Skip to content

chore(deps): bump postcss from 8.5.8 to 8.5.14 in the npm_and_yarn group across 1 directory#43

Merged
mandarini merged 1 commit intomainfrom
dependabot/npm_and_yarn/npm_and_yarn-754666cf41
May 6, 2026
Merged

chore(deps): bump postcss from 8.5.8 to 8.5.14 in the npm_and_yarn group across 1 directory#43
mandarini merged 1 commit intomainfrom
dependabot/npm_and_yarn/npm_and_yarn-754666cf41

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 24, 2026
edited
Loading

Bumps the npm_and_yarn group with 1 update in the / directory: postcss.

Updates postcss from 8.5.8 to 8.5.14

Release notes

Sourced from postcss's releases.

8.5.14

8.5.13

  • Fixed postcss-scss commend regression.

8.5.12

  • Fixed reading any file via user-generated CSS.
  • Added opts.unsafeMap to disable checks.

8.5.11

  • Fixed nested brackets parsing performance (by @​offset).

8.5.10

  • Fixed XSS via unescaped </style> in non-bundler cases (by @​TharVid).

8.5.9

  • Speed up source map encoding paring in case of the error.
Changelog

Sourced from postcss's changelog.

8.5.14

8.5.13

  • Fixed postcss-scss commend regression.

8.5.12

  • Fixed reading any file via user-generated CSS.
  • Added opts.unsafeMap to disable checks.

8.5.11

  • Fixed nested brackets parsing performance (by @​offset).

8.5.10

  • Fixed XSS via unescaped </style> in non-bundler cases (by @​TharVid).

8.5.9

  • Speed up source map encoding paring in case of the error.
Commits
  • 3ec1394 Release 8.5.14 version
  • f2bb827 Update dependencies
  • d75953d Merge pull request #2084 from 43081j/raw-raws-rawing
  • 68bd213 fix: always call raw to retrieve raw values
  • af58cf1 Release 8.5.13 version
  • f227dbd Temporary ignore pnpm 11 config
  • d3abd40 Update dependencies
  • dd06c3e Revert stringifier changes because of the conflict with postcss-scss
  • ae889c8 Try to fix CI
  • e0093e4 Move to pnpm 11
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 24, 2026
@pkg-pr-new
Copy link
Copy Markdown

pkg-pr-new Bot commented Apr 24, 2026
edited
Loading

Open in StackBlitz

npm i https://pkg.pr.new/@supabase/server@43

commit: 05b7f91

@mandarini
Copy link
Copy Markdown
Collaborator

mandarini commented May 6, 2026

@dependabot rebase

@dependabot
chore(deps): bump postcss in the npm_and_yarn group across 1 directory
05b7f91 
Bumps the npm_and_yarn group with 1 update in the / directory: [postcss](https://github.com/postcss/postcss).


Updates `postcss` from 8.5.8 to 8.5.14
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@8.5.8...8.5.14)

---
updated-dependencies:
- dependency-name: postcss
  dependency-version: 8.5.10
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title chore(deps): bump postcss from 8.5.8 to 8.5.10 in the npm_and_yarn group across 1 directory chore(deps): bump postcss from 8.5.8 to 8.5.14 in the npm_and_yarn group across 1 directory May 6, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-754666cf41 branch from f77f95c to 05b7f91 Compare May 6, 2026 12:30
@mandarini mandarini merged commit b1b2880 into main May 6, 2026
5 checks passed
@mandarini mandarini deleted the dependabot/npm_and_yarn/npm_and_yarn-754666cf41 branch May 6, 2026 12:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mandarini mandarini mandarini approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mandarini