[Docs Site] Bump the non-major group across 1 directory with 16 updates

[dependabot]

Bumps the non-major group with 16 updates in the / directory:

Package	From	To
@astrojs/react	5.0.5	5.0.7
@astrojs/starlight	0.39.2	0.39.3
@cloudflare/vitest-pool-workers	0.16.10	0.16.13
@cloudflare/workers-types	4.20260526.1	4.20260604.1
@typescript-eslint/parser	8.60.0	8.60.1
algoliasearch	5.52.1	5.53.0
astro	6.3.8	6.4.4
cidr-tools	12.0.1	12.0.2
date-fns	4.3.0	4.4.0
happy-dom	20.9.0	20.10.1
marked	18.0.4	18.0.5
rulesync	8.21.0	8.24.1
tsx	4.22.3	4.22.4
typescript-eslint	8.60.0	8.60.1
vitest	4.1.7	4.1.8
wrangler	4.95.0	4.98.0

Updates @astrojs/react from 5.0.5 to 5.0.7

Release notes

Sourced from @​astrojs/react's releases.

@​astrojs/react@​5.0.7

Patch Changes

• #16900 17a0fbd Thanks @​ocavue! - Bumps devalue dependency to v5.8.1

@​astrojs/react@​5.0.6

Patch Changes

• Updated dependencies [f732f3c]:
  • @​astrojs/internal-helpers@​0.10.0

Changelog

Sourced from @​astrojs/react's changelog.

5.0.7

Patch Changes

• #16900 17a0fbd Thanks @​ocavue! - Bumps devalue dependency to v5.8.1

5.0.6

Patch Changes

• Updated dependencies [f732f3c]:
  • @​astrojs/internal-helpers@​0.10.0

Commits

• 75ae5df [ci] release (#16912)
• 17a0fbd chore(deps): update devalue (#16900)
• c7157e6 [ci] release (#16870)
• See full diff in compare view

Updates @astrojs/starlight from 0.39.2 to 0.39.3

Release notes

Sourced from @​astrojs/starlight's releases.

@​astrojs/starlight@​0.39.3

Patch Changes

• #3910 dddf405 Thanks @​andreialba! - Improves Romanian UI translations

• #3924 02f2ce1 Thanks @​BouRock! - Improves Turkish UI translations

• #3928 11a7ed2 Thanks @​delucis! - Updates Pagefind to v1.5 and adds support for Pagefind’s new diacriticSimilarity and metaWeights advanced ranking options

• #3927 e944870 Thanks @​HiDeoo! - Refactors internal file path handling for Starlight content collections.

Changelog

Sourced from @​astrojs/starlight's changelog.

0.39.3

Patch Changes

• #3910 dddf405 Thanks @​andreialba! - Improves Romanian UI translations

• #3924 02f2ce1 Thanks @​BouRock! - Improves Turkish UI translations

• #3928 11a7ed2 Thanks @​delucis! - Updates Pagefind to v1.5 and adds support for Pagefind’s new diacriticSimilarity and metaWeights advanced ranking options

• #3927 e944870 Thanks @​HiDeoo! - Refactors internal file path handling for Starlight content collections.

Commits

• 668a467 [ci] release (#3913)
• 11a7ed2 Add support for new Pagefind ranking options (#3928)
• 02f2ce1 Update Turkish translations (#3924)
• e944870 Refactor getCollectionPosixPath() (#3927)
• dddf405 fix: improve Romanian UI translations (#3910)
• 1b5f399 CI/E2E tests improvements (#3901)
• d1d7452 Fix inaccurate comment on :lang selectors (#3893)
• See full diff in compare view

Updates @cloudflare/vitest-pool-workers from 0.16.10 to 0.16.13

Release notes

Sourced from @​cloudflare/vitest-pool-workers's releases.

@​cloudflare/vitest-pool-workers@​0.16.13

Patch Changes

• Updated dependencies [c6c61b5, c6c61b5, a3eea27, 7a6b1a4, 7539a9b, 1fdd8de, 3b8b80a, 0bb2d55, 8400fb9, b502d54, 7949f81, d462013, c2280cd, 3b8b80a, ea12b58, acf7817]:
  • wrangler@4.98.0
  • miniflare@4.20260603.0

@​cloudflare/vitest-pool-workers@​0.16.12

Patch Changes

• #14152 3d7992e Thanks @​petebacondarwin! - Fix module resolution failing when project path contains spaces

  When a project lived under a directory with spaces (e.g. /Users/me/Documents/Master CMS/project), the vitest pool would fail with No such module "threads.js" before any test executed. The module fallback service now uses the rawSpecifier from workerd's fallback request to correctly decode file:// URLs, avoiding the double-encoding of spaces (%20 → %2520) that occurred when workerd resolved these URLs as relative paths.

• #14105 337e912 Thanks @​dario-piotrowicz! - Remove trailing periods from URLs in terminal output

  URLs printed to the terminal with a sentence-ending period (e.g. https://example.com/path.) would include the period when clicked in some terminal emulators, causing 404 errors. This removes trailing periods from all URLs displayed in CLI output across wrangler, miniflare, vitest-pool-workers, and workers-utils.

• #14112 3a746ac Thanks @​penalosa! - Pin non-bundled runtime dependencies to exact versions

  Dependencies that are not bundled into a package's published output are installed directly into consumers' dependency trees, so they are now pinned to exact versions instead of semver ranges. This closes a supply-chain gap where an unpinned external dependency could resolve to a compromised upstream release on a fresh install. A new pnpm check:pinned-deps lint enforces this for all published packages (and for the shared pnpm catalog) going forward.

• #14061 da8e306 Thanks @​Vardiak! - Preserve Durable Object WebSocket handler invocation order

  Durable Object WebSocket events could begin executing out of order in the Workers Vitest integration when several events arrived while the test wrapper was resolving user code.

  Handler invocation now preserves arrival order while still allowing asynchronous handler completion to run concurrently.

• Updated dependencies [b210c5e, aec1bb8, e06cbb7, 9a26191, 5565823, 4ef790b, 890fca7, 6fc9777, 337e912, 8e7b74f, e86489a, 42288d4, 65b5f9e, 3a746ac, 64ef9fd, 94b29f7]:

  • wrangler@4.97.0
  • miniflare@4.20260601.0

@​cloudflare/vitest-pool-workers@​0.16.11

Patch Changes

• #14070 96ae856 Thanks @​dmmulroy! - Fix Durable Object RPC dispatch for constructors that return proxies

  Durable Object RPC methods mediated by a returned Proxy are now resolved through that proxy after validating prototype exposure. This allows wrappers that bind methods to the underlying instance to use private fields and methods in Vitest, while matching workerd's rejection of constructor-assigned RPC overrides.

• Updated dependencies [a2ef1a3, cbb39bd, cbb39bd, 408432a, 1103c07, 7bb5c7a, 5b5cbd3, a2ef1a3, 2c1d8b2, ce4eb20, 5fa3de6, 37176e5, 0ce88ea, 66d86ba, 9dee4cc, 97d7d81, c647ccc, f623ae4, c8c7ec0, 39d8717, ee56ec0, b64b7e4, e4c8fd9, 2dffeeb, 972d13d, 4c0da7b, 13cbadb, 59e43e4]:

  • miniflare@4.20260529.0
  • wrangler@4.96.0

Changelog

Sourced from @​cloudflare/vitest-pool-workers's changelog.

0.16.13

Patch Changes

• Updated dependencies [c6c61b5, c6c61b5, a3eea27, 7a6b1a4, 7539a9b, 1fdd8de, 3b8b80a, 0bb2d55, 8400fb9, b502d54, 7949f81, d462013, c2280cd, 3b8b80a, ea12b58, acf7817]:
  • wrangler@4.98.0
  • miniflare@4.20260603.0

0.16.12

Patch Changes

• #14152 3d7992e Thanks @​petebacondarwin! - Fix module resolution failing when project path contains spaces

  When a project lived under a directory with spaces (e.g. /Users/me/Documents/Master CMS/project), the vitest pool would fail with No such module "threads.js" before any test executed. The module fallback service now uses the rawSpecifier from workerd's fallback request to correctly decode file:// URLs, avoiding the double-encoding of spaces (%20 → %2520) that occurred when workerd resolved these URLs as relative paths.

• #14105 337e912 Thanks @​dario-piotrowicz! - Remove trailing periods from URLs in terminal output

  URLs printed to the terminal with a sentence-ending period (e.g. https://example.com/path.) would include the period when clicked in some terminal emulators, causing 404 errors. This removes trailing periods from all URLs displayed in CLI output across wrangler, miniflare, vitest-pool-workers, and workers-utils.

• #14112 3a746ac Thanks @​penalosa! - Pin non-bundled runtime dependencies to exact versions

  Dependencies that are not bundled into a package's published output are installed directly into consumers' dependency trees, so they are now pinned to exact versions instead of semver ranges. This closes a supply-chain gap where an unpinned external dependency could resolve to a compromised upstream release on a fresh install. A new pnpm check:pinned-deps lint enforces this for all published packages (and for the shared pnpm catalog) going forward.

• #14061 da8e306 Thanks @​Vardiak! - Preserve Durable Object WebSocket handler invocation order

  Durable Object WebSocket events could begin executing out of order in the Workers Vitest integration when several events arrived while the test wrapper was resolving user code.

  Handler invocation now preserves arrival order while still allowing asynchronous handler completion to run concurrently.

• Updated dependencies [b210c5e, aec1bb8, e06cbb7, 9a26191, 5565823, 4ef790b, 890fca7, 6fc9777, 337e912, 8e7b74f, e86489a, 42288d4, 65b5f9e, 3a746ac, 64ef9fd, 94b29f7]:

  • wrangler@4.97.0
  • miniflare@4.20260601.0

0.16.11

Patch Changes

• #14087 e3c862a Thanks @​edmundhung! - Fix Durable Object RPC dispatch for constructors that return proxies

  Durable Object RPC methods mediated by a returned Proxy are now resolved through that proxy after validating prototype exposure. This allows wrappers that bind methods to the underlying instance to use private fields and methods in Vitest, while matching workerd's rejection of constructor-assigned RPC overrides.

• Updated dependencies [e3c862a, cbb39bd, cbb39bd, 408432a, 1103c07, 7bb5c7a, 5b5cbd3, e3c862a, e3c862a, 97d7d81, c647ccc, e3c862a, e3c862a, e3c862a, e3c862a, e3c862a, b64b7e4, e3c862a, e3c862a, e4c8fd9, 2dffeeb, e3c862a, e3c862a, 4c0da7b, 972d13d, 13cbadb, 59e43e4]:

  • miniflare@4.20260529.0
  • wrangler@4.96.0

Commits

• c8c366e Version Packages (#14159)
• 0b60424 Version Packages (#14142)
• 3d7992e [vitest-pool-workers] Fix module resolution for paths with spaces (#14152)
• da8e306 [vitest-pool-workers] Preserve Durable Object handler order (for hibernated D...
• See full diff in compare view

Updates @cloudflare/workers-types from 4.20260526.1 to 4.20260604.1

Commits

• See full diff in compare view

Updates @typescript-eslint/parser from 8.60.0 to 8.60.1

Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.60.1

8.60.1 (2026-06-01)

🩹 Fixes

• eslint-plugin: respect ECMAScript line terminators in ts-comment rules (#12352)
• eslint-plugin: [no-shadow] correct rule to match ESLint v10 handling (#12182)

❤️ Thank You

• lumir
• Nevette Bailey @​nevette-bailey

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.60.1 (2026-06-01)

This was a version bump only for parser to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Commits

• 4f84a69 chore(release): publish 8.60.1
• 1849b53 chore: typecheck using tsgo (#12139)
• See full diff in compare view

Updates algoliasearch from 5.52.1 to 5.53.0

Release notes

Sourced from algoliasearch's releases.

5.53.0

New version released!

What's Changed

BREAKING CHANGES: this minor version includes breaking changes. See below for more details.

• c95cbc1d2e fix(javascript): handle response stream error in createHttpRequester (#6347) by @​zigzagdev
• c55851671e feat(javascript): BREAKING CHANGE – expose maximum number of retries (#6353) by @​eric-zaharia
  • We updated the default number of retries to account for customers with huge indices, and made it configurable if you prefer to fail early. The impact is that the retry time will be longer in case of issue, but it shouldn't impact most customers: those who don't have issues.
• 84ebc480a8 chore(deps): dependencies 2026-05-15 (#6400) by @​Fluf22
• fc36d63e9f fix(javascript): improve caching performance (#6431) by @​eric-zaharia
• 90da6bf0ae chore(deps): dependencies 2026-05-18 (#6429) by @​Fluf22
• eddd51e349 fix(specs): document abTest field on listIndices response (#6443) by @​eric-zaharia
• 1d3f2c149b fix(specs): clean up abTest schema on listIndices response (#6448) by @​Fluf22
• 35bf16c848 fix(specs): BREAKING CHANGE – add searchResponsePartial fallback to searchResult oneOf (#6350) by @​Fluf22
  • For those of you who want really clean responses without hits nor facets, we added a third fallback type to the search response. It should not impact the rest of the users.
• d7aeef2482 chore(deps): batch dependency updates (#6465) by @​Fluf22

Full Changelog: algolia/algoliasearch-client-javascript@5.52.1...5.53.0

→ Browse the Algolia documentation

Changelog

Sourced from algoliasearch's changelog.

5.53.0

BREAKING CHANGES: this minor version includes breaking changes. See below for more details.

• c95cbc1d2e fix(javascript): handle response stream error in createHttpRequester (#6347) by @​zigzagdev
• c55851671e feat(javascript): BREAKING CHANGE – expose maximum number of retries (#6353) by @​eric-zaharia
  • We updated the default number of retries to account for customers with huge indices, and made it configurable if you prefer to fail early. The impact is that the retry time will be longer in case of issue, but it shouldn't impact most customers: those who don't have issues.
• 84ebc480a8 chore(deps): dependencies 2026-05-15 (#6400) by @​Fluf22
• fc36d63e9f fix(javascript): improve caching performance (#6431) by @​eric-zaharia
• 90da6bf0ae chore(deps): dependencies 2026-05-18 (#6429) by @​Fluf22
• eddd51e349 fix(specs): document abTest field on listIndices response (#6443) by @​eric-zaharia
• 1d3f2c149b fix(specs): clean up abTest schema on listIndices response (#6448) by @​Fluf22
• 35bf16c848 fix(specs): BREAKING CHANGE – add searchResponsePartial fallback to searchResult oneOf (#6350) by @​Fluf22
  • For those of you who want really clean responses without hits nor facets, we added a third fallback type to the search response. It should not impact the rest of the users.
• d7aeef2482 chore(deps): batch dependency updates (#6465) by @​Fluf22

Commits

• 2658999 chore: release 5.53.0
• b9d89e9 chore(deps): batch dependency updates (generated)
• 33290f8 fix(specs): add searchResponsePartial fallback to searchResult oneOf (generated)
• aac345e fix(specs): clean up abTest schema on listIndices response (generated)
• 9545da1 fix(specs): document abTest field on listIndices response (generated)
• f050422 chore(deps): dependencies 2026-05-18 (generated)
• a291a36 fix(javascript): improve caching performance (generated)
• d4c108c chore(deps): dependencies 2026-05-15 (generated)
• c2e7520 feat(javascript): expose maximum number of retries (generated)
• 820b9d7 fix(javascript): handle response stream error in createHttpRequester (gener...
• See full diff in compare view

Updates astro from 6.3.8 to 6.4.4

Release notes

Sourced from astro's releases.

astro@6.4.4

Patch Changes

• #16926 1b39ae8 Thanks @​narendraio! - Prevents App.match() from throwing on request paths that contain an invalid percent-sequence.

• #16924 2c0bc94 Thanks @​astrobot-houston! - Fixes an issue where editing a client-side component (e.g. with client:idle, client:load, etc.) caused an unnecessary full program reload of the backend during development.

• #16958 2c1d50f Thanks @​fkatsuhiro! - Fixes a bug where static file endpoints using getStaticPaths with .html in dynamic param values (e.g. { path: 'file.html' }) would fail with a NoMatchingStaticPathFound error during build. The .html suffix is no longer incorrectly stripped from endpoint route pathnames.

• #16855 c610cda Thanks @​astrobot-houston! - Fixes dynamic routes returning 500 "TypeError: Missing parameter" when using domain-based i18n routing in SSR.

• #16946 606c37b Thanks @​ematipico! - Fixes Astro.routePattern to preserve original casing of dynamic parameter names from filenames. Previously, a file at src/pages/blog/[postId].astro would return /blog/[postid] for Astro.routePattern due to an internal .toLowerCase() call. It now correctly returns /blog/[postId].

• #16720 16d49b6 Thanks @​thomas-callahan-collibra! - Fix an issue where dynamic routes would return the string [object Object] instead of the expected content, in certain runtimes.

• #16703 17390a6 Thanks @​henrybrewer00-dotcom! - Fixes styles being stripped when the project root is started with a path whose case differs from the actual filesystem case (e.g. running astro dev from d:\dev\app while the folder on disk is D:\dev\app).

• #16855 c610cda Thanks @​astrobot-houston! - Fixes Astro.currentLocale returning the default locale instead of the domain's locale on dynamic routes served from a mapped domain.

astro@6.4.3

Patch Changes

• #16900 17a0fbd Thanks @​ocavue! - Bumps devalue dependency to v5.8.1

• #16016 0d85e1b Thanks @​felmonon! - Fix a false positive in the dev toolbar accessibility audit for anchors with text inside closed <details> elements.

• #16911 79c6c46 Thanks @​astrobot-houston! - Fixes a bug where experimental.advancedRouting with astro/hono handlers threw TypeError: Cannot read properties of undefined (reading 'route') for unmatched routes instead of rendering the custom 404 page.

• #16899 239c469 Thanks @​matthewp! - Fixes a false "does not call the middleware() handler" warning when using astro() in a custom src/app.ts and the first request is a redirect route.

• #16887 493acdb Thanks @​astrobot-houston! - Fixes redirectToDefaultLocale not working after the Advanced Routing refactoring.

• #16908 ef53ab9 Thanks @​florian-lefebvre! - Improves optimized fallbacks generation when using the Fonts API by using better metrics for bold variants

astro@6.4.2

Patch Changes

• #16889 b94bcfd Thanks @​Princesseuh! - Fixes a plugins is not iterable crash when using a pre-6.0 @astrojs/mdx alongside integrations (e.g. Starlight) that set markdown.remarkPlugins, markdown.rehypePlugins, or markdown.remarkRehype.

• #16878 b9f6bb9 Thanks @​fkatsuhiro! - Fixes an issue where on-demand (SSR) dynamic routes would return 404 when a prerendered dynamic route with the same URL pattern was sorted first alphabetically. In production builds with @astrojs/node adapter, if [a_prebuild].astro (prerender=true) came before [b_ssr].astro alphabetically, requests to URLs not in the prerendered route's static paths would 404 instead of falling through to the SSR route. The fix adds fallthrough logic so that when a prerendered dynamic route matches but can't serve the request, Astro tries subsequent matching routes.

astro@6.4.0

Minor Changes

• #16468 4cff3a1 Thanks @​matthewp! - Adds a new preserveBuildServerDir adapter feature

  Adapters can now set preserveBuildServerDir: true in their adapter features to keep the dist/server/ directory structure for static builds, mirroring the existing preserveBuildClientDir option. This is useful for adapters that require a consistent dist/client/ and dist/server/ layout regardless of build output type.

  setAdapter({

... (truncated)

Changelog

Sourced from astro's changelog.

6.4.4

Patch Changes

• #16926 1b39ae8 Thanks @​narendraio! - Prevents App.match() from throwing on request paths that contain an invalid percent-sequence.

• #16924 2c0bc94 Thanks @​astrobot-houston! - Fixes an issue where editing a client-side component (e.g. with client:idle, client:load, etc.) caused an unnecessary full program reload of the backend during development.

• #16958 2c1d50f Thanks @​fkatsuhiro! - Fixes a bug where static file endpoints using getStaticPaths with .html in dynamic param values (e.g. { path: 'file.html' }) would fail with a NoMatchingStaticPathFound error during build. The .html suffix is no longer incorrectly stripped from endpoint route pathnames.

• #16855 c610cda Thanks @​astrobot-houston! - Fixes dynamic routes returning 500 "TypeError: Missing parameter" when using domain-based i18n routing in SSR.

• #16946 606c37b Thanks @​ematipico! - Fixes Astro.routePattern to preserve original casing of dynamic parameter names from filenames. Previously, a file at src/pages/blog/[postId].astro would return /blog/[postid] for Astro.routePattern due to an internal .toLowerCase() call. It now correctly returns /blog/[postId].

• #16720 16d49b6 Thanks @​thomas-callahan-collibra! - Fix an issue where dynamic routes would return the string [object Object] instead of the expected content, in certain runtimes.

• #16703 17390a6 Thanks @​henrybrewer00-dotcom! - Fixes styles being stripped when the project root is started with a path whose case differs from the actual filesystem case (e.g. running astro dev from d:\dev\app while the folder on disk is D:\dev\app).

• #16855 c610cda Thanks @​astrobot-houston! - Fixes Astro.currentLocale returning the default locale instead of the domain's locale on dynamic routes served from a mapped domain.

6.4.3

Patch Changes

• #16900 17a0fbd Thanks @​ocavue! - Bumps devalue dependency to v5.8.1

• #16016 0d85e1b Thanks @​felmonon! - Fix a false positive in the dev toolbar accessibility audit for anchors with text inside closed <details> elements.

• #16911 79c6c46 Thanks @​astrobot-houston! - Fixes a bug where experimental.advancedRouting with astro/hono handlers threw TypeError: Cannot read properties of undefined (reading 'route') for unmatched routes instead of rendering the custom 404 page.

• #16899 239c469 Thanks @​matthewp! - Fixes a false "does not call the middleware() handler" warning when using astro() in a custom src/app.ts and the first request is a redirect route.

• #16887 493acdb Thanks @​astrobot-houston! - Fixes redirectToDefaultLocale not working after the Advanced Routing refactoring.

[cloudflare-docs-bot]

Dependabot review

Package	Impact	Recommendation
@astrojs/react 5.0.5 → 5.0.7	🟢 Very Low	✅ Merge
@astrojs/starlight 0.39.2 → 0.39.3	🟢 Very Low	✅ Merge
@cloudflare/vitest-pool-workers 0.16.10 → 0.16.13	🟢 Very Low	✅ Merge
@cloudflare/workers-types 4.20260526.1 → 4.20260604.1	🟢 Very Low	✅ Merge
@typescript-eslint/parser 8.60.0 → 8.60.1	⬜ None	✅ Merge
algoliasearch 5.52.1 → 5.53.0	🟢 Very Low	✅ Merge
astro 6.3.8 → 6.4.4	🟡 Low	✅ Merge
cidr-tools 12.0.1 → 12.0.2	⬜ None	✅ Merge
date-fns 4.3.0 → 4.4.0	🟢 Very Low	✅ Merge
happy-dom 20.9.0 → 20.10.1	🟢 Very Low	✅ Merge
marked 18.0.4 → 18.0.5	⬜ None	✅ Merge
rulesync 8.21.0 → 8.24.1	⬜ None	✅ Merge
tsx 4.22.3 → 4.22.4	⬜ None	✅ Merge
typescript-eslint 8.60.0 → 8.60.1	🟢 Very Low	✅ Merge
vitest 4.1.7 → 4.1.8	🟢 Very Low	✅ Merge
wrangler 4.95.0 → 4.98.0	🟡 Low	✅ Merge

Overall: ✅ Merge + spot-check

This Dependabot PR bumps 16 direct dependencies (mostly patch, a few minor) in the cloudflare-docs repo. The changes are all non-major and the lockfile diff is routine. The most notable updates are:

• astro 6.4.4 – fixes a plugins is not iterable crash that can occur with pre-6.0 @astrojs/mdx combined with Starlight and custom remark/rehype plugins (a configuration this repo uses). It also fixes several routing, i18n, and dev-server bugs. This is a stability win.
• algoliasearch 5.53.0 – contains two upstream breaking changes (retry defaults and a new searchResponsePartial fallback), but the repo only consumes Algolia through @astrojs/starlight-docsearch config constants; the integration handles the client internals, so this is effectively invisible.
• wrangler 4.98.0 – the repo directly imports the experimental experimental_getWranglerCommands API to generate wrangler command docs. A minor wrangler bump could theoretically shift the shape of this experimental API, so it is worth running the build/type-check to confirm.

No source-code changes are required for any of the bumps. Because of the experimental wrangler import and the large transitive lockfile churn, the safest path is to merge after verifying pnpm install, astro check, tsc --noEmit (for the worker), and a full astro build + vitest pass.

Package details

@astrojs/react: 5.0.5 → 5.0.7

Type: patch
Dependency type: direct

What changed

• Bumps devalue dependency to v5.8.1
• Updates @astrojs/internal-helpers dependency

Usage in this repo
React server renderer imported in src/util/container.ts for Astro container rendering.

Impact: 🟢 Very Low — Patch-level dependency bumps only; no API surface changes.

---

@astrojs/starlight: 0.39.2 → 0.39.3

Type: patch
Dependency type: direct

What changed

• Improves Romanian and Turkish UI translations
• Updates Pagefind to v1.5 and adds support for diacriticSimilarity and metaWeights advanced ranking options
• Refactors internal file path handling for Starlight content collections

Usage in this repo
Core docs framework; used for page components, content schema/loaders, Pagefind search, and Tailwind theme.

Impact: 🟢 Very Low — Translation and internal improvements; no breaking changes to the APIs used by the repo.

---

@cloudflare/vitest-pool-workers: 0.16.10 → 0.16.13

Type: patch
Dependency type: direct

What changed

• Fixes module resolution failing when project path contains spaces
• Removes trailing periods from URLs in terminal output
• Pins non-bundled runtime dependencies to exact versions
• Preserves Durable Object WebSocket handler invocation order
• Fixes Durable Object RPC dispatch for constructors that return proxies
• Updates wrangler and miniflare dependencies

Usage in this repo
Workers Vitest integration; provides the test pool that runs tests inside the Workers runtime.

Impact: 🟢 Very Low — Test-tooling bug fixes only; no test code changes needed.

---

@cloudflare/workers-types: 4.20260526.1 → 4.20260604.1

Type: patch
Dependency type: direct

What changed

• Updates type definitions to the 2026-06-04 runtime release

Usage in this repo
Provides TypeScript types for the Workers runtime; used when type-checking the worker code and tests.

Impact: 🟢 Very Low — Type-only update; new types are additive and should not break existing code.

---

@typescript-eslint/parser: 8.60.0 → 8.60.1

Type: patch
Dependency type: direct

What changed

• Version bump only to align with the rest of the typescript-eslint monorepo

Usage in this repo
ESLint parser for TypeScript; part of the linting pipeline.

Impact: ⬜ None — No parser-specific code changes.

---

algoliasearch: 5.52.1 → 5.53.0

Type: minor
Dependency type: direct

What changed

• BREAKING: exposes configurable maximum number of retries and updates the default retry behaviour
• BREAKING: adds searchResponsePartial fallback to searchResult oneOf
• Fixes response stream error in createHttpRequester
• Improves caching performance
• Documents and cleans up abTest schema on listIndices response
• Batch dependency updates

Usage in this repo
Direct dependency that satisfies the peer dependency of @astrojs/starlight-docsearch; config constants live in src/util/algolia.ts and are consumed by src/plugins/docsearch/index.ts. The Algolia client itself is managed by the docsearch integration.

Impact: 🟢 Very Low — The repo does not import algoliasearch directly in application code; the breaking changes are internal client behaviours handled by @astrojs/starlight-docsearch.

---

astro: 6.3.8 → 6.4.4

Type: minor
Dependency type: direct

What changed

• Minor: adds new preserveBuildServerDir adapter feature (opt-in)
• Fixes plugins is not iterable crash when using pre-6.0 @astrojs/mdx alongside integrations that set markdown.remarkPlugins / rehypePlugins (relevant to this repo)
• Fixes dynamic routes returning 500 with domain-based i18n routing in SSR
• Fixes Astro.routePattern casing preservation
• Fixes static file endpoints failing with .html in dynamic param values
• Fixes styles being stripped when project root case differs from filesystem
• Fixes Astro.currentLocale on dynamic routes served from mapped domains
• Fixes dev toolbar false positive, experimental.advancedRouting with astro/hono, middleware warning, and redirectToDefaultLocale
• Bumps devalue to v5.8.1

Usage in this repo
Static site generator and core framework; drives the entire docs build, dev server, and content pipeline.

Impact: 🟡 Low — The update fixes several bugs, including one that directly affects this repo's MDX + Starlight setup. No breaking changes are expected for a standard Starlight site.

---

cidr-tools: 12.0.1 → 12.0.2

Type: patch
Dependency type: direct

What changed

• Patch-level bug fixes

Usage in this repo
Used in src/components/SubtractIPCalculator.tsx for CIDR parsing and exclusion.

Impact: ⬜ None — Single stable usage; no API changes anticipated.

---

date-fns: 4.3.0 → 4.4.0

Type: minor
Dependency type: direct

What changed

• Minor feature additions and bug fixes

Usage in this repo
Date formatting utilities used across changelog components, landing page, and tutorials (format, formatDistance, sub, differenceInCalendarDays).

Impact: 🟢 Very Low — Standard usage of stable formatting helpers; no breaking changes expected.

---

happy-dom: 20.9.0 → 20.10.1

Type: minor
Dependency type: direct

What changed

• DOM implementation updates and fixes

Usage in this repo
DOM environment for Vitest tests.

Impact: 🟢 Very Low — Test-only dependency; no application code changes needed.

---

marked: 18.0.4 → 18.0.5

Type: patch
Dependency type: direct

What changed

• Patch bug fixes

Usage in this repo
Markdown parser used in changelog utilities, page title rendering, glossary tooltips, and product features.

Impact: ⬜ None — Stable API; consumption is limited to marked(string) calls.

---

rulesync: 8.21.0 → 8.24.1

Type: minor
Dependency type: direct

What changed

• Minor updates across several releases (8.21 → 8.24)

Usage in this repo
CLI tool for synchronising AI editor configurations; invoked via npm scripts (ai-setup:*).

Impact: ⬜ None — Not loaded during the docs site build or runtime; only used in local development scripts.

---

tsx: 4.22.3 → 4.22.4

Type: patch
Dependency type: direct

What changed

• Patch fixes

Usage in this repo
TypeScript execution loader used in build scripts (bin/fetch-skills.ts).

Impact: ⬜ None — Script runner only; no source code changes needed.

---

typescript-eslint: 8.60.0 → 8.60.1

Type: patch
Dependency type: direct

What changed

• Aligns with parser patch; includes fixes for no-shadow rule handling and ECMAScript line terminators in ts-comment rules

Usage in this repo
ESLint TypeScript plugin and shared config; part of the linting toolchain.

Impact: 🟢 Very Low — Lint tooling only; any new rule behaviour is an improvement.

---

vitest: 4.1.7 → 4.1.8

Type: patch
Dependency type: direct

What changed

• Patch bug fixes and performance improvements

Usage in this repo
Test runner for the project.

Impact: 🟢 Very Low — Test runner patch; no test code changes required.

---

wrangler: 4.95.0 → 4.98.0

Type: minor
Dependency type: direct

What changed

• Updates workerd to 1.20260603.1
• Dependency cleanup (removes rosie-skills from lockfile)
• Various minor CLI improvements and fixes across 4.96–4.98

Usage in this repo
Imported directly in src/util/wrangler.ts via the experimental experimental_getWranglerCommands API to introspect wrangler commands for documentation generation. Also used for typegen:worker and deployment.

Impact: 🟡 Low — The repo depends on an experimental (experimental_getWranglerCommands) API which could shift shape between minor versions. A quick build/type-check will confirm compatibility.

---

[mvvmm]

@dependabot rebase

[github-actions]

This pull request requires reviews from CODEOWNERS as it changes files that match the following patterns:

Pattern	Owners
package.json	@cloudflare/content-engineering
*	@cloudflare/product-owners

[github-actions]

CI run failed: build logs

[github-actions]

Broken Links

Found 1 broken link(s) across 1 file(s).

File	Link	Position	Error
content/partials/fundamentals/resend-member-invitation.mdx	Render file="account-member-manage-limitation" product="fundamentals" /	9:99	relative link

[github-actions]

Preview URL: https://30f3508e.preview.developers.cloudflare.com
Preview Branch URL: https://dependabot-npm-and-yarn-non-major-bda6f0047b.preview.developers.cloudflare.com

[mvvmm]

@dependabot rebase