Skip to content

Bump serialize-javascript, @analogjs/vite-plugin-angular, @angular-devkit/build-angular and @nx/angular#6

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/multi-3c541b1bb5
Open

Bump serialize-javascript, @analogjs/vite-plugin-angular, @angular-devkit/build-angular and @nx/angular#6
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/multi-3c541b1bb5

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Mar 20, 2026

Bumps serialize-javascript to 7.0.4 and updates ancestor dependencies serialize-javascript, @analogjs/vite-plugin-angular, @angular-devkit/build-angular and @nx/angular. These dependencies need to be updated together.

Updates serialize-javascript from 6.0.2 to 7.0.4

Release notes

Sourced from serialize-javascript's releases.

v7.0.4

What's Changed

Full Changelog: yahoo/serialize-javascript@v7.0.3...v7.0.4

v7.0.3

  • fix(CVE-2020-7660): fix for RegExp.flags and Date.prototype.toISOString (#207) 2e609d0
  • build(deps-dev): bump lodash from 4.17.21 to 4.17.23 (#206) 42b7cdb

yahoo/serialize-javascript@v7.0.2...v7.0.3

v7.0.2

What's Changed

Full Changelog: yahoo/serialize-javascript@v7.0.1...v7.0.2

v7.0.1

What's Changed

New Contributors

Full Changelog: yahoo/serialize-javascript@v7.0.0...v7.0.1

v7.0.0

Breaking Changes

  • requires Node.js v20+

What's Changed

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for serialize-javascript since your current version.


Updates @analogjs/vite-plugin-angular from 1.14.1 to 1.22.5

Changelog

Sourced from @​analogjs/vite-plugin-angular's changelog.

2.4.0-beta.15 (2026-03-17)

Bug Fixes

  • astro-angular: support astro v6 using vite environment api (#2133) (e9fd9c6)

2.4.0-beta.14 (2026-03-17)

Bug Fixes

  • fix build and unit tests (dc6842c)

2.4.0-beta.13 (2026-03-16)

Features

  • vitest-angular: add teardown.destroyAfterEach option and deprecate browserMode option (#2054) (2fe2e1c)

2.4.0-beta.12 (2026-03-16)

Features

  • vite-plugin-angular: working fileReplacements and liveReload for Angular Compilation API (7adf8c1)

2.4.0-beta.11 (2026-03-16)

Bug Fixes

  • router: fix and add unit tests for route module invalidation on file changes (b9325af)

2.4.0-beta.10 (2026-03-16)

Bug Fixes

  • vitest-angular: support environment providers (#2129) (a90aa12)

2.4.0-beta.9 (2026-03-15)

Bug Fixes

  • vite-plugin-angular: normalize paths across plugin & live reload (#2126) (cc98bf7)

2.4.0-beta.8 (2026-03-13)

Features

2.4.0-beta.7 (2026-03-12)

... (truncated)

Commits
  • 90138f8 chore: release 1.22.5 [skip ci]
  • e164c64 Merge pull request #1926 from analogjs/fix-deps-optimizations
  • 484553c fix(vite-plugin-angular): expand optimization for Angular packages
  • b29a8c1 chore: release 1.22.4 [skip ci]
  • 70402a7 Merge pull request #1915 from analogjs/fix-storybook-angular-deps
  • 386c98d fix(storybook-angular): adjust package ranges for 1.x
  • e3cb764 chore: release 1.22.3 [skip ci]
  • bbd2ca0 Merge pull request #1914 from analogjs/nx-22
  • 10d48e4 fix: add support for Nx 22.x
  • 155dd55 chore: release 1.22.2 [skip ci]
  • Additional commits viewable in compare view

Updates @angular-devkit/build-angular from 19.2.12 to 21.2.3

Release notes

Sourced from @​angular-devkit/build-angular's releases.

21.2.3

@​angular/cli

Commit Description
fix - 1505164bb use parsed package name for migrate-only updates

@​angular/build

Commit Description
fix - 75fa94cad alias createRequire banner import to avoid duplicate binding
fix - d009aa1ec only use external packages for polyfills when no local files are present

@​angular/ssr

Commit Description
fix - f3e0e82c2 disallow x-forwarded-prefix starting with a backslash
fix - b8bcd59b4 ensure unique values in redirect response Vary header
fix - 84385411d support custom headers in redirect responses

21.2.2

@​angular/cli

Commit Description
fix - 8447d9132 conditionally quote package names when adding dependencies based on host requirements
fix - d2f209823 preserve exact version in ng add when requested
perf - 28f4d684a avoid redundant package version resolution in ng add

@​angular/build

Commit Description
fix - 06010294f allow any CHROME_BIN for vitest playwright provider
fix - 8dec0c62b normalize line endings for CSP hash generation
fix - 58688ebd7 pass process environment variables to prerender workers
fix - 4ca61647f resolve assets correctly during i18n prerendering

21.2.1

@​schematics/angular

Commit Description
fix - 72d466aa0 prevent adding test dependencies when minimal option is enabled

@​angular/cli

Commit Description
fix - ae4c28d00 correct dev dependency detection logic in ng add
fix - 465073bc1 disable npm update notifier in package manager host
fix - 36270634f ensure group members are updated to targeted version
fix - d87dba6af ignore unknown files when formatting schematic changes

@​angular-devkit/build-angular

Commit Description
fix - 0019d1c8e update copy-webpack-plugin to v14.0.0

@​angular/build

| Commit | Description |

... (truncated)

Changelog

Sourced from @​angular-devkit/build-angular's changelog.

21.2.3 (2026-03-18)

@​angular/cli

Commit Type Description
1505164bb fix use parsed package name for migrate-only updates

@​angular/build

Commit Type Description
75fa94cad fix alias createRequire banner import to avoid duplicate binding
d009aa1ec fix only use external packages for polyfills when no local files are present

@​angular/ssr

Commit Type Description
f3e0e82c2 fix disallow x-forwarded-prefix starting with a backslash
b8bcd59b4 fix ensure unique values in redirect response Vary header
84385411d fix support custom headers in redirect responses

22.0.0-next.1 (2026-03-11)

Breaking Changes

@​angular/build

  • The @angular/build:dev-server (ng serve) now assigns the highest priority to the PORT environment variable. This value will override any port configurations specified in angular.json or via the --port command-line flag. This includes the default port 4200.

@​schematics/angular

Commit Type Description
b3d838dfd fix replace deprecated ChangeDetectionStrategy.Default with Eager

@​angular/cli

Commit Type Description
598a690a0 fix conditionally quote package names when adding dependencies based on host requirements
b5fb457e1 fix preserve exact version in ng add when requested
93c3eb8fb fix update zoneless migration tool to handle ChangeDetectionStrategy.Eager
ad0fd5f41 perf avoid redundant package version resolution in ng add
a39a33128 perf cache root manifest and resolve restricted package exports in ng add

... (truncated)

Commits
  • ec8a04b release: cut the v21.2.3 release
  • 94959e9 docs: update references from app.component to app to match the style guide
  • d01bcb3 build: update cross-repo angular dependencies
  • b8bcd59 fix(@​angular/ssr): ensure unique values in redirect response Vary header
  • ba511f7 build: lock file maintenance
  • 1505164 fix(@​angular/cli): use parsed package name for migrate-only updates
  • 8438541 fix(@​angular/ssr): support custom headers in redirect responses
  • f3e0e82 fix(@​angular/ssr): disallow x-forwarded-prefix starting with a backslash
  • 411b2db build: update cross-repo angular dependencies
  • e5a9976 docs: update long-description
  • Additional commits viewable in compare view

Updates @nx/angular from 21.0.3 to 21.6.10

Release notes

Sourced from @​nx/angular's releases.

21.6.10 (2025-11-27)

🩹 Fixes

  • bundling: replace rollup-plugin-copy with nx copy assets plugin (#33601, #32398)
  • core: kill child process tree in different running tasks (#33636, #32438, #33460)
  • storybook: remove STORYBOOK_PROJECT_ROOT when running automigrate to prevent hanging (#33567, #32492)

❤️ Thank You

21.6.9 (2025-11-18)

🩹 Fixes

❤️ Thank You

21.6.8 (2025-10-30)

🚀 Features

  • bundling: add excludeFromExternal option to esbuild executor (#32980)

❤️ Thank You

21.6.7 (2025-10-28)

🚀 Features

  • gradle: add custom installation path to options (#33187)

🩹 Fixes

  • core: improve db connection initialization and error messages (#33054, #28640, #30856, #32894)
  • core: do not remove wal files manually for existing databases (#33143)
  • core: revert changes to the db connection initialization (#33156)
  • core: continue execution when cloud client is unavailable (#33214)
  • core: prevent error message containing [object Object] for invalid {workspaceRoot} placement (#33203)
  • core: ensure daemon writes project graph cache to disk consistently (#33217)
  • core: add accept header to http remote cache get (#33093, #33092)

... (truncated)

Commits
  • 0e0d027 Revert "fix(module-federation): ensure angular rspack module federation suppo...
  • 9578f4d chore(repo): fix build
  • 8fea6f9 fix(angular): ensure ngpackagr tsconfig options set correctly based on versio...
  • 2840f97 fix(angular): improve message for unsupported typescript project references (...
  • 755f658 fix(module-federation): ensure angular rspack module federation supports live...
  • 335d62c fix(core): avoid changing existing project name if a project.json file is add...
  • f9c85ad chore(repo): disable duplicated typecheck targets if the project already uses...
  • d345362 docs(misc): strip Markdoc tags when processing API docs/examples (#32747)
  • 040d7d7 fix(angular): install a compatible version of jest for angular (#32744)
  • e574baf feat(angular): support angular v20.3.0 (#32730)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​nx/angular since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump serialize-javascript, @analogjs/vite-plugin-angular, @angular-de…
1289b95 
…vkit/build-angular and @nx/angular

Bumps [serialize-javascript](https://github.com/yahoo/serialize-javascript) to 7.0.4 and updates ancestor dependencies [serialize-javascript](https://github.com/yahoo/serialize-javascript), [@analogjs/vite-plugin-angular](https://github.com/analogjs/analog), [@angular-devkit/build-angular](https://github.com/angular/angular-cli) and [@nx/angular](https://github.com/nrwl/nx/tree/HEAD/packages/angular). These dependencies need to be updated together.


Updates `serialize-javascript` from 6.0.2 to 7.0.4
- [Release notes](https://github.com/yahoo/serialize-javascript/releases)
- [Commits](yahoo/serialize-javascript@v6.0.2...v7.0.4)

Updates `@analogjs/vite-plugin-angular` from 1.14.1 to 1.22.5
- [Release notes](https://github.com/analogjs/analog/releases)
- [Changelog](https://github.com/analogjs/analog/blob/beta/CHANGELOG.md)
- [Commits](analogjs/analog@v1.14.1...v1.22.5)

Updates `@angular-devkit/build-angular` from 19.2.12 to 21.2.3
- [Release notes](https://github.com/angular/angular-cli/releases)
- [Changelog](https://github.com/angular/angular-cli/blob/main/CHANGELOG.md)
- [Commits](angular/angular-cli@19.2.12...v21.2.3)

Updates `@nx/angular` from 21.0.3 to 21.6.10
- [Release notes](https://github.com/nrwl/nx/releases)
- [Commits](https://github.com/nrwl/nx/commits/21.6.10/packages/angular)

---
updated-dependencies:
- dependency-name: serialize-javascript
  dependency-version: 7.0.4
  dependency-type: indirect
- dependency-name: "@analogjs/vite-plugin-angular"
  dependency-version: 1.22.5
  dependency-type: direct:development
- dependency-name: "@angular-devkit/build-angular"
  dependency-version: 21.2.3
  dependency-type: direct:development
- dependency-name: "@nx/angular"
  dependency-version: 21.6.10
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 20, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants