diff --git a/.github/actions/post-scratch-org-links-on-pr/action.yml b/.github/actions/post-scratch-org-links-on-pr/action.yml index 787e9ca2a8e..5e60d106aa6 100644 --- a/.github/actions/post-scratch-org-links-on-pr/action.yml +++ b/.github/actions/post-scratch-org-links-on-pr/action.yml @@ -19,7 +19,7 @@ runs: echo "lws_disabled_url=$LWS_DISABLED_URL" >> $GITHUB_OUTPUT - name: Post or update PR comment with Scratch Org links - uses: actions/github-script@v6 + uses: actions/github-script@d7906e4ad0b1822421a7e6a35d5ca353c962f410 # v6 with: script: | const lwsEnabledUrl = '${{ steps.read-env.outputs.lws_enabled_url }}'; diff --git a/.github/actions/publish-pr-review-site/action.yml b/.github/actions/publish-pr-review-site/action.yml index ed56de5315d..6b620f2be0b 100644 --- a/.github/actions/publish-pr-review-site/action.yml +++ b/.github/actions/publish-pr-review-site/action.yml @@ -11,7 +11,7 @@ inputs: runs: using: composite steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: repository: coveo/ui-kit-prs path: prs diff --git a/.github/actions/setup/action.yml b/.github/actions/setup/action.yml index 909d871b7a9..952e041b506 100644 --- a/.github/actions/setup/action.yml +++ b/.github/actions/setup/action.yml @@ -28,7 +28,7 @@ runs: - name: Install npm run: npm i -g npm@11.6.0 shell: bash - - uses: actions/cache@5a3ec84eff668545956fd18022155c47e93e2684 # v4 + - uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 with: path: ~/.cache/Cypress key: ${{ runner.os }}-${{ inputs.cache-prefix }}-cy-${{ github.sha }} diff --git a/.github/workflows/cd.yml b/.github/workflows/cd.yml index 2b2621fe8d6..6c54191ca7b 100644 --- a/.github/workflows/cd.yml +++ b/.github/workflows/cd.yml @@ -23,7 +23,7 @@ jobs: environment: 'Manual Release' steps: - name: Harden the runner (Audit all outbound calls) - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit @@ -39,11 +39,11 @@ jobs: id-token: write steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: fetch-depth: 0 - uses: ./.github/actions/setup @@ -52,7 +52,7 @@ jobs: save-cache: true - name: Generate a token id: generate-token - uses: actions/create-github-app-token@df432ceedc7162793a195dd1713ff69aefc7379e # v2 + uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2 with: app-id: ${{ secrets.RELEASER_APP_ID }} private-key: ${{ secrets.RELEASER_PRIVATE_KEY }} @@ -80,11 +80,11 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: ref: 'release/v3' - uses: ./.github/actions/setup @@ -101,11 +101,11 @@ jobs: discussions: write steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: ref: 'release/v3' - uses: ./.github/actions/setup @@ -128,12 +128,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: ref: 'release/v3' @@ -169,12 +169,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: ref: 'release/v3' @@ -211,11 +211,11 @@ jobs: environment: 'Docs Production' steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: ref: 'release/v3' - uses: ./.github/actions/setup diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index e68af7fe9ae..a4cf7b54064 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -14,19 +14,19 @@ jobs: NODE_OPTIONS: --max_old_space_size=4096 steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - name: Generate a token if: ${{ always() && github.event_name == 'pull_request'}} id: generate-token - uses: actions/create-github-app-token@df432ceedc7162793a195dd1713ff69aefc7379e # v2 + uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2 with: app-id: ${{ secrets.GH_APP_ID }} private-key: ${{ secrets.GH_APP_PRIVATE_KEY }} owner: coveo repositories: "ui-kit" - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: fetch-depth: 0 - run: git branch main origin/main @@ -47,11 +47,11 @@ jobs: contents: read steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: ref: ${{ github.head_ref }} - uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4 @@ -73,11 +73,11 @@ jobs: environment: PR Artifacts steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: ref: ${{ github.head_ref }} - uses: ./.github/actions/setup @@ -94,7 +94,7 @@ jobs: - name: Generate a token if: ${{ steps.check-changes.outputs.has_changes == 'true' && github.event_name == 'pull_request' }} id: generate-token - uses: actions/create-github-app-token@df432ceedc7162793a195dd1713ff69aefc7379e # v2 + uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2 with: app-id: ${{ secrets.GH_APP_ID }} private-key: ${{ secrets.GH_APP_PRIVATE_KEY }} @@ -112,11 +112,11 @@ jobs: environment: PR Artifacts steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup with: save-cache: "true" @@ -129,11 +129,11 @@ jobs: PR_NUMBER: ${{ github.event_name == 'pull_request' && github.event.pull_request.number || '' }} steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup with: cache-prefix: "cdn" @@ -146,11 +146,11 @@ jobs: projects: ${{ steps.set.outputs.projects }} steps: - name: Harden the runner (Audit all outbound calls) - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: fetch-depth: 0 filter: blob:none @@ -172,10 +172,10 @@ jobs: needs: build steps: - name: Harden the runner (Audit all outbound calls) - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - name: Run knip run: npm run knip @@ -187,14 +187,14 @@ jobs: DEPLOYMENT_ENVIRONMENT: CDN runs-on: ubuntu-latest container: - image: mcr.microsoft.com/playwright:v1.54.1-noble + image: mcr.microsoft.com/playwright:v1.56.1-noble options: --user 1001 steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup with: cache-prefix: "cdn" @@ -206,11 +206,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - run: npm run lint:check unit-test: @@ -218,16 +218,16 @@ jobs: needs: build runs-on: ubuntu-latest container: - image: mcr.microsoft.com/playwright:v1.54.1-noble + image: mcr.microsoft.com/playwright:v1.56.1-noble options: --user 1001 timeout-minutes: 15 steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: fetch-depth: 0 filter: blob:none @@ -240,11 +240,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - run: npm run package-compatibility typedoc: @@ -254,11 +254,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - name: "Build headless typedoc" run: npm run build:typedoc @@ -273,11 +273,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/e2e-atomic-csp prepare-playwright-atomic: @@ -293,11 +293,11 @@ jobs: shardTotal: ${{ steps.determine-tests.outputs.shardTotal }} steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: fetch-depth: 0 - run: git branch main origin/main @@ -324,7 +324,7 @@ jobs: if: ${{ needs.prepare-playwright-atomic.outputs.shardIndex != '[0]' && needs.prepare-playwright-atomic.outputs.shardTotal != '[0]' }} runs-on: ubuntu-latest container: - image: mcr.microsoft.com/playwright:v1.54.1-noble + image: mcr.microsoft.com/playwright:v1.56.1-noble options: --user 1001 strategy: fail-fast: false @@ -333,11 +333,11 @@ jobs: shardTotal: ${{ fromJson(needs.prepare-playwright-atomic.outputs.shardTotal) }} steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - run: npm run build - uses: ./.github/actions/playwright-atomic @@ -354,11 +354,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - run: npm run build - name: Merge Playwright reports @@ -371,7 +371,7 @@ jobs: - name: Generate a token if: ${{ always() && github.event_name == 'pull_request'}} id: generate-token - uses: actions/create-github-app-token@df432ceedc7162793a195dd1713ff69aefc7379e # v2 + uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2 with: app-id: ${{ secrets.GH_APP_ID }} private-key: ${{ secrets.GH_APP_PRIVATE_KEY }} @@ -388,15 +388,15 @@ jobs: if: contains(needs.affected.outputs.projects, '@coveo/atomic') runs-on: ubuntu-latest container: - image: mcr.microsoft.com/playwright:v1.54.1-noble + image: mcr.microsoft.com/playwright:v1.56.1-noble options: --user 1001 steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - run: npm run build - uses: ./.github/actions/playwright-atomic-theming @@ -443,11 +443,11 @@ jobs: ] steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/cypress-atomic with: @@ -461,11 +461,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/cypress-atomic-screenshots playwright-atomic-search-commerce-react-test: @@ -474,15 +474,15 @@ jobs: if: contains(needs.affected.outputs.projects, '@samples/atomic-search-commerce-react') runs-on: ubuntu-latest container: - image: mcr.microsoft.com/playwright:v1.54.1-noble + image: mcr.microsoft.com/playwright:v1.56.1-noble options: --user 1001 steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/playwright-atomic-search-commerce-react cypress-atomic-search-nextjs-pages-router-test: @@ -492,11 +492,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/cypress-atomic-search-nextjs-pages-router playwright-atomic-search-commerce-angular-test: @@ -505,15 +505,15 @@ jobs: if: contains(needs.affected.outputs.projects, '@samples/atomic-search-commerce-angular') runs-on: ubuntu-latest container: - image: mcr.microsoft.com/playwright:v1.54.1-noble + image: mcr.microsoft.com/playwright:v1.56.1-noble options: --user 1001 steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/playwright-atomic-search-commerce-angular cypress-atomic-search-stencil-test: @@ -523,11 +523,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/cypress-atomic-search-stencil playwright-atomic-hosted-page-test: @@ -536,15 +536,15 @@ jobs: if: contains(needs.affected.outputs.projects, '@coveo/atomic-hosted-page') runs-on: ubuntu-latest container: - image: mcr.microsoft.com/playwright:v1.54.1-noble + image: mcr.microsoft.com/playwright:v1.56.1-noble options: --user 1001 steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - run: npm run build - uses: ./.github/actions/playwright-atomic-hosted-pages @@ -554,15 +554,15 @@ jobs: if: contains(needs.affected.outputs.projects, '@samples/headless-ssr-commerce-nextjs') runs-on: ubuntu-latest container: - image: mcr.microsoft.com/playwright:v1.54.1-noble + image: mcr.microsoft.com/playwright:v1.56.1-noble options: --user 1001 steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - run: npm run build - uses: ./.github/actions/playwright-headless-ssr-commerce-nextjs @@ -573,11 +573,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/cypress-atomic-insight-panel cypress-headless-ssr-search-nextjs-app-router-test: @@ -587,11 +587,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/cypress-headless-ssr-search-nextjs-app-router cypress-headless-ssr-search-nextjs-pages-router-test: @@ -601,11 +601,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/cypress-headless-ssr-search-nextjs-pages-router e2e-quantic: @@ -664,10 +664,10 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: fetch-depth: 0 - run: git branch main origin/main @@ -711,7 +711,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit @@ -748,7 +748,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit @@ -770,7 +770,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit @@ -830,10 +830,10 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: fetch-depth: 0 - run: git branch main origin/main diff --git a/.github/workflows/copilot-setup-steps.yml b/.github/workflows/copilot-setup-steps.yml index 8e076c97138..4e1d5df90e5 100644 --- a/.github/workflows/copilot-setup-steps.yml +++ b/.github/workflows/copilot-setup-steps.yml @@ -26,11 +26,11 @@ jobs: contents: read steps: - name: Harden the runner (Audit all outbound calls) - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: fetch-depth: 0 - uses: ./.github/actions/setup diff --git a/.github/workflows/create-quantic-package.yml b/.github/workflows/create-quantic-package.yml index cfac53efc62..ea91bd44388 100644 --- a/.github/workflows/create-quantic-package.yml +++ b/.github/workflows/create-quantic-package.yml @@ -17,25 +17,25 @@ jobs: timeout-minutes: 30 steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - name: Check Out Repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - name: Create cache file run: | mkdir check-SHA echo ${{ github.sha }} > github-sha.txt - name: Check SHA id: check_sha - uses: actions/cache@5a3ec84eff668545956fd18022155c47e93e2684 # v4 + uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 with: path: check-SHA key: check-SHA-${{ github.sha }} - name: Cancel current workflow run if no changes made if: steps.check_sha.outputs.cache-hit == 'true' - uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7 + uses: actions/github-script@f28e40c7f34bde8b3046d885e986cb6290c5673b # v7 with: script: | github.rest.actions.cancelWorkflowRun({ diff --git a/.github/workflows/delete-pr-artifact-on-merge.yml b/.github/workflows/delete-pr-artifact-on-merge.yml index 5da4ca50413..080a4690f8a 100644 --- a/.github/workflows/delete-pr-artifact-on-merge.yml +++ b/.github/workflows/delete-pr-artifact-on-merge.yml @@ -8,11 +8,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/publish-pr-review-site with: token: ${{ secrets.GH_PUBLISH_TOKEN }} diff --git a/.github/workflows/e2e-quantic.yml b/.github/workflows/e2e-quantic.yml index 8a1ec86ee50..57bc12b46eb 100644 --- a/.github/workflows/e2e-quantic.yml +++ b/.github/workflows/e2e-quantic.yml @@ -11,11 +11,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/setup-sfdx - uses: ./.github/actions/e2e-quantic-setup @@ -30,18 +30,18 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/post-scratch-org-links-on-pr e2e-quantic-playwright-test: name: 'Run Playwright e2e tests on Quantic' needs: e2e-quantic-setup runs-on: ubuntu-latest container: - image: mcr.microsoft.com/playwright:v1.54.1-noble + image: mcr.microsoft.com/playwright:v1.56.1-noble options: --user 1001 strategy: fail-fast: false @@ -50,11 +50,11 @@ jobs: shardTotal: [4] steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/playwright-quantic with: @@ -69,11 +69,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - name: Merge Playwright reports uses: ./.github/actions/merge-playwright-reports @@ -88,11 +88,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - uses: ./.github/actions/setup - uses: ./.github/actions/setup-sfdx - run: | diff --git a/.github/workflows/label.yml b/.github/workflows/label.yml index 7f498acc844..1c359bc1778 100644 --- a/.github/workflows/label.yml +++ b/.github/workflows/label.yml @@ -13,7 +13,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit diff --git a/.github/workflows/package-lock-root-fail.yml b/.github/workflows/package-lock-root-fail.yml index 68a44ea2f3c..500a41b8185 100644 --- a/.github/workflows/package-lock-root-fail.yml +++ b/.github/workflows/package-lock-root-fail.yml @@ -22,7 +22,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit diff --git a/.github/workflows/package-lock-root-success.yml b/.github/workflows/package-lock-root-success.yml index 1d86e263945..002d07485c6 100644 --- a/.github/workflows/package-lock-root-success.yml +++ b/.github/workflows/package-lock-root-success.yml @@ -20,7 +20,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit diff --git a/.github/workflows/setup-quantic-examples-community.yml b/.github/workflows/setup-quantic-examples-community.yml index 2e9c48d8242..9842189bc2b 100644 --- a/.github/workflows/setup-quantic-examples-community.yml +++ b/.github/workflows/setup-quantic-examples-community.yml @@ -20,12 +20,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - name: Project setup uses: ./.github/actions/setup diff --git a/.github/workflows/update-pr-template-lit-migration.yml b/.github/workflows/update-pr-template-lit-migration.yml index 9b322e92ef5..9ed946326a8 100644 --- a/.github/workflows/update-pr-template-lit-migration.yml +++ b/.github/workflows/update-pr-template-lit-migration.yml @@ -9,12 +9,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden the runner (Audit all outbound calls) - uses: step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0 + uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 with: egress-policy: audit - name: Checkout Repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - name: Get Label id: get_label diff --git a/.nvmrc b/.nvmrc index 818ab238a53..ed27c90a847 100644 --- a/.nvmrc +++ b/.nvmrc @@ -1 +1 @@ -22.17.1 \ No newline at end of file +22.20.0 \ No newline at end of file diff --git a/package.json b/package.json index f0dd33deb5a..82e9882735c 100644 --- a/package.json +++ b/package.json @@ -36,22 +36,22 @@ "@cspell/dict-fr-fr": "2.3.2", "@tsconfig/node20": "20.1.6", "@types/jest": "29.5.14", - "@types/node": "22.16.5", + "@types/node": "22.18.9", "@vitest/browser": "3.2.4", - "concurrently": "9.2.0", - "cspell": "9.2.0", - "esbuild": "0.25.8", + "concurrently": "9.2.1", + "cspell": "9.2.1", + "esbuild": "0.25.10", "esbuild-plugin-alias": "0.2.1", "esbuild-plugin-umd-wrapper": "3.0.0", "husky": "9.1.7", - "knip": "5.62.0", - "lint-staged": "16.1.2", - "patch-package": "8.0.0", - "playwright": "1.54.1", - "publint": "0.3.12", - "semver": "7.7.2", - "turbo": "2.5.5", - "typescript": "5.8.3", + "knip": "5.64.3", + "lint-staged": "16.2.3", + "patch-package": "8.0.1", + "playwright": "1.56.0", + "publint": "0.3.14", + "semver": "7.7.3", + "turbo": "2.5.8", + "typescript": "5.9.3", "vitest": "3.2.4" }, "overrides": { @@ -96,5 +96,5 @@ "node": "^22.14.0", "npm": ">=8.6.0" }, - "packageManager": "npm@11.6.0" + "packageManager": "npm@11.6.2" } diff --git a/packages/atomic-angular/package.json b/packages/atomic-angular/package.json index cbbdda50443..72f63c5a3df 100644 --- a/packages/atomic-angular/package.json +++ b/packages/atomic-angular/package.json @@ -23,10 +23,10 @@ "@angular-devkit/build-angular": "19.2.3", "@angular/cli": "19.2.3", "@angular/compiler-cli": "19.2.2", - "@types/node": "22.16.5", + "@types/node": "22.18.9", "@coveo/headless": "3.32.0", "ng-packagr": "19.2.0", - "typescript": "5.8.3", + "typescript": "5.9.3", "tslib": "2.8.1" }, "engines": { diff --git a/packages/atomic-hosted-page/package.json b/packages/atomic-hosted-page/package.json index 74e6ffa6568..b9148fdbdd4 100644 --- a/packages/atomic-hosted-page/package.json +++ b/packages/atomic-hosted-page/package.json @@ -35,9 +35,9 @@ "lit": "3.3.1" }, "devDependencies": { - "@playwright/test": "1.54.1", - "@types/node": "22.16.5", - "vite": "7.0.6" + "@playwright/test": "1.56.0", + "@types/node": "22.18.9", + "vite": "7.1.9" }, "engines": { "node": "^20.9.0 || ^22.11.0" diff --git a/packages/atomic-react/package.json b/packages/atomic-react/package.json index 20bbecad7ef..cfca050868e 100644 --- a/packages/atomic-react/package.json +++ b/packages/atomic-react/package.json @@ -37,14 +37,14 @@ "devDependencies": { "@rollup/plugin-commonjs": "28.0.6", "@rollup/plugin-json": "6.1.0", - "@rollup/plugin-node-resolve": "16.0.1", + "@rollup/plugin-node-resolve": "16.0.2", "@rollup/plugin-typescript": "12.1.4", "@types/react": "18.3.3", "@types/react-dom": "18.3.0", "fix-esm-import-path": "1.10.1", "react": "19.1.1", "react-dom": "19.1.1", - "rollup": "4.46.2", + "rollup": "4.52.4", "rollup-plugin-polyfill-node": "^0.13.0" }, "peerDependencies": { diff --git a/packages/atomic/package.json b/packages/atomic/package.json index 8eb6ae43311..e7079c8569c 100644 --- a/packages/atomic/package.json +++ b/packages/atomic/package.json @@ -85,13 +85,13 @@ "@lit/context": "1.1.6", "@open-wc/lit-helpers": "0.7.0", "@popperjs/core": "2.11.8", - "@salesforce-ux/design-system": "2.27.2", + "@salesforce-ux/design-system": "2.28.0", "@stencil/core": "4.20.0", "cssnano": "7.1.1", - "dayjs": "1.11.13", - "dompurify": "3.2.6", + "dayjs": "1.11.18", + "dompurify": "3.2.7", "escape-html": "1.0.3", - "i18next": "25.3.2", + "i18next": "25.6.0", "i18next-http-backend": "3.0.2", "lit": "3.3.1", "marked": "12.0.2", @@ -99,19 +99,19 @@ }, "devDependencies": { "@axe-core/playwright": "4.10.2", - "@custom-elements-manifest/analyzer": "0.10.4", + "@custom-elements-manifest/analyzer": "0.10.10", "@mswjs/source": "0.5.0", - "@playwright/test": "1.54.1", + "@playwright/test": "1.56.0", "@rollup/plugin-commonjs": "28.0.6", "@rollup/plugin-json": "6.1.0", - "@rollup/plugin-node-resolve": "16.0.1", + "@rollup/plugin-node-resolve": "16.0.2", "@rollup/plugin-replace": "6.0.2", "@stencil-community/postcss": "2.2.0", "@stencil/angular-output-target": "0.8.4", "@stencil/react-output-target": "0.5.3", "@storybook/addon-a11y": "9.1.2", - "@storybook/addon-docs": "9.1.2", - "@storybook/icons": "1.4.0", + "@storybook/addon-docs": "9.1.10", + "@storybook/icons": "1.6.0", "@storybook/web-components-vite": "9.1.2", "@tailwindcss/postcss": "4.1.13", "@tailwindcss/vite": "4.1.13", @@ -120,7 +120,7 @@ "@types/puppeteer": "7.0.4", "@vitest/browser": "3.2.4", "@wc-toolkit/storybook-helpers": "9.0.1", - "axe-core": "4.10.3", + "axe-core": "4.11.0", "cypress": "13.7.3", "cypress-axe": "1.6.0", "cypress-repeat": "2.3.9", @@ -131,29 +131,29 @@ "jest-cli": "29.7.0", "jest-localstorage-mock": "2.4.26", "local-web-server": "5.4.0", - "msw": "2.11.4", - "msw-storybook-addon": "2.0.5", + "msw": "2.11.5", + "msw-storybook-addon": "2.0.6", "natural-orderby": "5.0.0", "openapi-types": "12.1.3", - "playwright": "1.54.1", + "playwright": "1.56.0", "postcss": "8.5.6", "postcss-load-config": "6.0.1", "postcss-nested": "7.0.2", "prettier": "3.6.2", - "puppeteer": "24.15.0", + "puppeteer": "24.24.0", "react": "19.1.1", - "rollup": "4.46.2", + "rollup": "4.52.4", "rollup-plugin-copy": "3.5.0", "rollup-plugin-html": "0.2.1", - "shadow-dom-testing-library": "1.12.0", + "shadow-dom-testing-library": "1.13.1", "storybook": "9.1.2", "tailwindcss": "4.1.13", "ts-dedent": "2.2.0", "ts-lit-plugin": "2.0.2", - "typescript": "5.8.3", - "vite": "7.0.6", + "typescript": "5.9.3", + "vite": "7.1.9", "vitest": "3.2.4", - "wait-on": "8.0.4" + "wait-on": "8.0.5" }, "peerDependencies": { "@coveo/bueno": "1.1.3", diff --git a/packages/auth/package.json b/packages/auth/package.json index c7fe4a7ce38..a95b9be90cb 100644 --- a/packages/auth/package.json +++ b/packages/auth/package.json @@ -42,8 +42,8 @@ "homepage": "https://github.com/coveo/ui-kit/packages/auth#readme", "devDependencies": { "jest": "29.7.0", - "ts-jest": "29.4.0", - "vite": "7.0.6" + "ts-jest": "29.4.5", + "vite": "7.1.9" }, "engines": { "node": "^20.9.0 || ^22.11.0" diff --git a/packages/create-atomic-component-project/template/package.json b/packages/create-atomic-component-project/template/package.json index 2c994dfd7e0..a2cb4ffd384 100644 --- a/packages/create-atomic-component-project/template/package.json +++ b/packages/create-atomic-component-project/template/package.json @@ -20,7 +20,7 @@ "@types/jest": "29.5.14", "jest": "29.7.0", "jest-cli": "29.7.0", - "puppeteer": "24.15.0", + "puppeteer": "24.24.0", "rollup-plugin-html": "0.2.1", "@coveo/create-atomic-rollup-plugin": "1.2.1" }, diff --git a/packages/create-atomic-component/template/src/components/sample-component/package.json b/packages/create-atomic-component/template/src/components/sample-component/package.json index 71b22664706..69021aaecfc 100644 --- a/packages/create-atomic-component/template/src/components/sample-component/package.json +++ b/packages/create-atomic-component/template/src/components/sample-component/package.json @@ -33,7 +33,7 @@ "@types/jest": "29.5.14", "jest": "29.7.0", "jest-cli": "29.7.0", - "puppeteer": "24.15.0", + "puppeteer": "24.24.0", "rollup-plugin-html": "0.2.1", "@coveo/create-atomic-rollup-plugin": "1.2.1" }, diff --git a/packages/create-atomic-rollup-plugin/package.json b/packages/create-atomic-rollup-plugin/package.json index 6fc08d87730..8fd0ba29e50 100644 --- a/packages/create-atomic-rollup-plugin/package.json +++ b/packages/create-atomic-rollup-plugin/package.json @@ -35,6 +35,6 @@ "directory": "packages/create-atomic-rollup-plugin" }, "devDependencies": { - "typescript": "5.8.3" + "typescript": "5.9.3" } } diff --git a/packages/create-atomic-template/package.json b/packages/create-atomic-template/package.json index 6b84fe0a5a0..484720851da 100644 --- a/packages/create-atomic-template/package.json +++ b/packages/create-atomic-template/package.json @@ -13,8 +13,8 @@ }, "devDependencies": { "@coveo/create-atomic-rollup-plugin": "1.2.1", - "@rollup/plugin-replace": "5.0.2", - "esbuild": "0.25.8", + "@rollup/plugin-replace": "5.0.7", + "esbuild": "0.25.10", "gts": "3.1.1", "prettier": "2.8.8", "rollup-plugin-dotenv": "0.5.1", diff --git a/packages/create-atomic/package.json b/packages/create-atomic/package.json index c701397d22b..eec5e72e10c 100644 --- a/packages/create-atomic/package.json +++ b/packages/create-atomic/package.json @@ -37,15 +37,15 @@ "access": "public" }, "dependencies": { - "@coveo/platform-client": "60.4.0", + "@coveo/platform-client": "60.7.0", "abortcontroller-polyfill": "1.7.8", "https-proxy-agent": "7.0.6", "isomorphic-fetch": "3.0.0", "minimist": "1.2.8", "node-plop": "^0.32.0", - "plop": "4.0.1" + "plop": "4.0.4" }, "devDependencies": { - "typescript": "5.8.3" + "typescript": "5.9.3" } } diff --git a/packages/headless-react/package.json b/packages/headless-react/package.json index 3299b26c2a5..940775cb2f7 100644 --- a/packages/headless-react/package.json +++ b/packages/headless-react/package.json @@ -46,7 +46,7 @@ "devDependencies": { "@testing-library/react": "16.3.0", "live-server": "1.2.2", - "typescript": "5.8.3", + "typescript": "5.9.3", "typedoc": "0.28.13", "vitest": "3.2.4", "@coveo/documentation": "1.0.0" diff --git a/packages/headless/package.json b/packages/headless/package.json index c346a9dce1b..43459982212 100644 --- a/packages/headless/package.json +++ b/packages/headless/package.json @@ -111,16 +111,16 @@ "dependencies": { "@coveo/bueno": "1.1.3", "@coveo/relay": "1.2.7", - "@coveo/relay-event-types": "15.1.0", + "@coveo/relay-event-types": "15.4.0", "@reduxjs/toolkit": "2.6.0", "abortcontroller-polyfill": "1.7.8", - "coveo.analytics": "2.30.45", - "dayjs": "1.11.13", + "coveo.analytics": "2.30.47", + "dayjs": "1.11.18", "exponential-backoff": "3.1.2", - "fast-equals": "5.2.2", + "fast-equals": "5.3.2", "headers-polyfill": "4.0.3", "navigator.sendbeacon": "0.0.20", - "pino": "9.7.0", + "pino": "9.13.1", "redux-thunk": "3.1.0" }, "devDependencies": { diff --git a/packages/quantic/package.json b/packages/quantic/package.json index cfe17831de4..04680ce874d 100644 --- a/packages/quantic/package.json +++ b/packages/quantic/package.json @@ -49,34 +49,34 @@ "dependencies": { "@coveo/bueno": "1.1.3", "@coveo/headless": "3.32.0", - "dompurify": "3.2.6", + "dompurify": "3.2.7", "marked": "12.0.2" }, "engines": { "node": "^20.9.0 || ^22.11.0" }, "devDependencies": { - "@babel/cli": "7.28.0", + "@babel/cli": "7.28.3", "@babel/plugin-transform-async-to-generator": "7.27.1", "@coveo/ci": "1.0.0", - "@coveo/relay-event-types": "15.1.0", - "@octokit/graphql": "9.0.1", + "@coveo/relay-event-types": "15.4.0", + "@octokit/graphql": "9.0.2", "@octokit/graphql-schema": "15.26.0", - "@playwright/test": "1.54.1", + "@playwright/test": "1.56.0", "@salesforce/eslint-config-lwc": "3.7.2", "@salesforce/sfdx-lwc-jest": "5.1.0", "@types/wait-on": "5.3.4", - "@typescript-eslint/parser": "8.44.0", - "dotenv": "17.2.1", + "@typescript-eslint/parser": "8.46.0", + "dotenv": "17.2.3", "eslint": "8.57", "eslint-config-prettier": "10.1.8", "jest": "29.7.0", "jest-junit": "16.0.0", - "jsdoc": "4.0.4", + "jsdoc": "4.0.5", "jsdoc-tsimport-plugin": "1.0.5", "prettier-plugin-apex": "2.2.6", "ts-node": "10.9.2", - "wait-on": "8.0.4", + "wait-on": "8.0.5", "xml2js": "0.6.2" }, "files": [ diff --git a/samples/atomic/search-commerce-angular/package.json b/samples/atomic/search-commerce-angular/package.json index d5bf38e5cc1..c0f8574a641 100644 --- a/samples/atomic/search-commerce-angular/package.json +++ b/samples/atomic/search-commerce-angular/package.json @@ -27,8 +27,8 @@ "@angular/build": "19.2.3", "@angular/cli": "19.2.3", "@angular/compiler-cli": "19.2.2", - "@playwright/test": "1.54.1", - "@types/node": "22.16.5", - "typescript": "5.8.3" + "@playwright/test": "1.56.0", + "@types/node": "22.18.9", + "typescript": "5.9.3" } } diff --git a/samples/atomic/search-commerce-react/package.json b/samples/atomic/search-commerce-react/package.json index 9b013492df8..81f8a8597fd 100644 --- a/samples/atomic/search-commerce-react/package.json +++ b/samples/atomic/search-commerce-react/package.json @@ -18,12 +18,12 @@ "react-dom": "19.1.1" }, "devDependencies": { - "@playwright/test": "1.54.1", - "@types/node": "22.16.5", + "@playwright/test": "1.56.0", + "@types/node": "22.18.9", "@types/react": "18.3.3", "@types/react-dom": "18.3.0", "@vitejs/plugin-react": "5.0.3", - "typescript": "5.8.3", - "vite": "7.0.6" + "typescript": "5.9.3", + "vite": "7.1.9" } } diff --git a/samples/atomic/search-nextjs-app-router/package.json b/samples/atomic/search-nextjs-app-router/package.json index 7a63ef49ad5..40864496966 100644 --- a/samples/atomic/search-nextjs-app-router/package.json +++ b/samples/atomic/search-nextjs-app-router/package.json @@ -18,8 +18,8 @@ "@coveo/headless": "3.32.0" }, "devDependencies": { - "typescript": "5.8.3", - "@types/node": "22.16.5", + "typescript": "5.9.3", + "@types/node": "22.18.9", "@types/react": "19.1.1", "@types/react-dom": "19.1.2" } diff --git a/samples/atomic/search-nextjs-pages-router/package.json b/samples/atomic/search-nextjs-pages-router/package.json index dd76b16fd78..137de2850d8 100644 --- a/samples/atomic/search-nextjs-pages-router/package.json +++ b/samples/atomic/search-nextjs-pages-router/package.json @@ -12,11 +12,11 @@ "react-dom": "19.1.1" }, "devDependencies": { - "@types/node": "22.16.5", + "@types/node": "22.18.9", "@types/react": "19.1.1", "@types/react-dom": "19.1.2", "cypress": "13.7.3", - "typescript": "5.8.3" + "typescript": "5.9.3" }, "scripts": { "build": "npm run build:next && npm run build:ts-esm && npm run build:ts-cjs", diff --git a/samples/atomic/search-vuejs/package.json b/samples/atomic/search-vuejs/package.json index da1e86ce59e..04f0169c5b9 100644 --- a/samples/atomic/search-vuejs/package.json +++ b/samples/atomic/search-vuejs/package.json @@ -13,12 +13,12 @@ }, "dependencies": { "@coveo/atomic": "3.35.5", - "vue": "3.5.18" + "vue": "3.5.22" }, "devDependencies": { "@vitejs/plugin-vue": "6.0.1", "cypress": "13.7.3", - "typescript": "5.8.3", - "vite": "7.0.6" + "typescript": "5.9.3", + "vite": "7.1.9" } } diff --git a/samples/headless-ssr/commerce-nextjs-v4/package.json b/samples/headless-ssr/commerce-nextjs-v4/package.json index a72b89a6bcb..f92f9ad3892 100644 --- a/samples/headless-ssr/commerce-nextjs-v4/package.json +++ b/samples/headless-ssr/commerce-nextjs-v4/package.json @@ -17,10 +17,10 @@ "react-dom": "19.1.1" }, "devDependencies": { - "@types/node": "22.16.5", + "@types/node": "22.18.9", "@types/react": "19.1.1", "@types/react-dom": "19.1.2", - "@playwright/test": "1.54.1", - "typescript": "5.8.3" + "@playwright/test": "1.56.0", + "typescript": "5.9.3" } } diff --git a/samples/headless-ssr/commerce-nextjs/package.json b/samples/headless-ssr/commerce-nextjs/package.json index 94b4368f383..faed194da43 100644 --- a/samples/headless-ssr/commerce-nextjs/package.json +++ b/samples/headless-ssr/commerce-nextjs/package.json @@ -16,10 +16,10 @@ "react-dom": "19.1.1" }, "devDependencies": { - "@types/node": "22.16.5", + "@types/node": "22.18.9", "@types/react": "19.1.1", "@types/react-dom": "19.1.2", - "@playwright/test": "1.54.1", - "typescript": "5.8.3" + "@playwright/test": "1.56.0", + "typescript": "5.9.3" } } diff --git a/samples/headless-ssr/commerce-react-router/package.json b/samples/headless-ssr/commerce-react-router/package.json index a95d2a76951..d27bbeb104c 100644 --- a/samples/headless-ssr/commerce-react-router/package.json +++ b/samples/headless-ssr/commerce-react-router/package.json @@ -20,12 +20,12 @@ "tiny-invariant": "1.3.3" }, "devDependencies": { - "@coveo/relay-event-types": "15.1.0", + "@coveo/relay-event-types": "15.4.0", "@react-router/dev": "7.8.2", "@types/react": "18.3.23", "@types/react-dom": "18.3.7", - "typescript": "5.8.3", - "vite": "7.0.6", + "typescript": "5.9.3", + "vite": "7.1.9", "vite-tsconfig-paths": "5.1.4" } } diff --git a/samples/headless-ssr/search-nextjs/app-router/package.json b/samples/headless-ssr/search-nextjs/app-router/package.json index fcb137c0056..34b52fc2492 100644 --- a/samples/headless-ssr/search-nextjs/app-router/package.json +++ b/samples/headless-ssr/search-nextjs/app-router/package.json @@ -18,9 +18,9 @@ "react-dom": "19.1.1" }, "devDependencies": { - "@types/node": "22.16.5", + "@types/node": "22.18.9", "@types/react": "19.1.1", "@types/react-dom": "19.1.2", - "typescript": "5.8.3" + "typescript": "5.9.3" } } diff --git a/samples/headless-ssr/search-nextjs/package.json b/samples/headless-ssr/search-nextjs/package.json index 13bf7d9ae2a..db1330c1b37 100644 --- a/samples/headless-ssr/search-nextjs/package.json +++ b/samples/headless-ssr/search-nextjs/package.json @@ -15,11 +15,11 @@ "react-dom": "19.1.1" }, "devDependencies": { - "@types/node": "22.16.5", + "@types/node": "22.18.9", "@types/react": "19.1.1", "@types/react-dom": "19.1.2", "cypress": "13.7.3", "cypress-web-vitals": "4.2.0", - "typescript": "5.8.3" + "typescript": "5.9.3" } } diff --git a/samples/headless-ssr/search-nextjs/pages-router/package.json b/samples/headless-ssr/search-nextjs/pages-router/package.json index 4f0b0128303..38ea526ab5c 100644 --- a/samples/headless-ssr/search-nextjs/pages-router/package.json +++ b/samples/headless-ssr/search-nextjs/pages-router/package.json @@ -18,9 +18,9 @@ "react-dom": "19.1.1" }, "devDependencies": { - "@types/node": "22.16.5", + "@types/node": "22.18.9", "@types/react": "19.1.1", "@types/react-dom": "19.1.2", - "typescript": "5.8.3" + "typescript": "5.9.3" } } diff --git a/samples/headless/commerce-react/package.json b/samples/headless/commerce-react/package.json index ea8324ee3eb..e4510d83a64 100644 --- a/samples/headless/commerce-react/package.json +++ b/samples/headless/commerce-react/package.json @@ -27,12 +27,12 @@ ] }, "devDependencies": { - "@playwright/test": "1.54.1", - "@testing-library/jest-dom": "6.6.3", + "@playwright/test": "1.56.0", + "@testing-library/jest-dom": "6.9.1", "@testing-library/react": "16.3.0", "@vitejs/plugin-react": "5.0.3", - "vite": "7.0.6", - "vite-plugin-static-copy": "3.1.1", + "vite": "7.1.9", + "vite-plugin-static-copy": "3.1.3", "vitest": "3.2.4" } } diff --git a/samples/headless/search-react/package.json b/samples/headless/search-react/package.json index 8286138663f..2b36ad3f51a 100644 --- a/samples/headless/search-react/package.json +++ b/samples/headless/search-react/package.json @@ -10,20 +10,20 @@ "dependencies": { "@coveo/auth": "2.1.1", "@coveo/headless": "3.32.0", - "@testing-library/jest-dom": "6.6.3", + "@testing-library/jest-dom": "6.9.1", "@testing-library/react": "16.3.0", "@types/escape-html": "1.0.4", "@types/express": "5.0.3", - "@types/node": "22.16.5", + "@types/node": "22.18.9", "@types/react": "19.1.1", "@types/react-dom": "19.1.2", - "dayjs": "1.11.13", + "dayjs": "1.11.18", "escape-html": "1.0.3", "express": "5.1.0", "react": "19.1.1", "react-dom": "19.1.1", "react-router": "7.8.2", - "typescript": "5.8.3" + "typescript": "5.9.3" }, "scripts": { "dev": "vite", @@ -47,7 +47,7 @@ "devDependencies": { "@vitejs/plugin-react": "5.0.3", "cypress": "13.7.3", - "vite": "7.0.6", + "vite": "7.1.9", "vitest": "3.2.4" } } diff --git a/utils/ci/package.json b/utils/ci/package.json index fa10bbe7728..06392ccdf51 100644 --- a/utils/ci/package.json +++ b/utils/ci/package.json @@ -5,18 +5,18 @@ "version": "1.0.0", "type": "module", "dependencies": { - "@coveo/semantic-monorepo-tools": "2.6.11", - "@npmcli/arborist": "9.1.4", + "@coveo/semantic-monorepo-tools": "2.6.17", + "@npmcli/arborist": "9.1.6", "conventional-changelog-conventionalcommits": "8.0.0", "dependency-graph": "1.0.0", "octokit": "4.1.4", - "semver": "7.7.2", + "semver": "7.7.3", "ts-dedent": "2.2.0" }, "devDependencies": { "@types/conventional-changelog-writer": "4.0.10", "@types/npmcli__arborist": "6.3.1", - "typescript": "5.8.3" + "typescript": "5.9.3" }, "scripts": { "add-generated-files": "node ./add-generated-files.mjs",