Skip to content

chore(deps): bump tailwind-merge from 2.6.0 to 3.5.0 in /app#490

Open
dependabot[bot] wants to merge 1 commit intostagingfrom
dependabot/npm_and_yarn/app/staging/tailwind-merge-3.5.0
Open

chore(deps): bump tailwind-merge from 2.6.0 to 3.5.0 in /app#490
dependabot[bot] wants to merge 1 commit intostagingfrom
dependabot/npm_and_yarn/app/staging/tailwind-merge-3.5.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 15, 2026
edited
Loading

Bumps tailwind-merge from 2.6.0 to 3.5.0.

Release notes

Sourced from tailwind-merge's releases.

v3.5.0

New Features

Full Changelog: dcastil/tailwind-merge@v3.4.1...v3.5.0

Thanks to @​brandonmcconnell, @​manavm1990, @​langy, @​roboflow, @​syntaxfm, @​getsentry, @​codecov, a private sponsor, @​block, @​openclaw, @​sourcegraph and more via @​thnxdev for sponsoring tailwind-merge! ❤️

v3.4.1

Bug Fixes

Full Changelog: dcastil/tailwind-merge@v3.4.0...v3.4.1

Thanks to @​brandonmcconnell, @​manavm1990, @​langy, @​roboflow, @​syntaxfm, @​getsentry, @​codecov, a private sponsor, @​block, @​openclaw, @​sourcegraph and more via @​thnxdev for sponsoring tailwind-merge! ❤️

v3.4.0

New Features

Documentation

Other

Full Changelog: dcastil/tailwind-merge@v3.3.1...v3.4.0

Thanks to @​brandonmcconnell, @​manavm1990, @​langy, @​roboflow, @​syntaxfm, @​getsentry, @​codecov and a private sponsor for sponsoring tailwind-merge! ❤️

v3.3.1

Bug Fixes

Full Changelog: dcastil/tailwind-merge@v3.3.0...v3.3.1

Thanks to @​brandonmcconnell, @​manavm1990, @​langy, @​roboflow, @​syntaxfm, @​getsentry, @​codecov, @​sourcegraph, a private sponsor, @​block and @​shawt3000 for sponsoring tailwind-merge! ❤️

v3.3.0

New Features

... (truncated)

Commits
  • 270ac79 v3.5.0
  • 86f772e add changelog for 3.5.0
  • 6c1f77c Merge pull request #651 from dcastil/feature/add-support-for-tailwind-css-v4.2
  • 7a4cacf Add support for decimal fraction values
  • 9ef0f79 fix incorrectly escaped characters
  • f4938b0 update README with v4.2 support
  • b02a572 Add Tailwind v4.2 font-features utilities support
  • 5bd25ec Add Tailwind v4.2 logical sizing utilities
  • 697c920 Add Tailwind v4.2 logical border block utilities
  • 6656a47 Improve JSDoc comments for logical insets
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for tailwind-merge since your current version.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 15, 2026
@overcut-ai
Copy link
Copy Markdown

overcut-ai bot commented Mar 15, 2026
edited
Loading

Completed Working on "Code Review"

✅ Workflow completed successfully.

👉 View complete log

@github-actions
Copy link
Copy Markdown

github-actions bot commented Mar 15, 2026
edited
Loading

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Snapshot Warnings

⚠️: No snapshots were found for the head SHA 28f8917.
Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

OpenSSF Scorecard

PackageVersionScoreDetails
npm/tailwind-merge 3.5.0 🟢 4.6
Details
CheckScoreReason
Dangerous-Workflow⚠️ 0dangerous workflow patterns detected
Maintained🟢 1030 commit(s) and 10 issue activity found in the last 90 days -- score normalized to 10
Security-Policy🟢 10security policy file detected
Code-Review⚠️ 2Found 1/5 approved changesets -- score normalized to 2
Binary-Artifacts🟢 10no binaries found in the repo
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
Pinned-Dependencies⚠️ 0dependency not pinned by hash detected -- score normalized to 0
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Fuzzing⚠️ 0project is not fuzzed
License🟢 10license file detected
Signed-Releases⚠️ -1no releases found
Branch-Protection⚠️ -1internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md
Packaging🟢 10packaging workflow detected
SAST🟢 7SAST tool detected but not run on all commits

Scanned Files

  • app/package-lock.json

gkorland added a commit that referenced this pull request Mar 27, 2026
@gkorland
chore(deps): combine dependabot dependency updates
ab04dd1 
Python dependencies:
- uvicorn: 0.41.0 → 0.42.0
- litellm: 1.82.0 → 1.82.6
- authlib: 1.6.8 → 1.6.9
- fastmcp: 3.0.1 → 3.1.1
- pytest-asyncio: 1.2.0 → 1.3.0

GitHub Actions:
- astral-sh/setup-uv: v5.4.2 → v7.6.0
- rojopolis/spellcheck-github-actions: 0.59.0 → 0.60.0

NPM dependencies (app/):
- typescript-eslint: 8.53.0 → 8.57.0
- flatted: 3.3.3 → 3.4.2
- picomatch: 2.3.1 → 2.3.2 / 4.0.3 → 4.0.4

Replaces: #483, #484, #486, #487, #491, #493, #498, #499, #500, #501

Skipped major version bumps (require migration work):
- #488 vite 7→8, #489 react-dom 18→19
- #490 tailwind-merge 2→3, #492 tailwindcss 3→4

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@gkorland gkorland mentioned this pull request Mar 27, 2026
Merged
gkorland added a commit that referenced this pull request Mar 27, 2026
@gkorland
chore(deps): combine dependabot dependency updates (#504)
9d986cd 
Python dependencies:
- uvicorn: 0.41.0 → 0.42.0
- litellm: 1.82.0 → 1.82.6
- authlib: 1.6.8 → 1.6.9
- fastmcp: 3.0.1 → 3.1.1
- pytest-asyncio: 1.2.0 → 1.3.0

GitHub Actions:
- astral-sh/setup-uv: v5.4.2 → v7.6.0
- rojopolis/spellcheck-github-actions: 0.59.0 → 0.60.0

NPM dependencies (app/):
- typescript-eslint: 8.53.0 → 8.57.0
- flatted: 3.3.3 → 3.4.2
- picomatch: 2.3.1 → 2.3.2 / 4.0.3 → 4.0.4

Replaces: #483, #484, #486, #487, #491, #493, #498, #499, #500, #501

Skipped major version bumps (require migration work):
- #488 vite 7→8, #489 react-dom 18→19
- #490 tailwind-merge 2→3, #492 tailwindcss 3→4

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@dependabot
chore(deps): bump tailwind-merge from 2.6.0 to 3.5.0 in /app
28f8917 
Bumps [tailwind-merge](https://github.com/dcastil/tailwind-merge) from 2.6.0 to 3.5.0.
- [Release notes](https://github.com/dcastil/tailwind-merge/releases)
- [Commits](dcastil/tailwind-merge@v2.6.0...v3.5.0)

---
updated-dependencies:
- dependency-name: tailwind-merge
  dependency-version: 3.5.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/app/staging/tailwind-merge-3.5.0 branch from f42b144 to 28f8917 Compare March 27, 2026 15:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants