deps(example): Bump the dependencies group across 1 directory with 9 updates

[dependabot]

Bumps the dependencies group with 9 updates in the /examples/nextjs-14-react-hook-form directory:

Package	From	To
@arcjet/next	1.0.0-alpha.12	1.0.0-alpha.13
@hookform/resolvers	3.4.0	3.6.0
lucide-react	0.378.0	0.383.0
react-hook-form	7.51.4	7.51.5
@types/react	18.3.2	18.3.3
@typescript-eslint/parser	7.9.0	7.12.0
eslint-plugin-react	7.34.1	7.34.2
eslint-plugin-tailwindcss	3.15.1	3.17.1
tailwindcss	3.4.3	3.4.4

Updates @arcjet/next from 1.0.0-alpha.12 to 1.0.0-alpha.13

Release notes

Sourced from @​arcjet/next's releases.

v1.0.0-alpha.13

1.0.0-alpha.13 (2024-05-20)

⚠ BREAKING CHANGES

• protocol: Export only things we use from connect and buf (#783)
• eslint-config: Update linting rules (#774)

🚀 New Features

• Create Bun.sh adapter (#757) (381dde5), closes #475
• Create SvelteKit adapter (#775) (002fdbb), closes #754
• Filter cookie headers when normalizing with ArcjetHeaders (#773) (99b3e1f)
• ip: Detect Fly-Client-IP header when available (#751) (73359f6)

🪲 Bug Fixes

• analyze: Leverage string interpolation to import Wasm files on edge runtime (#784) (9b85908)
• protocol: Export only things we use from connect and buf (#783) (4596da5)

📦 Dependencies

• Bump @​bufbuild/protobuf from 1.8.0 to 1.9.0 (#652) (4cd2114)
• Bump eslint-config-next from 14.2.2 to 14.2.3 (#670) (8d7ff7e)
• Bump eslint-config-turbo from 1.13.2 to 1.13.3 (#686) (1b9b68e)
• dev: Bump @​bytecodealliance/jco from 1.1.1 to 1.2.2 (#707) (39989b8)
• dev: Bump @​bytecodealliance/jco from 1.2.2 to 1.2.4 (#725) (7c43124)
• dev: Bump @​rollup/wasm-node from 4.14.3 to 4.17.2 (#708) (6e548bf)
• example: Bump @​clerk/nextjs from 4.29.12 to 4.30.0 in /examples/nextjs-14-clerk-rl in the dependencies group (#637) (0fa5e3e)
• example: Bump @​clerk/nextjs from 5.0.10 to 5.0.11 in /examples/nextjs-14-clerk-rl in the dependencies group (#771) (81d1078)
• example: Bump @​clerk/nextjs from 5.0.10 to 5.0.11 in /examples/nextjs-14-clerk-shield in the dependencies group (#770) (ae4c32e)
• example: Bump @​clerk/nextjs from 5.0.11 to 5.0.12 in /examples/nextjs-14-clerk-rl in the dependencies group (#776) (1454a35)
• example: Bump @​clerk/nextjs from 5.0.11 to 5.0.12 in /examples/nextjs-14-clerk-shield in the dependencies group (#777) (8b5c648)
• example: Bump @​hono/node-server from 1.10.0 to 1.10.1 in /examples/nodejs-hono-rl in the dependencies group (#640) (5a8998f)
• example: Bump @​sveltejs/kit from 2.5.8 to 2.5.9 in /examples/sveltekit in the dependencies group (#790) (9e14db1)
• example: Bump @​types/react from 18.3.1 to 18.3.2 in /examples/nextjs-14-app-dir-rl in the dependencies group (#741) (625a165)
• example: Bump @​types/react from 18.3.1 to 18.3.2 in /examples/nextjs-14-app-dir-validate-email in the dependencies group (#746) (a562bed)
• example: Bump @​types/react from 18.3.1 to 18.3.2 in /examples/nextjs-14-decorate in the dependencies group (#739) (b3da4e6)
• example: Bump @​types/react from 18.3.1 to 18.3.2 in /examples/nextjs-14-ip-details in the dependencies group (#745) (debbe35)
• example: Bump @​types/react from 18.3.1 to 18.3.2 in /examples/nextjs-14-nextauth-4 in the dependencies group (#748) (e521eb9)
• example: Bump @​types/react from 18.3.1 to 18.3.2 in /examples/nextjs-14-pages-wrap in the dependencies group (#742) (9f8040a)
• example: Bump ai from 3.1.8 to 3.1.9 in /examples/nextjs-14-openai in the dependencies group (#767) (bd7cf85)
• example: Bump ai from 3.1.9 to 3.1.12 in /examples/nextjs-14-openai in the dependencies group across 1 directory (#779) (225dbae)
• example: Bump eslint-config-next from 14.2.2 to 14.2.3 in /examples/nextjs-example in the dependencies group (#668) (36bf48b)
• example: Bump hono from 4.2.5 to 4.2.7 in /examples/nodejs-hono-rl (#654) (330b317)
• example: Bump hono from 4.3.4 to 4.3.7 in /examples/nodejs-hono-rl in the dependencies group across 1 directory (#762) (8fb68f5)
• example: Bump hono from 4.3.7 to 4.3.8 in /examples/nodejs-hono-rl in the dependencies group (#789) (94c5e01)

... (truncated)

Changelog

Sourced from @​arcjet/next's changelog.

1.0.0-alpha.13 (2024-05-20)

⚠ BREAKING CHANGES

• eslint-config: Update linting rules (#774)

📦 Dependencies

• dev: Bump @​rollup/wasm-node from 4.14.3 to 4.17.2 (#708) (6e548bf)

🧹 Miscellaneous Chores

• eslint-config: Update linting rules (#774) (c223ba0), closes #337
• next: Inline redirect interceptor to drop type import (#785) (e613372)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​arcjet/ip bumped from 1.0.0-alpha.12 to 1.0.0-alpha.13
    • arcjet bumped from 1.0.0-alpha.12 to 1.0.0-alpha.13
  • devDependencies
    • @​arcjet/eslint-config bumped from 1.0.0-alpha.12 to 1.0.0-alpha.13
    • @​arcjet/rollup-config bumped from 1.0.0-alpha.12 to 1.0.0-alpha.13
    • @​arcjet/tsconfig bumped from 1.0.0-alpha.12 to 1.0.0-alpha.13

Commits

• 3af972f chore: Release 1.0.0-alpha.13 (#641)
• e613372 chore(next): Inline redirect interceptor to drop type import (#785)
• c223ba0 chore(eslint-config)!: Update linting rules (#774)
• 6e548bf deps(dev): Bump @​rollup/wasm-node from 4.14.3 to 4.17.2 (#708)
• See full diff in compare view

Updates @hookform/resolvers from 3.4.0 to 3.6.0

Release notes

Sourced from @​hookform/resolvers's releases.

v3.6.0

3.6.0 (2024-06-06)

Features

• upgrade and migrate Valibot to v0.31.0 (#688) (bdd5ef5)

v3.5.0

3.5.0 (2024-06-04)

Features

• migrate arktype resolver to v2 (#686) (c53864f)

v3.4.2

3.4.2 (2024-05-20)

Bug Fixes

• move back to in-build set and remove lodash.set (#685) (5754c47)

v3.4.1

3.4.1 (2024-05-20)

Bug Fixes

• migrate set to lodash.set package (#684) (bdc1f1f)

Commits

• bdd5ef5 feat: upgrade and migrate Valibot to v0.31.0 (#688)
• c53864f feat: migrate arktype resolver to v2 (#686)
• 767184d chore: remove lodash.set dep
• 5754c47 fix: move back to in-build set and remove lodash.set (#685)
• bdc1f1f fix: migrate set to lodash.set package (#684)
• 9098f59 Update effect-ts README.md (#682)
• See full diff in compare view

Updates lucide-react from 0.378.0 to 0.383.0

Release notes

Sourced from lucide-react's releases.

