Skip to content

Bump diff, @wordpress/components and npm#2802

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/multi-da50b86e1a
Open

Bump diff, @wordpress/components and npm#2802
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/multi-da50b86e1a

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Jan 14, 2026

Removes diff. It's no longer used after updating ancestor dependencies diff, @wordpress/components and npm. These dependencies need to be updated together.

Removes diff

Updates @wordpress/components from 6.0.2 to 31.0.0

Release notes

Sourced from @​wordpress/components's releases.

22.3.0

Changelog

Enhancements

Block Editor

  • Image Cropper: Add package and basic stories. (72414)
  • Implements the image-cropper package in the editor. (73277)

Block Library

  • Add support for 'align' to the Breadcrumbs block. (73794)
  • Breadcrumbs: Support paged comments. (73670)
  • Button: Migrate to text-align block support. (73732)
  • Comments Pagination Numbers: Add spacing controls for margin and padding. (67267)

Components

  • Chore: Shorten timeout duration for Snackbar component. (73814)
  • Try: 32px tall menu items. (73429)

Data Layer

  • @​wordpress/data: Migrate index.js to index.ts. (73597)

DataViews

  • Add min/max validation support to DataForm inputs. (73465)
  • Field API: Display formats for number and integer types. (73644)
  • Try using 24px padding for consistency across different uses. (73334)
  • Update operator labels and deprecate the isNotAll. (73671)

Internationalization

  • Fields: Update "Trash" translation to provide verb context. (73704)

Layout

  • Enable grid block to be responsive when columns are set. (73662)
  • Try removing top and left grid drag handles in stable (auto) mode. (73864)

Media

  • Add media-specific fields for use with Attachment post types and DataViews/DataForm. (73071)

Notes

  • Notes: Add email notification. (73645)

Offline

  • Editor: Improve offline error notices. (73874)

Packages

  • Remove WordPress dependencies from abilities package. (73428)

Patterns

  • Add pattern name to document toolbar when editing in spotlight. (73208)
  • ContentOnly: For template parts and synced patterns, ensure 'Edit section' button goes to the isolated editor. (73736)

... (truncated)

Changelog

Sourced from @​wordpress/components's changelog.

31.0.0 (2025-12-23)

Breaking Changes

  • Validated form controls (private API): Removed onValidate prop (use onChange to set customValidity messages, or add conditionals directly inside the customValidity prop instead) (#73559).
  • FormTokenField: Remove deprecated __nextHasNoMarginBottom prop and promote to default behavior (#73846).

Enhancements

  • Menu and othr menu items: change default size to be 32px tall rather than 40px to improve menu density. (#73429).
  • Unify padding using for DataViews, Modals and other container components. (#73334)
  • Snackbar: Shorten timeout duration (#73814).

Bug Fixes

  • Modal: Fix vertical scroll issue by reducing style specificity to allow overrides. (#73739)
  • Notice: Fix notice component spacing issue when actions are present. (#69430)

Internal

  • AlignmentMatrixControl: Migrate styles from Emotion to a CSS module (#73714 and #73757).
  • AnglePickerControl: Migrate styles from Emotion to a CSS module (#73786).

30.9.0 (2025-11-26)

Bug Fixes

  • ExternalLink: Fix arrow direction for RTL languages. The external link arrow now correctly points to the top-left (↖) instead of top-right (↗) in RTL layouts. (#73400).
  • Fixed an issue where the Guide component’s close button became invisible on hover when used on light backgrounds. The component's close button now relies on the default button hover effect, and the custom hover color is applied only within welcome-guide implementations to maintain consistency. (#73220).
  • DateTimePicker: Fixed timezone handling when selecting specific dates around changes in daylight savings time when browser and server timezone settings are not in sync, which would cause an incorrect date to be selected. (#73444).

30.8.0 (2025-11-12)

Bug Fixes

  • Button: Revert disabled primary button state to its previous one (#73037).
  • TextareaControl: Add min-height to the textarea element (#72867).
  • Card, CardHeader, CardBody and CardFooter: Add support for directional padding through object-based size prop, allowing independent control of padding for each side (#72511).
  • CustomSelectControl: Fix the options with the same name are shown as the selected option (#72189).
  • NumberControl: Fix crash when min prop is string and step prop contains decimal (#73107).
  • Modal: Fix full-screen modal height to allow contents to scroll properly (#73150).

Internal

  • Modal: Add a classname to simplify full height content modal styling (#73108).

Enhancements

  • ConfirmDialog: Add isBusy prop to component. (#73041).
  • ColorPicker: Support pasting whole color values. (#73166).

... (truncated)

Commits
  • 2cf13ec chore(release): publish
  • d096bed Update changelog files
  • ef20cbf Merge changes published in the Gutenberg plugin "release/22.3" branch
  • b35cf1a chore(release): publish
  • 01eaf58 Update changelog files
  • fc9213e Merge changes published in the Gutenberg plugin "release/22.2" branch
  • 77aa1f1 chore(release): publish
  • 26b6bac Update changelog files
  • d61fa7f Merge changes published in the Gutenberg plugin "release/22.1" branch
  • ceebff8 chore(release): publish
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by gutenbergplugin, a new releaser for @​wordpress/components since your current version.


Updates npm from 10.9.4 to 11.7.0

Release notes

Sourced from npm's releases.

v11.7.0

11.7.0 (2025-12-09)

Features

Bug Fixes

Documentation

  • 7f2ab9d #8810 scripts: replace deprecated prepublish and install examples with prepare (Max Black)
  • 91ebab7 #8847 remove note about token create being disabled (@​owlstronaut)
  • 2030250 #8822 scripts: clarify prepare script runs with --production (Max Black)
  • 33a50d7 #8821 scripts: update npm_package_* environment variables documentation (Max Black)
  • 50508f9 #8793 package-json: add documentation for type field (#8793) (@​MaxBlack-dev, Max Black)
  • aa1dd7e #8823 scripts: document that prepare scripts run concurrently in workspaces (Max Black)
  • 3f48487 #8820 package-spec: fix alias syntax in examples (Max Black)
  • dd104da #8812 version: add note about git version requirements (Max Black)
  • 58afdcc #8792 install: clarify prerelease version range behavior (Max Black)
  • 9f818e8 #8795 npm-view: clarify object property access syntax and provide examples (Max Black)
  • 39c2f2e #8791 add examples for command line flags including --prefix (Max Black)
  • 1298530 #8790 clarify version field can be omitted in package-lock (Max Black)
  • 090b6ca #8794 npx: clarify that arguments are passed to executed command (Max Black)
  • a864f80 #8787 document gypfile field in package.json (Max Black)
  • 2fc689d #8788 add field access patterns to npm view (Max Black)
  • 4850639 #8796 package-json: add examples for replacing dependencies with forks in overrides (Max Black)
  • 4864dd4 #8798 npm-install: document engines field priority when installing packages (Max Black)
  • 95d25cd #8799 package-json: clarify repository field normalization during publish (Max Black)
  • a367f9b #8800 package-lock-json: clarify that version field may be omitted for certain dependencies (Max Black)
  • ffc9b71 #8801 npm-install: clarify --tag does not override package.json (#8801) (@​MaxBlack-dev, Max Black)
  • 73688ca #8735 clarify npm version behavior with prerelease versions (#8735) (@​yashwantbezawada)
  • 4a32606 #8785 updates the token create documentation (#8785) (@​owlstronaut, @​wraithgar)

Chores

Dependencies

v11.6.4

11.6.4 (2025-11-25)

Documentation

... (truncated)

Changelog

Sourced from npm's changelog.

11.7.0 (2025-12-09)

Features

Bug Fixes

Documentation

  • 7f2ab9d #8810 scripts: replace deprecated prepublish and install examples with prepare (Max Black)
  • 91ebab7 #8847 remove note about token create being disabled (@​owlstronaut)
  • 2030250 #8822 scripts: clarify prepare script runs with --production (Max Black)
  • 33a50d7 #8821 scripts: update npm_package_* environment variables documentation (Max Black)
  • 50508f9 #8793 package-json: add documentation for type field (#8793) (@​MaxBlack-dev, Max Black)
  • aa1dd7e #8823 scripts: document that prepare scripts run concurrently in workspaces (Max Black)
  • 3f48487 #8820 package-spec: fix alias syntax in examples (Max Black)
  • dd104da #8812 version: add note about git version requirements (Max Black)
  • 58afdcc #8792 install: clarify prerelease version range behavior (Max Black)
  • 9f818e8 #8795 npm-view: clarify object property access syntax and provide examples (Max Black)
  • 39c2f2e #8791 add examples for command line flags including --prefix (Max Black)
  • 1298530 #8790 clarify version field can be omitted in package-lock (Max Black)
  • 090b6ca #8794 npx: clarify that arguments are passed to executed command (Max Black)
  • a864f80 #8787 document gypfile field in package.json (Max Black)
  • 2fc689d #8788 add field access patterns to npm view (Max Black)
  • 4850639 #8796 package-json: add examples for replacing dependencies with forks in overrides (Max Black)
  • 4864dd4 #8798 npm-install: document engines field priority when installing packages (Max Black)
  • 95d25cd #8799 package-json: clarify repository field normalization during publish (Max Black)
  • a367f9b #8800 package-lock-json: clarify that version field may be omitted for certain dependencies (Max Black)
  • ffc9b71 #8801 npm-install: clarify --tag does not override package.json (#8801) (@​MaxBlack-dev, Max Black)
  • 73688ca #8735 clarify npm version behavior with prerelease versions (#8735) (@​yashwantbezawada)
  • 4a32606 #8785 updates the token create documentation (#8785) (@​owlstronaut, @​wraithgar)

Chores

Dependencies

11.6.4 (2025-11-25)

Documentation

... (truncated)

Commits
  • 6d1db87 chore: release 11.7.0
  • 4ebb831 fix: updates hints to use cli paradigm
  • 7f2ab9d docs(scripts): replace deprecated prepublish and install examples with prepare
  • 7896e51 fix: update the token list text
  • 91ebab7 docs: remove note about token create being disabled
  • 54929ce chore: update baseline-browser-mapping
  • 8ab8668 fix(query): support package-lock-only in workspaces
  • 0765289 fix: handle ENOTEMPTY errors in moveFile
  • 2030250 docs(scripts): clarify prepare script runs with --production
  • 33a50d7 docs(scripts): update npm_package_* environment variables documentation
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump diff, @wordpress/components and npm
335c0e5 
Removes [diff](https://github.com/kpdecker/jsdiff). It's no longer used after updating ancestor dependencies [diff](https://github.com/kpdecker/jsdiff), [@wordpress/components](https://github.com/WordPress/gutenberg/tree/HEAD/packages/components) and [npm](https://github.com/npm/cli). These dependencies need to be updated together.


Removes `diff`

Updates `@wordpress/components` from 6.0.2 to 31.0.0
- [Release notes](https://github.com/WordPress/gutenberg/releases)
- [Changelog](https://github.com/WordPress/gutenberg/blob/@wordpress/components@31.0.0/packages/components/CHANGELOG.md)
- [Commits](https://github.com/WordPress/gutenberg/commits/@wordpress/components@31.0.0/packages/components)

Updates `npm` from 10.9.4 to 11.7.0
- [Release notes](https://github.com/npm/cli/releases)
- [Changelog](https://github.com/npm/cli/blob/latest/CHANGELOG.md)
- [Commits](npm/cli@v10.9.4...v11.7.0)

---
updated-dependencies:
- dependency-name: diff
  dependency-version: 
  dependency-type: indirect
- dependency-name: "@wordpress/components"
  dependency-version: 31.0.0
  dependency-type: direct:production
- dependency-name: npm
  dependency-version: 11.7.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jan 14, 2026
@coderabbitai
Copy link
Copy Markdown
Contributor

coderabbitai bot commented Jan 14, 2026

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Comment @coderabbitai help to get the list of available commands and usage tips.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants