Skip to content

chore(deps-dev): bump vercel from 50.42.0 to 52.0.0#254

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/vercel-52.0.0
Closed

chore(deps-dev): bump vercel from 50.42.0 to 52.0.0#254
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/vercel-52.0.0

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github Apr 24, 2026
edited
Loading

Bumps vercel from 50.42.0 to 52.0.0.

Release notes

Sourced from vercel's releases.

vercel@52.0.0

Major Changes

  • fix!: exclude configuration files from static deployments (#16056)

Minor Changes

  • Add vercel connex token command to fetch tokens for Connex clients, with auto-authorize / auto-install recovery on actionable 422 errors. (#16072)

Patch Changes

  • Add vercel env run example to the env command help output (#16072)

  • vercel env update now applies the same Development guards as vercel env add: (#16072)

    • Errors with a docs-linked message when the selected record targets Development and the team has the Sensitive Environment Variables Policy enabled. No PATCH is attempted.
    • Errors when --sensitive is used on a record that targets Development (regardless of policy). Sensitive is not allowed on Development.

    Other env update behavior is unchanged.

  • Normalize single-line stdin env values by removing a trailing newline before (#16072) saving them.

  • Updated dependencies [2aa78415831fe89d1b21dd89704706bd1ad5e78d, 2aa78415831fe89d1b21dd89704706bd1ad5e78d, 2aa78415831fe89d1b21dd89704706bd1ad5e78d]:

    • @​vercel/build-utils@​13.20.0
    • @​vercel/python@​6.36.0
    • @​vercel/backends@​0.2.0
    • @​vercel/elysia@​0.1.71
    • @​vercel/express@​0.1.81
    • @​vercel/fastify@​0.1.74
    • @​vercel/go@​3.5.0
    • @​vercel/h3@​0.1.80
    • @​vercel/hono@​0.2.74
    • @​vercel/hydrogen@​1.3.6
    • @​vercel/koa@​0.1.54
    • @​vercel/nestjs@​0.2.75
    • @​vercel/next@​4.16.8
    • @​vercel/node@​5.7.13
    • @​vercel/redwood@​2.4.12
    • @​vercel/remix-builder@​5.7.2
    • @​vercel/ruby@​2.3.2
    • @​vercel/rust@​1.1.1
    • @​vercel/static-build@​2.9.21

vercel@51.8.0

Minor Changes

  • vercel env add now defaults Environment Variables to sensitive on Production and Preview. Sensitive values are encrypted at rest and cannot be retrieved later via the dashboard or CLI; they are still resolved for builds, deployments, vercel env pull, and runtime. (#16041)

    Behavior per target:

... (truncated)

Changelog

Sourced from vercel's changelog.

52.0.0

Major Changes

  • fix!: exclude configuration files from static deployments (#16056)

Minor Changes

  • Add vercel connex token command to fetch tokens for Connex clients, with auto-authorize / auto-install recovery on actionable 422 errors. (#16072)

Patch Changes

  • Add vercel env run example to the env command help output (#16072)

  • vercel env update now applies the same Development guards as vercel env add: (#16072)

    • Errors with a docs-linked message when the selected record targets Development and the team has the Sensitive Environment Variables Policy enabled. No PATCH is attempted.
    • Errors when --sensitive is used on a record that targets Development (regardless of policy). Sensitive is not allowed on Development.

    Other env update behavior is unchanged.

  • Normalize single-line stdin env values by removing a trailing newline before (#16072) saving them.

  • Updated dependencies [2aa78415831fe89d1b21dd89704706bd1ad5e78d, 2aa78415831fe89d1b21dd89704706bd1ad5e78d, 2aa78415831fe89d1b21dd89704706bd1ad5e78d]:

    • @​vercel/build-utils@​13.20.0
    • @​vercel/python@​6.36.0
    • @​vercel/backends@​0.2.0
    • @​vercel/elysia@​0.1.71
    • @​vercel/express@​0.1.81
    • @​vercel/fastify@​0.1.74
    • @​vercel/go@​3.5.0
    • @​vercel/h3@​0.1.80
    • @​vercel/hono@​0.2.74
    • @​vercel/hydrogen@​1.3.6
    • @​vercel/koa@​0.1.54
    • @​vercel/nestjs@​0.2.75
    • @​vercel/next@​4.16.8
    • @​vercel/node@​5.7.13
    • @​vercel/redwood@​2.4.12
    • @​vercel/remix-builder@​5.7.2
    • @​vercel/ruby@​2.3.2
    • @​vercel/rust@​1.1.1
    • @​vercel/static-build@​2.9.21

51.8.0

Minor Changes

  • vercel env add now defaults Environment Variables to sensitive on Production and Preview. Sensitive values are encrypted at rest and cannot be retrieved later via the dashboard or CLI; they are still resolved for builds, deployments, vercel env pull, and runtime. (#16041)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for vercel since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps-dev): bump vercel from 50.42.0 to 52.0.0
c02244a 
Bumps [vercel](https://github.com/vercel/vercel/tree/HEAD/packages/cli) from 50.42.0 to 52.0.0.
- [Release notes](https://github.com/vercel/vercel/releases)
- [Changelog](https://github.com/vercel/vercel/blob/main/packages/cli/CHANGELOG.md)
- [Commits](https://github.com/vercel/vercel/commits/vercel@52.0.0/packages/cli)

---
updated-dependencies:
- dependency-name: vercel
  dependency-version: 52.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 24, 2026
@dependabot dependabot Bot requested a review from jmrplens as a code owner April 24, 2026 05:39
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 24, 2026
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 24, 2026
edited
Loading

🛡️ CI Security & Quality Report

Project Health Score

Open CI Dashboard

Analysis Complete. All reports are now available for review.

📝 Executive Summary

Project is in excellent shape! All critical quality and security gates have passed with flying colors. Codebase stability and accessibility standards are exceptionally high.

Highlights:

  • 📦 Bundle Size: Code: 18.37 MB | Assets: 107.44 MB
  • 📄 HTML5: Full valid syntax across all generated pages. ✅
  • 🔗 Link Integrity: All external and internal links verified successfully.

🔍 Static Analysis

Tool Status Outcome
Astro Check success
Prettier success
ESLint success
Link Checker success
Spell Checker success
Stylelint success
Security Audit success
SonarQube success
JSDoc Coverage 100.0%

📈 Quality & Performance

Check Status Note
♿ Accessibility Detailed audit in dashboard
📄 HTML5 Validity Source scan results
📦 Bundle Size Asset analysis
📡 RSS & Metadata Feed validation
🏷️ Schema.org Structured data audit
🖼️ Images Performance check
🧪 Functional Tests Playwright E2E results

Last Update: Fri, 24 Apr 2026 06:01:30 GMT • Workflow Logs

cubic-dev-ai[bot]
cubic-dev-ai Bot reviewed Apr 24, 2026
View reviewed changes
Copy link
Copy Markdown

@cubic-dev-ai cubic-dev-ai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No issues found across 2 files

@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud Bot commented Apr 24, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@dependabot @github
Copy link
Copy Markdown
Author

dependabot Bot commented on behalf of github Apr 25, 2026

Looks like vercel is up-to-date now, so this is no longer needed.

@dependabot dependabot Bot closed this Apr 25, 2026
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/vercel-52.0.0 branch April 25, 2026 19:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cubic-dev-ai cubic-dev-ai[bot] cubic-dev-ai[bot] left review comments

@jmrplens jmrplens Awaiting requested review from jmrplens jmrplens is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants