Skip to content

chore(deps): bump js-yaml, sanity and next-sanity #27

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): bump js-yaml, sanity and next-sanity #27

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Nov 14, 2025

Bumps js-yaml to 4.1.1 and updates ancestor dependencies js-yaml, sanity and next-sanity. These dependencies need to be updated together.

Updates js-yaml from 4.1.0 to 4.1.1

Changelog

Sourced from js-yaml's changelog.

[4.1.1] - 2025-11-12

Security

  • Fix prototype pollution issue in yaml merge (<<) operator.
Commits

Updates sanity from 3.89.0 to 3.99.0

Release notes

Sourced from sanity's releases.

v3.99.0

Sanity Studio v3.99.0

This release includes various improvements and bug fixes.

For the complete changelog with all details, please visit: www.sanity.io/changelog/e7fc39f1-5646-4a37-80cd-87c45d263a26

Install or upgrade Sanity Studio

To upgrade to this version, run:

npm install sanity@latest

To initiate a new Sanity Studio project or learn more about upgrading, please refer to our comprehensive guide on Installing and Upgrading Sanity Studio.

If you are updating from a version earlier than 3.37.0, you should also check out this article to ensure your dependencies are up to date.

📓 Full changelog

Author Message Commit
Magnus Holm chore: auto-upload schema when a toggle is enabled (#9644) 0eb00fd33c
Jordan Lawrence chore: updating name of release PR and commit to prefix version with v (#9932) 80621cb661
renovate[bot] fix(deps): update dependency @​sanity/ui to ^2.16.4 (#9934) 39673611a0
Kevin Green feat(examples): generate a summary with ai-agents functions recipe (#9758) 95d60feb6d
Kevin Green feat(examples): Algolia-Sync to the function recipes (#9731) fed1a8da2e
Eoin Falconer chore: adding docs team inclusion notice (#9715) 6870d3fe44
RitaDias feat(core): keep values when clicking off create release modal (#9871) fe8330eb8f
renovate[bot] fix(deps): update dependency @​portabletext/block-tools to ^1.1.38 (#9940) 3dd90d539e
renovate[bot] fix(deps): update dependency @​portabletext/editor to ^1.57.5 (#9941) 892da2b930
renovate[bot] chore(deps): update dependency recast to ^0.23.11 (#9923) a187128c58
renovate[bot] chore(deps): update dependency @​sanity/visual-editing-csm to ^2.0.19 (#9942) 3c1a30d1f5
Kevin Green chore(examples): update instructions (#9938) f2941c7655
Simon MacDonald fix(cli): add document-id flag to functions test (#9944) b9e7fcd9c0
Ash feat: Media Library video integration (#9909) 534285836c
RitaDias refactor(core): move check for quota inside of the dialog in button instead of overview / other places (#9862) cfebeaf884
squiggler[bot] chore(tests): generate dts tests 🤖 ✨ (#9948) a0bdedb289
Jordan Lawrence fix: pinning conventional-commits to v7 for CJS compatibility with lerna@8 (#9951) 97c80b8f44
RitaDias test(cli): update test after broken users / update to backend users (#9950) 9012f41361

v3.98.1

Sanity Studio v3.98.0

This release includes various improvements and bug fixes.

For the complete changelog with all details, please visit: www.sanity.io/changelog/8738ca58-04f2-4547-b183-2c9121d1aca9

... (truncated)

Changelog

Sourced from sanity's changelog.

3.99.0 (2025-07-11)

Features

  • core: keep values when clicking off create release modal (#9871) (fe8330e)
  • Media Library video integration (#9909) (5342858)

Bug Fixes

  • deps: update dependency @​portabletext/block-tools to ^1.1.38 (#9940) (3dd90d5)
  • deps: update dependency @​portabletext/editor to ^1.57.5 (#9941) (892da2b)
  • deps: update dependency @​sanity/ui to ^2.16.4 (#9934) (3967361)

3.98.1 (2025-07-09)

  • fix: handling where no templates available and not showing create doc button (#9933) (d2f9810), closes #9933
  • fix(deps): update dependency @​portabletext/block-tools to ^1.1.36 (#9918) (46a7d9d), closes #9918
  • fix(deps): update dependency @​portabletext/block-tools to ^1.1.37 (#9927) (c545a1b), closes #9927
  • fix(deps): update dependency @​portabletext/editor to ^1.57.0 (#9913) (e124c21), closes #9913
  • fix(deps): update dependency @​portabletext/editor to ^1.57.1 (#9919) (32ebd0c), closes #9919
  • fix(deps): update dependency @​portabletext/editor to ^1.57.3 (#9928) (ea2b66d), closes #9928
  • fix(deps): update dependency @​sanity/ui to ^2.16.3 (#9931) (d2b3cf5), closes #9931

3.98.0 (2025-07-07)

Features

Bug Fixes

  • core: actions flickering- remove cleanup step for hook states on change (#9885) (2ab9505) by Pedro Bonamin ([email protected])
  • deps: update dependency @​portabletext/block-tools to ^1.1.35 (#9897) (d21610b) by renovate[bot] (29139614+renovate[bot]@​users.noreply.github.com)
  • deps: update dependency @​portabletext/editor to ^1.56.0 (#9889) (9cfd35d) by renovate[bot] (29139614+renovate[bot]@​users.noreply.github.com)

3.97.1 (2025-07-04)

Note: Version bump only for package sanity

3.97.0 (2025-07-04)

Features

Bug Fixes

  • deps: update dependency @​portabletext/block-tools to ^1.1.34 (#9874) (c7f16f0) by renovate[bot] (29139614+renovate[bot]@​users.noreply.github.com)
  • deps: update dependency @​portabletext/editor to ^1.55.15 (#9875) (41afd49) by renovate[bot] (29139614+renovate[bot]@​users.noreply.github.com)

... (truncated)

Commits
  • 836a73e chore(release): publish v3.99.0 (#9935)
  • cfebeaf refactor(core): move check for quota inside of the dialog in button instead o...
  • 5342858 feat: Media Library video integration (#9909)
  • 3c1a30d chore(deps): update dependency @​sanity/visual-editing-csm to ^2.0.19 (#9942)
  • 892da2b fix(deps): update dependency @​portabletext/editor to ^1.57.5 (#9941)
  • 3dd90d5 fix(deps): update dependency @​portabletext/block-tools to ^1.1.38 (#9940)
  • fe8330e feat(core): keep values when clicking off create release modal (#9871)
  • 3967361 fix(deps): update dependency @​sanity/ui to ^2.16.4 (#9934)
  • 0eb00fd chore: auto-upload schema when a toggle is enabled (#9644)
  • 8bac124 chore(release): publish 3.98.1 (#9921)
  • Additional commits viewable in compare view

Updates next-sanity from 9.11.1 to 9.11.1

Changelog

Sourced from next-sanity's changelog.

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps): bump js-yaml, sanity and next-sanity
92eb52d 
Bumps [js-yaml](https://github.com/nodeca/js-yaml) to 4.1.1 and updates ancestor dependencies [js-yaml](https://github.com/nodeca/js-yaml), [sanity](https://github.com/sanity-io/sanity/tree/HEAD/packages/sanity) and [next-sanity](https://github.com/sanity-io/next-sanity/tree/HEAD/packages/next-sanity). These dependencies need to be updated together.


Updates `js-yaml` from 4.1.0 to 4.1.1
- [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md)
- [Commits](nodeca/js-yaml@4.1.0...4.1.1)

Updates `sanity` from 3.89.0 to 3.99.0
- [Release notes](https://github.com/sanity-io/sanity/releases)
- [Changelog](https://github.com/sanity-io/sanity/blob/main/packages/sanity/CHANGELOG.md)
- [Commits](https://github.com/sanity-io/sanity/commits/v3.99.0/packages/sanity)

Updates `next-sanity` from 9.11.1 to 9.11.1
- [Release notes](https://github.com/sanity-io/next-sanity/releases)
- [Changelog](https://github.com/sanity-io/next-sanity/blob/main/packages/next-sanity/CHANGELOG.md)
- [Commits](https://github.com/sanity-io/next-sanity/commits/next-sanity-v9.11.1/packages/next-sanity)

---
updated-dependencies:
- dependency-name: js-yaml
  dependency-version: 4.1.1
  dependency-type: indirect
- dependency-name: sanity
  dependency-version: 3.99.0
  dependency-type: direct:production
- dependency-name: next-sanity
  dependency-version: 9.11.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Nov 14, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant