chore(deps): bump the github-service-npm-dependencies group across 1 directory with 23 updates

[dependabot]

Bumps the github-service-npm-dependencies group with 23 updates in the /github-service directory:

Package	From	To
@nestjs/common	11.1.17	11.1.19
@nestjs/config	4.0.3	4.0.4
@nestjs/core	11.1.18	11.1.19
@nestjs/microservices	11.1.17	11.1.19
@nestjs/platform-express	11.1.17	11.1.19
amqplib	0.10.9	2.0.1
simple-git	3.33.0	3.36.0
yaml	2.8.3	2.9.0
@nestjs/cli	11.0.16	11.0.21
@nestjs/schematics	11.0.9	11.1.0
@nestjs/testing	11.1.17	11.1.19
@swc/cli	0.8.0	0.8.1
@swc/core	1.15.21	1.15.33
@types/node	25.5.0	25.7.0
eslint	10.1.0	10.3.0
globals	17.4.0	17.6.0
jest	30.3.0	30.4.2
jiti	2.6.1	2.7.0
prettier	3.8.1	3.8.3
ts-jest	29.4.6	29.4.9
ts-loader	9.5.4	9.5.7
typescript	5.9.3	6.0.3
typescript-eslint	8.57.2	8.59.3

Updates @nestjs/common from 11.1.17 to 11.1.19

Release notes

Sourced from @​nestjs/common's releases.

v11.1.19 (2026-04-13)

Bug fixes

• microservices
  • #16762 fix(microservices): use backing field for consumer CRASH event listener (@​burhanharoon)
  • #16764 fix(microservices): prevent stack overflow in jsonsocket.handledata() (@​kamilmysliwiec)

Committers: 2

• Burhan Haroon⚡ (@​burhanharoon)
• Kamil Mysliwiec (@​kamilmysliwiec)

v11.1.18 (2026-04-03)

Bug fixes

• microservices
  • #16675 fix(microservices): preserve packet headers in nats serializer (@​wwenrr)
• core
  • #16683 fix(core): prevent injector hang when design:paramtypes is missing (@​Youmoo)
  • #16637 fix(core): dependency injection edge case with moduleref.create (@​JakobStaudinger)
  • nestjs/nest#16686 fix(core): sanitize sse message

Dependencies

• core, platform-express, platform-fastify
  • #16679 fix(deps): update dependency path-to-regexp to v8.4.2 (@​renovate[bot])
• platform-fastify
  • #16623 fix(deps): update dependency fastify to v5.8.4 (@​renovate[bot])
• platform-ws
  • #16618 chore(deps): bump ws from 8.19.0 to 8.20.0 (@​dependabot[bot])
• common
  • #16619 chore(deps): bump file-type from 21.3.3 to 21.3.4 (@​dependabot[bot])

Committers: 6

• Ankit San (@​ankitbelal)
• Jakob Staudinger (@​JakobStaudinger)
• Kamil Mysliwiec (@​kamilmysliwiec)
• Krishna Chaitanya (@​Krishnachaitanyakc)
• MK (@​wwenrr)
• youmoo (@​Youmoo)

Commits

• 6730995 chore(release): publish v11.1.19 release
• 3c1cc5f chore(release): publish v11.1.18 release
• a39e345 refactor(common): change console logger helpers to protected
• 34f0f28 chore(deps): bump file-type from 21.3.3 to 21.3.4
• 0e96b0a chore(deps): bump file-type from 21.3.2 to 21.3.3
• 5a05f52 chore: update readme
• See full diff in compare view

Updates @nestjs/config from 4.0.3 to 4.0.4

Release notes

Sourced from @​nestjs/config's releases.

Release 4.0.4

• fix(deps): update dependency dotenv to v17.4.1 (6bc5737)
• fix(deps): update dependency lodash to v4.18.1 [security] (f31ee98)

Commits

• 3b5d592 chore(): release v4.0.4
• 4fbcb03 Merge pull request #2263 from nestjs/renovate/dotenv-17.x
• 33dae89 Merge pull request #2269 from nestjs/renovate/cimg-node-24.x
• 0a727c3 Merge pull request #2313 from nestjs/renovate/npm-lodash-vulnerability
• 6bc5737 fix(deps): update dependency dotenv to v17.4.1
• f31ee98 fix(deps): update dependency lodash to v4.18.1 [security]
• 059314c chore(deps): update dependency typescript-eslint to v8.58.1 (#2315)
• 0f81e2d chore(deps): update dependency eslint to v10.2.0 (#2314)
• e673ab2 chore(deps): update dependency @​types/node to v24.12.2 (#2311)
• b1ede30 chore(deps): update nest monorepo to v11.1.18 (#2312)
• Additional commits viewable in compare view

Updates @nestjs/core from 11.1.18 to 11.1.19

Release notes

Sourced from @​nestjs/core's releases.

v11.1.19 (2026-04-13)

Bug fixes

• microservices
  • #16762 fix(microservices): use backing field for consumer CRASH event listener (@​burhanharoon)
  • #16764 fix(microservices): prevent stack overflow in jsonsocket.handledata() (@​kamilmysliwiec)

Committers: 2

• Burhan Haroon⚡ (@​burhanharoon)
• Kamil Mysliwiec (@​kamilmysliwiec)

Commits

• 6730995 chore(release): publish v11.1.19 release
• See full diff in compare view

Updates @nestjs/microservices from 11.1.17 to 11.1.19

Release notes

Sourced from @​nestjs/microservices's releases.

v11.1.19 (2026-04-13)

Bug fixes

• microservices
  • #16762 fix(microservices): use backing field for consumer CRASH event listener (@​burhanharoon)
  • #16764 fix(microservices): prevent stack overflow in jsonsocket.handledata() (@​kamilmysliwiec)

Committers: 2

• Burhan Haroon⚡ (@​burhanharoon)
• Kamil Mysliwiec (@​kamilmysliwiec)

v11.1.18 (2026-04-03)

Bug fixes

• microservices
  • #16675 fix(microservices): preserve packet headers in nats serializer (@​wwenrr)
• core
  • #16683 fix(core): prevent injector hang when design:paramtypes is missing (@​Youmoo)
  • #16637 fix(core): dependency injection edge case with moduleref.create (@​JakobStaudinger)
  • nestjs/nest#16686 fix(core): sanitize sse message

Dependencies

• core, platform-express, platform-fastify
  • #16679 fix(deps): update dependency path-to-regexp to v8.4.2 (@​renovate[bot])
• platform-fastify
  • #16623 fix(deps): update dependency fastify to v5.8.4 (@​renovate[bot])
• platform-ws
  • #16618 chore(deps): bump ws from 8.19.0 to 8.20.0 (@​dependabot[bot])
• common
  • #16619 chore(deps): bump file-type from 21.3.3 to 21.3.4 (@​dependabot[bot])

Committers: 6

• Ankit San (@​ankitbelal)
• Jakob Staudinger (@​JakobStaudinger)
• Kamil Mysliwiec (@​kamilmysliwiec)
• Krishna Chaitanya (@​Krishnachaitanyakc)
• MK (@​wwenrr)
• youmoo (@​Youmoo)

Commits

• 6730995 chore(release): publish v11.1.19 release
• bcc036d Merge pull request #16762 from burhanharoon/fix/kafka-consumer-crash-event-li...
• d3deafe chore: remove redundant comments
• 298857e fix(microservices): prevent stack overflow in jsonsocket.handledata()
• 77063fb fix(microservices): use backing field for consumer crash event listener
• 3c1cc5f chore(release): publish v11.1.18 release
• 848a6fb fix(microservices): escape msvc pattern keys
• 9e6774b fix(microservices): preserve packet headers in nats serializer
• 5a05f52 chore: update readme
• See full diff in compare view

Updates @nestjs/platform-express from 11.1.17 to 11.1.19

Release notes

Sourced from @​nestjs/platform-express's releases.

v11.1.19 (2026-04-13)

Bug fixes

• microservices
  • #16762 fix(microservices): use backing field for consumer CRASH event listener (@​burhanharoon)
  • #16764 fix(microservices): prevent stack overflow in jsonsocket.handledata() (@​kamilmysliwiec)

Committers: 2

• Burhan Haroon⚡ (@​burhanharoon)
• Kamil Mysliwiec (@​kamilmysliwiec)

v11.1.18 (2026-04-03)

Bug fixes

• microservices
  • #16675 fix(microservices): preserve packet headers in nats serializer (@​wwenrr)
• core
  • #16683 fix(core): prevent injector hang when design:paramtypes is missing (@​Youmoo)
  • #16637 fix(core): dependency injection edge case with moduleref.create (@​JakobStaudinger)
  • nestjs/nest#16686 fix(core): sanitize sse message

Dependencies

• core, platform-express, platform-fastify
  • #16679 fix(deps): update dependency path-to-regexp to v8.4.2 (@​renovate[bot])
• platform-fastify
  • #16623 fix(deps): update dependency fastify to v5.8.4 (@​renovate[bot])
• platform-ws
  • #16618 chore(deps): bump ws from 8.19.0 to 8.20.0 (@​dependabot[bot])
• common
  • #16619 chore(deps): bump file-type from 21.3.3 to 21.3.4 (@​dependabot[bot])

Committers: 6

• Ankit San (@​ankitbelal)
• Jakob Staudinger (@​JakobStaudinger)
• Kamil Mysliwiec (@​kamilmysliwiec)
• Krishna Chaitanya (@​Krishnachaitanyakc)
• MK (@​wwenrr)
• youmoo (@​Youmoo)

Commits

• 6730995 chore(release): publish v11.1.19 release
• 3c1cc5f chore(release): publish v11.1.18 release
• 0ca5440 Merge pull request #16627 from ankitbelal/refactor/centralize-headers-and-par...
• 25d4fde fix(deps): update dependency path-to-regexp to v8.4.2
• 5c0b11e fix(deps): update dependency path-to-regexp to v8.4.1
• d0a9dc9 fix(deps): update dependency path-to-regexp to v8.4.0
• 1a14884 refactor(core): centralize headers for streamable file responses
• 5a05f52 chore: update readme
• See full diff in compare view

Updates amqplib from 0.10.9 to 2.0.1

Release notes

Sourced from amqplib's releases.

v2.0.1

• Remove buffer-more-ints dependency; use Node.js built-in BigInt Buffer methods (readBigInt64BE, readBigUInt64BE, writeBigInt64BE, writeBigUInt64BE) which have been available since Node.js v10.4

v2.0.0

BREAKING CHANGE

heartbeat: 0 now correctly disables heartbeats, sending 0 in the ConnectionTuneOk frame regardless of the server's suggestion. This aligns with the AMQP 0-9-1 spec, which defines heartbeat=0 as "disabled".

Previously, 0 was passed through negotiate() which treated it as "no preference", causing the server's suggested value to be used instead.

Migration: if you are passing heartbeat: 0 and want to preserve the old behaviour of accepting the server's value, omit the option or pass null instead.

Fixes #467. Supersedes #469.

1.2.0

Add bundled TypeScript type definitions (fixes #843)

For full history see CHANGELOG.md.

Changelog

Sourced from amqplib's changelog.

v2.0.1

• Remove buffer-more-ints dependency; use Node.js built-in BigInt Buffer methods (readBigInt64BE, readBigUInt64BE, writeBigInt64BE, writeBigUInt64BE) which have been available since Node.js v10.4

v2.0.0

• BREAKING: heartbeat: 0 now disables heartbeats, overriding any value suggested by the server. Previously, 0 was treated as "no preference" and the server's suggested value was used. If you are passing heartbeat: 0 and want to preserve the old behaviour, omit the option or pass null instead (fixes #467)

v1.2.0

• Add bundled TypeScript type definitions (fixes #843)

v1.1.1

• Forward handler-error events from the underlying connection to the recovery wrapper, so listeners attached to RecoveringPromiseModel/RecoveringCallbackModel receive handler errors

v1.1.0

• Add connection recovery via connectWithRecoveryPromise and connectWithRecoveryCallback — automatically reconnects on connection loss with configurable backoff delay, jitter, and retry limits (thanks @​ShiriNmi1520)

v1.0.7

• Fix update-secret-ok event not being forwarded by ChannelModel and CallbackModel (fixes #849)
• Add handler-error event to connections and channels. If a user-supplied event handler (e.g. connection.on('close', ...), channel.on('error', ...), channel.on('delivery', ...) etc.) throws a synchronous error, amqplib will emit a handler-error event on the same emitter with the thrown error and the name of the event whose handler threw — provided a handler-error listener is registered. If no handler-error listener is registered, behaviour is unchanged from previous versions. Note: in previous versions, errors thrown in connection close event handlers were silently swallowed; errors thrown in channel event handlers (other than delivery/return) would kill the channel and possibly the connection (fixes #334).

v1.0.6

• Fix channel.get() not invoking callback with error on channel close; previously only an error event was emitted (fixes #832). Note: if you use the callback API, ensure your channel.get() callbacks handle errors — they will now be invoked in error cases where previously they were not. If you use the promise API, the returned promise now rejects with a proper Error object (with .code, .classId and .methodId properties) rather than a raw close frame.

v1.0.5

• Fix ConfirmChannel callbacks silently dropped on channel close when some publishes had no callback (fixes #191)

v1.0.4

• Updated build to use RabbitMQ 4.2
• Fix memory leak in ConfirmChannel.publish when channel is already closed (fixes #842)
• Close connection immediately when close() is called while the connection is blocked (fixes #744)

v1.0.3

• Fix AssertionError crash when backpressure occurs while draining newStreams in Mux (fixes #841)

v1.0.2

• Replace url-parse with WHATWG URL API

v1.0.1

• Fix TLS connection failure when connecting to an AMQPS broker using an IP address (IPv4 or IPv6) — setting servername to an IP is not permitted by TLS SNI and throws ERR_INVALID_ARG_VALUE in Node.js 25+

v1.0.0

• BREAKING: Update minimum Node.js requirement to v18
• Introduce Biome formatter for consistent code formatting
• Add automated formatting via pre-commit hooks using Lefthook
• Format entire codebase with standardised formatting rules
• Add npm format script for manual code formatting
• Enable noUnusedFunctionParameters lint rule and fix all violations
• Enable noUnusedVariables lint rule and remove all unused variables from codebase
• Replace all var declarations with let/const for modern JavaScript standards
• Ensure parseInt calls use explicit radix parameter for clarity and reliability
• Fix precision loss in test data generators by using JavaScript safe integer limits

... (truncated)

Commits

• 7706d75 2.0.1
• 658fd13 Prep for release
• 4c15c08 Merge pull request #854 from amqp-node/feat/remove-buffer-more-ints
• 3645d4f Remove buffer-more-ints dependency, use Node.js built-in BigInt Buffer methods
• 7e4b002 2.0.0
• 2dbdaee Prep for release
• 97b9f26 Merge pull request #853 from amqp-node/feat/heartbeat-zero
• de9e660 Make heartbeat:0 disable heartbeats rather than deferring to server
• 5e9a65e 1.2.0
• 851b75d Prep for release
• Additional commits viewable in compare view

Updates simple-git from 3.33.0 to 3.36.0

Release notes

Sourced from simple-git's releases.

simple-git@3.36.0

Minor Changes

• 89a2294: Extend known exploitable configuration keys and per-task environment variables.

  Note - ParsedVulnerabilities from argv-parser is removed in favour of a readonly array of Vulnerability to match usage in simple-git, rolled into the new vulnerabilityCheck for simpler access to the identified issues.

  Thanks to @​zebbern for identifying the need to block core.fsmonitor. Thanks to @​kodareef5 for identifying the need to block GIT_CONFIG_COUNT environment variables and --template / merge related config.

Patch Changes

• 1ad57e8: Remove conflicting node:buffer import
• Updated dependencies [89a2294]
• Updated dependencies [675570a]
  • @​simple-git/argv-parser@​1.1.0
  • @​simple-git/args-pathspec@​1.0.3

simple-git@3.35.2

Patch Changes

• 0cf9d8c: Improvements for mono-repo publishing pipeline
• Updated dependencies [0cf9d8c]
  • @​simple-git/args-pathspec@​1.0.2
  • @​simple-git/argv-parser@​1.0.3

simple-git@3.35.1

Patch Changes

• 0de400e: Update monorepo version handling during publish
• Updated dependencies [0de400e]
  • @​simple-git/argv-parser@​1.0.2

Changelog

Sourced from simple-git's changelog.

3.36.0

Minor Changes

• 89a2294: Extend known exploitable configuration keys and per-task environment variables.

  Note - ParsedVulnerabilities from argv-parser is removed in favour of a readonly array of Vulnerability to match usage in simple-git, rolled into the new vulnerabilityCheck for simpler access to the identified issues.

  Thanks to @​zebbern for identifying the need to block core.fsmonitor. Thanks to @​kodareef5 for identifying the need to block GIT_CONFIG_COUNT environment variables and --template / merge related config.

Patch Changes

• 1ad57e8: Remove conflicting node:buffer import
• Updated dependencies [89a2294]
• Updated dependencies [675570a]
  • @​simple-git/argv-parser@​1.1.0
  • @​simple-git/args-pathspec@​1.0.3

3.35.2

Patch Changes

• 0cf9d8c: Improvements for mono-repo publishing pipeline
• Updated dependencies [0cf9d8c]
  • @​simple-git/args-pathspec@​1.0.2
  • @​simple-git/argv-parser@​1.0.3

3.35.1

Patch Changes

• 0de400e: Update monorepo version handling during publish
• Updated dependencies [0de400e]
  • @​simple-git/argv-parser@​1.0.2

3.35.0

Minor Changes

• 3d8708b: Updating publish config

Patch Changes

• Updated dependencies [3d8708b]
  • @​simple-git/args-pathspec@​1.0.1
  • @​simple-git/argv-parser@​1.0.1

3.34.0

... (truncated)

Commits

• 7dc1a53 Version Packages
• 76f5376 Merge pull request #1061 from Vinzent03/fix/buffer-import
• 89a2294 Environment Parsing (#1156)
• 1b91b76 fix: remove explicit node:buffer import
• e390685 Version Packages
• 3c9e4b8 Pin version of @​simple-git/args-pathspec
• 94ee21f Export pathspec types through simple-git for backward compatibility
• 6d7cb51 Version Packages
• 0de400e Switch to semver from workspace revisions
• 2264722 Version Packages
• Additional commits viewable in compare view

Updates yaml from 2.8.3 to 2.9.0

Release notes

Sourced from yaml's releases.

v2.9.0

The changes here are really only patches, but I'm releasing this as a minor version to note a small change to the documentation of parseDocument() and parseAllDocuments(): I've removed the claim that they'll "never throw".

It remains the case that practically all non-malicious inputs will be handled without emitting an error, but there is a decent chance that code paths remain where e.g. a RangeError due to call stack exhaustion can be triggered by malicious inputs. Up to now, I've considered these as security vulnerabilities, and in fact it's the only category of error for which yaml CVEs have been issued so far.

Starting from this release, I'll be considering such errors as bugs, but not vulnerabilities. I do welcome people and/or LLMs looking for them, but please report them as normal issues rather than suspected security vulnerabilities. This also applies to previously undiscovered bugs in earlier releases.

• fix: Avoid calling Array.prototype.push.apply() with large source array
• fix(lexer): Avoid recursive calls that may exhaust the call stack

v2.8.4

• Disable alias resolution with maxAliasCount:0 (#677)
• Handle invalid unicode escapes (e1a1a77)
• Apply minFractionDigits only to decimal strings (#676)

Commits

• ddb21b0 2.9.0
• 167365b docs: Clarify that not all errors can be avoided
• 6eca2a7 fix: Avoid calling Array.prototype.push.apply() with large source array
• 0543cd5 fix(lexer): Avoid recursive calls that may exhaust the call stack
• ccdf743 2.8.4
• f625789 fix: Disable alias resolution with maxAliasCount:0 (#677)
• e1a1a77 fix: Handle invalid unicode escapes
• a163ea0 style: Satify Prettier
• b2a5a6c fix: Apply minFractionDigits only to decimal strings (#676)
• 93c951b chore: Bump JSR version to v2.8.3 (#673)
• Additional commits viewable in compare view

Updates @nestjs/cli from 11.0.16 to 11.0.21

Release notes

Sourced from @​nestjs/cli's releases.

Release 11.0.21

• fix: revert #3315 due to #3390 (255a559c)

Release 11.0.20

• fix: revert #3313 due to #3391 and #3390 (705bb7da)
• chore(deps): update swc monorepo (8496c768)
• fix(assets-manager): return promise from close watchers (2181947d)
• fix(swc): fix inverted chokidar ignored filter in watch mode (a3890cba)
• fix: add type annotations to caught errors (c46ddd71)

Release 11.0.19

What's Changed

• fix(types): correct Asset type definition from string literal to string union by @​yogeshwaran-c in nestjs/nest-cli#3323
• fix(generate): use selected project name for specFileSuffix lookup by @​yogeshwaran-c in nestjs/nest-cli#3325
• fix(info): add missing space in os version display by @​yogeshwaran-c in nestjs/nest-cli#3321
• fix(compiler): run tsconfig paths plugin before user plugins in tsc compiler by @​yogeshwaran-c in nestjs/nest-cli#3326
• fix(start): skip signal forwarding in watch mode by @​maruthang in nestjs/nest-cli#3338
• feat(compiler): resolve path aliases in declaration files by @​maruthang in nestjs/nest-cli#3344
• fix(deps): update angular-cli monorepo to v19.2.24 by @​renovate[bot] in nestjs/nest-cli#3337

Full Changelog: nestjs/nest-cli@11.0.18...11.0.19

11.0.18

What's Changed

• fix(build): delete tsbuildinfo file with out dir (#3312) by @​maruthang in nestjs/nest-cli#3317
• fix(swc): prevent double initialization in watch mode by @​maruthang in nestjs/nest-cli#3316
• fix(swc): respect root dir option for strip leading paths by @​maruthang in nestjs/nest-cli#3318
• fix(cli): error on unexpected extra positional arguments by @​maruthang in nestjs/nest-cli#3314
• fix(start): wait for async shutdown hooks before exiting by @​maruthang in nestjs/nest-cli#3313
• fix(assets): use ready event for watcher closing by @​maruthang in nestjs/nest-cli#3315
• fix: expand @​swc/cli peer range to include ^0.8.0 by @​wwenrr in nestjs/nest-cli#3309
• chore(deps): update dependency @​nestjs/schematics to v11.0.10 by @​renovate[bot] in nestjs/nest-cli#3300
• refactor(compiler): potential undefined access in getWebpackConfigPath by @​zendy199x in nestjs/nest-cli#3296
• fix(deps): update angular-cli monorepo to v19.2.23 by @​renovate[bot] in nestjs/nest-cli#3299

New Contributors

• @​maruthang made their first contribution in nestjs/nest-cli#3317
• @​wwenrr made their first contribution in nestjs/nest-cli#3309
• @​zendy199x made their first contribution in nestjs/nest-cli#3296

Full Changelog: nestjs/nest-cli@11.0.17...11.0.18

Release 11.0.17

What's Changed

• fix(deps): update angular-cli monorepo to v19.2.23 by @​renovate[bot] in nestjs/nest-cli#3274
• fix(deps): update dependency webpack to v5.105.4 by @​renovate[bot] in nestjs/nest-cli#3273
• fix(deps): update dependency glob to v13.0.6 by @​renovate[bot] in nestjs/nest-cli#3271

... (truncated)

Commits

• 07cdd40 chore(): release v11.0.21
• 255a559 fix: revert #3315 due to #3390
• cc0e745 chore(): release v11.0.20
• 705bb7d fix: revert #3313 due to #3391 and #3390
• 76a8e0d Merge pull request #3266 from nestjs/renovate/swc-monorepo
• 8496c76 chore(deps): update swc monorepo
• cf6d610 Merge pull request #3346 from yogeshwaran-c/fix/swc-watcher-ignored-filter
• fcdc934 Merge pull request #3347 from yogeshwaran-c/fix/assets-manager-close-watchers...
• 299d724 Merge pull request #3350 from yogeshwaran-c/test/remaining-flags
• dd78c4a Merge pull request #3372 from nestjs/renovate/prettier-3.x
• Additional commits viewable in compare view

Updates @nestjs/schematics from 11.0.9 to 11.1.0

Release notes

Sourced from @​nestjs/schematics's releases.

Release 11.1.0

What's Changed

• feat(schematics): add format option to run prettier before writing files by @​yogeshwaran-c in nestjs/schematics#2322

New Contributors

• @​yogeshwaran-c made their first contribution in nestjs/schematics#2322

Full Changelog: nestjs/schematics@11.0.10...11.1.0

11.0.10

What's Changed

• fix: add after each app.close() to e2e template by @​lrousseau-wanadev in nestjs/schematics#2313
• fix(deps): update dependency comment-json to v4.6.2 by @​renovate[bot] in nestjs/schematics#2245
• fix(deps): update angular-cli monorepo to v19.2.23 by @​renovate[bot] in nestjs/schematics#2211

New Contributors

• @​lrousseau-wanadev made their first contribution in nestjs/schematics#2313

Full Changelog: nestjs/schematics@11.0.9...11.0.10

Commits

• 7db4cdd chore(): release v11.1.0
• 765af5f Merge pull request #2327 from nestjs/renovate/release-it-20.x
• ca1d743 Merge pull request #2322 from yogeshwaran-c/feat/format-generated-files
• ba6ef1d Apply suggestion from @​kamilmysliwiec
• 70b7b84 Apply suggestion from @​kamilmysliwiec
• c6789af Apply suggestion from @​kamilmysliwiec
• c71b469 Apply suggestion from @​kamilmysliwiec
• d042e50 Apply suggestion from @​kamilmysliwiec
• e97e4e3 Apply suggestion from @​kamilmysliwiec
• 47f7ade Apply suggestion from @​kamilmysliwiec
• Additional commits viewable in compare view

Updates @nestjs/testing from 11.1.17 to 11.1.19

Release notes

Sourced from @​nestjs/testing's releases.

v11.1.19 (2026-04-13)

Bug fixes

• microservices
  • #16762 fix(microservices): use backing field for consumer CRASH event listener (@​burhanharoon)
  • #16764 fix(microservices): prevent stack overflow in jsonsocket.handledata() (@​kamilmysliwiec)

Committers: 2

• Burhan Haroon⚡ (@​burhanharoon)
• Kamil Mysliwiec (@​kamilmysliwiec)

v11.1.18 (2026-04-03)

Bug fixes

• microservices
  • #16675 fix(microservices): preserve packet headers in nats serializer (@​wwenrr)
• core
  • #16683 fix(core): prevent injector hang when design:paramtypes is missing (@​Youmoo)
  • #16637 fix(core): dependency injection edge case with moduleref.create (@​JakobStaudinger)
  • nestjs/nest#16686 fix(core): sanitize sse message

Dependencies

• core, platform-express, platform-fastify
  • #16679 fix(deps): update dependency path-to-regexp to v8.4.2 (@​renovate[bot])
• platform-fastify
  • #16623 fix(deps): update dependency fastify to v5.8.4 (@​renovate[bot])
• platform-ws
  • #16618 chore(deps): bump ws from 8.19.0 to 8.20.0 (@​dependabot[bot])
• common
  • #16619 chore(deps): bump file-type from 21.3.3 to 21.3.4 (@​dependabot[bot])

Committers: 6

• Ankit San (@​ankitbelal)
• Jakob Staudinger (@​JakobStaudinger)
• Kamil Mysliwiec (@​kamilmysliwiec)
• Krishna Chaitanya (@​Krishnachaitanyakc)
• MK (@​wwenrr)
• youmoo (@​Youmoo)

Commits

• 6730995 chore(release): publish v11.1.19 release
• 3c1cc5f chore(release): publish v11.1.18 release
• 5a05f52 chore: update readme
• See full diff in compare view

Updates @swc/cli from 0.8.0 to 0.8.1

Commits

• See full diff in compare view

Updates @swc/core from 1.15.21 to 1.15.33

Changelog

Sourced from @​swc/core's changelog.

[1.15.33] - 2026-05-02

Bug Fixes

• (ci) Update rand lockfile entries (#11827) (7988966)

• (es/minifier) Fold unary bool nullish coalescing (#11826) (e39ae3d)

• (es/minifier) Preserve for-init sequence order (#11837) (16a56d0)

• (es/parser) Parse empty Flow exact object type (#11836) (3d18a26)

Features

• Move swc ast explorer into workspace (#11831) (02a8f81)

[1.15.32] - 2026-04-27

Bug Fixes

• (es/flow) Fix Flow type-only modules in script transforms (#11817) (be38316)

• (es/flow) Avoid restoring module context when flow syntax is enabled (#11819) (3ed7243)

• (es/minifier) Preserve frozen spread registry keys (#11825) (347181c)

• (es/parser) Align Flow generic arrow JSX disambiguation (#11821) (28a7fad)

Features

• (es) Add jsc.preserveSymlinks to swc::Options (#11813) (fe38342)

[1.15.30] - 2026-04-19

Bug Fixes

... (truncated)

Commits

• 0165c94 chore: Publish 1.15.33 with swc_core v65.0.2
• 9ccecaf chore: Publish 1.15.33-nightly-20260502.1 with swc_core v65.0.2
• b815eb2 chore: Publish crates with swc_core v65.0.1
• 364a11c chore: Publish 1.15.32 with swc_core v65.0.0
• 7789132 chore: Publish 1.15.32-nightly-20260427.1 with swc_core v65.0.0
• cd5d7e8 chore: Publish 1.15.31-nightly-20260427.1 with swc_core v65.0.0
• 65bd999 chore: Publish crates with swc_core v65.0.0<...

  Description has been truncated