Skip to content

chore(deps): bump the npm-dependencies group across 1 directory with 13 updates#418

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/apps/backend/npm-dependencies-0c1608cc70
Open

chore(deps): bump the npm-dependencies group across 1 directory with 13 updates#418
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/apps/backend/npm-dependencies-0c1608cc70

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 1, 2026

Bumps the npm-dependencies group with 13 updates in the /apps/backend directory:

Package From To
@filoz/synapse-core 0.1.3 0.3.1
@filoz/synapse-sdk 0.36.0 0.40.0
@nestjs/common 11.1.6 11.1.17
@nestjs/core 11.1.6 11.1.17
@nestjs/platform-express 11.1.6 11.1.17
axios 1.11.0 1.14.0
class-validator 0.14.2 0.15.1
pg 8.16.3 8.20.0
undici 7.16.0 7.24.6
viem 2.38.3 2.47.6
@nestjs/testing 11.1.6 11.1.17
supertest 7.1.4 7.2.2
@types/supertest 6.0.3 7.2.0

Updates @filoz/synapse-core from 0.1.3 to 0.3.1

Release notes

Sourced from @​filoz/synapse-core's releases.

synapse-core: v0.3.1

0.3.1 (2026-03-17)

Features

Bug Fixes

  • pieceStatus confuses piece ownership. Closes #296 (#655) (be76ad1)
  • support multi sp upload flow in react and demo (#675) (7f70914)

v0.3.0

0.3.0 (2025-06-06)

Features

  • pandora: implement getClientProofSets for client (bef0053)
  • pdp: add comprehensive proof set discovery and status utilities (6f1da3e)
  • pdp: add findPiece method to check piece existence on PDP server (cd7f3cd)

Trivial Changes

  • docs: add proof-sets-viewer.html example (bdb995e)
  • remove unnecessary cruft and improve error handling (f04c0e0)

synapse-core: v0.3.0

0.3.0 (2026-03-10)

⚠ BREAKING CHANGES

  • New synapse costs API (#632)

Features

synapse-core: v0.2.3

0.2.3 (2026-03-02)

Bug Fixes

  • core: replace getChain with asChain to preserve custom chain configs (#643) (fdc80bc)
  • session-key: use accountless client for getExpirations reads (#645) (268a736)

synapse-react: v0.2.3

... (truncated)

Commits

Updates @filoz/synapse-sdk from 0.36.0 to 0.40.0

Release notes

Sourced from @​filoz/synapse-sdk's releases.

synapse-sdk: v0.40.0

0.40.0 (2026-03-17)

⚠ BREAKING CHANGES

  • improve UploadResult ergonomics (#664)

Features

Bug Fixes

  • pieceStatus confuses piece ownership. Closes #296 (#655) (be76ad1)
  • support multi sp upload flow in react and demo (#675) (7f70914)

synapse-sdk: v0.39.0

0.39.0 (2026-03-10)

⚠ BREAKING CHANGES

  • New synapse costs API (#632)
  • sdk: require source parameter for dataset namespace isolation (#647)

Features

  • New synapse costs API (#632) (ea2a6c3)
  • sdk: require source parameter for dataset namespace isolation (#647) (8085c05)

Documentation

synapse-sdk: v0.38.0

0.38.0 (2026-02-26)

Features

  • storage: extract provider selection to synapse-core and update docs for multi-copy (ae0eea9)
  • storage: multi-copy upload with store->pull->commit flow (cf6babd), closes #494

Chores

  • master: release synapse-core 0.2.2 (92fd0cb)

... (truncated)

Commits
  • 241e222 chore(master): release synapse-sdk 0.40.0 (#669)
  • 793343d chore(master): release synapse-core 0.3.1 (#668)
  • 7f70914 fix: support multi sp upload flow in react and demo (#675)
  • e7012f5 chore: increase dep cooldown to 7 days (#670)
  • 56cd853 feat!: improve UploadResult ergonomics (#664)
  • f1bfc44 feat: new usdfc dataset sybil fee (#666)
  • be76ad1 fix: pieceStatus confuses piece ownership. Closes #296 (#655)
  • 6eae68f chore(master): release synapse-sdk 0.39.0 (#658)
  • 392266f chore(master): release synapse-core 0.3.0 (#663)
  • f18bf1c chore: update dependencies across multiple packages (#661)
  • Additional commits viewable in compare view

Updates @nestjs/common from 11.1.6 to 11.1.17

Release notes

Sourced from @​nestjs/common's releases.

v11.1.17 (2026-03-16)

Enhancements

Bugs

Dependencies

Committers: 3

v11.1.16 (2026-03-05)

Bug fixes

  • microservices

Dependencies

Committers: 2

v11.1.15

What's Changed

New Contributors

Full Changelog: nestjs/nest@v11.1.14...v11.1.15

v11.1.14 (2026-02-17)

