template-blog-webapp-nextjs icon indicating copy to clipboard operation
template-blog-webapp-nextjs copied to clipboard

Published 20 hours ago verified publisher icon contentful

fix: update dependency sharp to v0.34.5 (main-private)

Open renovate[bot] opened this issue 3 months ago • 2 comments

This PR contains the following updates:

Package Change Age Confidence
sharp (source, changelog) 0.32.6 -> 0.34.5 age confidence

[!WARNING] Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

lovell/sharp (sharp)

v0.34.5

Compare Source

  • Upgrade to libvips v8.17.3 for upstream bug fixes.

  • Add experimental support for prebuilt Linux RISC-V 64-bit binaries.

  • Support building from source with npm v12+, deprecate --build-from-source flag. #​4458

  • Add support for BigTIFF output. #​4459 @​throwbi

  • Improve error messaging when only warnings issued. #​4465

  • Simplify ICC processing when retaining input profiles. #​4468

v0.34.4

Compare Source

  • Upgrade to libvips v8.17.2 for upstream bug fixes.

  • Ensure TIFF subifd and OpenSlide level input options are respected (regression in 0.34.3).

  • Ensure autoOrient occurs before non-90 angle rotation. #​4425

  • Ensure autoOrient removes existing metadata after shrink-on-load. #​4431

  • TypeScript: Ensure KernelEnum includes linear. #​4441 @​BayanBennett

  • Ensure unlimited flag is passed upstream when reading TIFF images. #​4446

  • Support Electron memory cage when reading XMP metadata (regression in 0.34.3). #​4451

  • Add sharp-libvips rpath for yarn v5 support. #​4452 @​arcanis

v0.34.3

Compare Source

v0.34.2

Compare Source

v0.34.1

Compare Source

v0.34.0

Compare Source

v0.33.5

Compare Source

v0.33.4

Compare Source

v0.33.3

Compare Source

v0.33.2

Compare Source

v0.33.1

Compare Source

v0.33.0

Compare Source

Configuration

📅 Schedule: Branch creation - At 12:00 AM through 04:59 AM and 10:00 PM through 11:59 PM, Monday through Friday ( * 0-4,22-23 * * 1-5 ), Only on Sunday and Saturday ( * * * * 0,6 ) in timezone UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • [ ] If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate[bot] avatar Aug 02 '25 09:08 renovate[bot]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Preview Updated (UTC)
template-blog-webapp-nextjs Ready Ready Preview Nov 19, 2025 6:42am

vercel[bot] avatar Aug 02 '25 09:08 vercel[bot]

Wiz Scan Summary

Scanner Findings
Vulnerability Finding Vulnerabilities 1 High
Data Finding Sensitive Data -
Total 1 High

View scan details in Wiz

To detect these findings earlier in the dev lifecycle, try using Wiz Code VS Code Extension.

wiz-inc-38d59fb8d7[bot] avatar Aug 02 '25 09:08 wiz-inc-38d59fb8d7[bot]

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update (0.34.5). You will get a PR once a newer version is released. To ignore this dependency forever, add it to the ignoreDeps array of your Renovate config.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.

renovate[bot] avatar Nov 26 '25 14:11 renovate[bot]