Skip to content

Bump langchain from 1.0.4 to 1.2.25 #5755

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
dependabot wants to merge 1 commit into
base: develop
Choose a base branch
from
+1,070 −82

Bump langchain from 1.0.4 to 1.2.25

ebe3938
Select commit
Loading
Failed to load commit list.
Open

Bump langchain from 1.0.4 to 1.2.25 #5755

Bump langchain from 1.0.4 to 1.2.25
ebe3938
Select commit
Loading
Failed to load commit list.
StepSecurity Actions Security / StepSecurity Required Checks succeeded Feb 23, 2026 in 6s

StepSecurity Required Checks

Finished StepSecurity Required Checks

  • Pwn Request Vulnerabilities Check - Checks for Pwn Request vulnerabilities in the PR via risky triggers
  • Script Injection Check - Checks for script injection vulnerabilities in the PR
  • NPM Compromised Packages Check - Checks for compromised npm package versions in the PR
  • NPM Package Cooldown Check - Fails if any package version in the PR was released within the configured cooldown period, helping to avoid brand-new (and potentially unreviewed or malicious) releases

Details

✅ Script Injection Vulnerabilities Check

No Script Injection vulnerabilities found in this PR.

✅ Pwn Request Vulnerabilities Check

No Pwn Request vulnerabilities found in this PR.

✅ NPM Compromised Packages Check

No Compromised npm packages are added in current PR.

✅ NPM Package Cooldown Check

No npm package upgrades to recent releases found in current PR.

The following npm packages are inspected in current PR (showing first 50 of 70 packages)

Package Name Previous Version Current Version file Current Version Release Date
langsmith 0.5.6 yarn.lock 2026-02-22T23:24:59Z
minimatch 5.1.7 yarn.lock 2026-02-22T02:16:33Z
acorn 8.16.0 yarn.lock 2026-02-19T15:06:28Z
acorn-walk 8.3.5 yarn.lock 2026-02-19T15:03:08Z
langchain 1.0.4 1.2.25 yarn.lock 2026-02-18T05:12:09Z
langchain 1.0.4 1.2.25 ai-service/package.json 2026-02-18T05:12:09Z
hardhat 2.28.6 yarn.lock 2026-02-12T09:57:12Z
qs 6.14.2 yarn.lock 2026-02-11T23:39:28Z
lodash 4.17.23 yarn.lock 2026-01-21T17:29:52Z
diff 5.2.2 yarn.lock 2026-01-20T13:06:48Z
p-queue 9.1.0 yarn.lock 2026-01-05T19:39:50Z
send 0.19.2 yarn.lock 2025-12-15T19:29:04Z
serve-static 1.16.3 yarn.lock 2025-12-15T19:12:56Z
p-retry 7.1.1 yarn.lock 2025-12-09T21:15:14Z
ethers 6.16.0 yarn.lock 2025-12-03T05:30:37Z
express 4.22.1 yarn.lock 2025-12-01T20:50:41Z
finalhandler 1.3.2 yarn.lock 2025-12-01T15:59:50Z
body-parser 1.20.4 yarn.lock 2025-12-01T15:53:40Z
raw-body 2.5.3 yarn.lock 2025-11-25T15:23:48Z
http-errors 2.0.1 yarn.lock 2025-11-20T19:12:22Z
is-network-error 1.3.0 yarn.lock 2025-09-18T16:43:20Z
uuid 13.0.0 yarn.lock 2025-09-08T18:43:39Z
chalk 5.6.2 yarn.lock 2025-09-08T14:47:54Z
tinyglobby 0.2.15 yarn.lock 2025-09-06T18:52:04Z
fdir 6.5.0 yarn.lock 2025-08-14T16:56:03Z
picomatch 4.0.3 yarn.lock 2025-07-15T19:39:26Z
micro-packed 0.7.3 yarn.lock 2025-04-24T16:00:07Z
micro-eth-signer 0.14.0 yarn.lock 2025-03-01T01:24:00Z
stacktrace-parser 0.1.11 yarn.lock 2025-02-18T07:50:20Z
readdirp 4.1.2 yarn.lock 2025-02-14T17:27:21Z
obliterator 2.0.5 yarn.lock 2025-01-06T15:26:59Z
chokidar 4.0.3 yarn.lock 2024-12-18T22:21:34Z
mocha 10.8.2 yarn.lock 2024-10-30T16:32:22Z
json-stream-stringify 3.1.6 yarn.lock 2024-10-05T14:51:41Z
complex-esm 2.1.1-esm1 yarn.lock 2024-09-25T10:48:21Z
immutable 4.3.7 yarn.lock 2024-07-22T12:17:44Z
ethereum-cryptography 2.2.1 yarn.lock 2024-07-01T15:39:03Z
ws 7.5.10 yarn.lock 2024-06-16T14:48:28Z
solc 0.8.26 yarn.lock 2024-05-21T11:34:13Z
serialize-javascript 6.0.2 yarn.lock 2024-01-09T01:06:31Z
ts-node 10.9.2 yarn.lock 2023-12-08T12:04:46Z
workerpool 6.5.1 yarn.lock 2023-10-11T09:00:08Z
keccak 3.0.4 yarn.lock 2023-09-20T07:49:58Z
cookie-signature 1.0.7 yarn.lock 2023-04-12T23:59:10Z
v8-compile-cache-lib 3.0.1 yarn.lock 2022-04-16T01:03:39Z
cookie 0.4.2 yarn.lock 2022-02-02T23:29:30Z
mnemonist 0.38.5 yarn.lock 2021-10-27T20:41:28Z
commander 8.3.0 yarn.lock 2021-10-22T07:02:06Z
ansi-align 3.0.1 yarn.lock 2021-09-27T11:53:48Z
boxen 5.1.2 yarn.lock 2021-09-17T05:31:40Z
⏲️ History

Previous invocation results of same check:

✅ Script Injection Vulnerabilities Check

No Script Injection vulnerabilities found in this PR.

✅ Pwn Request Vulnerabilities Check

No Pwn Request vulnerabilities found in this PR.

✅ NPM Compromised Packages Check

No Compromised npm packages are added in current PR.

✅ NPM Package Cooldown Check

No npm package upgrades to recent releases found in current PR.

The following npm packages are inspected in current PR (showing first 50 of 70 packages)

Package Name Previous Version Current Version file Current Version Release Date
langsmith 0.5.6 yarn.lock 2026-02-22T23:24:59Z
minimatch 5.1.7 yarn.lock 2026-02-22T02:16:33Z
acorn 8.16.0 yarn.lock 2026-02-19T15:06:28Z
acorn-walk 8.3.5 yarn.lock 2026-02-19T15:03:08Z
langchain 1.0.4 1.2.25 package.json 2026-02-18T05:12:09Z
langchain 1.0.4 1.2.25 yarn.lock 2026-02-18T05:12:09Z
hardhat 2.28.6 yarn.lock 2026-02-12T09:57:12Z
qs 6.14.2 yarn.lock 2026-02-11T23:39:28Z
lodash 4.17.23 yarn.lock 2026-01-21T17:29:52Z
diff 5.2.2 yarn.lock 2026-01-20T13:06:48Z
p-queue 9.1.0 yarn.lock 2026-01-05T19:39:50Z
send 0.19.2 yarn.lock 2025-12-15T19:29:04Z
serve-static 1.16.3 yarn.lock 2025-12-15T19:12:56Z
p-retry 7.1.1 yarn.lock 2025-12-09T21:15:14Z
ethers 6.16.0 yarn.lock 2025-12-03T05:30:37Z
express 4.22.1 yarn.lock 2025-12-01T20:50:41Z
finalhandler 1.3.2 yarn.lock 2025-12-01T15:59:50Z
body-parser 1.20.4 yarn.lock 2025-12-01T15:53:40Z
raw-body 2.5.3 yarn.lock 2025-11-25T15:23:48Z
http-errors 2.0.1 yarn.lock 2025-11-20T19:12:22Z
is-network-error 1.3.0 yarn.lock 2025-09-18T16:43:20Z
uuid 13.0.0 yarn.lock 2025-09-08T18:43:39Z
chalk 5.6.2 yarn.lock 2025-09-08T14:47:54Z
tinyglobby 0.2.15 yarn.lock 2025-09-06T18:52:04Z
fdir 6.5.0 yarn.lock 2025-08-14T16:56:03Z
picomatch 4.0.3 yarn.lock 2025-07-15T19:39:26Z
micro-packed 0.7.3 yarn.lock 2025-04-24T16:00:07Z
micro-eth-signer 0.14.0 yarn.lock 2025-03-01T01:24:00Z
stacktrace-parser 0.1.11 yarn.lock 2025-02-18T07:50:20Z
readdirp 4.1.2 yarn.lock 2025-02-14T17:27:21Z
obliterator 2.0.5 yarn.lock 2025-01-06T15:26:59Z
chokidar 4.0.3 yarn.lock 2024-12-18T22:21:34Z
mocha 10.8.2 yarn.lock 2024-10-30T16:32:22Z
json-stream-stringify 3.1.6 yarn.lock 2024-10-05T14:51:41Z
complex-esm 2.1.1-esm1 yarn.lock 2024-09-25T10:48:21Z
immutable 4.3.7 yarn.lock 2024-07-22T12:17:44Z
ethereum-cryptography 2.2.1 yarn.lock 2024-07-01T15:39:03Z
ws 7.5.10 yarn.lock 2024-06-16T14:48:28Z
solc 0.8.26 yarn.lock 2024-05-21T11:34:13Z
serialize-javascript 6.0.2 yarn.lock 2024-01-09T01:06:31Z
ts-node 10.9.2 yarn.lock 2023-12-08T12:04:46Z
workerpool 6.5.1 yarn.lock 2023-10-11T09:00:08Z
keccak 3.0.4 yarn.lock 2023-09-20T07:49:58Z
cookie-signature 1.0.7 yarn.lock 2023-04-12T23:59:10Z
v8-compile-cache-lib 3.0.1 yarn.lock 2022-04-16T01:03:39Z
cookie 0.4.2 yarn.lock 2022-02-02T23:29:30Z
mnemonist 0.38.5 yarn.lock 2021-10-27T20:41:28Z
commander 8.3.0 yarn.lock 2021-10-22T07:02:06Z
ansi-align 3.0.1 yarn.lock 2021-09-27T11:53:48Z
boxen 5.1.2 yarn.lock 2021-09-17T05:31:40Z
⏲️ History

Previous invocation results of same check:

✅ Pwn Request Vulnerabilities Check

No Pwn Request vulnerabilities found in this PR.

✅ Script Injection Vulnerabilities Check

No Script Injection vulnerabilities found in this PR.

✅ NPM Compromised Packages Check

No Compromised npm packages are added in current PR.

❌ NPM Package Cooldown Check

The following npm packages added in current PR are recent versions(not older than 2 days). This check will pass at 2026-02-25T23:24:59Z

Package Name Previous Version Current Version file Current Version Release Date
langsmith 0.5.6 yarn.lock 2026-02-22T23:24:59Z
minimatch 5.1.7 yarn.lock 2026-02-22T02:16:33Z
⏲️ History

Previous invocation results of same check:

View more details on StepSecurity Actions Security