- Update all non-major dependencies with digest and pinDigest

[blumilk-renovate]

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update	Pending
@tailwindcss/typography	^0.5.16 -> ^0.5.19			dependencies	patch
@types/leaflet (source)	^1.9.20 -> ^1.9.21			devDependencies	patch
@vitejs/plugin-vue (source)	^5.2.3 -> ^5.2.4			devDependencies	patch
actions/cache	v4.2.3 -> v4.2.4			action	patch
actions/checkout	v4.2.2 -> v4.3.1			action	minor
autoprefixer	^10.4.21 -> ^10.4.22			devDependencies	patch
axllent/mailpit (source)	v1.20.5 -> v1.20.7				patch
composer/composer	2.8.9-bin -> 2.8.12-bin			stage	patch
eslint-config-prettier	^9.1.0 -> ^9.1.2			devDependencies	patch
eslint-plugin-tailwindcss	^3.18.0 -> ^3.18.2			devDependencies	patch
guzzlehttp/guzzle (source)	^7.9.2 -> ^7.9.3			require	patch
inertiajs/inertia-laravel	^2.0 -> ^2.0.11			require	patch
laravel-vite-plugin	^1.2.0 -> ^1.3.0			dependencies	minor
laravel/framework (source)	^12.10 -> ^12.10.2			require	patch
laravel/sanctum	^4.0 -> ^4.0.8			require	patch
laravel/socialite (source)	^5.21 -> ^5.23.2			require	minor
laravel/tinker	^2.10.1 -> ^2.10.2			require	patch
node	22.14.0-bullseye-slim -> 22.21.1-bullseye-slim			stage	minor
nunomaduro/collision	^8.5.0 -> ^8.8.3			require-dev	patch
nunomaduro/larastan	^3.1.0 -> ^3.8.0			require-dev	minor
phpunit/phpunit (source)	^11.5.9 -> ^11.5.44			require-dev	patch	11.5.45
postcss (source)	^8.5.3 -> ^8.5.6			devDependencies	patch
prettier (source)	^3.6.2 -> ^3.7.2			devDependencies	minor	3.7.3
prettier-plugin-tailwindcss	^0.6.14 -> ^0.7.1			devDependencies	minor	0.7.2
shivammathur/setup-php	2.33.0 -> 2.36.0			action	minor
spatie/laravel-activitylog (source)	^4.10 -> ^4.10.2			require	patch
spatie/laravel-ignition (source)	^2.9.0 -> ^2.9.1			require-dev	patch
spatie/laravel-permission	^6.19 -> ^6.23.0			require	minor
tailwindcss (source)	^3.4.17 -> ^3.4.18			dependencies	patch
vue (source)	^3.5.13 -> ^3.5.25			dependencies	patch
vue-i18n (source)	^11.1.10 -> ^11.1.12			dependencies	patch
vue-tsc (source)	^2.2.8 -> ^2.2.12			devDependencies	patch

---

Release Notes

tailwindlabs/tailwindcss-typography (@​tailwindcss/typography)

v0.5.19

Compare Source

Fixed

• Fixed broken color styles (#​405)

v0.5.18

Compare Source

Fixed

• Fixed undefined variable error (#​403)

v0.5.17

Compare Source

Added

• Add modifiers for description list elements (#​357)
• Add prose-picture modifier (#​367)

Fixed

• Include unit in hr border-width value (#​379)
• Ensure <kbd> styles work with Tailwind CSS v4 (#​387)

Changed

• Remove lodash dependencies (#​402)

actions/cache (actions/cache)

v4.2.4

Compare Source

What's Changed

• Update README.md by @​nebuk89 in #​1620
• Upgrade @actions/cache to 4.0.5 and move @protobuf-ts/plugin to dev depdencies by @​Link- in #​1634
• Prepare release 4.2.4 by @​Link- in #​1636

New Contributors

• @​nebuk89 made their first contribution in #​1620

Full Changelog: actions/cache@v4...v4.2.4

actions/checkout (actions/checkout)

v4.3.1

Compare Source

What's Changed

• Port v6 cleanup to v4 by @​ericsciple in #​2305

Full Changelog: actions/checkout@v4...v4.3.1

v4.3.0

Compare Source

What's Changed

• docs: update README.md by @​motss in #​1971
• Add internal repos for checking out multiple repositories by @​mouismail in #​1977
• Documentation update - add recommended permissions to Readme by @​benwells in #​2043
• Adjust positioning of user email note and permissions heading by @​joshmgross in #​2044
• Update README.md by @​nebuk89 in #​2194
• Update CODEOWNERS for actions by @​TingluoHuang in #​2224
• Update package dependencies by @​salmanmkc in #​2236
• Prepare release v4.3.0 by @​salmanmkc in #​2237

New Contributors

• @​motss made their first contribution in #​1971
• @​mouismail made their first contribution in #​1977
• @​benwells made their first contribution in #​2043
• @​nebuk89 made their first contribution in #​2194
• @​salmanmkc made their first contribution in #​2236

Full Changelog: actions/checkout@v4...v4.3.0

postcss/autoprefixer (autoprefixer)

v10.4.22

Compare Source

• Fixed stretch prefixes on new Can I Use database.
• Updated fraction.js.

axllent/mailpit (axllent/mailpit)

v1.20.7

Compare Source

Chore

• Update caniemail database

Fix

• SQL error deleting a tag while using tenant-id (#​374)

Test

• Add tenantIDs to tests

v1.20.6

Compare Source

Chore

• Update node dependencies
• Update minimum Go version (1.22.0)
• Update Go dependencies
• Code cleanup
• Update swagger file tests
• Update node dependencies
• Bump Go compile version to 1.23

prettier/eslint-config-prettier (eslint-config-prettier)

v9.1.2

Compare Source

francoismassart/eslint-plugin-tailwindcss (eslint-plugin-tailwindcss)

v3.18.2: Tailwind CSS v4 README

Compare Source

This patch release is the same as v3.8.0, I had to publish patch versions in the regular npm release channel in order to update the README.

Here is a copy of the important message as added in the README:

About Tailwind CSS 4 support

While the development of eslint-plugin-tailwindcss for Tailwind CSS v4 is ongoing, you can use the latest version published on the beta channel to get partial support of Tailwind CSS v4.

npm i eslint-plugin-tailwindcss@beta -D

NB: As we will focus the effort on the full rewrite of the plugin, this version is available "as is" and you may get errors or false positives like for the rule no-contradicting-classname . You can learn more about these issues on GitHub.

You can always disable specific rules if necessary.

This version has been made possible thanks to the work of hyoban and his project tailwind-api-utils.

v3.18.1

Compare Source

inertiajs/inertia-laravel (inertiajs/inertia-laravel)

v2.0.11

Compare Source

What's Changed

• Add PHP 8.5 to test matrix by @​pascalbaljet in #​787
• Support for multiple validation errors per field by @​pascalbaljet in #​784
• Handle array inputs in reloadOnly and reloadExcept by @​hosmelq in #​792
• Handle Connection Exceptions During Health Checks by @​Magnesium38 in #​786

New Contributors

• @​Magnesium38 made their first contribution in #​786

Full Changelog: inertiajs/inertia-laravel@v2.0.10...v2.0.11

v2.0.10

Compare Source

What's Changed

• Include scrollProps metadata when prop is requested to reset by @​pascalbaljet in #​781

Full Changelog: inertiajs/inertia-laravel@v2.0.9...v2.0.10

v2.0.9

Compare Source

What's Changed

• Include scrollProps metadata when prop is requested to reset by @​pascalbaljet in #​781

Full Changelog: inertiajs/inertia-laravel@v2.0.9...v2.0.10

v2.0.8

Compare Source

What's Changed

• Add docblock to Inertia Facade for scroll by @​joetannenbaum in #​780

Full Changelog: inertiajs/inertia-laravel@v2.0.8...v2.0.9

v2.0.7

Compare Source

What's Changed

• More fine-grained control for Inertia::merge() and a new Inertia::scroll() by @​pascalbaljet in #​774

Full Changelog: inertiajs/inertia-laravel@v2.0.7...v2.0.8

v2.0.6

Compare Source

What's Changed

• Added loadDeferredProps() method to AssertableInertia class by @​pascalbaljet in #​779

Full Changelog: inertiajs/inertia-laravel@v2.0.6...v2.0.7

v2.0.5

Compare Source

What's Changed

• Add encrypt history middleware that follows laravel naming conventions by @​taylorotwell in #​773

New Contributors

• @​taylorotwell made their first contribution in #​773

Full Changelog: inertiajs/inertia-laravel@v2.0.5...v2.0.6

v2.0.4

Compare Source

What's Changed

• [2.x] Improve inertia helper docblock by @​mtlukaszczyk in #​766
• [2.x] Introduce ProvidesInertiaProp interface by @​pascalbaljet in #​746
• [2.x] Introduce ProvidesInertiaProps interface by @​pascalbaljet in #​769
• Introduce PHPStan + improve DocBlocks by @​pascalbaljet in #​768

New Contributors

• @​mtlukaszczyk made their first contribution in #​766

Full Changelog: inertiajs/inertia-laravel@v2.0.4...v2.0.5

laravel/vite-plugin (laravel-vite-plugin)

v1.3.0

Compare Source

• Use rollup types from Vite by @​sapphi-red in #​325

laravel/socialite (laravel/socialite)

v5.23.2

Compare Source

• [5.x] PHP 8.5 Compatibility by @​crynobone in #​755

v5.23.1

Compare Source

Full Changelog: laravel/socialite@v5.23.0...v5.23.1

v5.23.0

Compare Source

Full Changelog: laravel/socialite@v5.23.0...v5.23.1

v5.22.0

Compare Source

• Fix return type for functions which make use of json_decode by @​michaelklopf in #​745
• feat(google): stateless ID token support by @​beefsack in #​748

laravel/tinker (laravel/tinker)

v2.10.2

Compare Source

• [2.x] PHP 8.5 Compatibility by @​crynobone in #​192

nodejs/node (node)

v22.21.1: 2025-10-28, Version 22.21.1 'Jod' (LTS), @​aduh95

Compare Source

Commits

• [af33e8e668] - benchmark: remove unused variable from util/priority-queue (Bruno Rodrigues) #​59872
• [6764ce8756] - benchmark: update count to n in permission startup (Bruno Rodrigues) #​59872
• [4e8d99f0dc] - benchmark: update num to n in dgram offset-length (Bruno Rodrigues) #​59872
• [af0a8ba7f8] - benchmark: adjust dgram offset-length len values (Bruno Rodrigues) #​59708
• [78efd1be4a] - benchmark: update num to n in dgram offset-length (Bruno Rodrigues) #​59708
• [df72dc96e9] - console,util: improve array inspection performance (Ruben Bridgewater) #​60037
• [ef67d09f50] - http: improve writeEarlyHints by avoiding for-of loop (Haram Jeong) #​59958
• [23468fd76b] - http2: fix allowHttp1+Upgrade, broken by shouldUpgradeCallback (Tim Perry) #​59924
• [56abc4ac76] - lib: optimize priority queue (Gürgün Dayıoğlu) #​60039
• [ea5cfd98c5] - lib: implement passive listener behavior per spec (BCD1me) #​59995
• [c2dd6eed2f] - process: fix wrong asyncContext under unhandled-rejections=strict (Shima Ryuhei) #​60103
• [81a3055710] - process: fix default env for process.execve (Richard Lau) #​60029
• [fe492c7ace] - process: fix hrtime fast call signatures (Renegade334) #​59600
• [76b4cab8fc] - src: bring permissions macros in line with general C/C++ standards (Anna Henningsen) #​60053
• [21970970c7] - src: remove AnalyzeTemporaryDtors option from .clang-tidy (iknoom) #​60008
• [609c063e81] - src: remove unused variables from report (Moonki Choi) #​60047
• [987841a773] - src: avoid unnecessary string allocations in SPrintF impl (Anna Henningsen) #​60052
• [6e386c0632] - src: make ToLower/ToUpper input args more flexible (Anna Henningsen) #​60052
• [c3be1226c7] - src: allow std::string_view arguments to SPrintF() and friends (Anna Henningsen) #​60058
• [764d35647d] - src: remove unnecessary std::string error messages (Anna Henningsen) #​60057
• [1289ef89ec] - src: remove unnecessary shadowed functions on Utf8Value & BufferValue (Anna Henningsen) #​60056
• [d1fb8a538d] - src: avoid unnecessary string -> char* -> string round trips (Anna Henningsen) #​60055
• [54b439fb5a] - src: fill options_args, options_env after vectors are finalized (iknoom) #​59945
• [c7c597e2ca] - src: use RAII for uv_process_options_t (iknoom) #​59945
• [b928ea9716] - test: ensure that the message event is fired (Luigi Pinca) #​59952
• [e4b95a5158] - test: replace diagnostics_channel stackframe in output snapshots (Chengzhong Wu) #​60024
• [4206406694] - test: mark test-web-locks skip on IBM i (SRAVANI GUNDEPALLI) #​59996
• [26394cd5bf] - test: expand tls-check-server-identity coverage (Diango Gavidia) #​60002
• [b58df47995] - test: fix typo of test-benchmark-readline.js (Deokjin Kim) #​59993
• [af3a59dba8] - test: verify tracing channel doesn't swallow unhandledRejection (Gerhard Stöbich) #​59974
• [cee362242b] - timers: fix binding fast call signatures (Renegade334) #​59600
• [40fea57fdd] - tools: add message on auto-fixing js lint issues in gh workflow (Dario Piotrowicz) #​59128
• [aac90d351b] - tools: verify signatures when updating nghttp* (Antoine du Hamel) #​60113
• [9fae03c7d9] - tools: use dependabot cooldown and move tools/doc (Rafael Gonzaga) #​59978
• [81548abdf6] - wasi: fix WasiFunction fast call signature (Renegade334) #​59600

v22.21.0: 2025-10-20, Version 22.21.0 'Jod' (LTS), @​aduh95

Compare Source

Notable Changes

• [1486fedea1] - (SEMVER-MINOR) cli: add --use-env-proxy (Joyee Cheung) #​59151
• [bedaaa11fc] - (SEMVER-MINOR) http: support http proxy for fetch under NODE_USE_ENV_PROXY (Joyee Cheung) #​57165
• [af8b5fa29d] - (SEMVER-MINOR) http: add shouldUpgradeCallback to let servers control HTTP upgrades (Tim Perry) #​59824
• [42102594b1] - (SEMVER-MINOR) http,https: add built-in proxy support in http/https.request and Agent (Joyee Cheung) #​58980
• [686ac49b82] - (SEMVER-MINOR) src: add percentage support to --max-old-space-size (Asaf Federman) #​59082

Commits

• [a71dd592e3] - benchmark: calibrate config dgram multi-buffer (Bruno Rodrigues) #​59696
• [16c4b466f4] - benchmark: calibrate config cluster/echo.js (Nam Yooseong) #​59836
• [53cb9f3b6c] - build: add the missing macro definitions for OpenHarmony (hqzing) #​59804
• [ec5290fe01] - build: do not include custom ESLint rules testing in tarball (Antoine du Hamel) #​59809
• [1486fedea1] - (SEMVER-MINOR) cli: add --use-env-proxy (Joyee Cheung) #​59151
• [1f93913446] - crypto: use return await when returning Promises from async functions (Renegade334) #​59841
• [f488b2ff73] - crypto: use async functions for non-stub Promise-returning functions (Renegade334) #​59841
• [aed9fd5ac4] - crypto: avoid calls to promise.catch() (Renegade334) #​59841
• [37c2d186f0] - deps: update amaro to 1.1.4 (pmarchini) #​60044
• [28aea13419] - deps: update archs files for openssl-3.5.4 (Node.js GitHub Bot) #​60101
• [ddbc1aa0bb] - deps: upgrade openssl sources to openssl-3.5.4 (Node.js GitHub Bot) #​60101
• [badbba2da9] - deps: update googletest to 50b8600 (Node.js GitHub Bot) #​59955
• [48aaf98a08] - deps: update archs files for openssl-3.5.3 (Node.js GitHub Bot) #​59901
• [e02a562ea6] - deps: upgrade openssl sources to openssl-3.5.3 (Node.js GitHub Bot) #​59901
• [7e0e86cb92] - deps: upgrade npm to 10.9.4 (npm team) #​60074
• [91dda5facf] - deps: update undici to 6.22.0 (Matteo Collina) #​60112
• [3a3220a2f0] - dgram: restore buffer optimization in fixBufferList (Yoo) #​59934
• [09bdcce6b8] - diagnostics_channel: fix race condition with diagnostics_channel and GC (Ugaitz Urien) #​59910
• [b3eeb3bd13] - doc: provide alternative to url.parse() using WHATWG URL (Steven) #​59736
• [1ddaab1904] - doc: mention reverse proxy and include simple example (Steven) #​59736
• [3b3b71e99c] - doc: mark .env files support as stable (Santeri Hiltunen) #​59925
• [d37f67d1bd] - doc: remove optional title prefixes (Aviv Keller) #​60087
• [ca2dff63f9] - doc: fix typo on child_process.md (Angelo Gazzola) #​60114
• [3fca564a05] - doc: add automated migration info to deprecations (Augustin Mauroy) #​60022
• [4bc366fc16] - doc: use "WebAssembly" instead of "Web Assembly" (Tobias Nießen) #​59954
• [4808dbdd9a] - doc: fix typo in section on microtask order (Tobias Nießen) #​59932
• [d6e303d645] - doc: update V8 fast API guidance (René) #​58999
• [0a3a3f729e] - doc: add security escalation policy (Ulises Gascón) #​59806
• [8fd669c70d] - doc: type improvement of file http.md (yusheng chen) #​58189
• [9833dc6060] - doc: rephrase dynamic import() description (Nam Yooseong) #​59224
• [2870a73681] - doc,crypto: update subtle.generateKey and subtle.importKey (Filip Skokan) #​59851
• [85818db93c] - fs,win: do not add a second trailing slash in readdir (Gerhard Stöbich) #​59847
• [bedaaa11fc] - (SEMVER-MINOR) http: support http proxy for fetch under NODE_USE_ENV_PROXY (Joyee Cheung) #​57165
• [af8b5fa29d] - (SEMVER-MINOR) http: add shouldUpgradeCallback to let servers control HTTP upgrades (Tim Perry) #​59824
• [758271ae66] - http: optimize checkIsHttpToken for short strings (방진혁) #​59832
• [42102594b1] - (SEMVER-MINOR) http,https: add built-in proxy support in http/https.request and Agent (Joyee Cheung) #​58980
• [a33ed9bf96] - inspector: ensure adequate memory allocation for Binary::toBase64 (René) #​59870
• [34c686be2b] - lib: update inspect output format for subclasses (Miguel Marcondes Filho) #​59687
• [12e553529c] - lib: add source map support for assert messages (Chengzhong Wu) #​59751
• [d2a70571f8] - lib,src: refactor assert to load error source from memory (Chengzhong Wu) #​59751
• [20a9e86b5d] - meta: move Michael to emeritus (Michael Dawson) #​60070
• [c591cca15c] - meta: bump github/codeql-action from 3.30.0 to 3.30.5 (dependabot[bot]) #​60089
• [090ba141b1] - meta: bump codecov/codecov-action from 5.5.0 to 5.5.1 (dependabot[bot]) #​60091
• [a0ba6884a5] - meta: bump actions/stale from 9.1.0 to 10.0.0 (dependabot[bot]) #​60092
• [0feca0c541] - meta: bump actions/setup-node from 4.4.0 to 5.0.0 (dependabot[bot]) #​60093
• [7cd2b42d18] - meta: bump step-security/harden-runner from 2.12.2 to 2.13.1 (dependabot[bot]) #​60094
• [1f3b9d66ac] - meta: bump actions/cache from 4.2.4 to 4.3.0 (dependabot[bot]) #​60095
• [0fedbb3de7] - meta: bump ossf/scorecard-action from 2.4.2 to 2.4.3 (dependabot[bot]) #​60096
• [04590b8267] - meta: bump actions/setup-python from 5.6.0 to 6.0.0 (dependabot[bot]) #​60090
• [2bf0a9318f] - meta: add .npmrc with ignore-scripts=true (Joyee Cheung) #​59914
• [e10dc7b81c] - module: allow overriding linked requests for a ModuleWrap (Chengzhong Wu) #​59527
• [2237142369] - module: link module with a module request record (Chengzhong Wu) #​58886
• [6d24b88fbc] - node-api: added SharedArrayBuffer api (Mert Can Altin) #​59071
• [4cc84c96f4] - node-api: make napi_delete_reference use node_api_basic_env (Jeetu Suthar) #​59684
• [e790eb6b50] - repl: fix cpu overhead pasting big strings to the REPL (Ruben Bridgewater) #​59857
• [99ea08dc43] - repl: add isValidParentheses check before wrap input (Xuguang Mei) #​59607
• [e4a4f63019] - sqlite: fix crash session extension callbacks with workers (Bart Louwers) #​59848
• [42c5544b97] - src: assert memory calc for max-old-space-size-percentage (Asaf Federman) #​59460
• [686ac49b82] - (SEMVER-MINOR) src: add percentage support to --max-old-space-size (Asaf Federman) #​59082
• [84701ff668] - src: clear all linked module caches once instantiated (Chengzhong Wu) #​59117
• [8e182e561f] - src: remove unnecessary Environment::GetCurrent() calls (Moonki Choi) #​59814
• [c9cde35c4d] - src: sim

---

Configuration

📅 Schedule: Branch creation - On day 1 of the month, every 3 months ( * * 1 */3 * ) in timezone Europe/Warsaw, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.