chore(deps)(deps): bump the production-dependencies group across 1 directory with 14 updates

[dependabot]

Bumps the production-dependencies group with 14 updates in the / directory:

Package	From	To
@aws-sdk/client-s3	3.1009.0	3.1029.0
@aws-sdk/client-ses	3.1009.0	3.1029.0
@aws-sdk/s3-request-presigner	3.1014.0	3.1029.0
@prisma/adapter-pg	7.5.0	7.7.0
axios	1.13.6	1.15.0
canvas	3.2.1	3.2.3
csv-parse	6.1.0	6.2.1
dotenv	17.3.1	17.4.2
jose	6.2.1	6.2.2
next	16.1.6	16.2.3
proj4	2.20.4	2.20.8
react	19.2.4	19.2.5
react-dom	19.2.4	19.2.5
react-leaflet-cluster	4.0.0	4.1.3

Updates @aws-sdk/client-s3 from 3.1009.0 to 3.1029.0

Release notes

Sourced from @​aws-sdk/client-s3's releases.

v3.1029.0

3.1029.0(2026-04-10)

New Features

• client-observabilityadmin: CloudWatch Observability Admin adds support for multi-region telemetry evaluation and telemetry enablement rules. (861e172a)
• client-rtbfabric: Adds optional health check configuration for Responder Gateways with ASG Managed Endpoints. When provided, RTB Fabric continuously probes customers' instance IPs and routes traffic only to healthy ones, reducing errors during deployments, scaling events, and instance failures. (3e890437)
• client-ecs: Minor updates to exceptions for completeness (788ab4a6)
• client-devops-agent: Devops Agent now supports associate Splunk, Datadog and custom MCP server to an Agent Space. (44503175)
• client-mediaconvert: Adds support for MV-HEVC video output and clear lead for AV1 DRM output. (812d3dad)
• client-imagebuilder: Image pipelines can now automatically apply tags to images they create. Set the imageTags property when creating or updating your pipelines to get started. (5eb366f5)
• client-sagemaker: Support new SageMaker StartClusterHealthCheck API for on-demand DHC on Hyperpod EKS cluster. Support updated CreateCluster, UpdateCluster, DescribeCluster, BatchAddClusterNodes APIs for flexible instance group on HyperPod cluster (dfcde032)
• client-connect: Conversational Analytics for Email (fd2820f8)

---

For list of updated packages, view updated-packages.md in assets-3.1029.0.zip

v3.1028.0

3.1028.0(2026-04-09)

Chores

• codegen: bump codegen version to 0.48.0 (#7924) (037593a7)

New Features

• client-bcm-dashboards: Scheduled email reports of Billing and Cost Management Dashboards (5e7231a1)
• client-mediaconnect: Adds support for MediaLive Channel-type Router Inputs. (858c746d)
• client-bedrock-agentcore: Introducing support for SearchRegistryRecords API on AgentCoreRegistry (6ac1ecc5)
• client-sagemaker: Release support for g7e instance types for SageMaker HyperPod (c92e9e66)
• client-bedrock-agentcore-control: Initial release for CRUDL in AgentCore Registry Service (ec576322)
• client-redshift-data: The BatchExecuteStatement API now supports named SQL parameters, enabling secure batch queries with parameterized values. This enhancement helps prevent SQL injection vulnerabilities and improves query reusability. (de8f2afb)

---

For list of updated packages, view updated-packages.md in assets-3.1028.0.zip

v3.1027.0

3.1027.0(2026-04-08)

New Features

• clients: update client endpoints as of 2026-04-08 (88eb6682)
• client-outposts: Add AWS Outposts APIs to view renewal pricing options and submit renewal requests for Outpost contracts (ba6c2a7e)
• client-ecr: Add UnableToListUpstreamImageReferrersException in ListImageReferrers (459df0bc)
• client-backup: Adding EKS specific backup vault notification types for AWS Backup. (c5badfde)
• client-marketplace-discovery: AWS Marketplace Discovery API provides an interface that enables programmatic access to the AWS Marketplace catalog, including searching and browsing listings, retrieving product details and fulfillment options, and accessing public and private offer pricing and terms. (1523d996)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-s3's changelog.

3.1029.0 (2026-04-10)

Note: Version bump only for package @​aws-sdk/client-s3

3.1028.0 (2026-04-09)

Note: Version bump only for package @​aws-sdk/client-s3

3.1027.0 (2026-04-08)

Note: Version bump only for package @​aws-sdk/client-s3

3.1026.0 (2026-04-07)

Features

• client-s3: Updated list of the valid AWS Region values for the LocationConstraint parameter for general purpose buckets. (229167d)

3.1025.0 (2026-04-06)

Note: Version bump only for package @​aws-sdk/client-s3

3.1024.0 (2026-04-03)

Note: Version bump only for package @​aws-sdk/client-s3

... (truncated)

Commits

• 5d5aaed Publish v3.1029.0
• edca62d Publish v3.1028.0
• 690d8d4 Publish v3.1027.0
• 67ea2f7 Publish v3.1026.0
• 229167d feat(client-s3): Updated list of the valid AWS Region values for the Location...
• b19357a chore(codegen): update for sparse types and retry 2.1 updates (#7916)
• 8cfa946 Publish v3.1025.0
• 99bf9fc Publish v3.1024.0
• 34e7b07 Publish v3.1023.0
• e7e636a Publish v3.1022.0
• Additional commits viewable in compare view

Updates @aws-sdk/client-ses from 3.1009.0 to 3.1029.0

Release notes

Sourced from @​aws-sdk/client-ses's releases.

v3.1029.0

3.1029.0(2026-04-10)

New Features

• client-observabilityadmin: CloudWatch Observability Admin adds support for multi-region telemetry evaluation and telemetry enablement rules. (861e172a)
• client-rtbfabric: Adds optional health check configuration for Responder Gateways with ASG Managed Endpoints. When provided, RTB Fabric continuously probes customers' instance IPs and routes traffic only to healthy ones, reducing errors during deployments, scaling events, and instance failures. (3e890437)
• client-ecs: Minor updates to exceptions for completeness (788ab4a6)
• client-devops-agent: Devops Agent now supports associate Splunk, Datadog and custom MCP server to an Agent Space. (44503175)
• client-mediaconvert: Adds support for MV-HEVC video output and clear lead for AV1 DRM output. (812d3dad)
• client-imagebuilder: Image pipelines can now automatically apply tags to images they create. Set the imageTags property when creating or updating your pipelines to get started. (5eb366f5)
• client-sagemaker: Support new SageMaker StartClusterHealthCheck API for on-demand DHC on Hyperpod EKS cluster. Support updated CreateCluster, UpdateCluster, DescribeCluster, BatchAddClusterNodes APIs for flexible instance group on HyperPod cluster (dfcde032)
• client-connect: Conversational Analytics for Email (fd2820f8)

---

For list of updated packages, view updated-packages.md in assets-3.1029.0.zip

v3.1028.0

3.1028.0(2026-04-09)

Chores

• codegen: bump codegen version to 0.48.0 (#7924) (037593a7)

New Features

• client-bcm-dashboards: Scheduled email reports of Billing and Cost Management Dashboards (5e7231a1)
• client-mediaconnect: Adds support for MediaLive Channel-type Router Inputs. (858c746d)
• client-bedrock-agentcore: Introducing support for SearchRegistryRecords API on AgentCoreRegistry (6ac1ecc5)
• client-sagemaker: Release support for g7e instance types for SageMaker HyperPod (c92e9e66)
• client-bedrock-agentcore-control: Initial release for CRUDL in AgentCore Registry Service (ec576322)
• client-redshift-data: The BatchExecuteStatement API now supports named SQL parameters, enabling secure batch queries with parameterized values. This enhancement helps prevent SQL injection vulnerabilities and improves query reusability. (de8f2afb)

---

For list of updated packages, view updated-packages.md in assets-3.1028.0.zip

v3.1027.0

3.1027.0(2026-04-08)

New Features

• clients: update client endpoints as of 2026-04-08 (88eb6682)
• client-outposts: Add AWS Outposts APIs to view renewal pricing options and submit renewal requests for Outpost contracts (ba6c2a7e)
• client-ecr: Add UnableToListUpstreamImageReferrersException in ListImageReferrers (459df0bc)
• client-backup: Adding EKS specific backup vault notification types for AWS Backup. (c5badfde)
• client-marketplace-discovery: AWS Marketplace Discovery API provides an interface that enables programmatic access to the AWS Marketplace catalog, including searching and browsing listings, retrieving product details and fulfillment options, and accessing public and private offer pricing and terms. (1523d996)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-ses's changelog.

3.1029.0 (2026-04-10)

Note: Version bump only for package @​aws-sdk/client-ses

3.1028.0 (2026-04-09)

Note: Version bump only for package @​aws-sdk/client-ses

3.1027.0 (2026-04-08)

Note: Version bump only for package @​aws-sdk/client-ses

3.1026.0 (2026-04-07)

Note: Version bump only for package @​aws-sdk/client-ses

3.1025.0 (2026-04-06)

Note: Version bump only for package @​aws-sdk/client-ses

3.1024.0 (2026-04-03)

Note: Version bump only for package @​aws-sdk/client-ses

3.1023.0 (2026-04-02)

... (truncated)

Commits

• 5d5aaed Publish v3.1029.0
• edca62d Publish v3.1028.0
• 690d8d4 Publish v3.1027.0
• 67ea2f7 Publish v3.1026.0
• b19357a chore(codegen): update for sparse types and retry 2.1 updates (#7916)
• 8cfa946 Publish v3.1025.0
• 99bf9fc Publish v3.1024.0
• 34e7b07 Publish v3.1023.0
• e7e636a Publish v3.1022.0
• 86db170 Publish v3.1021.0
• Additional commits viewable in compare view

Updates @aws-sdk/s3-request-presigner from 3.1014.0 to 3.1029.0

Release notes

Sourced from @​aws-sdk/s3-request-presigner's releases.

v3.1029.0

3.1029.0(2026-04-10)

New Features

• client-observabilityadmin: CloudWatch Observability Admin adds support for multi-region telemetry evaluation and telemetry enablement rules. (861e172a)
• client-rtbfabric: Adds optional health check configuration for Responder Gateways with ASG Managed Endpoints. When provided, RTB Fabric continuously probes customers' instance IPs and routes traffic only to healthy ones, reducing errors during deployments, scaling events, and instance failures. (3e890437)
• client-ecs: Minor updates to exceptions for completeness (788ab4a6)
• client-devops-agent: Devops Agent now supports associate Splunk, Datadog and custom MCP server to an Agent Space. (44503175)
• client-mediaconvert: Adds support for MV-HEVC video output and clear lead for AV1 DRM output. (812d3dad)
• client-imagebuilder: Image pipelines can now automatically apply tags to images they create. Set the imageTags property when creating or updating your pipelines to get started. (5eb366f5)
• client-sagemaker: Support new SageMaker StartClusterHealthCheck API for on-demand DHC on Hyperpod EKS cluster. Support updated CreateCluster, UpdateCluster, DescribeCluster, BatchAddClusterNodes APIs for flexible instance group on HyperPod cluster (dfcde032)
• client-connect: Conversational Analytics for Email (fd2820f8)

---

For list of updated packages, view updated-packages.md in assets-3.1029.0.zip

v3.1028.0

3.1028.0(2026-04-09)

Chores

• codegen: bump codegen version to 0.48.0 (#7924) (037593a7)

New Features

• client-bcm-dashboards: Scheduled email reports of Billing and Cost Management Dashboards (5e7231a1)
• client-mediaconnect: Adds support for MediaLive Channel-type Router Inputs. (858c746d)
• client-bedrock-agentcore: Introducing support for SearchRegistryRecords API on AgentCoreRegistry (6ac1ecc5)
• client-sagemaker: Release support for g7e instance types for SageMaker HyperPod (c92e9e66)
• client-bedrock-agentcore-control: Initial release for CRUDL in AgentCore Registry Service (ec576322)
• client-redshift-data: The BatchExecuteStatement API now supports named SQL parameters, enabling secure batch queries with parameterized values. This enhancement helps prevent SQL injection vulnerabilities and improves query reusability. (de8f2afb)

---

For list of updated packages, view updated-packages.md in assets-3.1028.0.zip

v3.1027.0

3.1027.0(2026-04-08)

New Features

• clients: update client endpoints as of 2026-04-08 (88eb6682)
• client-outposts: Add AWS Outposts APIs to view renewal pricing options and submit renewal requests for Outpost contracts (ba6c2a7e)
• client-ecr: Add UnableToListUpstreamImageReferrersException in ListImageReferrers (459df0bc)
• client-backup: Adding EKS specific backup vault notification types for AWS Backup. (c5badfde)
• client-marketplace-discovery: AWS Marketplace Discovery API provides an interface that enables programmatic access to the AWS Marketplace catalog, including searching and browsing listings, retrieving product details and fulfillment options, and accessing public and private offer pricing and terms. (1523d996)

... (truncated)

Changelog

Sourced from @​aws-sdk/s3-request-presigner's changelog.

