chore: 🤖 bump the minor-and-patch group with 8 updates

[dependabot]

Bumps the minor-and-patch group with 8 updates:

Package	From	To
@phun-ky/typeof	3.0.1	3.0.2
@release-it/conventional-changelog	11.0.0	11.0.1
@rollup/plugin-commonjs	29.0.2	29.0.3
eslint-config-phun-ky	2.0.2	2.0.3
putout	42.5.0	42.5.1
release-it	20.0.1	20.2.0
rollup	4.60.4	4.61.0
tsx	4.22.3	4.22.4

Updates @phun-ky/typeof from 3.0.1 to 3.0.2

Release notes

Sourced from @​phun-ky/typeof's releases.

Release 3.0.2

3.0.2 (2026-05-26)

Tasks

• 🤖 bump the minor-and-patch group with 4 updates (13aff06)

Changelog

Sourced from @​phun-ky/typeof's changelog.

3.0.2 (2026-05-26)

Tasks

• 🤖 bump the minor-and-patch group with 4 updates (13aff06)

Commits

• 7e1c06e chore: 🤖 release v3.0.2
• 1222226 Merge pull request #103 from phun-ky/dependabot/npm_and_yarn/minor-and-patch-...
• 13aff06 chore: 🤖 bump the minor-and-patch group with 4 updates
• See full diff in compare view

Updates @release-it/conventional-changelog from 11.0.0 to 11.0.1

Release notes

Sourced from @​release-it/conventional-changelog's releases.

Release 11.0.1

• Restore no-preset fallback to prevent whatBump error (636c254fd1df5c4858d9ab48d1e1c13a1f24412a)
• Bump tmp from 0.2.5 to 0.2.6 (#145) (ce9a599e2762247bc8c71143214ab1cc6c162489) - thanks @​dependabot[bot]!
• Update dependencies (063b6af211b095465490e5b1c801955c7d25e72e)
• Derive tag prefix from resolved tag for recommended bump (resolve #80) (8947320a51403c8eaf47eebad8d3cef637cc3279)
• Document transform override and parseCommits resolution (resolve #78, resolve #137) (f3461f1ed7133bb70022ae4e6dbdd011f6d4641d)
• Run tests on Node 26 (74812985412d061d39352071a0c04666e25c61c5)

Commits

• 82f88c9 Release 11.0.1
• 7481298 Run tests on Node 26
• f3461f1 Document transform override and parseCommits resolution (resolve #78, resolve...
• 8947320 Derive tag prefix from resolved tag for recommended bump (resolve #80)
• 063b6af Update dependencies
• ce9a599 Bump tmp from 0.2.5 to 0.2.6 (#145)
• 636c254 Restore no-preset fallback to prevent whatBump error
• See full diff in compare view

Updates @rollup/plugin-commonjs from 29.0.2 to 29.0.3

Changelog

Sourced from @​rollup/plugin-commonjs's changelog.

v29.0.3

2026-05-29

Bugfixes

• commonjs: make #1868 es5-compatible (#1981)

Commits

• 1e4025b chore(release): commonjs v29.0.3
• 08a5b17 fix(commonjs): make #1868 es5-compatible (#1981)
• 5800bf3 chore(repo): test migration to vitest. phase 4 (#1978)
• See full diff in compare view

Updates eslint-config-phun-ky from 2.0.2 to 2.0.3

Release notes

Sourced from eslint-config-phun-ky's releases.

Release 2.0.3

2.0.3 (2026-05-26)

Tasks

• 🤖 bump the minor-and-patch group with 2 updates (0e58f18)

Changelog

Sourced from eslint-config-phun-ky's changelog.

2.0.3 (2026-05-26)

Tasks

• 🤖 bump the minor-and-patch group with 2 updates (0e58f18)

Commits

• 2a8a333 chore: 🤖 release v2.0.3
• 2f1c7ee chore: 🤖 bump the minor-and-patch group with 2 updates (#74)
• 0e58f18 chore: 🤖 bump the minor-and-patch group with 2 updates
• See full diff in compare view

Updates putout from 42.5.0 to 42.5.1

Release notes

Sourced from putout's releases.

putout v42.5.1

🔥 feature

• 0a8fa03f7 putout: @​putout/plugin-apply-global-this v2.0.0
• dc6eb53ca @​putout/plugin-apply-global-this: drop support of 🐊 < 42
• d20d2cd9a @​putout/plugin-apply-global-this: exclude declared self
• 5ae86eeb5 @​putout/plugin-nodejs: convert-commonjs-to-esm: require: exports
• 3826ca301 @​putout/operate: setLiteralValue: StringLiteral: always convert value to string
• a6599d685 @​putout/plugin-nodejs: apply-inherit: add
• 7fcb38997 @​putout/processor-toml: oxfmt v0.51.0
• 214f96b84 @​putout/plugin-putout: apply-fixture-name-to-message: destructured
• 4458c6e50 @​putout/plugin-esm: declare-imports-first: ExportNamedDeclaration
• 33686dbb1 @​putout/processor-toml: oxfmt v0.50.0
• f52f64354 @​putout/processor-toml: oxfmt v0.49.0
• f078a6803 @​putout/engine-runner: get-position: column + 1 -> column
• be8fcc177 @​putout/plugin-package-json: remove-exports-nesting: add
• bd7381c5e @​putout/plugin-putout: add-push-arg: exclude traverse
• a088aaddd @​putout/plugin-package-json: remove-useless-exports: add
• abe442e5e @​putout/eslint-flat: @​eslint/config-helpers v0.6.0
• 084e7322f @​putout/plugin-converage: apply-camel-case: add
• bec36b9af @​putout/plugin-react-router: drop support of 🐊 < 42
• 0aa0a44e0 @​putout/plugin-react-router: v7-remove-useless-server
• 5980c3573 @​putout/plugin-github: update-actions: show version
• 8309e68ab @​putout/plugin-github: update-actions: EndBug/add-and-commit@v10
• cb98397cb root: supertape v13.0.0

Commits

• 79d856c chore: putout: v42.5.1
• 0a8fa03 feature: putout: @​putout/plugin-apply-global-this v2.0.0
• 894f1c7 chore: @​putout/plugin-apply-global-this: v2.0.0
• dc6eb53 feature: @​putout/plugin-apply-global-this: drop support of 🐊 < 42
• d20d2cd feature: @​putout/plugin-apply-global-this: exclude declared self
• 2905a77 chore: @​putout/plugin-nodejs: v21.11.0
• 5ae86ee feature: @​putout/plugin-nodejs: convert-commonjs-to-esm: require: exports
• cedb88e chore: @​putout/operate: v15.4.0
• 3826ca3 feature: @​putout/operate: setLiteralValue: StringLiteral: always convert valu...
• 988f8d8 chore: @​putout/plugin-nodejs: v21.10.0
• Additional commits viewable in compare view

Updates release-it from 20.0.1 to 20.2.0

Release notes

Sourced from release-it's releases.

Release 20.2.0

• Print staged-packages approval URL after stage publish (244d8112498d7283f6bdcfd25d487ecc833aff03)
• Capture the stage id for the approval message (2476065893cfe3421cf54c02d73d280c8192b41d)

Release 20.1.0

• feat: add --quiet flag to hide release previews (#1274) (ecefe4407351bc74a85e88355a2772ea8fb22396) - thanks @​Yeom-JinHo!
• fix: ensure release body is an empty string instead of null (#1303) (5cc5ebd284673cb67b7897c3bd36c3ace6d54880) - thanks @​driiftkiing!
• Add 'Accept-Encoding' header to GitLab API requests (#1301) (14a478e4c1db309a04babe7060f0d95fb2879134) - thanks @​KlausDerKleber!
• Support npm staged publishing (npm.stage) (aa20f56587f0f5720e684d6b1d6b9bc594b3876e)
• Run tests on Node 26 (29f079bf8a515f1fced7bde05902183b1e990b2d)
• Use draft flow for immutable releases with assets (resolve #1295) (c63b4e46710564edf809ea688d12ecc4abc39d33)
• Publish interactively under --only-version so passkey 2FA works (resolve #1234) (4ebb66ebc6cee1b5352aa0fdafc0fa80ad568645)
• Format docs/npm.md (a2a262c524a14b040aa9cc50f3ea45f2e4ac78e3)
• Dogfoodin' (0cb51a9c85cc7e91db57c251e216664197639565)

Commits

• 3217e49 Release 20.2.0
• 2476065 Capture the stage id for the approval message
• 244d811 Print staged-packages approval URL after stage publish
• 5a105f3 Release 20.1.0
• 0cb51a9 Dogfoodin'
• a2a262c Format docs/npm.md
• 4ebb66e Publish interactively under --only-version so passkey 2FA works (resolve #1234)
• c63b4e4 Use draft flow for immutable releases with assets (resolve #1295)
• 29f079b Run tests on Node 26
• aa20f56 Support npm staged publishing (npm.stage)
• Additional commits viewable in compare view

Updates rollup from 4.60.4 to 4.61.0

Release notes

Sourced from rollup's releases.

v4.61.0

4.61.0

2026-06-01

Features

• Sort entry modules to make chunk hashes deterministic (#6391)

Pull Requests

• #6376: Eliminate AWS credential exposure on fork PRs in REPL artefact workflow (@​lukastaegert)
• #6378: fix(deps): update minor/patch updates (@​renovate[bot])
• #6379: chore(deps): update dependency lint-staged to v17 (@​renovate[bot], @​lukastaegert)
• #6380: chore(deps): update dependency lru-cache to v11 (@​renovate[bot], @​lukastaegert)
• #6381: chore(deps): lock file maintenance (@​renovate[bot], @​lukastaegert)
• #6382: chore(deps): update dependency @​types/node to ^20.19.41 (@​renovate[bot])
• #6386: fix(deps): update minor/patch updates (@​renovate[bot])
• #6387: chore(deps): update aws-actions/configure-aws-credentials action to v6 (@​renovate[bot])
• #6388: fix(deps): update swc monorepo (major) (@​renovate[bot], @​lukastaegert)
• #6389: chore(deps): lock file maintenance (@​renovate[bot])
• #6391: Sort entry modules to make chunk hash names deterministic (@​TrickyPi)
• #6394: fix(deps): update minor/patch updates (@​renovate[bot], @​lukastaegert)
• #6395: chore(deps): update react monorepo to v19 (@​renovate[bot], @​lukastaegert)
• #6396: fix(deps): update rust crate swc_compiler_base to v57 (@​renovate[bot], @​lukastaegert)
• #6397: chore(deps): lock file maintenance (@​renovate[bot], @​lukastaegert)
• #6400: docs: fix broken links (@​jiyujie2006)

Changelog

Sourced from rollup's changelog.

4.61.0

2026-06-01

Features

• Sort entry modules to make chunk hashes deterministic (#6391)

Pull Requests

• #6376: Eliminate AWS credential exposure on fork PRs in REPL artefact workflow (@​lukastaegert)
• #6378: fix(deps): update minor/patch updates (@​renovate[bot])
• #6379: chore(deps): update dependency lint-staged to v17 (@​renovate[bot], @​lukastaegert)
• #6380: chore(deps): update dependency lru-cache to v11 (@​renovate[bot], @​lukastaegert)
• #6381: chore(deps): lock file maintenance (@​renovate[bot], @​lukastaegert)
• #6382: chore(deps): update dependency @​types/node to ^20.19.41 (@​renovate[bot])
• #6386: fix(deps): update minor/patch updates (@​renovate[bot])
• #6387: chore(deps): update aws-actions/configure-aws-credentials action to v6 (@​renovate[bot])
• #6388: fix(deps): update swc monorepo (major) (@​renovate[bot], @​lukastaegert)
• #6389: chore(deps): lock file maintenance (@​renovate[bot])
• #6391: Sort entry modules to make chunk hash names deterministic (@​TrickyPi)
• #6394: fix(deps): update minor/patch updates (@​renovate[bot], @​lukastaegert)
• #6395: chore(deps): update react monorepo to v19 (@​renovate[bot], @​lukastaegert)
• #6396: fix(deps): update rust crate swc_compiler_base to v57 (@​renovate[bot], @​lukastaegert)
• #6397: chore(deps): lock file maintenance (@​renovate[bot], @​lukastaegert)
• #6400: docs: fix broken links (@​jiyujie2006)

Commits

• 765167f 4.61.0
• 0f547eb Sort entry modules to make chunk hash names deterministic (#6391)
• 5838787 docs: fix broken links (#6400)
• cc0f51a chore(deps): update react monorepo to v19 (#6395)
• dd30037 fix(deps): update rust crate swc_compiler_base to v57 (#6396)
• cb86c3e chore(deps): lock file maintenance (#6397)
• db2b6e0 fix(deps): update minor/patch updates (#6394)
• c16e493 chore(deps): lock file maintenance (#6389)
• 65397f1 chore(deps): update aws-actions/configure-aws-credentials action to v6 (#6387)
• 6817778 fix(deps): update minor/patch updates (#6386)
• Additional commits viewable in compare view

Updates tsx from 4.22.3 to 4.22.4

Release notes

Sourced from tsx's releases.

v4.22.4

4.22.4 (2026-05-31)

Bug Fixes

• resolve CommonJS directory requires inside dependencies (#803) (1ce8463)

---

This release is also available on:

• npm package (@​latest dist-tag)

Commits

• 1ce8463 fix: resolve CommonJS directory requires inside dependencies (#803)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	eslint-config-phun-ky@​2.0.2 ⏵ 2.0.3				+1
	@​release-it/​conventional-changelog@​11.0.0 ⏵ 11.0.1	+1
	putout@​42.5.0 ⏵ 42.5.1				+2
	release-it@​20.0.1 ⏵ 20.2.0				-1
	@​rollup/​plugin-commonjs@​29.0.2 ⏵ 29.0.3
	@​phun-ky/​typeof@​3.0.1 ⏵ 3.0.2				+1

View full report