Skip to content

chore(deps)(deps): bump the transitive group across 1 directory with 32 updates#514

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/transitive-806cd5ed46
Open

chore(deps)(deps): bump the transitive group across 1 directory with 32 updates#514
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/transitive-806cd5ed46

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github May 14, 2026
edited
Loading

Bumps the transitive group with 32 updates in the / directory:

Package From To
@libp2p/peer-id 6.0.8 6.0.9
@multiformats/multiaddr 13.0.1 13.0.3
@noble/ciphers 2.1.1 2.2.0
@noble/curves 2.0.1 2.2.0
@noble/hashes 2.0.1 2.2.0
@libp2p/autonat 3.0.18 3.0.19
@libp2p/bootstrap 12.0.19 12.0.21
@libp2p/circuit-relay-v2 4.2.3 4.2.4
@libp2p/crypto 5.1.17 5.1.18
@libp2p/dcutr 3.0.18 3.0.19
@libp2p/gossipsub 15.0.20 15.0.22
@libp2p/identify 4.1.3 4.1.5
@libp2p/kad-dht 16.2.4 16.2.6
@libp2p/mdns 12.0.19 12.0.21
@libp2p/ping 3.1.3 3.1.4
@libp2p/tcp 11.0.18 11.0.19
@libp2p/websockets 10.1.11 10.1.12
@noble/ed25519 3.0.0 3.1.0
libp2p 3.2.3 3.3.0
protobufjs 8.0.0 8.3.0
ajv 8.18.0 8.20.0
@openzeppelin/contracts 5.4.0 5.6.1
solady 0.0.285 0.1.26
force-graph 1.51.1 1.51.4
oxigraph 0.5.5 0.5.8
@modelcontextprotocol/sdk 1.27.1 1.29.0
yaml 2.8.3 2.9.0
react 19.2.4 19.2.6
react-dom 19.2.4 19.2.6
@openuidev/react-lang 0.2.3 0.2.4
lucide-react 1.14.0 1.16.0
zustand 5.0.12 5.0.13

Updates @libp2p/peer-id from 6.0.8 to 6.0.9

Release notes

Sourced from @​libp2p/peer-id's releases.

peer-id: v6.0.9

6.0.9 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/crypto bumped from ^5.1.17 to ^5.1.18
Commits

Updates @multiformats/multiaddr from 13.0.1 to 13.0.3

Release notes

Sourced from @​multiformats/multiaddr's releases.

v13.0.3

13.0.3 (2026-05-12)

Bug Fixes

  • export registry as interface instance (#437) (e80b489)

v13.0.2

13.0.2 (2026-05-12)

Trivial Changes

Dependencies

  • bump multiformats from 13.4.2 to 14.0.0 (#432) (c21e208)
Changelog

Sourced from @​multiformats/multiaddr's changelog.

13.0.3 (2026-05-12)

Bug Fixes

  • export registry as interface instance (#437) (e80b489)

13.0.2 (2026-05-12)

Trivial Changes

Dependencies

  • bump multiformats from 13.4.2 to 14.0.0 (#432) (c21e208)
Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​multiformats/multiaddr since your current version.


Updates @noble/ciphers from 2.1.1 to 2.2.0

Release notes

Sourced from @​noble/ciphers's releases.

2.2.0

  • March 2026 self-audit (all files): no major issues found
    • Audited for spec compliance and security
    • Fix: ctr from webcrypto submodule used wrong counter wrapping
    • Fix: MAC no longer corrupts oversized outputs
    • Align CMAC API to other MACs
  • Fix all Byte Array types, to ensure proper work in both TypeScript 5.6 & TypeScript 5.9+
    • TS 5.6 has Uint8Array, while TS 5.9+ made it generic Uint8Array<ArrayBuffer>
    • This creates incompatibility of code between versions
    • Previously, it was hard to use and constantly emitted errors similar to TS2345
    • See typescript#62240 for more context
  • Fix compilation issues on TypeScript v6
  • Zeroization improvements by @​ChALkeR in paulmillr/noble-ciphers#67, paulmillr/noble-ciphers#68
  • Make package Big Endian friendly. All tests pass on s390x
  • Improve tree-shaking, reduce bundle sizes
  • Add massive amounts of documentation everywhere

Full Changelog: paulmillr/noble-ciphers@2.1.1...2.2.0

Commits

Updates @noble/curves from 2.0.1 to 2.2.0

Release notes

Sourced from @​noble/curves's releases.

2.2.0

  • March 2026 self-audit (all files): no major issues found
    • Audited for spec compliance and security
    • ed25519: make zip215 verification logic match spec more strictly (spec vectors were not enough)
    • ed448: turn off zip215 mode by default, use stricter one
    • schnorr: reduce rand by mod N instead of throwing
    • math: hardening of sqrt
    • babyjubjub: use correct curve and curve params
    • der: improve parsing
    • bls: improve point decoding
    • bls, bn: Fix Fp6 / Fp12 order
    • hash-to-curve: empty dst / count now throws
    • Apply Object.freeze to most primitives
    • Other minor hardening
  • Fix all Byte Array types, to ensure proper work in both TypeScript 5.6 & TypeScript 5.9+
    • TS 5.6 has Uint8Array, while TS 5.9+ made it generic Uint8Array<ArrayBuffer>
    • This creates incompatibility of code between versions
    • Previously, it was hard to use and constantly emitted errors similar to TS2345
    • See typescript#62240 for more context
  • Implement FROST threshold signatures from RFC 9591
  • Fix compilation issues on TypeScript v6
  • Improve tree-shaking, reduce bundle sizes
  • Add massive amounts of documentation everywhere

(We're skipping v2.1, to align with other noble packages)

Full Changelog: paulmillr/noble-curves@2.0.1...2.2.0

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​noble/curves since your current version.


Updates @noble/hashes from 2.0.1 to 2.2.0

Release notes

Sourced from @​noble/hashes's releases.

2.2.0

  • March 2026 self-audit (all files): no major issues found
    • Audited for spec compliance and security
    • Fix: dkLen=0 handling in pbkdf2, blake2, turboshake, kt
    • Fix: parallelHash with blockLen=0
    • Fix: argon2 progress callback now reaches 100%
    • Improve: digestInto no longer returns a value (better performance)
    • Improve: argon2, blake2 support non-4-divisible dkLen
  • Fix all Byte Array types, to ensure proper work in both TypeScript 5.6 & TypeScript 5.9+
    • TS 5.6 has Uint8Array, while TS 5.9+ made it generic Uint8Array<ArrayBuffer>
    • This creates incompatibility of code between versions
    • Previously, it was hard to use and constantly emitted errors similar to TS2345
    • See typescript#62240 for more context
  • sha3: speed-up by up to 50%. Contributed by @​ChALkeR in paulmillr/noble-hashes#126
  • Fix compilation issues on TypeScript v6
  • Make package Big Endian friendly. All tests pass on s390x
  • Improve tree-shaking, reduce bundle sizes
  • Add massive amounts of documentation everywhere

(We're skipping v2.1, to align with other noble packages)

Full Changelog: paulmillr/noble-hashes@2.0.1...2.2.0

Commits
  • 81983c2 Release 2.2.0.
  • 8883d32 Minor syntax fixes
  • e5fedba Run prettier format on tests
  • 72e2083 Changes related to March 2026 audit (new tests)
  • fd9f580 Changes related to March 2026 audit (typed arrays)
  • 9a216b5 Changes related to March 2026 audit
  • 85e35d5 Clarify sha3.
  • cc8ea40 Merge pull request #126 from ChALkeR/chalker/unroll/sha3/0/chi
  • 46c3129 Bump typescript to 6.0.2
  • ca90465 Bump devdeps.
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​noble/hashes since your current version.


Updates @libp2p/autonat from 3.0.18 to 3.0.19

Release notes

Sourced from @​libp2p/autonat's releases.

dcutr: v3.0.19

3.0.19 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/interface-internal bumped from ^3.1.3 to ^3.1.4
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0

autonat: v3.0.19

3.0.19 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/interface-internal bumped from ^3.1.3 to ^3.1.4
      • @​libp2p/peer-collections bumped from ^7.0.18 to ^7.0.19
      • @​libp2p/peer-id bumped from ^6.0.8 to ^6.0.9
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0
    • devDependencies
      • @​libp2p/crypto bumped from ^5.1.17 to ^5.1.18
      • @​libp2p/logger bumped from ^6.2.6 to ^6.2.7

plaintext: v3.0.19

3.0.19 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/crypto bumped from ^5.1.17 to ^5.1.18
      • @​libp2p/peer-id bumped from ^6.0.8 to ^6.0.9
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0
    • devDependencies
      • @​libp2p/crypto bumped from ^5.1.17 to ^5.1.18
      • @​libp2p/logger bumped from ^6.2.6 to ^6.2.7

pnet: v3.0.19

3.0.19 (2026-04-25)

Dependencies

  • The following workspace dependencies were updated
    • dependencies

... (truncated)

Commits

Updates @libp2p/bootstrap from 12.0.19 to 12.0.21

Release notes

Sourced from @​libp2p/bootstrap's releases.

mplex: v12.0.21

12.0.21 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0
    • devDependencies
      • @​libp2p/interface-compliance-tests bumped from ^7.0.20 to ^7.0.21
      • @​libp2p/logger bumped from ^6.2.6 to ^6.2.7
Commits

Updates @libp2p/circuit-relay-v2 from 4.2.3 to 4.2.4

Commits

Updates @libp2p/crypto from 5.1.17 to 5.1.18

Release notes

Sourced from @​libp2p/crypto's releases.

crypto: v5.1.18

5.1.18 (2026-05-09)

Bug Fixes

  • crypto: derive ed25519 public key with @​noble/curves (#3493) (bd9e02d)
Commits
  • 48d3b8b chore: release main (#3494)
  • 15eeedb fix(libp2p): release probe stream slot on ConnectionMonitor ping error (#3464)
  • bd9e02d fix(crypto): derive ed25519 public key with @​noble/curves (#3493)
  • 40a6220 fix(utils): guard onProgress cycles in Job dispatch (#3485)
  • 81e8dcc refactor(libp2p): drop asMultiaddr, use composite sort (#3492)
  • 7a35523 feat(utils): add multiaddr sort comparators (#3488)
  • 5c1e8cc chore: release main (#3482)
  • d1ab982 fix(gossipsub): use monotonic seqnos (#3487)
  • 3a5e46e fix: emit self:peer:update on observed address removal (#3483)
  • 10b2bdf deps: update node-datachannel to 0.32.x (#3481)
  • Additional commits viewable in compare view

Updates @libp2p/dcutr from 3.0.18 to 3.0.19

Release notes

Sourced from @​libp2p/dcutr's releases.

dcutr: v3.0.19

3.0.19 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/interface-internal bumped from ^3.1.3 to ^3.1.4
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0

autonat: v3.0.19

3.0.19 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/interface-internal bumped from ^3.1.3 to ^3.1.4
      • @​libp2p/peer-collections bumped from ^7.0.18 to ^7.0.19
      • @​libp2p/peer-id bumped from ^6.0.8 to ^6.0.9
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0
    • devDependencies
      • @​libp2p/crypto bumped from ^5.1.17 to ^5.1.18
      • @​libp2p/logger bumped from ^6.2.6 to ^6.2.7

plaintext: v3.0.19

3.0.19 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/crypto bumped from ^5.1.17 to ^5.1.18
      • @​libp2p/peer-id bumped from ^6.0.8 to ^6.0.9
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0
    • devDependencies
      • @​libp2p/crypto bumped from ^5.1.17 to ^5.1.18
      • @​libp2p/logger bumped from ^6.2.6 to ^6.2.7

pnet: v3.0.19

3.0.19 (2026-04-25)

Dependencies

  • The following workspace dependencies were updated
    • dependencies

... (truncated)

Commits

Updates @libp2p/gossipsub from 15.0.20 to 15.0.22

Release notes

Sourced from @​libp2p/gossipsub's releases.

gossipsub: v15.0.22

15.0.22 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/crypto bumped from ^5.1.17 to ^5.1.18
      • @​libp2p/interface-internal bumped from ^3.1.3 to ^3.1.4
      • @​libp2p/peer-id bumped from ^6.0.8 to ^6.0.9
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0
    • devDependencies
      • @​libp2p/floodsub bumped from ^11.0.19 to ^11.0.20
      • @​libp2p/logger bumped from ^6.2.6 to ^6.2.7
      • @​libp2p/peer-store bumped from ^12.0.18 to ^12.0.19

gossipsub: v15.0.21

15.0.21 (2026-05-04)

Bug Fixes

  • gossipsub: use monotonic seqnos (#3487) (d1ab982)
  • gossipsub: use monotonic seqnos for spec compliance and kubo interop (d1ab982)
Commits

Updates @libp2p/identify from 4.1.3 to 4.1.5

Release notes

Sourced from @​libp2p/identify's releases.

identify: v4.1.5

4.1.5 (2026-05-12)

Bug Fixes

  • identify: handle multiple envelopes from go (#3423) (2572c86)

identify: v4.1.4

4.1.4 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/crypto bumped from ^5.1.17 to ^5.1.18
      • @​libp2p/interface-internal bumped from ^3.1.3 to ^3.1.4
      • @​libp2p/peer-id bumped from ^6.0.8 to ^6.0.9
      • @​libp2p/peer-record bumped from ^9.0.9 to ^9.0.10
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0
    • devDependencies
      • @​libp2p/logger bumped from ^6.2.6 to ^6.2.7

fetch: v4.1.4

4.1.4 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/interface-internal bumped from ^3.1.3 to ^3.1.4
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0
    • devDependencies
      • @​libp2p/crypto bumped from ^5.1.17 to ^5.1.18
      • @​libp2p/peer-id bumped from ^6.0.8 to ^6.0.9
Commits

Updates @libp2p/kad-dht from 16.2.4 to 16.2.6

Release notes

Sourced from @​libp2p/kad-dht's releases.

kad-dht: v16.2.6

16.2.6 (2026-05-13)

Bug Fixes

  • kad-dht: only echo PUT_VALUE response on success (#3502) (5692f3f)

kad-dht: v16.2.5

16.2.5 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/crypto bumped from ^5.1.17 to ^5.1.18
      • @​libp2p/interface-internal bumped from ^3.1.3 to ^3.1.4
      • @​libp2p/peer-collections bumped from ^7.0.18 to ^7.0.19
      • @​libp2p/peer-id bumped from ^6.0.8 to ^6.0.9
      • @​libp2p/ping bumped from ^3.1.3 to ^3.1.4
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0
    • devDependencies
      • @​libp2p/logger bumped from ^6.2.6 to ^6.2.7
      • @​libp2p/peer-store bumped from ^12.0.18 to ^12.0.19
Commits

Updates @libp2p/mdns from 12.0.19 to 12.0.21

Release notes

Sourced from @​libp2p/mdns's releases.

mplex: v12.0.21

12.0.21 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0
    • devDependencies
      • @​libp2p/interface-compliance-tests bumped from ^7.0.20 to ^7.0.21
      • @​libp2p/logger bumped from ^6.2.6 to ^6.2.7
Commits

Updates @libp2p/ping from 3.1.3 to 3.1.4

Release notes

Sourced from @​libp2p/ping's releases.

ping: v3.1.4

3.1.4 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/crypto bumped from ^5.1.17 to ^5.1.18
      • @​libp2p/interface-internal bumped from ^3.1.3 to ^3.1.4
    • devDependencies
      • @​libp2p/peer-id bumped from ^6.0.8 to ^6.0.9
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0

echo: v3.1.4

3.1.4 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/interface-internal bumped from ^3.1.3 to ^3.1.4
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0

interface-internal: v3.1.4

3.1.4 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/peer-collections bumped from ^7.0.18 to ^7.0.19
Commits

Updates @libp2p/tcp from 11.0.18 to 11.0.19

Release notes

Sourced from @​libp2p/tcp's releases.

tcp: v11.0.19

11.0.19 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0
    • devDependencies
      • @​libp2p/logger bumped from ^6.2.6 to ^6.2.7
Commits

Updates @libp2p/websockets from 10.1.11 to 10.1.12

Release notes

Sourced from @​libp2p/websockets's releases.

websockets: v10.1.12

10.1.12 (2026-05-09)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @​libp2p/utils bumped from ^7.1.0 to ^7.2.0
    • devDependencies
      • @​libp2p/logger bumped from ^6.2.6 to ^6.2.7
Commits
  • 03ddfa0 chore: release main (#3139)
  • aa25d38 chore: tidy up dependabot
  • 89a5977 chore: tidy up dependabot
  • ce57fab chore: bump @​libp2p/kad-dht from 14.2.15 to 15.1.0 in /packages/integration-t...
  • 923ecc6 deps: bump it-queueless-pushable from 1.0.2 to 2.0.1 in /packages/connection-...
  • d1ce677 deps: bump sinon from 19.0.5 to 20.0.0 (#3112)
  • 7477ba7 chore: upate port
  • 510b033 deps: update aegir, fix all linting issues (#3110)
  • See full diff in compare view

Updates @noble/ed25519 from 3.0.0 to 3.1.0

Release notes

Sourced from @​noble/ed25519's relea...

Description has been truncated

@dependabot @github
Copy link
Copy Markdown
Author

dependabot Bot commented on behalf of github May 14, 2026

Labels

The following labels could not be found: dependencies, npm, security. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot
chore(deps)(deps): bump the transitive group across 1 directory with …
541c3a6 
…32 updates

Bumps the transitive group with 32 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@libp2p/peer-id](https://github.com/libp2p/js-libp2p) | `6.0.8` | `6.0.9` |
| [@multiformats/multiaddr](https://github.com/multiformats/js-multiaddr) | `13.0.1` | `13.0.3` |
| [@noble/ciphers](https://github.com/paulmillr/noble-ciphers) | `2.1.1` | `2.2.0` |
| [@noble/curves](https://github.com/paulmillr/noble-curves) | `2.0.1` | `2.2.0` |
| [@noble/hashes](https://github.com/paulmillr/noble-hashes) | `2.0.1` | `2.2.0` |
| [@libp2p/autonat](https://github.com/libp2p/js-libp2p) | `3.0.18` | `3.0.19` |
| [@libp2p/bootstrap](https://github.com/libp2p/js-libp2p) | `12.0.19` | `12.0.21` |
| [@libp2p/circuit-relay-v2](https://github.com/libp2p/js-libp2p) | `4.2.3` | `4.2.4` |
| [@libp2p/crypto](https://github.com/libp2p/js-libp2p) | `5.1.17` | `5.1.18` |
| [@libp2p/dcutr](https://github.com/libp2p/js-libp2p) | `3.0.18` | `3.0.19` |
| [@libp2p/gossipsub](https://github.com/libp2p/js-libp2p) | `15.0.20` | `15.0.22` |
| [@libp2p/identify](https://github.com/libp2p/js-libp2p) | `4.1.3` | `4.1.5` |
| [@libp2p/kad-dht](https://github.com/libp2p/js-libp2p) | `16.2.4` | `16.2.6` |
| [@libp2p/mdns](https://github.com/libp2p/js-libp2p) | `12.0.19` | `12.0.21` |
| [@libp2p/ping](https://github.com/libp2p/js-libp2p) | `3.1.3` | `3.1.4` |
| [@libp2p/tcp](https://github.com/libp2p/js-libp2p) | `11.0.18` | `11.0.19` |
| [@libp2p/websockets](https://github.com/libp2p/js-libp2p) | `10.1.11` | `10.1.12` |
| [@noble/ed25519](https://github.com/paulmillr/noble-ed25519) | `3.0.0` | `3.1.0` |
| [libp2p](https://github.com/libp2p/js-libp2p) | `3.2.3` | `3.3.0` |
| [protobufjs](https://github.com/protobufjs/protobuf.js) | `8.0.0` | `8.3.0` |
| [ajv](https://github.com/ajv-validator/ajv) | `8.18.0` | `8.20.0` |
| [@openzeppelin/contracts](https://github.com/OpenZeppelin/openzeppelin-contracts) | `5.4.0` | `5.6.1` |
| [solady](https://github.com/vectorized/solady) | `0.0.285` | `0.1.26` |
| [force-graph](https://github.com/vasturiano/force-graph) | `1.51.1` | `1.51.4` |
| [oxigraph](https://github.com/oxigraph/oxigraph/tree/HEAD/js) | `0.5.5` | `0.5.8` |
| [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk) | `1.27.1` | `1.29.0` |
| [yaml](https://github.com/eemeli/yaml) | `2.8.3` | `2.9.0` |
| [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.4` | `19.2.6` |
| [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.4` | `19.2.6` |
| [@openuidev/react-lang](https://github.com/thesysdev/openui/tree/HEAD/packages/react-lang) | `0.2.3` | `0.2.4` |
| [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `1.14.0` | `1.16.0` |
| [zustand](https://github.com/pmndrs/zustand) | `5.0.12` | `5.0.13` |



Updates `@libp2p/peer-id` from 6.0.8 to 6.0.9
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@daemon-v6.0.8...daemon-v6.0.9)

Updates `@multiformats/multiaddr` from 13.0.1 to 13.0.3
- [Release notes](https://github.com/multiformats/js-multiaddr/releases)
- [Changelog](https://github.com/multiformats/js-multiaddr/blob/main/CHANGELOG.md)
- [Commits](multiformats/js-multiaddr@v13.0.1...v13.0.3)

Updates `@noble/ciphers` from 2.1.1 to 2.2.0
- [Release notes](https://github.com/paulmillr/noble-ciphers/releases)
- [Commits](paulmillr/noble-ciphers@2.1.1...2.2.0)

Updates `@noble/curves` from 2.0.1 to 2.2.0
- [Release notes](https://github.com/paulmillr/noble-curves/releases)
- [Commits](paulmillr/noble-curves@2.0.1...2.2.0)

Updates `@noble/hashes` from 2.0.1 to 2.2.0
- [Release notes](https://github.com/paulmillr/noble-hashes/releases)
- [Commits](paulmillr/noble-hashes@2.0.1...2.2.0)

Updates `@libp2p/autonat` from 3.0.18 to 3.0.19
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@perf-v3.0.18...perf-v3.0.19)

Updates `@libp2p/bootstrap` from 12.0.19 to 12.0.21
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@mdns-v12.0.19...mdns-v12.0.21)

Updates `@libp2p/circuit-relay-v2` from 4.2.3 to 4.2.4
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@peer-id-v4.2.3...peer-id-v4.2.4)

Updates `@libp2p/crypto` from 5.1.17 to 5.1.18
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@crypto-v5.1.17...crypto-v5.1.18)

Updates `@libp2p/dcutr` from 3.0.18 to 3.0.19
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@perf-v3.0.18...perf-v3.0.19)

Updates `@libp2p/gossipsub` from 15.0.20 to 15.0.22
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@gossipsub-v15.0.20...gossipsub-v15.0.22)

Updates `@libp2p/identify` from 4.1.3 to 4.1.5
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@fetch-v4.1.3...crypto-v4.1.5)

Updates `@libp2p/kad-dht` from 16.2.4 to 16.2.6
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@kad-dht-v16.2.4...kad-dht-v16.2.6)

Updates `@libp2p/mdns` from 12.0.19 to 12.0.21
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@mdns-v12.0.19...mdns-v12.0.21)

Updates `@libp2p/ping` from 3.1.3 to 3.1.4
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@echo-v3.1.3...echo-v3.1.4)

Updates `@libp2p/tcp` from 11.0.18 to 11.0.19
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@tcp-v11.0.18...tcp-v11.0.19)

Updates `@libp2p/websockets` from 10.1.11 to 10.1.12
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@tcp-v10.1.11...tcp-v10.1.12)

Updates `@noble/ed25519` from 3.0.0 to 3.1.0
- [Release notes](https://github.com/paulmillr/noble-ed25519/releases)
- [Commits](paulmillr/noble-ed25519@3.0.0...3.1.0)

Updates `libp2p` from 3.2.3 to 3.3.0
- [Release notes](https://github.com/libp2p/js-libp2p/releases)
- [Commits](libp2p/js-libp2p@libp2p-v3.2.3...libp2p-v3.3.0)

Updates `protobufjs` from 8.0.0 to 8.3.0
- [Release notes](https://github.com/protobufjs/protobuf.js/releases)
- [Changelog](https://github.com/protobufjs/protobuf.js/blob/master/CHANGELOG.md)
- [Commits](protobufjs/protobuf.js@protobufjs-v8.0.0...protobufjs-v8.3.0)

Updates `ajv` from 8.18.0 to 8.20.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v8.18.0...v8.20.0)

Updates `@openzeppelin/contracts` from 5.4.0 to 5.6.1
- [Release notes](https://github.com/OpenZeppelin/openzeppelin-contracts/releases)
- [Changelog](https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/CHANGELOG.md)
- [Commits](OpenZeppelin/openzeppelin-contracts@v5.4.0...v5.6.1)

Updates `solady` from 0.0.285 to 0.1.26
- [Release notes](https://github.com/vectorized/solady/releases)
- [Commits](Vectorized/solady@v0.0.285...v0.1.26)

Updates `force-graph` from 1.51.1 to 1.51.4
- [Commits](vasturiano/force-graph@v1.51.1...v1.51.4)

Updates `oxigraph` from 0.5.5 to 0.5.8
- [Release notes](https://github.com/oxigraph/oxigraph/releases)
- [Changelog](https://github.com/oxigraph/oxigraph/blob/v0.5.8/CHANGELOG.md)
- [Commits](https://github.com/oxigraph/oxigraph/commits/v0.5.8/js)

Updates `@modelcontextprotocol/sdk` from 1.27.1 to 1.29.0
- [Release notes](https://github.com/modelcontextprotocol/typescript-sdk/releases)
- [Commits](modelcontextprotocol/typescript-sdk@v1.27.1...v1.29.0)

Updates `yaml` from 2.8.3 to 2.9.0
- [Release notes](https://github.com/eemeli/yaml/releases)
- [Commits](eemeli/yaml@v2.8.3...v2.9.0)

Updates `react` from 19.2.4 to 19.2.6
- [Release notes](https://github.com/facebook/react/releases)
- [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/react/commits/v19.2.6/packages/react)

Updates `react-dom` from 19.2.4 to 19.2.6
- [Release notes](https://github.com/facebook/react/releases)
- [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/react/commits/v19.2.6/packages/react-dom)

Updates `@openuidev/react-lang` from 0.2.3 to 0.2.4
- [Commits](https://github.com/thesysdev/openui/commits/HEAD/packages/react-lang)

Updates `lucide-react` from 1.14.0 to 1.16.0
- [Release notes](https://github.com/lucide-icons/lucide/releases)
- [Commits](https://github.com/lucide-icons/lucide/commits/1.16.0/packages/lucide-react)

Updates `zustand` from 5.0.12 to 5.0.13
- [Release notes](https://github.com/pmndrs/zustand/releases)
- [Commits](pmndrs/zustand@v5.0.12...v5.0.13)

---
updated-dependencies:
- dependency-name: "@libp2p/autonat"
  dependency-version: 3.0.19
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@libp2p/bootstrap"
  dependency-version: 12.0.21
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@libp2p/circuit-relay-v2"
  dependency-version: 4.2.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@libp2p/crypto"
  dependency-version: 5.1.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@libp2p/dcutr"
  dependency-version: 3.0.19
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@libp2p/gossipsub"
  dependency-version: 15.0.22
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@libp2p/identify"
  dependency-version: 4.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@libp2p/kad-dht"
  dependency-version: 16.2.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@libp2p/mdns"
  dependency-version: 12.0.21
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@libp2p/peer-id"
  dependency-version: 6.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@libp2p/ping"
  dependency-version: 3.1.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@libp2p/tcp"
  dependency-version: 11.0.19
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@libp2p/websockets"
  dependency-version: 10.1.12
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@modelcontextprotocol/sdk"
  dependency-version: 1.29.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: transitive
- dependency-name: "@multiformats/multiaddr"
  dependency-version: 13.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@noble/ciphers"
  dependency-version: 2.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: transitive
- dependency-name: "@noble/curves"
  dependency-version: 2.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: transitive
- dependency-name: "@noble/ed25519"
  dependency-version: 3.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: transitive
- dependency-name: "@noble/hashes"
  dependency-version: 2.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: transitive
- dependency-name: "@openuidev/react-lang"
  dependency-version: 0.2.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: "@openzeppelin/contracts"
  dependency-version: 5.6.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: transitive
- dependency-name: ajv
  dependency-version: 8.20.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: transitive
- dependency-name: force-graph
  dependency-version: 1.51.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: libp2p
  dependency-version: 3.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: transitive
- dependency-name: lucide-react
  dependency-version: 1.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: transitive
- dependency-name: oxigraph
  dependency-version: 0.5.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: protobufjs
  dependency-version: 8.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: transitive
- dependency-name: react
  dependency-version: 19.2.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: react-dom
  dependency-version: 19.2.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
- dependency-name: solady
  dependency-version: 0.1.26
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: transitive
- dependency-name: yaml
  dependency-version: 2.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: transitive
- dependency-name: zustand
  dependency-version: 5.0.13
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: transitive
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/transitive-806cd5ed46 branch from 2671d76 to 541c3a6 Compare May 14, 2026 16:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@branarakic branarakic Awaiting requested review from branarakic branarakic is a code owner

@Jurij89 Jurij89 Awaiting requested review from Jurij89 Jurij89 is a code owner

@zsculac zsculac Awaiting requested review from zsculac zsculac is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants