Skip to content

chore(deps): bump the production-dependencies group with 4 updates #61

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 5, 2025
Merged

chore(deps): bump the production-dependencies group with 4 updates #61

merged 1 commit into from
Aug 5, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 4, 2025

Bumps the production-dependencies group with 4 updates: @modelcontextprotocol/sdk, dotenv, fastmcp and zod.

Updates @modelcontextprotocol/sdk from 1.16.0 to 1.17.1

Release notes

Sourced from @​modelcontextprotocol/sdk's releases.

1.17.1

What's Changed

Full Changelog: modelcontextprotocol/typescript-sdk@1.17.0...1.17.1

1.17.0

What's Changed

New Contributors 🙏

Full Changelog: modelcontextprotocol/typescript-sdk@1.16.0...1.17.0

Commits
  • 0551cc5 1.17.1 (#831)
  • 31acdcb fix: prevent responses being sent to wrong client when multiple transports co...
  • ee16173 (fix): Update fallbackRequestHandler type to match _requestHandlers leaves ty...
  • 222db4a Bump version 1.17.0 (#810)
  • b8ec665 Bump form-data from 4.0.2 to 4.0.4 in the npm_and_yarn group across 1 directo...
  • 1fc452e fix: remove extraneous code block in README.md (#791)
  • bb7cccc feat: support oidc discovery in client sdk (#652)
  • 62c608d fix: Explicitly declare accpet type to json when exchanging oauth token (#801)
  • 8316825 Fix indent (#807)
  • 8e15edc update codeowners (#803)
  • Additional commits viewable in compare view

Updates dotenv from 17.2.0 to 17.2.1

Changelog

Sourced from dotenv's changelog.

17.2.1 (2025-07-24)

Changed

  • Fix clickable tip links by removing parentheses (#897)
Commits

Updates fastmcp from 3.10.0 to 3.13.0

Release notes

Sourced from fastmcp's releases.

v3.13.0

3.13.0 (2025-07-31)

Features

  • add stateless session support and bumped mcp-proxy version (#158) (774d1a0)

v3.12.0

3.12.0 (2025-07-29)

Features

  • add missing OAuth Protected Resource Metadata fields (#156) (ee221a7), closes #155

v3.11.0

3.11.0 (2025-07-25)

Features

Commits
  • 774d1a0 feat: add stateless session support and bumped mcp-proxy version (#158)
  • ee221a7 feat: add missing OAuth Protected Resource Metadata fields (#156)
  • 48c9639 feat: add filter tool by auth (#129)
  • See full diff in compare view

Updates zod from 4.0.5 to 4.0.14

Release notes

Sourced from zod's releases.

v4.0.14

Commits:

  • 99391a844271558e0f1736c9550375e82e630bbd Docs: Fix typo (#5005)
  • e25303e98c8d13ea96c3296507c564011f403ffe Docs: fix typo (#5008)
  • dbb05ef990c86ec6b1f6eac11b91ec7572e29c89 Add JSON Schema draft-04 output (#4811)
  • b8257d7d1f51dd3cb4033a58271bb6ac8e3678c7 Improve tuple recursive inference.
  • 9bdbc2f10d466050421a8e28c4b95a8a5776d150 Avoid infinite loops in defineLazy. Fixes #4994.
  • af96ad4700879b0d6e390a0c65ded4e700049cb9 4.0.14

v4.0.13

Commits:

  • 362eb33093e9c5f306eeec95e36985a99aba8fc7 Fix optional + pipe handling. Closes #5002. v4.0.13

v4.0.12

Commits:

  • ff83fc916ec2b35c0008a48782fa14f84293149d Add eslint-plugin-import-zod (#4848)
  • 7c9ce388ae39b2324c5ad05420ecf4732ebca6fe Update docs for z.property check (#4863)
  • c432577ad1a7201631ae0a4d80e945fc4937bcc9 docs: add jwt schema docs (#4867)
  • 35e6a6f6d64d7d5ba58c4cb8c80105759b977c9b Add llms.txt (#4915)
  • 3ac7bf00d0d924d1afa1031b798bdd72b59117db Clean up Edit this Page
  • 60a9372414955094b84aae2f30b491a039780b7c Implement llms-full.txt (#5004)
  • 73a1970e7fd0cdcb2ffac3f6f7db85da849ee3d8 4.0.12

v4.0.11

Commits:

  • 8e6a5f8e48837fb403deb4025935e97a758ad6ca Fix “Edit on Github” link (#4997)
  • 930a2f68d799889df4c1f662dfe61934db84fdd1 Fix number of errors in doc (#4993)
  • c762dbb4fdb249cfddccdd69812da3f4b659df67 feat(locale): Add Yoruba (yo) locale (#4996)
  • 9a34a3a60d92c44f695b08e4c665209aa7160e24 Zod 4.0.11 (#4981)

v4.0.10

Commits:

  • 291c1ca9864570e68a6c104d869de467f665da86 Add should-build script
  • e32d99b54fff920c4b0b451e9099b472d20a3c4b Move should-build script
  • d4faf71b8cc156a49bae23fc09c4d54b88f22bd5 Add v3 docs (#4972)
  • dfae37195bed15dce84af0b17ef04cdc3704ef5e Update Jazz img on v3 docs
  • d6cd30d3898aaf592c6077464c1a45fd0f6f66d3 fix #4973 (#4974)
  • 18504960cdce29529e37415b87fed1732facf1ef Fix typo in valype (#4960)
  • 4ec2f8776193642d91814521d8a4c22bbb766cb1 Add Zod Playground to zod 4 ecosystem (#4975)
  • 2b571a21875e9e3299de261e512dad300878c3a1 Update docs z.enum with object literal example (#4967)
  • 813451db7fcf64c5322835984eded9bfe95be1da v4.0.10 (#4978)

v4.0.9

Commits:

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the production-dependencies group with 4 updates
8a0d5dd 
Bumps the production-dependencies group with 4 updates: [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk), [dotenv](https://github.com/motdotla/dotenv), [fastmcp](https://github.com/punkpeye/fastmcp) and [zod](https://github.com/colinhacks/zod).


Updates `@modelcontextprotocol/sdk` from 1.16.0 to 1.17.1
- [Release notes](https://github.com/modelcontextprotocol/typescript-sdk/releases)
- [Commits](modelcontextprotocol/typescript-sdk@1.16.0...1.17.1)

Updates `dotenv` from 17.2.0 to 17.2.1
- [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md)
- [Commits](motdotla/dotenv@v17.2.0...v17.2.1)

Updates `fastmcp` from 3.10.0 to 3.13.0
- [Release notes](https://github.com/punkpeye/fastmcp/releases)
- [Commits](punkpeye/fastmcp@v3.10.0...v3.13.0)

Updates `zod` from 4.0.5 to 4.0.14
- [Release notes](https://github.com/colinhacks/zod/releases)
- [Commits](colinhacks/zod@v4.0.5...v4.0.14)

---
updated-dependencies:
- dependency-name: "@modelcontextprotocol/sdk"
  dependency-version: 1.17.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: dotenv
  dependency-version: 17.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: fastmcp
  dependency-version: 3.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: zod
  dependency-version: 4.0.14
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Aug 4, 2025
@changeset-bot changeset-bot
Copy link

changeset-bot bot commented Aug 4, 2025

⚠️ No Changeset found

Latest commit: 8a0d5dd

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@cswkim cswkim merged commit a5e77b2 into main Aug 5, 2025
1 check passed
@cswkim cswkim deleted the dependabot/npm_and_yarn/production-dependencies-bdec1ee10d branch August 5, 2025 00:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@cswkim