chore(deps): update all non-major dependencies

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Type	Update	Change	Pending	Age	Confidence
aqua:astral-sh/uv		patch	0.11.21 → 0.11.23
aqua:bufbuild/buf		minor	1.70.0 → 1.71.0
aqua:cli/cli		minor	2.94.0 → 2.95.0
aqua:cloudflare/cloudflared		patch	2026.6.0 → 2026.6.1
aqua:jdx/usage		patch	3.5.0 → 3.5.2
aquaproj/aqua		patch	v2.60.0 → v2.60.1
aquaproj/aqua-registry		minor	v4.524.1 → v4.526.0
aws/aws-cli		patch	2.35.4 → 2.35.9
github:aquaproj/aqua		patch	v2.60.0 → v2.60.1
github:endevco/aube		minor	v1.21.0 → v1.22.0	v1.23.0
github:google-antigravity/antigravity-cli		patch	1.0.8 → 1.0.10
github:sorafujitani/ccsession		minor	v0.6.0 → v0.7.0
jdx/mise		patch	v2026.6.9 → v2026.6.11
jdx/mise-action	action	minor	v4.1.0 → v4.2.0
node (source)		minor	24.16.0 → 24.17.0
npm:@typescript/native-preview (source)		patch	7.0.0-dev.20260614.1 → 7.0.0-dev.20260620.1	7.0.0-dev.20260621.1
npm:ccusage (source)		patch	20.0.11 → 20.0.14
npm:freee-mcp		patch	0.30.0 → 0.30.1
pnpm (source)		minor	11.6.0 → 11.8.0

---

Release Notes

astral-sh/uv (aqua:astral-sh/uv)

v0.11.23

Compare Source

Released on 2026-06-19.

Bug fixes

• Revert "Fix transparent Python upgrades in project environments" to mitigate unintended breakage in pre-commit-uv (#​19925)
• Restore old behavior where workspace members "hidden" by an intermediate pyproject.toml would be treated as standalone projects (#​19926)

v0.11.22

Compare Source

Released on 2026-06-18.

Enhancements

• Publish wheels before sdists in uv publish (#​19831)
• Add TY and RUFF env vars for providing paths for binaries used by uv format and uv check (#​19821)

Preview features

• Allow configuring preview features in uv.toml and pyproject.toml (#​18437)
• Update the lockfile during uv check --no-sync (#​19909)
• Add --script to uv check and uv metadata (#​19860)
• Report workspace-exclusive dependency groups in workspace metadata (#​19862)
• Support SARIF as a uv audit output (#​19872)

Performance

• Use a more deadlock-resistant concurrent hashmap in the resolver (#​19532)

Bug fixes

• Update string marker ordering semantics to match upstream clarified rules (#​19808)
• Reject extras that have the same normalized name (#​19871)
• Reject dependency group include-group entries that have additional fields (#​19866)
• Reject invalid UTF-8 URL credentials (#​19814)
• Validate that PEP 517 backend-paths exist when building sdists (#​19834)
• Validate that pylock.toml files do not have an unsupported a lock-version (#​19869)
• Validate that the environment satisfies the packages.requires-python of a pylock.toml (#​19868)
• Allow uv to be recursively invoked by PEP 517 build hooks (#​19879)
• Allow empty credentials.toml files (#​19815)
• Fix transparent Python upgrades in project environments (#​19890)
• Handle non-file editable URLs in uv pip list (#​19867)
• Fix incorrect output from uv tree --invert (#​19910)
• Fix environment locking of uv venv in a project (#​19837)
• Fix handling of workspace-exclusive dependency groups in uv tree (#​19905)

Documentation

• Archive the 0.10.x changelog (#​19813)

Other changes

• Mark more tests as requiring network for vendors that need to run tests offline (#​19819)

bufbuild/buf (aqua:bufbuild/buf)

v1.71.0

Compare Source

• Port new formatter and fix bugs for in-line block comment spacing.
• Fix handling for an empty rpc input/output.

cli/cli (aqua:cli/cli)

v2.95.0: GitHub CLI 2.95.0

Compare Source

Read repository files and directories with gh repo read-file and gh repo read-dir

Two new preview commands read repository contents without cloning:

# Read a single file to stdout
gh repo read-file README.md --repo cli/cli

# Read from a specific branch, tag, or commit
gh repo read-file go.mod --ref v2.94.0 --repo cli/cli

# Write a file to disk (use --clobber to overwrite)
gh repo read-file README.md --output ./README.md --repo cli/cli

# List the entries in a directory
gh repo read-dir script --repo cli/cli

Both commands default to the repository's default branch, accept --ref to target any branch, tag, or commit, and support --json, --jq, and --template for scripting. This makes it easy for agents and automation to inspect a repo without a full checkout.

[!NOTE]
gh repo read-file and gh repo read-dir are in preview and subject to change without notice.

What's Changed

✨ Features

• feat: add repo read-file and repo read-dir by @​babakks in #​13580
• feat(skills): list available skills when install runs non-interactively by @​SamMorrowDrums in #​13548
• Support custom CLAUDE_CONFIG_DIR in install by @​tommaso-moro in #​13523

🐛 Fixes

• fix(skills): stage updates in a temp dir and swap in-place by @​SamMorrowDrums in #​13449

📚 Docs & Chores

• Make filtering by bot authors more discoverable by @​BagToad in #​13642
• docs(discussion): polish help docs by @​babakks in #​13632
• Bump Go in devcontainer by @​spenserblack in #​13674

Dependencies

• chore(deps): bump golang.org/x/text from 0.37.0 to 0.38.0 by @​dependabot[bot] in #​13640
• chore(deps): bump charm.land/lipgloss/v2 from 2.0.3 to 2.0.4 by @​dependabot[bot] in #​13663
• chore(deps): bump golang.org/x/term from 0.43.0 to 0.44.0 by @​dependabot[bot] in #​13661
• chore(deps): bump github/codeql-action from 4.36.1 to 4.36.2 by @​dependabot[bot] in #​13619
• chore(deps): bump github.com/sigstore/sigstore-go from 1.1.4 to 1.2.1 by @​dependabot[bot] in #​13662
• chore(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0 by @​dependabot[bot] in #​13641

Full Changelog: cli/cli@v2.94.0...v2.95.0

cloudflare/cloudflared (aqua:cloudflare/cloudflared)

v2026.6.1

Compare Source

SHA256 Checksums:

cloudflared-amd64.pkg: 1c939cee0a953b30c91854fba114dc3a46f79570110fc5168703cd62afb65d82
cloudflared-arm64.pkg: acfcd577408f504254b4a207fbe6883d4c45fc1f9ae3b883bb3a493f412a1f8d
cloudflared-darwin-amd64.tgz: 3f74d697045ecf56dd2fbeb42f59767ecdf4067c409d55f080563923e8a1bb32
cloudflared-darwin-arm64.tgz: ae6ee90188ae5833c687ce937c3693e28403677607c06c65a2ff2b6a022f50e4
cloudflared-fips-linux-amd64: a22276b23500f75763604fd9bff7ece607f705ad62469344606bd662dbd3793d
cloudflared-fips-linux-amd64.deb: 4d8eb632229cec4df97d9cb03c23517f4bdada7189be3fd76a604233526b9b86
cloudflared-fips-linux-x86_64.rpm: dedcba9c1fed53fded13114c0ed968fbfa93eccc8d14b1ed147e5fdbebdee21e
cloudflared-linux-386: a9ded87fef4bbe2da6d44c8159f6e97df5811c24e4cf082d5426cefc1eb9a5aa
cloudflared-linux-386.deb: 7ef10a9544a5cba8025ac0f8ddf3c368e9c98f0160354017f62b4ad21237449c
cloudflared-linux-386.rpm: 27d5c887bee8071bf70c33955427adf40c6aed16074950f36988a269a392c1fe
cloudflared-linux-aarch64.rpm: 3291e4f9a7b65f97f318b0ac5d542148a3eb2a0b59a98a74d88e7777ef75f3ff
cloudflared-linux-amd64: 5861a10a438fe8ddcfebb3b830f83966cbf193edafce0fe2eeb198fbae1f7a22
cloudflared-linux-amd64.deb: ccd02ec216c62bfa573395d8f72cb2e91e95cbdf8726a8acc06b3e2d9aa31526
cloudflared-linux-arm: c07674eb6e13172d031e3ddc55c8817ed2a36ce00b0d42693e178c4317f9c1b8
cloudflared-linux-arm.deb: b10df091a66704198932a1563e2403cd71edf2bb0278d517bf5a8263b0732912
cloudflared-linux-arm.rpm: 934a2c6819056047dcd7475ffc3e8fcd64917f2977c418d39bc00532a7be61e6
cloudflared-linux-arm64: 59816ce9b16db71f5bc2a86d59b3632a96c8c3ee934bde2bc8641ee83a6070eb
cloudflared-linux-arm64.deb: bd03edd14de32ff38230ec9356e7fad0f32455558b2052d693bf51b7814f3ad4
cloudflared-linux-armhf: c742494eb1f90f6d43bbb07ef660e565e0baae15e49e4041626ac4d413d39072
cloudflared-linux-armhf.deb: a5242ccd0ee70d247eb70a161f6dd6fe5ddff0c6a5e4ea537202b7e9432755c8
cloudflared-linux-armhf.rpm: ff25adfd0aedb32ad5aa5a2efc343caf21b5137d6a5a8761d5f379df4238f853
cloudflared-linux-x86_64.rpm: 9690d870856b4396c8071ee7082acfc340b701013bc498635522e50889e49aa4
cloudflared-windows-386.exe: 52f63fb7055e5797e79585b0e1dbfb397046b1ed5edee29901d433dc16b94042
cloudflared-windows-386.msi: 4d3ff388a19c85bfe6de2f04b037963f7aee9dca6223ebb37b885d4d50762ecd
cloudflared-windows-amd64.exe: 5253e66f1f493c4e13539749f1aa86fd0c61e3072900fec29a44ba046a6d97e2
cloudflared-windows-amd64.msi: f20f932b6c0ddab4db18f7fa596d0a76cbd77bf3fa4572ade0b99d42c85f8a84

jdx/usage (aqua:jdx/usage)

v3.5.2

Compare Source

🔍 Other Changes

• (ci) install publish build targets by @​jdx in #​687

v3.5.1

Compare Source

🐛 Bug Fixes

• (parse) dedupe required flag validation errors by @​jdx in #​685
• (zsh) isolate generated completion options by @​jdx in #​686
• allow for variadic arguments to capture unknown flags as well by @​rtpg in #​676

📚 Documentation

• link to all sponsors by @​jdx in #​680
• clarify contribution fit by @​jdx in #​681

🛡️ Security

• (deps) update actions/checkout action to v6.0.3 by @​renovate[bot] in #​678

📦️ Dependency Updates

• update jdx/mise-action action to v4.1.0 by @​renovate[bot] in #​679
• update mise dev tools in lockfile to latest by @​JamBalaya56562 in #​682
• lock file maintenance lockfile maintenance by @​renovate[bot] in #​683

New Contributors

• @​rtpg made their first contribution in #​676

aquaproj/aqua (aquaproj/aqua)

v2.60.1

Compare Source

⚠️ Security Fixes

d5b02b2 fix(unarchive): prevent archive extraction from writing outside the destination
For more details, please see the security advisory.

⚠️ Release Asset Naming Convention for Cosign Was Changed

• *.sig and *.pem files are no longer included in the release assets
• *.bundle files are renamed to *.sigstore.json

Fixes

#​4938 Remove GitHub Release Attestation verification

aquaproj/aqua-registry (aquaproj/aqua-registry)

v4.526.0

Compare Source

Issues | Pull Requests | aquaproj/aqua-registry@v4.525.0...v4.526.0

🎉 New Packages

#​55428 Latias94/merman - Mermaid.js, but headless, in Rust @​yashikota
#​55421 coder/boo - A GNU screen style terminal multiplexer built on libghostty @​yashikota

Fixes

#​55443 Rename bitnami-labs/sealed-secrets to bitnami/sealed-secrets
#​55445 suzuki-shunsuke/ghtkn: support v0.2.6 or later

v4.525.0

Compare Source

Issues | Pull Requests | aquaproj/aqua-registry@v4.524.1...v4.525.0

🎉 New Packages

#​55397 #​55401 CycloneDX/cdxgen - Creates CycloneDX Bill of Materials (BOM) from source code and container images @​sebdanielsson
#​55389 fallow-rs/fallow: Codebase intelligence for TypeScript and JavaScript. Free static layer: unused code, duplication, circular deps, complexity hotspots, architecture boundaries. Optional paid runtime layer: hot-path review and cold-path deletion evidence from real production traffic. Rust-native, sub-second, zero-config framework support @​wancup

Fixes

#​55395 haskell/ghcup-hs: Support Windows @​cprecioso
#​55393 Remove the verification of release attestations

aws/aws-cli (aws/aws-cli)

v2.35.9

Compare Source

v2.35.8

Compare Source

v2.35.7

Compare Source

v2.35.6

Compare Source

v2.35.5

Compare Source

endevco/aube (github:endevco/aube)

v1.22.0: : Scoped registry tokens and a pnpm-lockfile parity sweep

Compare Source

Added

• (registry) Scope-specific auth tokens (//host/:@​scope:_authToken) for multi-org registries like GitHub Packages, with aube login --scope writing scoped entries (#​899)

Fixed

• (install) Verify lockfile tarball URLs against package packuments instead of per-version endpoints, fixing frozen-lockfile installs against registries with incomplete /{name}/{version} routes (#​905)
• (install) Close a cluster of pnpm-lock.yaml parity and re-resolution gaps: stop peer suffixes at the supplier, record hosted-git deps as codeload tarballs, render git/tarball peer suffixes as resolved specs, stamp pnpm config checksums on update/remove/dedupe/audit, and re-resolve when .pnpmfile.{cjs,mjs} changes (#​896)
• (install) Repair member installs under sharedWorkspaceLockfile=false: per-member warm-path freshness, warm-path relink of deleted member node_modules, and packageExtensions applied to git/tarball/directory deps (#​891)
• (install) Restore nested pnpm-workspace.yaml as a hard workspace boundary, matching pnpm — a member's settings-only yaml configures a single-package workspace rather than being skipped (#​889)
• (lockfile) Close pnpm-lock.yaml formatting and field parity gaps: record every declared optional-dep arch, flow-form cpu/os/libc, re-indent transitivePeerDependencies, reorder catalogs:, round-trip deprecated:, drop engines: {node: '*'}, mark optional: true snapshots, emit transitivePeerDependencies, and synthesize peerDependencies for meta-only peers (#​893)
• (embedder) Honor the embedder profile in the install banner, cache directories, virtual-store leaf, Node-install root, install-shape digest, and doctor messages (#​888)

Changed

• (commands) Return exit codes from command entrypoints instead of calling process::exit, so embedding aube as a library no longer tears down the host process (#​897)

💚 Sponsor aube

aube is part of jdx.dev — an independent developer-tooling studio run by @​jdx, also behind mise. Work on aube is funded entirely by sponsors.

If aube is saving your team install time or CI minutes, please consider sponsoring at jdx.dev. Individual and company sponsorships are what keep the project fast, free, and independent.

google-antigravity/antigravity-cli (github:google-antigravity/antigravity-cli)

v1.0.10

Compare Source

• Improved compatibility with a broader set of ARM64 devices (e.g. raspberry pi 4b).
• Added antigravity_guide builtin skill to provide instant, in-context reference guides for the Antigravity 2.0, CLI, IDE, and SDK.
• Improved commit history navigation: scrolling now immediately loads and displays changed files and diffs.
• Improved Git integration by enabling ASCII node graphs (git log --graph) for visual parity with hg/jj.
• Improved commit hash matching to seamlessly resolve short (6-char) to long (64-char) hashes via prefix comparison.
• Added alert message type for system errors/warnings, separating them from standard command output.
• Added the CLI log file path to the /help menu for easy troubleshooting.
• Improved markdown rendering by upgrading glamour to v2.0.1 for cleaner headings and block padding.
• Improved authentication to automatically launch browser sign-in via rundll32.
• Fixed a bug where "ask" permissions were dropped during settings updates, ensuring settings.json preservation.
• Fixed permission engine matching bugs by escaping regex metacharacters (like $ or .) in saved rules, preventing infinite prompt loops.
• Fixed environment flag parsing to prevent ignored disablement flags.
• Fixed bash mode argument escaping (preventing swallowed stdout) and defaulted shell resolution to PowerShell.

v1.0.9

Compare Source

• Added submodule support for plugins installation. External plugin installation now automatically resolves and initializes Git submodules.
• Optimized customizations permissions: Automatically grants read-only access to the builtin customizations directory, eliminating redundant permission prompts on startup.
• Improved glamour parser error handling (like nested checkboxes inside list emphasis) and preventing it from crashing the TUI, falling back to raw text with a warning banner.
• Updated bubbletea to v2.0.7: Resolves a potential TUI panic when terminal input is unavailable, fixes a data race in mouse handling within the Cursed Renderer, and corrects mouse release behavior under the Kitty Keyboard protocol.
• Hardened command execution permission checks by enforcing strict exact-match verification for PowerShell scripts, complex shell redirections ( > , 2>&1 ), and unparseable strings to prevent sandbox escapes.
• Hardened sandbox execution by adding .git to the core list of dangerous paths, preventing unauthorized or destructive repository modifications.
• Fixed a bug where allowlisted terminal commands with quoted arguments (e.g., python -c "print(1)") would silently fail to match at runtime due to flawed whitespace tokenization.
• Fixed a bug in headless print mode resumption (--conversation/-c -p ...) where the CLI would dump the entire historical conversation transcript instead of only printing the newly generated response.
• Fixed a CPU compatibility issue on ARM64 devices without AES hardware support.

sorafujitani/ccsession (github:sorafujitani/ccsession)

v0.7.0: ccsession 0.7.0

Compare Source

ccsession v0.7.0

An fzf-powered session picker for resuming local agent sessions.

Features

• Agent-assisted session recovery workflow by @​sorafujitani (#​85): ccsession now ships a repo-local Agent Skill at .agents/skills/ccsession, so agents can search, compare, preview, and hand off prior local sessions without reimplementing the session-store logic.
• Structured handoff commands for agents by @​sorafujitani (#​85): ccsession list --json --limit emits machine-readable candidates, and ccsession resume-spec prints the non-launching resume target before any interactive process is started.

Contributors

Thanks to @​sorafujitani for the work in this release!

---

See the README for installation instructions.

v0.6.1: ccsession 0.6.1

Compare Source

ccsession v0.6.1

An fzf-powered session picker for resuming local agent sessions across Claude Code, Codex, OpenCode, and Grok.

Fixes

• Reuse Codex representative session metadata by @​sorafujitani (#​78): Codex scan, filtered scan, ID lookup, and label-based grep now reuse the metadata already parsed during representative session selection, avoiding redundant JSONL parsing while preserving duplicate session ID behavior.

Performance

• Cache grep transcript text by @​sorafujitani (#​79): grep mode now uses a metadata-validated on-disk cache for extracted transcript text across Claude, Codex, and Grok, reducing repeated-query work without changing match semantics.
• Use hidden session locators for preview and resume by @​sorafujitani (#​80): fzf rows now carry source-aware locator metadata so preview and resume can resolve file-backed sessions directly instead of rescanning by ID.
• Parallelize Codex and Grok file-backed scans by @​sorafujitani (#​81): Codex representative parsing and Grok summary reads now run through an order-preserving worker pool while keeping existing sort order and error behavior.
• Parallelize all-source operations by @​sorafujitani (#​82): --all scan, filtered scan, and grep now fan out across backends concurrently while preserving source-order aggregation, composite keys, and backend-specific error context.

Contributors

Thanks to @​sorafujitani for the work in this release!

---

See the README for installation instructions.

jdx/mise (jdx/mise)

v2026.6.11: : apk bootstrap, cleaner Windows shims, and aqua polish

Compare Source

A focused release that adds Alpine apk as a bootstrap package manager, stops the default Windows exe shims from leaking into WSL, and fixes a handful of aqua, HTTP cache, Rust, and Deno corners.

Added

• bootstrap: Alpine Linux apk joins apt, dnf, pacman, and brew as a supported [bootstrap.packages] manager. Specify packages as apk:name (with optional @version), or pass --manager apk explicitly; status, install, and upgrade all wire through the same paths as the other Linux managers (#​10476 by @​jdx).

  [bootstrap.packages]
  "apk:curl" = "*"
  "apk:git" = "@​2.45.2-r0"

• registry: Added pinniped to the registry (#​10456 by @​tony-sol).

Fixed

• task: mise run //projects/backend and mise run //... no longer behave like //projects/backend:* — the monorepo pattern parser now rejects path-only targets with a clear error pointing to //path:<task> or //path:* (#​10479 by @​jdx).
• shim (Windows): Default exe windows_shim_mode no longer writes a second, extension-less bash shim next to <tool>.exe. Git Bash / Cygwin / MSYS2 already resolve a bare gh to gh.exe, and dropping the extras stops them from leaking into WSL via /mnt/c/... PATH interop (the source of the mise: not found / infinite-recursion loops). file mode still emits the bash shim where it is required. Old extras are cleaned up on the next reshim (#​10475 by @​JamBalaya56562).
• aqua: format_overrides are now parsed from the aqua registry and applied to the compiled package model. They run after version overrides and before normal platform overrides — matching aqua's own ordering — so per-OS archive formats finally resolve correctly. Aqua registry caches will rebuild on first use due to a serialized-layout bump (#​10461 by @​risu729).
• aqua: Minisign asset templates such as {{.Asset}}.minisig now render against the selected package asset, fixing signature verification for packages like jedisct1/minisign 0.12 (#​10462 by @​risu729).
• deno: Deno's Windows .sha256sum files use PowerShell Get-FileHash multi-line output. mise now parses that format alongside the standard whitespace-delimited one, validates the algorithm/length, and stores hashes lowercased as "<algo>:<hash>" (#​10464 by @​risu729).
• http: Auto-detected strip_components is now resolved before HTTP archive cache lookup and folded into the http-tarballs cache key. Stripped and unstripped extractions of the same URL no longer share a cache entry, fixing tool-stub installs that re-used a previous bin_path-based extract (#​10468 by @​risu729).
• install: When resolving lockfiles, absolute symlink targets that live under mise-managed data/cache/download/install/shared dirs are no longer misclassified as mise link versions. External symlink targets remain classified as linked. This fixes mise install --locked idempotency for HTTP-backed tools (#​10463 by @​risu729).
• rust: rust-toolchain.toml profile, components, and targets are now stored on the generated ToolRequest, so install and lockfile-option resolution both read the same request.options() instead of re-parsing the file. As a side effect, lockfile keys are canonicalized: TOML arrays now match comma-separated strings, components/targets are sorted and deduplicated, and an empty profile no longer emits a spurious key (#​10178 by @​risu729).
• exec: COLORTERM is now passed through to child processes (alongside TERM), preserving 24-bit truecolor signalling in sandboxed environments (#​10451 by @​sschuberth).
• docs: The Tera task-argument deprecation page now says removal is in 2027.5.0, matching the warning emitted by the CLI (#​10453 by @​reitzig).
• docs: The minimum_release_age example uses 6mo (not 6m) for "6 months", matching jiff's friendly duration format (#​10193 by @​sisp).

Changed

• deps: Replaced the unmaintained fuzzy-matcher crate (archived, last published 2020) with nucleo-matcher for registry/task suggestion scoring and picker highlight indices (#​10467 by @​risu729).
• deps: Removed the os-release and sys-info crates in favor of mise's internal /etc/os-release parser, which is now shared by libc detection, env, Swift, and Erlang Linux fallbacks (#​10465 by @​risu729).

Aqua Registry

New packages: Latias94/merman, bitnami/sealed-secrets, coder/boo. Updated: suzuki-shunsuke/ghtkn.

New Contributors

• @​sschuberth made their first contribution in #​10451
• @​sisp made their first contribution in #​10193

Full Changelog: jdx/mise@v2026.6.10...v2026.6.11

💚 Sponsor mise

mise is built by @​jdx under en.dev — an independent studio making developer tooling (mise, aube, and more). Development is funded by sponsors.

If mise saves you or your team time, please consider sponsoring at en.dev. Individual and company sponsorships keep mise fast, free, and independent.

v2026.6.10: : Env defaults, Unix 7z, and stale-PATH fixes

Compare Source

A focused release that adds a default shorthand for env vars, brings .7z archive support to Unix, and cleans up several long-standing PATH and shim edge cases on Linux, macOS, Windows, and WSL.

Added

• env: New { default = "fallback" } shorthand for [env] (and config/task [vars]). The default applies only when the variable is unset or empty; existing non-empty values from the process env or earlier config are preserved. Mixing default with value, required, or age now fails with a clear message (#​10441 by @​jdx).

  [env]
  EDITOR = { default = "vim" }       # only used if $EDITOR is unset/empty
  PORT   = { default = "3000" }

• backend: .7z archives now extract on Unix as well as Windows, and strip_components probing works cross-platform. Migrated from the unmaintained sevenz-rust to sevenz-rust2, and tightened extraction to reject directory traversal and absolute paths (#​10434 by @​risu729).

Fixed

• env: When env_shell_expand is enabled, ${VAR:-default} now follows POSIX semantics: empty strings are treated as missing (fallback applies), ${VAR-default} only substitutes when the variable is unset, and fallback text is recursively expanded (e.g. ${NONEXISTENT:-$OTHER}). Braced parsing is also stricter — unterminated ${… stays literal and } inside $(…) no longer closes the brace (#​10445 by @​jdx, fixes #​10444).
• env: mise x / run / env now strip mise-managed install directories from the inherited PATH when composing the child environment. Stale entries carried in from a frozen env snapshot (IDE terminals, CI wrappers, AI-agent harnesses) no longer sit ahead of the freshly injected bin dir, so subshells, #!/usr/bin/env shebangs, and package-manager workers all resolve the requested tool version (#​10422 by @​JamBalaya56562, addresses #​10345).
• vfox: Plugin install hooks that shell out via Lua os.execute now run under the same sanitized mise_env as cmd.exec. Combined with new resolution of tools = true env values during install, this fixes setups like gcloud depending on python where a single mise install previously left CLOUDSDK_PYTHON pointing at a nonexistent path (#​10432 by @​JamBalaya56562, fixes #​10282).
• shims: Windows extensionless bash shims now detect WSL (WSL_DISTRO_NAME / WSL_INTEROP / WSLInterop), drop their own dir from PATH, and exec the tool directly. This breaks the infinite mise x loop that happened when the Windows shims dir was exposed at /mnt/c/... inside WSL, and gives a clean <tool>: not found when no Linux tool is installed. file-mode shims are now also flagged version-stale so a normal reshim regenerates them on upgrade (#​10421 by @​JamBalaya56562, addresses #​10299).
• file: make_symlink on Unix now creates the link at a unique temp name in the destination dir and atomically rename(2)s it into place. This eliminates the noisy failed to ln -sf … File exists (os error 17) warnings that surfaced when several mise processes (shell hook-env, direnv, editor integrations) raced on the same tracked-config link, e.g. when spawning a new git worktree (#​10414 by @​JamBalaya56562, fixes #​10292).
• task: On Windows, script-task lookup now prefers Windows-native variants (e.g. .ps1) over their extensionless siblings, and extensionless takeover only applies when the match is unambiguous and stays within the same config family (#​10443 by @​jdx).

Changed

• deps: Replaced the unmaintained number_prefix (RUSTSEC-2025-0119) and stale humansize crates with bytesize. Size strings in generated tool-stub comments and mise cache prune output now use native bytesize IEC formatting — e.g. 821.69 KiB becomes 821.7 KiB and 2.15 MiB becomes 2.2 MiB (#​10438 by @​risu729).

Full Changelog: jdx/mise@v2026.6.9...v2026.6.10

💚 Sponsor mise

mise is built by @​jdx under en.dev — an independent studio making developer tooling (mise, aube, and more). Development is funded by sponsors.

If mise saves you or your team time, please consider sponsoring at en.dev. Individual and company sponsorships keep mise fast, free, and independent.

jdx/mise-action (jdx/mise-action)

v4.2.0: : Bootstrap mode & wget fallback

Compare Source

This release adds an opt-in bootstrap mode for projects that use mise bootstrap, and makes the action work on runner images that ship wget but not curl.

Added

Bootstrap mode (#​522) by @​jdx

Three new inputs let the action drive mise bootstrap instead of mise install:

- uses: jdx/mise-action@v4
  with:
    bootstrap: true
    bootstrap_skip: "tools,task"   # comma-separated parts to skip
    bootstrap_args: "--yes"        # extra args forwarded to mise bootstrap

• When bootstrap: true, the action runs mise bootstrap under the existing install gate and sets MISE_EXPERIMENTAL=1 automatically.
• If a repo mise lock file is present, it runs mise --locked bootstrap, matching the auto-lock behavior introduced for mise install in v4.1.0.
• install_args cannot be combined with bootstrap: true — the action fails fast and tells you to use bootstrap_skip / bootstrap_args instead, because full bootstrap doesn't support partial tool install args.
• A new {{bootstrap_hash}} template variable is included in the default cache key (and available in custom cache_key templates) so bootstrap and non-bootstrap configurations don't share caches.

bootstrap_skip relies on mise bootstrap --skip from jdx/mise#10497, so make sure you're on a recent mise version if you use it.

Fixed

• Fall back to wget when curl is unavailable (#​521) by @​risu729 — The action used to hard-code curl for fetching the mise binary, tar/zip archives, and the latest VERSION lookup, which broke on minimal runner images that only ship wget. It now prefers curl and transparently falls back to wget, preserving the streaming download | tar fast path for .tar.gz and .tar.zst installs on Linux/macOS. Proxy support is unchanged — both tools honor HTTP_PROXY/HTTPS_PROXY. Addresses jdx/mise#10488.

Documentation

• Link the known Rust cache interaction note from the README (#​496) by @​risu729.

Full Changelog: jdx/mise-action@v4.1.0...v4.2.0

nodejs/node (node)

v24.17.0: 2026-06-18, Version 24.17.0 'Krypton' (LTS), @​aduh95

Compare Source

This is a security release.

Notable Changes

• (CVE-2026-48618) tls: normalize hostname for server identity checks (Matteo Collina) – High
• (CVE-2026-48933) crypto: guard WebCrypto cipher output length (Filip Skokan) – High
• (CVE-2026-48615) lib,test: redact proxy credentials in tunnel errors (Matteo Collina) – Medium
• (CVE-2026-48619) http2: cap originSet size to prevent unbounded memory growth (Matteo Collina) – Medium
• (CVE-2026-48928) tls: fix case-sensitive SNI context matching (Matteo Collina) – Medium
• (CVE-2026-48930) dns,net: reject hostnames with embedded NUL bytes (Matteo Collina) – Medium
• (CVE-2026-48934) tls: bind reusable sessions to authenticated host (Matteo Collina) – Medium
• (CVE-2026-48937) deps: fix integration issues with the latest nghttp2 – Medium
• (CVE-2026-48617) permission: handle process.chdir on writereport (RafaelGSS) – Low
• (CVE-2026-48931) http: fix response queue poisoning in http.Agent (Matteo Collina) – Low
• (CVE-2026-48935) permission: disable FileHandle utimes with permission model (RafaelGSS) – Low

Commits

• [9e4dfc7bba] - (CVE-2026-48933) crypto: guard WebCrypto cipher output length (Filip Skokan) nodejs-private/node-private#878
• [cb2aed980c] - deps: update llhttp to 9.4.2 (Antoine du Hamel) nodejs-private/node-private#890
• [a8a0d12875] - (CVE-2026-48937) deps: fix integration issues with the latest nghttp2 (Tim Perry) #​62891
• [66e6203c1c] - (SEMVER-MAJOR) deps: update nghttp2 to 1.69.0 (Node.js GitHub Bot) #​62891
• [dd627ced27] - deps: update archs files for openssl-3.5.7 (Node.js GitHub Bot) #​63820
• [684bae568f] - deps: upgrade openssl sources to openssl-3.5.7 (Node.js GitHub Bot) #​63820
• [3a631e7f83] - deps: fix aix implicit declaration in OpenSSL (Abdirahim Musse) #​62656
• [cf44df3996] - deps: update undici to 7.28.0 (Node.js GitHub Bot) #​63703
• [138c70294b] - (CVE-2026-48930) dns,net: reject hostnames with embedded NUL bytes (Matteo Collina) nodejs-private/node-private#868
• [be7e719c3f] - (CVE-2026-48931) http: fix response queue poisoning in http.Agent (Matteo Collina) nodejs-private/node-private#846
• [cc7c11b4d1] - (CVE-2026-48619) http2: cap originSet size to prevent unbounded memory growth (Matteo Collina) nodejs-private/node-private#855
• [9224427b92] - (CVE-2026-48615) lib,test: redact proxy credentials in tunnel errors (Matteo Collina) nodejs-private/node-private#867
• [cf85d54839] - (CVE-2026-48935) permission: disable FileHandle utimes with permission model (RafaelGSS) nodejs-private/node-private#873
• [a1bbc24f96] - (CVE-2026-48617) permission: handle process.chdir on writereport (RafaelGSS) nodejs-private/node-private#870
• [e3723ff2d6] - test: add session reuse host verification regressions (Matteo Collina) nodejs-private/node-private#854
• [a77af4867b] - (CVE-2026-48934) tls: bind reusable sessions to authenticated host (Matteo Collina) nodejs-private/node-private#854
• [31beb4f707] - (CVE-2026-48928) tls: fix case-sen

✂ Note

PR body was truncated to here.

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[devin-ai-integration]

✅ Devin Review: No Issues Found

Devin Review analyzed this PR and found no bugs or issues to report.