Skip to content

feat(deps): upgrade upstream dependencies#515

Closed
Brooooooklyn wants to merge 1 commit into
mainfrom
deps/upstream-update
Closed

feat(deps): upgrade upstream dependencies#515
Brooooooklyn wants to merge 1 commit into
mainfrom
deps/upstream-update

Conversation

@Brooooooklyn

@Brooooooklyn Brooooooklyn commented Jan 29, 2026

Copy link
Copy Markdown
Member

Automated daily upgrade of upstream dependencies:

  • rolldown (latest tag)
  • rolldown-vite (latest tag)
  • vitest (latest npm version)
  • tsdown (latest npm version)

Build status: success


Note

Medium Risk
Primarily dependency bumps across the bundling/tooling stack (rolldown, oxc-*, lint/format binaries), which can subtly change build output or parsing/transform behavior despite minimal code changes.

Overview
Updates upstream tooling dependencies, bumping the bundled rolldown version in packages/core from 1.0.0-rc.1 to 1.0.0-rc.2 and advancing the tracked rolldown upstream commit hash.

Refreshes the workspace lockfiles to oxc-* 0.111.0 (parser/transform/runtime/types) and oxlint-tsgolint 0.11.3/oxfmt 0.27.0, plus small Rust-side dependency adjustments reflected in Cargo.lock.

Written by Cursor Bugbot for commit b14d319. This will update automatically on new commits. Configure here.

Copilot AI review requested due to automatic review settings January 29, 2026 00:52

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR upgrades several upstream dependencies as part of an automated daily upgrade process. The changes include upgrades to oxc packages (runtime, types, parser, transform, minify), oxlint-tsgolint, and rolldown with its associated upstream hash updates.

Changes:

  • Upgraded oxc-related packages from 0.110.0 to 0.111.0
  • Upgraded oxlint-tsgolint from 0.11.2 to 0.11.3
  • Updated rolldown bundled version from 1.0.0-rc.1 to 1.0.0-rc.2
  • Updated upstream hash for rolldown repository
  • Added new Cargo dependencies (memchr) to rolldown internal modules

Reviewed changes

Copilot reviewed 3 out of 5 changed files in this pull request and generated 1 comment.

Show a summary per file
File Description
pnpm-workspace.yaml Updated catalog versions for oxc packages (runtime, types, parser, transform, minify) from 0.110.0 to 0.111.0, and oxlint-tsgolint from 0.11.2 to 0.11.3
pnpm-lock.yaml Updated lock file entries for all upgraded packages including their platform-specific bindings and snapshots
packages/tools/.upstream-versions.json Updated rolldown upstream git hash to track latest changes
packages/core/package.json Updated bundledVersions.rolldown from 1.0.0-rc.1 to 1.0.0-rc.2
Cargo.lock Added memchr dependency to rolldown_ecmascript_utils and rolldown_utils to rolldown_plugin_vite_load_fallback
Files not reviewed (1)
  • pnpm-lock.yaml: Language not supported

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread pnpm-workspace.yaml
oxc-minify: =0.110.0
oxc-parser: =0.110.0
oxc-transform: =0.110.0
oxc-minify: =0.111.0

Copilot AI Jan 29, 2026

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The oxc-minify version in docs/package.json is still at 0.110.0, but the catalog has been upgraded to 0.111.0. Since this is an automated dependency upgrade PR, the docs package should also be upgraded to use the new version 0.111.0 to maintain consistency across the codebase. Consider either updating docs/package.json to use "catalog:" instead of a fixed version, or updating the version to "^0.111.0".

Copilot uses AI. Check for mistakes.
@Brooooooklyn Brooooooklyn deleted the deps/upstream-update branch January 29, 2026 03:56
fengmk2 added a commit that referenced this pull request Jul 8, 2026
Fast-forward over the previous ca55bb23 pin (contains it), so no divergence.
The new head merged main, so it now carries main's v0.2.3 release commit
(417b6aae, the two dep-bump chores my earlier pin was missing) plus
ef49b4ac (fix: clarify task process wait errors, #515) and the v0.2.4 dep
bump. The prompt param the picker needs is unchanged; snapshots are
byte-stable. Final pin still moves to the merged SHA once #510 lands.
fengmk2 added a commit that referenced this pull request Jul 8, 2026
Fast-forward over the previous ca55bb23 pin (contains it), so no divergence.
The new head merged main, so it now carries main's v0.2.3 release commit
(417b6aae, the two dep-bump chores my earlier pin was missing) plus
ef49b4ac (fix: clarify task process wait errors, #515) and the v0.2.4 dep
bump. The prompt param the picker needs is unchanged; snapshots are
byte-stable. Final pin still moves to the merged SHA once #510 lands.
fengmk2 added a commit that referenced this pull request Jul 9, 2026
Fast-forward over the previous ca55bb23 pin (contains it), so no divergence.
The new head merged main, so it now carries main's v0.2.3 release commit
(417b6aae, the two dep-bump chores my earlier pin was missing) plus
ef49b4ac (fix: clarify task process wait errors, #515) and the v0.2.4 dep
bump. The prompt param the picker needs is unchanged; snapshots are
byte-stable. Final pin still moves to the merged SHA once #510 lands.
fengmk2 added a commit that referenced this pull request Jul 9, 2026
Fast-forward over the previous ca55bb23 pin (contains it), so no divergence.
The new head merged main, so it now carries main's v0.2.3 release commit
(417b6aae, the two dep-bump chores my earlier pin was missing) plus
ef49b4ac (fix: clarify task process wait errors, #515) and the v0.2.4 dep
bump. The prompt param the picker needs is unchanged; snapshots are
byte-stable. Final pin still moves to the merged SHA once #510 lands.
fengmk2 added a commit that referenced this pull request Jul 9, 2026
Fast-forward over the previous ca55bb23 pin (contains it), so no divergence.
The new head merged main, so it now carries main's v0.2.3 release commit
(417b6aae, the two dep-bump chores my earlier pin was missing) plus
ef49b4ac (fix: clarify task process wait errors, #515) and the v0.2.4 dep
bump. The prompt param the picker needs is unchanged; snapshots are
byte-stable. Final pin still moves to the merged SHA once #510 lands.
fengmk2 added a commit that referenced this pull request Jul 9, 2026
Fast-forward over the previous ca55bb23 pin (contains it), so no divergence.
The new head merged main, so it now carries main's v0.2.3 release commit
(417b6aae, the two dep-bump chores my earlier pin was missing) plus
ef49b4ac (fix: clarify task process wait errors, #515) and the v0.2.4 dep
bump. The prompt param the picker needs is unchanged; snapshots are
byte-stable. Final pin still moves to the merged SHA once #510 lands.
fengmk2 added a commit that referenced this pull request Jul 9, 2026
Fast-forward over the previous ca55bb23 pin (contains it), so no divergence.
The new head merged main, so it now carries main's v0.2.3 release commit
(417b6aae, the two dep-bump chores my earlier pin was missing) plus
ef49b4ac (fix: clarify task process wait errors, #515) and the v0.2.4 dep
bump. The prompt param the picker needs is unchanged; snapshots are
byte-stable. Final pin still moves to the merged SHA once #510 lands.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants