Skip to content

chore(deps): bump the npm_and_yarn group across 21 directories with 4 updates#20

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/CopilotKit/npm_and_yarn-7e675747a4
Open

chore(deps): bump the npm_and_yarn group across 21 directories with 4 updates#20
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/CopilotKit/npm_and_yarn-7e675747a4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Mar 1, 2026

Copy link
Copy Markdown

Bumps the npm_and_yarn group with 1 update in the /CopilotKit directory: @langchain/community.
Bumps the npm_and_yarn group with 1 update in the /CopilotKit/examples/next-openai directory: @langchain/community.
Bumps the npm_and_yarn group with 1 update in the /CopilotKit/examples/next-pages-router directory: @langchain/community.
Bumps the npm_and_yarn group with 1 update in the /CopilotKit/packages/runtime directory: @langchain/community.
Bumps the npm_and_yarn group with 1 update in the /CopilotKit/packages/sdk-js directory: @langchain/community.
Bumps the npm_and_yarn group with 1 update in the /docs directory: minimatch.
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-ai-researcher/ui directory: ajv and minimatch.
Bumps the npm_and_yarn group with 1 update in the /examples/coagents-qa-native/agent-js directory: fast-xml-parser.
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-qa-native/ui directory: ajv and minimatch.
Bumps the npm_and_yarn group with 1 update in the /examples/coagents-qa-text/agent-js directory: fast-xml-parser.
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-qa-text/ui directory: ajv and minimatch.
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-qa/ui directory: ajv and minimatch.
Bumps the npm_and_yarn group with 1 update in the /examples/coagents-research-canvas/agent-js directory: fast-xml-parser.
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-research-canvas/ui directory: ajv and minimatch.
Bumps the npm_and_yarn group with 1 update in the /examples/coagents-routing/agent-js directory: fast-xml-parser.
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-routing/ui directory: ajv and minimatch.
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-shared-state/ui directory: ajv and minimatch.
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-starter/ui directory: ajv and minimatch.
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-travel/ui directory: ajv and minimatch.
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-wait-user-input/ui directory: ajv and minimatch.
Bumps the npm_and_yarn group with 1 update in the /infra directory: minimatch.

Updates @langchain/community from 0.0.53 to 1.1.18

Release notes

Sourced from @​langchain/community's releases.

@​langchain/community@​1.1.18

Patch Changes

  • #10108 e7576ee Thanks @​hntrl! - fix: replace retired Anthropic model IDs with active replacements

    • Update default model in ChatAnthropic from claude-3-5-sonnet-latest to claude-sonnet-4-5-20250929
    • Regenerate model profiles with latest data from models.dev API
    • Replace retired claude-3-5-haiku-20241022, claude-3-7-sonnet-20250219, claude-3-5-sonnet-20240620, and claude-3-5-sonnet-20241022 in tests, docstrings, and examples
  • #10116 2812d2b Thanks @​hntrl! - Validate redirects in RecursiveUrlLoader to prevent SSRF bypasses.

  • Updated dependencies []:

    • @​langchain/classic@​1.0.19

@​langchain/community@​1.1.16

Patch Changes

@​langchain/community@​1.1.14

Patch Changes

  • #9990 d5e3db0 Thanks @​hntrl! - feat(core): Add SSRF protection module (@langchain/core/utils/ssrf) with utilities for validating URLs against private IPs, cloud metadata endpoints, and localhost.

    fix(community): Harden RecursiveUrlLoader against SSRF attacks by integrating validateSafeUrl and replacing string-based URL comparison with origin-based isSameOrigin from the shared SSRF module.

  • Updated dependencies [d5e3db0, 6939dab, ad581c7]:

    • @​langchain/core@​1.1.21
    • @​langchain/openai@​1.2.7
    • @​langchain/classic@​1.0.17

@​langchain/community@​1.1.12

Patch Changes

Commits
  • a591053 chore: version packages (#10110)
  • 2812d2b fix(community): validate redirects in RecursiveUrlLoader (#10116)
  • 0050c91 fix(langchain): reset shared currentSystemMessage on middleware handler retry...
  • 66df7fa fix(anthropic): convert tool_calls to tool_use blocks when AIMessage content ...
  • eed16fa chore(deps): bump actions/stale from 10.1.1 to 10.2.0 in the gh-actions-minor...
  • 02b0d49 chore(deps): bump langsmith from 0.5.4 to 0.5.6 (#10130)
  • 630890a feat(openrouter): default OpenRouter attribution headers (#10109)
  • e7576ee fix(anthropic): replace retired model IDs in tests and mock data (#10108)
  • c0409e6 chore: version packages (#10095)
  • fb2226e Revert "chore(deps): bump ansi-styles from 5.2.0 to 6.2.3" (#10104)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​langchain/community since your current version.


Updates @langchain/community from 0.0.53 to 1.1.18

Release notes

Sourced from @​langchain/community's releases.

@​langchain/community@​1.1.18

Patch Changes

  • #10108 e7576ee Thanks @​hntrl! - fix: replace retired Anthropic model IDs with active replacements

    • Update default model in ChatAnthropic from claude-3-5-sonnet-latest to claude-sonnet-4-5-20250929
    • Regenerate model profiles with latest data from models.dev API
    • Replace retired claude-3-5-haiku-20241022, claude-3-7-sonnet-20250219, claude-3-5-sonnet-20240620, and claude-3-5-sonnet-20241022 in tests, docstrings, and examples
  • #10116 2812d2b Thanks @​hntrl! - Validate redirects in RecursiveUrlLoader to prevent SSRF bypasses.

  • Updated dependencies []:

    • @​langchain/classic@​1.0.19

@​langchain/community@​1.1.16

Patch Changes

@​langchain/community@​1.1.14

Patch Changes

  • #9990 d5e3db0 Thanks @​hntrl! - feat(core): Add SSRF protection module (@langchain/core/utils/ssrf) with utilities for validating URLs against private IPs, cloud metadata endpoints, and localhost.

    fix(community): Harden RecursiveUrlLoader against SSRF attacks by integrating validateSafeUrl and replacing string-based URL comparison with origin-based isSameOrigin from the shared SSRF module.

  • Updated dependencies [d5e3db0, 6939dab, ad581c7]:

    • @​langchain/core@​1.1.21
    • @​langchain/openai@​1.2.7
    • @​langchain/classic@​1.0.17

@​langchain/community@​1.1.12

Patch Changes

Commits
  • a591053 chore: version packages (#10110)
  • 2812d2b fix(community): validate redirects in RecursiveUrlLoader (#10116)
  • 0050c91 fix(langchain): reset shared currentSystemMessage on middleware handler retry...
  • 66df7fa fix(anthropic): convert tool_calls to tool_use blocks when AIMessage content ...
  • eed16fa chore(deps): bump actions/stale from 10.1.1 to 10.2.0 in the gh-actions-minor...
  • 02b0d49 chore(deps): bump langsmith from 0.5.4 to 0.5.6 (#10130)
  • 630890a feat(openrouter): default OpenRouter attribution headers (#10109)
  • e7576ee fix(anthropic): replace retired model IDs in tests and mock data (#10108)
  • c0409e6 chore: version packages (#10095)
  • fb2226e Revert "chore(deps): bump ansi-styles from 5.2.0 to 6.2.3" (#10104)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​langchain/community since your current version.


Updates @langchain/community from 0.0.53 to 1.1.18

Release notes

Sourced from @​langchain/community's releases.

@​langchain/community@​1.1.18

Patch Changes

  • #10108 e7576ee Thanks @​hntrl! - fix: replace retired Anthropic model IDs with active replacements

    • Update default model in ChatAnthropic from claude-3-5-sonnet-latest to claude-sonnet-4-5-20250929
    • Regenerate model profiles with latest data from models.dev API
    • Replace retired claude-3-5-haiku-20241022, claude-3-7-sonnet-20250219, claude-3-5-sonnet-20240620, and claude-3-5-sonnet-20241022 in tests, docstrings, and examples
  • #10116 2812d2b Thanks @​hntrl! - Validate redirects in RecursiveUrlLoader to prevent SSRF bypasses.

  • Updated dependencies []:

    • @​langchain/classic@​1.0.19

@​langchain/community@​1.1.16

Patch Changes

@​langchain/community@​1.1.14

Patch Changes

  • #9990 d5e3db0 Thanks @​hntrl! - feat(core): Add SSRF protection module (@langchain/core/utils/ssrf) with utilities for validating URLs against private IPs, cloud metadata endpoints, and localhost.

    fix(community): Harden RecursiveUrlLoader against SSRF attacks by integrating validateSafeUrl and replacing string-based URL comparison with origin-based isSameOrigin from the shared SSRF module.

  • Updated dependencies [d5e3db0, 6939dab, ad581c7]:

    • @​langchain/core@​1.1.21
    • @​langchain/openai@​1.2.7
    • @​langchain/classic@​1.0.17

@​langchain/community@​1.1.12

Patch Changes

Commits
  • a591053 chore: version packages (#10110)
  • 2812d2b fix(community): validate redirects in RecursiveUrlLoader (#10116)
  • 0050c91 fix(langchain): reset shared currentSystemMessage on middleware handler retry...
  • 66df7fa fix(anthropic): convert tool_calls to tool_use blocks when AIMessage content ...
  • eed16fa chore(deps): bump actions/stale from 10.1.1 to 10.2.0 in the gh-actions-minor...
  • 02b0d49 chore(deps): bump langsmith from 0.5.4 to 0.5.6 (#10130)
  • 630890a feat(openrouter): default OpenRouter attribution headers (#10109)
  • e7576ee fix(anthropic): replace retired model IDs in tests and mock data (#10108)
  • c0409e6 chore: version packages (#10095)
  • fb2226e Revert "chore(deps): bump ansi-styles from 5.2.0 to 6.2.3" (#10104)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​langchain/community since your current version.


Updates @langchain/community from 0.0.53 to 1.1.18

Release notes

Sourced from @​langchain/community's releases.

@​langchain/community@​1.1.18

Patch Changes

  • #10108 e7576ee Thanks @​hntrl! - fix: replace retired Anthropic model IDs with active replacements

    • Update default model in ChatAnthropic from claude-3-5-sonnet-latest to claude-sonnet-4-5-20250929
    • Regenerate model profiles with latest data from models.dev API
    • Replace retired claude-3-5-haiku-20241022, claude-3-7-sonnet-20250219, claude-3-5-sonnet-20240620, and claude-3-5-sonnet-20241022 in tests, docstrings, and examples
  • #10116 2812d2b Thanks @​hntrl! - Validate redirects in RecursiveUrlLoader to prevent SSRF bypasses.

  • Updated dependencies []:

    • @​langchain/classic@​1.0.19

@​langchain/community@​1.1.16

Patch Changes

@​langchain/community@​1.1.14

Patch Changes

  • #9990 d5e3db0 Thanks @​hntrl! - feat(core): Add SSRF protection module (@langchain/core/utils/ssrf) with utilities for validating URLs against private IPs, cloud metadata endpoints, and localhost.

    fix(community): Harden RecursiveUrlLoader against SSRF attacks by integrating validateSafeUrl and replacing string-based URL comparison with origin-based isSameOrigin from the shared SSRF module.

  • Updated dependencies [d5e3db0, 6939dab, ad581c7]:

    • @​langchain/core@​1.1.21
    • @​langchain/openai@​1.2.7
    • @​langchain/classic@​1.0.17

@​langchain/community@​1.1.12

Patch Changes

Commits
  • a591053 chore: version packages (#10110)
  • 2812d2b fix(community): validate redirects in RecursiveUrlLoader (#10116)
  • 0050c91 fix(langchain): reset shared currentSystemMessage on middleware handler retry...
  • 66df7fa fix(anthropic): convert tool_calls to tool_use blocks when AIMessage content ...
  • eed16fa chore(deps): bump actions/stale from 10.1.1 to 10.2.0 in the gh-actions-minor...
  • 02b0d49 chore(deps): bump langsmith from 0.5.4 to 0.5.6 (#10130)
  • 630890a feat(openrouter): default OpenRouter attribution headers (#10109)
  • e7576ee fix(anthropic): replace retired model IDs in tests and mock data (#10108)
  • c0409e6 chore: version packages (#10095)
  • fb2226e Revert "chore(deps): bump ansi-styles from 5.2.0 to 6.2.3" (#10104)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​langchain/community since your current version.


Updates @langchain/community from 0.0.53 to 1.1.18

Release notes

Sourced from @​langchain/community's releases.

@​langchain/community@​1.1.18

Patch Changes

  • #10108 e7576ee Thanks @​hntrl! - fix: replace retired Anthropic model IDs with active replacements

    • Update default model in ChatAnthropic from claude-3-5-sonnet-latest to claude-sonnet-4-5-20250929
    • Regenerate model profiles with latest data from models.dev API
    • Replace retired claude-3-5-haiku-20241022, claude-3-7-sonnet-20250219, claude-3-5-sonnet-20240620, and claude-3-5-sonnet-20241022 in tests, docstrings, and examples
  • #10116 2812d2b Thanks @​hntrl! - Validate redirects in RecursiveUrlLoader to prevent SSRF bypasses.

  • Updated dependencies []:

    • @​langchain/classic@​1.0.19

@​langchain/community@​1.1.16

Patch Changes

@​langchain/community@​1.1.14

Patch Changes

  • #9990 d5e3db0 Thanks @​hntrl! - feat(core): Add SSRF protection module (@langchain/core/utils/ssrf) with utilities for validating URLs against private IPs, cloud metadata endpoints, and localhost.

    fix(community): Harden RecursiveUrlLoader against SSRF attacks by integrating validateSafeUrl and replacing string-based URL comparison with origin-based isSameOrigin from the shared SSRF module.

  • Updated dependencies [d5e3db0, 6939dab, ad581c7]:

    • @​langchain/core@​1.1.21
    • @​langchain/openai@​1.2.7
    • @​langchain/classic@​1.0.17

@​langchain/community@​1.1.12

Patch Changes

Commits
  • a591053 chore: version packages (#10110)
  • 2812d2b fix(community): validate redirects in RecursiveUrlLoader (#10116)
  • 0050c91 fix(langchain): reset shared currentSystemMessage on middleware handler retry...
  • 66df7fa fix(anthropic): convert tool_calls to tool_use blocks when AIMessage content ...
  • eed16fa chore(deps): bump actions/stale from 10.1.1 to 10.2.0 in the gh-actions-minor...
  • 02b0d49 chore(deps): bump langsmith from 0.5.4 to 0.5.6 (#10130)
  • 630890a feat(openrouter): default OpenRouter attribution headers (#10109)
  • e7576ee fix(anthropic): replace retired model IDs in tests and mock data (#10108)
  • c0409e6 chore: version packages (#10095)
  • fb2226e Revert "chore(deps): bump ansi-styles from 5.2.0 to 6.2.3" (#10104)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​langchain/community since your current version.


Updates minimatch from 9.0.5 to 9.0.9

Commits

Updates ajv from 6.12.6 to 6.14.0

Commits

Updates minimatch from 3.1.2 to 3.1.5

Commits

Updates fast-xml-parser from 4.5.0 to 4.5.4

Release notes

Sourced from fast-xml-parser's releases.

Summary update on all the previous releases from v4.2.4

  • Multiple minor fixes provided in the validator and parser
  • v6 is added for experimental use.
  • ignoreAttributes support function, and array of string or regex
  • Add support for parsing HTML numeric entities
  • v5 of the application is ESM module now. However, JS is also supported

Note: Release section in not updated frequently. Please check CHANGELOG or Tags for latest release information.

Changelog

Sourced from fast-xml-parser's changelog.

Note: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.

Note: Due to some last quick changes on v4, detail of v4.5.3 & v4.5.4 are not updated here. v4.5.4x is the last tag of v4 in github repository. I'm extremely sorry for the confusion

5.4.1 / 2026-02-25

  • fix (#785) unpairedTag node should not have tag content

5.4.0 / 2026-02-25

  • migrate to fast-xml-builder

5.3.9 / 2026-02-25

  • support strictReservedNames

5.3.8 / 2026-02-25

  • support maxNestedTags
  • handle non-array input for XML builder when preserveOrder is true (By Angelo Coetzee)
  • save use of js properies

5.3.7 / 2026-02-20

5.3.6 / 2026-02-14

  • Improve security and performance of entity processing
    • new options maxEntitySize, maxExpansionDepth, maxTotalExpansions, maxExpandedLength, allowedTags,tagFilter
    • fast return when no edtity is present
    • improvement replacement logic to reduce number of calls

5.3.5 / 2026-02-08

  • fix: Escape regex char in entity name
  • update strnum to 2.1.2
  • add missing exports in CJS typings

5.3.4 / 2026-01-30

  • fix: handle HTML numeric and hex entities when out of range

5.3.3 / 2025-12-12

  • fix #775: transformTagName with allowBooleanAttributes adds an unnecessary attribute

5.3.2 / 2025-11-14

  • fix for import statement for v6

5.3.1 / 2025-11-03

5.3.0 / 2025-10-03

... (truncated)

Commits
  • f8d4d42 update strnum to fix parsing issues of 0 when skiplike is used
  • ab00cdc update package bundle for minor fixes
  • 57c6187 Update ReadMe
  • caeda37 fix: emit full JSON string from CLI when no output filename specified (#710)
  • eadeb7e fix(performance): Update check for leaf node in saveTextToParentTag function ...
  • 682066c Update disclaimer
  • 280cd63 Fix null CDATA to comply with undefined behavior (#701)
  • e132656 update release detail
  • 74e2651 Fixes entity parsing when used in strict mode (#699)
  • 4082902 Fix empty tag key name for v5 (#697)
  • Additional commits viewable in compare view

Updates ajv from 6.12.6 to 6.14.0

Commits

Updates minimatch from 3.1.2 to 3.1.5

Commits

Updates fast-xml-parser from 4.5.0 to 4.5.4

Release notes

Sourced from fast-xml-parser's releases.

Summary update on all the previous releases from v4.2.4

  • Multiple minor fixes provided in the validator and parser
  • v6 is added for experimental use.
  • ignoreAttributes support function, and array of string or regex
  • Add support for parsing HTML numeric entities
  • v5 of the application is ESM module now. However, JS is also supported

Note: Release section in not updated frequently. Please check CHANGELOG or Tags for latest release information.

Changelog

Sourced from fast-xml-parser's changelog.

Note: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.

Note: Due to some last quick changes on v4, detail of v4.5.3 & v4.5.4 are not updated here. v4.5.4x is the last tag of v4 in github repository. I'm extremely sorry for the confusion

5.4.1 / 2026-02-25

  • fix (#785) unpairedTag node should not have tag content

5.4.0 / 2026-02-25

  • migrate to fast-xml-builder

5.3.9 / 2026-02-25

  • support strictReservedNames

5.3.8 / 2026-02-25

  • support maxNestedTags
  • handle non-array input for XML builder when preserveOrder is true (By Angelo Coetzee)
  • save use of js properies

5.3.7 / 2026-02-20

5.3.6 / 2026-02-14

  • Improve security and performance of entity processing
    • new options maxEntitySize, maxExpansionDepth, maxTotalExpansions, maxExpandedLength, allowedTags,tagFilter
    • fast return when no edtity is present
    • improvement replacement logic to reduce number of calls

5.3.5 / 2026-02-08

  • fix: Escape regex char in entity name
  • update strnum to 2.1.2
  • add missing exports in CJS typings

5.3.4 / 2026-01-30

  • fix: handle HTML numeric and hex entities when out of range

5.3.3 / 2025-12-12

  • fix #775: transformTagName with allowBooleanAttributes adds an unnecessary attribute

5.3.2 / 2025-11-14

  • fix for import statement for v6

5.3.1 / 2025-11-03

5.3.0 / 2025-10-03

... (truncated)

Commits
  • f8d4d42 update strnum to fix parsing issues of 0 when skiplike is used
  • ab00cdc update package bundle for minor fixes
  • 57c6187 Update ReadMe
  • caeda37 fix: emit full JSON string from CLI when no output filename specified (#710)
  • eadeb7e fix(performance): Update check for leaf node in saveTextToParentTag function ...
  • 682066c Update disclaimer
  • 280cd63 Fix null CDATA to comply with undefined behavior (#701)
  • e132656 update release detail
  • 74e2651 Fixes entity parsing when used in strict mode (#699)
  • 4082902 Fix empty tag key name for v5 (#697)
  • Additional commits viewable in compare view

Updates ajv from 6.12.6 to 6.14.0

Commits
  • e3af0a7 6.14.0
  • b552ed6 add regExp option to address $data exploit via a regular expression (CVE-2025...
  • 72f2286 docs: update v7 info
  • 231e52b Merge pull request

… updates

Bumps the npm_and_yarn group with 1 update in the /CopilotKit directory: [@langchain/community](https://github.com/langchain-ai/langchainjs).
Bumps the npm_and_yarn group with 1 update in the /CopilotKit/examples/next-openai directory: [@langchain/community](https://github.com/langchain-ai/langchainjs).
Bumps the npm_and_yarn group with 1 update in the /CopilotKit/examples/next-pages-router directory: [@langchain/community](https://github.com/langchain-ai/langchainjs).
Bumps the npm_and_yarn group with 1 update in the /CopilotKit/packages/runtime directory: [@langchain/community](https://github.com/langchain-ai/langchainjs).
Bumps the npm_and_yarn group with 1 update in the /CopilotKit/packages/sdk-js directory: [@langchain/community](https://github.com/langchain-ai/langchainjs).
Bumps the npm_and_yarn group with 1 update in the /docs directory: [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-ai-researcher/ui directory: [ajv](https://github.com/ajv-validator/ajv) and [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 1 update in the /examples/coagents-qa-native/agent-js directory: [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser).
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-qa-native/ui directory: [ajv](https://github.com/ajv-validator/ajv) and [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 1 update in the /examples/coagents-qa-text/agent-js directory: [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser).
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-qa-text/ui directory: [ajv](https://github.com/ajv-validator/ajv) and [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-qa/ui directory: [ajv](https://github.com/ajv-validator/ajv) and [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 1 update in the /examples/coagents-research-canvas/agent-js directory: [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser).
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-research-canvas/ui directory: [ajv](https://github.com/ajv-validator/ajv) and [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 1 update in the /examples/coagents-routing/agent-js directory: [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser).
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-routing/ui directory: [ajv](https://github.com/ajv-validator/ajv) and [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-shared-state/ui directory: [ajv](https://github.com/ajv-validator/ajv) and [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-starter/ui directory: [ajv](https://github.com/ajv-validator/ajv) and [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-travel/ui directory: [ajv](https://github.com/ajv-validator/ajv) and [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 2 updates in the /examples/coagents-wait-user-input/ui directory: [ajv](https://github.com/ajv-validator/ajv) and [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 1 update in the /infra directory: [minimatch](https://github.com/isaacs/minimatch).


Updates `@langchain/community` from 0.0.53 to 1.1.18
- [Release notes](https://github.com/langchain-ai/langchainjs/releases)
- [Commits](https://github.com/langchain-ai/langchainjs/compare/0.0.53...@langchain/community@1.1.18)

Updates `@langchain/community` from 0.0.53 to 1.1.18
- [Release notes](https://github.com/langchain-ai/langchainjs/releases)
- [Commits](https://github.com/langchain-ai/langchainjs/compare/0.0.53...@langchain/community@1.1.18)

Updates `@langchain/community` from 0.0.53 to 1.1.18
- [Release notes](https://github.com/langchain-ai/langchainjs/releases)
- [Commits](https://github.com/langchain-ai/langchainjs/compare/0.0.53...@langchain/community@1.1.18)

Updates `@langchain/community` from 0.0.53 to 1.1.18
- [Release notes](https://github.com/langchain-ai/langchainjs/releases)
- [Commits](https://github.com/langchain-ai/langchainjs/compare/0.0.53...@langchain/community@1.1.18)

Updates `@langchain/community` from 0.0.53 to 1.1.18
- [Release notes](https://github.com/langchain-ai/langchainjs/releases)
- [Commits](https://github.com/langchain-ai/langchainjs/compare/0.0.53...@langchain/community@1.1.18)

Updates `minimatch` from 9.0.5 to 9.0.9
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.5...v9.0.9)

Updates `ajv` from 6.12.6 to 6.14.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v6.12.6...v6.14.0)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.5...v9.0.9)

Updates `fast-xml-parser` from 4.5.0 to 4.5.4
- [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases)
- [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md)
- [Commits](NaturalIntelligence/fast-xml-parser@v4.5.0...v4.5.4)

Updates `ajv` from 6.12.6 to 6.14.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v6.12.6...v6.14.0)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.5...v9.0.9)

Updates `fast-xml-parser` from 4.5.0 to 4.5.4
- [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases)
- [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md)
- [Commits](NaturalIntelligence/fast-xml-parser@v4.5.0...v4.5.4)

Updates `ajv` from 6.12.6 to 6.14.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v6.12.6...v6.14.0)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.5...v9.0.9)

Updates `ajv` from 6.12.6 to 6.14.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v6.12.6...v6.14.0)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.5...v9.0.9)

Updates `fast-xml-parser` from 4.5.0 to 4.5.4
- [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases)
- [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md)
- [Commits](NaturalIntelligence/fast-xml-parser@v4.5.0...v4.5.4)

Updates `ajv` from 6.12.6 to 6.14.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v6.12.6...v6.14.0)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.5...v9.0.9)

Updates `fast-xml-parser` from 4.5.0 to 4.5.4
- [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases)
- [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md)
- [Commits](NaturalIntelligence/fast-xml-parser@v4.5.0...v4.5.4)

Updates `ajv` from 6.12.6 to 6.14.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v6.12.6...v6.14.0)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.5...v9.0.9)

Updates `ajv` from 6.12.6 to 6.14.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v6.12.6...v6.14.0)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.5...v9.0.9)

Updates `ajv` from 6.12.6 to 6.14.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v6.12.6...v6.14.0)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.5...v9.0.9)

Updates `ajv` from 6.12.6 to 6.14.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v6.12.6...v6.14.0)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.5...v9.0.9)

Updates `ajv` from 6.12.6 to 6.14.0
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v6.12.6...v6.14.0)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.5...v9.0.9)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v9.0.5...v9.0.9)

---
updated-dependencies:
- dependency-name: "@langchain/community"
  dependency-version: 1.1.18
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: "@langchain/community"
  dependency-version: 1.1.18
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: "@langchain/community"
  dependency-version: 1.1.18
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: "@langchain/community"
  dependency-version: 1.1.18
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: "@langchain/community"
  dependency-version: 1.1.18
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 9.0.9
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-version: 6.14.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: fast-xml-parser
  dependency-version: 4.5.4
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-version: 6.14.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: fast-xml-parser
  dependency-version: 4.5.4
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-version: 6.14.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-version: 6.14.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: fast-xml-parser
  dependency-version: 4.5.4
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-version: 6.14.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: fast-xml-parser
  dependency-version: 4.5.4
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-version: 6.14.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-version: 6.14.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-version: 6.14.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-version: 6.14.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-version: 6.14.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 1, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants