Skip to content

build(chore): refresh development dependencies#251

Open
Ducksss wants to merge 1 commit into
devfrom
PinZheng/dependency-refresh-2026-07-10
Open

build(chore): refresh development dependencies#251
Ducksss wants to merge 1 commit into
devfrom
PinZheng/dependency-refresh-2026-07-10

Conversation

@Ducksss

@Ducksss Ducksss commented Jul 10, 2026

Copy link
Copy Markdown
Owner

Summary

  • Update Next and eslint-config-next to 16.2.10, Playwright to 1.61.1, Vitest to 4.1.10, Fumadocs MDX to 15.1.0, tsx to 4.23.0, and vite-tsconfig-paths to 6.1.1.
  • Regenerate the dependency graph once with pnpm 10 instead of merging five overlapping lockfile PRs independently.
  • Run the two 58-route browser walks in separate Playwright processes through the resolved local CLI, while preserving filters and snapshot flags.
  • Discover all present and future E2E specs recursively, isolating only the known memory-heavy suites and failing loudly if no specs exist.
  • Group coupled Next, test, and Fumadocs updates in Dependabot to reduce future maintenance churn.
  • Wait for the delegated copy controller to hydrate before browser interaction assertions and explicitly run the Playwright web server in development mode.

Why

The individual dependency PRs were behind dev, shared the same lockfile, and did not validate the final combined graph. Playwright 1.61 also rejects the obsolete tsx/esm loader, while one-process route walks retain enough Turbopack state to exhaust the local heap. This replacement validates the combined update and gives each memory-heavy suite a fresh server boundary without narrowing future test discovery.

Verification

  • npx pnpm@10 install --frozen-lockfile
  • npx pnpm@10 audit — no known vulnerabilities
  • E2E_PORT=3112 npx pnpm@10 run test:release
    • 88 integration tests passed, 1 skipped
    • 21 frontend, 60 visual, and 14 accessibility/Geo tests passed
    • production build generated all 275 static pages
  • Node 20.20.2 compatibility: source build, TypeScript, registry checks, 30 installer tests, and CLI build
  • Follow-up runner checks: 7 focused tests, TypeScript, and git diff --check
  • Independent follow-up review: no Critical, Important, or Minor findings
  • Final CodeRabbit review of all nine changed files — 0 issues
  • Official CodeQL 2.26.0 security-and-quality — no diff-scoped findings
  • Final GitHub/Vercel gates on amended commit
  • Diff-scoped security review — manual review and CodeRabbit found no reportable issue; the native UI setup expired without starting

Supersedes

#222, #244, #245, #246, and #247 were closed after this replacement passed the local combined gate.

@vercel

vercel Bot commented Jul 10, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
payload-components Ready Ready Preview, Comment Jul 10, 2026 2:32pm
payload-components-97bf Ready Ready Preview, Comment Jul 10, 2026 2:32pm

Summary:
- Update Next, Playwright, Vitest, Fumadocs MDX, tsx, and Vite
  path tooling with one regenerated pnpm 10 lockfile.
- Group coupled Dependabot updates to reduce unverified lockfile churn.
- Run heavy browser suites in fresh servers through the local CLI and
  wait for copy-controller hydration before interaction assertions.

Rationale:
- Validate the dependency graph as one unit while bounding Turbopack
  memory and keeping filtered Playwright commands shell-free.
- Keep weekly maintenance focused without masking integration failures.

Tests:
- npx pnpm@10 install --frozen-lockfile
- npx pnpm@10 audit
- E2E_PORT=3112 npx pnpm@10 run test:release
- Node 20: source build, typecheck, registry, install, and CLI build
@Ducksss Ducksss force-pushed the PinZheng/dependency-refresh-2026-07-10 branch from ae2016a to e5d2593 Compare July 10, 2026 14:29
@Ducksss Ducksss marked this pull request as ready for review July 10, 2026 16:42
Copilot AI review requested due to automatic review settings July 10, 2026 16:42

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot was unable to review this pull request because the user who requested the review has reached their quota limit.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants