[PR #357] [MERGED] Dev #359

New issue

Closed

opened 2026-05-06 12:16:34 +02:00 by BreizhHardware · 0 comments

BreizhHardware commented

2026-05-06 12:16:34 +02:00

Owner

📋 Pull Request Information

Original PR: https://github.com/BreizhHardware/portfolio/pull/357
Author: @BreizhHardware
Created: 3/25/2026
Status: ✅ Merged
Merged: 3/25/2026
Merged by: @BreizhHardware

Base: main ← Head: dev

📝 Commits (10+)

cdd4f2c chore(deps): Bump tailwindcss from 4.1.18 to 4.2.1
c929bf6 chore(deps): Bump @tailwindcss/cli from 4.1.18 to 4.2.1
e6158a0 chore(deps-dev): Bump cypress from 15.10.0 to 15.11.0
0cff1ea chore(deps): Bump actions/upload-artifact in /.github/workflows
a920cc6 chore(deps): Bump pnpm/action-setup from 4 to 5 in /.github/workflows
5724cc6 Merge pull request #335 from BreizhHardware/dependabot/npm_and_yarn/dev/tailwindcss-4.2.1
aed1358 Merge pull request #336 from BreizhHardware/dependabot/npm_and_yarn/dev/tailwindcss/cli-4.2.1
7a7158c Merge pull request #337 from BreizhHardware/dependabot/npm_and_yarn/dev/cypress-15.11.0
e25942f Merge pull request #341 from BreizhHardware/dependabot/github_actions/dot-github/workflows/dev/actions/upload-artifact-7
9656de4 Merge pull request #347 from BreizhHardware/dependabot/github_actions/dot-github/workflows/dev/pnpm/action-setup-5

📊 Changes

5 files changed (+559 additions, -793 deletions)

View changed files

📝 .github/workflows/audit.yml (+16 -2)
📝 .github/workflows/deploy-test.yml (+2 -2)
📝 .github/workflows/deploy.yml (+2 -2)
📝 package.json (+9 -9)
📝 pnpm-lock.yaml (+530 -778)

📄 Description

This pull request updates several dependencies and GitHub Actions workflows to use newer versions, focusing on improving security, stability, and maintenance. The most significant changes include upgrading workflow actions, updating key frontend dependencies, and enhancing the audit workflow to prevent duplicate security issues.

GitHub Actions workflow updates:

Upgraded pnpm/action-setup from v4 to v5 in .github/workflows/audit.yml, .github/workflows/deploy.yml, and .github/workflows/deploy-test.yml to ensure compatibility and benefit from the latest improvements. [1] [2] [3]
Updated actions/upload-artifact from v6 to v7 in both .github/workflows/deploy.yml and .github/workflows/deploy-test.yml for uploading Cypress screenshots, providing improved performance and reliability. [1] [2]

Security audit workflow improvement:

Enhanced the audit workflow in .github/workflows/audit.yml to check for existing open security audit issues before creating a new one, preventing duplicate issues from being filed.

Dependency updates in package.json:

Upgraded several frontend dependencies to their latest versions, including @tailwindcss/cli, @tailwindcss/vite, tailwindcss, i18next, react-i18next, react-icons, and sass, improving compatibility and security. [1] [2]
Updated development dependencies such as @vitejs/plugin-react and cypress to newer versions for better tooling and test reliability.

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/BreizhHardware/portfolio/pull/357 **Author:** [@BreizhHardware](https://github.com/BreizhHardware) **Created:** 3/25/2026 **Status:** ✅ Merged **Merged:** 3/25/2026 **Merged by:** [@BreizhHardware](https://github.com/BreizhHardware) **Base:** `main` ← **Head:** `dev` --- ### 📝 Commits (10+) - [`cdd4f2c`](https://github.com/BreizhHardware/portfolio/commit/cdd4f2cc96b57f259523e987870d2fc1e34eb2f0) chore(deps): Bump tailwindcss from 4.1.18 to 4.2.1 - [`c929bf6`](https://github.com/BreizhHardware/portfolio/commit/c929bf61ae61a7c56ab8e77daea85e01dcb4118e) chore(deps): Bump @tailwindcss/cli from 4.1.18 to 4.2.1 - [`e6158a0`](https://github.com/BreizhHardware/portfolio/commit/e6158a0ffb7e01ce3779da57073709a9281d282f) chore(deps-dev): Bump cypress from 15.10.0 to 15.11.0 - [`0cff1ea`](https://github.com/BreizhHardware/portfolio/commit/0cff1eafee3e836dbf9c73dd5b3c459f2135d8b7) chore(deps): Bump actions/upload-artifact in /.github/workflows - [`a920cc6`](https://github.com/BreizhHardware/portfolio/commit/a920cc673e62dfdad7589dbccdca67e38a201a9c) chore(deps): Bump pnpm/action-setup from 4 to 5 in /.github/workflows - [`5724cc6`](https://github.com/BreizhHardware/portfolio/commit/5724cc67096285a7206f4a02844ffb74b53eec26) Merge pull request #335 from BreizhHardware/dependabot/npm_and_yarn/dev/tailwindcss-4.2.1 - [`aed1358`](https://github.com/BreizhHardware/portfolio/commit/aed13582f5c2a71bd07405d4318b913273671926) Merge pull request #336 from BreizhHardware/dependabot/npm_and_yarn/dev/tailwindcss/cli-4.2.1 - [`7a7158c`](https://github.com/BreizhHardware/portfolio/commit/7a7158ca62950019bff4bffd7d172a917c7660fe) Merge pull request #337 from BreizhHardware/dependabot/npm_and_yarn/dev/cypress-15.11.0 - [`e25942f`](https://github.com/BreizhHardware/portfolio/commit/e25942f8752b66f08869960269856bab94268e19) Merge pull request #341 from BreizhHardware/dependabot/github_actions/dot-github/workflows/dev/actions/upload-artifact-7 - [`9656de4`](https://github.com/BreizhHardware/portfolio/commit/9656de40e1f498e3fed0a7fd525fe0954521b818) Merge pull request #347 from BreizhHardware/dependabot/github_actions/dot-github/workflows/dev/pnpm/action-setup-5 ### 📊 Changes **5 files changed** (+559 additions, -793 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/audit.yml` (+16 -2) 📝 `.github/workflows/deploy-test.yml` (+2 -2) 📝 `.github/workflows/deploy.yml` (+2 -2) 📝 `package.json` (+9 -9) 📝 `pnpm-lock.yaml` (+530 -778) </details> ### 📄 Description This pull request updates several dependencies and GitHub Actions workflows to use newer versions, focusing on improving security, stability, and maintenance. The most significant changes include upgrading workflow actions, updating key frontend dependencies, and enhancing the audit workflow to prevent duplicate security issues. **GitHub Actions workflow updates:** * Upgraded `pnpm/action-setup` from v4 to v5 in `.github/workflows/audit.yml`, `.github/workflows/deploy.yml`, and `.github/workflows/deploy-test.yml` to ensure compatibility and benefit from the latest improvements. [[1]](diffhunk://#diff-93a89f16f6717d1e4e4e27ec20ef916e3355c7aa890ca74cd9b12db30d8a899fL24-R24) [[2]](diffhunk://#diff-28802fbf11c83a2eee09623fb192785e7ca92a3f40602a517c011b947a1822d3L20-R20) [[3]](diffhunk://#diff-3506104a54b3d6803b340621fae99e8ea135690eab9799c489eb239f54587ed7L20-R20) * Updated `actions/upload-artifact` from v6 to v7 in both `.github/workflows/deploy.yml` and `.github/workflows/deploy-test.yml` for uploading Cypress screenshots, providing improved performance and reliability. [[1]](diffhunk://#diff-28802fbf11c83a2eee09623fb192785e7ca92a3f40602a517c011b947a1822d3L58-R58) [[2]](diffhunk://#diff-3506104a54b3d6803b340621fae99e8ea135690eab9799c489eb239f54587ed7L58-R58) **Security audit workflow improvement:** * Enhanced the audit workflow in `.github/workflows/audit.yml` to check for existing open security audit issues before creating a new one, preventing duplicate issues from being filed. **Dependency updates in `package.json`:** * Upgraded several frontend dependencies to their latest versions, including `@tailwindcss/cli`, `@tailwindcss/vite`, `tailwindcss`, `i18next`, `react-i18next`, `react-icons`, and `sass`, improving compatibility and security. [[1]](diffhunk://#diff-7ae45ad102eab3b6d7e7896acd08c427a9b25b346470d7bc6507b6481575d519L7-R8) [[2]](diffhunk://#diff-7ae45ad102eab3b6d7e7896acd08c427a9b25b346470d7bc6507b6481575d519L17-R25) * Updated development dependencies such as `@vitejs/plugin-react` and `cypress` to newer versions for better tooling and test reliability. --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>