chore(deps)(deps): bump the production-dependencies group with 12 updates

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Bumps the production-dependencies group with 12 updates:

Package	From	To
@ai-sdk/gateway	3.0.84	3.0.88
@oclif/core	4.10.3	4.10.5
@hono/node-server	1.19.11	1.19.12
ai	6.0.142	6.0.146
mingo	7.2.0	7.2.1
knex	3.2.7	3.2.9
hono	4.12.9	4.12.10
next	16.2.1	16.2.2
fumadocs-core	16.7.7	16.7.10
fumadocs-ui	16.7.7	16.7.10
@ai-sdk/react	3.0.144	3.0.148
react-resizable-panels	4.8.0	4.9.0

Updates @ai-sdk/gateway from 3.0.84 to 3.0.88

Release notes

Sourced from @​ai-sdk/gateway's releases.

@​ai-sdk/gateway@​3.0.88

Patch Changes

• 5f439a1: feat (provider/gateway): add hipaaCompliant gateway provider option

@​ai-sdk/gateway@​3.0.87

Patch Changes

• ffd431a: Backport: chore(provider/gateway): update gateway model settings files

Commits

• 674da61 Version Packages (#14129)
• 5f439a1 Backport: feat (provider/gateway): add hipaaCompliant provider option (#14128)
• ee90415 Version Packages (#14114)
• f20ba77 Backport: feat(@​ai-sdk/google): preserve per-modality token details in usage ...
• c9ae9d5 Version Packages (#14094)
• 0f2b2f1 Backport: fix(provider/google): fix Gemini service tier enum after upstream u...
• ffd431a Backport: chore(provider/gateway): update gateway model settings files v6 (#1...
• 5151a8c Version Packages (#14087)
• 47c6af0 Backport: fix(mcp): strip trailing slash from OAuth resource parameter (#14085)
• f1c2342 Version Packages (#14083)
• Additional commits viewable in compare view

Updates @oclif/core from 4.10.3 to 4.10.5

Release notes

Sourced from @​oclif/core's releases.

4.10.5

Bug Fixes

• deps: bump minimatch from 10.2.4 to 10.2.5 (45ff39a)

4.10.4

Bug Fixes

• deps: bump lodash from 4.17.21 to 4.18.1 (7db542d)

Changelog

Sourced from @​oclif/core's changelog.

4.10.5 (2026-04-04)

Bug Fixes

• deps: bump minimatch from 10.2.4 to 10.2.5 (45ff39a)

4.10.4 (2026-04-03)

Bug Fixes

• deps: bump lodash from 4.17.21 to 4.18.1 (7db542d)

Commits

• 9932a81 chore(release): 4.10.5 [skip ci]
• 62104fe Merge pull request #1572 from oclif/dependabot-npm_and_yarn-minimatch-10.2.5
• 45ff39a fix(deps): bump minimatch from 10.2.4 to 10.2.5
• b592287 Merge pull request #1573 from oclif/dependabot-npm_and_yarn-eslint-config-ocl...
• df4f648 chore(dev-deps): bump eslint-config-oclif from 6.0.153 to 6.0.154
• 6a1c639 chore(release): 4.10.4 [skip ci]
• 4b54f50 Merge pull request #1570 from oclif/dependabot-npm_and_yarn-lodash-4.18.1
• 7db542d fix(deps): bump lodash from 4.17.21 to 4.18.1
• 30c128d Merge pull request #1566 from oclif/dependabot-npm_and_yarn-oclif-plugin-help...
• ae1f7ea Merge pull request #1567 from oclif/dependabot-npm_and_yarn-eslint-config-ocl...
• Additional commits viewable in compare view

Updates @hono/node-server from 1.19.11 to 1.19.12

Release notes

Sourced from @​hono/node-server's releases.

v1.19.12

What's Changed

• chore: ignore claude setting by @​yusukebe in honojs/node-server#314
• fix: request draining for early 413 responses by @​usualoma in honojs/node-server#329

Full Changelog: honojs/node-server@v1.19.11...v1.19.12

Commits

• 6cdb5a7 1.19.12
• 70250f7 fix: request draining for early 413 responses (#329)
• cfc08b3 chore: ignore claude setting (#314)
• See full diff in compare view

Updates ai from 6.0.142 to 6.0.146

Release notes

Sourced from ai's releases.

ai@6.0.146

Patch Changes

• Updated dependencies [5f439a1]
  • @​ai-sdk/gateway@​3.0.88

ai@6.0.145

Patch Changes

• Updated dependencies [ffd431a]
  • @​ai-sdk/gateway@​3.0.87

Commits

• 674da61 Version Packages (#14129)
• 5f439a1 Backport: feat (provider/gateway): add hipaaCompliant provider option (#14128)
• ee90415 Version Packages (#14114)
• f20ba77 Backport: feat(@​ai-sdk/google): preserve per-modality token details in usage ...
• c9ae9d5 Version Packages (#14094)
• 0f2b2f1 Backport: fix(provider/google): fix Gemini service tier enum after upstream u...
• ffd431a Backport: chore(provider/gateway): update gateway model settings files v6 (#1...
• 5151a8c Version Packages (#14087)
• 47c6af0 Backport: fix(mcp): strip trailing slash from OAuth resource parameter (#14085)
• f1c2342 Version Packages (#14083)
• Additional commits viewable in compare view

Updates mingo from 7.2.0 to 7.2.1

Changelog

Sourced from mingo's changelog.

7.2.1 / 2026-04-03

Fixes

• Update operations handle multiple keys per arrayFilter object.
• $setWindowFields properly handle sort-by validation for unbounded windows.

Improvements

• Added numerous optimizations resulting in ~2x speedup across commonly used operators. (#598)
  • Query: $eq, $gt, $lt, $and, $or, $regex, $elemMatch, $exists, $type, $mod, $not, $nin, $nor, $size.
  • Pipeline: $match, $project, $group, $sort.
  • Update: $set, $inc, $unset, $push, $addToSet.

Commits

• fe463b4 Release 7.2.1
• d909a58 chore: bump version to 7.2.1 and update changelog
• 62c6755 build(deps-dev): bump minimatch from 3.1.2 to 3.1.5 (#595)
• ba9b0c3 build(deps): bump picomatch (#600)
• da0feef build(deps-dev): bump flatted from 3.3.3 to 3.4.2 (#599)
• 81f31e9 build(deps): bump rollup from 4.52.4 to 4.59.0 (#596)
• 9b031ed chore: add benchmark tests and minor code cleanup. closes #598
• 29049f5 refactor: minor improvement to $elemMatch and code cleanup in $getField.
• 746d064 refactor($elemMatch): refactor $elemMatch array operator to reuse shared opti...
• 17f5018 perf: reduce use of Object.entries to minimize array allocations
• Additional commits viewable in compare view

Updates knex from 3.2.7 to 3.2.9

Release notes

Sourced from knex's releases.

3.2.9

What's Changed

• fix(sqlite): append RETURNING statement when insert empty row by @​ylc395 in knex/knex#5471
• fix(postgres): escape double quotes in searchPath to prevent SQL injection by @​OlivierCavadenti in knex/knex#6411
• fix: support DELETE... LIMIT in dialects that support it (mysql), but continue to disallow ones that don't by @​erulabs in knex/knex#6429
• fix: add type support for Array which is supported in code but not in types. Add test to cover as well by @​erulabs in knex/knex#6428

New Contributors

• @​ylc395 made their first contribution in knex/knex#5471
• @​erulabs made their first contribution in knex/knex#6429

Full Changelog: knex/knex@3.2.8...3.2.9

3.2.8

What's Changed

• fix: TS types for update with subquery by @​tgriesser in knex/knex#6419
• fix: revert exports map added in #6227 by @​tgriesser in knex/knex#6422

Full Changelog: knex/knex@3.2.7...3.2.8

Changelog

Sourced from knex's changelog.

3.2.9 - 3 April, 2026

Bug fixes

• fix: support DELETE... LIMIT in dialects that support it (mysql), but continue to disallow ones that don't #6429
• fix(postgres): escape double quotes in searchPath to prevent SQL injection #6411
• fix(sqlite): append RETURNING statement when insert empty row #5471
• fix: add type support for Array #6428

3.2.8 - 30 March, 2026

Bug fixes

• Reverts the breaking changes added in #6227. This means that the ESM import of Knex is reverted to import { knex } from 'knex/knex.mjs #6422
• fix(types): allow a QueryBuilder type as a value in an update #6419

Commits

• b3847cd release 3.2.9
• 59c8f5f fix: add type support for Array<Buffer> (#6428)
• d40095c fix: support DELETE... LIMIT in dialects that support it (mysql), but continu...
• 7ae8857 fix(postgres): escape double quotes in searchPath to prevent SQL injection (#...
• f44f75a fix(sqlite): append RETURNING statement when insert empty row (#5471)
• 8198fa6 release 3.2.8
• a077f37 chore: update changelog & release script
• 94185ae fix: revert exports map added in #6227 (#6422)
• e7f24c1 fix: TS types for update with subquery (#6419)
• See full diff in compare view

Updates hono from 4.12.9 to 4.12.10

Release notes

Sourced from hono's releases.

v4.12.10

What's Changed

• test(router): fix Simple capturing group test by @​yusukebe in honojs/hono#4838
• docs: fix impaired -> inspired typo in benchmark READMEs by @​Abhi3975 in honojs/hono#4843
• fix(jsx/dom): apply select value after children are rendered by @​usualoma in honojs/hono#4847
• fix(compress): convert strong ETag to weak ETag when compressing by @​usualoma in honojs/hono#4848
• docs(ip-restriction): add clear JSDoc examples and param types by @​VISHNU7KASIREDDY in honojs/hono#4851

New Contributors

• @​Abhi3975 made their first contribution in honojs/hono#4843
• @​VISHNU7KASIREDDY made their first contribution in honojs/hono#4851

Full Changelog: honojs/hono@v4.12.9...v4.12.10

Commits

• 9f374a5 4.12.10
• a8c56a6 docs(ip-restriction): add clear JSDoc examples and param types (#4851)
• 0bce36b fix(compress): convert strong ETag to weak ETag when compressing (#4848)
• 75b4308 fix(jsx/dom): apply select value after children are rendered (#4847)
• f47b559 docs: fix impaired -> inspired typo in benchmark READMEs (#4843)
• 018277e test(router): fix Simple capturing group test (#4838)
• See full diff in compare view

Updates next from 16.2.1 to 16.2.2

Release notes

Sourced from next's releases.

v16.2.2

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• backport: Move expanded adapters docs to API reference (#92115) (#92129)
• Backport: TypeScript v6 deprecations for baseUrl and moduleResolution (#92130)
• [create-next-app] Skip interactive prompts when CLI flags are provided (#91840)
• next.config.js: Accept an option for serverFastRefresh (#91968)
• Turbopack: enable server HMR for app route handlers (#91466)
• Turbopack: exclude metadata routes from server HMR (#92034)
• Fix CI for glibc linux builds
• Backport: disable bmi2 in qfilter #92177
• [backport] Fix CSS HMR on Safari (#92174)

Credits

Huge thanks to @​nextjs-bot, @​icyJoseph, @​ijjk, @​gaojude, @​wbinnssmith, @​lukesandberg, and @​bgw for helping!

Commits

• 52faae3 v16.2.2
• 8d0f77b Backport: #92177
• e151e5f Fix CI for glibc linux builds
• 1a319ea [backport] Fix CSS HMR on Safari (#92174)
• c0edad2 Turbopack: exclude metadata routes from server HMR (#92034)
• d644699 Turbopack: enable server HMR for app route handlers (#91466)
• 34de2ca next.config.js: Accept an option for serverFastRefresh (#91968)
• c4779d1 [create-next-app] Skip interactive prompts when CLI flags are provided (#91840)
• edcf19a Backport: TypeScript v6 deprecations for baseUrl and moduleResolution (#92130)
• eee3f52 backport: Move expanded adapters docs to API reference (#92115) (#92129)
• Additional commits viewable in compare view

Updates fumadocs-core from 16.7.7 to 16.7.10

Release notes

Sourced from fumadocs-core's releases.

fumadocs-core@16.7.10

No release notes provided.

fumadocs-core@16.7.9

Patch Changes

• f580ef6: Fix deserialized page tree item name styles

fumadocs-core@16.7.8

No release notes provided.

Commits

• 98cfc1d Version Packages (#3177)
• 6517cb5 clean code
• ad8658a fix test
• 1473bee fix: allow internal link resolver to resolve for "../" links as well (#3178)
• 9b88a56 OpenAPI: Avoid re-serialization on non-RSC mode
• e3b92af Merge pull request #3175 from fuma-nama/changeset-release/dev
• da50bc3 Twoslash: Force default options for TypeScript 6
• afec71e Version Packages (#3173)
• bae9584 Templates: improve scrollbar-gutter & react-remove-scroll
• b9dd611 OpenAPI: Improve pre-render layout shift
• Additional commits viewable in compare view

Updates fumadocs-ui from 16.7.7 to 16.7.10

Release notes

Sourced from fumadocs-ui's releases.

fumadocs-ui@16.7.10

Patch Changes

• fumadocs-core@16.7.10

fumadocs-ui@16.7.9

Patch Changes

• f580ef6: Fix deserialized page tree item name styles
• Updated dependencies [f580ef6]
  • fumadocs-core@16.7.9

fumadocs-ui@16.7.8

Patch Changes

• f7e69a6: Redesign sidebar footer
  • fumadocs-core@16.7.8

Commits

• 98cfc1d Version Packages (#3177)
• 6517cb5 clean code
• ad8658a fix test
• 1473bee fix: allow internal link resolver to resolve for "../" links as well (#3178)
• 9b88a56 OpenAPI: Avoid re-serialization on non-RSC mode
• e3b92af Merge pull request #3175 from fuma-nama/changeset-release/dev
• da50bc3 Twoslash: Force default options for TypeScript 6
• afec71e Version Packages (#3173)
• bae9584 Templates: improve scrollbar-gutter & react-remove-scroll
• b9dd611 OpenAPI: Improve pre-render layout shift
• Additional commits viewable in compare view

Updates @ai-sdk/react from 3.0.144 to 3.0.148

Release notes

Sourced from @​ai-sdk/react's releases.

@​ai-sdk/react@​3.0.148

Patch Changes

• ai@6.0.146

@​ai-sdk/react@​3.0.147

Patch Changes

• ai@6.0.145

Commits

• 674da61 Version Packages (#14129)
• 5f439a1 Backport: feat (provider/gateway): add hipaaCompliant provider option (#14128)
• ee90415 Version Packages (#14114)
• f20ba77 Backport: feat(@​ai-sdk/google): preserve per-modality token details in usage ...
• c9ae9d5 Version Packages (#14094)
• 0f2b2f1 Backport: fix(provider/google): fix Gemini service tier enum after upstream u...
• ffd431a Backport: chore(provider/gateway): update gateway model settings files v6 (#1...
• 5151a8c Version Packages (#14087)
• 47c6af0 Backport: fix(mcp): strip trailing slash from OAuth resource parameter (#14085)
• f1c2342 Version Packages (#14083)
• Additional commits viewable in compare view

Updates react-resizable-panels from 4.8.0 to 4.9.0

Release notes

Sourced from react-resizable-panels's releases.

4.9.0

• 702: Add disableDoubleClick prop to Separator to enable turning off the double-click size reset behavior.

Changelog

Sourced from react-resizable-panels's changelog.

4.9.0

• 702: Add disableDoubleClick prop to Separator to enable turning off the double-click size reset behavior.

Commits

• 50f05ab 4.8.0 -> 4.9.0
• 897d576 Add disableDoubleClick prop to Separator (#702)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
objectstack-play	Canceled		Apr 7, 2026 4:29am
spec	Canceled		Apr 7, 2026 4:29am