIs were relied on. No application code changes are included, so risk is limited to dependency compatibility.

Overview
Bumps react-day-picker in @archmax/ui from ^9.14.0 to ^10.0.1 and updates pnpm-lock.yaml accordingly.

Lockfile changes reflect the new package metadata (e.g., @types/react becoming an optional peer) and removal of previously pulled-in non-Gregorian calendar deps.

^{Reviewed by Cursor Bugbot for commit 00baf66. Bugbot is set up for automated code reviews on this repo. Configure here.}

[dependabot]

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[cursor]

Security review completed: no concrete issues found in the files changed by this PR.

Checked against the requested surfaces:

• MCP endpoint auth: no MCP route or token-handling code changed.
• execute_query sandboxing: no query execution code changed.
• Admin auth (Better Auth): no session, cookie, CSRF, or startup config code changed.
• API input validation: no Hono route handlers or validation schemas changed.
• Environment secrets: no env files or secret-handling code changed.
• Dependency exposure: reviewed packages/ui/package.json and pnpm-lock.yaml; the update moves react-day-picker from 9.14.0 to 10.0.1, removes the prior @tabby_ai/hijri-converter and date-fns-jalali transitive entries, and only adds an optional @types/react peer reference that is already present in the workspace. pnpm audit --prod did not report advisories on the updated react-day-picker dependency path.

Notes: pnpm audit --prod does report existing high advisories under unrelated paths (packages__core>markitdown-ts and apps__docs>astro>devalue), but they are not introduced by this PR. A focused UI typecheck could not be run because node_modules are not installed in the automation workspace.

  

_{Sent by Cursor Automation: archmax Security Review}

[github-actions]

Docker image ready

docker pull ghcr.io/archmaxai/archmax:pr-59