Sourced from @​biomejs/biome's releases.

Biome CLI v2.4.15

2.4.15

Patch Changes

• #9394 ba3480e Thanks @​dyc3! - Added the nursery rule useTestHooksInOrder in the test domain. The rule enforces that Jest/Vitest lifecycle hooks (beforeAll, beforeEach, afterEach, afterAll) are declared in the order they execute, making test setup and teardown easier to reason about.

• #10254 e0a54cc Thanks @​dyc3! - Added a new nursery rule useVueNextTickPromise, which enforces Promise syntax when using Vue nextTick.

  For example, the following snippet triggers the rule:

  import { nextTick } from "vue";
  nextTick(() => {
  updateDom();
  });

• #10219 64aee45 Thanks @​dyc3! - Added a new nursery rule noVueVOnNumberValues, that disallows deprecated number modifiers on Vue v-on directives.

  For example, the following snippet triggers the rule:

  <input @keyup.13="submit" />

• #10195 7b8d4e1 Thanks @​dyc3! - Added the new nursery rule useVueValidVFor, which validates Vue v-for directives and reports invalid aliases, missing component keys, and keys that do not use iteration variables.

• #10238 1110256 Thanks @​dyc3! - Added the recommended nursery rule noVueImportCompilerMacros, which disallows importing Vue compiler macros such as defineProps from vue because they are automatically available.

• #10201 1a08f89 Thanks @​realknove! - Fixed #10193: style/useReadonlyClassProperties no longer reports class properties as readonly-able when they are assigned inside arrow callbacks nested in class property initializers.

• #9574 3bd2b6a Thanks @​Conaclos! - Fixed #9530. The diagnostics of organizeImports are now more detailed and more precise. They are also better at localizing where the issue is.

• #10205 a704a6c Thanks @​Conaclos! - Fixed #10185. `organizeImports now errors when it encounters an unknown predefined group.

  The following configuration is now reported as invalid because :INEXISTENT: is an unknown predefined group.

  {
    "assist": {
      "actions": {
        "source": {
          "organizeImports": { "options": { "groups": [":INEXISTENT:"] } }
        }
      }
    }
  }

... (truncated)

Sourced from @​biomejs/biome's changelog.

2.4.15

Patch Changes

• #9394 ba3480e Thanks @​dyc3! - Added the nursery rule useTestHooksInOrder in the test domain. The rule enforces that Jest/Vitest lifecycle hooks (beforeAll, beforeEach, afterEach, afterAll) are declared in the order they execute, making test setup and teardown easier to reason about.

• #10254 e0a54cc Thanks @​dyc3! - Added a new nursery rule useVueNextTickPromise, which enforces Promise syntax when using Vue nextTick.

  For example, the following snippet triggers the rule:

  import { nextTick } from "vue";
  nextTick(() => {
  updateDom();
  });

• #10219 64aee45 Thanks @​dyc3! - Added a new nursery rule noVueVOnNumberValues, that disallows deprecated number modifiers on Vue v-on directives.

  For example, the following snippet triggers the rule:

  <input @keyup.13="submit" />

• #10195 7b8d4e1 Thanks @​dyc3! - Added the new nursery rule useVueValidVFor, which validates Vue v-for directives and reports invalid aliases, missing component keys, and keys that do not use iteration variables.

• #10238 1110256 Thanks @​dyc3! - Added the recommended nursery rule noVueImportCompilerMacros, which disallows importing Vue compiler macros such as defineProps from vue because they are automatically available.

• #10201 1a08f89 Thanks @​realknove! - Fixed #10193: style/useReadonlyClassProperties no longer reports class properties as readonly-able when they are assigned inside arrow callbacks nested in class property initializers.

• #9574 3bd2b6a Thanks @​Conaclos! - Fixed #9530. The diagnostics of organizeImports are now more detailed and more precise. They are also better at localizing where the issue is.

• #10205 a704a6c Thanks @​Conaclos! - Fixed #10185. `organizeImports now errors when it encounters an unknown predefined group.

  The following configuration is now reported as invalid because :INEXISTENT: is an unknown predefined group.

  {
    "assist": {
      "actions": {
        "source": {
          "organizeImports": { "options": { "groups": [":INEXISTENT:"] } }
        }
      }
    }
  }

... (truncated)

• 9dd3271 ci: release (#10210)
• 7b8d4e1 feat(lint/html/vue): add useVueValidVFor (#10195)
• ba3480e feat(lint/js): add useTestHooksInOrder (#9394)
• e0a54cc feat(lint/js/vue): add useVueNextTickPromise (#10254)
• 1110256 feat(lint/vue): add noVueImportCompilerMacros (#10238)
• 7f7419c fix: grammar in extends docstring (#10263)
• 0ae5840 feat(lint/js): add useThisForClassMethods (#9807)
• 83f7385 feat(lint/js): add noBaseToString (#9838)
• 64aee45 feat(lint/html/vue): add noVueVOnNumberValues (#10219)
• See full diff in compare view

Sourced from @​changesets/cli's releases.

@​changesets/cli@​2.31.0

Minor Changes

• #1889 96ca062 Thanks @​mixelburg! - Error on unsupported flags for individual CLI commands and print the matching command usage to make mistakes easier to spot.

• #1873 42943b7 Thanks @​mixelburg! - Respond to --help on all subcommands. Previously, --help was only handled when it was the sole argument; passing it alongside a subcommand (e.g. changeset version --help) would silently execute the command instead. Now --help always exits early and prints per-command usage when a known subcommand is provided, or the general help text otherwise.

Patch Changes

• d2121dc Thanks @​Andarist! - Fix npm auth for path-based registries during publish by preserving configured registry URLs instead of normalizing them.

• #1888 036fdd4 Thanks @​mixelburg! - Fix several changeset version issues with workspace protocol dependencies. Valid explicit workspace: ranges and aliases are no longer rewritten unnecessarily, and workspace path references are handled correctly during versioning.

• #1903 5c4731f Thanks @​Andarist! - Gracefully handle stale npm info data leading to duplicate publish attempts.

• #1867 f61e716 Thanks @​Andarist! - Improved detection for published state of prerelease-only packages without latest dist-tag on GitHub Packages registry.

• Updated dependencies [036fdd4, 036fdd4, 036fdd4]:

  • @​changesets/assemble-release-plan@​6.0.10
  • @​changesets/get-dependents-graph@​2.1.4
  • @​changesets/apply-release-plan@​7.1.1
  • @​changesets/get-release-plan@​4.0.16
  • @​changesets/config@​3.1.4

@​changesets/cli@​2.30.0

Minor Changes

• #1840 057cca2 Thanks @​wotan-allfather! - Add --since flag to add command

  The add command now supports a --since flag that allows you to specify which branch, tag, or git ref to use when detecting changed packages. This is useful for gitflow workflows where you have multiple target branches and the baseBranch config option doesn't cover all use cases.

  Example: changeset add --since=develop

  If not provided, the command falls back to the baseBranch value in your .changeset/config.json.

• #1845 2b4a66a Thanks @​Andarist! - Delegate OTP prompting to the package manager instead of handling it in-process. This allows Changesets to use the package manager's native web auth support.

• #1774 667fe5a Thanks @​bluwy! - Support importing custom commit option ES module. Previously, it used require() which only worked for CJS modules, however now it uses import() which supports both CJS and ES modules.

• #1839 73b1809 Thanks @​leochiu-a! - Add a --message (-m) flag to changeset add (and default changeset) so the changeset summary can be provided from the command line. When --message is present, the summary prompt is skipped while the final confirmation step is kept.

• #1806 0e8e01e Thanks @​luisadame! - Changeset CLI can now be run from the nested directories in the project, where the .changeset directory has to be found in one of the parent directories

Patch Changes

• #1849 9dc3230 Thanks @​Andarist! - Compute the terminal's size lazily to avoid spurious stderr output in non-interactive mode

• #1857 2a73025 Thanks @​mixelburg! - Fix confusing prompt labels when entering changeset summary after external editor fallback

• #1842 6df3a5e Thanks @​RodrigoHamuy! - Allow private packages to depend on skipped packages without requiring them to also be skipped. Private packages are not published to npm, so it is safe for them to have dependencies on ignored or unversioned packages.

... (truncated)

• See full diff in compare view

This version was pushed to npm by GitHub Actions, a new releaser for @​changesets/cli since your current version.

• f738c78 6.1.3
• a164a85 update deps
• 4635ba7 update deps
• 509c53f limit ci workflow permissions
• 68ce04f formatting
• 37680c5 add warning to not pass untrusted input to this method ever
• 786563d remove contributing doc, already covered by .github repo
• dbeef73 contributing
• 84d27af update workflows and standard project junk
• See full diff in compare view

Sourced from turbo's releases.

Turborepo v2.9.12

What's Changed

Changelog

• release(turborepo): 2.9.11 by @​github-actions[bot] in vercel/turborepo#12771
• fix: Allow transit nodes in LSP diagnostics by @​anthonyshew in vercel/turborepo#12773

Full Changelog: vercel/turborepo@v2.9.11...v2.9.12

Turborepo v2.9.11

What's Changed

Changelog

• release(turborepo): 2.9.10 by @​github-actions[bot] in vercel/turborepo#12745
• ci: Publish VS Code extension on release by @​anthonyshew in vercel/turborepo#12747
• fix: Start daemon for VSCode Extension from the extension itself by @​anthonyshew in vercel/turborepo#12749
• release(turborepo): 2.9.11-canary.1 by @​github-actions[bot] in vercel/turborepo#12748
• fix: Include file URIs in LSP lifecycle logs by @​anthonyshew in vercel/turborepo#12751
• fix: Handle JSON decoration visitor depth by @​anthonyshew in vercel/turborepo#12752
• fix: Resolve relative turbo path in VS Code extension by @​anthonyshew in vercel/turborepo#12753
• fix: Preserve Bun nested dependencies during prune by @​anthonyshew in vercel/turborepo#12754
• fix: Prefer installed Turbo for LSP by @​anthonyshew in vercel/turborepo#12755
• release(turborepo): 2.9.11-canary.2 by @​github-actions[bot] in vercel/turborepo#12750
• ci: Parallelize LSP release publishing by @​anthonyshew in vercel/turborepo#12758
• fix: Reduce VS Code extension startup popups by @​anthonyshew in vercel/turborepo#12759
• fix: Support turbo.jsonc in VS Code extension by @​anthonyshew in vercel/turborepo#12760
• fix: Remove VS Code task key gradient by @​anthonyshew in vercel/turborepo#12761
• release(turborepo): 2.9.11-canary.3 by @​github-actions[bot] in vercel/turborepo#12756
• chore: Release v2.9.11-canary.4 by @​anthonyshew in vercel/turborepo#12762
• ci: Stop VS Code publish from blocking release PR by @​anthonyshew in vercel/turborepo#12763
• release(turborepo): 2.9.11-canary.5 by @​github-actions[bot] in vercel/turborepo#12764
• fix: Publish VS Code extension from release tag by @​anthonyshew in vercel/turborepo#12765
• fix: Support shimmed VS Code LSP probes by @​anthonyshew in vercel/turborepo#12767
• release(turborepo): 2.9.11-canary.6 by @​github-actions[bot] in vercel/turborepo#12766
• release(turborepo): 2.9.11-canary.7 by @​github-actions[bot] in vercel/turborepo#12768
• fix: Allow $TURBO_EXTENDS$ in LSP diagnostics by @​anthonyshew in vercel/turborepo#12770

Full Changelog: vercel/turborepo@v2.9.10...v2.9.11

Turborepo v2.9.11-canary.7

What's Changed

Changelog

• fix: Support shimmed VS Code LSP probes by @​anthonyshew in vercel/turborepo#12767
• release(turborepo): 2.9.11-canary.6 by @​github-actions[bot] in vercel/turborepo#12766

... (truncated)

• b3f2345 publish 2.9.12 to registry
• 2c850cb fix: Allow transit nodes in LSP diagnostics (#12773)
• 1444cc3 release(turborepo): 2.9.11 (#12771)
• a968db7 fix: Allow TURBO_EXTENDS in LSP diagnostics (#12770)
• 87d468b release(turborepo): 2.9.11-canary.7 (#12768)
• 5a4310d release(turborepo): 2.9.11-canary.6 (#12766)
• e7c4575 fix: Support shimmed VS Code LSP probes (#12767)
• 2db74b4 fix: Publish VS Code extension from release tag (#12765)
• bfffbaa release(turborepo): 2.9.11-canary.5 (#12764)
• 8a0bd8b ci: Stop VS Code publish from blocking release PR (#12763)
• Additional commits viewable in compare view

This version was pushed to npm by GitHub Actions, a new releaser for turbo since your current version.

Sourced from fast-check's releases.

Unicode property support in stringMatching

[Code][Diff]

Features

• (PR#6866) Reversible json arbitrary
• (PR#6868) Parse \p{} and \P{} in stringMatching
• (PR#6870) Support for \p{UnicodeProperty} in stringMatching
• (PR#6871) Support negated unicode properties in stringMatching

Fixes

• (PR#6710) CI: Pass explicit string to make_latest
• (PR#6714) CI: Remove unused vite dependency from multiple packages
• (PR#6780) CI: Silent zizmor issues (as they used to be)
• (PR#6786) CI: Configure release workflow settings for announcements
• (PR#6787) CI: Add force-build-status-execution label trigger to CI workflow
• (PR#6818) CI: Push tag after creating draft release
• (PR#6827) CI: Update CSP for our playgrounds backed by stackblitz
• (PR#6832) CI: Add format/lint/typecheck hooks for Claude Code
• (PR#6834) CI: Fix Claude's session start hook
• (PR#6852) CI: Skip website prebuild remote fetches on cloud Claude Code
• (PR#6869) CI: Add workflow to clean up GitHub Actions caches
• (PR#6789) Clean: Remove unused code identified by knip
• (PR#6711) Doc: Release note for version 4.6.0
• (PR#6756) Doc: Fix typo in the documentation
• (PR#6758) Doc: Add rugk as doc contributor
• (PR#6764) Doc: Document gitmoji PR naming
• (PR#6776) Doc: Add nielk as code contributor
• (PR#6753) Doc: Migrate playgrounds in documentation to StackBlitz
• (PR#6830) Doc: Switch to ?raw imports for advents
• (PR#6836) Doc: Add Vitest documentation guide for setting up property-based testing
• (PR#6833) Doc: Remove dead doc hub pages
• (PR#6855) Doc: Integrate API reference natively into our doc
• (PR#6867) Doc: Simplify examples
• (PR#6835) Script: Migrate from ESLint to oxlint
• (PR#6872) Script: Rework hooks for Claude Code
• (PR#6754) Test: Migrate race condition tests to Vitest
• (PR#6859) Test: Stabilize flaky timeout tests on Windows

---

Better stringMatching with maxLength

[Code][Diff]

Features

• (PR#6599) Add basic maxLength support to stringMatching

... (truncated)

Sourced from fast-check's changelog.

4.7.0

Unicode property support in stringMatching [Code][Diff]

Features

• (PR#6866) Reversible json arbitrary
• (PR#6868) Parse \p{} and \P{} in stringMatching
• (PR#6870) Support for \p{UnicodeProperty} in stringMatching
• (PR#6871) Support negated unicode properties in stringMatching

Fixes

• (PR#6710) CI: Pass explicit string to make_latest
• (PR#6714) CI: Remove unused vite dependency from multiple packages
• (PR#6780) CI: Silent zizmor issues (as they used to be)
• (PR#6786) CI: Configure release workflow settings for announcements
• (PR#6787) CI: Add force-build-status-execution label trigger to CI workflow
• (PR#6818) CI: Push tag after creating draft release
• (PR#6827) CI: Update CSP for our playgrounds backed by stackblitz
• (PR#6832) CI: Add format/lint/typecheck hooks for Claude Code
• (PR#6834) CI: Fix Claude's session start hook
• (PR#6852) CI: Skip website prebuild remote fetches on cloud Claude Code
• (PR#6869) CI: Add workflow to clean up GitHub Actions caches
• (PR#6789) Clean: Remove unused code identified by knip
• (PR#6711) Doc: Release note for version 4.6.0
• (PR#6756) Doc: Fix typo in the documentation
• (PR#6758) Doc: Add rugk as doc contributor
• (PR#6764) Doc: Document gitmoji PR naming
• (PR#6776) Doc: Add nielk as code contributor
• (PR#6753) Doc: Migrate playgrounds in documentation to StackBlitz
• (PR#6830) Doc: Switch to ?raw imports for advents
• (PR#6836) Doc: Add Vitest documentation guide for setting up property-based testing
• (PR#6833) Doc: Remove dead doc hub pages
• (PR#6855) Doc: Integrate API reference natively into our doc
• (PR#6867) Doc: Simplify examples
• (PR#6835) Script: Migrate from ESLint to oxlint
• (PR#6872) Script: Rework hooks for Claude Code
• (PR#6754) Test: Migrate race condition tests to Vitest
• (PR#6859) Test: Stabilize flaky timeout tests on Windows

---

4.6.0

Better stringMatching with maxLength [Code][Diff]

Features

... (truncated)

• fd1a184 🔖 Update CHANGELOG.md for fast-check@4.7.0 (#6873)
• 6661a31 ✨ Support negated unicode properties in stringMatching (#6871)
• 332f905 ✨ Support for \p{UnicodeProperty} in stringMatching (#6870)
• 285ed56 ✨ Parse \p{} and \P{} in stringMatching (#6868)
• 1e5d774 ✨ Reversible json arbitrary (#6866)
• f16e672 📝 Integrate API reference natively into our doc (#6855)
• e82af33 🔨 Migrate from ESLint to oxlint (#6835)
• a82f7a1 ⬆️ Update dependency typedoc to ^0.28.19 (#6847)
• 104640c ⬆️ Update dependency @​microsoft/api-extractor to ^7.58.2 (#6828)
• b3c86c2 ⬆️ Update typescript-eslint monorepo to ^8.58.1 (#6826)
• Additional commits viewable in compare view

Sourced from @​supabase/supabase-js's releases.

v2.105.4

2.105.4 (2026-05-08)

🩹 Fixes

• auth: return null from getItemAsync on JSON parse failure (#2336)
• postgrest: restore non-Error abort detection in fetch catch (#2335)
• realtime: guard sessionStorage access in restricted-storage browsers (#2339)

v2.105.4-canary.2

2.105.4-canary.2 (2026-05-08)

This was a version bump only, there were no code changes.

v2.105.4-canary.1

2.105.4-canary.1 (2026-05-08)

🩹 Fixes

• realtime: guard sessionStorage access in restricted-storage browsers (#2339)

v2.105.4-canary.0

2.105.4-canary.0 (2026-05-08)

🩹 Fixes

• auth: return null from getItemAsync on JSON parse failure (#2336)
• postgrest: restore non-Error abort detection in fetch catch (#2335)

v2.105.3

2.105.3 (2026-05-04)

🩹 Fixes

• auth: narrow OAuth/CustomProvider types to fix downstream consumer typecheck (#2326)

v2.105.2

2.105.2 (2026-05-04)

🩹 Fixes

• auth: forward lockAcquireTimeout to SupabaseAuthClient (#2309)
• auth: add toJSON to WebAuthnError for correct JSON serialization (#2317)
• misc: widen enum-like unions with (string & {}) for forward compat (#2303)
• misc: reduce any usage across packages (#2314)
• postgrest: unify insert/upsert signatures (#2315)

❤️ Thank You

• Muzzaiyyan Hussain @​MuzzaiyyanHussain

... (truncated)

Sourced from @​supabase/supabase-js's changelog.

2.105.4 (2026-05-08)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.105.2 (2026-05-04)

🩹 Fixes

• auth: forward lockAcquireTimeout to SupabaseAuthClient (#2309)
• misc: widen enum-like unions with (string & {}) for forward compat (#2303)

❤️ Thank You

• Muzzaiyyan Hussain @​MuzzaiyyanHussain

2.105.1 (2026-04-28)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.105.0 (2026-04-27)

🚀 Features

• auth: add passkey support with WebAuthn registration, authentication, and management (#2283)
• realtime: Realtime deferred disconnect (#2282)

2.104.1 (2026-04-23)

🩹 Fixes

• supabase: propagate custom fetch to realtime client (#2267)

❤️ Thank You

• Katerina Skroumpelou @​mandarini

2.104.0 (2026-04-20)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.103.3 (2026-04-16)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.103.2 (2026-04-15)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.103.1 (2026-04-15)

... (truncated)

• db53b0f chore(release): version 2.105.2 changelogs (#2323)
• 5223888 [patchback] docs(repo): @​category and @​subcategory tags across all packages (...
• 0412d0d fix(auth): forward lockAcquireTimeout to SupabaseAuthClient (#2309)
• 42c9cbb [patchback] fix(misc): widen enum-like unions with (string & {}) for forward ...
• 7e1773c chore(release): version 2.105.1 changelogs (#2302)
• ca8c418 chore(release): version 2.105.0 changelogs (#2290)
• d19e6d3 [patchback] docs(misc): rename anon key → publishable key and service role ke...
• c420456 [patchback] feat(auth): add passkey support with WebAuthn registration, authe...
• bfb18bc [patchback] feat(realtime): Realtime deferred disconnect (#2282)
• ed49eed chore(release): version 2.104.1 changelogs (#2273)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions