Bump the minor-and-patch group across 1 directory with 14 updates

[dependabot]

Bumps the minor-and-patch group with 13 updates in the / directory:

Package	From	To
@anthropic-ai/sdk	0.77.0	0.78.0
motion	12.34.2	12.35.1
pg	8.18.0	8.20.0
@types/pg	8.16.0	8.18.0
react	19.2.3	19.2.4
react-dom	19.2.3	19.2.4
resend	6.9.2	6.9.3
@tailwindcss/postcss	4.2.0	4.2.1
@types/node	25.3.0	25.3.5
eslint	9.39.2	9.39.4
eslint-plugin-sonarjs	4.0.0	4.0.1
happy-dom	20.6.3	20.8.3
lint-staged	16.2.7	16.3.2

Updates @anthropic-ai/sdk from 0.77.0 to 0.78.0

Release notes

Sourced from @​anthropic-ai/sdk's releases.

sdk: v0.78.0

0.78.0 (2026-02-19)

Full Changelog: sdk-v0.77.0...sdk-v0.78.0

Features

• api: Add top-level cache control (automatic caching) (1e2f83d)

Bug Fixes

• bedrock: eliminate race condition in AWS credential resolution (#901) (e5a101d)
• client: format batches test file (821e9bf)
• tests: fix issue in batches test (5f4ccf8)

Chores

• update mock server docs (25d337f)

Changelog

Sourced from @​anthropic-ai/sdk's changelog.

0.78.0 (2026-02-19)

Full Changelog: sdk-v0.77.0...sdk-v0.78.0

Features

• api: Add top-level cache control (automatic caching) (1e2f83d)

Bug Fixes

• bedrock: eliminate race condition in AWS credential resolution (#901) (e5a101d)
• client: format batches test file (821e9bf)
• tests: fix issue in batches test (5f4ccf8)

Chores

• update mock server docs (25d337f)

Commits

• fdaa72b chore: release main (#917)
• See full diff in compare view

Updates motion from 12.34.2 to 12.35.1

Changelog

Sourced from motion's changelog.

[12.35.1] 2026-03-06

Fixed

• Fixing combination of string keyframes, spring and delay.
• Gracefully handle negative scroll values.
• Fix one-frame visual gap when rapidly switching WAAPI animations.
• animation.time = 0 on a finished animation sets the playhead in a paused state.

[12.35.0] 2026-03-03

Added

• ViewTimeline support for scroll and useScroll.

[12.34.6] 2026-03-03

Fixed

• Handle % translate values in layout animations.

[12.34.5] 2026-03-03

Fixed

• Ensure final WAAPI styles are always committed synchronously to prevent flash of incorrect styles in Firefox.
• Prevent Next.js from caching typeof window checks.
• Improve projection node cleanup.
• Variant propagation fixed for asynchronously-mounted children.

[12.34.4] 2026-03-02

Fixed

• Ensure onComplete fires at the end of an animation sequence.

[12.34.3] 2026-02-20

Fixed

• Ensure velocity is never transferred to a time-derived spring.

Commits

• d234eff v12.35.1
• f0fd746 Updating changelog
• a372820 Merge pull request #3591 from motiondivision/worktree-fix-issue-3269
• d494a90 Make time setter pause finished animations so time=0 alone reverts
• 577e2d3 Merge pull request #3588 from motiondivision/worktree-fix-issue-3569
• 9af2185 Fix JSAnimation time setter to work after animation finishes
• 5e63fb9 Fix useAnimate WAAPI mid-flight interruption jump to origin
• 9c0b955 Fix useAnimate WAAPI mid-flight interruption jump to origin
• 70497da Increase test timing margins for slow CI environments
• 779b109 Updating changelog
• Additional commits viewable in compare view

Updates pg from 8.18.0 to 8.20.0

Changelog

Sourced from pg's changelog.

pg@8.20.0

• Add onConnect callback to pg.Pool constructor options allowing for async initialization of newly created & connected pooled clients.

pg@8.19.0

• Deprecate interal query queue.
• Pass connection parameters to password callback.

Commits

• c9070cc Publish
• ad36e3c fix: typo in deprecation notice for client.query() (#3618)
• f2d7d11 Publish
• 5a4bafc Deprecate Client's internal query queue (#3603)
• a215bfb Typo fix in PgPass deprecation (funciton) (#3605)
• 01e0556 fix(pg-query-stream): invoke this.callback on cursor end/error (#2810)
• e6e3692 Pass connection parameters to password callback (#3602)
• d80d883 test: Fix TLS connection test ending too early
• f332f28 fix: Connection timeout handling for native clients in connected state (#3512)
• b2e9cb1 Remove testAsync - its redundant (#3588)
• Additional commits viewable in compare view

Updates @types/pg from 8.16.0 to 8.18.0

Commits

• See full diff in compare view

Updates react from 19.2.3 to 19.2.4

Release notes

Sourced from react's releases.

19.2.4 (January 26th, 2026)

React Server Components

• Add more DoS mitigations to Server Actions, and harden Server Components (#35632 by @​gnoff, @​lubieowoce, @​sebmarkbage, @​unstubbable)

Commits

• 90ab3f8 Version 19.2.4
• See full diff in compare view

Updates react-dom from 19.2.3 to 19.2.4

Release notes

Sourced from react-dom's releases.

19.2.4 (January 26th, 2026)

React Server Components

• Add more DoS mitigations to Server Actions, and harden Server Components (#35632 by @​gnoff, @​lubieowoce, @​sebmarkbage, @​unstubbable)

Commits

• 90ab3f8 Version 19.2.4
• See full diff in compare view

Updates resend from 6.9.2 to 6.9.3

Release notes

Sourced from resend's releases.

v6.9.3

What's Changed

• chore(deps): update tj-actions/changed-files digest to 875e6e5 by @​renovate[bot] in resend/resend-node#841
• chore(deps): update pnpm to v10.29.2 by @​renovate[bot] in resend/resend-node#840
• fix(deps): update dependency esbuild to v0.27.3 by @​renovate[bot] in resend/resend-node#836
• chore(deps): update dependency dotenv to v17.2.4 by @​renovate[bot] in resend/resend-node#835
• chore(deps): update dependency tsdown to v0.20.3 by @​renovate[bot] in resend/resend-node#831
• chore(deps): update dependency @​types/react to v19.2.13 by @​renovate[bot] in resend/resend-node#830
• chore(deps): update dependency @​biomejs/biome to v2.3.14 by @​renovate[bot] in resend/resend-node#829
• chore(deps): update dependency @​types/node to v24.10.13 by @​renovate[bot] in resend/resend-node#827
• chore(deps): update dependency pkg-pr-new to v0.0.63 by @​renovate[bot] in resend/resend-node#825
• fix: export email list response type by @​Shubhdeep12 in resend/resend-node#833
• feat: add batch specific email options type to reflect API limitations by @​titouv in resend/resend-node#801
• refactor(types): align attachment types with monorepo public-api by @​lucasfcosta in resend/resend-node#855
• chore(deps): update dependency pkg-pr-new to v0.0.65 by @​renovate[bot] in resend/resend-node#857
• fix(ci): preview release workflow by @​gabrielmfern in resend/resend-node#858
• chore: bump by @​gabrielmfern in resend/resend-node#859

New Contributors

• @​Shubhdeep12 made their first contribution in resend/resend-node#833
• @​titouv made their first contribution in resend/resend-node#801

Full Changelog: resend/resend-node@v6.9.2...v6.9.3

Commits

• 184204d chore: bump (#859)
• 1351fd9 fix(ci): preview release workflow (#858)
• cc39964 chore(deps): update dependency pkg-pr-new to v0.0.65 (#857)
• af22de3 refactor(types): align attachment types with monorepo public-api (#855)
• 2856a15 feat: add batch specific email options type to reflect API limitations (#801)
• a7d4cf7 fix: export email list response type (#833)
• 3f85435 chore(deps): update dependency pkg-pr-new to v0.0.63 (#825)
• 514a0a0 chore(deps): update dependency @​types/node to v24.10.13 (#827)
• 2ed1fc9 chore(deps): update dependency @​biomejs/biome to v2.3.14 (#829)
• aa30291 chore(deps): update dependency @​types/react to v19.2.13 (#830)
• Additional commits viewable in compare view

Updates @tailwindcss/postcss from 4.2.0 to 4.2.1

Release notes

Sourced from @​tailwindcss/postcss's releases.

v4.2.1

Fixed

• Allow trailing dash in functional utility names for backwards compatibility (#19696)
• Properly detect classes containing . characters within curly braces in MDX files (#19711)

Changelog

Sourced from @​tailwindcss/postcss's changelog.

[4.2.1] - 2026-02-23

Fixed

• Allow trailing dash in functional utility names for backwards compatibility (#19696)
• Properly detect classes containing . characters within curly braces in MDX files (#19711)

Commits

• 1dce64e 4.2.1 (#19714)
• See full diff in compare view

Updates @types/node from 25.3.0 to 25.3.5

Commits

• See full diff in compare view

Updates eslint from 9.39.2 to 9.39.4

Release notes

Sourced from eslint's releases.

v9.39.4

Bug Fixes

• f18f6c8 fix: update dependency minimatch to ^3.1.5 (#20564) (Milos Djermanovic)
• a3c868f fix: update dependency @​eslint/eslintrc to ^3.3.4 (#20554) (Milos Djermanovic)
• 234d005 fix: minimatch security vulnerability patch for v9.x (#20549) (Andrej Beles)
• b1b37ee fix: update ajv to 6.14.0 to address security vulnerabilities (#20538) (루밀LuMir)

Documentation

• 4675152 docs: add deprecation notice partial (#20520) (Milos Djermanovic)

Chores

• b8b4eb1 chore: update dependencies for ESLint v9.39.4 (#20596) (Francesco Trotta)
• 71b2f6b chore: package.json update for @​eslint/js release (Jenkins)
• 1d16c2f ci: pin Node.js 25.6.1 (#20563) (Milos Djermanovic)

v9.39.3

Bug Fixes

• 791bf8d fix: restore TypeScript 4.0 compatibility in types (#20504) (sethamus)

Chores

• 8594a43 chore: upgrade @​eslint/js@​9.39.3 (#20529) (Milos Djermanovic)
• 9ceef92 chore: package.json update for @​eslint/js release (Jenkins)
• af498c6 chore: ignore /docs/v9.x in link checker (#20453) (Milos Djermanovic)

Commits

• f5770b0 9.39.4
• c30147a Build: changelog update for 9.39.4
• b8b4eb1 chore: update dependencies for ESLint v9.39.4 (#20596)
• 71b2f6b chore: package.json update for @​eslint/js release
• 4675152 docs: add deprecation notice partial (#20520)
• f18f6c8 fix: update dependency minimatch to ^3.1.5 (#20564)
• 1d16c2f ci: pin Node.js 25.6.1 (#20563)
• a3c868f fix: update dependency @​eslint/eslintrc to ^3.3.4 (#20554)
• 234d005 fix: minimatch security vulnerability patch for v9.x (#20549)
• b1b37ee fix: update ajv to 6.14.0 to address security vulnerabilities (#20538)
• Additional commits viewable in compare view

Updates eslint-plugin-sonarjs from 4.0.0 to 4.0.1

Commits

• See full diff in compare view

Updates happy-dom from 20.6.3 to 20.8.3

Release notes

Sourced from happy-dom's releases.

v20.8.3

👷‍♂️ Patch fixes

• Throw error if event is not of type Event in EventTarget.dispatchEvent() - By @​capricorn86 in task #2054

v20.8.2

👷‍♂️ Patch fixes

• Resets Event.cancelBubble and Event.defaultPrevented when calling Event.initEvent() - By @​capricorn86 in task #2090

v20.8.1

👷‍♂️ Patch fixes

• Make "inert" attribute block focus interactions - By @​coffeeandwork in task #1422

v20.8.0

🎨 Features

• Adds support for setPointerCapture, hasPointerCapture, and releasePointerCapture to Element - By @​coffeeandwork in task #1733

v20.7.2

👷‍♂️ Patch fixes

• Properly decode CSS escape sequences in attribute selector values - By @​silverwind

v20.7.1

👷‍♂️ Patch fixes

• Fixes issue related to parsing direct descendants (>) and universal (*) query selectors - By @​Cherry in task #2078

v20.7.0

🎨 Features

• Adds support for Window.getScreenDetails() - By @​TrevorBurnham in task #1923
• Extends Screen from EventTarget - By @​TrevorBurnham in task #1923

v20.6.5

👷‍♂️ Patch fixes

• Add clearImmediate to Jest environment global scope - By @​TrevorBurnham in task #1927

v20.6.4

👷‍♂️ Patch fixes

• Normalize invalid input type attribute to "text" per HTML spec - By @​atzzCokeK in task #2053

Commits

• 5998eea fix: #2054 Throw error if event is not of type Event in dispatchEvent (#2092)
• 7a11238 fix: #2090 Resets cancelBubble and defaultPrevented when calling initEvent ...
• 7d27984 fix: #1422 Make inert attribute block focus interactions (#2083)
• 53e4ec9 feat: #1733 Adds support for setPointerCapture, hasPointerCapture, and rele...
• 1c73c3f fix: Properly decode CSS escape sequences in attribute selector values (#2080)
• 7fa06b3 fix: #2078 Fixes direct descendants > and universal * query selectors (#2079)
• 4e0d1e3 feat: #1923 Adds support for getScreenDetails() (#2041)
• 78a2ff4 chore: #1867 Add regression test for TreeWalker sibling traversal (#2026)
• 46bab67 fix: #1927 Add clearImmediate to Jest environment global scope (#2029)
• ee81583 fix: #2053 Normalize invalid input type attribute to "text" per HTML spec (...
• See full diff in compare view

Updates lint-staged from 16.2.7 to 16.3.2

Release notes

Sourced from lint-staged's releases.

v16.3.2

Patch Changes

• #1735 2adaf6c Thanks @​iiroj! - Hide the extra cmd window on Windows by spawning tasks without the detached option.

v16.3.1

Patch Changes

• #1729 cd5d762 Thanks @​iiroj! - Remove nano-spawn as a dependency from package.json as it was replaced with tinyexec and is no longer used.

v16.3.0

Minor Changes

• #1698 feda37a Thanks @​iiroj! - Run external processes with tinyexec instead of nano-spawn. nano-spawn replaced execa in lint-staged version 16 to limit the amount of npm dependencies required, but caused some unknown issues related to spawning tasks. Let's hope tinyexec improves the situation.

• #1699 1346d16 Thanks @​iiroj! - Remove pidtree as a dependency. When a task fails, its sub-processes are killed more efficiently via the process group on Unix systems, and the taskkill command on Windows.

Patch Changes

• #1726 87467aa Thanks @​iiroj! - Incorrect brace expansions like *.{js} (nothing to expand) are detected exhaustively, instead of just a single pass.

Changelog

Sourced from lint-staged's changelog.

16.3.2

Patch Changes

• #1735 2adaf6c Thanks @​iiroj! - Hide the extra cmd window on Windows by spawning tasks without the detached option.

16.3.1

Patch Changes

• #1729 cd5d762 Thanks @​iiroj! - Remove nano-spawn as a dependency from package.json as it was replaced with tinyexec and is no longer used.

16.3.0

Minor Changes

• #1698 feda37a Thanks @​iiroj! - Run external processes with tinyexec instead of nano-spawn. nano-spawn replaced execa in lint-staged version 16 to limit the amount of npm dependencies required, but caused some unknown issues related to spawning tasks. Let's hope tinyexec improves the situation.

• #1699 1346d16 Thanks @​iiroj! - Remove pidtree as a dependency. When a task fails, its sub-processes are killed more efficiently via the process group on Unix systems, and the taskkill command on Windows.

Patch Changes

• #1726 87467aa Thanks @​iiroj! - Incorrect brace expansions like *.{js} (nothing to expand) are detected exhaustively, instead of just a single pass.

Commits

• dfd6a7a chore(changeset): release
• 2adaf6c fix(Windows): do not spawn tasks as detached since it opens a cmd window on ...
• 60957ce docs: add CONTRIBUTING.md
• 2a74cd2 chore(changeset): release
• cd5d762 refactor: remove nano-spawn dependency completely
• e342cab build(deps): move nano-spawn to dev
• 9aa2cd7 chore(changeset): release
• 0c387bc test: make long-running task longer because of GitHub Actions slowness
• 87467aa refactor: detect incorrect brace expansion exhaustively
• dceabc6 ci: run npm audit in GitHub Actions
• Additional commits viewable in compare view

Updates tailwindcss from 4.2.0 to 4.2.1

Release notes

Sourced from tailwindcss's releases.

v4.2.1

Fixed

• Allow trailing dash in functional utility names for backwards compatibility (#19696)
• Properly detect classes containing . characters within curly braces in MDX files (#19711)

Changelog

Sourced from tailwindcss's changelog.

[4.2.1] - 2026-02-23

Fixed

• Allow trailing dash in functional utility names for backwards compatibility (#19696)
• Properly detect classes containing . characters within curly braces in MDX files (#19711)

Commits

• 1dce64e 4.2.1 (#19714)
• d15d92c Allow trailing dash in functional utility names (#19696)
• See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
eslint	[>= 10.a, < 11]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.