Skip to content

Updating packages and dependencies#30

Merged
dsanchezcr merged 1 commit into
mainfrom
update-packages
May 21, 2026
Merged

Updating packages and dependencies#30
dsanchezcr merged 1 commit into
mainfrom
update-packages

Conversation

@dsanchezcr
Copy link
Copy Markdown
Member

@dsanchezcr dsanchezcr commented May 21, 2026

This pull request primarily updates various dependencies across the project to their latest minor or patch versions. These updates affect both the main application and the API, as well as the CI workflow for dependency review. The main goal is to keep the codebase secure, compatible, and up to date with the latest improvements and bug fixes from upstream libraries.

@dsanchezcr dsanchezcr self-assigned this May 21, 2026
Copilot AI review requested due to automatic review settings May 21, 2026 19:20
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 21, 2026

Dependency Review

The following issues were found:

  • ✅ 0 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 4 package(s) with unknown licenses.

View full job summary

Copilot AI reviewed May 21, 2026
View reviewed changes
Copy link
Copy Markdown

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates dependency versions across the frontend and Azure Functions API to keep the project current with upstream patch/minor releases, and refreshes the GitHub Actions dependency review workflow.

Changes:

  • Bumped multiple frontend deps/devDeps (Tailwind/Vite tooling, ESLint/TS-ESLint, Zod, Lucide, etc.) and refreshed package-lock.json.
  • Bumped API dependencies/devDependencies (Cosmos SDK, Azure Functions SDK, core tools, Jest) and refreshed api/package-lock.json.
  • Updated the dependency review workflow to use actions/dependency-review-action@v5.
Show a summary per file
File Description
package.json Updates frontend dependency version ranges (Tailwind/Vite tooling, Zod, Lucide, lint tooling).
package-lock.json Locks updated resolved versions for frontend dependency graph.
api/package.json Updates API dependency version ranges (Cosmos/Functions SDK, tooling, Jest).
api/package-lock.json Locks updated resolved versions for API dependency graph.
.github/workflows/dependency-review.yml Updates dependency review action major version.

Copilot's findings

Files not reviewed (1)
  • api/package-lock.json: Language not supported
  • Files reviewed: 3/5 changed files
  • Comments generated: 1

Comment thread package.json
Comment on lines 49 to 51
"@tailwindcss/container-queries": "^0.1.1",
"@tailwindcss/vite": "^4.1.17",
"@tailwindcss/vite": "^4.2.4",
"class-variance-authority": "^0.7.1",
@dsanchezcr dsanchezcr merged commit 7fdcd3f into main May 21, 2026
20 of 21 checks passed
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 21, 2026

🧹 Preview Environment Cleaned Up

Resource group ZavaGiftExchange-pr-30 is being deleted.

All Azure resources for this PR have been removed.

@dsanchezcr dsanchezcr deleted the update-packages branch May 21, 2026 20:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

@dsanchezcr dsanchezcr

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@dsanchezcr