Update devDependencies (major)

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
@embroider/addon-dev (source)	^7.0.0 -> ^8.0.0
@fortawesome/fontawesome-svg-core (source)	^6.7.2 -> ^7.0.0
@fortawesome/free-brands-svg-icons (source)	^6.7.2 -> ^7.0.0
@fortawesome/free-regular-svg-icons (source)	^6.7.2 -> ^7.0.0
@fortawesome/free-solid-svg-icons (source)	^6.7.2 -> ^7.0.0
@rollup/plugin-node-resolve (source)	^15.3.1 -> ^16.0.0
babel-plugin-debug-macros	^1.0.2 -> ^2.0.0
babel-plugin-ember-template-compilation	^2.4.1 -> ^3.0.0
globby	^14.1.0 -> ^15.0.0
tailwindcss (source)	^3.0.0 -> ^4.0.0
type-fest	4.41.0 -> 5.1.0
unplugin (source)	^1.16.1 -> ^2.0.0
uuid	^11.1.0 -> ^13.0.0
vite (source)	^6.3.5 -> ^7.0.0
vite (source)	^6.2.4 -> ^7.0.0

---

Release Notes

embroider-build/embroider (@​embroider/addon-dev)

v8.1.0

• @​embroider/addon-dev 8.1.0 (minor)
• @​embroider/vite 1.1.2 (patch)

🚀 Enhancement

• @embroider/addon-dev
  • #​2474 Allow declarations plugin to have its command customized (@​NullVoxPopuli)

🐛 Bug Fix

• @embroider/vite
  • #​2469 fix: ensure minify can be disabled (@​Techn1x)

Committers: 2

• Brad Overton (@​Techn1x)
• @​NullVoxPopuli

v8.0.1

• @​embroider/addon-dev 8.0.1 (patch)
• @​embroider/vite 1.0.2 (patch)

🐛 Bug Fix

• @embroider/addon-dev
  • #​2435 Fix issue when your library has no prior app-js entry in package.json (@​NullVoxPopuli)
• @embroider/vite
  • #​2436 Fix resolving EmberCLI in vite prebuild (@​simonihmig)

Committers: 2

• Simon Ihmig (@​simonihmig)
• @​NullVoxPopuli

v8.0.0

• @​embroider/addon-dev 8.0.0 (patch)
• @​embroider/addon-shim 1.10.0 (patch)
• @​embroider/babel-loader-9 4.0.0 (patch)
• @​embroider/broccoli-side-watch 1.1.0 (patch)
• @​embroider/compat 4.0.0 (patch)
• @​embroider/config-meta-loader 1.0.0 (patch)
• @​embroider/core 4.0.0 (patch)
• @​embroider/hbs-loader 4.0.0 (patch)
• @​embroider/macros 1.17.0 (patch)
• @​embroider/reverse-exports 0.1.1 (patch)
• @​embroider/router 3.0.0 (patch)
• @​embroider/shared-internals 3.0.0 (patch)
• @​embroider/vite 1.0.0 (patch)

📝 Documentation

• #​2423 update the readme to more accurately reflect the current system (@​mansona)

🏠 Internal

• @embroider/addon-dev, @embroider/addon-shim, @embroider/babel-loader-9, @embroider/broccoli-side-watch, @embroider/compat, @embroider/config-meta-loader, @embroider/core, @embroider/hbs-loader, @embroider/macros, @embroider/reverse-exports, @embroider/router, @embroider/shared-internals, @embroider/vite
  • #​2427 release main as stable (@​mansona)
• @embroider/addon-dev, @embroider/compat
  • #​2429 Merge stable into main (@​mansona)

Committers: 1

• Chris Manson (@​mansona)

FortAwesome/Font-Awesome (@​fortawesome/fontawesome-svg-core)

v7.1.0

Compare Source

Change log available at https://fontawesome.com/docs/changelog/

v7.0.1

Compare Source

Change log available at https://fontawesome.com/docs/changelog/

v7.0.0

Compare Source

Change log available at https://fontawesome.com/docs/changelog/

rollup/plugins (@​rollup/plugin-node-resolve)

v16.0.3

2025-10-13

Bugfixes

• fix: resolve bare targets of package "imports" using export maps; avoid fileURLToPath(null) (#​1908)

v16.0.2

2025-10-04

Bugfixes

• fix: error thrown with empty entry (#​1893)

v16.0.1

2025-03-11

Bugfixes

• fix: add ignoreSideEffectsForRoot to exported interface (#​1841)

v16.0.0

2024-12-15

Breaking Changes

• feat!: set development or production condition (#​1823)

ember-cli/babel-plugin-debug-macros (babel-plugin-debug-macros)

v2.0.0

babel-plugin-debug-macros 2.0.0 (major)

💥 Breaking Change

• babel-plugin-debug-macros
  • #​103 Expand debug statements in place to permit subsequent Babel plugin translation (@​robbytx)

Committers: 1

• Robby Morgan (@​robbytx)

emberjs/babel-plugin-ember-template-compilation (babel-plugin-ember-template-compilation)

v3.0.1

• babel-plugin-ember-template-compilation 3.0.1 (patch)

🐛 Bug Fix

• babel-plugin-ember-template-compilation
  • #​100 Add's URL to allowed globals list (@​evoactivity)

🏠 Internal

• babel-plugin-ember-template-compilation
  • #​95 releasing alpha->latest (@​ef4)

Committers: 2

• Edward Faulkner (@​ef4)
• Liam Potter (@​evoactivity)

v3.0.0

• babel-plugin-ember-template-compilation 3.0.0-alpha.4 (patch)

🐛 Bug Fix

• babel-plugin-ember-template-compilation
  • #​91 Don't accidentally load ambient config during bindExpression (@​ef4)

Committers: 1

• Edward Faulkner (@​ef4)

sindresorhus/globby (globby)

v15.0.0

Compare Source

Breaking

• Require Node.js 20 4ae42c8

Fixes

• Fix expandDirectories not working with globstar patterns 98d691a
• Fix relative paths with gitignore option b4d78d8
• Fix gitignore patterns in subdirectories not applying recursively 2cb6088
• Fix TypeScript types for globbyStream to correctly yield strings 1c7f3ed

---

tailwindlabs/tailwindcss (tailwindcss)

v4.1.14

Compare Source

Fixed

• Handle ' syntax in ClojureScript when extracting classes (#​18888)
• Handle @variant inside @custom-variant (#​18885)
• Merge suggestions when using @utility (#​18900)
• Ensure that file system watchers created when using the CLI are always cleaned up (#​18905)
• Do not generate grid-column utilities when configuring grid-column-start or grid-column-end (#​18907)
• Do not generate grid-row utilities when configuring grid-row-start or grid-row-end (#​18907)
• Prevent duplicate CSS when overwriting a static utility with a theme key (#​18056)
• Show Lightning CSS warnings (if any) when optimizing/minifying (#​18918)
• Use default export condition for @tailwindcss/vite (#​18948)
• Re-throw errors from PostCSS nodes (#​18373)
• Detect classes in markdown inline directives (#​18967)
• Ensure files with only @theme produce no output when built (#​18979)
• Support Maud templates when extracting classes (#​18988)
• Upgrade: Do not migrate variant = 'outline' during upgrades (#​18922)
• Upgrade: Show version mismatch (if any) when running upgrade tool (#​19028)
• Upgrade: Ensure first class inside className is migrated (#​19031)
• Upgrade: Migrate classes inside *ClassName and *Class attributes (#​19031)

v4.1.13

Compare Source

Changed

• Drop warning from browser build (#​18731)
• Drop exact duplicate declarations when emitting CSS (#​18809)

Fixed

• Don't transition visibility when using transition (#​18795)
• Discard matched variants with unknown named values (#​18799)
• Discard matched variants with non-string values (#​18799)
• Show suggestions for known matchVariant values (#​18798)
• Replace deprecated clip with clip-path in sr-only (#​18769)
• Hide internal fields from completions in matchUtilities (#​18820)
• Ignore .vercel folders by default (can be overridden by @source … rules) (#​18855)
• Consider variants starting with @- to be invalid (e.g. @-2xl:flex) (#​18869)
• Do not allow custom variants to start or end with a - or _ (#​18867, #​18872)
• Upgrade: Migrate aria theme keys to @custom-variant (#​18815)
• Upgrade: Migrate data theme keys to @custom-variant (#​18816)
• Upgrade: Migrate supports theme keys to @custom-variant (#​18817)

v4.1.12

Compare Source

Fixed

• Don't consider the global important state in @apply (#​18404)
• Add missing suggestions for flex-<number> utilities (#​18642)
• Fix trailing ) from interfering with extraction in Clojure keywords (#​18345)
• Detect classes inside Elixir charlist, word list, and string sigils (#​18432)
• Track source locations through @plugin and @config (#​18345)
• Allow boolean values of process.env.DEBUG in @tailwindcss/node (#​18485)
• Ignore consecutive semicolons in the CSS parser (#​18532)
• Center the dropdown icon added to an input with a paired datalist by default (#​18511)
• Extract candidates in Slang templates (#​18565)
• Improve error messages when encountering invalid functional utility names (#​18568)
• Discard CSS AST objects with false or undefined properties (#​18571)
• Allow users to disable URL rebasing in @tailwindcss/postcss via transformAssetUrls: false (#​18321)
• Fix false-positive migrations in addEventListener and JavaScript variable names (#​18718)
• Fix Standalone CLI showing default Bun help when run via symlink on Windows (#​18723)
• Read from --border-color-* theme keys in divide-* utilities for backwards compatibility (#​18704)
• Don't scan .hdr and .exr files for classes by default (#​18734)

v4.1.11

Compare Source

Fixed

• Add heuristic to skip candidate migrations inside emit(…) (#​18330)
• Extract candidates with variants in Clojure/ClojureScript keywords (#​18338)
• Document --watch=always in the CLI's usage (#​18337)
• Add support for Vite 7 to @tailwindcss/vite (#​18384)

v4.1.10

Compare Source

Fixed

• Fix incorrectly generated CSS when using percentages in arbitrary values with calc, e.g.: w-[calc(100%-var(--offset))] (#​18289)

v4.1.9

Compare Source

Fixed

• Correctly parse custom properties with strings containing semicolons (#​18251)
• Upgrade: Migrate arbitrary modifiers without percentage signs to bare values (e.g. /[0.16] → /16) (#​18184)
• Upgrade: Migrate CSS variable shorthands where fallback value contains function call (#​18184)
• Upgrade: Migrate negative arbitrary values to negative bare values (e.g. mb-[-32rem] → -mb-128) (#​18212)
• Upgrade: Do not migrate blur in wire:model.blur (#​18216)
• Don't add spaces around CSS dashed idents when formatting math expressions (#​18220)

v4.1.8

Compare Source

Added

• Improve error messages when @apply fails (#​18059)

Fixed

• Upgrade: Do not migrate declarations that look like candidates in <style> blocks (#​18057, 18068)
• Upgrade: Don't error when looking for tailwindcss in pnpm monorepos (#​18065)
• Upgrade: Don't error when updating dependencies in pnpm monorepos (#​18065)
• Upgrade: Migrate deprecated order-none to order-0 (#​18126)
• Support Leptos class: attributes when extracting classes (#​18093)
• Fix "Cannot read properties of undefined" crash on malformed arbitrary value (#​18133)
• Upgrade: Migrate -mt-[0px] to mt-[0px] instead of the other way around (#​18154)
• Fix Haml pre-processing crash when there is no \n at the end of the file (#​18155)
• Ignore .pnpm-store folders by default (can be overridden by @source … rules) (#​18163)
• Fix PostCSS crash when calling toJSON() (#​18083)

v4.1.7

Compare Source

Added

• Upgrade: Migrate bare values to named values (#​18000)
• Upgrade: Added cache to improve template migration performance (#​18025)

Fixed

• Allow _ before numbers during candidate extraction (#​17961)
• Prevent duplicate suggestions when using @theme and @utility together (#​17675)
• Ensure that media queries within ::before and ::after pseudo selectors create valid CSS rules in production builds (#​17979)
• Ensure that the standalone CLI does not leave temporary files behind (#​17981)
• Ensure -rotate-* utilities properly negate arbitrary values (#​18014)
• Ignore custom variants using :merge(…) selectors in legacy JS plugins (#​18020)
• Ensure classes containing . are properly extracted from Clojure files (#​18038)
• Upgrade: Fix error when using @import … source(…) (#​17963)
• Upgrade: Change casing of utilities with named values to kebab-case to match updated theme variables (#​18017)
• Upgrade: Don't migrate strings that match utility names in Vue attribute bindings other than class (#​18025)

v4.1.6

Compare Source

Added

• Upgrade: Automatically convert arbitrary values to named values when possible (e.g. h-[1lh] to h-lh) (#​17831, #​17854)
• Upgrade: Update dependencies in parallel for improved performance (#​17898)
• Add detailed logging about @source directives, discovered files and scanned files when using DEBUG=* (#​17906, #​17952)
• Add support for generating source maps in development (#​17775)

Fixed

• Ensure negative arbitrary scale values generate negative values (#​17831)
• Fix HAML extraction with embedded Ruby (#​17846)
• Don't scan files for utilities when using @reference (#​17836)
• Fix incorrectly replacing _ with in arbitrary modifier shorthand bg-red-500/(--my_opacity) (#​17889)
• Don't scan .log files for classes by default (#​17906)
• Ensure that custom utilities applying other custom utilities don't swallow nested @apply rules (#​17925)
• Download platform specific package if optionalDependencies are skipped (#​17929)

v4.1.5

Compare Source

Added

• Support using @tailwindcss/upgrade to upgrade between versions of v4.* (#​17717)
• Add h-lh / min-h-lh / max-h-lh utilities (#​17790)
• Transition display, visibility, content-visibility, overlay, and pointer-events when using transition to simplify @starting-style usage (#​17812)

Fixed

• Don't scan .geojson or .db files for classes by default (#​17700, #​17711)
• Hide default shadow suggestions when missing default shadow theme keys (#​17743)
• Replace _ with . in theme suggestions for @utility if surrounded by digits (#​17733)
• Skip color-mix(…) when opacity is 100% (#​17815)
• PostCSS: Ensure that errors in imported stylesheets are recoverable (#​17754)
• Upgrade: Bump all Tailwind CSS related dependencies during upgrade (#​17763)
• Upgrade: Don't add - to variants starting with @ (#​17814)
• Upgrade: Don't format stylesheets that didn't change when upgrading (#​17824)

Changed

• Ignore .hg, .svn, .venv, venv, .yarn, .next, .turbo, .parcel-cache, __pycache__, and .svelte-kit folders by default (can be overridden by @source … rules) (#​17892)
• @source rules that point inside .hg, .svn, .venv, venv, .yarn, .next, .turbo, .parcel-cache, __pycache__, and .svelte-kit folders no longer consider your .gitignore rules (#​17892)

v4.1.4

Compare Source

Added

• Add experimental @tailwindcss/oxide-wasm32-wasi target for running Tailwind in browser environments like StackBlitz (#​17558)

Fixed

• Ensure color-mix(…) polyfills do not cause used CSS variables to be removed (#​17555)
• Ensure color-mix(…) polyfills create fallbacks for theme variables that reference other theme variables (#​17562)
• Fix brace expansion in declining ranges like {10..0..5} and {0..10..-5} (#​17591)
• Work around a Chrome rendering bug when using the skew-* utilities (#​17627)
• Ensure container query variant names can contain hyphens (#​17628)
• Ensure shadow-inherit, inset-shadow-inherit, drop-shadow-inherit, and text-shadow-inherit inherit the shadow color (#​17647)
• Ensure compatibility with array tuples used in fontSize JS theme keys (#​17630)
• Ensure folders with binary file extensions in their names are scanned for utilities (#​17595)
• Upgrade: Convert fontSize array tuple syntax to CSS theme variables (#​17630)

v4.1.3

Compare Source

Fixed

• Show warning when using unsupported bare value data type in --value(…) (#​17464)
• PostCSS: Ensure changes to the input CSS file don't generate stale output when using Turbopack (#​17554)
• Ensure classes are detected in Ruby's %w syntax in Slim templates (#​17557)

v4.1.2

Compare Source

Fixed

• Don't rely on the presence of @layer base to polyfill @property (#​17506)
• Support setting multiple inset shadows as arbitrary values (#​17523)
• Fix drop-shadow-* utilities that are defined with multiple shadows (#​17515)
• PostCSS: Fix race condition when two changes are queued concurrently (#​17514)
• PostCSS: Ensure files containing @tailwind utilities are processed (#​17514)
• Ensure the color-mix(…) polyfill creates fallbacks even when using colors that cannot be statically analyzed (#​17513)
• Fix slow incremental builds with @tailwindcss/vite and @tailwindcss/postscss (especially on Windows) (#​17511)
• Vite: Fix missing CSS file in Qwik setups (#​17533)

v4.1.1

Compare Source

Fixed

• Disable padding in @source inline(…) brace expansion (#​17491)
• Inject polyfills after @import and body-less @layer (#​17493)
• Ensure @tailwindcss/cli does not contain an import for jiti (#​17502)

