Skip to content

Bump cookie and @supabase/ssr in /codemaster#26

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/codemaster/multi-e056bcaa42
Open

Bump cookie and @supabase/ssr in /codemaster#26
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/codemaster/multi-e056bcaa42

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github Jan 15, 2026

Bumps cookie to 1.1.1 and updates ancestor dependency @supabase/ssr. These dependencies need to be updated together.

Updates cookie from 0.5.0 to 1.1.1

Release notes

Sourced from cookie's releases.

v1.1.1

Fixed

  • Overwrite value in passed in options (#253) c66147c
    • When value was provided in serialize(key, value, { value }) the value in options was used instead of the value passed as an argument

jshttp/cookie@v1.1.0...v1.1.1

v1.1.0

Added:

  • Add stringifyCookie and parseSetCookie methods (#244, #214)
  • Rename existing methods for clarity (old method names remain for backward compatibility)
    • parseparseCookie
    • serializestringifySetCookie
  • Add side effects field (#245) 00b0327

jshttp/cookie@v1.0.2...v1.1.0

v1.0.2

Fixed

  • Loosen cookie name/value validation (#210)
  • fix: options.priority used incorrect fallback (#207) by @​jonchurch

Added

jshttp/cookie@v1.0.1...v1.0.2

v1.0.1

Added

  • Allow case insensitive options (#194) 3bed080

jshttp/cookie@v1.0.0...v1.0.1

v1.0.0

Breaking changes

  • Use modern JS features, ship TypeScript definition (#175) 1cc64ff
    • Adds __esModule marker, imports need to use import { parse, serialize } or import * as cookie
  • Minimum node.js v18
  • Uses null prototype object for parse return value
  • Changes strict and priority to match the lower case strings (i.e. low, not LOW or Low)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by blakeembrey, a new releaser for cookie since your current version.


Updates @supabase/ssr from 0.3.0 to 0.8.0

Release notes

Sourced from @​supabase/ssr's releases.

v0.8.0

0.8.0 (2025-11-26)

Features

  • adds cookies.encode option allowing minimal cookie sizes (#126) (cf38b22)
  • publish SSR under deprecated auth-helpers package names (#127) (e8b6102)
  • update supabase-js to latest (#133) (d65044d)
  • update supabase-js to latest (#145) (08bf7d6)

Bug Fixes

v0.8.0-rc.9

This is a release candidate. See release-please PR #128 for context.

v0.8.0-rc.8

This is a release candidate. See release-please PR #128 for context.

v0.8.0-rc.5

This is a release candidate. See release-please PR #128 for context.

v0.7.0

0.7.0 (2025-08-22)

Features

Bug Fixes

  • remove usage of internal type params (#123) (8f3e89e)

v0.7.0-rc.3

This is a release candidate. See release-please PR #114 for context.

v0.7.0-rc.2

This is a release candidate. See release-please PR #114 for context.

v0.7.0-rc.1

This is a release candidate. See release-please PR #114 for context.

v0.6.1

0.6.1 (2025-03-16)

... (truncated)

Changelog

Sourced from @​supabase/ssr's changelog.

0.8.0 (2025-11-26)

Features

  • adds cookies.encode option allowing minimal cookie sizes (#126) (cf38b22)
  • publish SSR under deprecated auth-helpers package names (#127) (e8b6102)
  • update supabase-js to latest (#133) (d65044d)
  • update supabase-js to latest (#145) (08bf7d6)

Bug Fixes

0.7.0 (2025-08-22)

Features

Bug Fixes

  • remove usage of internal type params (#123) (8f3e89e)

0.6.1 (2025-03-16)

Bug Fixes

  • force release (#98) (66710e8)
  • revert: "feat: improve cookie chunk handling via base64url+length encoding (#90)" (#100) (2ea8e23)

0.5.2 (2024-11-05)

Bug Fixes

  • add @​types/cookies to dependencies (#63) (47e5f16)
  • check chunkedCookie is string in server client (#57) (549fe62)
  • update type, remove unused imports, define AuthEvent type (#47) (4f4a375)

0.5.1 (2024-08-28)

Bug Fixes

... (truncated)

Commits
  • bcf502f chore(main): release 0.8.0 (#128)
  • 08bf7d6 feat: update supabase-js to latest (#145)
  • 64ff6b3 fix: cookies console warnings (#136)
  • 5eff4f6 ci: remove pull_request_target (#109)
  • 9b41a10 build(deps-dev): bump js-yaml from 4.1.0 to 4.1.1 (#143)
  • 4104889 build(deps): bump vite from 5.4.19 to 5.4.21 (#132)
  • 995e701 chore: trusted publisher for release (#135)
  • d65044d feat: update supabase-js to latest (#133)
  • cf38b22 feat: adds cookies.encode option allowing minimal cookie sizes (#126)
  • e8b6102 feat: publish SSR under deprecated auth-helpers package names (#127)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​supabase/ssr since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump cookie and @supabase/ssr in /codemaster
220a53f 
Bumps [cookie](https://github.com/jshttp/cookie) to 1.1.1 and updates ancestor dependency [@supabase/ssr](https://github.com/supabase/ssr). These dependencies need to be updated together.


Updates `cookie` from 0.5.0 to 1.1.1
- [Release notes](https://github.com/jshttp/cookie/releases)
- [Commits](jshttp/cookie@v0.5.0...v1.1.1)

Updates `@supabase/ssr` from 0.3.0 to 0.8.0
- [Release notes](https://github.com/supabase/ssr/releases)
- [Changelog](https://github.com/supabase/ssr/blob/main/CHANGELOG.md)
- [Commits](supabase/ssr@v0.3.0...v0.8.0)

---
updated-dependencies:
- dependency-name: cookie
  dependency-version: 1.1.1
  dependency-type: indirect
- dependency-name: "@supabase/ssr"
  dependency-version: 0.8.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jan 15, 2026
@vercel
Copy link
Copy Markdown

vercel Bot commented Jan 15, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Review Updated (UTC)
code-master Ready Ready Preview, Comment Jan 15, 2026 1:51pm

@dependabot dependabot Bot added the javascript Pull requests that update javascript code label Jan 15, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants