deps: bump the dependency-updates group with 6 updates by dependabot[bot] · Pull Request #1914 · npm/documentation

dependabot · 2026-03-16T05:45:03Z

Bumps the dependency-updates group with 6 updates:

Package	From	To
@primer/react	`38.14.0`	`38.15.0`
framer-motion	`12.35.1`	`12.36.0`
babel-jest	`30.2.0`	`30.3.0`
jest	`30.2.0`	`30.3.0`
jest-environment-jsdom	`30.2.0`	`30.3.0`
pacote	`21.4.0`	`21.5.0`

Updates @primer/react from 38.14.0 to 38.15.0

Release notes

Sourced from @primer/react's releases.

@primer/react@38.15.0

Minor Changes

#7524 f7bdd1c Thanks @francinelucca! - chore: always render ActionMenu in viewport when inside Dialog under feature flag

#7594 1e54bdf Thanks @copilot-swe-agent! - Add align and style props to Dialog component

Patch Changes

#7529 7e108fe Thanks @liuliu-dev! - Add keyboard-accessible tooltip for truncated ActionList.Description

#7585 3dd2c78 Thanks @iansan5653! - - Fixes a bug where ActionBar menu items would be out of order if new items were mounted after the initial render

Improves initial render performance for ActionBar

#7624 f6d4311 Thanks @llastflowers! - Fix FormControl + SelectPanel accessible name to address SR issues

#7617 79c855a Thanks @llastflowers! - Push margin-top of TimelineBody +1px

#7635 74762e2 Thanks @iansan5653! - Fix(useRefObjectAsForwardedRef): fix ref failing to update when target changes

#7550 9585669 Thanks @hectahertz! - perf(Spinner): replace Web Animations API with CSS animation-delay sync

#7618 17a103c Thanks @liuliu-dev! - TextInputWithTokens: announce selected token values for screen readers.

#7588 e649da3 Thanks @lukasoppermann! - ToggleSwitch: Updated with a 1px space around the knob to work better with updated primitives.

Commits

f644831 Release tracking (#7614)
6c1e054 chore(deps-dev): bump immutable from 4.3.5 to 4.3.8 (#7626)
74762e2 Revert "perf(useRefObjectAsForwardedRef): add dependency array to useImperati...
a4fe714 Remove private flag from MCP package.json (#7636)
49d32f2 [MCP] Improvement for motion tokens (#7632)
7e108fe Add keyboard-accessible tooltip for truncated ActionList.Description (#7529)
e362094 chore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (#7608)
e90c1b7 chore(deps): bump actions/stale from 10.1.1 to 10.2.0 (#7582)
f6d4311 Fix FormControl + SelectPanel accessible name to address SR issues (#7624)
17a103c TextInputWithTokens: announce selected token values for screen readers (#7618)
Additional commits viewable in compare view

Updates framer-motion from 12.35.1 to 12.36.0

Changelog

Sourced from framer-motion's changelog.

[12.36.0] 2026-03-09

Added

Allow dragSnapToOrigin to accept "x" or "y" for per-axis snapping.

Added axis-locked layout animations with layout="x" and layout="y".

Added skipInitialAnimation to useSpring.

Fixed

Fixed height and width: auto animations with box-sizing: border-box.

Reset component values when exit animation finishes.

Ensure anticipate easing returns 1 at p === 1.

Fix @emotion/is-prop-valid resolve error in Storybook.

Remove data-pop-layout-id from exiting elements when animation interrupted.

Ensure we skip WAAPI for non-animatable keyframes.

Ensure we skip WAAPI for SVG transforms.

Ensure MotionValue props are not passed to SVG.

AnimatePresence: Prevent mode="wait" elements from getting stuck when switched rapidly.

[12.35.2] 2026-03-09

Fixed

Reduced filesize of styleEffect.

Fix rounding from popLayout.

opacity animations in React Strict Mode in development.

Ensure useSpring is not affected by monitor framerate.

Updating animations sequence segment types to exclude lifecycle handlers.

Fix layout animations with parents offset by a %-based translation.

Fix autoplay: false with WAAPI animations.

Fix layout jump in React Strict Mode in development.

Detect divide-by-zero in CSS calc() values before making animatable templates.

Commits

ea66e17 v12.36.0
db5726d Adding tests for exit animations
5ccc21a Updating changelog
06159b3 Latest
ed64e5f Merge pull request #3625 from motiondivision/worktree-fix-issue-3141
5fad98c Merge pull request #3627 from motiondivision/worktree-fix-issue-3103
f084bb2 Simplify axis-snap logic: use copyAxisInto, remove redundant isShared block
3204711 Merge pull request #3626 from motiondivision/audit/motion-dom-frameloop
25bf593 Merge pull request #3629 from motiondivision/worktree-fix-issue-3082
0dad36b Merge pull request #3634 from motiondivision/worktree-fix-issue-3102
Additional commits viewable in compare view

Updates babel-jest from 30.2.0 to 30.3.0

Release notes

Sourced from babel-jest's releases.

v30.3.0

Features

[jest-config] Add defineConfig and mergeConfig helpers for type-safe Jest config (#15844)

[jest-fake-timers] Add setTimerTickMode to configure how timers advance

[*] Reduce token usage when run through LLMs (3f17932)

Fixes

[jest-config] Keep CLI coverage output when using --json with --outputFile (#15918)

[jest-mock] Use Symbol from test environment (#15858)

[jest-reporters] Fix issue where console output not displayed for GHA reporter even with silent: false option (#15864)

[jest-runtime] Fix issue where user cannot utilize dynamic import despite specifying --experimental-vm-modules Node option (#15842)

[jest-test-sequencer] Fix issue where failed tests due to compilation errors not getting re-executed even with --onlyFailures CLI option (#15851)

[jest-util] Make sure process.features.require_module is false (#15867)

Chore & Maintenance

[*] Replace remaining micromatch uses with picomatch

[deps] Update to sinon/fake-timers v15

[docs] Update V30 migration guide to notify users on jest.mock() work with case-sensitive path (#15849)

Updated Twitter icon to match the latest brand guidelines (#15869)

Changelog

Sourced from babel-jest's changelog.

30.3.0

Features

[jest-config] Add defineConfig and mergeConfig helpers for type-safe Jest config (#15844)

[jest-fake-timers] Add setTimerTickMode to configure how timers advance

[*] Reduce token usage when run through LLMs (3f17932)

Fixes

[jest-config] Keep CLI coverage output when using --json with --outputFile (#15918)

[jest-mock] Use Symbol from test environment (#15858)

[jest-reporters] Fix issue where console output not displayed for GHA reporter even with silent: false option (#15864)

[jest-runtime] Fix issue where user cannot utilize dynamic import despite specifying --experimental-vm-modules Node option (#15842)

[jest-test-sequencer] Fix issue where failed tests due to compilation errors not getting re-executed even with --onlyFailures CLI option (#15851)

[jest-util] Make sure process.features.require_module is false (#15867)

Chore & Maintenance

[*] Replace remaining micromatch uses with picomatch

[deps] Update to sinon/fake-timers v15

[docs] Update V30 migration guide to notify users on jest.mock() work with case-sensitive path (#15849)

Updated Twitter icon to match the latest brand guidelines (#15869)

Commits

efb59c2 v30.3.0
486ae3d chore: update docusaurus (#15860)
See full diff in compare view

Updates jest from 30.2.0 to 30.3.0

Release notes

Sourced from jest's releases.

v30.3.0

Features

[jest-config] Add defineConfig and mergeConfig helpers for type-safe Jest config (#15844)

[jest-fake-timers] Add setTimerTickMode to configure how timers advance

[*] Reduce token usage when run through LLMs (3f17932)

Fixes

[jest-config] Keep CLI coverage output when using --json with --outputFile (#15918)

[jest-mock] Use Symbol from test environment (#15858)

[jest-reporters] Fix issue where console output not displayed for GHA reporter even with silent: false option (#15864)

[jest-runtime] Fix issue where user cannot utilize dynamic import despite specifying --experimental-vm-modules Node option (#15842)

[jest-test-sequencer] Fix issue where failed tests due to compilation errors not getting re-executed even with --onlyFailures CLI option (#15851)

[jest-util] Make sure process.features.require_module is false (#15867)

Chore & Maintenance

[*] Replace remaining micromatch uses with picomatch

[deps] Update to sinon/fake-timers v15

[docs] Update V30 migration guide to notify users on jest.mock() work with case-sensitive path (#15849)

Updated Twitter icon to match the latest brand guidelines (#15869)

Changelog

Sourced from jest's changelog.

30.3.0

Features

[jest-config] Add defineConfig and mergeConfig helpers for type-safe Jest config (#15844)

[jest-fake-timers] Add setTimerTickMode to configure how timers advance

[*] Reduce token usage when run through LLMs (3f17932)

Fixes

[jest-config] Keep CLI coverage output when using --json with --outputFile (#15918)

[jest-mock] Use Symbol from test environment (#15858)

[jest-reporters] Fix issue where console output not displayed for GHA reporter even with silent: false option (#15864)

[jest-runtime] Fix issue where user cannot utilize dynamic import despite specifying --experimental-vm-modules Node option (#15842)

[jest-test-sequencer] Fix issue where failed tests due to compilation errors not getting re-executed even with --onlyFailures CLI option (#15851)

[jest-util] Make sure process.features.require_module is false (#15867)

Chore & Maintenance

[*] Replace remaining micromatch uses with picomatch

[deps] Update to sinon/fake-timers v15

[docs] Update V30 migration guide to notify users on jest.mock() work with case-sensitive path (#15849)

Updated Twitter icon to match the latest brand guidelines (#15869)

Commits

efb59c2 v30.3.0
96c53d3 feat(jest-config): add defineConfig and mergeConfig functions (#15844)
See full diff in compare view

Updates jest-environment-jsdom from 30.2.0 to 30.3.0

Release notes

Sourced from jest-environment-jsdom's releases.

v30.3.0

Features

[jest-config] Add defineConfig and mergeConfig helpers for type-safe Jest config (#15844)

[jest-fake-timers] Add setTimerTickMode to configure how timers advance

[*] Reduce token usage when run through LLMs (3f17932)

Fixes

[jest-config] Keep CLI coverage output when using --json with --outputFile (#15918)

[jest-mock] Use Symbol from test environment (#15858)

[jest-reporters] Fix issue where console output not displayed for GHA reporter even with silent: false option (#15864)

[jest-runtime] Fix issue where user cannot utilize dynamic import despite specifying --experimental-vm-modules Node option (#15842)

[jest-test-sequencer] Fix issue where failed tests due to compilation errors not getting re-executed even with --onlyFailures CLI option (#15851)

[jest-util] Make sure process.features.require_module is false (#15867)

Chore & Maintenance

[*] Replace remaining micromatch uses with picomatch

[deps] Update to sinon/fake-timers v15

[docs] Update V30 migration guide to notify users on jest.mock() work with case-sensitive path (#15849)

Updated Twitter icon to match the latest brand guidelines (#15869)

Changelog

Sourced from jest-environment-jsdom's changelog.

30.3.0

Features

[jest-config] Add defineConfig and mergeConfig helpers for type-safe Jest config (#15844)

[jest-fake-timers] Add setTimerTickMode to configure how timers advance

[*] Reduce token usage when run through LLMs (3f17932)

Fixes

[jest-config] Keep CLI coverage output when using --json with --outputFile (#15918)

[jest-mock] Use Symbol from test environment (#15858)

[jest-reporters] Fix issue where console output not displayed for GHA reporter even with silent: false option (#15864)

[jest-runtime] Fix issue where user cannot utilize dynamic import despite specifying --experimental-vm-modules Node option (#15842)

[jest-test-sequencer] Fix issue where failed tests due to compilation errors not getting re-executed even with --onlyFailures CLI option (#15851)

[jest-util] Make sure process.features.require_module is false (#15867)

Chore & Maintenance

[*] Replace remaining micromatch uses with picomatch

[deps] Update to sinon/fake-timers v15

[docs] Update V30 migration guide to notify users on jest.mock() work with case-sensitive path (#15849)

Updated Twitter icon to match the latest brand guidelines (#15869)

Commits

efb59c2 v30.3.0
b5b0220 Remove unused dependencies from jest-environment-jsdom (#15928)
See full diff in compare view

Updates pacote from 21.4.0 to 21.5.0

Release notes

Sourced from pacote's releases.

v21.5.0

21.5.0 (2026-03-09)

Features

d912f17 #457 expose fetched attestation bundles on manifest (#457) (@mitchdenny)

Chores

586a55d #471 template-oss-apply for new macos images (#471) (@wraithgar)

d1cc5c8 #460 template-oss-apply for release branches (#460) (@wraithgar)

b741e8b #468 bump @npmcli/template-oss from 4.28.0 to 4.29.0 (#468) (@dependabot[bot], @npm-cli-bot)

Changelog

Sourced from pacote's changelog.

21.5.0 (2026-03-09)

Features

d912f17 #457 expose fetched attestation bundles on manifest (#457) (@mitchdenny)

Chores

586a55d #471 template-oss-apply for new macos images (#471) (@wraithgar)

d1cc5c8 #460 template-oss-apply for release branches (#460) (@wraithgar)

b741e8b #468 bump @npmcli/template-oss from 4.28.0 to 4.29.0 (#468) (@dependabot[bot], @npm-cli-bot)

Commits

6c2555a chore: release 21.5.0 (#470)
586a55d chore: template-oss-apply for new macos images (#471)
d912f17 feat: expose fetched attestation bundles on manifest (#457)
b741e8b chore: bump @npmcli/template-oss from 4.28.0 to 4.29.0 (#468)
d1cc5c8 chore: template-oss-apply for release branches (#460)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the dependency-updates group with 6 updates: | Package | From | To | | --- | --- | --- | | [@primer/react](https://github.com/primer/react) | `38.14.0` | `38.15.0` | | [framer-motion](https://github.com/motiondivision/motion) | `12.35.1` | `12.36.0` | | [babel-jest](https://github.com/jestjs/jest/tree/HEAD/packages/babel-jest) | `30.2.0` | `30.3.0` | | [jest](https://github.com/jestjs/jest/tree/HEAD/packages/jest) | `30.2.0` | `30.3.0` | | [jest-environment-jsdom](https://github.com/jestjs/jest/tree/HEAD/packages/jest-environment-jsdom) | `30.2.0` | `30.3.0` | | [pacote](https://github.com/npm/pacote) | `21.4.0` | `21.5.0` | Updates `@primer/react` from 38.14.0 to 38.15.0 - [Release notes](https://github.com/primer/react/releases) - [Commits](https://github.com/primer/react/compare/@primer/react@38.14.0...@primer/react@38.15.0) Updates `framer-motion` from 12.35.1 to 12.36.0 - [Changelog](https://github.com/motiondivision/motion/blob/main/CHANGELOG.md) - [Commits](motiondivision/motion@v12.35.1...v12.36.0) Updates `babel-jest` from 30.2.0 to 30.3.0 - [Release notes](https://github.com/jestjs/jest/releases) - [Changelog](https://github.com/jestjs/jest/blob/main/CHANGELOG.md) - [Commits](https://github.com/jestjs/jest/commits/v30.3.0/packages/babel-jest) Updates `jest` from 30.2.0 to 30.3.0 - [Release notes](https://github.com/jestjs/jest/releases) - [Changelog](https://github.com/jestjs/jest/blob/main/CHANGELOG.md) - [Commits](https://github.com/jestjs/jest/commits/v30.3.0/packages/jest) Updates `jest-environment-jsdom` from 30.2.0 to 30.3.0 - [Release notes](https://github.com/jestjs/jest/releases) - [Changelog](https://github.com/jestjs/jest/blob/main/CHANGELOG.md) - [Commits](https://github.com/jestjs/jest/commits/v30.3.0/packages/jest-environment-jsdom) Updates `pacote` from 21.4.0 to 21.5.0 - [Release notes](https://github.com/npm/pacote/releases) - [Changelog](https://github.com/npm/pacote/blob/main/CHANGELOG.md) - [Commits](npm/pacote@v21.4.0...v21.5.0) --- updated-dependencies: - dependency-name: "@primer/react" dependency-version: 38.15.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependency-updates - dependency-name: framer-motion dependency-version: 12.36.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependency-updates - dependency-name: babel-jest dependency-version: 30.3.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependency-updates - dependency-name: jest dependency-version: 30.3.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependency-updates - dependency-name: jest-environment-jsdom dependency-version: 30.3.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: dependency-updates - dependency-name: pacote dependency-version: 21.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependency-updates ... Signed-off-by: dependabot[bot] <support@github.com>

wraithgar · 2026-03-16T16:02:57Z

package-lock.json

        "front-matter": "^4.0.2",
        "minimatch": "^10.0.1",
        "minipass": "^7.0.4",
-        "pacote": "^21.0.0",


Well dependabot sure shouldn't have done this.

package-lock.json

thavaahariharangit · 2026-03-23T11:45:38Z

@dependabot recreate

dependabot · 2026-03-23T11:45:41Z

Sorry, only users with push access can use that command.

dependabot bot added the Dependencies Pull requests that update a dependency file label Mar 16, 2026

dependabot bot requested a review from a team as a code owner March 16, 2026 05:45

dependabot bot added the Dependencies Pull requests that update a dependency file label Mar 16, 2026

wraithgar reviewed Mar 16, 2026

View reviewed changes

package-lock.json Outdated Show resolved Hide resolved

chore: fix change dependabot made that should not have been made

5683430

wraithgar merged commit dd505bd into main Mar 16, 2026
6 of 8 checks passed

wraithgar deleted the dependabot/npm_and_yarn/main/dependency-updates-ba448f687c branch March 16, 2026 16:12

wraithgar mentioned this pull request Mar 16, 2026

Dependabot PR makes a change to package lock that is not in package.json dependabot/dependabot-core#14460

Open

1 task

Copilot AI mentioned this pull request Mar 18, 2026

Fix npm workspace package-lock.json entries incorrectly updated when requirement unchanged dependabot/dependabot-core#14480

Closed

5 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

deps: bump the dependency-updates group with 6 updates#1914

deps: bump the dependency-updates group with 6 updates#1914
wraithgar merged 2 commits intomainfrom
dependabot/npm_and_yarn/main/dependency-updates-ba448f687c

dependabot bot commented on behalf of github Mar 16, 2026

Uh oh!

wraithgar Mar 16, 2026

Uh oh!

Uh oh!

Uh oh!

thavaahariharangit commented Mar 23, 2026

Uh oh!

dependabot bot commented on behalf of github Mar 23, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

dependabot bot commented on behalf of github Mar 16, 2026

@​primer/react@​38.15.0

Minor Changes

Patch Changes

[12.36.0] 2026-03-09

Added

Fixed

[12.35.2] 2026-03-09

Fixed

v30.3.0

Features

Fixes

Chore & Maintenance

30.3.0

Features

Fixes

Chore & Maintenance

v30.3.0

Features

Fixes

Chore & Maintenance

30.3.0

Features

Fixes

Chore & Maintenance

v30.3.0

Features

Fixes

Chore & Maintenance

30.3.0

Features

Fixes

Chore & Maintenance

v21.5.0

21.5.0 (2026-03-09)

Features

Chores

21.5.0 (2026-03-09)

Features

Chores

Uh oh!

wraithgar Mar 16, 2026

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

thavaahariharangit commented Mar 23, 2026

Uh oh!

dependabot bot commented on behalf of github Mar 23, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

`@primer/react@38`.15.0