Skip to content

chore(deps): bump the production-dependencies group with 2 updates #16

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): bump the production-dependencies group with 2 updates #16

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 9, 2026

Bumps the production-dependencies group with 2 updates: @anthropic-ai/sdk and openai.

Updates @anthropic-ai/sdk from 0.72.1 to 0.74.0

Release notes

Sourced from @​anthropic-ai/sdk's releases.

sdk: v0.74.0

0.74.0 (2026-02-07)

Full Changelog: sdk-v0.73.0...sdk-v0.74.0

Features

  • api: enabling fast-mode in claude-opus-4-6 (e337981)

sdk: v0.73.0

0.73.0 (2026-02-05)

Full Changelog: sdk-v0.72.1...sdk-v0.73.0

Features

  • api: Release Claude Opus 4.6, adaptive thinking, and other features (f741f92)

Bug Fixes

  • client: avoid memory leak in abort signal listener (#895) (3bdd153)
  • client: avoid memory leak with abort signals (53e47df)
  • client: avoid removing abort listener too early (cd6e832)

Chores

  • client: do not parse responses with empty content-length (2be2df9)
  • client: restructure abort controller binding (0eeacb6)
  • internal: fix pagination internals not accepting option promises (7c23a3f)
  • remove claude-code-review workflow (#644) (ad09c76)
Changelog

Sourced from @​anthropic-ai/sdk's changelog.

0.74.0 (2026-02-07)

Full Changelog: sdk-v0.73.0...sdk-v0.74.0

Features

  • api: enabling fast-mode in claude-opus-4-6 (e337981)

0.73.0 (2026-02-05)

Full Changelog: sdk-v0.72.1...sdk-v0.73.0

Features

  • api: Release Claude Opus 4.6, adaptive thinking, and other features (f741f92)

Bug Fixes

  • client: avoid memory leak in abort signal listener (#895) (3bdd153)
  • client: avoid memory leak with abort signals (53e47df)
  • client: avoid removing abort listener too early (cd6e832)

Chores

  • client: do not parse responses with empty content-length (2be2df9)
  • client: restructure abort controller binding (0eeacb6)
  • internal: fix pagination internals not accepting option promises (7c23a3f)
  • remove claude-code-review workflow (#644) (ad09c76)
Commits
  • 5ccd743 chore: release main
  • 66c786d feat(api): enabling fast-mode in claude-opus-4-6
  • 883bbb6 Update CHANGELOG.md (#902)
  • db18ae2 chore: release main
  • a9f163f feat(api): manual updates
  • 33d13a6 chore(internal): fix pagination internals not accepting option promises
  • 54d352c fix(client): avoid removing abort listener too early
  • ddc2f6b chore(client): restructure abort controller binding
  • 6f46cc5 chore(client): do not parse responses with empty content-length
  • e32cdd5 chore: remove claude-code-review workflow (#644)
  • Additional commits viewable in compare view

Updates openai from 6.17.0 to 6.18.0

Release notes

Sourced from openai's releases.

v6.18.0

6.18.0 (2026-02-05)

Full Changelog: v6.17.0...v6.18.0

Features

  • api: image generation actions for responses; ResponseFunctionCallArgumentsDoneEvent.name (d373c32)

Bug Fixes

  • client: avoid memory leak with abort signals (b449f36)
  • client: avoid removing abort listener too early (1c045f7)
  • client: undo change to web search Find action (8259b45)
  • client: update type for find_in_page action (9aa8d98)

Chores

  • client: do not parse responses with empty content-length (4a118fa)
  • client: restructure abort controller binding (a4d7151)
  • internal: fix pagination internals not accepting option promises (6677905)
Changelog

Sourced from openai's changelog.

6.18.0 (2026-02-05)

Full Changelog: v6.17.0...v6.18.0

Features

  • api: image generation actions for responses; ResponseFunctionCallArgumentsDoneEvent.name (d373c32)

Bug Fixes

  • client: avoid memory leak with abort signals (b449f36)
  • client: avoid removing abort listener too early (1c045f7)
  • client: undo change to web search Find action (8259b45)
  • client: update type for find_in_page action (9aa8d98)

Chores

  • client: do not parse responses with empty content-length (4a118fa)
  • client: restructure abort controller binding (a4d7151)
  • internal: fix pagination internals not accepting option promises (6677905)
Commits
  • 69d2b01 release: 6.18.0
  • bf5a096 chore(internal): fix pagination internals not accepting option promises
  • aa24028 fix(client): avoid removing abort listener too early
  • 6ae89c6 chore(client): restructure abort controller binding
  • e70fa06 fix(client): undo change to web search Find action
  • 3fd4d03 codegen metadata
  • f4e6a09 codegen metadata
  • 4391e45 fix(client): update type for find_in_page action
  • a05e900 chore(client): do not parse responses with empty content-length
  • 243f44d fix(client): avoid memory leak with abort signals
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the production-dependencies group with 2 updates
02e1915 
Bumps the production-dependencies group with 2 updates: [@anthropic-ai/sdk](https://github.com/anthropics/anthropic-sdk-typescript) and [openai](https://github.com/openai/openai-node).


Updates `@anthropic-ai/sdk` from 0.72.1 to 0.74.0
- [Release notes](https://github.com/anthropics/anthropic-sdk-typescript/releases)
- [Changelog](https://github.com/anthropics/anthropic-sdk-typescript/blob/main/CHANGELOG.md)
- [Commits](anthropics/anthropic-sdk-typescript@sdk-v0.72.1...sdk-v0.74.0)

Updates `openai` from 6.17.0 to 6.18.0
- [Release notes](https://github.com/openai/openai-node/releases)
- [Changelog](https://github.com/openai/openai-node/blob/master/CHANGELOG.md)
- [Commits](openai/openai-node@v6.17.0...v6.18.0)

---
updated-dependencies:
- dependency-name: "@anthropic-ai/sdk"
  dependency-version: 0.74.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: openai
  dependency-version: 6.18.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 9, 2026

Labels

The following labels could not be found: automated, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

llamapreview[bot]
llamapreview bot reviewed Feb 9, 2026
View reviewed changes
Copy link
Contributor

@llamapreview llamapreview bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

AI Code Review by LlamaPReview

🎯 TL;DR & Recommendation

Recommendation: Approve with suggestions

This PR updates two core LLM SDKs to include new features and bug fixes, but CI failures indicate potential compatibility issues that need investigation.

🌟 Strengths

  • Keeps dependencies current with important memory leak fixes and new API features.

💡 Suggestions (P2)

  • package.json: Dependency updates may introduce breaking changes that could cause CI failures and runtime issues in LLM clients.
  • package.json: Test failures suggest that the updated SDKs might have changed behavior, requiring updates to test mocks and assertions.

💡 Have feedback? We'd love to hear it in our GitHub Discussions.
✨ This review was generated by LlamaPReview Advanced, which is free for all open-source projects. Learn more.

package.json
Comment on lines 61 to 68
"dependencies": {
"@anthropic-ai/sdk": "0.72.1",
"@anthropic-ai/sdk": "0.74.0",
"@google/generative-ai": "0.24.1",
"chalk": "^5.3.0",
"commander": "^14.0.3",
"openai": "6.17.0",
"openai": "6.18.0",
"zod": "^4.3.6"
},
Copy link
Contributor

@llamapreview llamapreview bot Feb 9, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P2 | Confidence: High

  • Speculative: This dependency update is a minor version bump for two core LLM SDKs. The changes include new features (fast-mode for Claude Opus 4.6, image generation actions for OpenAI) and critical bug fixes for memory leaks with abort signals. While the related_context shows these SDKs are used directly in src/core/llm-clients.ts for constructing clients and making API calls, the PR description lacks evidence that the existing CI failures (Test (Fast), Lint & Type Check) are directly caused by these specific version changes. The risk is medium due to the dependency on external APIs, but without test logs, the root cause of the failures cannot be definitively attributed to the version bump. The team should verify that the updated SDK types and client instantiation patterns in callAnthropic and callOpenAI remain compatible, especially if the project uses TypeScript strictly.
  • Speculative: The CI pipeline shows test failures (Test (Fast) and Test Coverage). Given the related_context includes LLM client tests (tests/core/llm-clients.test.ts), there is a high probability that the updated SDK versions have introduced behavioral changes (e.g., response parsing, error handling) or type mismatches that break existing mocks or assertions. The PR does not include updates to test files, which may cause tests to fail if they rely on specific version-dependent behavior or if the updated SDKs have changed their public API in a non-breaking but test-affecting way. This is a P2 because it's an absence-based claim (tests not updated), but the CI failure is direct evidence of a problem.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@llamapreview llamapreview[bot] llamapreview[bot] left review comments

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

@sehyun0518 sehyun0518

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@sehyun0518