chore(deps): bump lucide-react from 1.17.0 to 1.18.0 in /admin in the prod-minor-patch group

[dependabot]

Bumps the prod-minor-patch group in /admin with 1 update: lucide-react.

Updates lucide-react from 1.17.0 to 1.18.0

Release notes

Sourced from lucide-react's releases.

Version 1.18.0

What's Changed

• chore(site): Remove survey from site by @​ericfennis in lucide-icons/lucide#4417
• feat(icons): added play-off icon by @​Ahmed-Dghaies in lucide-icons/lucide#4412
• fix(metadata): add missing use-cases prop on play-off.json by @​karsa-mistmere in lucide-icons/lucide#4423
• fix(docs): force hide #bb-banner, if html.has-bb-banner is missing by @​karsa-mistmere in lucide-icons/lucide#4422
• fix(docs): Remove @next from installation instructions for@lucide/svelte by @​alecglassford in lucide-icons/lucide#4432
• feat(packages/angular): add support for Angular v22 and onwards by @​karsa-mistmere in lucide-icons/lucide#4450
• fix(ci): add check to skip release if latest tag was created today by @​ericfennis in lucide-icons/lucide#4085
• feat(icons): added webcam-off icon by @​jordan-burnett in lucide-icons/lucide#4242

New Contributors

• @​alecglassford made their first contribution in lucide-icons/lucide#4432
• @​jordan-burnett made their first contribution in lucide-icons/lucide#4242

Full Changelog: lucide-icons/lucide@1.17.0...1.18.0

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[qodo-free-for-open-source-projects]

CI Feedback 🧐

A test triggered by this PR failed. Here is an AI-generated analysis of the failure:

Action: test (ubuntu-latest, amd64)

Failed stage: Install pnpm dependencies [❌]

Failed test name: ""

Failure summary: The action failed during dependency installation because pnpm install --frozen-lockfile rejected pnpm-lock.yaml due to a supply-chain policy violation. - pnpm reported [ERR_PNPM_MINIMUM_RELEASE_AGE_VIOLATION]: the lockfile includes lucide-react@1.18.0, which was published too recently (within the configured minimumReleaseAge cutoff), so the lockfile verification failed. - As a result, pnpm install exited with code 1, causing the GitHub Action to fail.

Relevant error logs: 1: ##[group]Runner Image Provisioner 2: Hosted Compute Agent ... 250: Removing HTTP extra header 251: [command]/usr/bin/git config --local --name-only --get-regexp http\.https\:\/\/github\.com\/\.extraheader 252: [command]/usr/bin/git submodule foreach --recursive sh -c "git config --local --name-only --get-regexp 'http\.https\:\/\/github\.com\/\.extraheader' && git config --local --unset-all 'http.https://github.com/.extraheader' || :" 253: Removing includeIf entries pointing to credentials config files 254: [command]/usr/bin/git config --local --name-only --get-regexp ^includeIf\.gitdir: 255: [command]/usr/bin/git submodule foreach --recursive git config --local --show-origin --name-only --get-regexp remote.origin.url 256: [command]/usr/bin/git config --file /home/runner/work/_temp/git-credentials-a0b6f20d-6a1d-4e14-a25c-a962628d59d6.config http.https://github.com/.extraheader AUTHORIZATION: basic *** 257: [command]/usr/bin/git config --local includeIf.gitdir:/home/runner/work/etherpad-go/etherpad-go/.git.path /home/runner/work/_temp/git-credentials-a0b6f20d-6a1d-4e14-a25c-a962628d59d6.config 258: [command]/usr/bin/git config --local includeIf.gitdir:/home/runner/work/etherpad-go/etherpad-go/.git/worktrees/*.path /home/runner/work/_temp/git-credentials-a0b6f20d-6a1d-4e14-a25c-a962628d59d6.config 259: [command]/usr/bin/git config --local includeIf.gitdir:/github/workspace/.git.path /github/runner_temp/git-credentials-a0b6f20d-6a1d-4e14-a25c-a962628d59d6.config 260: [command]/usr/bin/git config --local includeIf.gitdir:/github/workspace/.git/worktrees/*.path /github/runner_temp/git-credentials-a0b6f20d-6a1d-4e14-a25c-a962628d59d6.config 261: ##[endgroup] 262: ##[group]Fetching the repository 263: [command]/usr/bin/git -c protocol.version=2 fetch --no-tags --prune --no-recurse-submodules origin +refs/heads/*:refs/remotes/origin/* +refs/tags/*:refs/tags/* +f495afe0cbccf456528ffa9ff088a497ef1a941d:refs/remotes/pull/283/merge 264: From https://github.com/ether/etherpad-go 265: * [new branch] 125-error-reading-plugin-file -> origin/125-error-reading-plugin-file 266: * [new branch] dependabot/npm_and_yarn/admin/prod-minor-patch-667bac691f -> origin/dependabot/npm_and_yarn/admin/prod-minor-patch-667bac691f ... 447: REGISTRY_IMAGE: ghcr.io/ether/etherpad-go 448: GOTOOLCHAIN: local 449: ##[endgroup] 450: added 1 package in 2s 451: 1 package is looking for funding 452: run `npm fund` for details 453: ##[group]Run pnpm install --frozen-lockfile 454: �[36;1mpnpm install --frozen-lockfile�[0m 455: shell: /usr/bin/bash -e {0} 456: env: 457: REGISTRY_IMAGE: ghcr.io/ether/etherpad-go 458: GOTOOLCHAIN: local 459: ##[endgroup] 460: Scope: all 17 workspace projects 461: ? Verifying lockfile against supply-chain policies (173 entries)... 462: ✗ Lockfile failed supply-chain policy check (173 entries in 1.5s) 463: [ERR_PNPM_MINIMUM_RELEASE_AGE_VIOLATION] 1 lockfile entries failed verification: 464: lucide-react@1.18.0 was published at 2026-06-12T12:40:55.000Z, within the minimumReleaseAge cutoff (2026-06-11T20:05:25.745Z) 465: The lockfile contains entries that the active policies reject. This can mean the lockfile is stale, or that someone committed a lockfile that bypassed the policy locally — inspect recent changes to pnpm-lock.yaml before trusting it. If the changes look expected, run "pnpm clean --lockfile" and then "pnpm install" to rebuild from a fresh resolution. Alternatively, relax the policy that flagged them. 466: ##[error]Process completed with exit code 1. 467: Post job cleanup.

[dependabot]

Looks like lucide-react is no longer updatable, so this is no longer needed.