Bump jquery and @types/jquery

[dependabot]

Bumps jquery and @types/jquery. These dependencies needed to be updated together.
Updates jquery from 3.5.0 to 4.0.0

Release notes

Sourced from jquery's releases.

Release 4.0.0

Changelog

https://blog.jquery.com/2026/01/17/jquery-4-0-0/

Ajax

• Don't treat array data as binary (992a1911)
• Allow processData: true even for binary data (ce264e07)
• Support binary data (including FormData) (a7ed9a7b)
• Support headers for script transport even when cross-domain (#5142, 6d136443)
• Support null as success functions in jQuery.get (#4989, 74978b7e)
• Don't auto-execute scripts unless dataType provided (#4822, 025da4dd)
• Make responseJSON work for erroneous same-domain JSONP requests (68b4ec59)
• Execute JSONP error script responses (#4771, a1e619b0)
• Avoid CSP errors in the script transport for async requests (#3969, 07a8e4a1)
• Drop the json to jsonp auto-promotion logic (#1799, #3376, e7b3bc48)
• Overwrite s.contentType with content-type header value, if any (#4119, 7fb90a6b)
• Deprecate AJAX event aliases, inline event/alias into deprecated (23d53928)
• Do not execute scripts for unsuccessful HTTP responses (#4250, 50871a5a)
• Simplify jQuery.ajaxSettings.xhr (#1967, abdc89ac)

Attributes

• Make .attr( name, false ) remove for all non-ARIA attrs (#5388, 063831b6)
• Shave off a couple of bytes (b40a4807)
• Don't stringify attributes in the setter (#4948, 4250b628)
• Drop the toggleClass(boolean|undefined) signature (#3388, a4421101)
• Refactor val(): don't strip carriage return, isolate IE workarounds (ff281991)
• Don't set the type attr hook at all outside of IE (9e66fe9a)

CSS

• Fix dimensions of table <col> elements (#5628, eca2a564)
• Drop the cache in finalPropName (640d5825)
• Tests: Fix tests & support tests under CSS Zoom (#5489, 071f6dba)
• Fix reliableTrDimensions support test for initially hidden iframes (b1e66a5f)
• Selector: Align with 3.x, remove the outer selector.js wrapper (53cf7244)
• Make the reliableTrDimensions support test work with Bootstrap CSS (#5270, 65b85031)
• Make offsetHeight( true ), etc. include negative margins (#3982, bce13b72)
• Return undefined for whitespace-only CSS variable values (#5120) (7eb00196)
• Don’t trim whitespace of undefined custom property (#5105, ed306c02)
• Skip falsy values in addClass( array ), compress code (#4998, a338b407)
• Justify use of rtrim on CSS property values (655c0ed5)
• Trim whitespace surrounding CSS Custom Properties values (#4926, efadfe99)
• Include show, hide & toggle methods in the jQuery slim build (297d18dd)
• Remove the opacity CSS hook (865469f5)
• Workaround buggy getComputedStyle on table rows in IE/Edge (#4490, 26415e08)
• Don't automatically add "px" to properties with a few exceptions (#2795, 00a9c2e5)

... (truncated)

Commits

• 4f2fae0 Release: 4.0.0
• c838cfb Release: remove dist files from main branch
• 9752519 Release: 4.0.0-rc.2
• c128d5d Release: Update AUTHORS.txt
• 5fe9c29 Build: De-dupe three authors via mailmap
• afdd032 Build: Post beta browser tests errors to jquery/dev on Matrix
• 546a1eb Build: Bump the github-actions group with 4 updates
• ec738b3 Build: Fix Chrome beta tests
• c28c26a Build: Add periodic tests on beta versions of browsers
• f513413 Build: Bump the github-actions group with 2 updates
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by timmywil, a new releaser for jquery since your current version.

Updates @types/jquery from 3.5.14 to 4.0.0

Commits

• See full diff in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
universalviewer	Ready	Preview, Comment	Mar 9, 2026 0:54am
universalviewer.dev	Ready	Preview, Comment	Mar 9, 2026 0:54am

[demiankatz]

This upgrade breaks the build, so clearly some deprecated functionality is in use somewhere. We'll need to do some work before this can be merged.

[Geoffsc]

Hi! I pulled down the branch and the below is what I'm getting when I run npm run dev:

> universalviewer@4.2.1 dev
> npm run start

> universalviewer@4.2.1 start
> npx webpack serve -c webpack.dev-server.js

[webpack-cli] Failed to load 'C:\Code\uv-fork\webpack.dev-server.js' config [webpack-cli] Error [ERR_PACKAGE_PATH_NOT_EXPORTED]: Package subpath './dist/jquery.js' is not defined by "exports" in C:\Code\uv-fork\node_modules\jquery\package.json
at exportsNotFound (node:internal/modules/esm/resolve:314:10) at packageExportsResolve (node:internal/modules/esm/resolve:662:9) at resolveExports (node:internal/modules/cjs/loader:685:36) at Module._findPath (node:internal/modules/cjs/loader:752:31) at Module._resolveFilename (node:internal/modules/cjs/loader:1441:27) at require.resolve (node:internal/modules/helpers:163:19) at Object.<anonymous> (C:\Code\uv-fork\webpack.dev-server.js:22:23) at Module._compile (node:internal/modules/cjs/loader:1812:14) at Object..js (node:internal/modules/cjs/loader:1943:10) at Module.load (node:internal/modules/cjs/loader:1533:32) { code: 'ERR_PACKAGE_PATH_NOT_EXPORTED' }

[demiankatz]

Thanks, @Geoffsc! I wonder if the package has renamed or reorganized its files, and we just need to adjust the Webpack configuration to pull jQuery from a slightly different place. If that's the case, I'd start by looking at the jQuery references in webpack.dev-server.js, double-checking the files present in the node_modules jquery directory, and adjusting to make things align correctly. If that helps, parallel changes will likely also be needed in the production-oriented webpack.config.js.

[Geoffsc]

Hi @demiankatz, from quick research I saw it's recommended to update the alias path using path.resolve:

jquery$: path.resolve(__dirname, 'node_modules/jquery/dist/jquery.js')

This resolves the issue with the server not starting, however once it does start I get the following runtime error:

$isFunction is not a function TypeError: $isFunction is not a function at $viewsSettings.debugMode (webpack-internal:///./node_modules/jsviews/jsviews.js:2886:8) at eval (webpack-internal:///./node_modules/jsviews/jsviews.js:2890:4) at eval (webpack-internal:///./node_modules/jsviews/jsviews.js:22:6) at eval (webpack-internal:///./node_modules/jsviews/jsviews.js:28:3) at ./node_modules/jsviews/jsviews.js (http://localhost:8080/vendors-node_modules_iiif_manifold_dist-esmodule_index_js-node_modules_css-loader_dist_runtim-78cd6f.263e1374ac1a0776200d.js:316:1) at __webpack_require__ (http://localhost:8080/UV.js:1457:32) at fn (http://localhost:8080/UV.js:1732:21) at eval (webpack-internal:///./src/content-handlers/iiif/IIIFContentHandler.ts:77:1) at ./src/content-handlers/iiif/IIIFContentHandler.ts (http://localhost:8080/src_content-handlers_iiif_IIIFContentHandler_ts.30c5cab3375fe5b78086.js:58:1) at __webpack_require__ (http://localhost:8080/UV.js:1457:32)

[demiankatz]

Sounds like maybe jsviews is not compatible with the new jQuery. I'm not sure if there's a newer jsviews version available than the one we're using that might fix this, or if this is an indication that we need to move away from using jsviews entirely. I'm not sure where/how extensively that is used, but it might be a good candidate for reviewing within the scope of the current component sprint.

[Geoffsc]

@demiankatz I upgraded jsviews to v1.0.16 and it fixed the issue (we will still need to test thoroughly of course) :)

Created PR #1738 to address!