Bump the npm_and_yarn group across 1 directory with 15 updates

[dependabot]

Bumps the npm_and_yarn group with 12 updates in the / directory:

Package	From	To
svelte	3.49.0	5.2.10
@sveltejs/vite-plugin-svelte	1.0.1	5.0.1
svelte-check	2.8.0	4.1.0
svelte-preprocess	4.10.7	6.0.3
vite	3.2.10	3.2.11
@grpc/grpc-js	1.9.14	1.9.15
@grpc/grpc-js	1.8.21	1.9.15
basic-auth-connect	1.0.0	1.1.0
body-parser	1.20.2	1.20.3
express	4.19.2	4.21.1
braces	3.0.2	3.0.3
ws	7.4.6	7.5.10
rollup	2.79.1	2.79.2

Updates svelte from 3.49.0 to 5.2.10

Release notes

Sourced from svelte's releases.

[email protected]

Patch Changes

• fix: correctly remove unused selectors in middle of selector lists (#14448)

• chore: upgrade esm-env for Vite 6 support (#14460)

• fix: strip exported TypeScript function overloads (#14458)

[email protected]

Patch Changes

• fix: show :then block for null/undefined value (#14440)

• fix: relax html parent validation (#14442)

• fix: prevent memory leak when creating deriveds inside untrack (#14443)

• fix: disregard TypeScript nodes when pruning CSS (#14446)

[email protected]

Patch Changes

• fix: correctly prune each blocks (#14403)

• fix: provide temporary LegacyComponentType (#14257)

• fix: attach spread attribute events synchronously (#14387)

• fix: ensure last empty text node correctly hydrates (#14425)

• fix: correctly prune key blocks (#14403)

[email protected]

Patch Changes

• fix: always use set for private identifiers (#14378)

[email protected]

Patch Changes

• fix: remove template expression inlining (#14374)

[email protected]

Patch Changes

• fix: correctly handle srcObject attribute on video elements (#14369)

• add contentvisibilityautostatechange event to element definitions (#14373)

... (truncated)

Changelog

Sourced from svelte's changelog.

svelte

4.2.3

Patch Changes

• fix: improve a11y-click-events-have-key-events message (#9358)

• fix: more robust hydration of html tag (#9184)

4.2.2

Patch Changes

• fix: support camelCase properties on custom elements (#9328)

• fix: add missing plaintext-only value to contenteditable type (#9242)

• chore: upgrade magic-string to 0.30.4 (#9292)

• fix: ignore trailing comments when comparing nodes (#9197)

4.2.1

Patch Changes

• fix: update style directive when style attribute is present and is updated via an object prop (#9187)

• fix: css sourcemap generation with unicode filenames (#9120)

• fix: do not add module declared variables as dependencies (#9122)

• fix: handle svelte:element with dynamic this and spread attributes (#9112)

• fix: silence false positive reactive component warning (#9094)

• fix: head duplication when binding is present (#9124)

• fix: take custom attribute name into account when reflecting property (#9140)

• fix: add indeterminate to the list of HTMLAttributes (#9180)

• fix: recognize option value on spread attribute (#9125)

4.2.0

Minor Changes

• feat: move svelteHTML from language-tools into core to load the correct svelte/element types (#9070)

... (truncated)

Commits

• dcef8ff Version Packages (#14451)
• d6fc176 fix: strip exported TypeScript function overloads (#14458)
• 41e47a4 chore: upgrade esm-env for Vite 6 support (#14460)
• e9ff665 chore: minor css-prune.js tweaks (#14457)
• 19d80ad fix: css pruning producing invalid css (#14448)
• 4f318e6 chore: remove unused dep and upgrade another one (#14449)
• 1a8aab0 chore: remove node.parent and node.prev (#14447)
• 3a6bf10 Version Packages (#14444)
• 45417a3 fix: addresses memory leak when creating deriveds inside untrack (#14443)
• a6ad5af fix: disregard TypeScript nodes when pruning CSS (#14446)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by svelte-admin, a new releaser for svelte since your current version.

Updates @sveltejs/vite-plugin-svelte from 1.0.1 to 5.0.1

Release notes

Sourced from @​sveltejs/vite-plugin-svelte's releases.

@​sveltejs/vite-plugin-svelte@​5.0.1

Patch Changes

• Fix peer dependencies warning (#1038)

@​sveltejs/vite-plugin-svelte@​5.0.0

Major Changes

• Handle Vite 6 breaking change and remove Vite 5 handling (#1020)

• Support Vite 6 (#1026)

Minor Changes

• Add esm-env to ssr.noExternal by default to resolve its conditions with Vite (#1020)

• Support ?inline query on Svelte style virtual modules (#1024)

Patch Changes

• remove vite6 beta from peer range (#1035)

• Allow script tags to span multiple lines (0db95a9)

• Updated dependencies [4fefbc2, e262266]:

  • @​sveltejs/vite-plugin-svelte-inspector@​4.0.0

@​sveltejs/vite-plugin-svelte@​5.0.0-next.0

Major Changes

• Handle Vite 6 breaking change and remove Vite 5 handling (#1020)

• Support Vite 6 (#1026)

Minor Changes

• Add esm-env to ssr.noExternal by default to resolve its conditions with Vite (#1020)

• Support ?inline query on Svelte style virtual modules (#1024)

Patch Changes

• Allow script tags to span multiple lines (0db95a9)

• Updated dependencies [e262266]:

... (truncated)

Changelog

Sourced from @​sveltejs/vite-plugin-svelte's changelog.

5.0.1

Patch Changes

• Fix peer dependencies warning (#1038)

5.0.0

Major Changes

• Handle Vite 6 breaking change and remove Vite 5 handling (#1020)

• Support Vite 6 (#1026)

Minor Changes

• Add esm-env to ssr.noExternal by default to resolve its conditions with Vite (#1020)

• Support ?inline query on Svelte style virtual modules (#1024)

Patch Changes

• remove vite6 beta from peer range (#1035)

• Allow script tags to span multiple lines (0db95a9)

• Updated dependencies [4fefbc2, e262266]:

  • @​sveltejs/vite-plugin-svelte-inspector@​4.0.0

5.0.0-next.0

Major Changes

• Handle Vite 6 breaking change and remove Vite 5 handling (#1020)

• Support Vite 6 (#1026)

Minor Changes

• Add esm-env to ssr.noExternal by default to resolve its conditions with Vite (#1020)

... (truncated)

Commits

• 0c06e1f Version Packages (#1039)
• 5389d31 fix: handle peer dep warning (#1038)
• 5192b92 Version Packages (#1036)
• 4fefbc2 release vps5 (#1035)
• 20f45b2 Version Packages (next) (#1027)
• 0863cda chore(deps): update all non-major dependencies (#1031)
• 973ba75 feat: support ?inline query on svelte style virtual modules (#1024)
• 0db95a9 fix: use script lang regex from svelte compiler (#1028)
• e3344b4 feat!: vite 6 support (#1020)
• e262266 feat: support vite 6 and enter prerelease (#1026)
• Additional commits viewable in compare view

Updates svelte-check from 2.8.0 to 4.1.0

Release notes

Sourced from svelte-check's releases.

svelte-check-4.1.0

• fix: don't move appended content from previous node while hoisting interface (#2596)
• fix: ensure hoisted interfaces are moved after hoisted imports (#2597)
• fix: preserve bind:... mapping on elements for better source maps
• feat: prepare for some upcoming features of Svelte 5

svelte-check-4.0.9

• fix: detect shadowed variables/types during type hoisting (#2590)

svelte-check-4.0.8

• fix: fall back to any instead of unknown for untyped $props (#2582)
• fix: robustify and fix file writing (#2584)
• fix: hoist types related to $props rune if possible (#2571)

svelte-check-4.0.7

• fix: $props: infer types for $bindable, infer function type from arrow function

svelte-check-4.0.6

• chore: autotype const load = ... declarations (#2540)
• chore: provide component instance type in Svelte 5 (#2553)
• chore: support typescript 5.6 (#2545)
• fix: infer object and array shapes from fallback types (#2562)

svelte-check-4.0.5

• fix: include named exports in svelte 5 type (#2528)

svelte-check-4.0.4

• fix: relax component constructor type (#2524)

svelte-check-4.0.3

• breaking(svelte5): only generate function component shape in runes mode (#2517). This means you can no longer just do Component in type positions. Instead you need to prepend it with typeof. Here's how you do it:
  • ...when typing a component instance: Before: let x: Component. After: let x: ReturnType<typeof Component>
  • ...when typing a component constructor/function: Before let x: typeof Component. After let x: typeof Component (no change)
• fix: revert additional two-way-binding checks as they were causing bugs (#2508)
• fix: include files indirectly belonging to a project into correct project (#2488)
• fix: check project files update more aggressively before assigning service (#2518)
• chore: upgrade to chokidar 4 (#2502)

svelte-check-4.0.2

• fix: ensure components typed through Svelte 5's Component interface get proper intellisense

svelte-check-4.0.1

• fix: remove ancient process augmentation from internal d.ts file

svelte-check-4.0.0

• chore: bump magic-string (#2476)
• chore: switch from fast-glob to fdir (#2433)
• fix: detect tag (#2482)
• feat: better type checking for bindings in Svelte 5 (#2477)
• feat: replace svelte-preprocess with barebones TS preprocessor (#2452)

... (truncated)

Commits

• cda5c86 fix: preserve bind:... mapping on elements for better source maps
• be44125 feat: support bind:value={get, set}
• 695c660 chore: bump prettier-plugin-svelte
• 9a5a6af feat: hoist snippets to module context if possible (#2601)
• 050ecc1 chore: consolidate template walking logic (#2600)
• cd1758b feat: support \<svelte:html> (#2599)
• 078f9a0 feat: support \<svelte:bounday> (#2598)
• a1b4a64 fix: ensure hoisted interfaces are moved after hoisted imports (#2597)
• c21de66 fix: don't move appended content from previous node while hoisting interface ...
• b6cac97 fix: use original file path casing for shim files (#2591)
• Additional commits viewable in compare view

Updates svelte-preprocess from 4.10.7 to 6.0.3

Changelog

Sourced from svelte-preprocess's changelog.

6.0.3 (2024-09-26)

Bug Fixes

• add pug mixins to support svelte-5 syntax (#654) (9d49f3d)
• ignore sass deprecation warning (#657) (9b54325), closes #656

6.0.2 (2024-07-09)

Bug Fixes

• remove customConditions tsconfig option (#648) (afb80ae), closes #646

6.0.1 (2024-06-14)

Bug Fixes

• deprecate default export in favor of named export (#641) (a43de10), closes #591

6.0.0 (2024-06-12)

BREAKING CHANGES

• remove TS mixed imports support, require TS 5.0 or higher
• remove preserve option as it's unnecessary
• require Svelte 4+, Node 18+
• add exports map

Bug Fixes

• adjust globalifySelector to not split selectors with parentheses. (#632) (c435ebd), closes #501
• fix: allow TS filename to be undefined, fixes #488
• fix: adjust Svelte compiler type import
• fix: remove pug types and magic-string from dependencies
• chore: bump peer deps, fixes #553

5.1.4 (2024-04-16)

Bug Fixes

• remove pnpm version restriction (#629) (2713b82)

5.1.3 (2023-12-18)

... (truncated)

Commits

• See full diff in compare view

Updates vite from 3.2.10 to 3.2.11

Release notes

Sourced from vite's releases.

v3.2.11

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

3.2.11 (2024-09-17)

• fix: backport #18112, fs raw query (a6da450), closes #18112
• fix: backport #18115, DOM Clobbering in (2ddd854), closes #18115
• fix(importAnalysis): backport #13712, strip url base before passing as safeModulePaths (5d1d81e), closes #13712

Commits

• 45b8644 release: v3.2.11
• 5d1d81e fix(importAnalysis): backport #13712, strip url base before passing as safeMo...
• 2ddd854 fix: backport #18115, DOM Clobbering in
• a6da450 fix: backport #18112, fs raw query
• See full diff in compare view

Updates @grpc/grpc-js from 1.9.14 to 1.9.15

Release notes

Sourced from @​grpc/grpc-js's releases.

@​grpc/grpc-js 1.9.15

• Avoid buffering significantly more than grpc.max_receive_message_size per received message.

Commits

• 08b0422 Merge pull request from GHSA-7v5v-9h63-cj86
• c75e048 grpc-js: Bump to 1.9.15
• d5d62b4 grpc-js: Avoid buffering significantly more than max_receive_message_size per...
• 02d0344 Merge pull request #2741 from sergiitk/backport-1.9-psm-interop-common-prod-t...
• cf14020 Merge pull request #2729 from sergiitk/psm-interop-common-prod-tests
• da44229 Merge pull request #2738 from murgatroid99/backport-1.9-grpc-js_linkify-it_fix
• 5ae7c8c Merge pull request #2735 from murgatroid99/grpc-js_linkify-it_fix
• eed21ba Merge pull request #2714 from sergiitk/backport-1.9-psm-interop-pkg-dev
• 63763a4 Merge pull request #2712 from sergiitk/psm-interop-pkg-dev
• See full diff in compare view

Updates @grpc/grpc-js from 1.8.21 to 1.9.15

Release notes

Sourced from @​grpc/grpc-js's releases.

@​grpc/grpc-js 1.9.15

• Avoid buffering significantly more than grpc.max_receive_message_size per received message.

Commits

• 08b0422 Merge pull request from GHSA-7v5v-9h63-cj86
• c75e048 grpc-js: Bump to 1.9.15
• d5d62b4 grpc-js: Avoid buffering significantly more than max_receive_message_size per...
• 02d0344 Merge pull request #2741 from sergiitk/backport-1.9-psm-interop-common-prod-t...
• cf14020 Merge pull request #2729 from sergiitk/psm-interop-common-prod-tests
• da44229 Merge pull request #2738 from murgatroid99/backport-1.9-grpc-js_linkify-it_fix
• 5ae7c8c Merge pull request #2735 from murgatroid99/grpc-js_linkify-it_fix
• eed21ba Merge pull request #2714 from sergiitk/backport-1.9-psm-interop-pkg-dev
• 63763a4 Merge pull request #2712 from sergiitk/psm-interop-pkg-dev
• See full diff in compare view

Updates basic-auth-connect from 1.0.0 to 1.1.0

Release notes

Sourced from basic-auth-connect's releases.

1.1.0

What's Changed

Important

• feat: add timing safe equal comparison bac1e6a
  • chore: add [email protected] as dependency
• Fix CVE-2024-47178. See: Advisory: GHSA-7p89-p6hx-q4fw

Other

• 💚 GH workflow CI by @​ctcpip in expressjs/basic-auth-connect#2
• 📄 normalize license by @​ctcpip in expressjs/basic-auth-connect#3
• remove redundant variable declaration by @​UlisesGascon in expressjs/basic-auth-connect#6
• Remove usage of undefined return value by @​UlisesGascon in expressjs/basic-auth-connect#5
• Release v1.1.0 by @​UlisesGascon in expressjs/basic-auth-connect#9

New Contributors

• @​ctcpip made their first contribution in expressjs/basic-auth-connect#2
• @​UlisesGascon made their first contribution in expressjs/basic-auth-connect#6

Full Changelog: expressjs/basic-auth-connect@1.0.0...1.1.0

Commits

• 45decb3 1.1.0
• e6b376e docs: improve documentation
• bac1e6a feat: add timing safe equal comparison
• d3b6a63 chore: remove usage of undefined return value (#5)
• b05baf8 test: remove redundant variable declaration (#6)
• e8f35c6 chore: normalize license
• 8d38a0b ci: migrate to GitHub Actions
• 727b4cd 💚 GH workflow CI
• 9eed03b Fixed the readme header.
• See full diff in compare view

Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for basic-auth-connect since your current version.

Updates body-parser from 1.20.2 to 1.20.3

Release notes

Sourced from body-parser's releases.

1.20.3

What's Changed

Important

• deps: [email protected]
• add depth option to customize the depth level in the parser
• IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity). Documentation

Other changes

• chore: add support for OSSF scorecard reporting by @​inigomarquinez in expressjs/body-parser#522
• ci: fix errors in ci github action for node 8 and 9 by @​inigomarquinez in expressjs/body-parser#523
• fix: pin to [email protected] by @​wesleytodd in expressjs/body-parser#527
• deps: [email protected] by @​melikhov-dev in expressjs/body-parser#521
• Add OSSF Scorecard badge by @​bjohansebas in expressjs/body-parser#531
• Linter by @​UlisesGascon in expressjs/body-parser#534
• Release: 1.20.3 by @​UlisesGascon in expressjs/body-parser#535

New Contributors

• @​inigomarquinez made their first contribution in expressjs/body-parser#522
• @​melikhov-dev made their first contribution in expressjs/body-parser#521
• @​bjohansebas made their first contribution in expressjs/body-parser#531
• @​UlisesGascon made their first contribution in expressjs/body-parser#534

Full Changelog: expressjs/body-parser@1.20.2...1.20.3

Changelog

Sourced from body-parser's changelog.

1.20.3 / 2024-09-10

• deps: [email protected]
• add depth option to customize the depth level in the parser
• IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

Commits

• 1752951 1.20.3
• 39744cf chore: linter (#534)
• b2695c4 Merge commit from fork
• ade0f3f add scorecard to readme (#531)
• 99a1bd6 deps: [email protected] (#521)
• 9478591 fix: pin to [email protected]
• 83db46a ci: fix errors in ci github action for node 8 and 9 (#523)
• 9d4e212 chore: add support for OSSF scorecard reporting (#522)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for body-parser since your current version.

Updates express from 4.19.2 to 4.21.1

Release notes

Sourced from express's releases.

4.21.1

What's Changed

• Backport a fix for CVE-2024-47764 to the 4.x branch by @​joshbuker in expressjs/express#6029
• Release: 4.21.1 by @​UlisesGascon in expressjs/express#6031

Full Changelog: expressjs/express@4.21.0...4.21.1

4.21.0

What's Changed

• Deprecate "back" magic string in redirects by @​blakeembrey in expressjs/express#5935
• [email protected] by @​wesleytodd in expressjs/express#5954
• fix(deps): [email protected] by @​wesleytodd in expressjs/express#5951
• Upgraded dependency qs to 6.13.0 to match qs in body-parser by @​agadzinski93 in expressjs/express#5946

New Contributors

• @​agadzinski93 made their first contribution in expressjs/express#5946

Full Changelog: expressjs/express@4.20.0...4.21.0

4.20.0

What's Changed

Important

• IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
• Remove link renderization in html while using res.redirect

Other Changes

• 4.19.2 Staging by @​wesleytodd in expressjs/express#5561
• remove duplicate location test for data uri by @​wesleytodd in expressjs/express#5562
• feat: document beta releases expectations by @​marco-ippolito in expressjs/express#5565
• Cut down on duplicated CI runs by @​jonchurch in expressjs/express#5564
• Add a Threat Model by @​UlisesGascon in expressjs/express#5526
• Assign captain of encodeurl by @​blakeembrey in expressjs/express#5579
• Nominate jonchurch as repo captain for http-errors, expressjs.com, morgan, cors, body-parser by @​jonchurch in expressjs/express#5587
• docs: update Security.md by @​inigomarquinez in expressjs/express#5590
• docs: update triage nomination policy by @​UlisesGascon in expressjs/express#5600
• Add CodeQL (SAST) by @​UlisesGascon in expressjs/express#5433
• docs: add UlisesGascon as triage initiative captain by @​UlisesGascon in expressjs/express#5605
• deps: encodeurl@~2.0.0 by @​blakeembrey in expressjs/express#5569
• skip QUERY method test by @​jonchurch in expressjs/express#5628
• ignore ETAG query test on 21 and 22, reuse skip util by @​jonchurch in expressjs/express#5639
• add support Node.js@22 in the CI by @​mertcanaltin in expressjs/express#5627
• doc: add table of contents, tc/triager lists to readme by @​mertcanaltin in expressjs/express#5619
• List and sort all projects, add captains by @​blakeembrey in expressjs/express#5653
• docs: add @​UlisesGascon as captain for cookie-parser by @​UlisesGascon in expressjs/express#5666
• ✨ bring back query tests for node 21 by @​ctcpip in expressjs/express#5690
• [v4] Deprecate res.clearCookie accepting options.maxAge and options.expires by @​jonchurch in expressjs/express#5672
• skip QUERY tests for Node 21 only, still not supported by @​jonchurch in expressjs/express#5695

... (truncated)

Changelog

Sourced from express's changelog.

4.21.1 / 2024-10-08

• Backported a fix for CVE-2024-47764

4.21.0 / 2024-09-11

• Deprecate res.location("back") and res.redirect("back") magic string
• deps: [email protected]
  • includes [email protected]
• deps: [email protected]
• deps: [email protected]

4.20.0 / 2024-09-10

• deps: [email protected]
  • Remove link renderization in html while redirecting
• deps: [email protected]
  • Remove link renderization in html while redirecting
• deps: [email protected]
  • add depth option to customize the depth level in the parser
  • IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
• Remove link renderization in html while using res.redirect
• deps: [email protected]
  • Adds support for named matching groups in the routes using a regex
  • Adds backtracking protection to parameters without regexes defined
• deps: encodeurl@~2.0.0
  • Removes encoding of \, |, and ^ to align better with URL spec
• Deprecate passing options.maxAge and options.expires to res.clearCookie
  • Will be ignored in v5, clearCookie will set a cookie with an expires in the past to instruct clients to delete the cookie

Commits

• 8e229f9 4.21.1
• a024c8a fix(deps): [email protected]
• 7e562c6 4.21.0
• 1bcde96 fix(deps): [email protected] (#5946)
• 7d36477 fix(deps): [email protected] (#5951)
• 40d2d8f fix(deps): [email protected]
• 77ada90 Deprecate "back" magic string in redirects (#5935)
• 21df421 4.20.0
• 4c9ddc1 feat: upgrade to [email protected]
• 9ebe5d5 feat: upgrade to [email protected] (#5928)
• Additional commits viewable in compare view

Updates braces from 3.0.2 to 3.0.3

Commits

• 74b2db2 3.0.3
• 88f1429 update eslint. lint, fix unit tests.
• 415d660 Snyk js braces 6838727 (#40)
• 190510f fix tests, skip 1 test in test/braces.expand
• 716eb9f readme bump
• a5851e5 Merge pull request #37 from coderaiser/fix/vulnerability
• 2092bd1 feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
• 9f5b4cf fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
• 98414f9 remove funding file
• 665ab5d update keepEscaping doc (#27)
• Additional commits viewable in compare view

Updates cookie from 0.6.0 to 0.7.1

Release notes

Sourced from cookie's releases.

0.7.1

Fixed

• Allow leading dot for domain (#174)
  • Although not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec
• Add fast path for serialize without options, use obj.hasOwnProperty when parsing (#172)

jshttp/cookie@v0.7.0...v0.7.1

0.7.0

• perf: parse cookies ~10% faster (#144 by @​kurtextrem and #170)
• fix: narrow the validation of cookies to match RFC6265 (#167 by @​bewinsnw)
• fix: add main to package.json for rspack (#166 by @​proudparrot2)

jshttp/cookie@v0.6.0...v0.7.0

Commits

• cf4658f 0.7.1
• 6a8b8f5 Allow leading dot for domain (#174)
• 58015c0 Remove mo...

  Description has been truncated

  Note
  Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[semanticdiff-com]

Review changes with  

Changed Files

File	Status
package-lock.json	24% smaller
package.json	0% smaller

[restack-app]

No applications have been configured for previews targeting branch: master. To do so go to restack console and configure your applications for previews.

[pr-code-reviewer]

👋 Hi there!

Everything looks good!

_{^{Automatically generated with the help of gpt-3.5-turbo.
Feedback? Please don't hesitate to drop me an email at [email protected].}}

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR. (Beta)
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.