Skip to content

fix(deps): bump zod to 4.4.3 to satisfy @openrouter/ai-sdk-provider peer#2156

Merged
AndreyHirsa merged 1 commit into
mainfrom
fix/cli-zod-peer-dep
Jun 30, 2026
Merged

fix(deps): bump zod to 4.4.3 to satisfy @openrouter/ai-sdk-provider peer#2156
AndreyHirsa merged 1 commit into
mainfrom
fix/cli-zod-peer-dep

Conversation

@AndreyHirsa

@AndreyHirsa AndreyHirsa commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

Summary

Bump zod from 4.1.12 to 4.4.3 across cli, compiler, sdk, and spec so it satisfies the zod@^4.3.5 peer requirement of @openrouter/ai-sdk-provider@6.0.0-alpha.1, fixing npm install failures under strict-peer-deps and eliminating duplicate zod installs on the default install path.

Changes

  • Bump zod 4.1.124.4.3 (exact pin, per the no-^/~ policy) in packages/cli, packages/compiler, packages/sdk, and packages/spec.
  • All four are bumped/released together: @lingo.dev/_compiler independently carries the @openrouter/ai-sdk-provider alpha, and cli depends on the workspace siblings — releasing them in lockstep keeps a single satisfying zod version across the published closure.

Testing

Business logic tests added:

  • N/A — dependency-version bump only, no behavior change (the code uses core, stable zod APIs unchanged across 4.x)
  • N/A — no new edge cases introduced
  • All tests pass locally

Additional verification (manual):

  • published 0.137.7 + strict-peer-deps=trueERESOLVE.
  • Packed the fixed artifacts and installed them with strict-peer-deps=true → clean install, single zod@4.4.3.
  • Default npm install (no strict): broken version silently installs two zod copies (4.4.3 + 4.1.12); fixed version resolves to a single zod@4.4.3.
  • npm audit on zod@4.4.3 → 0 advisories; zod has no runtime dependencies.
  • syncpack lint-semver-ranges (the prebuild gate) → ✓ 297 valid.

Visuals

N/A

Checklist

  • Changeset added (if version bump needed)
  • Tests cover business logic (not just happy path) — N/A, dependency bump with no logic change
  • No breaking changes (or documented below)

Closes #[issue-number]

Summary by CodeRabbit

  • Bug Fixes

    • Updated a core dependency version to prevent install conflicts with stricter package resolution.
    • Improved compatibility with another package’s peer dependency requirements.
  • Chores

    • Bumped the same dependency across multiple packages to a newer patch release.

@coderabbitai

coderabbitai Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

Review Change Stack

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info
⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 4842b588-6270-44cc-8b20-4518be5747d1

📥 Commits

Reviewing files that changed from the base of the PR and between 9918aa5 and 88da7e0.

⛔ Files ignored due to path filters (1)
  • pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml
📒 Files selected for processing (5)
  • .changeset/hungry-spoons-invent.md
  • packages/cli/package.json
  • packages/compiler/package.json
  • packages/sdk/package.json
  • packages/spec/package.json

📝 Walkthrough

Walkthrough

Updates the zod dependency from 4.1.12 to 4.4.3 in packages/cli, packages/compiler, packages/sdk, and packages/spec. Adds a changeset file declaring patch releases for the affected packages, noting the bump resolves a peer dependency conflict with @openrouter/ai-sdk-provider.

Changes

zod bump and patch releases

Layer / File(s) Summary
zod version bump and changeset
.changeset/hungry-spoons-invent.md, packages/cli/package.json, packages/compiler/package.json, packages/sdk/package.json, packages/spec/package.json
zod bumped from 4.1.12 to 4.4.3 in all packages; changeset declares patch releases for @lingo.dev/_compiler, @lingo.dev/_spec, lingo.dev, and @lingo.dev/_sdk.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related PRs

Suggested reviewers

  • cherkanovart

🐇 A hop and a skip, zod gets a lift,
From one-twelve to four-three, what a gift!
Peer deps now resolved, no ERESOLVE in sight,
Four packages patched, everything's right.
thump thump 🎉

🚥 Pre-merge checks | ✅ 5
✅ Passed checks (5 passed)
Check name Status Explanation
Title check ✅ Passed The title clearly states the main change: bumping zod to 4.4.3 to satisfy the peer dependency.
Description check ✅ Passed The description matches the template with Summary, Changes, Testing, Visuals, and Checklist sections filled in.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch fix/cli-zod-peer-dep

Comment @coderabbitai help to get the list of available commands.

@AndreyHirsa AndreyHirsa merged commit 38e01c4 into main Jun 30, 2026
12 of 13 checks passed
@AndreyHirsa AndreyHirsa deleted the fix/cli-zod-peer-dep branch June 30, 2026 13:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants