fix(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@cloudflare/workers-types	4.20241230.0 -> 4.20250109.0
@prisma/client (source)	6.1.0 -> 6.2.1
@prisma/internals (source)	6.1.0 -> 6.2.1
@prisma/migrate (source)	6.1.0 -> 6.2.1
@pulumi/azure-native (source)	2.80.0 -> 2.81.0
@pulumi/cloudflare (source)	5.46.0 -> 5.47.0
@pulumi/pulumi (source)	3.144.1 -> 3.145.0
@types/react (source)	19.0.3 -> 19.0.4
aws-cdk (source)	2.174.0 -> 2.174.1
aws-cdk-lib (source)	2.174.0 -> 2.174.1
graphql-ws (source)	5.16.0 -> 5.16.1
prisma (source)	6.1.0 -> 6.2.1
svelte (source)	5.16.2 -> 5.17.1
svelte-check	4.1.1 -> 4.1.3
wrangler (source)	3.99.0 -> 3.100.0

---

Release Notes

cloudflare/workerd (@​cloudflare/workers-types)

v4.20250109.0

Compare Source

prisma/prisma (@​prisma/client)

v6.2.1

Compare Source

Today we are releasing the 6.2.1 patch release to address an issue with some of the omitApi preview feature checks having been accidentally omitted when making the feature GA. Now it is fully functional without the preview feature flag.

Changes

• https://github.com/prisma/prisma/pull/25997

v6.2.0

Compare Source

Today we're releasing Prisma ORM version 6.2.0 🎉

🌟 Help us spread the word about Prisma by starring the repo or tweeting about the release. 🌟

We have a number of new features in this version, including support for json and enum fields in SQLite, a new updateManyAndReturn function, support for ULID values, as well as the promotion of the omit feature from Preview to Generally Availability.

Highlights

Excluding fields via omit is now production-ready

Our number one requested feature is out of Preview and Generally Available. In 6.2.0, you no longer need to add omitApi to your list of Preview features:

generator client {
  provider        = "prisma-client-js"
- previewFeatures = ["omitApi"]
}

As a refresher: omit allows you to exclude certain fields from being returned in the results of your Prisma Client queries.

You can either do this locally, on a per-query level:

const result = await prisma.user.findMany({
  omit: {
    password: true,
  },
});

Or globally, to ensure a field is excluded from all queries of a certain model:

const prisma = new PrismaClient({
  omit: {
    user: {
      password: true
    }
  }
})

// The password field is excluded in all queries, including this one
const user = await prisma.user.findUnique({ where: { id: 1 } })

For more information on omit, be sure to check our documentation.

json and enum fields in SQLite

Previous to this version, you could not define json and enum fields in your Prisma schema when using SQLite. The respective GitHub issues have been among the most popular ones in our repo, so with our new approach to open-source governance, we finally got to work and implemented these.

Working with JSON and Enum fields works similarly to other database providers, here’s an example:

datasource db {
  provider = "sqlite"
  url      = "file:./dev.db"
}

model User {
  id   Int    @​id @​default(autoincrement())
  name String
  role Role  
  data Json
}

enum Role {
  Customer
  Admin 
}

Support for auto-generated ULID values

Similar to cuid2 support released in ORM version 6.0.0, we are now adding support for Universally Unique Lexicographically Sortable Identifiers (or short: ULIDs 😄) in version 6.2.0. A ULID value is a 26-character alphanumeric string, e.g. 01GZ0GZ3XARH8ZP44A7TQ2W4ZD.

With this new feature, you can now create records with auto-generated ULID values for String fields:

model User {
  id String @​id @​default(ulid())  
}

New batch function: updateManyAndReturn

updateMany allows you to update many records in your database, but it only returns the count of the affected rows, not the resulting rows themselves. With updateManyAndReturn you are now able to achieve this:

const users = await prisma.user.updateManyAndReturn({
  where: {
    email: {
      contains: 'prisma.io',
    }
  },
  data: {
    role: 'ADMIN'
  }
})

This call to updateManyAndReturn will now return the actual records that have been updated in the query:

[{
  id: 22,
  name: 'Alice',
  email: '[email protected]',
  profileViews: 0,
  role: 'ADMIN',
  coinflips: []
}, {
  id: 23,
  name: 'Bob',
  email: '[email protected]',
  profileViews: 0,
  role: 'ADMIN',
  coinflips: []
}]

Please note that like createManyAndReturn, updateManyAndReturn is only supported in PostgreSQL, CockroachDB, and SQLite.

Fixed runtime error in Node.js v23

While not officially supported, we understand that a lot of you like to be on the latest Node.js version — so we fixed an error that only occurred on Node.js 23. Happy coding ✌️

Prisma is hiring 🤝

Join us at Prisma to work on the most popular TypeScript ORM and other exciting products like the first serverless database built on unikernels!

We currently have two open roles in our Engineering team:

• Senior Software Engineer (Prisma ORM)
• Senior Software Engineer (Prisma Data Platform)

If these don’t fit, you can still check out our jobs page and send a general application.

pulumi/pulumi-azure-native (@​pulumi/azure-native)

v2.81.0

Compare Source

Does the PR have any schema changes?

Looking good! No breaking changes found.
No new resources/functions.

What's Changed

• Fix flaky TestAccSimpleTs test by @​thomas11 in https://github.com/pulumi/pulumi-azure-native/pull/3830
• Remove unused schemagen code, cleanup by @​thomas11 in https://github.com/pulumi/pulumi-azure-native/pull/3815

Full Changelog: pulumi/pulumi-azure-native@v2.80.0...v2.81.0

pulumi/pulumi-cloudflare (@​pulumi/cloudflare)

v5.47.0

Compare Source

Does the PR have any schema changes?

Found 2 breaking changes:

Types

• 🟡 "cloudflare:index/TeamsLocationNetwork:TeamsLocationNetwork": properties: "id" missing
• 🟡 "cloudflare:index/ZeroTrustDnsLocationNetwork:ZeroTrustDnsLocationNetwork": properties: "id" missing
  No new resources/functions.

What's Changed

• Update GitHub Actions workflows. by @​pulumi-bot in https://github.com/pulumi/pulumi-cloudflare/pull/1024
• Improve deprecation warning for Record.Value by @​guineveresaenger in https://github.com/pulumi/pulumi-cloudflare/pull/1015
• Update GitHub Actions workflows. by @​pulumi-bot in https://github.com/pulumi/pulumi-cloudflare/pull/1026
• Update GitHub Actions workflows. by @​pulumi-bot in https://github.com/pulumi/pulumi-cloudflare/pull/1029
• Upgrade terraform-provider-cloudflare to v4.50.0 by @​pulumi-bot in https://github.com/pulumi/pulumi-cloudflare/pull/1028

Full Changelog: pulumi/pulumi-cloudflare@v5.46.0...v5.47.0

pulumi/pulumi (@​pulumi/pulumi)

v3.145.0

Compare Source

3.145.0 (2025-01-07)

Features

• [auto/go] Support --clear-pending-creates for refresh command in Go Automation API for preview refresh and refresh operations.
  #​18101

• [programgen/{java,sdkgen/java}] Only use gRPC to communicate with the Java host
  #​18138

• [cli/package] Support bridging to terraform providers automatically in pulumi convert
  #​17992

• [sdk/go] Implement deferred output for the Go SDK and program-gen
  #​17885

Bug Fixes

• [cli] Fix TestPackageAddGoParameterized to utilize version path
  #​18150

• [cli/engine] Clarify the usage string for the --expect-no-changes flag
  #​18105

• [auto/go] Return error if no inline program specified
  #​18086

• [auto/go] Interrupt programs gracefully when the context is canceled
  #​18124

• [cli/new] Provide a better error message when pulumi new --ai generates a program with errors
  #​18091

• [cli/new] Provide a more meaningful message for the --language flag
  #​18092

• [engine] Enable pulumi:pulumi:getResource to hydrate Read resources
  #​18070

• [programgen] Allow for case-insensitive terraform convert source
  #​18111

• [programgen/go] Fix importing module names in Go programs that aren't lower-case
  #​18113

• [sdk/go] Fix panic when diffing computed property values
  #​18104

• [sdk/go] Avoid calling invokes with dependencies on unknown resources
  #​18133

• [sdk/nodejs] Fix source maps when using jest
  #​18108

• [sdk/nodejs] Avoid calling invokes with dependencies on unknown resources
  #​18152

• [sdk/python] Fix reading pulumi-plugin.json when using the uv toolchain
  #​18107

• [sdk/python] Fix ListPackages when using uv
  #​18121

• [sdk/python] Fix dynamic providers when using Poetry or uv
  #​18126

• [sdk/python] Fix prerelease version
  #​18125

• [sdk/python] Avoid calling invokes with dependencies on unknown resources
  #​18141

Miscellaneous

• [programgen/java] Bump Java SDK dependency version so that package gen-sdk emits buildable code
  #​18130

• [sdk/python] Switch to pyproject.toml + uv
  #​18081

• [sdk/python] Move mypy configuration into pyproject.toml
  #​18118

• [sdk/python] Move pyright configuration into pyproject.toml
  #​18116

• [sdk/python] Move ruff configuration into pyproject.toml
  #​18117

aws/aws-cdk (aws-cdk)

v2.174.1

Compare Source

Features

• update L1 CloudFormation resource definitions (#​32755) (0bc32c9)
• update L1 CloudFormation resource definitions (#​32768) (20070a4)

---

Alpha modules (2.174.1-alpha.0)

enisdenjo/graphql-ws (graphql-ws)

v5.16.1

Compare Source

Patch Changes

• #​607 a629ec7 Thanks @​enisdenjo! - Release with changesets

  This version does not contain any code changes.

sveltejs/svelte (svelte)

v5.17.1

Compare Source

Patch Changes

• fix: remove bindable prop validation (#​14946)

• chore: tweak "invalid assignment" compiler error message (#​14955)

• fix: silence false-positive stale value warning (#​14958)

v5.17.0

Compare Source

Minor Changes

• feat: allow non-numeric values to be tweened by snapping immediately to new value (#​14941)

Patch Changes

• fix: handle default values in object destructuring within "each" blocks when using characters like "}" and "]" (#​14554)

• fix: account for min-width/height in slide transition (#​14942)

• fix: prevent long delays causing erratic spring behaviour (#​14940)

• feat: warn on using slide transition with table elements (#​14936)

• chore: improve signal performance by reducing duplicate deps (#​14945)

v5.16.6

Compare Source

Patch Changes

• fix: Make Tween duration 0 set current to target immediately (#​14937)

• fix: guard against customElements being unavailable in browser extension contexts (#​14933)

• fix: treat inert as a boolean attribute (#​14935)

• fix: remove leading newline from <pre> contents (#​14922)

v5.16.5

Compare Source

Patch Changes

• fix: inherit correct namespace for <title> elements (#​14817)

• fix: don't throw bind_invalid_export if there's also a bindable prop with the same name (#​14813)

v5.16.4

Compare Source

Patch Changes

• fix: use cached indexOf array prototype method internally (#​14912)

• fix: make Tween work with continuous target changes (#​14895)

v5.16.3

Compare Source

Patch Changes

• fix: correctly parse each with loose parser (#​14887)

• fix: apply clsx logic to custom element class attributes (#​14907)

sveltejs/language-tools (svelte-check)

v4.1.3

Compare Source

• fix: move snippets to correct place when only module script present

v4.1.2

Compare Source

• feat: support generics attribute for JSDoc (#​2624)
• fix: better snippet/interface hoistability analysis (#​2655)
• chore: TypeScript 5.7 support (#​2585)

cloudflare/workers-sdk (wrangler)

v3.100.0

Compare Source

Minor Changes

• #​7604 6c2f173 Thanks @​CarmenPopoviciu! - feat: Capture Workers with static assets in the telemetry data

  We want to measure accurately what this number of Workers + Assets projects running in remote mode is, as this number will be a very helpful data point down the road, when more decisions around remote mode will have to be taken.

  These changes add this kind of insight to our telemetry data, by capturing whether the command running is in the context of a Workers + Assets project.

  N.B. With these changes in place we will be capturing the Workers + Assets context for all commands, not just wrangler dev --remote.

Patch Changes

• #​7581 cac7fa6 Thanks @​vicb! - chore(wrangler): update unenv dependency version

  unenv now uses the workerd implementation on node:dns
  See the unjs/unenv#376

• #​7625 d8fb032 Thanks @​vicb! - feat(wrangler): use unenv builtin dependency resolution

  Moving away from require.resolve() to handle unenv aliased packages.
  Using the unenv builtin resolution will allow us to drop the .cjs file from the preset
  and to override the base path so that we can test the dev version of the preset.

• #​7533 755a27c Thanks @​danielgek! - Add warning about the browser rendering not available on local

• #​7614 8abb43f Thanks @​vicb! - chore(wrangler): update unenv dependency version

  The updated unenv contains a fix for the module resolution,
  see unjs/unenv#378.
  That bug prevented us from using unenv module resolution,
  see #​7583.

• Updated dependencies [b4e0af1]:

  • [email protected]

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[changeset-bot]

⚠️ No Changeset found

Latest commit: c54fcd0

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[github-actions]

💻 Website Preview

The latest changes are available as preview in: https://a44da173.graphql-yoga.pages.dev

[github-actions]

Apollo Federation Subgraph Compatibility Results

Federation 1 Support	Federation 2 Support
_service 🟢 @key (single) 🟢 @key (multi) 🟢 @key (composite) 🟢 repeatable @key 🟢 @requires 🟢 @provides 🟢 federated tracing 🟢	@link 🟢 @shareable 🟢 @tag 🟢 @override 🟢 @inaccessible 🟢 @composeDirective 🟢 @interfaceObject 🟢

Learn more:

• Apollo Federation Subgraph Specification
• Compatibility Tests

[github-actions]

✅ Benchmark Results

     ✓ no_errors{mode:graphql}
     ✓ expected_result{mode:graphql}
     ✓ no_errors{mode:graphql-jit}
     ✓ expected_result{mode:graphql-jit}
     ✓ no_errors{mode:graphql-response-cache}
     ✓ expected_result{mode:graphql-response-cache}
     ✓ no_errors{mode:graphql-no-parse-validate-cache}
     ✓ expected_result{mode:graphql-no-parse-validate-cache}
     ✓ no_errors{mode:uws}
     ✓ expected_result{mode:uws}

     checks.......................................: 100.00% ✓ 522004      ✗ 0     
     data_received................................: 2.1 GB  14 MB/s
     data_sent....................................: 105 MB  699 kB/s
     http_req_blocked.............................: avg=1.49µs   min=993ns    med=1.32µs   max=286.76µs p(90)=1.95µs   p(95)=2.13µs  
     http_req_connecting..........................: avg=2ns      min=0s       med=0s       max=141.85µs p(90)=0s       p(95)=0s      
     http_req_duration............................: avg=360.23µs min=222.72µs med=328.36µs max=18.15ms  p(90)=468.87µs p(95)=490.32µs
       { expected_response:true }.................: avg=360.23µs min=222.72µs med=328.36µs max=18.15ms  p(90)=468.87µs p(95)=490.32µs
     ✓ { mode:graphql-jit }.......................: avg=289.59µs min=222.72µs med=272.64µs max=18.15ms  p(90)=305.25µs p(95)=321.68µs
     ✓ { mode:graphql-no-parse-validate-cache }...: avg=493.05µs min=407.44µs med=470.7µs  max=5.88ms   p(90)=511.77µs p(95)=555.25µs
     ✓ { mode:graphql-response-cache }............: avg=343.96µs min=266.2µs  med=327.24µs max=6.47ms   p(90)=357.16µs p(95)=368.07µs
     ✓ { mode:graphql }...........................: avg=368.4µs  min=284.55µs med=339.46µs max=14.92ms  p(90)=399.43µs p(95)=446.41µs
     ✓ { mode:uws }...............................: avg=342.82µs min=271.14µs med=326.34µs max=6.22ms   p(90)=361.14µs p(95)=381.68µs
     http_req_failed..............................: 0.00%   ✓ 0           ✗ 261002
     http_req_receiving...........................: avg=32.37µs  min=16.79µs  med=32µs     max=5.69ms   p(90)=38.67µs  p(95)=41.03µs 
     http_req_sending.............................: avg=8.48µs   min=5.99µs   med=7.43µs   max=5.4ms    p(90)=10.92µs  p(95)=11.75µs 
     http_req_tls_handshaking.....................: avg=0s       min=0s       med=0s       max=0s       p(90)=0s       p(95)=0s      
     http_req_waiting.............................: avg=319.36µs min=187.15µs med=288.49µs max=18.04ms  p(90)=427.55µs p(95)=447.28µs
     http_reqs....................................: 261002  1739.999155/s
     iteration_duration...........................: avg=569.87µs min=391.31µs med=534.76µs max=18.7ms   p(90)=681.64µs p(95)=707.8µs 
     iterations...................................: 261002  1739.999155/s
     vus..........................................: 1       min=1         max=1   
     vus_max......................................: 2       min=2         max=2