Skip to content

build(deps): Bump the production-dependencies group across 1 directory with 5 updates#143

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-dependencies-d3ed8d800d
Open

build(deps): Bump the production-dependencies group across 1 directory with 5 updates#143
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-dependencies-d3ed8d800d

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 2, 2026

Copy link
Copy Markdown
Contributor

Bumps the production-dependencies group with 5 updates in the / directory:

Package From To
@tightknitai/slack-block-kit-validator 0.1.9 0.1.10
@tiptap/extension-link 3.26.1 3.27.3
@tiptap/react 3.26.1 3.27.3
@tiptap/starter-kit 3.26.1 3.27.3
nanoid 5.1.11 5.1.16

Updates @tightknitai/slack-block-kit-validator from 0.1.9 to 0.1.10

Release notes

Sourced from @​tightknitai/slack-block-kit-validator's releases.

slack-block-kit-validator: v0.1.10

0.1.10 (2026-07-01)

Features

  • add data_table block support and surface-rule drift check (ENG-5108) (#55) (68ba572)
Changelog

Sourced from @​tightknitai/slack-block-kit-validator's changelog.

0.1.10 (2026-07-01)

Features

  • add data_table block support and surface-rule drift check (ENG-5108) (#55) (68ba572)
Commits
  • 6e94146 chore(main): release slack-block-kit-validator 0.1.10 (#56)
  • 68ba572 feat: add data_table block support and surface-rule drift check (ENG-5108) (#55)
  • See full diff in compare view

Updates @tiptap/extension-link from 3.26.1 to 3.27.3

Release notes

Sourced from @​tiptap/extension-link's releases.

v3.27.3

@​tiptap/core

Patch Changes

  • 94de762: Fix deleteSelection to delete content across all selection ranges instead of only the first range. This restores multi-cell table selections and other custom selections with multiple ranges.
  • @​tiptap/pm@​3.27.3

@​tiptap/extension-list

Patch Changes

  • 94de762: Fix markdown parsing bugs where block elements right after an ordered list item (with no blank line in between) were wrongly treated as lazy continuation of the list item, instead of terminating the list the way other markdown parsers do:

    • Thematic breaks (---, ***, ___, * * *) were swallowed into the list item as literal paragraph text — along with every line after them. They now terminate the list and become a horizontal rule.
    • Fenced code blocks (``` and ~~~) were nested inside the list item. They now terminate the list and become a top-level code block.
    • Unindented bullet markers (- item) were nested inside the ordered list item. They now terminate the ordered list and start a new top-level bullet list. Indented bullets still nest inside the item as before.

    An indented ***/___ inside item content is now also parsed as a horizontal rule inside the item instead of literal text. A --- line directly below item paragraph text keeps its current behavior because it is a setext heading underline per CommonMark, not a thematic break.

  • 94de762: Fix indented ordered list items (e.g. one leading space before the marker, as happens when a top-level ordered list is itself nested inside another list) losing inline formatting during markdown parsing. The custom ordered-list markdown tokenizer built its nested structure with a hardcoded base indentation of 0, so an item whose actual indentation was non-zero never matched, causing the tokenizer to silently produce zero items and bail out — falling back to a path that left the item's content as literal, unparsed text instead of running it through inline tokenization (bold, italic, etc. were lost). The base indentation is now taken from the first collected item instead of being hardcoded.

  • Updated dependencies [94de762]

    • @​tiptap/core@​3.27.3
    • @​tiptap/pm@​3.27.3

@​tiptap/extensions

Patch Changes

  • 94de762: Fixed placeholder flickering and disappearance on large documents. Replaced the viewport-based decoration scan with an incremental StateField<DecorationSet> that only re-computes decorations for top-level nodes touched by each transaction. This eliminates the dependency on DOM measurement (posAtCoords), requestAnimationFrame scheduling, and scroll listeners that caused flickering under collaboration, occlusion, and rapid edits.

v3.27.2

@​tiptap/extension-emoji

Patch Changes

  • ceebb31: Fix arrow key navigation past emoji nodes in Firefox. Previously, pressing ArrowLeft with the cursor adjacent to an inline non-selectable emoji node at a paragraph boundary would not move the cursor in Firefox. The cursor now correctly skips over emoji nodes in both directions.
  • Updated dependencies [ceebb31]
    • @​tiptap/pm@​3.27.2
    • @​tiptap/core@​3.27.2
    • @​tiptap/suggestion@​3.27.2

@​tiptap/extension-file-handler

Patch Changes

  • ceebb31: Add consumePasteEvent option to the file-handler extension. When true, handlePaste returns true even when HTML content is present in the clipboard, preventing paste rules from other extensions from creating duplicate content. Default is false.
  • Updated dependencies [ceebb31]
    • @​tiptap/pm@​3.27.2
    • @​tiptap/core@​3.27.2
    • @​tiptap/extension-text-style@​3.27.2

... (truncated)

Changelog

Sourced from @​tiptap/extension-link's changelog.

3.27.3

Patch Changes

  • Updated dependencies [023f98c]
    • @​tiptap/core@​3.27.3
    • @​tiptap/pm@​3.27.3

3.27.2

Patch Changes

  • d3eb052: Coerce undefined HTMLAttributes (target, rel, class) to null so ProseMirror does not emit "No value supplied for attribute" warnings when these options are explicitly set to undefined.
  • Updated dependencies [ceebb31]
    • @​tiptap/pm@​3.27.2
    • @​tiptap/core@​3.27.2

3.27.1

Patch Changes

  • @​tiptap/core@​3.27.1
  • @​tiptap/pm@​3.27.1

3.27.0

Patch Changes

  • 24051bd: Fix isAllowedUri accepting unknown protocols whose name contains a hyphen (e.g. unknown-protocol://test). The hyphen is a valid scheme character per RFC 3986, but the regex was built from a template literal where \- collapsed to -, leaving the terminator class [^a-z+.-:] to parse .-: as a character range that excluded 0-9 and / rather than -. With the proper double-escape, the regex correctly excludes - and unknown hyphenated schemes are rejected again.
  • Updated dependencies [0d0094d]
  • Updated dependencies [795033c]
  • Updated dependencies [0e0c4f9]
  • Updated dependencies [6d12bb9]
    • @​tiptap/core@​3.27.0
    • @​tiptap/pm@​3.27.0
Commits
  • 24d6aba chore(release): publish a new stable version (#8002)
  • a14683f chore(release): publish a new stable version (#7963)
  • d51e62b Update packages/extension-link/src/link.ts
  • 864e719 Update packages/extension-link/src/link.ts
  • 3a91de1 Update packages/extension-link/src/link.ts
  • ef97c53 Update packages/extension-link/src/link.ts
  • eb78ee2 fix(link): coerce undefined HTMLAttributes to null to avoid ProseMirror error
  • 06b4274 fix(extension-file-handler): add consumePasteEvent option to prevent duplicat...
  • ed5488a chore(release): publish a new stable version (#7955)
  • 2f38887 chore(release): publish a new stable version (#7936)
  • Additional commits viewable in compare view

Updates @tiptap/react from 3.26.1 to 3.27.3

Release notes

Sourced from @​tiptap/react's releases.

v3.27.3

@​tiptap/core

Patch Changes

  • 94de762: Fix deleteSelection to delete content across all selection ranges instead of only the first range. This restores multi-cell table selections and other custom selections with multiple ranges.
  • @​tiptap/pm@​3.27.3

@​tiptap/extension-list

Patch Changes

  • 94de762: Fix markdown parsing bugs where block elements right after an ordered list item (with no blank line in between) were wrongly treated as lazy continuation of the list item, instead of terminating the list the way other markdown parsers do:

    • Thematic breaks (---, ***, ___, * * *) were swallowed into the list item as literal paragraph text — along with every line after them. They now terminate the list and become a horizontal rule.
    • Fenced code blocks (``` and ~~~) were nested inside the list item. They now terminate the list and become a top-level code block.
    • Unindented bullet markers (- item) were nested inside the ordered list item. They now terminate the ordered list and start a new top-level bullet list. Indented bullets still nest inside the item as before.

    An indented ***/___ inside item content is now also parsed as a horizontal rule inside the item instead of literal text. A --- line directly below item paragraph text keeps its current behavior because it is a setext heading underline per CommonMark, not a thematic break.

  • 94de762: Fix indented ordered list items (e.g. one leading space before the marker, as happens when a top-level ordered list is itself nested inside another list) losing inline formatting during markdown parsing. The custom ordered-list markdown tokenizer built its nested structure with a hardcoded base indentation of 0, so an item whose actual indentation was non-zero never matched, causing the tokenizer to silently produce zero items and bail out — falling back to a path that left the item's content as literal, unparsed text instead of running it through inline tokenization (bold, italic, etc. were lost). The base indentation is now taken from the first collected item instead of being hardcoded.

  • Updated dependencies [94de762]

    • @​tiptap/core@​3.27.3
    • @​tiptap/pm@​3.27.3

@​tiptap/extensions

Patch Changes

  • 94de762: Fixed placeholder flickering and disappearance on large documents. Replaced the viewport-based decoration scan with an incremental StateField<DecorationSet> that only re-computes decorations for top-level nodes touched by each transaction. This eliminates the dependency on DOM measurement (posAtCoords), requestAnimationFrame scheduling, and scroll listeners that caused flickering under collaboration, occlusion, and rapid edits.

v3.27.2

@​tiptap/extension-emoji

Patch Changes

  • ceebb31: Fix arrow key navigation past emoji nodes in Firefox. Previously, pressing ArrowLeft with the cursor adjacent to an inline non-selectable emoji node at a paragraph boundary would not move the cursor in Firefox. The cursor now correctly skips over emoji nodes in both directions.
  • Updated dependencies [ceebb31]
    • @​tiptap/pm@​3.27.2
    • @​tiptap/core@​3.27.2
    • @​tiptap/suggestion@​3.27.2

@​tiptap/extension-file-handler

Patch Changes

  • ceebb31: Add consumePasteEvent option to the file-handler extension. When true, handlePaste returns true even when HTML content is present in the clipboard, preventing paste rules from other extensions from creating duplicate content. Default is false.
  • Updated dependencies [ceebb31]
    • @​tiptap/pm@​3.27.2
    • @​tiptap/core@​3.27.2
    • @​tiptap/extension-text-style@​3.27.2

... (truncated)

Changelog

Sourced from @​tiptap/react's changelog.

3.27.3

Patch Changes

  • Updated dependencies [023f98c]
    • @​tiptap/core@​3.27.3
    • @​tiptap/pm@​3.27.3

3.27.2

Patch Changes

  • 13dfad1: Change prop types of the Tiptap component so that either the editor or the instance fields are required
  • Updated dependencies [ceebb31]
    • @​tiptap/pm@​3.27.2
    • @​tiptap/core@​3.27.2

3.27.1

Patch Changes

  • @​tiptap/core@​3.27.1
  • @​tiptap/pm@​3.27.1

3.27.0

Patch Changes

  • Updated dependencies [0d0094d]
  • Updated dependencies [795033c]
  • Updated dependencies [0e0c4f9]
  • Updated dependencies [6d12bb9]
    • @​tiptap/core@​3.27.0
    • @​tiptap/pm@​3.27.0
Commits

Updates @tiptap/starter-kit from 3.26.1 to 3.27.3

Release notes

Sourced from @​tiptap/starter-kit's releases.

v3.27.3

@​tiptap/core

Patch Changes

  • 94de762: Fix deleteSelection to delete content across all selection ranges instead of only the first range. This restores multi-cell table selections and other custom selections with multiple ranges.
  • @​tiptap/pm@​3.27.3

@​tiptap/extension-list

Patch Changes

  • 94de762: Fix markdown parsing bugs where block elements right after an ordered list item (with no blank line in between) were wrongly treated as lazy continuation of the list item, instead of terminating the list the way other markdown parsers do:

    • Thematic breaks (---, ***, ___, * * *) were swallowed into the list item as literal paragraph text — along with every line after them. They now terminate the list and become a horizontal rule.
    • Fenced code blocks (``` and ~~~) were nested inside the list item. They now terminate the list and become a top-level code block.
    • Unindented bullet markers (- item) were nested inside the ordered list item. They now terminate the ordered list and start a new top-level bullet list. Indented bullets still nest inside the item as before.

    An indented ***/___ inside item content is now also parsed as a horizontal rule inside the item instead of literal text. A --- line directly below item paragraph text keeps its current behavior because it is a setext heading underline per CommonMark, not a thematic break.

  • 94de762: Fix indented ordered list items (e.g. one leading space before the marker, as happens when a top-level ordered list is itself nested inside another list) losing inline formatting during markdown parsing. The custom ordered-list markdown tokenizer built its nested structure with a hardcoded base indentation of 0, so an item whose actual indentation was non-zero never matched, causing the tokenizer to silently produce zero items and bail out — falling back to a path that left the item's content as literal, unparsed text instead of running it through inline tokenization (bold, italic, etc. were lost). The base indentation is now taken from the first collected item instead of being hardcoded.

  • Updated dependencies [94de762]

    • @​tiptap/core@​3.27.3
    • @​tiptap/pm@​3.27.3

@​tiptap/extensions

Patch Changes

  • 94de762: Fixed placeholder flickering and disappearance on large documents. Replaced the viewport-based decoration scan with an incremental StateField<DecorationSet> that only re-computes decorations for top-level nodes touched by each transaction. This eliminates the dependency on DOM measurement (posAtCoords), requestAnimationFrame scheduling, and scroll listeners that caused flickering under collaboration, occlusion, and rapid edits.

v3.27.2

@​tiptap/extension-emoji

Patch Changes

  • ceebb31: Fix arrow key navigation past emoji nodes in Firefox. Previously, pressing ArrowLeft with the cursor adjacent to an inline non-selectable emoji node at a paragraph boundary would not move the cursor in Firefox. The cursor now correctly skips over emoji nodes in both directions.
  • Updated dependencies [ceebb31]
    • @​tiptap/pm@​3.27.2
    • @​tiptap/core@​3.27.2
    • @​tiptap/suggestion@​3.27.2

@​tiptap/extension-file-handler

Patch Changes

  • ceebb31: Add consumePasteEvent option to the file-handler extension. When true, handlePaste returns true even when HTML content is present in the clipboard, preventing paste rules from other extensions from creating duplicate content. Default is false.
  • Updated dependencies [ceebb31]
    • @​tiptap/pm@​3.27.2
    • @​tiptap/core@​3.27.2
    • @​tiptap/extension-text-style@​3.27.2

... (truncated)

Changelog

Sourced from @​tiptap/starter-kit's changelog.

3.27.3

Patch Changes

  • Updated dependencies [023f98c]
  • Updated dependencies [b4600b6]
  • Updated dependencies [1f3ca7a]
  • Updated dependencies [76a76da]
    • @​tiptap/core@​3.27.3
    • @​tiptap/extension-list@​3.27.3
    • @​tiptap/extensions@​3.27.3
    • @​tiptap/extension-blockquote@​3.27.3
    • @​tiptap/extension-bold@​3.27.3
    • @​tiptap/extension-code@​3.27.3
    • @​tiptap/extension-code-block@​3.27.3
    • @​tiptap/extension-document@​3.27.3
    • @​tiptap/extension-hard-break@​3.27.3
    • @​tiptap/extension-heading@​3.27.3
    • @​tiptap/extension-horizontal-rule@​3.27.3
    • @​tiptap/extension-italic@​3.27.3
    • @​tiptap/extension-link@​3.27.3
    • @​tiptap/extension-paragraph@​3.27.3
    • @​tiptap/extension-strike@​3.27.3
    • @​tiptap/extension-text@​3.27.3
    • @​tiptap/extension-underline@​3.27.3
    • @​tiptap/extension-list-item@​3.27.3
    • @​tiptap/extension-list-keymap@​3.27.3
    • @​tiptap/extension-bullet-list@​3.27.3
    • @​tiptap/extension-ordered-list@​3.27.3
    • @​tiptap/extension-dropcursor@​3.27.3
    • @​tiptap/extension-gapcursor@​3.27.3
    • @​tiptap/pm@​3.27.3

3.27.2

Patch Changes

  • Updated dependencies [d3eb052]
  • Updated dependencies [f586b6f]
  • Updated dependencies [ceebb31]
    • @​tiptap/extension-link@​3.27.2
    • @​tiptap/extension-list@​3.27.2
    • @​tiptap/pm@​3.27.2
    • @​tiptap/extension-list-item@​3.27.2
    • @​tiptap/extension-list-keymap@​3.27.2
    • @​tiptap/extension-bullet-list@​3.27.2
    • @​tiptap/extension-ordered-list@​3.27.2
    • @​tiptap/core@​3.27.2
    • @​tiptap/extension-code-block@​3.27.2
    • @​tiptap/extension-horizontal-rule@​3.27.2

... (truncated)

Commits
  • 24d6aba chore(release): publish a new stable version (#8002)
  • a14683f chore(release): publish a new stable version (#7963)
  • 06b4274 fix(extension-file-handler): add consumePasteEvent option to prevent duplicat...
  • ed5488a chore(release): publish a new stable version (#7955)
  • 2f38887 chore(release): publish a new stable version (#7936)
  • 9e7fc4c chore: add bugs field to all package.json files (#7946)
  • See full diff in compare view

Updates nanoid from 5.1.11 to 5.1.16

Release notes

Sourced from nanoid's releases.

5.1.16

5.1.15

  • Fixed random pool corruption on big ID sizes.

5.1.14

  • Fixed npm package size regression.

5.1.13

  • Fixed npm package size regression.

5.1.12

  • Moved to npm Provenance and Staged Publishing.
Changelog

Sourced from nanoid's changelog.

5.1.16

5.1.15

  • Fixed random pool corruption on big ID sizes.

5.1.14

  • Fixed npm package size regression.

5.1.13

  • Fixed npm package size regression.

5.1.12

  • Moved to npm Provenance and Staged Publishing.
Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for nanoid since your current version.


@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 2, 2026
@github-actions

github-actions Bot commented Jul 2, 2026

Copy link
Copy Markdown
Contributor

Held for manual review: @tightknitai/slack-block-kit-validator, @tiptap/extension-link, @tiptap/react, @tiptap/starter-kit, nanoid is on the security-sensitive auto-merge exclusion list. Verify the changelog and source diff before merging.

@cloudflare-workers-and-pages

cloudflare-workers-and-pages Bot commented Jul 2, 2026

Copy link
Copy Markdown
Contributor

Deploying with  Cloudflare Workers  Cloudflare Workers

The latest updates on your project. Learn more about integrating Git with Workers.

Status Name Latest Commit Preview URL Updated (UTC)
✅ Deployment successful!
View logs
block-kitchen c7c7765 Commit Preview URL

Branch Preview URL
Jul 09 2026, 03:47 PM

…y with 5 updates

Bumps the production-dependencies group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@tightknitai/slack-block-kit-validator](https://github.com/TightknitAI/slack-block-kit-validator) | `0.1.9` | `0.1.10` |
| [@tiptap/extension-link](https://github.com/ueberdosis/tiptap/tree/HEAD/packages/extension-link) | `3.26.1` | `3.27.3` |
| [@tiptap/react](https://github.com/ueberdosis/tiptap/tree/HEAD/packages/react) | `3.26.1` | `3.27.3` |
| [@tiptap/starter-kit](https://github.com/ueberdosis/tiptap/tree/HEAD/packages/starter-kit) | `3.26.1` | `3.27.3` |
| [nanoid](https://github.com/ai/nanoid) | `5.1.11` | `5.1.16` |



Updates `@tightknitai/slack-block-kit-validator` from 0.1.9 to 0.1.10
- [Release notes](https://github.com/TightknitAI/slack-block-kit-validator/releases)
- [Changelog](https://github.com/TightknitAI/slack-block-kit-validator/blob/main/CHANGELOG.md)
- [Commits](TightknitAI/slack-block-kit-validator@slack-block-kit-validator-v0.1.9...slack-block-kit-validator-v0.1.10)

Updates `@tiptap/extension-link` from 3.26.1 to 3.27.3
- [Release notes](https://github.com/ueberdosis/tiptap/releases)
- [Changelog](https://github.com/ueberdosis/tiptap/blob/main/packages/extension-link/CHANGELOG.md)
- [Commits](https://github.com/ueberdosis/tiptap/commits/v3.27.3/packages/extension-link)

Updates `@tiptap/react` from 3.26.1 to 3.27.3
- [Release notes](https://github.com/ueberdosis/tiptap/releases)
- [Changelog](https://github.com/ueberdosis/tiptap/blob/main/packages/react/CHANGELOG.md)
- [Commits](https://github.com/ueberdosis/tiptap/commits/v3.27.3/packages/react)

Updates `@tiptap/starter-kit` from 3.26.1 to 3.27.3
- [Release notes](https://github.com/ueberdosis/tiptap/releases)
- [Changelog](https://github.com/ueberdosis/tiptap/blob/main/packages/starter-kit/CHANGELOG.md)
- [Commits](https://github.com/ueberdosis/tiptap/commits/v3.27.3/packages/starter-kit)

Updates `nanoid` from 5.1.11 to 5.1.16
- [Release notes](https://github.com/ai/nanoid/releases)
- [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md)
- [Commits](ai/nanoid@5.1.11...5.1.16)

---
updated-dependencies:
- dependency-name: "@tightknitai/slack-block-kit-validator"
  dependency-version: 0.1.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: "@tiptap/extension-link"
  dependency-version: 3.27.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: "@tiptap/react"
  dependency-version: 3.27.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: "@tiptap/starter-kit"
  dependency-version: 3.27.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: nanoid
  dependency-version: 5.1.16
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title build(deps): Bump the production-dependencies group with 5 updates build(deps): Bump the production-dependencies group across 1 directory with 5 updates Jul 9, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/production-dependencies-d3ed8d800d branch from acfae2c to c7c7765 Compare July 9, 2026 15:46
@github-actions

github-actions Bot commented Jul 9, 2026

Copy link
Copy Markdown
Contributor

Held for manual review: @tightknitai/slack-block-kit-validator, @tiptap/extension-link, @tiptap/react, @tiptap/starter-kit, nanoid is on the security-sensitive auto-merge exclusion list. Verify the changelog and source diff before merging.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants