Skip to content

chore(deps): Bump the all-minor-patch group in /js with 4 updates#1443

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/js/all-minor-patch-76233411d4
Open

chore(deps): Bump the all-minor-patch group in /js with 4 updates#1443
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/js/all-minor-patch-76233411d4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 19, 2026

Copy link
Copy Markdown
Contributor

Bumps the all-minor-patch group in /js with 4 updates: happy-dom, import-in-the-middle, posthog-js and baseline-browser-mapping.

Updates happy-dom from 20.10.5 to 20.10.6

Release notes

Sourced from happy-dom's releases.

v20.10.6

👷‍♂️ Patch fixes

Commits

Updates import-in-the-middle from 3.0.2 to 3.1.0

Release notes

Sourced from import-in-the-middle's releases.

import-in-the-middle: v3.1.0

3.1.0 (2026-06-17)

Features

  • add synchronous loader hooks via module.registerHooks (#253) (dd7e550)
Changelog

Sourced from import-in-the-middle's changelog.

3.1.0 (2026-06-17)

Features

  • add synchronous loader hooks via module.registerHooks (#253) (dd7e550)
Commits

Updates posthog-js from 1.387.0 to 1.390.2

Release notes

Sourced from posthog-js's releases.

posthog-js@1.390.2

1.390.2

Patch Changes

  • #3868 a5dd54a Thanks @​pauldambra! - fix(replay): scope the session-recording flushed-size tracker to the session

    $sdk_debug_replay_flushed_size was stored as a single device-global value in persistence and only reset on an in-page session rotation, so it leaked across page loads and tabs and over-counted on returning visitors. The tracker now keys the running total to the current session id, so a new session starts from zero and a fresh load reading an ongoing session sees the correct total.

    The internal persistence key backing this counter ($sess_rec_flush_size) was also unintentionally attached to every captured event as a super-property; it is now marked hidden so it no longer ships on events. The value remains available on session-replay debug events as $sdk_debug_replay_flushed_size. (2026-06-17)

posthog-js@1.390.1

1.390.1

Patch Changes

  • #3784 e25e629 Thanks @​lucasheriques! - Surveys: event-triggered surveys are now scoped to the page load the event fired in, and only persist across a page reload once they have actually been shown.

    Previously an event armed a survey by writing it to localStorage, where it stayed until shown. Because the activation survived reloads and the URL condition was only checked at display time, a survey armed by an exit-intent event (which fires as the user is leaving or reloading) could surface on a later page load with no event behind it. Activations now live in memory until the survey is shown, so an armed-but-unshown survey no longer reappears after a reload.

    Once a survey is shown it is promoted to persistence, so a non-repeatable survey survives a reload and re-displays until the user dismisses or answers it (instead of vanishing if they reload before interacting). Repeatable surveys (schedule: 'always' or "Show every time the event is captured") are still consumed when shown, so each captured trigger shows them once. Product tours follow the same model. Cross-page deferral (arm on one full page load, display on a later one) is no longer supported via event triggers; use audience targeting for that. (2026-06-17)

posthog-js@1.390.0

1.390.0

Minor Changes

  • #3869 81b79fb Thanks @​turnipdabeets! - Add a beforeSend option to the logs config, so you can inspect, redact, or drop log records before they're sent:

    posthog.init('<token>', {
    logs: {
        beforeSend: (log) => {
            // return null to drop the log, or return the (optionally modified) log to keep it
            if (log.body.includes('password')) {
                return null
            }
            return log
        },
    },
})

    beforeSend accepts a single function or an array of functions (applied left to right); returning null from any of them drops the record. It runs for logs sent via both posthog.captureLog() and posthog.logger.*. (2026-06-17)

Patch Changes

  • Updated dependencies [81b79fb]:
    • @​posthog/types@​1.390.0

... (truncated)

Commits
  • f079599 chore: update versions and lockfile [version bump]
  • a5dd54a fix(replay): scope flushed-size tracker to the session (#3868)
  • 5b1a212 refactor(react-native): read payload via getFeatureFlagResult in useFeatureFl...
  • 45eeaea chore: update versions and lockfile [version bump]
  • e25e629 fix(surveys): scope event-trigger activations to the session until shown (#3784)
  • f4bc980 chore: update versions and lockfile [version bump]
  • 81b79fb feat(logs): add beforeSend to the web logs config (#3869)
  • a652700 chore: update versions and lockfile [version bump]
  • 43b4137 fix(browser): limit statusCode 0 retries (#3875)
  • d6b1ea0 chore: update versions and lockfile [version bump]
  • Additional commits viewable in compare view

Updates baseline-browser-mapping from 2.10.37 to 2.10.38

Release notes

Sourced from baseline-browser-mapping's releases.

v2.9.3 - remove process.loadEnvFile()

What's Changed

Full Changelog: web-platform-dx/baseline-browser-mapping@v2.9.2...v2.9.3

Commits
  • 37f3dae Patch to 2.10.38 because browser or feature data changed
  • c5c2841 Browser or feature data changed
  • 14903f7 Updating static site
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): Bump the all-minor-patch group in /js with 4 updates
aae29b5 
Bumps the all-minor-patch group in /js with 4 updates: [happy-dom](https://github.com/capricorn86/happy-dom), [import-in-the-middle](https://github.com/nodejs/import-in-the-middle), [posthog-js](https://github.com/PostHog/posthog-js) and [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping).


Updates `happy-dom` from 20.10.5 to 20.10.6
- [Release notes](https://github.com/capricorn86/happy-dom/releases)
- [Commits](capricorn86/happy-dom@v20.10.5...v20.10.6)

Updates `import-in-the-middle` from 3.0.2 to 3.1.0
- [Release notes](https://github.com/nodejs/import-in-the-middle/releases)
- [Changelog](https://github.com/nodejs/import-in-the-middle/blob/main/CHANGELOG.md)
- [Commits](nodejs/import-in-the-middle@import-in-the-middle-v3.0.2...import-in-the-middle-v3.1.0)

Updates `posthog-js` from 1.387.0 to 1.390.2
- [Release notes](https://github.com/PostHog/posthog-js/releases)
- [Changelog](https://github.com/PostHog/posthog-js/blob/main/CHANGELOG.md)
- [Commits](https://github.com/PostHog/posthog-js/compare/posthog-js@1.387.0...posthog-js@1.390.2)

Updates `baseline-browser-mapping` from 2.10.37 to 2.10.38
- [Release notes](https://github.com/web-platform-dx/baseline-browser-mapping/releases)
- [Commits](web-platform-dx/baseline-browser-mapping@v2.10.37...v2.10.38)

---
updated-dependencies:
- dependency-name: happy-dom
  dependency-version: 20.10.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-minor-patch
- dependency-name: import-in-the-middle
  dependency-version: 3.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-minor-patch
- dependency-name: posthog-js
  dependency-version: 1.390.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-minor-patch
- dependency-name: baseline-browser-mapping
  dependency-version: 2.10.38
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: all-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 19, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants