Bump undici, @discordjs/rest and discord.js

[dependabot]

Bumps undici to 6.21.3 and updates ancestor dependencies undici, @discordjs/rest and discord.js. These dependencies need to be updated together.

Updates undici from 6.19.8 to 6.21.3

Release notes

Sourced from undici's releases.

v6.21.3

What's Changed

• [Backport v6.x] append crlf to formdata body by @​github-actions in nodejs/undici#4210

Full Changelog: nodejs/undici@v6.21.2...v6.21.3

v6.21.2

What's Changed

• fix(types): add missing DNS interceptor by @​slagiewka in nodejs/undici#4024
• [v6.x] fix wpts on windows by @​mcollina in nodejs/undici#4093
• Removed clients with unrecoverable errors from the Pool nodejs/undici#4088

New Contributors

• @​slagiewka made their first contribution in nodejs/undici#4024

Full Changelog: nodejs/undici@v6.21.1...v6.21.2

v6.21.1

⚠️ Security Release ⚠️

Fixes CVE CVE-2025-22150 GHSA-c76h-2ccp-4975 (embargoed until 22-01-2025).

What's Changed

• fix(#3736): back-port 183f8e9 to v6.x by @​ggoodman in nodejs/undici#3855
• fix(#3817): send servername for SNI on TLS (#3821) [backport] by @​metcoder95 in nodejs/undici#3864
• fix: sending formdata bodies with http2 (#3863) [backport] by @​metcoder95 in nodejs/undici#3866
• [Backport v6.x] fix: Fixed the issue that there is no running request when http2 goaway by @​github-actions in nodejs/undici#3877
• types: [backport] Update return type of RetryCallback (#3851) by @​metcoder95 in nodejs/undici#3876

Full Changelog: nodejs/undici@v6.21.0...v6.21.1

v6.21.0

What's Changed

• [Backport v6.x] web: mark as uncloneable when possible (#3709) by @​jazelly in nodejs/undici#3744
• [Backport v6.x] fetch: fix content-encoding order by @​github-actions in nodejs/undici#3764
• [Backport v6.x] fix: handle undefined deref() of WeakRef(socket) by @​github-actions in nodejs/undici#3822
• [Backport v6.x] fix: range end is zero-indexed by @​github-actions in nodejs/undici#3827

Full Changelog: nodejs/undici@v6.20.1...v6.21.0

v6.20.1

What's Changed

• [Backport v6.x] jsdoc: add jsdoc to lib/web/fetch/constants.js by @​github-actions in nodejs/undici#3710
• [Backport v6.x] feat: implement BodyReadable.bytes by @​github-actions in nodejs/undici#3711
• fix: add more expectsPayload methods by @​ronag in nodejs/undici#3715
• [Backport v6.x] chore(H2): onboard H2 into Undici queueing system (#3707) by @​Uzlopak in nodejs/undici#3724

... (truncated)

Commits

• da0e823 Bumped v6.21.4
• dbbe0a2 append crlf to formdata body (#3625) (#4210)
• b63d939 Bumped v6.21.2
• de1e4b8 [v6.x] fix wpts on windows (#4093)
• 4e07dda test: fix windows wpt (#4050)
• 1333871 Removed clients with unrecoverable errors from the Pool (#4088)
• a0e76c7 fix(types): add missing DNS interceptor (#4024)
• e260e7b Bumped v6.21.1
• c3acc60 Merge commit from fork
• 2414bc9 Update return type of RetryCallback (#3851) (#3876)
• Additional commits viewable in compare view

Updates @discordjs/rest from 2.4.0 to 2.6.0

Release notes

Sourced from @​discordjs/rest's releases.

@​discordjs/rest@​2.6.0

Documentation

• Remove hardcoded locale from links (#10794) (5be774d)

Features

• Support user guilds (#10995) (baa08b8)
• Support animated WebP (#10987) (cafe58b)

@​discordjs/rest@​2.5.1

No release notes provided.

@​discordjs/rest@​2.5.0

Features

• Components v2 in v14 (#10781) (edace17)
• Add soundboard in v14 (#10843) (d3154cf)

@​discordjs/rest@​2.4.3

No release notes provided.

@​discordjs/rest@​2.4.2

Bug Fixes

• Correct guild member banner URL (8d69b24)

@​discordjs/rest@​2.4.1

No release notes provided.

Changelog

Sourced from @​discordjs/rest's changelog.

@​discordjs/rest@​2.6.0 - (2025-08-20)

Documentation

• Remove hardcoded locale from links (#10794) (5be774d)

Features

• Support user guilds (#10995) (baa08b8)
• Support animated WebP (#10987) (cafe58b)

@​discordjs/rest@​2.5.0 - (2025-04-25)

Features

• Components v2 in v14 (#10781) (edace17)
• Add soundboard in v14 (#10843) (d3154cf)

@​discordjs/rest@​2.4.2 - (2025-01-01)

Bug Fixes

• Correct guild member banner URL (8d69b24)

@​discordjs/rest@​2.4.2 - (2025-01-01)

Bug Fixes

• Correct guild member banner URL (8d69b24)

Commits

• a2f7d3a chore(rest): release @​discordjs/rest@​2.6.0
• baa08b8 feat: support user guilds (#10995)
• a271e9b build: Upgrade discord-api-types (#10991)
• cafe58b feat: Support animated WebP (#10987)
• 7eca844 chore: remove unused directive
• 5be774d docs: remove hardcoded locale from links (#10794)
• a1c83c1 chore(rest): release @​discordjs/rest@​2.5.1
• 65cfa3f build: Update Undici to 6.21.3 (#10906)
• 512b0c6 chore(rest): release @​discordjs/rest@​2.5.0
• edace17 feat: components v2 in v14 (#10781)
• Additional commits viewable in compare view

Updates discord.js from 14.16.1 to 14.22.1

Release notes

Sourced from discord.js's releases.

14.22.1

14.22.1 - (2025-08-22)

Bug Fixes

• GuildChannel: Account for everyone base permissions (#11053) (ecef7bd)

14.22.0

Bug Fixes

• Remove trailing color references (#11007) (b532df6)
• Emoji: Remove incorrect nullables, add ApplicationEmoji#available (#10990) (90d3b28)
• GuildChannelManager: Properly resolve avatar for createWebhook (#10772) (63f5261)
• Message: Forwarded messages are not crosspostable (#10821) (b36b751)
• DirectoryChannel: Export class (#10985) (51ceb20)
• Events: WebhooksUpdate enum value (#10970) (1404e32)

Documentation

• Remove hardcoded locale from links (#10794) (5be774d)
• ApplicationCommand: Incorrect method in example (#10837) (040c66a)

Features

• Support user guilds (#10995) (baa08b8)
• MessageManager: New pinned messages routes (#10993) (f469f74)
  • fetchPinned() has been renamed to fetchPins(), which is a paginated endpoint to fetch pinned messages.
• User: Add collectibles (#10939) (8ac0e1e)
• Role gradient colours (#10986) (9d6fdf8)
• Support animated WebP (#10987) (cafe58b)

Refactor

• Deprecate ready event in favor of clientReady (#10969) (82378fc)
• ThreadChannel: Remove trimming of name (#10984) (d4f742e)

Typings

• Invite: Approximate fields should be nullable (#10997) (d60e0bf)
• ModalSubmitFields: Fix fields type (#10816) (500712d)
• InteractionCallbackResponse: Add missing InGuild generic (#10963) (19e74b1)

14.21.0

Bug Fixes

• ClientUser: Remove token assignment (#10953) (507b696)

Features

• GuildMember: Add avatarDecorationData (#10942) (15f7571)

... (truncated)

Changelog

Sourced from discord.js's changelog.

14.22.1 - (2025-08-22)

Bug Fixes

• GuildChannel: Account for everyone base permissions (#11053) (ecef7bd)

14.22.0 - (2025-08-20)

Bug Fixes

• Remove trailing color references (#11007) (b532df6)
• Emoji: Remove incorrect nullables, add ApplicationEmoji#available (#10990) (90d3b28)
• GuildChannelManager: Properly resolve avatar for createWebhook (#10772) (63f5261)
• Message: Forwarded messages are not crosspostable (#10821) (b36b751)
• DirectoryChannel: Export class (#10985) (51ceb20)
• Events: WebhooksUpdate enum value (#10970) (1404e32)

Documentation

• Remove hardcoded locale from links (#10794) (5be774d)
• ApplicationCommand: Incorrect method in example (#10837) (040c66a)

Features

• Support user guilds (#10995) (baa08b8)
• MessageManager: New pinned messages routes (#10993) (f469f74)
  • fetchPinned() has been renamed to fetchPins(), which is a paginated endpoint to fetch pinned messages.
• User: Add collectibles (#10939) (8ac0e1e)
• Role gradient colours (#10986) (9d6fdf8)
• Support animated WebP (#10987) (cafe58b)

Refactor

• Deprecate ready event in favor of clientReady (#10969) (82378fc)
• ThreadChannel: Remove trimming of name (#10984) (d4f742e)

Typings

• Invite: Approximate fields should be nullable (#10997) (d60e0bf)
• ModalSubmitFields: Fix fields type (#10816) (500712d)
• InteractionCallbackResponse: Add missing InGuild generic (#10963) (19e74b1)

14.21.0 - (2025-06-25)

Bug Fixes

• ClientUser: Remove token assignment (#10953) (507b696)

Features

... (truncated)

Commits

• a294b47 chore(discord.js): release discord.js@14.22.1
• ecef7bd fix(GuildChannel): account for everyone base permissions (#11053)
• 4057839 chore: add @​discordjs/collection in api-extractor.json
• 86ecb37 chore(discord.js): correct changelog and version
• 311e826 chore(discord.js): release discord.js@15.0.0
• b532df6 fix: Remove trailing color references (#11007)
• d60e0bf types(Invite): Approximate fields should be nullable (#10997)
• baa08b8 feat: support user guilds (#10995)
• f469f74 feat(MessageManager): New pinned messages routes (#10993)
• 90d3b28 fix(Emoji): remove incorrect nullables, add ApplicationEmoji#available (#10...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.