build(deps-dev): Bump postcss from 8.5.6 to 8.5.7 by dependabot[bot] · Pull Request #8694 · thirdweb-dev/js

dependabot · 2026-03-02T22:19:42Z

Bumps postcss from 8.5.6 to 8.5.7.

Release notes

Sourced from postcss's releases.

8.5.7

Improved source map annotation cleaning performance (by CodeAnt AI).

Changelog

Sourced from postcss's changelog.

8.5.7

Improved source map annotation cleaning performance (by CodeAnt AI).

Commits

6ee9f14 Release 8.5.7 version
3fbc951 Fix uvu Node.js 25 support
52db53e Update dependencies
497daef Speed up source map annotation cleaning by moving from RegExp
41e739a Remove banner
1329142 chore: speed up space-only string check in lib/parser.js (#2064)
23beff9 Update dependencies
105128b Add Node.js 24 and 25 to CI
82d80c0 Pin CI actions
d0b5ac9 Add new plugin
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

PR-Codex overview

This PR focuses on updating the postcss package version across multiple project files and modifying dependencies in the pnpm-lock.yaml file to reflect these updates.

Detailed summary

Updated postcss from 8.5.6 to 8.5.7 in:
- apps/portal/package.json
- apps/nebula/package.json
- apps/dashboard/package.json
- packages/ui/package.json
- apps/wallet-ui/package.json
- apps/playground-web/package.json
Updated dependency versions in pnpm-lock.yaml:
- @noble/hashes from 1.8.0 to 2.0.1
- postcss version references from 8.5.6 to 8.5.7
- Updated @babel/core from 7.28.4 to 7.29.0
- Updated utf-8-validate from 6.0.5 to 6.0.6
- Updated @emotion packages and others to their latest versions.

The following files were skipped due to too many changes: pnpm-lock.yaml

✨ Ask PR-Codex anything about this PR by commenting with /codex {your question}

Bumps [postcss](https://github.com/postcss/postcss) from 8.5.6 to 8.5.7. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.5.6...8.5.7) --- updated-dependencies: - dependency-name: postcss dependency-version: 8.5.7 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

changeset-bot · 2026-03-02T22:19:47Z

⚠️ No Changeset found

Latest commit: 587640a

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

vercel · 2026-03-02T22:19:49Z

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
docs-v2	Ready	Preview, Comment	Mar 2, 2026 10:34pm
nebula	Ready	Preview, Comment	Mar 2, 2026 10:34pm
thirdweb_playground	Error		Mar 2, 2026 10:34pm
thirdweb-www	Error		Mar 2, 2026 10:34pm
wallet-ui	Ready	Preview, Comment	Mar 2, 2026 10:34pm

socket-security · 2026-03-02T22:20:50Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	@wagmi/cli@2.8.0 ⏵ 2.10.0	^-21		⁺¹	⁺³
	postcss@8.5.6 ⏵ 8.5.7	⁺¹

View full report

github-actions · 2026-03-10T02:12:57Z

This PR has been inactive for 7 days. It is now marked as stale and will be closed in 2 days if no further activity occurs.

dependabot · 2026-03-12T02:13:19Z

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

dependabot bot added Dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Mar 2, 2026

dependabot bot requested review from a team as code owners March 2, 2026 22:19

dependabot bot added Dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Mar 2, 2026

github-actions bot added Dashboard Involves changes to the Dashboard. Playground Changes involving the Playground codebase. Portal Involves changes to the Portal (docs) codebase. packages Ecosystem Portal Involves changes to the Ecosystem Portal labels Mar 2, 2026

vercel bot deployed to Preview – wallet-ui March 2, 2026 22:23 View deployment

vercel bot deployed to Preview – nebula March 2, 2026 22:23 View deployment

vercel bot had a problem deploying to Preview – thirdweb-www March 2, 2026 22:24 Failure

vercel bot had a problem deploying to Preview – thirdweb_playground March 2, 2026 22:25 Failure

vercel bot deployed to Preview – docs-v2 March 2, 2026 22:34 View deployment

github-actions bot added the Stale label Mar 10, 2026

github-actions bot closed this Mar 12, 2026

dependabot bot deleted the dependabot/npm_and_yarn/postcss-8.5.7 branch March 12, 2026 02:13

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps-dev): Bump postcss from 8.5.6 to 8.5.7#8694

build(deps-dev): Bump postcss from 8.5.6 to 8.5.7#8694
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/postcss-8.5.7

dependabot bot commented on behalf of github Mar 2, 2026 •

edited by pr-codex bot

Loading

Uh oh!

changeset-bot bot commented Mar 2, 2026

Uh oh!

vercel bot commented Mar 2, 2026 •

edited

Loading

Uh oh!

socket-security bot commented Mar 2, 2026

Uh oh!

github-actions bot commented Mar 10, 2026

Uh oh!

dependabot bot commented on behalf of github Mar 12, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Mar 2, 2026 • edited by pr-codex bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

8.5.7

8.5.7

PR-Codex overview

Detailed summary

Uh oh!

changeset-bot bot commented Mar 2, 2026

⚠️ No Changeset found

Uh oh!

vercel bot commented Mar 2, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

socket-security bot commented Mar 2, 2026

Uh oh!

github-actions bot commented Mar 10, 2026

Uh oh!

dependabot bot commented on behalf of github Mar 12, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot bot commented on behalf of github Mar 2, 2026 •

edited by pr-codex bot

Loading

vercel bot commented Mar 2, 2026 •

edited

Loading