Skip to content

Bump the production-dependencies group across 1 directory with 8 updates#56

Merged
JannikStreek merged 1 commit intomainfrom
dependabot/npm_and_yarn/backend/production-dependencies-7a8782f4d2
Jan 27, 2026
Merged

Bump the production-dependencies group across 1 directory with 8 updates#56
JannikStreek merged 1 commit intomainfrom
dependabot/npm_and_yarn/backend/production-dependencies-7a8782f4d2

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 26, 2026
edited
Loading

Bumps the production-dependencies group with 7 updates in the /backend directory:

Package From To
@aws-sdk/client-s3 3.956.0 3.975.0
prisma 7.2.0 7.3.0
@hocuspocus/extension-database 3.4.3 3.4.4
@hocuspocus/extension-logger 3.4.3 3.4.4
@prisma/adapter-pg 7.2.0 7.3.0
@prisma/client 7.2.0 7.3.0
pg 8.16.3 8.17.2

Updates @aws-sdk/client-s3 from 3.956.0 to 3.975.0

Release notes

Sourced from @​aws-sdk/client-s3's releases.

v3.975.0

3.975.0(2026-01-23)

Chores
New Features
  • client-connect: Amazon Connect now offers public APIs to programmatically configure and run automated tests for contact center experiences. Integrate testing into CICD pipelines, run multiple tests at scale, and retrieve results via API to automate validation of voice interactions and workflows. (718c3222)
  • client-qconnect: Fixes incorrect types in the UpdateAssistantAIAgent API request, adds MESSAGE to TargetType enum, and other minor changes. (30cc5fa9)
  • client-datazone: Added api for deleting data export configuration for a domain (089a6f1a)

For list of updated packages, view updated-packages.md in assets-3.975.0.zip

v3.974.0

3.974.0(2026-01-22)

Chores
Documentation Changes
  • client-marketplace-metering: Customer Identifier parameter deprecation date has been removed. For new implementations, we recommend using the CustomerAWSAccountID. Your current integration will continue to work. When updating your implementation, consider migrating to CustomerAWSAccountID for improved integration. (fa72d80d)
  • client-verifiedpermissions: Adding documentation to user guide and API documentation for how customers can create new encrypted policy stores by passing in their customer managed key during policy store creation. (6dac27bb)
New Features
  • clients: update client endpoints as of 2026-01-22 (a8b7e9d8)
  • client-gamelift: Amazon GameLift Servers Realtime now supports Node.js 24.x runtime on the Amazon Linux 2023 operating system. (fa6e74c6)
  • client-guardduty: Adding new enum value for ScanStatusReason (a12c8c68)
  • client-ec2: Add better support for fractional GPU instances in DescribeInstanceTypes API. The new fields, logicalGpuCount, gpuPartitionSize, and workload array enable better GPU resource selection and filtering for both full and fractional GPU instance types. (72b8a1cc)
  • client-health: Updates the lower range for the maxResults request property for DescribeAffectedEntities, DescribeAffectedEntitiesForOrganization, DescribeEvents, and DescribeEventsForOrganization API request properties. (202b860d)
  • client-budgets: Add Budget FilterExpression and Metrics fields to DescribeBudgetPerformanceHistory to support more granular filtering options. (5b7d3217)
  • client-auto-scaling: This release adds support for Amazon EC2 Auto Scaling group deletion protection (ce97b637)
  • client-dynamodb: Adds additional waiters to Amazon DynamoDB. (55f5f7fd)
  • packages: support open version ranges for internal packages - move core & types (#7674) (a3cdc641)
  • config: create config package (#7667) (943761cd)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-s3's changelog.

3.975.0 (2026-01-23)

Note: Version bump only for package @​aws-sdk/client-s3

3.974.0 (2026-01-22)

Note: Version bump only for package @​aws-sdk/client-s3

3.972.0 (2026-01-20)

Note: Version bump only for package @​aws-sdk/client-s3

3.971.0 (2026-01-16)

Note: Version bump only for package @​aws-sdk/client-s3

3.970.0 (2026-01-15)

Note: Version bump only for package @​aws-sdk/client-s3

3.969.0 (2026-01-14)

Note: Version bump only for package @​aws-sdk/client-s3

3.968.0 (2026-01-13)

... (truncated)

Commits

Updates prisma from 7.2.0 to 7.3.0

Release notes

Sourced from prisma's releases.

7.3.0

Today, we are excited to share the 7.3.0 stable release 🎉

🌟 Star this repo for notifications about new releases, bug fixes & features — or follow us on X!

ORM

  • #28976: Fast and Small Query Compilers We've been working on various performance-related bugs since the initial ORM 7.0 release. With 7.3.0, we're introducing a new compilerBuild option for the client generator block in schema.prisma with two options: fast and small. This allows you to swap the underlying Query Compiler engine based on your selection, one built for speed (with an increase in size), and one built for size (with the trade off for speed). By default, the fast mode is used, but this can be set by the user:
generator client {
  provider = "prisma-client"
  output   = "../src/generated/prisma"
  compilerBuild = "fast" // "fast" | "small"
}

We still have more in progress for performance, but this new compilerBuild option is our first step toward addressing your concerns!

  • #29005: Bypass the Query Compiler for Raw Queries Raw queries ($executeRaw, $queryRaw) can now skip going through the query compiler and query interpreter infrastructure. They can be sent directly to the driver adapter, removing additional overhead.

  • #28965: Update MSSQL to v12.2.0 This community PR updates the @prisma/adapter-mssql to use MSSQL v12.2.0. Thanks Jay-Lokhande!

  • #29001: Pin better-sqlite3 version to avoid SQLite bug An underlying bug in SQLite 3.51.0 has affected the better-sqlite3 adapter. We’ve bumped the version that powers @prisma/better-sqlite3 and have pinned the version to prevent any unexpected issues. If you are using @prisma/better-sqlite3 , please upgrade to v7.3.0.

  • #29002: Revert @map enums to v6.19.0 behavior In the initial release of v7.0, we made a change with Mapped Enums where the generated enum would get its value from the value passed to the @map function. This was a breaking change from v6 that caused issues for many users. We have reverted this change for the time being, as many different diverging approaches have emerged from the community discussion.

  • prisma-engines#5745: Cast BigInt to text in JSON aggregation When using relationJoins with BigInt fields in Prisma 7, JavaScript's JSON.parse loses precision for integers larger than Number.MAX_SAFE_INTEGER (2^53 - 1). This happens because PostgreSQL's JSONB_BUILD_OBJECT returns BigInt values as JSON numbers, which JavaScript cannot represent precisely.

    // Original BigInt ID: 312590077454712834
// After JSON.parse: 312590077454712830 (corrupted!)

    This PR cast BigInt columns to ::text inside JSONB_BUILD_OBJECT calls, similar to how MONEY is already cast to ::numeric.

    -- Before
JSONB_BUILD_OBJECT('id', "id")

    -- After
    
JSONB_BUILD_OBJECT('id', "id"::text)

... (truncated)

Commits

Updates @hocuspocus/extension-database from 3.4.3 to 3.4.4

Release notes

Sourced from @​hocuspocus/extension-database's releases.

v3.4.4

What's Changed

Full Changelog: ueberdosis/hocuspocus@v3.4.3...v3.4.4

Changelog

Sourced from @​hocuspocus/extension-database's changelog.

3.4.4 (2026-01-25)

Bug Fixes

Commits

Updates @hocuspocus/extension-logger from 3.4.3 to 3.4.4

Release notes

Sourced from @​hocuspocus/extension-logger's releases.

v3.4.4

What's Changed

Full Changelog: ueberdosis/hocuspocus@v3.4.3...v3.4.4

Changelog

Sourced from @​hocuspocus/extension-logger's changelog.

3.4.4 (2026-01-25)

Bug Fixes

Commits

Updates @hocuspocus/server from 3.4.3 to 3.4.4

Release notes

Sourced from @​hocuspocus/server's releases.

v3.4.4

What's Changed

Full Changelog: ueberdosis/hocuspocus@v3.4.3...v3.4.4

Changelog

Sourced from @​hocuspocus/server's changelog.

3.4.4 (2026-01-25)

Bug Fixes

Commits

Updates @prisma/adapter-pg from 7.2.0 to 7.3.0

Release notes

Sourced from @​prisma/adapter-pg's releases.

7.3.0

Today, we are excited to share the 7.3.0 stable release 🎉

🌟 Star this repo for notifications about new releases, bug fixes & features — or follow us on X!

ORM

  • #28976: Fast and Small Query Compilers We've been working on various performance-related bugs since the initial ORM 7.0 release. With 7.3.0, we're introducing a new compilerBuild option for the client generator block in schema.prisma with two options: fast and small. This allows you to swap the underlying Query Compiler engine based on your selection, one built for speed (with an increase in size), and one built for size (with the trade off for speed). By default, the fast mode is used, but this can be set by the user:
generator client {
  provider = "prisma-client"
  output   = "../src/generated/prisma"
  compilerBuild = "fast" // "fast" | "small"
}

We still have more in progress for performance, but this new compilerBuild option is our first step toward addressing your concerns!

  • #29005: Bypass the Query Compiler for Raw Queries Raw queries ($executeRaw, $queryRaw) can now skip going through the query compiler and query interpreter infrastructure. They can be sent directly to the driver adapter, removing additional overhead.

  • #28965: Update MSSQL to v12.2.0 This community PR updates the @prisma/adapter-mssql to use MSSQL v12.2.0. Thanks Jay-Lokhande!

  • #29001: Pin better-sqlite3 version to avoid SQLite bug An underlying bug in SQLite 3.51.0 has affected the better-sqlite3 adapter. We’ve bumped the version that powers @prisma/better-sqlite3 and have pinned the version to prevent any unexpected issues. If you are using @prisma/better-sqlite3 , please upgrade to v7.3.0.

  • #29002: Revert @map enums to v6.19.0 behavior In the initial release of v7.0, we made a change with Mapped Enums where the generated enum would get its value from the value passed to the @map function. This was a breaking change from v6 that caused issues for many users. We have reverted this change for the time being, as many different diverging approaches have emerged from the community discussion.

  • prisma-engines#5745: Cast BigInt to text in JSON aggregation When using relationJoins with BigInt fields in Prisma 7, JavaScript's JSON.parse loses precision for integers larger than Number.MAX_SAFE_INTEGER (2^53 - 1). This happens because PostgreSQL's JSONB_BUILD_OBJECT returns BigInt values as JSON numbers, which JavaScript cannot represent precisely.

    // Original BigInt ID: 312590077454712834
// After JSON.parse: 312590077454712830 (corrupted!)

    This PR cast BigInt columns to ::text inside JSONB_BUILD_OBJECT calls, similar to how MONEY is already cast to ::numeric.

    -- Before
JSONB_BUILD_OBJECT('id', "id")

    -- After
    
JSONB_BUILD_OBJECT('id', "id"::text)

... (truncated)

Commits

Updates @prisma/client from 7.2.0 to 7.3.0

Release notes

Sourced from @​prisma/client's releases.

7.3.0

Today, we are excited to share the 7.3.0 stable release 🎉

🌟 Star this repo for notifications about new releases, bug fixes & features — or follow us on X!

ORM

  • #28976: Fast and Small Query Compilers We've been working on various performance-related bugs since the initial ORM 7.0 release. With 7.3.0, we're introducing a new compilerBuild option for the client generator block in schema.prisma with two options: fast and small. This allows you to swap the underlying Query Compiler engine based on your selection, one built for speed (with an increase in size), and one built for size (with the trade off for speed). By default, the fast mode is used, but this can be set by the user:
generator client {
  provider = "prisma-client"
  output   = "../src/generated/prisma"
  compilerBuild = "fast" // "fast" | "small"
}

We still have more in progress for performance, but this new compilerBuild option is our first step toward addressing your concerns!

  • #29005: Bypass the Query Compiler for Raw Queries Raw queries ($executeRaw, $queryRaw) can now skip going through the query compiler and query interpreter infrastructure. They can be sent directly to the driver adapter, removing additional overhead.

  • #28965: Update MSSQL to v12.2.0 This community PR updates the @prisma/adapter-mssql to use MSSQL v12.2.0. Thanks Jay-Lokhande!

  • #29001: Pin better-sqlite3 version to avoid SQLite bug An underlying bug in SQLite 3.51.0 has affected the better-sqlite3 adapter. We’ve bumped the version that powers @prisma/better-sqlite3 and have pinned the version to prevent any unexpected issues. If you are using @prisma/better-sqlite3 , please upgrade to v7.3.0.

  • #29002: Revert @map enums to v6.19.0 behavior In the initial release of v7.0, we made a change with Mapped Enums where the generated enum would get its value from the value passed to the @map function. This was a breaking change from v6 that caused issues for many users. We have reverted this change for the time being, as many different diverging approaches have emerged from the community discussion.

  • prisma-engines#5745: Cast BigInt to text in JSON aggregation When using relationJoins with BigInt fields in Prisma 7, JavaScript's JSON.parse loses precision for integers larger than Number.MAX_SAFE_INTEGER (2^53 - 1). This happens because PostgreSQL's JSONB_BUILD_OBJECT returns BigInt values as JSON numbers, which JavaScript cannot represent precisely.

    // Original BigInt ID: 312590077454712834
// After JSON.parse: 312590077454712830 (corrupted!)

    This PR cast BigInt columns to ::text inside JSONB_BUILD_OBJECT calls, similar to how MONEY is already cast to ::numeric.

    -- Before
JSONB_BUILD_OBJECT('id', "id")

    -- After
JSONB_BUILD_OBJECT('id', "id"::text)

... (truncated)

Commits
  • b6fd1bd chore(deps): update engines to 7.3.0-16.9d6ad21cbbceab97458517b147a6a09ff43aa...
  • 223b6ea chore: make the interpreter reusable (#29016)
  • 9d44ecc feat: compile raw queries in the client engine (#29005)
  • 272b176 fix: revert "feat(client-generator-ts): [breaking] add support for ma… (#29002)
  • c03d384 fix: pin better sqlite for exists bug (#29001)
  • 8f69196 chore(deps): update engines to 7.3.0-8.aee8f579c2872ad0cedd6fd7e9070704fdb361...
  • 768cd82 fix: fix QC benchmark (#28987)
  • fd479fd feat(qc): fast and small build modes (#28976)
  • a60094a perf: add query compilation and performance benchmarks (#28954)
  • See full diff in compare view

Updates pg from 8.16.3 to 8.17.2

Changelog

Sourced from pg's changelog.

All major and minor releases are briefly explained below.

For richer information consult the commit log on github with referenced pull requests.

We do not include break-fix version release in this file.

[email protected]

  • Throw correct error if database URL parsing fails.

[email protected]

[email protected]

  • Add support for esm importing. CommonJS importing is still also supported.

[email protected]

[email protected]

[email protected]

[email protected]

  • Emit release event when client is returned to the pool.

[email protected]

[email protected]

[email protected]

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jan 26, 2026
@dependabot
Bump the production-dependencies group across 1 directory with 8 updates
d87118e 
Bumps the production-dependencies group with 7 updates in the /backend directory:

| Package | From | To |
| --- | --- | --- |
| [@aws-sdk/client-s3](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-s3) | `3.956.0` | `3.975.0` |
| [prisma](https://github.com/prisma/prisma/tree/HEAD/packages/cli) | `7.2.0` | `7.3.0` |
| [@hocuspocus/extension-database](https://github.com/ueberdosis/hocuspocus) | `3.4.3` | `3.4.4` |
| [@hocuspocus/extension-logger](https://github.com/ueberdosis/hocuspocus) | `3.4.3` | `3.4.4` |
| [@prisma/adapter-pg](https://github.com/prisma/prisma/tree/HEAD/packages/adapter-pg) | `7.2.0` | `7.3.0` |
| [@prisma/client](https://github.com/prisma/prisma/tree/HEAD/packages/client) | `7.2.0` | `7.3.0` |
| [pg](https://github.com/brianc/node-postgres/tree/HEAD/packages/pg) | `8.16.3` | `8.17.2` |



Updates `@aws-sdk/client-s3` from 3.956.0 to 3.975.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-s3/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.975.0/clients/client-s3)

Updates `prisma` from 7.2.0 to 7.3.0
- [Release notes](https://github.com/prisma/prisma/releases)
- [Commits](https://github.com/prisma/prisma/commits/7.3.0/packages/cli)

Updates `@hocuspocus/extension-database` from 3.4.3 to 3.4.4
- [Release notes](https://github.com/ueberdosis/hocuspocus/releases)
- [Changelog](https://github.com/ueberdosis/hocuspocus/blob/main/CHANGELOG.md)
- [Commits](ueberdosis/hocuspocus@v3.4.3...v3.4.4)

Updates `@hocuspocus/extension-logger` from 3.4.3 to 3.4.4
- [Release notes](https://github.com/ueberdosis/hocuspocus/releases)
- [Changelog](https://github.com/ueberdosis/hocuspocus/blob/main/CHANGELOG.md)
- [Commits](ueberdosis/hocuspocus@v3.4.3...v3.4.4)

Updates `@hocuspocus/server` from 3.4.3 to 3.4.4
- [Release notes](https://github.com/ueberdosis/hocuspocus/releases)
- [Changelog](https://github.com/ueberdosis/hocuspocus/blob/main/CHANGELOG.md)
- [Commits](ueberdosis/hocuspocus@v3.4.3...v3.4.4)

Updates `@prisma/adapter-pg` from 7.2.0 to 7.3.0
- [Release notes](https://github.com/prisma/prisma/releases)
- [Commits](https://github.com/prisma/prisma/commits/7.3.0/packages/adapter-pg)

Updates `@prisma/client` from 7.2.0 to 7.3.0
- [Release notes](https://github.com/prisma/prisma/releases)
- [Commits](https://github.com/prisma/prisma/commits/7.3.0/packages/client)

Updates `pg` from 8.16.3 to 8.17.2
- [Changelog](https://github.com/brianc/node-postgres/blob/master/CHANGELOG.md)
- [Commits](https://github.com/brianc/node-postgres/commits/[email protected]/packages/pg)

---
updated-dependencies:
- dependency-name: "@aws-sdk/client-s3"
  dependency-version: 3.975.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: prisma
  dependency-version: 7.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: "@hocuspocus/extension-database"
  dependency-version: 3.4.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: "@hocuspocus/extension-logger"
  dependency-version: 3.4.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: "@hocuspocus/server"
  dependency-version: 3.4.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: "@prisma/adapter-pg"
  dependency-version: 7.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: "@prisma/client"
  dependency-version: 7.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: pg
  dependency-version: 8.17.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/backend/production-dependencies-7a8782f4d2 branch from 4dae476 to d87118e Compare January 27, 2026 15:05
@JannikStreek JannikStreek merged commit cefc1e4 into main Jan 27, 2026
3 checks passed
@JannikStreek JannikStreek deleted the dependabot/npm_and_yarn/backend/production-dependencies-7a8782f4d2 branch January 27, 2026 15:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@JannikStreek