Skip to content

build(deps-dev): bump eslint-config-next from 16.2.3 to 16.2.4 in /dashboard#811

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/dashboard/eslint-config-next-16.2.4
Open

build(deps-dev): bump eslint-config-next from 16.2.3 to 16.2.4 in /dashboard#811
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/dashboard/eslint-config-next-16.2.4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 16, 2026

Copy link
Copy Markdown
Contributor

Bumps eslint-config-next from 16.2.3 to 16.2.4.

Release notes

Sourced from eslint-config-next's releases.

v16.2.4

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

  • chore: Bump reqwest to 0.13.2 (Fixes Google Fonts with Turbopack for Windows on ARM64) (#92713)
  • Turbopack: fix filesystem watcher config not applying follow_symlinks(false) (#92631)
  • Scope Safari ?ts= cache-buster to CSS/font assets only (Pages Router) (#92580)
  • Compiler: Support boolean and number primtives in next.config defines (#92731)
  • turbo-tasks: Fix recomputation loop by allowing cell cleanup on error during recomputation (#92725)
  • Turbopack: shorter error for ChunkGroupInfo::get_index_of (#92814)
  • Turbopack: shorter error message for ModuleBatchesGraph::get_entry_index (#92828)
  • Adding more system info to the 'initialize project' trace (#92427)

Credits

Huge thanks to @​Badbird5907, @​lukesandberg, @​andrewimm, @​sokra, and @​mischnic for helping!

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [eslint-config-next](https://github.com/vercel/next.js/tree/HEAD/packages/eslint-config-next) from 16.2.3 to 16.2.4.
- [Release notes](https://github.com/vercel/next.js/releases)
- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)
- [Commits](https://github.com/vercel/next.js/commits/v16.2.4/packages/eslint-config-next)

---
updated-dependencies:
- dependency-name: eslint-config-next
  dependency-version: 16.2.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 16, 2026

@hermes-exosphere hermes-exosphere left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Auto-approved: all 3 CI checks passing. Ready to merge.

@hermes-exosphere

Copy link
Copy Markdown

Your PR is awaiting review by a moderator. Till then you can join the Discord for conversation: https://discord.gg/qaFM2uYFb

@hermes-exosphere

Copy link
Copy Markdown

Automated code review started - full review. Results will be posted here.

@hermes-exosphere

Copy link
Copy Markdown

🔍 Automated Code Review

📋 Executive Summary

Dependabot bumps eslint-config-next from 16.2.3 to 16.2.4 in /dashboard. This is a patch-level dev dependency update containing Turbopack fixes and compiler improvements. The change is minimal — only version bumps in package.json and package-lock.json. No source code changes required.


📊 Change Architecture

graph TD
    A[package.json] -->|"version: 16.2.3 to 16.2.4"| B[eslint-config-next]
    B --> C["@next/eslint-plugin-next 16.2.4"]
    C --> D[ESLint linting rules]
    style B fill:#87CEEB
    style C fill:#87CEEB
Loading

Legend: 🔵 Modified (patch bump only)


🔴 Breaking Changes

✅ No breaking changes detected. This is a patch-level bump from 16.2.3 to 16.2.4. The release notes confirm bug fixes only:

  • Turbopack filesystem watcher config fix
  • reqwest bump for Windows ARM64 Google Fonts
  • Compiler boolean/number defines support
  • Turbo-tasks recomputation loop fix

⚠️ Issues Found

No issues found in this PR.


🔬 Logical / Bug Analysis

  • Integrity verified: Both eslint-config-next@16.2.4 and @next/eslint-plugin-next@16.2.4 integrity hashes in package-lock.json match the npm registry.
  • Dependency tree unchanged: Dependencies (@next/eslint-plugin-next, eslint-import-resolver-node, etc.) remain identical — only the sub-dependency @next/eslint-plugin-next version bumped in lockstep.
  • Scope confined: Only 2 files changed, 9 insertions and 9 deletions — purely version strings and integrity hashes.
  • No config changes: The eslint config file (eslint.config.mjs) is not touched. No new rules or breaking rule changes between 16.2.3 and 16.2.4.
  • Peer dependency warnings: Pre-existing (present in 16.2.3 as well) — eslint 10 + typescript 6 peer dep warnings from the eslint-config-next sub-dependencies. Not introduced or worsened by this bump.

🧪 Evidence — Build & Test Results

TypeScript Check
$ npx tsc --noEmit
(exit code 0 — no errors)
Docker Build (npm ci stage)
#9 [deps 3/3] RUN npm ci
#9 209.0 added 458 packages, and audited 459 packages in 3m
#9 209.2 6 vulnerabilities (1 low, 4 moderate, 1 high)

npm ci succeeded with eslint-config-next@16.2.4 installed.

npm Registry Integrity Verification
$ npm view eslint-config-next@16.2.4 dist.integrity
sha512-A6ekXYFj/YQxBPMl45g3e+U8zJo+X2+ZQwcz34pPKjpc/3S4roBA2Rd9xWB4FKuSxhofo1/95WjzmUY+wHrOhg==
✅ Matches lockfile

$ npm view @next/eslint-plugin-next@16.2.4 dist.integrity
sha512-tOX826JJ96gYK/go18sPUgMq9FK1tqxBFfUCEufJb5XIkWFFmpgU7mahJANKGkHs7F41ir3tReJ3Lv5La0RvhA==
✅ Matches lockfile

🔗 Issue Linkage

⚠️ No issue linked. This is a routine dependency bump by Dependabot.


👥 Human Review Feedback

No human review comments on this PR.


💡 Suggestions

None. This is a clean, automated patch bump with no concerns.


🏆 Verdict

VERDICT: APPROVED


Automated code review · 2026-07-17 12:55 UTC

@hermes-exosphere hermes-exosphere left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Automated review: Approved. Patch-level dev dependency bump (eslint-config-next 16.2.3 -> 16.2.4). Integrity hashes verified against npm registry. TypeScript check passes. No source code changes, no breaking changes, no config changes. ✅

@hermes-exosphere hermes-exosphere left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Automated review: Approved. ✅

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant