Skip to content

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Oct 15, 2025

This PR contains the following updates:

Package Change Age Confidence
oxc-minify (source) ^0.94.0 -> ^0.95.0 age confidence
oxlint (source) 1.22.0 -> 1.23.0 age confidence

Release Notes

oxc-project/oxc (oxc-minify)

v0.95.0

🚀 Features
  • c19c9ec napi/minify: Expose join_vars, sequences, and max_iterations options (#​14545) (IWANABETHATGUY)
🐛 Bug Fixes
  • 32a41cf napi/minify: S/passes/max_iterations to avoid confusion (#​14608) (Boshen)
  • 14686a4 napi/minify: Handle boolean values for compress.unused option (#​14513) (Kentaro Suzuki)
oxc-project/oxc (oxlint)

v1.23.0: oxlint v1.23.0

Compare Source

[1.23.0] - 2025-10-13

🚀 Features
  • 452d128 linter: Node/no_process_env (#​14536) (Kenneth Skovhus)
  • a9e1261 linter: Implement react-refresh/only-export-components (#​14122) (Rintaro Itokawa)
  • a8d542b linter/no-duplicate-imports: Support allowSeparateTypeImports option (#​14527) (camc314)
  • 75a529c linter: Add run info about what functions rules implement (#​13839) (camchenry)
  • 4fbdef2 language_server: Support fmt.configPath configuration (#​14502) (Sysix)
  • 4d3ce2e language_server: Autodetect root .oxfmtrc.json (#​14466) (Sysix)
🐛 Bug Fixes
  • fb4a20d language_server: Add whitespace for // oxlint-disable-next-line fix (#​14356) (Sysix)
  • 6fce7f4 oxlint/changelog: Remove duplicate changelog entries (#​14528) (camc314)
  • 74e52f3 linter/plugins: Resolve JS plugins with ESM condition names (#​14541) (magic-akari)
  • 9965676 linter/exhaustive-deps: Ignore empty strings passed to additionalHooks option (#​14464) (Redas)
  • d0a8e3e linter: vue/no_required_prop_with_default called Option::unwrap() on a None value (#​14491) (Sysix)
  • 1192ea2 linter: Correct nextjs/no-typos path handling (#​14480) (shulaoda)
  • 2796b16 tsgolint: Pipe tsgolints stderr (#​14477) (camc314)
🚜 Refactor
  • 6440cde linter: Remove lifetime of Message (#​14481) (Sysix)
  • f599bef language_server: Move Message to DiagnosticReport transformation to one place (#​14447) (Sysix)
  • 4f301de napi/parser, linter/plugins: Improve formatting of generated code (#​14554) (overlookmotel)
  • 68c0252 napi/parser, linter/plugins: Shorten generated raw transfer deserializer code (#​14553) (overlookmotel)
  • 20e884e linter: Store LintService in LintRunner (#​14471) (Sysix)
  • 9e9c5ba linter: Simplify built-in lint plugin checks (#​14518) (camchenry)
  • 1986e0f linter/no-ex-assign: Use let-else chain (#​14526) (camc314)
  • ce9bcf0 linter/no-func-assign: Use let-else chain (#​14525) (camc314)
  • a9cea7c language_server: Use FxHashSet for ServerLinter::extended_paths (#​14517) (Sysix)
  • ea5838e linter/no-import-assign: Use let-else chain (#​14524) (camc314)
  • f977700 language_server: Pass LintOptions to Worker::refresh_server_linter (#​14510) (Sysix)
  • 54b001f linter/no-new-require: Improve diagnostic message clarity (#​14511) (shulaoda)
  • 650ea68 linter: Improve nextjs/no-typos rule (#​14476) (shulaoda)
📚 Documentation
  • 198f2e9 linter: Fix code example for branches-sharing-code (#​14514) (camc314)
  • d776a17 linter: Improve nextjs/no-typos rule documentation (#​14470) (shulaoda)
⚡ Performance
  • b44a30e language_server: Transform Message to DiagnosticReport with one call (#​14448) (Sysix)
  • 31766fd linter/plugins: Provide loc via prototype (#​14552) (overlookmotel)
  • aec0c08 linter: Allow analyzing node types in match blocks with guards (#​14459) (camchenry)
  • 9044187 linter: Skip running node-specific rule if file contains no relevant nodes (#​14457) (camchenry)
  • 422f54e linter: Only run rule run functions if implemented (#​14454) (camchenry)
  • 2c228ae liner: Use top-level match for no_obj_calls (#​14523) (camchenry)
  • c49d891 linter: Use match for no_negated_condition (#​14522) (camchenry)
  • e222fc2 linter: Use match for no_multi_assign (#​14521) (camchenry)
  • 4440516 linter: Refactor rules to take advantage of node type skipping (#​14519) (camchenry)
  • 78261d6 linter: Refactor no-invalid-fetch-options to be more easily analyzed (#​14458) (camchenry)
🧪 Testing
  • 8d8881d linter/plugins: Expand tests for module resolution of plugins (#​14559) (overlookmotel)
  • 33b6cde language_server: Add basic tests for WorkspaceWorker::did_change_configuration (#​14531) (Sysix)
  • bfe1ecd language_server: Add tests for WorkspaceWorker::init_watchers (#​14516) (Sysix)
💼 Other

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

Copy link
Contributor Author

renovate bot commented Oct 15, 2025

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: pnpm-lock.yaml
Scope: all 36 workspace projects
.                                        |  WARN  There are cyclic workspace dependencies: /tmp/renovate/repos/github/eggjs/egg/packages/cluster, /tmp/renovate/repos/github/eggjs/egg/plugins/mock, /tmp/renovate/repos/github/eggjs/egg/packages/egg
 ERROR  Invalid Version: ^1.22.0

pnpm: Invalid Version: ^1.22.0
    at new _SemVer (/opt/containerbase/tools/pnpm/10.18.3/22.20.0/node_modules/pnpm/dist/pnpm.cjs:37737:17)
    at compare (/opt/containerbase/tools/pnpm/10.18.3/22.20.0/node_modules/pnpm/dist/pnpm.cjs:38121:65)
    at Object.eq (/opt/containerbase/tools/pnpm/10.18.3/22.20.0/node_modules/pnpm/dist/pnpm.cjs:38197:31)
    at installSome (/opt/containerbase/tools/pnpm/10.18.3/22.20.0/node_modules/pnpm/dist/pnpm.cjs:159271:223)
    at _install (/opt/containerbase/tools/pnpm/10.18.3/22.20.0/node_modules/pnpm/dist/pnpm.cjs:159213:21)
    at async mutateModules (/opt/containerbase/tools/pnpm/10.18.3/22.20.0/node_modules/pnpm/dist/pnpm.cjs:159083:23)
    at async recursive (/opt/containerbase/tools/pnpm/10.18.3/22.20.0/node_modules/pnpm/dist/pnpm.cjs:160429:100)
    at async recursiveInstallThenUpdateWorkspaceState (/opt/containerbase/tools/pnpm/10.18.3/22.20.0/node_modules/pnpm/dist/pnpm.cjs:160933:31)
    at async installDeps (/opt/containerbase/tools/pnpm/10.18.3/22.20.0/node_modules/pnpm/dist/pnpm.cjs:160748:11)
    at async /opt/containerbase/tools/pnpm/10.18.3/22.20.0/node_modules/pnpm/dist/pnpm.cjs:200166:23

Copy link
Contributor

coderabbitai bot commented Oct 15, 2025

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.


Comment @coderabbitai help to get the list of available commands and usage tips.

Copy link

cloudflare-workers-and-pages bot commented Oct 15, 2025

Deploying egg with  Cloudflare Pages  Cloudflare Pages

Latest commit: b291314
Status:🚫  Build failed.

View logs

Copy link

cloudflare-workers-and-pages bot commented Oct 15, 2025

Deploying egg-v3 with  Cloudflare Pages  Cloudflare Pages

Latest commit: b291314
Status:🚫  Build failed.

View logs

Copy link

codecov bot commented Oct 15, 2025

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 80.90%. Comparing base (9f758e4) to head (a217ac7).
⚠️ Report is 1 commits behind head on next.

Additional details and impacted files
@@            Coverage Diff             @@
##             next    #5612      +/-   ##
==========================================
- Coverage   80.95%   80.90%   -0.05%     
==========================================
  Files         266      266              
  Lines        6526     6526              
  Branches      948      948              
==========================================
- Hits         5283     5280       -3     
- Misses       1164     1167       +3     
  Partials       79       79              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@renovate renovate bot force-pushed the renovate/oxlint-monorepo branch 2 times, most recently from b291314 to 9925734 Compare October 16, 2025 11:53
@renovate renovate bot force-pushed the renovate/oxlint-monorepo branch from 9925734 to e75e37f Compare October 16, 2025 11:55
Copy link

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action Severity Alert  (click "▶" to expand/collapse)
Warn High
safer-buffer@2.1.2 has Obfuscated code.

Confidence: 0.94

Location: Package overview

From: ?npm/safer-buffer@2.1.2

ℹ Read more on: This package | This alert | What is obfuscated code?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/safer-buffer@2.1.2. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

@fengmk2 fengmk2 merged commit 291e2da into next Oct 16, 2025
56 of 57 checks passed
@fengmk2 fengmk2 deleted the renovate/oxlint-monorepo branch October 16, 2025 14:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant