chore(deps): bump the production-dependencies group across 1 directory with 5 updates

[dependabot]

Bumps the production-dependencies group with 5 updates in the / directory:

Package	From	To
@x402/core	2.5.0	2.11.0
@x402/evm	2.5.0	2.11.0
viem	2.47.1	2.48.11
prool	0.2.3	0.2.4
tsx	4.21.0	4.21.1

Updates @x402/core from 2.5.0 to 2.11.0

Commits

• af26d09 chore: version python package (#2149)
• ce4748d chore: version typescript packages (#2148)
• 484030b chore(paywall): regenerate bundle + add recurrence guard (#2054)
• 4feebcf fix(site): improve x402 discoverability for scanner (#2128)
• 032295b fix(paywall): use dynamic token decimals instead of hardcoding 6 (#1980)
• 9b99acd refactor: deduplicate checkIfBazaarNeeded across HTTP packages (#1925)
• 60d467d fix: use dynamic decimals in getDisplayAmount instead of hardcoded USDC 6 (#1...
• 05f0e04 feat: add auth-hints extension to streamline scheme-level authentication (#1902)
• bd6d7d4 feat(hedera): add initial @​x402/hedera package (#1360)
• ba1a65a Document ResourceServerExtension hooks property (#2114)
• Additional commits viewable in compare view

Updates @x402/evm from 2.5.0 to 2.11.0

Commits

• af26d09 chore: version python package (#2149)
• ce4748d chore: version typescript packages (#2148)
• 484030b chore(paywall): regenerate bundle + add recurrence guard (#2054)
• 4feebcf fix(site): improve x402 discoverability for scanner (#2128)
• 032295b fix(paywall): use dynamic token decimals instead of hardcoding 6 (#1980)
• 9b99acd refactor: deduplicate checkIfBazaarNeeded across HTTP packages (#1925)
• 60d467d fix: use dynamic decimals in getDisplayAmount instead of hardcoded USDC 6 (#1...
• 05f0e04 feat: add auth-hints extension to streamline scheme-level authentication (#1902)
• bd6d7d4 feat(hedera): add initial @​x402/hedera package (#1360)
• ba1a65a Document ResourceServerExtension hooks property (#2114)
• Additional commits viewable in compare view

Updates viem from 2.47.1 to 2.48.11

Release notes

Sourced from viem's releases.

[email protected]

Patch Changes

• #4585 18ccb586bd40d8410703e426261b0f03e530ade5 Thanks @​gakonst! - viem/tempo: Added wallet_ JSON-RPC Actions for opening send, swap, and deposit flows.

[email protected]

Patch Changes

• #4573 6df91c4bd23bcc83b82b2c058e685fc85d18f98f Thanks @​jxom! - viem/tempo: Added capabilities to TransactionRequestTempo and forwarded it through formatTransactionRequest.

[email protected]

Patch Changes

• #4567 ef3f4334f81bffc40bc2666103d3f2210f6da004 Thanks @​jxom! - viem/tempo: Preserved keyType, keyId, and keyData from the input request when no account is present in formatTransactionRequest.

[email protected]

Patch Changes

• #4564 d55c4a5a74112d594e306b7ed7a714d5b17a0d43 Thanks @​jxom! - Stripped basic-auth credentials (user:pass@) from URLs surfaced in error meta-messages (HttpRequestError, WebSocketRequestError, RpcRequestError, TimeoutError).

[email protected]

Patch Changes

• #4532 cb3206e1039b21e45e4ed17898aa1ff561cdecb4 Thanks @​jxom! - viem/tempo: Added virtual address actions for the TIP-1022 Address Registry precompile: virtualAddress.getMasterAddress, virtualAddress.resolve, virtualAddress.registerMaster, virtualAddress.registerMasterSync. Re-exported VirtualAddress and VirtualMaster from ox/tempo.

[email protected]

Patch Changes

• #4537 bc4be026420daba9c682412ceb5840526ae7fdd1 Thanks @​tmm! - Re-exported Bytes, PublicKey, and Secp256k1 from viem/tempo.

[email protected]

Patch Changes

• #4526 28fcb0d487ecc525d687201b4eb47136ace7f7b9 Thanks @​mk0walsk! - Added OP Stack chain config to Zircuit.

• #4520 3e88a77f8eb92fa1ce4410ad14bdbab8f04cce4b Thanks @​pxrl! - Added Tron block time

• 67d979c678c4835ace58c00e43eaf2291cd5764b Thanks @​jxom! - Fixed prepareTransactionRequest to preserve nonce: 0 instead of dropping it.

• #4455 c0c09a6adf8cafc75f3ace8b892e57f41538baa7 Thanks @​nikicat! - Fixed LogTopic type to accept readonly arrays.

• 59b69da17293f626650f211f0129b7ccfdaf957d Thanks @​jxom! - Added resolveAccessKey to support alternative access key formats ({ address, type }, { publicKey, type }) in addition to { accessKeyAddress, keyType } for signKeyAuthorization and access key actions.

• #4428 30ac0cf8517a013d9869cf2a9c2a652c80abaf46 Thanks @​hashcashier! - Replaced manual extraData decoding with l2SequenceNumber() contract call in getGames.

[email protected]

Patch Changes

... (truncated)

Commits

• 0235844 chore: version package (#4587)
• b243024 docs: add wallet actions
• 18ccb58 feat(tempo): add wallet actions (#4585)
• 39a98f7 chore: snaps
• f806162 chore: audit
• d18c7dc chore: version package (#4578)
• 54db4f4 chore: inline @​deprecated on statusSepolia exports
• 677aff4 chore: biome auto-fix duplicate export declarations
• d413d1b types: add tempo virtual address capability (#4579)
• 79800d2 chore: version package (#4577)
• Additional commits viewable in compare view

Updates prool from 0.2.3 to 0.2.4

Changelog

Sourced from prool's changelog.

0.2.4

Patch Changes

• #73 18283b9 Thanks @​brendanjryan! - Fixed testcontainers Tempo instance to use exposed ports instead of host networking for macOS compatibility. Containers now bind to 127.0.0.1 with dynamically mapped ports, resolving connectivity issues on non-Linux platforms.

• #71 474e091 Thanks @​brendanjryan! - Made the testcontainers Tempo instance startup timeout configurable via startupTimeout. This also introduces a shared internal container-options shape for testcontainers-backed instances, so future container adapters can reuse the same option pattern. The default timeout remains 10_000ms.

Commits

• dd69891 chore: version packages (#72)
• 18283b9 chore: add missing changeset for PR #69 (exposed ports fix) (#73)
• 8b2ab04 chore: up
• 0be0728 ci: install tempo binary in test workflow (#70)
• 474e091 feat: make testcontainer tempo startup timeout configurable (#71)
• c6c3e63 fix: replace host networking with exposed ports for macOS compatibility (#69)
• See full diff in compare view

Updates tsx from 4.21.0 to 4.21.1

Release notes

Sourced from tsx's releases.

v4.21.1

4.21.1 (2026-05-14)

Bug Fixes

• support Node 20.11/21.2 import.meta paths (acf3d8f)
• support Node.js 24.15.0 (c1d2d45)
• support Node.js 26.1.0 and 25.9.0 (1d7e528)

---

This release is also available on:

• npm package (@​latest dist-tag)

Commits

• acf3d8f fix: support Node 20.11/21.2 import.meta paths
• 4bbef80 test: cover configDir paths without baseUrl
• dddc5ce test: cover sync-hook watch reruns and cleanup retries
• 09e8f8c test: assert CLI runs without warnings
• 1d7e528 fix: support Node.js 26.1.0 and 25.9.0
• c1d2d45 fix: support Node.js 24.15.0
• d04672d test: update node version feature gates
• abd863f build: bundle get-tsconfig v5
• 98f9418 chore: remove Sevalla as premium sponsor
• d04354f chore: update docs URL to tsx.hirok.io
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for tsx since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!