v4.1.0

Compare Source

Added

• Add details-content variant (#​15319)
• Add inverted-colors variant (#​11693)
• Add noscript variant (#​11929, #​17431)
• Add items-baseline-last and self-baseline-last utilities (#​13888, #​17476)
• Add pointer-none, pointer-coarse, and pointer-fine variants (#​16946)
• Add any-pointer-none, any-pointer-coarse, and any-pointer-fine variants (#​16941)
• Add safe alignment utilities (#​14607)
• Add user-valid and user-invalid variants (#​12370)
• Add wrap-anywhere, wrap-break-word, and wrap-normal utilities (#​12128)
• Add @source inline(…) and @source not inline(…) (#​17147)
• Add @source not "…" (#​17255)
• Add text-shadow-* utilities (#​17389)
• Add mask-* utilities (#​17134)
• Add bg-{position,size}-* utilities for arbitrary values (#​17432)
• Add shadow-*/<alpha>, inset-shadow-*/<alpha>, drop-shadow-*/<alpha>, and text-shadow-*/<alpha> utilities to control shadow opacity (#​17398, #​17434)
• Add drop-shadow-<color> utilities (#​17434)
• Improve compatibility with older versions of Safari and Firefox (#​17435)

Fixed

• Follow symlinks when resolving @source directives (#​17391)
• Don't scan ignored files for classes when changing an ignored file triggers a rebuild using @tailwindcss/cli (#​17255)
• Support negated content rules in legacy JavaScript configuration (#​17255)
• Interpret syntax like @("@​")md:… as @md:… in Razor files (#​17427)
• Disallow top-level braces, top-level semicolons, and unbalanced parentheses and brackets in arbitrary values (#​17361)
• Ensure the --theme(…) function still resolves to the CSS variables when using legacy JS plugins (#​17458)
• Detect used theme variables in CSS module files (#​17433, #​17467)

Changed

• Ignore node_modules by default (can be overridden by @source … rules) (#​17255)
• @source rules that include file extensions or point inside node_modules/ folders no longer consider your .gitignore rules (#​17255)
• Deprecate bg-{left,right}-{top,bottom} in favor of bg-{top,bottom}-{left,right} utilities (#​17378)
• Deprecate object-{left,right}-{top,bottom} in favor of object-{top,bottom}-{left,right} utilities (#​17437)

v4.0.17

Compare Source

Fixed

• Fix an issue causing the CLI to hang when processing Ruby files (#​17383)

v4.0.16

Compare Source

Added

• Add support for literal values in --value('…') and --modifier('…') (#​17304)

Fixed

• Fix class extraction followed by ( in Pug (#​17320)
• Ensure @keyframes for theme animations are emitted if they are referenced following a comma (#​17352)
• Vite: Ensure that updates to an imported CSS file are properly propagated after updating source files (#​17347)
• Pre process Slim templates embedded in Ruby files (#​17336)
• Error when input and output files resolve to the same file when using the CLI (#​17311)
• Add missing suggestions when --spacing(--value(integer, number)) is used (#​17308)
• Add ::-webkit-details-marker pseudo to marker variant (#​17362)

v4.0.15

Compare Source

Fixed

• Fix incorrect angle in -bg-conic-* utilities (#​17174)
• Fix border-[12px_4px] being interpreted as a border-color instead of a border-width (#​17248)
• Work around a crash in Safari 16.4 and 16.5 when using the default Preflight styles (#​17306)
• Pre-process <template lang="…"> in Vue files (#​17252)
• Ensure that all CSS variables used by Preflight are prefixed (#​17036)
• Prevent segfault when loaded in a worker thread on Linux (#​17276)
• Ensure multiple --value(…) or --modifier(…) calls don't delete subsequent declarations (#​17273)
• Fix class extraction followed by ( in Slim (#​17278)
• Export PluginUtils from tailwindcss/plugin for compatibility with v3 (#​17299)
• Remove redundant line-height: initial from Preflight (#​15212)
• Increase Standalone hardware compatibility on macOS x64 builds (#​17267)
• Ensure that the CSS file rebuilds if a new CSS variable is used from templates (#​17301)

Changed

• The --theme(…) function now returns CSS variables from your theme variables unless used inside positions where CSS variables are invalid (e.g. inside @media queries) (#​17036)

v4.0.14

Compare Source

Fixed

• Do not extract candidates with JS string interpolation ${ (#​17142)
• Fix extraction of variants containing . character (#​17153)
• Fix extracting candidates in Clojure/ClojureScript (#​17087)

v4.0.13

Compare Source

Fixed

• Fix Haml pre-processing (#​17051)
• Ensure .node and .wasm files are not scanned for utilities (#​17123)
• Improve performance when scanning JSON files (#​17125)
• Fix extracting candidates containing dots in Haml, Pug, and Slim pre processors (#​17094, #​17085, #​17113)
• Don't create invalid CSS when encountering a link wrapped in square brackets (#​17129)

v4.0.12

Compare Source

Fixed

• Vite: Fix url(…) rebasing in transitively imported CSS files (#​16965)
• PostCSS: Rebase url(…)s in imported CSS files (#​16965)
• Ensure utilities are sorted based on their actual property order (#​16995)
• Ensure strings in Pug and Slim templates are handled correctly (#​17000)
• Ensure classes between } and { are properly extracted (#​17001)
• Fix razor/cshtml pre-processing (#​17027)
• Ensure extracting candidates from JS embedded in a PHP string works as expected (#​17031)

v4.0.11

Compare Source

Fixed

• Ensure classes containing -- are extracted correctly (#​16972)
• Ensure classes containing numbers followed by dash or underscore are extracted correctly (#​16980)
• Ensure arbitrary container queries are extracted correctly (#​16984)
• Ensure classes ending in [ are extracted in Slim templating language (#​16985)
• Ensure arbitrary variables with data types are extracted correctly (#​16986)

v4.0.10

Compare Source

Added

• Add col-<number> and row-<number> utilities for grid-column and grid-row (#​15183)

Fixed

• Ensure not-* does not remove :is(…) from variants (#​16825)
• Ensure @keyframes are correctly emitted when using a prefix (#​16850)
• Don't swallow @utility declarations when @apply is used in nested rules (#​16940)
• Ensure outline-hidden behaves like outline-none outside of forced colors mode (#​16943)
• Allow !important on CSS variables again (#​16873)
• Vite: Do not crash when encountering an .svg file with # or ? in the filename (#​16957)
• Ensure utilities are properly detected within square brackets (#​16306)
• Ensure utilities are properly detected using Angular's conditional class binding syntax (#​16306)
• Ensure utilities starting with numbers are properly extracted from Slim templates (#​16306)
• Discard arbitrary property candidates that have guaranteed-invalid property names (#​16306)

Changed

• Removed max-w-auto and max-h-auto utilities as they generate invalid CSS (#​16917)
• Replaced the existing candidate extractor with a brand new extractor to improve maintainability, correctness, and performance (#​16306)

v4.0.9

Compare Source

Fixed

• Make JS APIs available to plugins and configs in the Standalone CLI ([#​15934](https://redirect.github.co

---

Configuration

📅 Schedule: Branch creation - "after 9pm on sunday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[bolt-new-by-stackblitz]

Run & review this pull request in StackBlitz Codeflow.

[github-actions]

Project	Preview URL1	Manage
Limber	https://renovate-major-devdependenci.limber-glimdown.pages.dev	on Cloudflare
Tutorial	https://renovate-major-devdependenci.limber-glimmer-tutorial.pages.dev	on Cloudflare

Logs

Footnotes

1. if these branch preview links are not working, please check the logs for the commit-based preview link. There is a character limit of 28 for the branch subdomain, as well as some other heuristics, described here for the sake of implementation ease in deploy-preview.yml, that algo has been omitted. The URLs are logged in the wrangler output, but it's hard to get outputs from a matrix job. ↩

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	ember-repl@​7.0.0 ⏵ 7.0.1	-22		-16	-10
	vite@​6.3.5 ⏵ 7.1.10	+3	+12
	@​fortawesome/​fontawesome-svg-core@​7.1.0
	@​fortawesome/​free-regular-svg-icons@​7.1.0
	@​fortawesome/​free-brands-svg-icons@​7.1.0
	tailwindcss@​3.4.17 ⏵ 4.1.14	+3		-2
	globby@​15.0.0
	@​fortawesome/​free-solid-svg-icons@​7.1.0
	uuid@​13.0.0
	type-fest@​5.1.0

View full report

[socket-security]

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert  (click "▶" to expand/collapse)
Warn		[email protected] has Obfuscated code. Confidence: 0.91 Location: Package overview From: apps/tutorial/package.json → npm/[email protected] ℹ Read more on: This package | This alert | What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at [email protected]. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/[email protected]. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report