... (truncated)

Commits
  • 447a373 chore(release): publish v11.1.17 release
  • 99ed6e6 fix(deps): update dependency file-type to v21.3.2
  • 268a283 fix(deps): update dependency file-type to v21.3.1
  • 315e698 chore(release): publish v11.1.16 release
  • 6add3d6 chore(release): publish v11.1.15 release
  • 5d31df7 chore(release): publish v11.1.14 release
  • 829d326 Merge pull request #16314 from SpencerKaiser/bugfix/cors-types
  • 5058600 fix(common): change requestOrigin type
  • 91212b2 fix: return type error
  • 804d27b fix: invalid context when no stack trace is provided
  • Additional commits viewable in compare view

Updates @nestjs/core from 11.1.6 to 11.1.17

Release notes

Sourced from @​nestjs/core's releases.

v11.1.17 (2026-03-16)

Enhancements

Bugs

Dependencies

Committers: 3

v11.1.16 (2026-03-05)

Bug fixes

  • microservices

Dependencies

Committers: 2

v11.1.15

What's Changed

New Contributors

Full Changelog: nestjs/nest@v11.1.14...v11.1.15

v11.1.14 (2026-02-17)

... (truncated)

Commits
  • 447a373 chore(release): publish v11.1.17 release
  • cbdf737 feat(core): auto run get middleware for head requests
  • 315e698 chore(release): publish v11.1.16 release
  • c9268ff Merge pull request #16493 from shahnoormujawar/fix/unknown-dependencies-messa...
  • 6add3d6 chore(release): publish v11.1.15 release
  • e5fc974 fix(core): refine unknown dependencies message token display
  • 5d31df7 chore(release): publish v11.1.14 release
  • 8d1c16c chore: update readme
  • e3a958a chore(release): publish v11.1.13 release
  • db9494a perf(core): use set instead of array for module registry lookup
  • Additional commits viewable in compare view

Updates @nestjs/platform-express from 11.1.6 to 11.1.17

Release notes

Sourced from @​nestjs/platform-express's releases.

v11.1.17 (2026-03-16)

Enhancements

Bugs

Dependencies

Committers: 3

v11.1.16 (2026-03-05)

Bug fixes

  • microservices

Dependencies

Committers: 2

v11.1.15

What's Changed

New Contributors

Full Changelog: nestjs/nest@v11.1.14...v11.1.15

v11.1.14 (2026-02-17)

... (truncated)

Commits
  • 447a373 chore(release): publish v11.1.17 release
  • 315e698 chore(release): publish v11.1.16 release
  • 24956b5 fix(deps): update dependency multer to v2.1.1
  • 6add3d6 chore(release): publish v11.1.15 release
  • 1c09faf fix(deps): update dependency multer to v2.1.0 [security]
  • 5d31df7 chore(release): publish v11.1.14 release
  • 8d1c16c chore: update readme
  • e3a958a chore(release): publish v11.1.13 release
  • 58c761a fix(deps): update dependency cors to v2.8.6
  • 96932ad chore(release): publish v11.1.12 release
  • Additional commits viewable in compare view

Updates axios from 1.11.0 to 1.14.0

Release notes

Sourced from axios's releases.

v1.14.0

This release focuses on compatibility fixes, adapter stability improvements, and test/tooling modernisation.

⚠️ Important Changes

  • Breaking Changes: None identified in this release.
  • Action Required: If you rely on env-based proxy behaviour or CJS resolution edge-cases, validate your integration after upgrade (notably proxy-from-env v2 alignment and main entry compatibility fix).

🚀 New Features

  • Runtime Features: No new end-user features were introduced in this release.
  • Test Coverage Expansion: Added broader smoke/module test coverage for CJS and ESM package usage. (#7510)

🐛 Bug Fixes

  • Headers: Trim trailing CRLF in normalised header values. (#7456)
  • HTTP/2: Close detached HTTP/2 sessions on timeout to avoid lingering sessions. (#7457)
  • Fetch Adapter: Cancel ReadableStream created during request-stream capability probing to prevent async resource leaks. (#7515)
  • Proxy Handling: Fixed env proxy behavior with proxy-from-env v2 usage. (#7499)
  • CommonJS Compatibility: Fixed package main entry regression affecting CJS consumers. (#7532)

🔧 Maintenance & Chores

  • Security/Dependencies: Updated formidable and refreshed package set to newer versions. (#7533, #10556)
  • Tooling: Continued migration to Vitest and modernised CI/test harnesses. (#7484, #7489, #7498)
  • Build/Lint Stack: Rollup, ESLint, TypeScript, and related dev-dependency updates. (#7508, #7509, #7522)
  • Documentation: Clarified JSON parsing and adapter-related docs/comments. (#7398, #7460, #7478)

🌟 New Contributors

We are thrilled to welcome our new contributors. Thank you for helping improve Axios:

Full Changelog: v1.13.6...v1.14.0

v1.13.6

This release focuses on platform compatibility, error handling improvements, and code quality maintenance.

⚠️ Important Changes

  • Breaking Changes: None identified in this release.
  • Action Required: Users targeting React Native should verify their integration, particularly if relying on specific Blob or FormData behaviours, as improvements have been made to support these objects.

🚀 New Features

  • React Native Blob Support: Axios now includes support for React Native Blob objects. Thanks to @​moh3n9595 for the initial implementation. (#5764)
  • Code Quality: Implemented prettier across the codebase and resolved associated formatting issues. (#7385)

🐛 Bug Fixes

  • Environment Compatibility:
    • Fixed module exports for React Native and Browserify environments. (#7386)

... (truncated)

Changelog

Sourced from axios's changelog.

Changelog

1.13.3 (2026-01-20)

Bug Fixes

  • http2: Use port 443 for HTTPS connections by default. (#7256) (d7e6065)
  • interceptor: handle the error in the same interceptor (#6269) (5945e40)
  • main field in package.json should correspond to cjs artifacts (#5756) (7373fbf)
  • package.json: add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (#5754) (b89217e)
  • silentJSONParsing=false should throw on invalid JSON (#7253) (#7257) (7d19335)
  • turn AxiosError into a native error (#5394) (#5558) (1c6a86d)
  • types: add handlers to AxiosInterceptorManager interface (#5551) (8d1271b)
  • types: restore AxiosError.cause type from unknown to Error (#7327) (d8233d9)
  • unclear error message is thrown when specifying an empty proxy authorization (#6314) (6ef867e)

Features

Reverts

  • Revert "fix: silentJSONParsing=false should throw on invalid JSON (#7253) (#7…" (#7298) (a4230f5), closes #7253 #7 #7298
  • deps: bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (#7334) (2d6ad5e)

Contributors to this release

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for axios since your current version.

Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.


Updates class-validator from 0.14.2 to 0.15.1

Release notes

Sourced from class-validator's releases.

v0.15.1

What's Changed

Full Changelog: typestack/class-validator@v0.15.0...v0.15.1

v0.15.0

What's Changed

New Contributors

Full Changelog: typestack/class-validator@v0.14.4...v0.15.0

v0.14.4

What's Changed

Full Changelog: typestack/class-validator@v0.14.3...v0.14.4

v0.14.3

What's Changed

New Contributors

Full Changelog: typestack/class-validator@v0.14.2...v0.14.3

Changelog

Sourced from class-validator's changelog.

0.15.1 (2026-02-26)

BREAKING CHANGES

  • Added options argument to IsIBAN validator (#2618), which breaks any existing usage of this decorator that pass an argument to the decorator, e.g. @IsIBAN({forbidUnknownValues: false})

Fixed

  • Updated lockfile to patch vulnerabilities (#2669)
  • Fixed a small grammatical error in the docs (#2596)

Added

  • Added validateIf option to all validators, providing a lot more flexibility in using conditional validation (#1579)
  • Added IsISO31661Numeric validator for country codes (#2657)
  • Added IsISO6391 validator for language codes (#2626)
  • Added more versions to IsUUID validator options. (#2647)

0.14.4 (2026-02-25)

  • Updated validator.js to 13.15.22 (#2649)

0.14.3 (2025-11-24)

Commits

Updates pg from 8.16.3 to 8.20.0

Changelog

Sourced from pg's changelog.

pg@8.20.0

  • Add onConnect callback to pg.Pool constructor options allowing for async initialization of newly created & connected pooled clients.

pg@8.19.0

pg@8.18.0

pg@8.17.0

  • Throw correct error if database URL parsing fails.

pg@8.16.0

pg@8.15.0

  • Add support for esm importing. CommonJS importing is still also supported.

pg@8.14.0

pg@8.13.0

pg@8.12.0

  • Add queryMode c...

    Description has been truncated

@dependabot
chore(deps): bump the npm-dependencies group across 1 directory with …
b5aff03 
…13 updates

Bumps the npm-dependencies group with 13 updates in the /apps/backend directory:

| Package | From | To |
| --- | --- | --- |
| [@filoz/synapse-core](https://github.com/FilOzone/synapse-sdk) | `0.1.3` | `0.3.1` |
| [@filoz/synapse-sdk](https://github.com/FilOzone/synapse-sdk) | `0.36.0` | `0.40.0` |
| [@nestjs/common](https://github.com/nestjs/nest/tree/HEAD/packages/common) | `11.1.6` | `11.1.17` |
| [@nestjs/core](https://github.com/nestjs/nest/tree/HEAD/packages/core) | `11.1.6` | `11.1.17` |
| [@nestjs/platform-express](https://github.com/nestjs/nest/tree/HEAD/packages/platform-express) | `11.1.6` | `11.1.17` |
| [axios](https://github.com/axios/axios) | `1.11.0` | `1.14.0` |
| [class-validator](https://github.com/typestack/class-validator) | `0.14.2` | `0.15.1` |
| [pg](https://github.com/brianc/node-postgres/tree/HEAD/packages/pg) | `8.16.3` | `8.20.0` |
| [undici](https://github.com/nodejs/undici) | `7.16.0` | `7.24.6` |
| [viem](https://github.com/wevm/viem) | `2.38.3` | `2.47.6` |
| [@nestjs/testing](https://github.com/nestjs/nest/tree/HEAD/packages/testing) | `11.1.6` | `11.1.17` |
| [supertest](https://github.com/ladjs/supertest) | `7.1.4` | `7.2.2` |
| [@types/supertest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/supertest) | `6.0.3` | `7.2.0` |



Updates `@filoz/synapse-core` from 0.1.3 to 0.3.1
- [Release notes](https://github.com/FilOzone/synapse-sdk/releases)
- [Commits](FilOzone/synapse-sdk@synapse-core-v0.1.3...synapse-core-v0.3.1)

Updates `@filoz/synapse-sdk` from 0.36.0 to 0.40.0
- [Release notes](https://github.com/FilOzone/synapse-sdk/releases)
- [Commits](FilOzone/synapse-sdk@synapse-sdk-v0.36.0...synapse-sdk-v0.40.0)

Updates `@nestjs/common` from 11.1.6 to 11.1.17
- [Release notes](https://github.com/nestjs/nest/releases)
- [Commits](https://github.com/nestjs/nest/commits/v11.1.17/packages/common)

Updates `@nestjs/core` from 11.1.6 to 11.1.17
- [Release notes](https://github.com/nestjs/nest/releases)
- [Commits](https://github.com/nestjs/nest/commits/v11.1.17/packages/core)

Updates `@nestjs/platform-express` from 11.1.6 to 11.1.17
- [Release notes](https://github.com/nestjs/nest/releases)
- [Commits](https://github.com/nestjs/nest/commits/v11.1.17/packages/platform-express)

Updates `axios` from 1.11.0 to 1.14.0
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](axios/axios@v1.11.0...v1.14.0)

Updates `class-validator` from 0.14.2 to 0.15.1
- [Release notes](https://github.com/typestack/class-validator/releases)
- [Changelog](https://github.com/typestack/class-validator/blob/develop/CHANGELOG.md)
- [Commits](typestack/class-validator@v0.14.2...v0.15.1)

Updates `pg` from 8.16.3 to 8.20.0
- [Changelog](https://github.com/brianc/node-postgres/blob/master/CHANGELOG.md)
- [Commits](https://github.com/brianc/node-postgres/commits/pg@8.20.0/packages/pg)

Updates `undici` from 7.16.0 to 7.24.6
- [Release notes](https://github.com/nodejs/undici/releases)
- [Commits](nodejs/undici@v7.16.0...v7.24.6)

Updates `viem` from 2.38.3 to 2.47.6
- [Release notes](https://github.com/wevm/viem/releases)
- [Commits](https://github.com/wevm/viem/compare/viem@2.38.3...viem@2.47.6)

Updates `@nestjs/testing` from 11.1.6 to 11.1.17
- [Release notes](https://github.com/nestjs/nest/releases)
- [Commits](https://github.com/nestjs/nest/commits/v11.1.17/packages/testing)

Updates `supertest` from 7.1.4 to 7.2.2
- [Release notes](https://github.com/ladjs/supertest/releases)
- [Commits](forwardemail/supertest@v7.1.4...v7.2.2)

Updates `@types/supertest` from 6.0.3 to 7.2.0
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/supertest)

---
updated-dependencies:
- dependency-name: "@filoz/synapse-core"
  dependency-version: 0.3.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: "@filoz/synapse-sdk"
  dependency-version: 0.40.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: "@nestjs/common"
  dependency-version: 11.1.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: "@nestjs/core"
  dependency-version: 11.1.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: "@nestjs/platform-express"
  dependency-version: 11.1.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: axios
  dependency-version: 1.14.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: class-validator
  dependency-version: 0.15.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: pg
  dependency-version: 8.20.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: undici
  dependency-version: 7.24.6
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: viem
  dependency-version: 2.47.6
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: "@nestjs/testing"
  dependency-version: 11.1.17
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: supertest
  dependency-version: 7.2.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: "@types/supertest"
  dependency-version: 7.2.0
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: npm-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 1, 2026
@FilOzzy FilOzzy added this to FOC Apr 1, 2026
@github-project-automation github-project-automation bot moved this to 📌 Triage in FOC Apr 1, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

FOC
Status: 📌 Triage

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@FilOzzy