build(deps): bump astro from 6.3.6 to 6.3.8 by dependabot[bot] · Pull Request #203 · erode-app/erode

dependabot · 2026-05-27T19:50:32Z

Bumps astro from 6.3.6 to 6.3.8.

Release notes

astro@6.3.8

Patch Changes

#16830 f2bf3cb Thanks @matthewp! - Fixes 404s for dynamically imported JS chunks when using an adapter with assetQueryParams (e.g. Vercel skew protection)

#16831 ace96ba Thanks @astrobot-houston! - Fixes a misleading GetStaticPathsRequired error when a redirect is configured from a dynamic route to a static (or less-dynamic) destination. For example, '/project/[slug]': '/' previously produced a confusing error pointing at index.astro. Astro now detects the parameter mismatch at config validation time and throws a clear InvalidRedirectDestination error naming the missing parameters.

#16702 b7d1758 Thanks @matthewp! - Fixes scoped styles from .astro components being dropped when rendered inside MDX content (<Content /> from render(entry)) passed through a named slot using <Fragment slot="X">. The Fragment component now eagerly evaluates its slot contents to ensure propagating components register their styles before head content is flushed.

#16823 3df6a45 Thanks @astrobot-houston! - Fixes missing CSS for conditionally rendered Svelte components in production builds

#16836 3d7adfa Thanks @LongYC! - Document compressHTML: "jsx" config is only available since Astro v6.2.0

#16864 334ce13 Thanks @cheets! - Fixes a false-positive Internal Warning: route cache overwritten logged on every SSR request for dynamic routes

astro@6.3.7

Patch Changes

#16821 9c76b12 Thanks @astrobot-houston! - Fixes request body handling in the Node adapter when req.body is a Buffer, Uint8Array, or ArrayBuffer. Previously, binary body data was incorrectly JSON-stringified (producing {"type":"Buffer","data":[...]}) instead of being passed through directly. This affected libraries like serverless-http that set req.body to a Buffer.

#16785 de96360 Thanks @astrobot-houston! - Fixes vite.build.minify, vite.build.sourcemap, and vite.build.rollupOptions.output (e.g. compact) being ignored for client-side builds. These top-level Vite build options are now properly forwarded to the client environment, with environment-specific overrides (vite.environments.client.build.*) taking priority when set.

#16819 b5dd8f1 Thanks @astrobot-houston! - Fixes custom elements in MDX files bypassing the renderer pipeline. Custom elements (tags containing hyphens like <my-element>) in .mdx files are now routed through registered renderers for SSR, matching the behavior of .astro files. If no renderer claims the element, it falls back to rendering as raw HTML.

#16808 765896c Thanks @ematipico! - Fixes dynamic routes returning 400 Bad Request when the URL contains a literal % character, such as paths built with encodeURIComponent('%?.pdf')

#16804 90d2aca Thanks @jp-knj! - Fixes a v6 regression where astro:i18n could not be imported from client <script> blocks.

Changelog

Sourced from astro's changelog.

6.3.8

Patch Changes

#16830 f2bf3cb Thanks @matthewp! - Fixes 404s for dynamically imported JS chunks when using an adapter with assetQueryParams (e.g. Vercel skew protection)

#16831 ace96ba Thanks @astrobot-houston! - Fixes a misleading GetStaticPathsRequired error when a redirect is configured from a dynamic route to a static (or less-dynamic) destination. For example, '/project/[slug]': '/' previously produced a confusing error pointing at index.astro. Astro now detects the parameter mismatch at config validation time and throws a clear InvalidRedirectDestination error naming the missing parameters.

#16702 b7d1758 Thanks @matthewp! - Fixes scoped styles from .astro components being dropped when rendered inside MDX content (<Content /> from render(entry)) passed through a named slot using <Fragment slot="X">. The Fragment component now eagerly evaluates its slot contents to ensure propagating components register their styles before head content is flushed.

#16823 3df6a45 Thanks @astrobot-houston! - Fixes missing CSS for conditionally rendered Svelte components in production builds

#16836 3d7adfa Thanks @LongYC! - Document compressHTML: "jsx" config is only available since Astro v6.2.0

#16864 334ce13 Thanks @cheets! - Fixes a false-positive Internal Warning: route cache overwritten logged on every SSR request for dynamic routes

6.3.7

Patch Changes

#16821 9c76b12 Thanks @astrobot-houston! - Fixes request body handling in the Node adapter when req.body is a Buffer, Uint8Array, or ArrayBuffer. Previously, binary body data was incorrectly JSON-stringified (producing {"type":"Buffer","data":[...]}) instead of being passed through directly. This affected libraries like serverless-http that set req.body to a Buffer.

#16785 de96360 Thanks @astrobot-houston! - Fixes vite.build.minify, vite.build.sourcemap, and vite.build.rollupOptions.output (e.g. compact) being ignored for client-side builds. These top-level Vite build options are now properly forwarded to the client environment, with environment-specific overrides (vite.environments.client.build.*) taking priority when set.

#16819 b5dd8f1 Thanks @astrobot-houston! - Fixes custom elements in MDX files bypassing the renderer pipeline. Custom elements (tags containing hyphens like <my-element>) in .mdx files are now routed through registered renderers for SSR, matching the behavior of .astro files. If no renderer claims the element, it falls back to rendering as raw HTML.

#16808 765896c Thanks @ematipico! - Fixes dynamic routes returning 400 Bad Request when the URL contains a literal % character, such as paths built with encodeURIComponent('%?.pdf')

#16804 90d2aca Thanks @jp-knj! - Fixes a v6 regression where astro:i18n could not be imported from client <script> blocks.

Commits

1e49163 [ci] release (#16832)
2f3bbf1 refactor: move integration tests to unit tests (#16866)
4591fb0 [ci] format
334ce13 fix(core): include mod in SSR route-cache entry to silence false-positive w...
3df6a45 Fix missing CSS for conditionally rendered Svelte components (#16823)
221bb4b fix(core): cache resolved actions in base pipeline (#16859)
4f5a9a8 chore: remove fixtures and move slot tests to unit (#16773)
b22af11 fix(docs): update InvalidRedirectDestination error message (#16840)
e542226 [ci] format
b7d1758 fix(render): propagate styles through Fragment named slots (#16181) (#16702)
Additional commits viewable in compare view

greptile-apps · 2026-05-27T19:51:33Z

Greptile Summary

Routine automated dependency bump of astro from 6.3.6 to 6.3.8 across two patch releases. Both packages/web/package.json and package-lock.json are updated consistently.

6.3.7: Fixes request body handling in the Node adapter (Buffer/Uint8Array/ArrayBuffer), corrects vite.build options being ignored for client builds, fixes custom elements in MDX bypassing the renderer pipeline, fixes dynamic routes returning 400 on URLs with literal %, and restores astro:i18n importability from client <script> blocks.
6.3.8: Fixes 404s for dynamically-imported JS chunks with assetQueryParams (e.g. Vercel skew protection), fixes a misleading GetStaticPathsRequired error for dynamic-to-static redirects, fixes scoped styles being dropped when .astro components are rendered inside MDX named slots, fixes missing CSS for conditionally-rendered Svelte components in production builds, and silences a false-positive SSR route-cache warning.

Confidence Score: 5/5

Safe to merge — this is a patch-only bump with no breaking changes, only bug fixes.

Both changed files are consistent with each other: package.json updates the version constraint and package-lock.json resolves it to the matching tarball with a valid integrity hash. The two patch releases contain only bug fixes (no API changes), and the lockfile shows no other dependency was touched.

No files require special attention.

Important Files Changed

Filename	Overview
packages/web/package.json	Bumps astro dependency from ^6.3.6 to ^6.3.8, picking up two patch releases of bug fixes
package-lock.json	Lockfile updated to resolve astro 6.3.8 with new registry URL and integrity hash; no other dependency changes

Flowchart

%%{init: {'theme': 'neutral'}}%%
flowchart TD
    A[dependabot PR] --> B[packages/web/package.json\nastro ^6.3.6 → ^6.3.8]
    B --> C[package-lock.json\nresolved: astro-6.3.8.tgz\nintegrity hash updated]
    C --> D[astro 6.3.7 fixes\n- Node adapter Buffer body handling\n- vite.build client options\n- MDX custom element renderer\n- % in dynamic route URLs\n- astro:i18n client script import]
    C --> E[astro 6.3.8 fixes\n- Vercel skew protection 404s\n- Dynamic→static redirect errors\n- Scoped styles in MDX named slots\n- Svelte CSS in prod builds\n- SSR route-cache false-positive warning]

_{Reviews (5): Last reviewed commit: "build(deps): bump astro from 6.3.6 to 6...." | Re-trigger Greptile}

Bumps [astro](https://github.com/withastro/astro/tree/HEAD/packages/astro) from 6.3.6 to 6.3.8. - [Release notes](https://github.com/withastro/astro/releases) - [Changelog](https://github.com/withastro/astro/blob/main/packages/astro/CHANGELOG.md) - [Commits](https://github.com/withastro/astro/commits/astro@6.3.8/packages/astro) --- updated-dependencies: - dependency-name: astro dependency-version: 6.3.8 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 27, 2026

dependabot Bot requested a review from a team as a code owner May 27, 2026 19:50