build(deps): bump express and @types/express by dependabot[bot] · Pull Request #110 · Eskyee/agentbot-opensource

dependabot · 2026-06-11T03:05:27Z

Bumps express and @types/express. These dependencies needed to be updated together.
Updates express from 4.22.2 to 5.2.1

Release notes

Sourced from express's releases.

v5.2.1

What's Changed

[!IMPORTANT]
The prior release (5.2.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.

Release: 5.2.1 by @UlisesGascon in expressjs/express#6933

Full Changelog: expressjs/express@v5.2.0...v5.2.1

v5.2.0

Important: Security

Security fix for CVE-2024-51999 (GHSA-pj86-cfqh-vqx6)

What's Changed

build(deps): bump github/codeql-action from 3.28.11 to 3.28.13 by @dependabot[bot] in expressjs/express#6429

Refactor: simplify acceptsLanguages implementation using spread operator by @Ayoub-Mabrouk in expressjs/express#6137

increased code coverage of utils.js file by @ashish3011 in expressjs/express#6386

chore: remove duplicate word by @dufucun in expressjs/express#6456

build(deps): bump github/codeql-action from 3.28.13 to 3.28.16 by @dependabot[bot] in expressjs/express#6498

build(deps): bump actions/setup-node from 4.3.0 to 4.4.0 by @dependabot[bot] in expressjs/express#6497

build(deps): bump actions/download-artifact from 4.2.1 to 4.3.0 by @dependabot[bot] in expressjs/express#6496

ci: add node.js 24 to test matrix by @Phillip9587 in expressjs/express#6504

ci: update codeql config by @Phillip9587 in expressjs/express#6488

chore: wider range for query test skip by @jonchurch in expressjs/express#6512

chore: fix typos in test by @noritaka1166 in expressjs/express#6535

ci: disable credential persistence for checkout actions by @mertssmnoglu in expressjs/express#6522

ci: allow manual triggering of workflow by @shivarm in expressjs/express#6515

test: add coverage for app.listen() variants by @kgarg1 in expressjs/express#6476

docs: move documentation and charters to the discussions and .github … by @bjohansebas in expressjs/express#6427

build(deps): bump github/codeql-action from 3.28.16 to 3.28.18 by @dependabot[bot] in expressjs/express#6549

build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by @dependabot[bot] in expressjs/express#6548

chore: enforce explicit Buffer import and add lint rule by @shivarm in expressjs/express#6525

chore: use node protocol for querystring by @shivarm in expressjs/express#6520

chore: fix typo by @mountdisk in expressjs/express#6609

build(deps): bump github/codeql-action from 3.28.18 to 3.29.2 by @dependabot[bot] in expressjs/express#6618

add deprecation warnings for redirect arguments undefined by @bjohansebas in expressjs/express#6405

ci: run CI when the markdown changes by @bjohansebas in expressjs/express#6632

doc: fix CONTRIBUTING link by @jonchurch in expressjs/express#6653

doc: update contributing guidelines and code of conduct links by @ShubhamOulkar in expressjs/express#6601

build(deps-dev): bump morgan from 1.10.0 to 1.10.1 by @dependabot[bot] in expressjs/express#6679

build(deps-dev): bump cookie-session from 2.1.0 to 2.1.1 by @dependabot[bot] in expressjs/express#6678

lint: add --fix flag to automatic fix linting issue by @shivarm in expressjs/express#6644

chore: ignore yarn.lock file and update example by @shivarm in expressjs/express#6588

lib: use req.socket over deprecated req.connection by @bjohansebas in expressjs/express#6705

doc: update express app example by @shivarm in expressjs/express#6718

build(deps): bump github/codeql-action from 3.29.2 to 3.29.5 by @dependabot[bot] in expressjs/express#6675

Remove history.md from being packaged on publish by @sheplu in expressjs/express#6780

... (truncated)

Changelog

Sourced from express's changelog.

5.2.1 / 2025-12-01

Revert security fix for CVE-2024-51999 (GHSA-pj86-cfqh-vqx6)

The prior release (5.2.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.

5.2.0 / 2025-12-01

Security fix for CVE-2024-51999 (GHSA-pj86-cfqh-vqx6)

deps: body-parser@^2.2.1

A deprecation warning was added when using res.redirect with undefined arguments, Express now emits a warning to help detect calls that pass undefined as the status or URL and make them easier to fix.

5.1.0 / 2025-03-31

Add support for Uint8Array in res.send()

Add support for ETag option in res.sendFile()

Add support for multiple links with the same rel in res.links()

Add funding field to package.json

perf: use loop for acceptParams

refactor: prefix built-in node module imports

deps: remove setprototypeof

deps: remove safe-buffer

deps: remove utils-merge

deps: remove methods

deps: remove depd

deps: debug@^4.4.0

deps: body-parser@^2.2.0

deps: router@^2.2.0

deps: content-type@^1.0.5

deps: finalhandler@^2.1.0

deps: qs@^6.14.0

deps: server-static@2.2.0

deps: type-is@2.0.1

5.0.1 / 2024-10-08

Update cookie semver lock to address CVE-2024-47764

5.0.0 / 2024-09-10

remove:

path-is-absolute dependency - use path.isAbsolute instead

breaking:

res.status() accepts only integers, and input must be greater than 99 and less than 1000

will throw a RangeError: Invalid status code: ${code}. Status code must be greater than 99 and less than 1000. for inputs outside this range

will throw a TypeError: Invalid status code: ${code}. Status code must be an integer. for non integer inputs

deps: send@1.0.0

... (truncated)

Commits

dbac741 5.2.1
697547c Revert "sec: security patch for CVE-2024-51999"
4007ad1 Release: 5.2.0 (#6920)
2f64f68 sec: security patch for CVE-2024-51999
ed0ba3f build(deps): bump actions/checkout from 5.0.0 to 6.0.0 (#6928)
8eace46 build(deps): bump github/codeql-action from 4.31.2 to 4.31.6 (#6929)
30bae81 build(deps): bump coverallsapp/github-action from 2.3.6 to 2.3.7 (#6930)
758d435 deps: body-parser@^2.2.1 (#6922)
77bcd52 docs: update emeritus triagers (#6890)
f33caf1 Nominate to @efekrskl for triage team (#6888)
Additional commits viewable in compare view

Updates @types/express from 4.17.25 to 5.0.6

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Zero CVEs, 6 new skills (Kilo-Org adapted), 76 blog posts, Solana/Bitcoin/Liquid dashboards, OpenClaw v2026.4.9, skills marketplace, agent provisioning, x402 payments, and full security audit. 1,715 commits squashed to clean history (no secrets in git history). Co-authored-by: factory-droid[bot] <138933559+factory-droid[bot]@users.noreply.github.com>

- Add Prisma generate step - Add submodules: recursive to checkout - Update URLs to current production endpoints - Add browser automation smoke test - Fix Turbopack compatibility (requires next.config.js change too)

Signed-off-by: Esky33 <djescaba@icloud.com>

The open-source repo had drifted into a state where contributor-facing docs and examples still exposed personal emails, live Railway hosts, and internal-only artifacts. This change removes those public leaks, adds a minimal typed SDK starter for the documented public routes, and updates the main docs to point contributors at the safe integration surface. Constraint: Public updates must not leak private infrastructure details, personal contact data, or managed-platform-only logic Rejected: Mirror the private repo wholesale again | too much secret-sauce and operational-data risk Confidence: high Scope-risk: moderate Reversibility: clean Directive: Keep sdk/agentbot aligned only with public reference routes and keep placeholder infrastructure values in the public tree Tested: Secret scan across the full public worktree; Node import of sdk/agentbot/index.ts with type stripping Not-tested: Full npm build/test in the public worktree

Signed-off-by: Esky33 <djescaba@icloud.com>

…llet input

Bumps the minor-and-patch group with 36 updates: | Package | From | To | | --- | --- | --- | | [turbo](https://github.com/vercel/turborepo) | `2.9.6` | `2.9.14` | | [@base-org/account](https://github.com/base/account-sdk) | `2.5.5` | `2.5.6` | | [@coinbase/cdp-sdk](https://github.com/coinbase/cdp-sdk) | `1.48.2` | `1.49.2` | | [@opentelemetry/api-logs](https://github.com/open-telemetry/opentelemetry-js) | `0.57.2` | `0.218.0` | | [@sentry/nextjs](https://github.com/getsentry/sentry-javascript) | `10.51.0` | `10.53.1` | | [@tanstack/react-query](https://github.com/TanStack/query/tree/HEAD/packages/react-query) | `5.100.6` | `5.100.11` | | [@upstash/redis](https://github.com/upstash/redis-js) | `1.37.0` | `1.38.0` | | [@vercel/blob](https://github.com/vercel/storage/tree/HEAD/packages/blob) | `2.3.3` | `2.4.0` | | [@vercel/sdk](https://github.com/vercel/sdk) | `1.19.40` | `1.21.5` | | [@worldcoin/agentkit](https://github.com/worldcoin/agentkit/tree/HEAD/x402) | `0.1.8` | `0.2.0` | | [@x402/core](https://github.com/x402-foundation/x402) | `2.11.0` | `2.12.0` | | [@x402/evm](https://github.com/x402-foundation/x402) | `2.11.0` | `2.12.0` | | [@x402/express](https://github.com/x402-foundation/x402) | `2.11.0` | `2.12.0` | | [@x402/extensions](https://github.com/x402-foundation/x402) | `2.11.0` | `2.12.0` | | [ai](https://github.com/vercel/ai/tree/HEAD/packages/ai) | `6.0.169` | `6.0.185` | | [mppx](https://github.com/wevm/mppx) | `0.4.12` | `0.6.25` | | [next](https://github.com/vercel/next.js) | `16.2.4` | `16.2.6` | | [next-auth](https://github.com/nextauthjs/next-auth) | `4.24.12` | `4.24.14` | | [ox](https://github.com/wevm/ox) | `0.13.2` | `0.14.22` | | [pg](https://github.com/brianc/node-postgres/tree/HEAD/packages/pg) | `8.20.0` | `8.21.0` | | [resend](https://github.com/resend/resend-node) | `6.12.2` | `6.12.3` | | [shadcn](https://github.com/shadcn-ui/ui/tree/HEAD/packages/shadcn) | `4.6.0` | `4.7.0` | | [tailwind-merge](https://github.com/dcastil/tailwind-merge) | `3.5.0` | `3.6.0` | | [three](https://github.com/mrdoob/three.js) | `0.183.2` | `0.184.0` | | [viem](https://github.com/wevm/viem) | `2.48.4` | `2.49.3` | | [zod](https://github.com/colinhacks/zod) | `4.3.6` | `4.4.3` | | [zustand](https://github.com/pmndrs/zustand) | `5.0.12` | `5.0.13` | | [@playwright/test](https://github.com/microsoft/playwright) | `1.59.1` | `1.60.0` | | [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.59.1` | `8.59.4` | | [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.59.1` | `8.59.4` | | [jest-environment-jsdom](https://github.com/jestjs/jest/tree/HEAD/packages/jest-environment-jsdom) | `30.3.0` | `30.4.1` | | [postcss](https://github.com/postcss/postcss) | `8.5.12` | `8.4.31` | | [@openrouter/sdk](https://github.com/OpenRouterTeam/typescript-sdk) | `0.10.2` | `0.12.35` | | [@sentry/node](https://github.com/getsentry/sentry-javascript) | `10.51.0` | `10.53.1` | | [express-rate-limit](https://github.com/express-rate-limit/express-rate-limit) | `8.4.1` | `8.5.2` | | [ws](https://github.com/websockets/ws) | `8.18.0` | `8.20.1` | Updates `turbo` from 2.9.6 to 2.9.14 - [Release notes](https://github.com/vercel/turborepo/releases) - [Changelog](https://github.com/vercel/turborepo/blob/main/RELEASE.md) - [Commits](vercel/turborepo@v2.9.6...v2.9.14) Updates `@base-org/account` from 2.5.5 to 2.5.6 - [Release notes](https://github.com/base/account-sdk/releases) - [Commits](base/account-sdk@account-v2.5.5...account-v2.5.6) Updates `@coinbase/cdp-sdk` from 1.48.2 to 1.49.2 - [Changelog](https://github.com/coinbase/cdp-sdk/blob/main/RELEASE.md) - [Commits](https://github.com/coinbase/cdp-sdk/commits/@coinbase/cdp-sdk@v1.49.2) Updates `@opentelemetry/api-logs` from 0.57.2 to 0.218.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-js/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-js/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-js@experimental/v0.57.2...experimental/v0.218.0) Updates `@sentry/nextjs` from 10.51.0 to 10.53.1 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](getsentry/sentry-javascript@10.51.0...10.53.1) Updates `@tanstack/react-query` from 5.100.6 to 5.100.11 - [Release notes](https://github.com/TanStack/query/releases) - [Changelog](https://github.com/TanStack/query/blob/main/packages/react-query/CHANGELOG.md) - [Commits](https://github.com/TanStack/query/commits/@tanstack/react-query@5.100.11/packages/react-query) Updates `@upstash/redis` from 1.37.0 to 1.38.0 - [Release notes](https://github.com/upstash/redis-js/releases) - [Commits](https://github.com/upstash/redis-js/compare/@upstash/redis@1.37.0...@upstash/redis@1.38.0) Updates `@vercel/blob` from 2.3.3 to 2.4.0 - [Release notes](https://github.com/vercel/storage/releases) - [Changelog](https://github.com/vercel/storage/blob/main/packages/blob/CHANGELOG.md) - [Commits](https://github.com/vercel/storage/commits/@vercel/blob@2.4.0/packages/blob) Updates `@vercel/sdk` from 1.19.40 to 1.21.5 - [Release notes](https://github.com/vercel/sdk/releases) - [Changelog](https://github.com/vercel/sdk/blob/main/RELEASES.md) - [Commits](vercel/sdk@v1.19.40...v1.21.5) Updates `@worldcoin/agentkit` from 0.1.8 to 0.2.0 - [Release notes](https://github.com/worldcoin/agentkit/releases) - [Changelog](https://github.com/worldcoin/agentkit/blob/main/x402/CHANGELOG.md) - [Commits](https://github.com/worldcoin/agentkit/commits/@worldcoin/agentkit@0.2.0/x402) Updates `@x402/core` from 2.11.0 to 2.12.0 - [Commits](https://github.com/x402-foundation/x402/compare/npm-@x402/core@v2.11.0...npm-@x402/core@v2.12.0) Updates `@x402/evm` from 2.11.0 to 2.12.0 - [Commits](https://github.com/x402-foundation/x402/compare/npm-@x402/evm@v2.11.0...npm-@x402/evm@v2.12.0) Updates `@x402/express` from 2.11.0 to 2.12.0 - [Commits](https://github.com/x402-foundation/x402/compare/npm-@x402/express@v2.11.0...npm-@x402/express@v2.12.0) Updates `@x402/extensions` from 2.11.0 to 2.12.0 - [Commits](https://github.com/x402-foundation/x402/compare/npm-@x402/extensions@v2.11.0...npm-@x402/extensions@v2.12.0) Updates `ai` from 6.0.169 to 6.0.185 - [Release notes](https://github.com/vercel/ai/releases) - [Changelog](https://github.com/vercel/ai/blob/ai@6.0.185/packages/ai/CHANGELOG.md) - [Commits](https://github.com/vercel/ai/commits/ai@6.0.185/packages/ai) Updates `mppx` from 0.4.12 to 0.6.25 - [Release notes](https://github.com/wevm/mppx/releases) - [Changelog](https://github.com/wevm/mppx/blob/main/CHANGELOG.md) - [Commits](https://github.com/wevm/mppx/compare/mppx@0.4.12...mppx@0.6.25) Updates `next` from 16.2.4 to 16.2.6 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v16.2.4...v16.2.6) Updates `next-auth` from 4.24.12 to 4.24.14 - [Release notes](https://github.com/nextauthjs/next-auth/releases) - [Commits](https://github.com/nextauthjs/next-auth/compare/next-auth@4.24.12...next-auth@4.24.14) Updates `ox` from 0.13.2 to 0.14.22 - [Release notes](https://github.com/wevm/ox/releases) - [Commits](https://github.com/wevm/ox/compare/ox@0.13.2...ox@0.14.22) Updates `pg` from 8.20.0 to 8.21.0 - [Changelog](https://github.com/brianc/node-postgres/blob/master/CHANGELOG.md) - [Commits](https://github.com/brianc/node-postgres/commits/pg@8.21.0/packages/pg) Updates `resend` from 6.12.2 to 6.12.3 - [Release notes](https://github.com/resend/resend-node/releases) - [Commits](resend/resend-node@v6.12.2...v6.12.3) Updates `shadcn` from 4.6.0 to 4.7.0 - [Release notes](https://github.com/shadcn-ui/ui/releases) - [Changelog](https://github.com/shadcn-ui/ui/blob/main/packages/shadcn/CHANGELOG.md) - [Commits](https://github.com/shadcn-ui/ui/commits/shadcn@4.7.0/packages/shadcn) Updates `tailwind-merge` from 3.5.0 to 3.6.0 - [Release notes](https://github.com/dcastil/tailwind-merge/releases) - [Commits](dcastil/tailwind-merge@v3.5.0...v3.6.0) Updates `three` from 0.183.2 to 0.184.0 - [Release notes](https://github.com/mrdoob/three.js/releases) - [Commits](https://github.com/mrdoob/three.js/commits) Updates `viem` from 2.48.4 to 2.49.3 - [Release notes](https://github.com/wevm/viem/releases) - [Commits](https://github.com/wevm/viem/compare/viem@2.48.4...viem@2.49.3) Updates `zod` from 4.3.6 to 4.4.3 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](colinhacks/zod@v4.3.6...v4.4.3) Updates `zustand` from 5.0.12 to 5.0.13 - [Release notes](https://github.com/pmndrs/zustand/releases) - [Commits](pmndrs/zustand@v5.0.12...v5.0.13) Updates `@playwright/test` from 1.59.1 to 1.60.0 - [Release notes](https://github.com/microsoft/playwright/releases) - [Commits](microsoft/playwright@v1.59.1...v1.60.0) Updates `@typescript-eslint/eslint-plugin` from 8.59.1 to 8.59.4 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.59.4/packages/eslint-plugin) Updates `@typescript-eslint/parser` from 8.59.1 to 8.59.4 - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.59.4/packages/parser) Updates `jest-environment-jsdom` from 30.3.0 to 30.4.1 - [Release notes](https://github.com/jestjs/jest/releases) - [Changelog](https://github.com/jestjs/jest/blob/main/CHANGELOG.md) - [Commits](https://github.com/jestjs/jest/commits/v30.4.1/packages/jest-environment-jsdom) Updates `postcss` from 8.5.12 to 8.4.31 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.5.12...8.4.31) Updates `@openrouter/sdk` from 0.10.2 to 0.12.35 - [Release notes](https://github.com/OpenRouterTeam/typescript-sdk/releases) - [Changelog](https://github.com/OpenRouterTeam/typescript-sdk/blob/main/RELEASES.md) - [Commits](OpenRouterTeam/typescript-sdk@v0.10.2...v0.12.35) Updates `@sentry/node` from 10.51.0 to 10.53.1 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](getsentry/sentry-javascript@10.51.0...10.53.1) Updates `express-rate-limit` from 8.4.1 to 8.5.2 - [Release notes](https://github.com/express-rate-limit/express-rate-limit/releases) - [Commits](express-rate-limit/express-rate-limit@v8.4.1...v8.5.2) Updates `ws` from 8.18.0 to 8.20.1 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@8.18.0...8.20.1) --- updated-dependencies: - dependency-name: turbo dependency-version: 2.9.14 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@base-org/account" dependency-version: 2.5.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@coinbase/cdp-sdk" dependency-version: 1.49.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@opentelemetry/api-logs" dependency-version: 0.218.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@sentry/nextjs" dependency-version: 10.53.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@tanstack/react-query" dependency-version: 5.100.11 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@upstash/redis" dependency-version: 1.38.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@vercel/blob" dependency-version: 2.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@vercel/sdk" dependency-version: 1.21.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@worldcoin/agentkit" dependency-version: 0.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@x402/core" dependency-version: 2.12.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@x402/evm" dependency-version: 2.12.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@x402/express" dependency-version: 2.12.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@x402/extensions" dependency-version: 2.12.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: ai dependency-version: 6.0.185 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: mppx dependency-version: 0.6.25 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: next dependency-version: 16.2.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: next-auth dependency-version: 4.24.14 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: ox dependency-version: 0.14.22 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: pg dependency-version: 8.21.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: resend dependency-version: 6.12.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: shadcn dependency-version: 4.7.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: tailwind-merge dependency-version: 3.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: three dependency-version: 0.184.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: viem dependency-version: 2.49.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: zod dependency-version: 4.4.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: zustand dependency-version: 5.0.13 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@playwright/test" dependency-version: 1.60.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@typescript-eslint/eslint-plugin" dependency-version: 8.59.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@typescript-eslint/parser" dependency-version: 8.59.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: jest-environment-jsdom dependency-version: 30.4.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: postcss dependency-version: 8.4.31 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@openrouter/sdk" dependency-version: 0.12.35 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@sentry/node" dependency-version: 10.53.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: express-rate-limit dependency-version: 8.5.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: ws dependency-version: 8.20.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [ws](https://github.com/websockets/ws) from 8.18.0 to 8.20.1. - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@8.18.0...8.20.1) --- updated-dependencies: - dependency-name: ws dependency-version: 8.20.1 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>

…-patch-76dc1a679a build(deps): bump the minor-and-patch group across 1 directory with 35 updates

…backend/types/node-25.9.1 build(deps-dev): bump @types/node from 20.19.37 to 25.9.1 in /agentbot-backend

…hainkit/assets/templates/basic-app/next-15.5.18 build(deps): bump next from 14.1.0 to 15.5.18 in /skills/onchainkit/assets/templates/basic-app

…514674949 feat: add agentbot-opensource ECC bundle

Bumps [bcryptjs](https://github.com/dcodeIO/bcrypt.js) and [@types/bcryptjs](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/bcryptjs). These dependencies needed to be updated together. Updates `bcryptjs` from 2.4.3 to 3.0.3 - [Release notes](https://github.com/dcodeIO/bcrypt.js/releases) - [Commits](dcodeIO/bcrypt.js@2.4.3...v3.0.3) Updates `@types/bcryptjs` from 2.4.6 to 3.0.0 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/bcryptjs) --- updated-dependencies: - dependency-name: "@types/bcryptjs" dependency-version: 3.0.0 dependency-type: direct:development update-type: version-update:semver-major - dependency-name: bcryptjs dependency-version: 3.0.3 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [dotenv](https://github.com/motdotla/dotenv) from 16.6.1 to 17.4.2. - [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md) - [Commits](motdotla/dotenv@v16.6.1...v17.4.2) --- updated-dependencies: - dependency-name: dotenv dependency-version: 17.4.2 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

…backend/dotenv-17.4.2 build(deps): bump dotenv from 16.6.1 to 17.4.2 in /agentbot-backend

… updates Bumps the minor-and-patch group with 1 update in the /agentbot-backend directory: [@coinbase/cdp-sdk](https://github.com/coinbase/cdp-sdk). Updates `@coinbase/cdp-sdk` from 1.49.2 to 1.51.0 - [Changelog](https://github.com/coinbase/cdp-sdk/blob/main/RELEASE.md) - [Commits](https://github.com/coinbase/cdp-sdk/commits) Updates `@openrouter/sdk` from 0.10.2 to 0.12.79 - [Release notes](https://github.com/OpenRouterTeam/typescript-sdk/releases) - [Changelog](https://github.com/OpenRouterTeam/typescript-sdk/blob/main/RELEASES.md) - [Commits](OpenRouterTeam/typescript-sdk@v0.10.2...v0.12.79) Updates `@sentry/node` from 10.51.0 to 10.56.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](getsentry/sentry-javascript@10.51.0...10.56.0) Updates `pg` from 8.18.0 to 8.21.0 - [Changelog](https://github.com/brianc/node-postgres/blob/master/CHANGELOG.md) - [Commits](https://github.com/brianc/node-postgres/commits/pg@8.21.0/packages/pg) Updates `ts-jest` from 29.4.6 to 29.4.11 - [Release notes](https://github.com/kulshekhar/ts-jest/releases) - [Changelog](https://github.com/kulshekhar/ts-jest/blob/main/CHANGELOG.md) - [Commits](kulshekhar/ts-jest@v29.4.6...v29.4.11) --- updated-dependencies: - dependency-name: "@coinbase/cdp-sdk" dependency-version: 1.51.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@openrouter/sdk" dependency-version: 0.12.79 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@sentry/node" dependency-version: 10.56.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: pg dependency-version: 8.21.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: ts-jest dependency-version: 29.4.11 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch ... Signed-off-by: dependabot[bot] <support@github.com>

…backend/minor-and-patch-5214a05f0f build(deps): bump the minor-and-patch group across 1 directory with 5 updates

…ti-6d7db9f379 Signed-off-by: Esky33 <djescaba@icloud.com>

…backend/multi-6d7db9f379 build(deps): bump bcryptjs and @types/bcryptjs in /agentbot-backend

Bumps [jest](https://github.com/jestjs/jest/tree/HEAD/packages/jest) and [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest). These dependencies needed to be updated together. Updates `jest` from 29.7.0 to 30.4.2 - [Release notes](https://github.com/jestjs/jest/releases) - [Changelog](https://github.com/jestjs/jest/blob/main/CHANGELOG.md) - [Commits](https://github.com/jestjs/jest/commits/v30.4.2/packages/jest) Updates `@types/jest` from 29.5.14 to 30.0.0 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest) --- updated-dependencies: - dependency-name: "@types/jest" dependency-version: 30.0.0 dependency-type: direct:development update-type: version-update:semver-major - dependency-name: jest dependency-version: 30.4.2 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

…backend/multi-cbfe5253e3 build(deps-dev): bump jest and @types/jest in /agentbot-backend

…icing

…features, pricing, contributing

…istent mintlify-docs

Bumps [express](https://github.com/expressjs/express) and [@types/express](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/express). These dependencies needed to be updated together. Updates `express` from 4.22.2 to 5.2.1 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@v4.22.2...v5.2.1) Updates `@types/express` from 4.17.25 to 5.0.6 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/express) --- updated-dependencies: - dependency-name: express dependency-version: 5.2.1 dependency-type: direct:production update-type: version-update:semver-major - dependency-name: "@types/express" dependency-version: 5.0.6 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

ecc-tools · 2026-06-11T03:05:40Z

ECC bundle files are already tracked in this repository. Skipping generation of another bundle PR.

dependabot · 2026-06-15T23:02:32Z

OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

feat(api): agent-ready auth + wire M2M jobs to DB

Eskyee and others added 30 commits April 9, 2026 10:50

ci: Improve CI/CD pipeline

2652b4f

- Add Prisma generate step - Add submodules: recursive to checkout - Update URLs to current production endpoints - Add browser automation smoke test - Fix Turbopack compatibility (requires next.config.js change too)

Create AGENTBOT_LITEPAPER.md

3a90019

Signed-off-by: Esky33 <djescaba@icloud.com>

Create AGENTBOT_WHITEPAPER.md

2432825

Signed-off-by: Esky33 <djescaba@icloud.com>

Update README.md

e85b8ea

Signed-off-by: Esky33 <djescaba@icloud.com>

Update README.md

7332bd0

Signed-off-by: Esky33 <djescaba@icloud.com>

Update README.md

a1334d8

Signed-off-by: Esky33 <djescaba@icloud.com>

Update README.md

3a41d60

Signed-off-by: Esky33 <djescaba@icloud.com>

Update README.md

20210f0

Signed-off-by: Esky33 <djescaba@icloud.com>

Update README.md

fb7cf55

Signed-off-by: Esky33 <djescaba@icloud.com>

Update AGENTBOT_LITEPAPER.md

d20a869

Signed-off-by: Esky33 <djescaba@icloud.com>

Update AGENTBOT_WHITEPAPER.md

2990fe7

Signed-off-by: Esky33 <djescaba@icloud.com>

Update README.md

56ef11e

Signed-off-by: Esky33 <djescaba@icloud.com>

Update AGENTBOT_WHITEPAPER.md

4687930

Signed-off-by: Esky33 <djescaba@icloud.com>

Update AGENTBOT_WHITEPAPER.md

3a55917

Signed-off-by: Esky33 <djescaba@icloud.com>

Update AGENTBOT_WHITEPAPER.md

da910af

Signed-off-by: Esky33 <djescaba@icloud.com>

Update AGENTBOT_LITEPAPER.md

c508f4d

Signed-off-by: Esky33 <djescaba@icloud.com>

Update AGENTBOT_LITEPAPER.md

ad80728

Signed-off-by: Esky33 <djescaba@icloud.com>

Update README.md

f514cb1

Signed-off-by: Esky33 <djescaba@icloud.com>

docs: add A2A protocol spec, Co-DJ feature, underground network docs

e92e3c4

Update README.md

657116f

Signed-off-by: Esky33 <djescaba@icloud.com>

Update README.md

f04def1

Update README.md

b8dd1fa

Signed-off-by: Esky33 <djescaba@icloud.com>

Update README.md

0e2a267

Signed-off-by: Esky33 <djescaba@icloud.com>

sync: 855228c fix(dashboard): remove baseFM stream card and Solana wa…

6a350d1

…llet input

sync: 855228c fix(dashboard): remove baseFM stream card and Solana wa…

09f3103

…llet input

sync: 855228c fix(dashboard): remove baseFM stream card and Solana wa…

0c51528

…llet input

Eskyee and others added 20 commits June 4, 2026 12:34

Merge pull request #105 from Eskyee/dependabot/npm_and_yarn/minor-and…

8994544

…-patch-76dc1a679a build(deps): bump the minor-and-patch group across 1 directory with 35 updates

Merge pull request #102 from Eskyee/dependabot/npm_and_yarn/agentbot-…

49943c4

…backend/types/node-25.9.1 build(deps-dev): bump @types/node from 20.19.37 to 25.9.1 in /agentbot-backend

Merge pull request #98 from Eskyee/dependabot/npm_and_yarn/skills/onc…

2fafb77

…hainkit/assets/templates/basic-app/next-15.5.18 build(deps): bump next from 14.1.0 to 15.5.18 in /skills/onchainkit/assets/templates/basic-app

Merge pull request #97 from Eskyee/ecc-tools/agentbot-opensource-1780…

7c615d5

…514674949 feat: add agentbot-opensource ECC bundle

Merge pull request #103 from Eskyee/dependabot/npm_and_yarn/agentbot-…

152b056

…backend/dotenv-17.4.2 build(deps): bump dotenv from 16.6.1 to 17.4.2 in /agentbot-backend

Merge pull request #106 from Eskyee/dependabot/npm_and_yarn/agentbot-…

dab421f

…backend/minor-and-patch-5214a05f0f build(deps): bump the minor-and-patch group across 1 directory with 5 updates

Merge branch 'main' into dependabot/npm_and_yarn/agentbot-backend/mul…

fc1dcbc

…ti-6d7db9f379 Signed-off-by: Esky33 <djescaba@icloud.com>

Merge pull request #101 from Eskyee/dependabot/npm_and_yarn/agentbot-…

7484ba9

…backend/multi-6d7db9f379 build(deps): bump bcryptjs and @types/bcryptjs in /agentbot-backend

Merge pull request #100 from Eskyee/dependabot/npm_and_yarn/agentbot-…

aae7b25

…backend/multi-cbfe5253e3 build(deps-dev): bump jest and @types/jest in /agentbot-backend

docs: add gitlawb node info to README

9f36f9d

docs: rewrite README — v1.2.0 features, quick start, architecture, pr…

96f7b38

…icing

docs: rewrite README — Factory Orange vibe + smart structure, v1.2.0 …

0617936

…features, pricing, contributing

docs: fix README doc references — point to actual files, remove nonex…

6d21d52

…istent mintlify-docs

chore: dependency updates

622cb29

feat: add OpenClaw page with onboarding wizard + navbar link

7c29c30

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 11, 2026

Eskyee closed this Jun 15, 2026

Eskyee force-pushed the main branch from 7c29c30 to 4fa51e3 Compare June 15, 2026 23:02

dependabot Bot deleted the dependabot/npm_and_yarn/multi-b251156d90 branch June 15, 2026 23:02

Eskyee added a commit that referenced this pull request Jun 15, 2026

Merge pull request #110 from Eskyee/feat/agent-ready-api

4b5df22

feat(api): agent-ready auth + wire M2M jobs to DB

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

build(deps): bump express and @types/express#110

build(deps): bump express and @types/express#110
dependabot[bot] wants to merge 136 commits into
mainfrom
dependabot/npm_and_yarn/multi-b251156d90

dependabot Bot commented on behalf of github Jun 11, 2026

Uh oh!

ecc-tools Bot commented Jun 11, 2026

Uh oh!

dependabot Bot commented on behalf of github Jun 15, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Uh oh!

Conversation

dependabot Bot commented on behalf of github Jun 11, 2026

v5.2.1

What's Changed

v5.2.0

Important: Security

What's Changed

5.2.1 / 2025-12-01

5.2.0 / 2025-12-01

5.1.0 / 2025-03-31

5.0.1 / 2024-10-08

5.0.0 / 2024-09-10

Uh oh!

ecc-tools Bot commented Jun 11, 2026

Uh oh!

dependabot Bot commented on behalf of github Jun 15, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant