fix(deps): update all non-major dependencies

[renovate]

RicardoGEsteves all-non-major update, dependency @clerk/nextjs to v6.9.9

This PR contains the following updates:

Package	Type	Update	Change	OpenSSF	New value	Package file	References
@clerk/nextjs (source)	dependencies	patch	6.9.6 -> 6.9.9		^6.9.6	package.json	homepage, source
@hookform/resolvers (source)	dependencies	minor	3.9.1 -> 3.10.0		^3.4.2	package.json	homepage, source
@prisma/client (source)	dependencies	minor	6.1.0 -> 6.2.1		^6.1.0	package.json	homepage, source
@types/react (source)	devDependencies	patch	19.0.2 -> 19.0.6		19.0.6	package.json	homepage, source
@types/react-dom (source)	devDependencies	patch	19.0.2 -> 19.0.3		19.0.3	package.json	homepage, source
eslint-config-next (source)	devDependencies	patch	15.1.3 -> 15.1.4		15.1.4	package.json	homepage, source
lucide-react (source)	dependencies	minor	^0.469.0 -> ^0.471.0		^0.471.0	package.json	homepage, source
next (source)	dependencies	patch	15.1.3 -> 15.1.4		15.1.4	package.json	homepage, source
openai	dependencies	minor	4.77.3 -> 4.78.1		^4.77.3	package.json	source
prisma (source)	devDependencies	minor	6.1.0 -> 6.2.1		6.2.1	package.json	homepage, source
react-markdown	dependencies	patch	9.0.1 -> 9.0.3		^9.0.1	package.json	source
typescript (source)	devDependencies	patch	5.7.2 -> 5.7.3		5.7.3	package.json	homepage, source
zustand	dependencies	patch	5.0.2 -> 5.0.3		^5.0.0	package.json	source

---

Release Notes

clerk/javascript (@​clerk/nextjs)

v6.9.9

Compare Source

Patch Changes

• Always use nextUrl to build rewritten URLs (#​4856) by @​dstaley

v6.9.8

Compare Source

Patch Changes

• Add type-level validation to prevent server-side usage of system permissions (#​4816) by @​LauraBeatris

  System permissions (e.g., org:sys_domains:manage) are intentionally excluded from session claims to maintain reasonable JWT sizes. For more information, refer to our docs: https://clerk.com/docs/organizations/roles-permissions#system-permissions

• Updated dependencies [44cab6038af0a4d23869b3b292ece742fbbc4d85]:

  • @​clerk/backend@​1.21.6
  • @​clerk/types@​4.40.2
  • @​clerk/clerk-react@​5.21.2
  • @​clerk/shared@​2.20.6

v6.9.7

Compare Source

Patch Changes

• Updated dependencies [80e1117631d35834705119a79cdcf9e0ed423fdd]:
  • @​clerk/types@​4.40.1
  • @​clerk/clerk-react@​5.21.1
  • @​clerk/backend@​1.21.5
  • @​clerk/shared@​2.20.5

react-hook-form/resolvers (@​hookform/resolvers)

v3.10.0

Compare Source

Features

• update to effect 3.10 (#​729) (10aca41)

prisma/prisma (@​prisma/client)

v6.2.1

Compare Source

Today we are releasing the 6.2.1 patch release to address an issue with some of the omitApi preview feature checks having been accidentally omitted when making the feature GA. Now it is fully functional without the preview feature flag.

Changes

• https://github.com/prisma/prisma/pull/25997

v6.2.0

Compare Source

Today we're releasing Prisma ORM version 6.2.0 🎉

🌟 Help us spread the word about Prisma by starring the repo or tweeting about the release. 🌟

We have a number of new features in this version, including support for json and enum fields in SQLite, a new updateManyAndReturn function, support for ULID values, as well as the promotion of the omit feature from Preview to Generally Availability.

Highlights

Excluding fields via omit is now production-ready

Our number one requested feature is out of Preview and Generally Available. In 6.2.0, you no longer need to add omitApi to your list of Preview features:

generator client {
  provider        = "prisma-client-js"
- previewFeatures = ["omitApi"]
}

As a refresher: omit allows you to exclude certain fields from being returned in the results of your Prisma Client queries.

You can either do this locally, on a per-query level:

const result = await prisma.user.findMany({
  omit: {
    password: true,
  },
});

Or globally, to ensure a field is excluded from all queries of a certain model:

const prisma = new PrismaClient({
  omit: {
    user: {
      password: true
    }
  }
})

// The password field is excluded in all queries, including this one
const user = await prisma.user.findUnique({ where: { id: 1 } })

For more information on omit, be sure to check our documentation.

json and enum fields in SQLite

Previous to this version, you could not define json and enum fields in your Prisma schema when using SQLite. The respective GitHub issues have been among the most popular ones in our repo, so with our new approach to open-source governance, we finally got to work and implemented these.

Working with JSON and Enum fields works similarly to other database providers, here’s an example:

datasource db {
  provider = "sqlite"
  url      = "file:./dev.db"
}

model User {
  id   Int    @​id @​default(autoincrement())
  name String
  role Role  
  data Json
}

enum Role {
  Customer
  Admin 
}

Support for auto-generated ULID values

Similar to cuid2 support released in ORM version 6.0.0, we are now adding support for Universally Unique Lexicographically Sortable Identifiers (or short: ULIDs 😄) in version 6.2.0. A ULID value is a 26-character alphanumeric string, e.g. 01GZ0GZ3XARH8ZP44A7TQ2W4ZD.

With this new feature, you can now create records with auto-generated ULID values for String fields:

model User {
  id String @​id @​default(ulid())  
}

New batch function: updateManyAndReturn

updateMany allows you to update many records in your database, but it only returns the count of the affected rows, not the resulting rows themselves. With updateManyAndReturn you are now able to achieve this:

const users = await prisma.user.updateManyAndReturn({
  where: {
    email: {
      contains: 'prisma.io',
    }
  },
  data: {
    role: 'ADMIN'
  }
})

This call to updateManyAndReturn will now return the actual records that have been updated in the query:

[{
  id: 22,
  name: 'Alice',
  email: '[email protected]',
  profileViews: 0,
  role: 'ADMIN',
  coinflips: []
}, {
  id: 23,
  name: 'Bob',
  email: '[email protected]',
  profileViews: 0,
  role: 'ADMIN',
  coinflips: []
}]

Please note that like createManyAndReturn, updateManyAndReturn is only supported in PostgreSQL, CockroachDB, and SQLite.

Fixed runtime error in Node.js v23

While not officially supported, we understand that a lot of you like to be on the latest Node.js version — so we fixed an error that only occurred on Node.js 23. Happy coding ✌️

Prisma is hiring 🤝

Join us at Prisma to work on the most popular TypeScript ORM and other exciting products like the first serverless database built on unikernels!

We currently have two open roles in our Engineering team:

• Senior Software Engineer (Prisma ORM)
• Senior Software Engineer (Prisma Data Platform)

If these don’t fit, you can still check out our jobs page and send a general application.

vercel/next.js (eslint-config-next)

v15.1.4

Compare Source

lucide-icons/lucide (lucide-react)

v0.471.1: Hotfix Lucide React exports

Compare Source

What's Changed

• fix(lucide-react) Adds type module in package.json by @​ericfennis in https://github.com/lucide-icons/lucide/pull/2731

v0.471.0: Dynamic Icon component Lucide React and new icons 0.471.0

Compare Source

New Dynamic Icon Component (lucide-react)

This is an easier approach than the previous dynamicIconImports we exported in the library. This one supports all environments.
We removed the examples in the docs of how you can make a dynamic icon yourself with a dedicated DynamicIcon component.
This one fetches the icon data itself and renders it instead of fetching the Icon component from the library.
This makes it more flexible with all the frontend frameworks and libraries that exist for React.

🚨
Not recommended for regular applications that work fine with the regular static icon components.
Using the dynamic icon component increases build time, separate bundles, and separate network requests for each icon.

How to use

DynamicIcon is useful for applications that want to show icons dynamically by icon name, for example when using a content management system where icon names are stored in a database.

const App = () => (
  <DynamicIcon name="camera" color="red" size={48} />
);

Possible Breaking changes

We have switched to the "exports" property in package.json. This can cause issues if you have directly imported scripts from the package. Please open an issue if we need to refine this export map.

New icons 🎨

• triangle-dashed (#​2652) by @​Yohh

v0.470.0: New icons 0.470.0

Compare Source

New icons 🎨

• house-wifi (#​2723) by @​akshaymemane

Modified Icons 🔨

• rat (#​2692) by @​jguddas

vercel/next.js (next)

v15.1.4

Compare Source

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• backport: force module format for virtual client-proxy (#​74608)
• Fix prerender tags when notFound is called (#​74607)
• Use provided waitUntil for pending revalidates (#​74604)
• Feature: next/image: add support for images.qualities in next.config (#​74588)
• Chore: docs: add missing search: '' on remotePatterns (#​74587)
• Chore: docs: update version history of next/image (#​73923) (#​74570)
• Chore: next/image: improve imgopt api bypass detection for unsupported images (#​74569)

Credits

Huge thanks to @​ and @​ for helping!

openai/openai-node (openai)

v4.78.1

Compare Source

Full Changelog: v4.78.0...v4.78.1

Bug Fixes

• send correct Accept header for certain endpoints (#​1257) (8756693)

v4.78.0

Compare Source

Full Changelog: v4.77.4...v4.78.0

Features

• client: add realtime types (#​1254) (7130995)

v4.77.4

Compare Source

Full Changelog: v4.77.3...v4.77.4

Documentation

• readme: fix misplaced period (#​1252) (c2fe465)

remarkjs/react-markdown (react-markdown)

v9.0.3

Compare Source

(same as 9.0.2 but now with d.ts files)

Full Changelog: remarkjs/react-markdown@9.0.2...9.0.3

v9.0.2

Compare Source

Types

• b151a90 Fix types for React 19
  by @​remcohaszing in https://github.com/remarkjs/react-markdown/pull/879
• 6962af7 Add declaration maps
• aa5933b Refactor to use @import to import types
  by @​remcohaszing in https://github.com/remarkjs/react-markdown/pull/836

Miscellaneous

• 9eb589e Fix typo in changelog
  by @​NicholasWilsonDEV in https://github.com/remarkjs/react-markdown/pull/874
• 515bf19 Fix typo
  by @​deep-lyra in https://github.com/remarkjs/react-markdown/pull/868

Full Changelog: remarkjs/react-markdown@9.0.1...9.0.2

microsoft/TypeScript (typescript)

v5.7.3

Compare Source

pmndrs/zustand (zustand)

v5.0.3

Compare Source

ExtractState is a type util to extract state type from store type.

What's Changed

• feat(types): Make ExtractState public by @​vorant94 in https://github.com/pmndrs/zustand/pull/2935
• fix(build): alias entries in rollup config by @​dai-shi in https://github.com/pmndrs/zustand/pull/2942

New Contributors

• @​atticoos made their first contribution in https://github.com/pmndrs/zustand/pull/2883
• @​sukvvon made their first contribution in https://github.com/pmndrs/zustand/pull/2890
• @​Wxh16144 made their first contribution in https://github.com/pmndrs/zustand/pull/2891
• @​leweyse made their first contribution in https://github.com/pmndrs/zustand/pull/2913
• @​dmaskasky made their first contribution in https://github.com/pmndrs/zustand/pull/2936
• @​HoberMin made their first contribution in https://github.com/pmndrs/zustand/pull/2938

Full Changelog: pmndrs/zustand@v5.0.2...v5.0.3

---

Configuration

📅 Schedule: Branch creation - "every weekend" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json

npm error code ERESOLVE
npm error ERESOLVE could not resolve
npm error
npm error While resolving: [email protected]
npm error Found: [email protected]
npm error node_modules/react
npm error   react@"^19" from the root project
npm error   peer react@">=16.8.0" from @floating-ui/[email protected]
npm error   node_modules/@floating-ui/react-dom
npm error     @floating-ui/react-dom@"^2.0.0" from @radix-ui/[email protected]
npm error     node_modules/@radix-ui/react-popper
npm error       @radix-ui/react-popper@"1.2.1" from @radix-ui/[email protected]
npm error       node_modules/@radix-ui/react-select
npm error         @radix-ui/react-select@"^2.1.4" from the root project
npm error   45 more (@radix-ui/react-arrow, @radix-ui/react-avatar, ...)
npm error
npm error Could not resolve dependency:
npm error peer react@"^17.x || ^18.x" from [email protected]
npm error node_modules/typewriter-effect
npm error   typewriter-effect@"^2.21.0" from the root project
npm error
npm error Conflicting peer dependency: [email protected]
npm error node_modules/react
npm error   peer react@"^17.x || ^18.x" from [email protected]
npm error   node_modules/typewriter-effect
npm error     typewriter-effect@"^2.21.0" from the root project
npm error
npm error Fix the upstream dependency conflict, or retry
npm error this command with --force or --legacy-peer-deps
npm error to accept an incorrect (and potentially broken) dependency resolution.
npm error
npm error
npm error For a full report see:
npm error /tmp/renovate/cache/others/npm/_logs/2025-01-13T10_27_06_829Z-eresolve-report.txt
npm error A complete log of this run can be found in: /tmp/renovate/cache/others/npm/_logs/2025-01-13T10_27_06_829Z-debug-0.log