chore(deps): update dependency gatsby to v5

[ibm-mend-app]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
gatsby (source, changelog)	^4.25.7 -> ^5.0.0

By merging this PR, the issue #202 will be automatically resolved and closed:

Severity	CVSS Score	Vulnerability
High	8.7	CVE-2025-7783
High	7.5	CVE-2024-37890
High	7.5	CVE-2024-45296
High	7.5	CVE-2024-45590
High	7.5	CVE-2024-52798
High	7.5	CVE-2025-27152
High	7.5	CVE-2025-47935
High	7.5	CVE-2025-47944
High	7.5	CVE-2025-48997
High	7.5	CVE-2025-58754
High	7.4	CVE-2024-29180
High	7.3	CVE-2024-38355
Medium	6.5	CVE-2023-31125
Medium	6.5	CVE-2023-45857
Medium	5.3	CVE-2022-25883
Medium	5.3	CVE-2024-4067
Medium	5.0	CVE-2024-43796
Medium	5.0	CVE-2024-43799
Medium	5.0	CVE-2024-43800
Medium	4.3	CVE-2024-55565
Low	3.4	CVE-2025-7339
Low	3.1	CVE-2025-5889

---

Release Notes

gatsbyjs/gatsby (gatsby)

v5.14.4

Compare Source

2025-06-06

What's Changed

• fix(deps): upgrade multer to resolve 3 security vulnerabilities (#​39307) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/39308

Full Changelog: https://github.com/gatsbyjs/gatsby/compare/gatsby@5.14.3...gatsby@5.14.4

v5.14.3

Compare Source

2025-04-09

What's Changed

• fix: Align types of rootNodeMap during root node tracking (#​39262) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/39270

Full Changelog: https://github.com/gatsbyjs/gatsby/compare/gatsby@5.14.2...gatsby@5.14.3

v5.14.2

Compare Source

2025-04-07

What's Changed

• fix: pin isNonNullType is not defined with webpack>=5.99.0 (#​39264) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/39265

Full Changelog: https://github.com/gatsbyjs/gatsby/compare/gatsby@5.14.1...gatsby@5.14.2

v5.14.1

Compare Source

v5.14.0: v5.14.0

Compare Source

This release focused on performance improvements and security fixes.

What's Changed

• minor docs improvements: https://github.com/gatsbyjs/gatsby/pull/38816, https://github.com/gatsbyjs/gatsby/pull/39052, https://github.com/gatsbyjs/gatsby/pull/39133, https://github.com/gatsbyjs/gatsby/pull/39060
• security fixes:
  • bump gh-pages: https://github.com/gatsbyjs/gatsby/pull/39089
  • bump underscore: https://github.com/gatsbyjs/gatsby/pull/39092
  • bump thenify: https://github.com/gatsbyjs/gatsby/pull/39095
  • bump axios: https://github.com/gatsbyjs/gatsby/pull/39101 https://github.com/gatsbyjs/gatsby/pull/39118
  • bump ejs: https://github.com/gatsbyjs/gatsby/pull/39093
  • bump set-getter: https://github.com/gatsbyjs/gatsby/pull/39091
  • bump express: https://github.com/gatsbyjs/gatsby/pull/39099
  • bump express: https://github.com/gatsbyjs/gatsby/pull/39098
  • bump css-what: https://github.com/gatsbyjs/gatsby/pull/39107
  • bump rollup: https://github.com/gatsbyjs/gatsby/pull/39112 https://github.com/gatsbyjs/gatsby/pull/39115
  • bump body-parser: https://github.com/gatsbyjs/gatsby/pull/39097 https://github.com/gatsbyjs/gatsby/pull/39132
  • bump webpack-dev-middleware: https://github.com/gatsbyjs/gatsby/pull/39106
  • bump path-to-regexp: https://github.com/gatsbyjs/gatsby/pull/39096
• [gatsby, create-gatsby, gatsby-cli, gatsby-dev-cli, gatsby-plugin-gatsby-cloud, gatsby-plugin-page-creator] perf: disable telemetry reporting https://github.com/gatsbyjs/gatsby/pull/39137

See full release notes

v5.13.7: v5.13.7

Compare Source

2024-07-12

What's Changed

• fix(gatsby-adapter-netlify): support monorepos (#​39005) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/39037

See full release notes: https://github.com/gatsbyjs/gatsby/pull/39046

v5.13.6: v5.13.6

Compare Source

2024-05-29

What's Changed

• perf(gatsby-adapter-netlify): improve adapt() performance (#​38988) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38991

See full release notes: https://github.com/gatsbyjs/gatsby/pull/39004

v5.13.5: v5.13.5

Compare Source

2024-05-17

What's Changed

• chore: pin @​vercel/webpack-asset-relocator-loader (#​38981) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38982
• feat: allow dsg/ssr renders without access to datastore if it's not required (#​38974) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38979

See full release notes: https://github.com/gatsbyjs/gatsby/pull/38984

v5.13.4: v5.13.4

Compare Source

2024-04-10

What's Changed

• fix(gatsby-source-wordpress): only diff wpgraphql schema if the user opts in (#​38856) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38860
• chore(gatsby-source-wordpress): upgrade file-type (#​38861) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38863
• fix(gatsby-adapter-netlify): handler generation on windows (#​38900) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38929

See full release notes: https://github.com/gatsbyjs/gatsby/pull/38969

v5.13.3: v5.13.3

Compare Source

2024-01-24

What's Changed

• perf: use must-revalidate cache-control header as common and only create header routes for routes with different cache-control (#​38820) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38824
• fix: add missing fs method rewrites to handle fetchRemoteFile in dsg/ssr engine (#​38822) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38823

See full release notes: https://github.com/gatsbyjs/gatsby/pull/38834

v5.13.2: v5.13.2

Compare Source

2024-01-23

What's Changed

• fix(gatsby): more robust adapter zero-conf handling (#​38778) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38800
• fix(gatsby): try to automatically recover when parcel segfaults (#​38773) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38799
• fix(gatsby): fix webpack compilation when pnpm is used (#​38757) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38804
• chore: swap babel-plugin-lodash with updated version that doesn't use deprecated APIs (#​38797) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38803
• fix(gatsby): support builtin modules prefixed with node: on build-html (#​38516) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38818

See full release notes: https://github.com/gatsbyjs/gatsby/pull/38821

v5.13.1: v5.13.1

Compare Source

2013-12-22

What's Changed

• fix(docs): update remote url docs (#​38768) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38770
• chore(gatsby-cli,gatsby-source-wordpress): bump clipboardy (#​38775) by @​gatsbybot in https://github.com/gatsbyjs/gatsby/pull/38776

See full release notes: https://github.com/gatsbyjs/gatsby/pull/38796.

v5.13.0: v5.13.0

Compare Source

Welcome to gatsby@5.13.0 release (December 2023 #1)

Key highlight of this release:

• Custom Image and File CDN URL generators

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

v5.12.12

Compare Source

v5.12.11

Compare Source

v5.12.10

Compare Source

v5.12.9

Compare Source

v5.12.8

Compare Source

v5.12.7

Compare Source

v5.12.6

Compare Source

v5.12.5

Compare Source

v5.12.4

Compare Source

v5.12.3

Compare Source

v5.12.2

Compare Source

v5.12.1

Compare Source

v5.12.0: v5.12.0

Compare Source

Welcome to gatsby@5.12.0 release (August 2023 #1)

Key highlight of this release:

• Adapters

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

v5.11.0: v5.11.0

Compare Source

Welcome to gatsby@5.11.0 release (June 2023 #1)

Key highlights of this release:

• RFC: Adapters
• gatsby-source-wordpress: Support for multiple instances

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v5.10.0: v5.10.0

Compare Source

Welcome to gatsby@5.10.0 release (May 2023 #1)

This release focused on bug fixes and perf improvements. Check out notable bugfixes and improvements.

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v5.9.1

Compare Source

v5.9.0: v5.9.0

Compare Source

Welcome to gatsby@5.9.0 release (April 2023 #1)

Key highlights of this release:

• Performance improvements
• New "Creating a Source Plugin" tutorial

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v5.8.1

Compare Source

v5.8.0

Compare Source

v5.7.0: v5.7.0

Compare Source

Welcome to gatsby@5.7.0 release (February 2023 #2)

This release focused on bug fixes and perf improvements. Check out notable bugfixes and improvements.

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v5.6.1

Compare Source

v5.6.0: v5.6.0

Compare Source

Welcome to gatsby@5.6.0 release (February 2023 #1)

Key highlights of this release:

• Gatsby is joining Netlify
• Head API supports context providers from wrapRootElement

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v5.5.0: v5.5.0

Compare Source

Welcome to gatsby@5.5.0 release (January 2023 #2)

Key highlights of this release:

• Faster Hashing for gatsby-source-filesytem
• Setting <html> and <body> attributes

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v5.4.2

Compare Source

v5.4.1

Compare Source

v5.4.0: v5.4.0

Compare Source

Welcome to gatsby@5.4.0 release (January 2023 #1)

The whole team took time off for a much deserved winter break and we hope you had relaxing holidays, too! Before the break we spent time doing maintenance work such as updating internal dependencies or fixing some smaller bugs here and there. In case you missed it, we shipped ES Modules (ESM) in Gatsby files in the last release.

So check out the notable bugfixes section to learn more.

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v5.3.3

Compare Source

v5.3.2

Compare Source

v5.3.1

Compare Source

v5.3.0: v5.3.0

Compare Source

Welcome to gatsby@5.3.0 release (December 2022 #​1)

Key highlights of this release:

• ES Modules (ESM) in Gatsby files
• Improved error messages

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v5.2.0: v5.2.0

Compare Source

Welcome to gatsby@5.2.0 release (November 2022 #3)

This is an out of band release due to the removal of the Potrace library in Gatsby. We'll continue with our biweekly schedule as normal.

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

v5.1.0: v5.1.0

Compare Source

Welcome to gatsby@5.1.0 release (November 2022 #2)

This is the first minor release after the recent major release of Gatsby 5! We are focused on your feedback and implementing fixes as needed.

If you haven’t migrated yet, please refer to the migration guide. We’ve done our best to make the transition smooth!

Some brief notes about what Gatsby 5 brings to the table:

• Slices API unlocks up to 90% reduction in build duration for content changes in highly shared components
• Partial Hydration allows you to ship only the necessary JavaScript to the browser

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

v5.0.1

Compare Source

v5.0.0: v5.0.0

Compare Source

Welcome to gatsby@5.0.0 release (November 2022 #1)

Key highlights of this release:

• Slice API - Only re-build individual slices of your page
• Partial Hydration (Beta) - Improve frontend performance by shipping less JavaScript
• GraphiQL v2 - An all new UI with features like dark mode, tabs, and persisted state
• Performance Improvements

Major dependency updates:

• Node 18
• React 18

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

v4.25.9

Compare Source

v4.25.8

Compare Source

---

• If you want to rebase/retry this PR, check this box

[ibm-mend-app]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json

npm error code ERESOLVE
npm error ERESOLVE unable to resolve dependency tree
npm error
npm error While resolving: example@1.20.0
npm error Found: react@17.0.2
npm error node_modules/react
npm error   react@"^17.0.2" from the root project
npm error
npm error Could not resolve dependency:
npm error peer react@"^18.0.0 || ^0.0.0" from gatsby@5.15.0
npm error node_modules/gatsby
npm error   gatsby@"^5.0.0" from the root project
npm error
npm error Fix the upstream dependency conflict, or retry
npm error this command with --force or --legacy-peer-deps
npm error to accept an incorrect (and potentially broken) dependency resolution.
npm error
npm error
npm error For a full report see:
npm error /tmp/renovate/cache/others/npm/_logs/2025-09-18T07_57_55_312Z-eresolve-report.txt
npm error A complete log of this run can be found in: /tmp/renovate/cache/others/npm/_logs/2025-09-18T07_57_55_312Z-debug-0.log