New icons 0.383.0

Modified Icons 🔨

• compass (#2143) by @​jguddas
• radical (#2150) by @​jguddas

New icons 0.382.0

New icons 🎨

• pill-bottle (#2174) by @​karsa-mistmere

New icons 0.381.0

New icons 🎨

• lectern (#2171) by @​karsa-mistmere

New icons 0.380.0

New icons 🎨

• section (#2172) by @​karsa-mistmere

New icons 0.379.0

Modified Icons 🔨

• key (#2067) by @​jguddas

Commits

• 4f2a6b7 fix license typos (#2161)
• e2b46ea feat(icons): add deprecationReason and alias deprecation feature (#1960)
• See full diff in compare view

Updates react-hook-form from 7.51.4 to 7.51.5

Release notes

Sourced from react-hook-form's releases.

v7.51.5

📖 fix broken link to examples in README.md (#11805) ⌨️ close: correct type of error field in getFieldState return object (#11831) 🐞 fix #11842 radio buttons not disabled when multiple share a name (#11873) 🐞 fix #11821 set value with disabled false before mount (#11880) 🐞 fix setError to preserve existing errors elsewhere in the object (#11888) ⌨️ fix: add info.value type to WatchObserver (#11872) 🫡 fix issue with internal set api (#11915)

thanks to @​mjr2595 @​erashu212 @​SimonJTurner and @​peinguin

Commits

• 6deae49 7.51.5
• 3be826c fix issue with set api (#11915)
• e035a5c 👮‍♀️ fix: remove export on set (#11911)
• 3e374dc ⌨️ fix: add info.value type to WatchObserver (#11872)
• 48f8822 🐞 fix setError to preserve existing errors elsewhere in the object (#11888)
• 2364d43 🐞 fix #11821 set value with disabled false before mount (#11880)
• 52611a5 🐞 fix #11842 radio buttons not disabled when multiple share a name (#11873)
• 4549afd ⌨️ close: correct type of error field in getFieldState return object (#11...
• 2d94b6e 📖 fix broken link to examples in README.md (#11805)
• See full diff in compare view

Updates @types/react from 18.3.2 to 18.3.3

Commits

• See full diff in compare view

Updates @typescript-eslint/parser from 7.9.0 to 7.12.0

Release notes

Sourced from @​typescript-eslint/parser's releases.

v7.12.0

7.12.0 (2024-06-03)

🚀 Features

• eslint-plugin: [no-useless-template-literals] rename to no-useless-template-expression (deprecate no-useless-template-literals) (#8821)
• eslint-plugin: [no-floating-promises] add option 'allowForKnownSafePromises' (#9186)
• rule-tester: check for parsing errors in suggestion fixes (#9052)
• rule-tester: port checkDuplicateTestCases from ESLint (#9026)

🩹 Fixes

• no-useless-template-expression -> no-unnecessary-template-expression (#9174)
• eslint-plugin: [no-unnecessary-type-assertion] combine template literal check with const variable check (#8820)
• eslint-plugin: [dot-notation] fix false positive when accessing private/protected property with optional chaining (#8851)
• eslint-plugin: [explicit-member-accessibility] refine report locations (#8869)
• eslint-plugin: [no-unnecessary-type-assertion] declares are always defined, so always check declares (#8901)
• eslint-plugin: [prefer-literal-enum-member] allow using member it self on allowBitwiseExpressions (#9114)
• eslint-plugin: [return-await] clean up in-try-catch detection and make autofixes safe (#9031)
• eslint-plugin: [member-ordering] also TSMethodSignature can be get/set (#9193)
• types: correct typing ParserOptions (#9202)

❤️ Thank You

• Abraham Guo
• Han Yeong-woo @​nix6839
• Joshua Chen
• Kim Sang Du @​developer-bandi
• Kirk Waiblinger
• YeonJuan @​yeonjuan

You can read about our versioning strategy and releases on our website.

v7.11.0

7.11.0 (2024-05-27)

🚀 Features

• eslint-plugin: deprecate prefer-ts-expect-error in favor of ban-ts-comment (#9081)

🩹 Fixes

• ast-spec: add EmptyStatement to Statement (#8892)
• eslint-plugin: [consistent-type-assertions] prevent syntax errors on arrow functions (#8826)
• typescript-estree: truncate number of files printed by the maximum file error (#9127)

❤️ Thank You

... (truncated)

Changelog

Sourced from @​typescript-eslint/parser's changelog.

7.12.0 (2024-06-03)

🩹 Fixes

• types: correct typing ParserOptions

❤️ Thank You

• Abraham Guo
• Han Yeong-woo
• Joshua Chen
• Kim Sang Du
• Kirk Waiblinger
• YeonJuan

You can read about our versioning strategy and releases on our website.

7.11.0 (2024-05-27)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

7.10.0 (2024-05-20)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

• 7e93b28 chore(release): publish 7.12.0
• 2bbf656 fix(types): correct typing ParserOptions (#9202)
• e360541 chore(release): publish 7.11.0
• c18226e chore(release): publish 7.10.0
• See full diff in compare view

Updates eslint-plugin-react from 7.34.1 to 7.34.2

Release notes

Sourced from eslint-plugin-react's releases.

v7.34.2

Fixed

• boolean-prop-naming: avoid a crash with a non-TSTypeReference type (#3718[] @​developer-bandi)
• jsx-no-leaked-render: invalid report if left side is boolean (#3746[] @​akulsr0)
• jsx-closing-bracket-location: message shows {{details}} when there are no details (#3759[] @​mdjermanovic)
• no-invalid-html-attribute: ensure error messages are correct (#3759[] @​mdjermanovic, @​ljharb)

Changed

• [Refactor] create various eslint utils to fix eslint deprecations (#3759[] @​mdjermanovic, @​ljharb)

#3759: jsx-eslint/eslint-plugin-react#3759 #3746: jsx-eslint/eslint-plugin-react#3746 #3718: jsx-eslint/eslint-plugin-react#3718

Changelog

Sourced from eslint-plugin-react's changelog.

7.34.2 - 2024.05.24

Fixed

• [boolean-prop-naming]: avoid a crash with a non-TSTypeReference type (#3718[] @​developer-bandi)
• [jsx-no-leaked-render]: invalid report if left side is boolean (#3746[] @​akulsr0)
• [jsx-closing-bracket-location]: message shows {{details}} when there are no details (#3759[] @​mdjermanovic)
• [no-invalid-html-attribute]: ensure error messages are correct (#3759[] @​mdjermanovic, @​ljharb)

Changed

• [Refactor] create various eslint utils to fix eslint deprecations (#3759[] @​mdjermanovic, @​ljharb)

#3759: jsx-eslint/eslint-plugin-react#3759 #3746: jsx-eslint/eslint-plugin-react#3746 #3718: jsx-eslint/eslint-plugin-react#3718

Commits

• 417e1ca Update CHANGELOG and bump version
• d79605a [Deps] update array-includes, array.prototype.findlast, `es-iterator-help...
• ec86001 [Dev Deps] update @babel/core, @babel/eslint-parser, `@babel/plugin-synta...
• 014ee05 [Fix] no-invalid-html-attribute: ensure error messages are correct
• 23b0a49 [Fix] jsx-closing-bracket-location: message shows {{details}} when there ...
• fbb1e0f [Tests] jsx-no-useless-fragment, jsx-fragments, `function-component-defin...
• 3533e26 [Refactor] jsx-no-constructed-context-values: set schema: false
• 6c4b6fb [meta] consistently indent .eslintrc with tabs
• 8e1a94b [Refactor] create getScope util; context.getScope is deprecated
• d6e9059 [Refactor] context.getSource -> sourceCode.getText
• Additional commits viewable in compare view

Updates eslint-plugin-tailwindcss from 3.15.1 to 3.17.1

Release notes

Sourced from eslint-plugin-tailwindcss's releases.

v3.17.1

• perf: no-custom-classname optimization (by XantreDev 🙏)

Enhanced Template literals support

• fix: support tag.div and tag(Component) (by nihalgonsalves 🙏)

ESLint v9 support

• feat: support flat config and ESLint 9 (by kazupon 🙏)

Commits

• ecc0f9f 3.17.1
• a20ef76 docs: changelog
• b9d7547 fix: broken test
• d865d93 no-custom-classname: perf optimization (#338)
• 8439945 chore: upgrade to [email protected]
• b739eec chore: upgrade to [email protected]
• 24c68c4 3.17.1-beta.0
• 3641314 Merge branch 'no-custom-classname-perf-improvements' of github.com:XantreDev/...
• 2e49ce6 3.17.0
• 162a777 docs: changelog
• Additional commits viewable in compare view

Updates tailwindcss from 3.4.3 to 3.4.4

Release notes

Sourced from tailwindcss's releases.

v3.4.4

Fixed

• Make it possible to use multiple <alpha-value> placeholders in a single color definition (#13740)
• Don't prefix classes in arbitrary values of has-*, group-has-*, and peer-has-* variants (#13770)
• Support negative values for {col,row}-{start,end} utilities (#13781)
• Update embedded browserslist database (#13792)

Changelog

Sourced from tailwindcss's changelog.

[3.4.4] - 2024-06-05

Fixed

• Make it possible to use multiple <alpha-value> placeholders in a single color definition (#13740)
• Don't prefix classes in arbitrary values of has-*, group-has-*, and peer-has-* variants (#13770)
• Support negative values for {col,row}-{start,end} utilities (#13781)
• Update embedded browserslist database (#13792)

Commits

• ff6f085 3.4.4
• ed024ee Update changelog
• 325e7c0 Bump deps (#13797)
• 56116b0 Update browserslist database (#13792)
• 8d66d94 [v3] Support negative values for {col,row}-{start,end} utilities (#13781)
• 669109e Don't prefix classes in arbitrary values of has-*, group-has-*, and `peer...
• 9fda461 Fix multiple <alpha-value> in color definitions (#13740)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[trunk-io]

Merging to main in this repository is managed by Trunk.

• To merge this pull request, check the box to the left or comment /trunk merge below.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@hookform/[email protected]	None	0	0 B
npm/@typescript-eslint/[email protected]	Transitive: environment	+5	435 kB
npm/[email protected]	None	0	0 B
npm/[email protected]	None	0	23.2 MB	ericfennis
npm/[email protected]	network	0	901 kB	bluebill1049
npm/[email protected]	Transitive: environment, filesystem, network, shell, unsafe	+26	4.76 MB

🚮 Removed packages: npm/@arcjet/[email protected], npm/@hookform/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎

[socket-security]

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert	Package	Note	Source
Network access	npm/[email protected]	Module: globalThis["fetch"] Location: Package overview	examples/nextjs-14-react-hook-form/package-lock.json examples/nextjs-14-react-hook-form/package.json
Network access	npm/[email protected]	Module: globalThis["fetch"] Location: Package overview	examples/nextjs-14-react-hook-form/package-lock.json examples/nextjs-14-react-hook-form/package.json
Network access	npm/[email protected]	Module: globalThis["fetch"] Location: Package overview	Source
Network access	npm/[email protected]	Module: globalThis["fetch"] Location: Package overview	Source

View full report↗︎

Next steps

What is network access?

This module accesses the network.

Packages should remove all network access that is functionally unnecessary. Consumers should audit network access to ensure legitimate use.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

• @SocketSecurity ignore npm/[email protected]
• @SocketSecurity ignore npm/[email protected]

[dependabot]

Superseded by #889.