3.1029.0 (2026-04-10)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1028.0 (2026-04-09)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1027.0 (2026-04-08)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1026.0 (2026-04-07)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1025.0 (2026-04-06)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1024.0 (2026-04-03)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1023.0 (2026-04-02)

... (truncated)

Commits

• 5d5aaed Publish v3.1029.0
• edca62d Publish v3.1028.0
• 690d8d4 Publish v3.1027.0
• 67ea2f7 Publish v3.1026.0
• b19357a chore(codegen): update for sparse types and retry 2.1 updates (#7916)
• 8cfa946 Publish v3.1025.0
• 99bf9fc Publish v3.1024.0
• 34e7b07 Publish v3.1023.0
• e7e636a Publish v3.1022.0
• 86db170 Publish v3.1021.0
• Additional commits viewable in compare view

Updates @prisma/adapter-pg from 7.5.0 to 7.7.0

Release notes

Sourced from @​prisma/adapter-pg's releases.

7.7.0

Today, we are excited to share the 7.7.0 stable release 🎉

🌟 Star this repo for notifications about new releases, bug fixes & features — or follow us on X!

Highlights

ORM

prisma bootstrap command

A new prisma bootstrap command (#29374, #29424) sequences the full Prisma Postgres setup into a single interactive flow. It detects the current project state and runs only the steps that are needed:

1. Init or scaffold — In an empty directory, offers a choice of 10 starter templates (Next.js, Express, Hono, Fastify, Nuxt, SvelteKit, Remix, React Router 7, Astro, NestJS) from prisma-examples. In an existing project without a schema, runs prisma init.
2. Link — Authenticates via the browser and connects to a Prisma Postgres database. Skips if already linked.
3. Install dependencies — Detects the package manager and offers to install missing @prisma/client, prisma, and dotenv.
4. Migrate — Runs prisma migrate dev if the schema contains models.
5. Generate — Runs prisma generate.
6. Seed — Runs prisma db seed if a seed script is configured.

Each side-effecting step prompts for confirmation. Re-running the command skips already-completed steps.

Basic usage

npx prisma@latest bootstrap

With a starter template

npx prisma@latest bootstrap --template nextjs

Non-interactive (CI)

npx prisma@latest bootstrap --api-key "$PRISMA_API_KEY" --database "db_abc123"

Open roles at Prisma

Interested in joining Prisma? We're growing and have several exciting opportunities across the company for developers who are passionate about building with Prisma. Explore our open positions on our Careers page and find the role that's right for you.

Enterprise support

Thousands of teams use Prisma and many of them already tap into our Enterprise & Agency Support Program for hands-on help with everything from schema integrations and performance tuning to security and compliance.

With this program you also get priority issue triage and bug fixes, expert scalability advice, and custom training so that your Prisma-powered apps stay rock-solid at any scale. Learn more or join: https://prisma.io/enterprise.

... (truncated)

Commits

• f2ca67e feat: pg statement name generator (#29395)
• 4131568 fix: set @​types/pg to ^8.16.0 (#29390)
• 33667c3 fix(adapter-pg): handle both quoted/unquoted column names in ColumnNotFound e...
• e97b3e0 feat(adapter-pg): accept connection string URL in PrismaPg constructor (#29287)
• See full diff in compare view

Updates axios from 1.13.6 to 1.15.0

Release notes

Sourced from axios's releases.

v1.15.0

This release delivers two critical security patches, adds runtime support for Deno and Bun, and includes significant CI hardening, documentation improvements, and routine dependency updates.

⚠️ Important Changes

• Deprecation: url.parse() usage has been replaced to address Node.js deprecation warnings. If you are on a recent version of Node.js, this resolves console warnings you may have been seeing. (#10625)

🔒 Security Fixes

• Proxy Handling: Fixed a no_proxy hostname normalisation bypass that could lead to Server-Side Request Forgery (SSRF). (#10661)
• Header Injection: Fixed an unrestricted cloud metadata exfiltration vulnerability via a header injection chain. (#10660)

🚀 New Features

• Runtime Support: Added compatibility checks and documentation for Deno and Bun environments. (#10652, #10653)

🔧 Maintenance & Chores

• CI Security: Hardened workflow permissions to least privilege, added the zizmor security scanner, pinned action versions, and gated npm publishing with OIDC and environment protection. (#10618, #10619, #10627, #10637, #10666)
• Dependencies: Bumped serialize-javascript, handlebars, picomatch, vite, and denoland/setup-deno to latest versions. Added a 7-day Dependabot cooldown period. (#10574, #10572, #10568, #10663, #10664, #10665, #10669, #10670, #10616)
• Documentation: Unified docs, improved beforeRedirect credential leakage example, clarified withCredentials/withXSRFToken behaviour, HTTP/2 support notes, async/await timeout error handling, header case preservation, and various typo fixes. (#10649, #10624, #7452, #7471, #10654, #10644, #10589)
• Housekeeping: Removed stale files, regenerated lockfile, and updated sponsor scripts and blocks. (#10584, #10650, #10582, #10640, #10659, #10668)
• Tests: Added regression coverage for urlencoded Content-Type casing. (#10573)

🌟 New Contributors

We are thrilled to welcome our new contributors. Thank you for helping improve Axios:

• @​raashish1601 (#10573)
• @​Kilros0817 (#10625)
• @​ashstrc (#10624)
• @​Abhi3975 (#10589)
• @​theamodhshetty (#7452)

v1.14.0

This release focuses on compatibility fixes, adapter stability improvements, and test/tooling modernisation.

⚠️ Important Changes

• Breaking Changes: None identified in this release.
• Action Required: If you rely on env-based proxy behaviour or CJS resolution edge-cases, validate your integration after upgrade (notably proxy-from-env v2 alignment and main entry compatibility fix).

🚀 New Features

• Runtime Features: No new end-user features were introduced in this release.
• Test Coverage Expansion: Added broader smoke/module test coverage for CJS and ESM package usage. (#7510)

🐛 Bug Fixes

• Headers: Trim trailing CRLF in normalised header values. (#7456)
• HTTP/2: Close detached HTTP/2 sessions on timeout to avoid lingering sessions. (#7457)
• Fetch Adapter: Cancel ReadableStream created during request-stream capability probing to prevent async resource leaks. (#7515)
• Proxy Handling: Fixed env proxy behavior with proxy-from-env v2 usage. (#7499)

... (truncated)

Changelog

Sourced from axios's changelog.

Changelog

1.13.3 (2026-01-20)

Bug Fixes

• http2: Use port 443 for HTTPS connections by default. (#7256) (d7e6065)
• interceptor: handle the error in the same interceptor (#6269) (5945e40)
• main field in package.json should correspond to cjs artifacts (#5756) (7373fbf)
• package.json: add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (#5754) (b89217e)
• silentJSONParsing=false should throw on invalid JSON (#7253) (#7257) (7d19335)
• turn AxiosError into a native error (#5394) (#5558) (1c6a86d)
• types: add handlers to AxiosInterceptorManager interface (#5551) (8d1271b)
• types: restore AxiosError.cause type from unknown to Error (#7327) (d8233d9)
• unclear error message is thrown when specifying an empty proxy authorization (#6314) (6ef867e)

Features

• add undefined as a value in AxiosRequestConfig (#5560) (095033c)
• add automatic minor and patch upgrades to dependabot (#6053) (65a7584)
• add Node.js coverage script using c8 (closes #7289) (#7294) (ec9d94e)
• added copilot instructions (3f83143)
• compatibility with frozen prototypes (#6265) (860e033)
• enhance pipeFileToResponse with error handling (#7169) (88d7884)
• types: Intellisense for string literals in a widened union (#6134) (f73474d), closes microsoft/TypeScript#33471

Reverts

• Revert "fix: silentJSONParsing=false should throw on invalid JSON (#7253) (#7…" (#7298) (a4230f5), closes #7253 #7 #7298
• deps: bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (#7334) (2d6ad5e)

Contributors to this release

• Ashvin Tiwari
• Nikunj Mochi
• Anchal Singh
• jasonsaayman
• Julian Dax
• Akash Dhar Dubey
• Madhumita
• Tackoil
• Justin Dhillon
• Rudransh
• WuMingDao
• codenomnom
• Nandan Acharya
• Eric Dubé
• Tibor Pilz
• Gabriel Quaresma
• Turadg Aleahmad

... (truncated)

Commits

• 772a4e5 chore(release): prepare release 1.15.0 (#10671)
• 4b07137 chore(deps-dev): bump vite from 8.0.0 to 8.0.5 in /tests/smoke/esm (#10663)
• 51e57b3 chore(deps-dev): bump vite from 8.0.2 to 8.0.5 (#10664)
• fba1a77 chore(deps-dev): bump vite from 8.0.2 to 8.0.5 in /tests/module/esm (#10665)
• 0bf6e28 chore(deps): bump denoland/setup-deno in the github-actions group (#10669)
• 8107157 chore(deps-dev): bump the development_dependencies group with 4 updates (#10670)
• e66530e ci: require npm-publish environment for releases (#10666)
• 49f23cb chore(sponsor): update sponsor block (#10668)
• 3631854 fix: unrestricted cloud metadata exfiltration via header injection chain (#10...
• fb3befb fix: no_proxy hostname normalization bypass leads to ssrf (#10661)
• Additional commits viewable in compare view

Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.

Updates canvas from 3.2.1 to 3.2.3

Release notes

Sourced from canvas's releases.

v3.2.3

Fixed

• Fix building with gcc (#2559)

v3.2.2

Fixed

• Fix dangling env pointer in image MIME data cleanup (#2550)
• Fix ctx.direction not affected by ctx.save and ctx.restore
• Preserve rest of PDF pages when changing width and height (#2538)
• Several security fixes for untrusted inputs to getImageData and putImageData. Thanks to Ethan Kim for the report.

Changelog

Sourced from canvas's changelog.

3.2.3

Fixed

• Fix building with gcc (#2559)

3.2.2

Fixed

• Fix dangling env pointer in image MIME data cleanup (#2550)
• Fix ctx.direction not affected by ctx.save and ctx.restore
• Preserve rest of PDF pages when changing width and height (#2538)
• Several security fixes for untrusted inputs to getImageData and putImageData. Thanks to Ethan Kim for the report.

Commits

• f91598e v3.2.3
• 1541544 PAGE_SIZE shouldn't be unsigned
• ac82fa7 v3.2.2
• 103a620 add the last flurry of commits to CHANGELOG
• 7304c7a avoid integer overflow in getImageData
• f9fcc5f avoid integer overflow in putImageData
• 802a8ca avoid integer overflow in new ImageData
• 9d1b478 wrap negative values passed to createImageData
• 779483c bail early when setting zero-length image source
• 22ed2b7 make canvas types unsigned
• Additional commits viewable in compare view

Updates csv-parse from 6.1.0 to 6.2.1

Changelog

Sourced from csv-parse's changelog.

6.2.1 (2026-03-20)

Bug Fixes

• csv-parse: prototype pollution with objname option (fix #479)

6.2.0 (2026-03-17)

Features

• csv-parse: alig info interfaces with js api
• csv-parse: info bytes_records (fix #446)
• csv-parse: remove non-existing ts function declaration
• csv-parse: remove ts usage of all in error type
• csv-parse: returned type generic for on_record (fix #461 #464 #466) (#468)

Bug Fixes

• csv-parse: delimiter inherited type
• csv-parse: support number columns with cast (fix #477)

Commits

• df244e9 chore(release): publish
• cd17465 fix(csv-parse): prototype pollution with objname option (fix #479)
• bec87d1 chore(release): publish
• 067922f chore: latest dependencies
• cb1a2d9 refactor: tsconfig json format
• 08b85ce build: remove all eslint errors
• 38b3d67 test: convert sample demo script to js
• bd1c611 test: support n 16 test after latest changes
• a068ec0 fix(csv-parse): support number columns with cast (fix #477)
• da7ca03 build: check ts compilation before tests
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for csv-parse since your current version.

Updates dotenv from 17.3.1 to 17.4.2

Changelog

Sourced from dotenv's changelog.

17.4.2 (2026-04-12)

Changed

• Improved skill files - tightened up details (#1009)

17.4.1 (2026-04-05)

Changed

• Change text injecting to injected (#1005)

17.4.0 (2026-04-01)

Added

• Add skills/ folder with focused agent skills: skills/dotenv/SKILL.md (core usage) and skills/dotenvx/SKILL.md (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (npx skills add motdotla/dotenv)

Changed

• Tighten up logs: ◇ injecting env (14) from .env (#1003)

Commits

• f116f70 17.4.2
• 3a81612 fix visual order of faq
• 13f55a8 Merge branch 'skill'
• 4bbbf73 reorganize faq
• c3da64b Merge pull request #1009 from motdotla/skill
• 6f743b1 update source
• fc2c624 update skill
• 972315b Tight...

  Description has been truncated

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
dea-map	Ready	Preview	Apr 13, 2026 7:26am