Skip to content

v2.8.7#6022

Merged
jrgarciadev merged 5 commits into
mainfrom
canary
Dec 25, 2025
Merged

v2.8.7#6022
jrgarciadev merged 5 commits into
mainfrom
canary

Conversation

@wingkwong
Copy link
Copy Markdown
Member

@wingkwong wingkwong commented Dec 20, 2025
edited by coderabbitai Bot
Loading

Closes #

📝 Description

⛳️ Current behavior (updates)

🚀 New behavior

💣 Is this a breaking change (Yes/No):

📝 Additional Information

Summary by CodeRabbit

Release Notes

  • New Features

    • Added client-side component exports for improved tree-shaking and performance
    • Dropdown menu now includes onAction handler for item selection
    • Link component now supports button-like functionality with as="button" prop

  • Bug Fixes

    • Fixed link role override behavior
    • Hidden password reveal button in input fields for improved UI consistency
    • Corrected default transition duration in theme

  • Improvements

    • Updated React Aria and related libraries to latest patch versions for enhanced stability and accessibility

✏️ Tip: You can customize this high-level summary in your review settings.

wingkwong and others added 5 commits December 16, 2025 14:20
@wingkwong
fix(theme): hide password reveal button (#5990)
acc74d1
@hasegawa-101
fix(link): link overriding role (#5999)
090b151 
* fix(link): allow overriding role

* chore(link): changeset
@wingkwong
chore(deps): upgrade react-aria (v1.14.0) (#5996)
e07c969 
* chore(deps): upgrade react-aria (v1.14.0)

* refactor(react): group client components

* fix(dropdown): keyDown test cases

* chore(react): rollback
@wingkwong
fix(theme): default transition-duration (#6011)
086f6a1 
* fix(theme): default transitionDuration

* chore(deps): bump @heroui/theme peer dep
@github-actions @jrgarciadev
ci(changesets): version packages (#5991)
d5131d7 
Co-authored-by: Junior Garcia <jrgarciadev@gmail.com>
@changeset-bot
Copy link
Copy Markdown

changeset-bot Bot commented Dec 20, 2025

⚠️ No Changeset found

Latest commit: d5131d7

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@vercel
Copy link
Copy Markdown

vercel Bot commented Dec 20, 2025

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Review Updated (UTC)
heroui Ready Ready Preview, Comment Dec 20, 2025 2:51pm
heroui-sb Ready Ready Preview, Comment Dec 20, 2025 2:51pm

@coderabbitai
Copy link
Copy Markdown
Contributor

coderabbitai Bot commented Dec 20, 2025
edited
Loading

Walkthrough

This PR performs a comprehensive dependency version bump across the monorepo. It updates React Aria, React Stately, and HeroUI package versions to newer patch/minor versions, adds a new client entry file, introduces a new onAction API to DropdownMenu, and implements minor styling/theme adjustments including password button hiding and transition duration fixes.

Changes

Cohort / File(s) Summary
Documentation & Demo Dependencies
apps/docs/components/docs/components/code-demo/parse-dependencies.ts, apps/docs/content/docs/components/date-input.mdx, apps/docs/content/docs/components/date-picker.mdx, apps/docs/content/docs/components/date-range-picker.mdx, apps/docs/package.json		 Updated @internationalized/date from 3.10.0→3.10.1 and @react-aria/i18n from 3.12.13→3.12.14 across documentation examples and demo configurations.
Component Package Manifests – Dependency Bumps
packages/components/*/package.json (accordion, alert, autocomplete, avatar, badge, breadcrumbs, button, calendar, card, checkbox, chip, code, date-input, date-picker, divider, drawer, dropdown, form, image, input-otp, input, kbd, link, listbox, menu, modal, navbar, number-input, pagination, popover, progress, radio, ripple, scroll-shadow, select, skeleton, slider, snippet, spacer, spinner, switch, table, tabs, toast, tooltip, user)		 Bumped package versions (patch increments), updated @heroui/theme peer dependency from >=2.4.23→>=2.4.24, and synchronized @react-aria/, @react-stately/, and @react-types/* dependency versions across all components.
Component Changelog Updates
packages/components/*/CHANGELOG.md (accordion, alert, autocomplete, avatar, breadcrumbs, button, calendar, card, checkbox, chip, date-input, date-picker, drawer, dropdown, form, input-otp, input, link, listbox, menu, modal, navbar, number-input, pagination, popover, progress, radio, select, slider, snippet, spinner, switch, table, tabs, toast, tooltip, user)		 Added new version entries documenting react-aria upgrade to v1.14.0 and updated component dependency versions.
Dropdown Component – New API
packages/components/dropdown/__tests__/dropdown.test.tsx		 Added onAction prop to DropdownMenu component; removed onPress from DropdownItem. Tests updated to verify onAction callback with item key on keyboard and click interactions.
Link Component – href Fix
packages/components/link/src/use-link.ts		 Added AnchorHTMLAttributes import and updated mergeProps argument order in getLinkProps to ensure href attribute is properly passed to anchor element.
Core System & Theme
packages/core/react/src/client.ts, packages/core/react/package.json, packages/core/react/CHANGELOG.md, packages/core/system/CHANGELOG.md, packages/core/system/package.json, packages/core/system-rsc/package.json, packages/core/theme/CHANGELOG.md, packages/core/theme/package.json, packages/core/theme/src/components/input.ts, packages/core/theme/src/plugin.ts		 Created new client entry file exporting all component/utility modules; bumped core package versions; updated theme to hide MS password reveal button via CSS class and removed DEFAULT_TRANSITION_DURATION fallback.
Hooks Package Manifests & Changelogs
packages/hooks/use-aria-*/package.json, packages/hooks/use-aria-*/CHANGELOG.md (accordion, accordion-item, button)		 Bumped package versions and synchronized @react-aria/, @react-stately/ dependency versions.

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~45 minutes

Areas requiring extra attention:

  • packages/core/react/src/client.ts — New large export file; verify all re-exports are intended and no missing modules
  • packages/components/dropdown/tests/dropdown.test.tsx — Public API change (onAction prop introduction, onPress removal); confirm backward compatibility expectations
  • packages/components/link/src/use-link.ts — Logic change in mergeProps argument order; verify href attribute binding works correctly across all use cases
  • packages/core/theme/src/plugin.ts — Removal of DEFAULT_TRANSITION_DURATION; verify no unintended fallback behavior changes
  • packages/core/theme/src/components/input.ts — CSS class addition for password button hiding; test across browsers (Edge/IE)

Possibly related PRs

  • PR #5996 — Main react-aria upgrade to v1.14.0, primary source of version bumps across all packages
  • PR #6011 — Related transition-duration fix in theme plugin; complements the DEFAULT_TRANSITION_DURATION removal
  • PR #5984 — Related password reveal button hiding feature for input components

Suggested reviewers

  • jrgarciadev
  • winchesHe

Pre-merge checks and finishing touches

❌ Failed checks (2 warnings, 1 inconclusive)
Check name Status Explanation Resolution
Description check ⚠️ Warning The PR description is essentially empty, containing only the unfilled repository template with all placeholders (Closes #, Description, Current behavior, New behavior, Breaking change, Additional Information) left blank. Complete the PR description by filling in all required sections: add a GitHub issue reference, describe the changes being made, document current vs. new behavior, clarify if breaking changes exist, and provide any additional context needed for reviewers.
Docstring Coverage ⚠️ Warning Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%. You can run @coderabbitai generate docstrings to improve docstring coverage.
Title check ❓ Inconclusive The title 'v2.8.7' is a version number that refers to a real component of the changeset (the package version bump), but it does not convey what the PR actually does or what changes are being made. Replace the version number with a descriptive title that explains the primary change, such as 'Upgrade react-aria to v1.14.0 and bump dependency versions' or 'Release v2.8.7: Update react-aria and patch dependencies'.
✨ Finishing touches
  • 📝 Generate docstrings
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch canary

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

coderabbitai[bot]
coderabbitai Bot reviewed Dec 20, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 5

♻️ Duplicate comments (1)
packages/components/image/package.json (1)

39-39: Consider version bump consistency.

Similar to the kbd package, this package only updates the peer dependency without bumping its own version. Consider whether this aligns with the versioning strategy used by other packages in this PR.

🧹 Nitpick comments (4)
packages/components/input-otp/CHANGELOG.md (1)

3-11: Changelog entry is incomplete.

The changelog documents the react-aria upgrade but omits several dependency updates visible in package.json:

  • @react-stately/utils (3.10.8 → 3.11.0)
  • @react-aria/focus (3.21.2 → 3.21.3)
  • Peer dependency @heroui/theme (≥2.4.23 → ≥2.4.24)

While the react-aria monorepo version (v1.14.0) is mentioned, listing the individual package updates would provide better transparency for consumers.

packages/components/progress/CHANGELOG.md (1)

3-7: Optional: consider adding an Updated dependencies block for 2.2.24

If @heroui/progress’s internal or peer dependencies were updated in this release (e.g., theme/other internal packages), you may want to mirror other components and add an explicit Updated dependencies bullet under 2.2.24 for consistency with the rest of the changelog.

packages/components/kbd/package.json (1)

39-39: Consider version bump consistency across packages.

This package only updates the peer dependency without bumping its own version, while other packages in this PR (menu, drawer, dropdown, spinner) do bump versions when making similar peer dependency updates. Consider establishing a consistent versioning strategy across the monorepo for peer dependency changes.

packages/components/link/src/use-link.ts (1)

113-115: The explicit href handling is intentional for ensuring proper href precedence across element types.

The pattern href: (linkProps as AnchorHTMLAttributes<HTMLAnchorElement>).href is not redundant. It ensures that the href from linkProps (provided by react-aria's useLinkProps()) takes precedence in the merged props, overriding any href that might appear in otherProps. This is necessary to guarantee correct behavior when the component renders as different element types.

The test suite confirms this is working as intended: when as="button" is used, the rendered button element correctly has no href attribute, even though the linkProps may contain one. The type cast to AnchorHTMLAttributes<HTMLAnchorElement> is technically unsafe but functionally safe because linkProps.href will be undefined for non-anchor element types.

Consider adding an inline comment explaining that this explicit href handling ensures proper precedence when merging props across different element types (anchor vs. button).

📜 Review details

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 41fc673 and d5131d7.

⛔ Files ignored due to path filters (1)
  • pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml
📒 Files selected for processing (107)
  • apps/docs/components/docs/components/code-demo/parse-dependencies.ts (1 hunks)
  • apps/docs/content/docs/components/date-input.mdx (6 hunks)
  • apps/docs/content/docs/components/date-picker.mdx (6 hunks)
  • apps/docs/content/docs/components/date-range-picker.mdx (7 hunks)
  • apps/docs/package.json (2 hunks)
  • packages/components/accordion/CHANGELOG.md (1 hunks)
  • packages/components/accordion/package.json (3 hunks)
  • packages/components/alert/CHANGELOG.md (1 hunks)
  • packages/components/alert/package.json (2 hunks)
  • packages/components/autocomplete/CHANGELOG.md (1 hunks)
  • packages/components/autocomplete/package.json (4 hunks)
  • packages/components/avatar/CHANGELOG.md (1 hunks)
  • packages/components/avatar/package.json (2 hunks)
  • packages/components/badge/package.json (1 hunks)
  • packages/components/breadcrumbs/CHANGELOG.md (1 hunks)
  • packages/components/breadcrumbs/package.json (2 hunks)
  • packages/components/button/CHANGELOG.md (1 hunks)
  • packages/components/button/package.json (3 hunks)
  • packages/components/calendar/CHANGELOG.md (1 hunks)
  • packages/components/calendar/package.json (3 hunks)
  • packages/components/card/CHANGELOG.md (1 hunks)
  • packages/components/card/package.json (2 hunks)
  • packages/components/checkbox/CHANGELOG.md (1 hunks)
  • packages/components/checkbox/package.json (3 hunks)
  • packages/components/chip/CHANGELOG.md (1 hunks)
  • packages/components/chip/package.json (2 hunks)
  • packages/components/code/package.json (1 hunks)
  • packages/components/date-input/CHANGELOG.md (1 hunks)
  • packages/components/date-input/package.json (2 hunks)
  • packages/components/date-picker/CHANGELOG.md (1 hunks)
  • packages/components/date-picker/package.json (3 hunks)
  • packages/components/divider/package.json (1 hunks)
  • packages/components/drawer/CHANGELOG.md (1 hunks)
  • packages/components/drawer/package.json (2 hunks)
  • packages/components/dropdown/CHANGELOG.md (1 hunks)
  • packages/components/dropdown/__tests__/dropdown.test.tsx (3 hunks)
  • packages/components/dropdown/package.json (3 hunks)
  • packages/components/form/CHANGELOG.md (1 hunks)
  • packages/components/form/package.json (2 hunks)
  • packages/components/image/package.json (1 hunks)
  • packages/components/input-otp/CHANGELOG.md (1 hunks)
  • packages/components/input-otp/package.json (2 hunks)
  • packages/components/input/CHANGELOG.md (1 hunks)
  • packages/components/input/package.json (3 hunks)
  • packages/components/kbd/package.json (1 hunks)
  • packages/components/link/CHANGELOG.md (1 hunks)
  • packages/components/link/__tests__/link.test.tsx (1 hunks)
  • packages/components/link/package.json (2 hunks)
  • packages/components/link/src/use-link.ts (2 hunks)
  • packages/components/listbox/CHANGELOG.md (1 hunks)
  • packages/components/listbox/package.json (3 hunks)
  • packages/components/menu/CHANGELOG.md (1 hunks)
  • packages/components/menu/package.json (3 hunks)
  • packages/components/modal/CHANGELOG.md (1 hunks)
  • packages/components/modal/package.json (3 hunks)
  • packages/components/navbar/CHANGELOG.md (1 hunks)
  • packages/components/navbar/package.json (3 hunks)
  • packages/components/number-input/CHANGELOG.md (1 hunks)
  • packages/components/number-input/package.json (3 hunks)
  • packages/components/pagination/CHANGELOG.md (1 hunks)
  • packages/components/pagination/package.json (3 hunks)
  • packages/components/popover/CHANGELOG.md (1 hunks)
  • packages/components/popover/package.json (3 hunks)
  • packages/components/progress/CHANGELOG.md (1 hunks)
  • packages/components/progress/package.json (2 hunks)
  • packages/components/radio/CHANGELOG.md (1 hunks)
  • packages/components/radio/package.json (2 hunks)
  • packages/components/ripple/package.json (1 hunks)
  • packages/components/scroll-shadow/package.json (1 hunks)
  • packages/components/select/CHANGELOG.md (1 hunks)
  • packages/components/select/package.json (3 hunks)
  • packages/components/skeleton/package.json (1 hunks)
  • packages/components/slider/CHANGELOG.md (1 hunks)
  • packages/components/slider/package.json (2 hunks)
  • packages/components/snippet/CHANGELOG.md (1 hunks)
  • packages/components/snippet/package.json (3 hunks)
  • packages/components/spacer/package.json (1 hunks)
  • packages/components/spinner/CHANGELOG.md (1 hunks)
  • packages/components/spinner/package.json (2 hunks)
  • packages/components/switch/CHANGELOG.md (1 hunks)
  • packages/components/switch/package.json (2 hunks)
  • packages/components/table/CHANGELOG.md (1 hunks)
  • packages/components/table/package.json (3 hunks)
  • packages/components/tabs/CHANGELOG.md (1 hunks)
  • packages/components/tabs/package.json (2 hunks)
  • packages/components/toast/CHANGELOG.md (1 hunks)
  • packages/components/toast/package.json (3 hunks)
  • packages/components/tooltip/CHANGELOG.md (1 hunks)
  • packages/components/tooltip/package.json (3 hunks)
  • packages/components/user/CHANGELOG.md (1 hunks)
  • packages/components/user/package.json (2 hunks)
  • packages/core/react/CHANGELOG.md (1 hunks)
  • packages/core/react/package.json (2 hunks)
  • packages/core/react/src/client.ts (1 hunks)
  • packages/core/system-rsc/package.json (1 hunks)
  • packages/core/system/CHANGELOG.md (1 hunks)
  • packages/core/system/package.json (2 hunks)
  • packages/core/theme/CHANGELOG.md (1 hunks)
  • packages/core/theme/package.json (1 hunks)
  • packages/core/theme/src/components/input.ts (1 hunks)
  • packages/core/theme/src/plugin.ts (0 hunks)
  • packages/hooks/use-aria-accordion-item/CHANGELOG.md (1 hunks)
  • packages/hooks/use-aria-accordion-item/package.json (2 hunks)
  • packages/hooks/use-aria-accordion/CHANGELOG.md (1 hunks)
  • packages/hooks/use-aria-accordion/package.json (2 hunks)
  • packages/hooks/use-aria-button/CHANGELOG.md (1 hunks)
  • packages/hooks/use-aria-button/package.json (2 hunks)
⛔ Files not processed due to max files limit (19)
  • packages/hooks/use-aria-link/CHANGELOG.md
  • packages/hooks/use-aria-link/package.json
  • packages/hooks/use-aria-modal-overlay/CHANGELOG.md
  • packages/hooks/use-aria-modal-overlay/package.json
  • packages/hooks/use-aria-multiselect/CHANGELOG.md
  • packages/hooks/use-aria-multiselect/package.json
  • packages/hooks/use-aria-overlay/CHANGELOG.md
  • packages/hooks/use-aria-overlay/package.json
  • packages/hooks/use-disclosure/CHANGELOG.md
  • packages/hooks/use-disclosure/package.json
  • packages/hooks/use-draggable/CHANGELOG.md
  • packages/hooks/use-draggable/package.json
  • packages/hooks/use-pagination/CHANGELOG.md
  • packages/hooks/use-pagination/package.json
  • packages/utilities/aria-utils/CHANGELOG.md
  • packages/utilities/aria-utils/package.json
  • packages/utilities/framer-utils/CHANGELOG.md
  • packages/utilities/framer-utils/package.json
  • plop/component/package.json.hbs
💤 Files with no reviewable changes (1)
  • packages/core/theme/src/plugin.ts
🧰 Additional context used
🧠 Learnings (4)
📚 Learning: 2025-10-25T17:08:46.283Z 
Learnt from: adbjo
Repo: heroui-inc/heroui PR: 5846
File: packages/components/tabs/src/tabs.tsx:156-157
Timestamp: 2025-10-25T17:08:46.283Z
Learning: In packages/components/tabs/src/tabs.tsx, the renderTabs useMemo dependency array intentionally includes `variant` and `isVertical` to prevent potential side-effects, even though they might appear redundant based on static analysis.

Applied to files:

  • packages/components/menu/package.json
  • packages/components/input/package.json
  • packages/components/tabs/package.json
  • packages/components/number-input/package.json
  • packages/components/tabs/CHANGELOG.md
  • packages/hooks/use-aria-button/package.json
  • packages/components/accordion/package.json
  • packages/components/navbar/package.json
  • packages/components/radio/package.json
  • packages/components/table/package.json
  • packages/components/select/package.json
  • packages/components/slider/package.json
  • packages/components/listbox/package.json
  • packages/components/checkbox/package.json
  • packages/components/switch/package.json
📚 Learning: 2025-10-25T17:11:59.338Z 
Learnt from: adbjo
Repo: heroui-inc/heroui PR: 5846
File: packages/components/tabs/src/tabs.tsx:155-155
Timestamp: 2025-10-25T17:11:59.338Z
Learning: In packages/components/tabs/src/tabs.tsx, the renderTabs useMemo dependency array intentionally includes both `domRef` and `cursorRef` to maintain consistency in how ref objects are handled in dependency arrays, even though ref objects have stable identity across renders.

Applied to files:

  • packages/components/tabs/package.json
  • packages/components/checkbox/package.json
📚 Learning: 2025-10-27T21:48:35.308Z 
Learnt from: adbjo
Repo: heroui-inc/heroui PR: 5846
File: packages/components/tabs/src/tabs.tsx:76-101
Timestamp: 2025-10-27T21:48:35.308Z
Learning: In packages/components/tabs/src/tabs.tsx, the updateCursorPosition useCallback dependency array intentionally includes `cursorRef.current` to handle the case where the cursor span element is unmounted and remounted (e.g., when `disableAnimation` or `disableCursorAnimation` toggles). This ensures the callback is recreated when the ref points to a new element, triggering a dependency chain that re-establishes the ResizeObserver and initializes the new cursor element with the data-initialized attribute.
</learning]

Applied to files:

  • packages/components/tabs/package.json
📚 Learning: 2025-10-27T21:52:33.324Z 
Learnt from: adbjo
Repo: heroui-inc/heroui PR: 5846
File: packages/components/tabs/src/tabs.tsx:115-125
Timestamp: 2025-10-27T21:52:33.324Z
Learning: In packages/components/tabs/src/tabs.tsx, the useEffect dependency array at line 125 intentionally uses `domRef.current` rather than `domRef` because domRef.current can change between renders (when React sets it during the commit phase), whereas domRef itself has stable identity and won't change.

Applied to files:

  • packages/components/tabs/package.json
🔇 Additional comments (111)
packages/components/popover/CHANGELOG.md (1)

3-14: LGTM!

The new version entry for 2.3.29 is properly formatted and accurately reflects the react-aria upgrade to v1.14.0 along with the corresponding dependency updates. The changelog follows the project's conventions with complete metadata and properly linked references.

packages/components/select/CHANGELOG.md (1)

3-18: Changelog entry is well-formatted and complete.

The v2.4.30 entry follows the established format with correct version progression, proper PR and commit attribution, and comprehensive dependency tracking. All updated packages are listed with their corresponding versions.

packages/components/chip/CHANGELOG.md (1)

3-7: Changelog entry is well-formatted and properly documents the dependency upgrade.

The new version 2.2.24 entry follows the changelog conventions, includes proper PR and commit references, and clearly documents the react-aria upgrade. The patch release classification aligns with the nature of the change.

packages/components/input/CHANGELOG.md (1)

3-12: Changelog entry for v2.4.30 is well-formatted and consistent.

The new release section properly documents two patch changes (password button hiding and react-aria upgrade) with correct PR references and dependency updates. Formatting aligns with existing changelog entries.

packages/components/tooltip/CHANGELOG.md (1)

3-12: Changelog entry is properly formatted and documented.

The new 2.2.26 release section follows the established pattern, includes proper PR/commit references, and clearly documents the react-aria upgrade and dependent package version bumps.

packages/components/listbox/CHANGELOG.md (1)

3-11: CHANGELOG entry is properly formatted and follows established conventions.

The new 2.3.28 release entry includes the correct structure with version header, patch changes section, linked PR reference, commit attribution, and updated dependencies. The patch version bump from 2.3.27 is semantically appropriate for the react-aria upgrade scope.

packages/components/drawer/CHANGELOG.md (1)

3-9: Changelog entry is properly formatted and complete.

The new version 2.2.26 entry correctly reflects the patch version bump with updated dependency versions for @heroui/modal and @heroui/framer-utils. The entry follows the established changelog format, and the commit reference allows users to inspect the detailed changes if needed. For dependency-only updates in a monorepo, this sparse description is appropriate.

packages/components/number-input/CHANGELOG.md (1)

3-11: Changelog entry verified as accurate.

The commit hash e07c969 and PR #5996 reference are correct, and the dependency versions (@heroui/button@2.2.29, @heroui/form@2.1.29) are confirmed as released. The version 2.0.20 entry follows established changelog conventions and documents the react-aria upgrade appropriately.

packages/components/ripple/package.json (1)

40-40: LGTM. The peer dependency update to @heroui/theme >=2.4.24 is appropriate. Version 2.4.24 is the latest version, published recently. The release includes bug fixes for table virtualization in Firefox, toast text handling, Safari autofill styling, tab cursor behavior, and label placement—all non-breaking improvements that align with the monorepo's coordinated dependency updates.

packages/components/user/package.json (1)

3-3: LGTM! Coordinated version bump.

The version and dependency updates align with the monorepo-wide update. The patch version increments are appropriate. @react-aria/focus version 3.21.3 is current and has no known security vulnerabilities.

packages/components/chip/package.json (3)

3-3: LGTM! Patch version bump is appropriate.

The version increment from 2.2.23 to 2.2.24 follows semantic versioning and aligns with the coordinated monorepo-wide dependency updates described in the PR.

39-39: LGTM! Peer dependency constraint is properly aligned.

The @heroui/theme peer dependency update from >=2.4.23 to >=2.4.24 maintains consistency across the monorepo and ensures consumers use compatible versions.

46-47: React Aria dependency versions are valid; both updates are recent releases.

@react-aria/focus@3.21.3 and @react-aria/interactions@3.26.0 are confirmed in the React Aria v1.14.0 release. Both versions are legitimate, with no known security advisories affecting React Aria packages.

packages/components/input-otp/package.json (2)

3-3: LGTM!

Version bump follows semantic versioning for a patch release.

39-39: Verify peer dependency availability.

The updated peer dependency requirement (@heroui/theme ≥2.4.24) may require consumers to upgrade. Ensure version 2.4.24 is published and available before releasing this version.

packages/components/slider/package.json (3)

3-3: LGTM: Version bump is consistent with the changelog.

The patch version increment from 2.4.25 to 2.4.26 appropriately reflects the dependency updates documented in the changelog.

39-39: Peer dependency update aligns with monorepo upgrade.

The @heroui/theme peer dependency constraint was tightened from >=2.4.23 to >=2.4.24, which aligns with the broader monorepo upgrade scope mentioned in the PR summary.

46-51: Verify that @react-aria/slider@3.8.3, @react-aria/visually-hidden@3.8.29, and @react-aria/interactions@3.26.0 are published versions.

Three of the specified react-aria versions do not exist on npm: @react-aria/slider@3.8.3 (latest published is 3.8.2), @react-aria/visually-hidden@3.8.29 (latest published is 3.8.28), and @react-aria/interactions@3.26.0 (latest published is 3.25.3). Ensure these versions are released before deploying, or update to the latest published versions to avoid installation failures.

packages/components/slider/CHANGELOG.md (1)

3-11: LGTM: Well-documented changelog entry.

The changelog entry for version 2.4.26 is properly formatted, includes appropriate references to the PR (#5996) and commit hash, and clearly documents the react-aria v1.14.0 upgrade with updated dependencies. The format is consistent with previous entries.

packages/components/radio/CHANGELOG.md (1)

3-11: LGTM! Changelog entry is well-documented.

The changelog appropriately documents the patch release with the React Aria upgrade and dependency updates. The format is consistent with previous entries.

packages/components/radio/package.json (3)

3-3: LGTM! Version bump is appropriate.

The patch version increment (2.3.28 → 2.3.29) is appropriate for a dependency update release.

39-39: LGTM! Peer dependency update is consistent.

The peer dependency update for @heroui/theme (>=2.4.23 → >=2.4.24) aligns with the broader monorepo dependency coordination.

46-50: Package versions are valid and aligned with React Aria v1.14.0.

The React Aria and React Stately dependency updates are confirmed to exist and match the official v1.14.0 release. The minor version bump in @react-aria/interactions (3.25.6 → 3.26.0) is part of the standard release cycle. No security advisories apply to these React Aria packages.

packages/components/tooltip/package.json (3)

3-3: LGTM: Standard patch version bump.

The version increment from 2.2.25 to 2.2.26 follows semantic versioning conventions for a patch release.

51-55: React Aria/Stately dependency versions are valid and stable. @react-aria/overlays 3.31.0 is the latest version, and @react-aria/tooltip demonstrates healthy maintenance with positive release cadence. These dependencies are not affected by the recent React Server Components vulnerability (CVE-2025-55182), which targets different React packages. No issues identified.

40-40: The @heroui/theme peer dependency bump to >=2.4.24 is consistent with other components.

The monorepo's @heroui/theme is at version 2.4.25, which satisfies the requirement. Multiple components (button, badge, card) already use the same >=2.4.24 constraint, confirming this version bump is coordinated across the codebase.

packages/components/modal/package.json (3)

3-3: LGTM: Version bump is appropriate.

The patch version increment from 2.2.25 to 2.2.26 is consistent with the dependency updates and aligns with the changelog entry.

40-40: The peer dependency constraint for @heroui/theme at >=2.4.24 is consistent across all components in the monorepo and compatible with the current theme package version (2.4.25). No action required.

54-57: Three React Aria package versions confirmed; @react-stately/overlays version could not be verified.

The React Aria v1.14.0 release includes @react-aria/dialog@3.5.32, @react-aria/focus@3.21.3, and @react-aria/overlays@3.31.0, confirming those versions are legitimate. @react-aria/overlays@3.31.0 is confirmed as the latest version on npm. However, @react-stately/overlays@3.6.18 is the latest published version, so the 3.6.21 version listed in this change could not be verified through the npm registry. These React Aria packages have been scanned for known vulnerabilities with no issues found.

packages/components/modal/CHANGELOG.md (1)

3-15: LGTM: Changelog entry is well-formatted.

The changelog entry for version 2.2.26 is properly structured and documents the React Aria upgrade. The version matches the package.json update, and the format is consistent with previous entries.

Note: The changelog references PR #5996, while the current PR is #6022. This is acceptable if #5996 was the PR that implemented these changes and #6022 is a release/merge PR.

packages/components/switch/package.json (2)

3-3: LGTM! Version bump is consistent.

The patch version bump from 2.2.25 to 2.2.26 is appropriate for dependency updates.

39-39: Dependency versions verified as legitimate and secure.

The React Aria packages (3.21.3, 3.26.0, 3.7.9, 3.8.29) and @heroui/theme (>=2.4.24) are valid releases with no known security vulnerabilities. All updates are patch or minor version bumps.

packages/components/switch/CHANGELOG.md (1)

3-8: LGTM! Changelog entry is properly formatted.

The new release entry follows the established format and correctly references PR #5996. The mention of "react-aria (v1.14.0)" likely refers to the monorepo release version, while individual package versions (3.x) follow their own semantic versioning.

packages/components/checkbox/CHANGELOG.md (1)

3-10: LGTM!

The changelog entry for version 2.3.29 is well-structured and follows the established pattern in the file. The react-aria upgrade to v1.14.0 is properly documented with the relevant PR link and commit reference.

packages/components/alert/package.json (1)

3-3: LGTM!

The version bump and dependency updates are consistent with the broader monorepo update pattern for this release. The @react-stately/utils bump to 3.11.0 and theme peer dependency update align with other component changes in this PR.

Also applies to: 43-43, 50-50

packages/components/form/package.json (1)

3-3: LGTM!

The version bump to 2.1.29 and theme peer dependency update to >=2.4.24 are consistent with the coordinated monorepo release.

Also applies to: 38-38

packages/hooks/use-aria-accordion-item/package.json (1)

3-3: LGTM!

The React Aria dependency updates are patch-level bumps that align with the react-aria v1.14.0 upgrade across the monorepo. The version bump to 2.2.19 is appropriate for these dependency changes.

Also applies to: 37-40

packages/components/breadcrumbs/CHANGELOG.md (1)

3-7: LGTM!

The changelog entry for version 2.2.24 properly documents the react-aria v1.14.0 upgrade with the correct PR reference and commit hash.

packages/components/card/package.json (1)

3-3: LGTM!

The dependency updates align with the react-aria v1.14.0 upgrade. Note that @react-aria/interactions has a minor version bump (3.25.6 → 3.26.0) which may include new features or behavior changes, but this is expected as part of the coordinated React Aria upgrade across the monorepo.

Also applies to: 40-40, 48-49

packages/core/theme/package.json (1)

3-3: LGTM!

The version bump to 2.4.25 appropriately advances the theme package version, maintaining compatibility with the peer dependency constraints (>=2.4.24) specified in dependent packages across the monorepo.

packages/components/avatar/package.json (1)

3-3: LGTM! Routine dependency updates.

The version bump and dependency updates are consistent with the broader React Aria v1.14.0 upgrade across the monorepo.

Also applies to: 39-39, 46-47

packages/components/badge/package.json (1)

39-39: LGTM! Theme peer dependency aligned.

The @heroui/theme peer dependency update is consistent with the monorepo-wide theme version bump.

packages/core/system-rsc/package.json (1)

38-38: LGTM! Theme peer dependency aligned.

Consistent with the coordinated @heroui/theme version bump across the monorepo.

packages/hooks/use-aria-button/CHANGELOG.md (1)

3-8: LGTM! Changelog entry properly documented.

The changelog entry correctly documents the react-aria v1.14.0 upgrade with appropriate PR and commit references.

packages/components/scroll-shadow/package.json (1)

39-39: LGTM! Theme peer dependency aligned.

Consistent with the coordinated @heroui/theme version bump.

packages/components/table/CHANGELOG.md (1)

3-11: LGTM! Changelog entry properly documented.

The changelog entry correctly documents the react-aria v1.14.0 upgrade and the @heroui/checkbox dependency update.

packages/components/toast/CHANGELOG.md (1)

3-11: LGTM! Changelog entry properly documented.

The changelog entry correctly documents the react-aria v1.14.0 upgrade and the @heroui/spinner dependency update with appropriate references.

packages/core/react/package.json (1)

3-3: Approve the version bump to 2.8.7 with @react-aria/visually-hidden@3.8.29.

The update aligns with the React Aria v1.14.0 release on December 16, 2025. The @react-aria/visually-hidden package has been scanned for vulnerabilities and is safe to use.

packages/components/toast/package.json (1)

3-52: Toast manifest version/dependency bump looks consistent

The package version, theme peer range, and dependency block all stay in line with the surrounding manifest and broader PR changes. No adjustments needed here.

packages/components/code/package.json (1)

36-40: Theme peer range bump is aligned with the rest of the repo

Raising @heroui/theme to >=2.4.24 for @heroui/code matches the ecosystem-wide peer range update. No issues from a manifest perspective.

packages/components/pagination/CHANGELOG.md (1)

3-11: New 2.2.26 pagination changelog entry is well‑formed

The new section follows the existing changelog conventions (version header, Patch Changes, PR/commit links, and an Updated dependencies block). Reads clearly and is consistent with prior entries.

packages/components/autocomplete/CHANGELOG.md (1)

3-17: Autocomplete 2.3.31 changelog entry is consistent and clear

The new version block matches the established format (heading, Patch Changes, PR/link, and explicit Updated dependencies list). Documentation looks complete and in line with earlier entries.

packages/components/tabs/CHANGELOG.md (1)

3-11: Tabs 2.2.26 changelog entry matches existing conventions

The new section is formatted like prior ones, includes the PR/commit reference, and clearly calls out the dependent package bump. Looks good as written.

packages/components/user/CHANGELOG.md (1)

3-10: User 2.2.24 changelog entry is consistent with prior releases

The new Patch Changes block and Updated dependencies list are in the expected format and clearly document the avatar bump. No changes needed.

packages/components/alert/CHANGELOG.md (1)

3-11: Alert 2.2.29 changelog entry is well‑structured

The new version section follows the existing pattern, with clear Patch Changes text and an Updated dependencies bullet referencing the button bump. Looks correct and consistent.

packages/components/divider/package.json (1)

39-39: LGTM! Peer dependency update aligns with the broader theme version bump.

The update to @heroui/theme from >=2.4.23 to >=2.4.24 is consistent with the coordinated version bump across the monorepo.

packages/components/spacer/package.json (1)

39-39: LGTM! Consistent peer dependency update.

The @heroui/theme peer dependency update matches the coordinated version bump across the monorepo.

packages/components/card/CHANGELOG.md (1)

3-12: LGTM! Changelog entry properly documents the react-aria upgrade.

The new release section correctly documents the upgrade to react-aria v1.14.0 and the related dependency updates.

packages/hooks/use-aria-accordion/CHANGELOG.md (1)

3-8: LGTM! Changelog entry properly documents the upgrade.

The new release section correctly documents the react-aria v1.14.0 upgrade with appropriate PR and commit references.

packages/components/avatar/CHANGELOG.md (1)

3-8: LGTM! Changelog entry is well-documented.

The release section properly documents the react-aria v1.14.0 upgrade with appropriate references.

packages/hooks/use-aria-accordion-item/CHANGELOG.md (1)

3-8: LGTM! Changelog entry is consistent and properly formatted.

The new release section correctly documents the react-aria v1.14.0 upgrade.

packages/core/theme/src/components/input.ts (1)

53-53: [Your rewritten review comment text here]
[Exactly ONE classification tag]

packages/hooks/use-aria-accordion/package.json (1)

3-3: Version bump to v3.27.0 is confirmed and compatible with existing code.

The upgrade to @react-aria/selection 3.27.0 as part of the react-aria v1.14.0 release has been verified. The codebase uses standard selection APIs (useSelectableList, ListKeyboardDelegate, useTypeSelect, useSelectableCollection) that remain compatible with this minor version update. No API breaking changes impact the current implementation.

packages/components/menu/CHANGELOG.md (1)

3-12: LGTM!

The changelog entry is consistent with the package.json version bump and clearly documents the react-aria upgrade.

packages/components/drawer/package.json (1)

3-3: LGTM!

Version and peer dependency bumps are consistent with the coordinated upgrade across the monorepo.

Also applies to: 39-39

packages/components/spinner/package.json (1)

3-3: LGTM!

Version and peer dependency updates are consistent with the coordinated release pattern across components.

Also applies to: 41-41

packages/components/spinner/CHANGELOG.md (1)

3-10: LGTM!

The changelog entry is consistent with the package.json version bump and follows the established changelog format.

packages/components/menu/package.json (1)

3-3: All React ARIA dependency versions are published and stable.

@react-aria/focus@3.21.3 is published, @react-aria/interactions@3.26.0 and @react-aria/menu@3.19.4 are part of the official React Aria v1-14-0 release, and @react-stately/tree@3.9.4 is published. These versions are stable and can be safely used.

packages/components/skeleton/package.json (1)

36-41: LGTM – skeleton theme peer bumped consistently

The only change is widening the @heroui/theme peer range to >=2.4.24, which matches the rest of the PR’s theme updates and keeps compatibility with the new core theme version.

Please double‑check that all published packages now depend on @heroui/theme in a compatible >=2.4.24 range before release.

packages/components/input/package.json (1)

3-51: LGTM – input manifest aligned with theme and react-aria versions

Version, @heroui/theme peer, and @react-aria/* / @react-stately/utils bumps are consistent with the rest of the monorepo and don’t change the public surface of @heroui/input.

Consider running the full input suite (unit + integration/visual tests) against the new react‑aria versions to catch any subtle a11y/interaction regressions.

packages/components/button/CHANGELOG.md (1)

3-13: LGTM – button 2.2.29 changelog entry is consistent

The new 2.2.29 section clearly documents the react‑aria upgrade and dependency bumps, and matches the style and level of detail of prior entries.

Please ensure the published @heroui/button@2.2.29 package.json matches these notes (react‑aria versions and dependency versions) before tagging the release.

packages/core/react/CHANGELOG.md (1)

3-59: LGTM – core @heroui/react 2.8.7 entry matches dependency bumps

The 2.8.7 changelog block correctly calls out the react‑aria upgrade and enumerates the updated component versions in a way that’s consistent with earlier 2.8.x releases.

Given the volume of updated dependencies here, it’s worth double‑checking that the actual package.json for @heroui/react and each listed component matches these versions before publishing the 2.8.7 tag.

packages/components/select/package.json (1)

3-61: LGTM – select manifest updated for new theme and react-aria stack

The version bump, @heroui/theme peer range, and the updated @react-aria/* dependencies all align with the coordinated RA/theme upgrade across the repo, with no structural changes to the package.

Please verify that @react-aria/focus, form, overlays, interactions, and visually-hidden are now on these same versions wherever else they’re used, to avoid mixed RA sub‑versions at runtime.

packages/components/progress/package.json (1)

3-47: LGTM – progress dependency and peer range bumps

The patch version, @heroui/theme peer, and @react-aria/progress bump are straightforward and consistent with the rest of the v2.8.7 dependency refresh.

As a sanity check, run any progress‑specific stories/tests to confirm the new @react-aria/progress patch doesn’t alter labeling or value formatting behavior.

packages/components/tabs/package.json (1)

3-51: LGTM – tabs package.json synced with new theme and react-aria tabs versions

Version, @heroui/theme peer, and the @react-aria/* / @react-stately/tabs bumps look consistent with the broader upgrade and don’t affect the package’s module entrypoints.

Given tabs’ sensitivity to focus management and keyboard interaction, please rerun the tabs interaction/a11y tests against these new react‑aria/stately versions.

packages/components/snippet/package.json (1)

3-51: LGTM – snippet manifest kept in step with theme and focus library

The snippet package version, @heroui/theme peer constraint, and @react-aria/focus version are updated in line with the rest of the ecosystem changes, with no other behavior‑affecting edits here.

A quick manual check of keyboard focus behavior on the snippet component in Storybook/docs after this bump would be prudent, since it relies on @react-aria/focus.

packages/components/snippet/CHANGELOG.md (1)

3-12: LGTM! Changelog entry is well-documented.

The new release section properly documents the react-aria upgrade to v1.14.0 and lists the updated dependencies. The changelog format is consistent with previous entries.

packages/core/system/CHANGELOG.md (1)

3-11: LGTM! Changelog entry follows proper format.

The release section correctly documents the react-aria upgrade and dependency updates in a clear, consistent manner.

packages/components/date-picker/package.json (2)

3-3: Version bump is consistent with the release.

The package version increment aligns with the coordinated v2.8.7 release.

38-38: Clarify dependency versions and verify compatibility testing.

The review references @react-aria/datepicker v3.15.3 and @react-stately/datepicker v3.15.3, but current npm registry shows latest versions as 3.15.1 and 3.14.0 respectively. Additionally, @react-stately/utils v3.11.0 does not appear to exist (latest is 3.10.8). Verify the actual versions specified in package.json and confirm compatibility testing has been performed for the correct versions.

packages/hooks/use-aria-button/package.json (1)

3-3: Version and dependency updates look good.

The hook package has been updated with the latest react-aria versions. The minor version bump of @react-aria/interactions (3.25.6 -> 3.26.0) appears to be coordinated with the broader upgrade.

Also applies to: 40-42

packages/components/button/package.json (1)

3-3: Button package updates are consistent.

The version bump and dependency updates align with the coordinated release. The peer dependency constraint for @heroui/theme has been properly updated.

Also applies to: 40-40, 49-50

packages/components/listbox/package.json (1)

3-3: Listbox package updates are properly coordinated.

All dependency updates follow the same pattern as other components in this release. The changes maintain consistency across the monorepo.

Also applies to: 39-39, 49-52

packages/components/autocomplete/package.json (2)

3-3: Autocomplete package updates are well-coordinated.

The version bump and dependency updates align with the react-aria v1.14.0 upgrade. All runtime dependencies are patch-level updates.

Also applies to: 38-38, 55-58

68-68: Note the minor version bump in devDependency.

The @react-stately/data package has been updated from 3.14.1 to 3.15.0 (minor version bump). Since this is a devDependency, it shouldn't affect runtime behavior, but ensure tests still pass.

packages/components/accordion/package.json (1)

3-3: Accordion package updates are consistent with the release.

The version bump and dependency updates follow the same coordinated pattern as all other components. The react-aria and react-stately dependencies have been properly updated.

Also applies to: 46-46, 58-60

packages/components/accordion/CHANGELOG.md (1)

3-14: LGTM!

The changelog entry is well-structured and properly documents the react-aria upgrade to v1.14.0, including all updated dependencies.

packages/components/checkbox/package.json (1)

3-3: LGTM!

The version and dependency updates align with the monorepo-wide react-aria v1.14.0 upgrade. All changes are patch-level updates.

Also applies to: 38-38, 48-53

packages/components/navbar/package.json (1)

3-3: LGTM!

The dependency updates are consistent with the monorepo-wide upgrade. Note that @react-stately/utils has a minor version bump (3.10.8 -> 3.11.0), which should be backward compatible.

Also applies to: 40-40, 50-56

packages/components/calendar/CHANGELOG.md (1)

3-13: LGTM!

The changelog entry properly documents the react-aria v1.14.0 upgrade and lists all updated dependencies. The format is consistent with other component changelogs in this PR.

packages/components/calendar/package.json (1)

3-3: LGTM – calendar dependencies properly aligned with react-aria v1.14.0 release.

All updates are patch-level except @react-stately/utils which receives a minor version bump. The dependency updates are part of the coordinated react-aria v1.14.0 release.

packages/components/popover/package.json (1)

3-3: The specified dependency versions do not match the latest available on npm.

@react-aria/dialog latest version is 3.5.31, not 3.5.32 as referenced. @react-stately/overlays latest version is 3.6.18, not 3.6.21. @react-aria/focus 3.21.3 is valid and @react-aria/overlays 3.31.0 is valid. Verify the package.json reflects the correct versions currently available on npm.

Likely an incorrect or invalid review comment.

packages/components/navbar/CHANGELOG.md (1)

3-10: LGTM! Changelog entry follows established format.

The new version 2.2.27 entry is properly structured with the PR reference, commit hash, author attribution, and dependency updates.

apps/docs/content/docs/components/date-input.mdx (1)

107-110: LGTM! Documentation version references updated consistently.

All package installation commands have been updated to reference the new versions (@internationalized/date@3.10.1 and @react-aria/i18n@3.12.14). The versions are consistent across all sections and align with the fixedVersions map in parse-dependencies.ts.

Also applies to: 132-135, 156-159, 180-183, 203-206, 226-229

apps/docs/content/docs/components/date-picker.mdx (1)

122-125: LGTM! Version references updated consistently across all sections.

All PackageManagers commands correctly reference @internationalized/date@3.10.1 and @react-aria/i18n@3.12.14 where applicable. The updates are consistent with date-input.mdx and the fixedVersions configuration.

Also applies to: 147-150, 171-174, 195-198, 217-220, 255-258

packages/components/form/CHANGELOG.md (1)

3-9: LGTM! Changelog entry properly documents dependency updates.

The version 2.1.29 entry correctly documents the updated dependencies (@heroui/theme@2.4.25 and @heroui/system@2.4.25) with appropriate commit references.

apps/docs/components/docs/components/code-demo/parse-dependencies.ts (1)

54-57: LGTM! Version mappings updated correctly.

The fixedVersions mappings are updated to reflect the new patch versions for @internationalized/date (3.10.1) and @react-aria/i18n (3.12.14).

packages/components/date-input/CHANGELOG.md (1)

3-11: LGTM! Changelog entry is consistent and complete.

The version 2.3.29 entry properly documents the react-aria v1.14.0 upgrade and the updated @heroui/form dependency.

packages/components/date-picker/CHANGELOG.md (1)

3-16: LGTM! Comprehensive changelog entry.

The version 2.3.30 entry properly documents the react-aria v1.14.0 upgrade and all updated dependencies across date-input, aria-utils, calendar, popover, button, and form packages.

packages/components/date-input/package.json (1)

3-3: LGTM! Version and dependency bumps are consistent.

The package version bump to 2.3.29 aligns with the changelog, and all React Aria dependencies are updated to newer patch versions. The peer dependency requirement for @heroui/theme is appropriately bumped to >=2.4.24 to match the coordinated release.

Also applies to: 38-38, 46-50

apps/docs/package.json (1)

32-42: LGTM! Docs dependencies are properly aligned.

The documentation package dependencies are updated to match the component library versions, ensuring consistency in examples and demos. The updates include:

  • @internationalized/date (3.10.0 → 3.10.1)
  • Multiple @react-aria/* packages with patch/minor bumps
  • @react-types/calendar and @react-types/datepicker updates

Also applies to: 93-94

packages/components/table/package.json (1)

3-3: LGTM! Table package updates are consistent.

The table package version bump to 2.2.29 includes coordinated React Aria dependency updates. Note that @react-aria/interactions (3.25.6 → 3.26.0) and @react-stately/data (3.14.1 → 3.15.0) have minor version bumps. The peer dependency for @heroui/theme is appropriately updated to >=2.4.24.

Also applies to: 39-39, 47-52, 67-67

packages/core/system/package.json (1)

3-3: System package version update to 2.4.25 with React Aria dependency updates noted.

The system package includes updates to React Aria dependencies. The @react-aria/overlays has been updated to 3.31.0. Ensure these updates are compatible with the existing codebase.

packages/components/dropdown/CHANGELOG.md (1)

3-13: Changelog entry is appropriate.

The version 2.3.29 entry correctly documents the react-aria v1.14.0 upgrade and updated dependencies. The onAction property is inherited from react-aria's AriaMenuProps and is not a new public API introduced in this version, so the changelog requires no additional documentation.

packages/core/theme/CHANGELOG.md (1)

3-10: Changelog entry is accurate and change is intentional.

The password reveal button hiding (PR #5990, issue #5984) is implemented via CSS [&::-ms-reveal]:hidden in the input component styling. This hides Microsoft Edge/IE's native password reveal button, a standard practice when implementing custom password reveal functionality across browsers. The change is CSS-only and does not break accessibility or user workflows—it simply prevents UI conflicts by suppressing the browser's built-in feature in favor of a unified custom implementation. No further verification needed.

packages/components/dropdown/__tests__/dropdown.test.tsx (2)

680-722: LGTM! Test properly updated for new centralized action API.

The test correctly reflects the API change from per-item onPress to centralized onAction on DropdownMenu. The keyboard interaction now uses user.keyboard("{Enter}") and properly asserts that onAction is called with the correct item key.

724-766: LGTM! Space key test correctly implements new API.

The Space key test mirrors the Enter key test pattern, correctly using the centralized onAction handler and verifying the action with the proper key value.

packages/components/breadcrumbs/package.json (1)

3-3: LGTM! Standard version and dependency bumps.

All changes are patch-level updates consistent with the PR's dependency upgrade objectives.

packages/core/react/src/client.ts (1)

1-51: New client entry point with proper re-exports and no naming conflicts.

The "use client" directive correctly marks this as a client-side module. All 43 re-exported component packages are declared as dependencies in package.json, and verification confirms no export name conflicts exist between packages. The re-export pattern provides a clean unified API surface for consuming applications while maintaining individual package modularity.

packages/components/link/__tests__/link.test.tsx (1)

102-114: Good test coverage for button usage.

This test properly validates that the Link component can be rendered as a button without an href attribute, which is the correct semantic behavior. The assertions cover the key requirements:

  • Correct element type (BUTTON)
  • Proper type attribute
  • No href attribute present
packages/components/link/package.json (1)

39-39: Dependency versions verified and confirmed available.

@react-aria/focus@3.21.3 is the latest version on npm and @heroui/theme@2.4.24 is the latest version on npm. Both have no known security vulnerabilities. A focus behavior regression was reported in v3.21.0 involving visibility:hidden inputs—verify focus behavior works as expected in your link component after upgrading.

Comment thread apps/docs/content/docs/components/date-range-picker.mdx
Comment thread packages/components/dropdown/package.json
Comment thread packages/components/input-otp/package.json
Comment thread packages/components/number-input/package.json
Comment thread packages/components/pagination/package.json
@jrgarciadev jrgarciadev merged commit 2d693f7 into main Dec 25, 2025
3 of 4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jrgarciadev jrgarciadev jrgarciadev approved these changes

+1 more reviewer

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

@jrgarciadev jrgarciadev

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@wingkwong @jrgarciadev @hasegawa-101