[npm] Bump the vre-panel-npm group across 1 directory with 8 updates

[dependabot]

Bumps the vre-panel-npm group with 8 updates in the /vre-panel directory:

Package	From	To
axios	1.7.9	1.8.4
keycloak-js	26.0.8	26.1.4
next	15.2.3	15.2.4
react-markdown	9.1.0	10.1.0
tailwindcss	3.4.17	4.0.17
use-subscription	1.10.0	1.11.0
@types/node	22.10.10	22.13.16
eslint-config-next	15.1.3	15.2.4

Updates axios from 1.7.9 to 1.8.4

Release notes

Sourced from axios's releases.

Release v1.8.4

Release notes:

Bug Fixes

• buildFullPath: handle allowAbsoluteUrls: false without baseURL (#6833) (f10c2e0)

Contributors to this release

• Marc Hassan

Release v1.8.3

Release notes:

Bug Fixes

• add missing type for allowAbsoluteUrls (#6818) (10fa70e)
• xhr/fetch: pass allowAbsoluteUrls to buildFullPath in xhr and fetch adapters (#6814) (ec159e5)

Contributors to this release

• Ashcon Partovi
• StefanBRas
• Marc Hassan

Release v1.8.2

Release notes:

Bug Fixes

• http-adapter: add allowAbsoluteUrls to path building (#6810) (fb8eec2)

Contributors to this release

• Fasoro-Joseph Alexander

Release v1.8.1

Release notes:

Bug Fixes

• utils: move generateString to platform utils to avoid importing crypto module into client builds; (#6789) (36a5a62)

Contributors to this release

• Dmitriy Mozgovoy

Release v1.8.0

Release notes:

Bug Fixes

• examples: application crashed when navigating examples in browser (#5938) (1260ded)
• missing word in SUPPORT_QUESTION.yml (#6757) (1f890b1)
• utils: replace getRandomValues with crypto module (#6788) (23a25af)

... (truncated)

Changelog

Sourced from axios's changelog.

1.8.4 (2025-03-19)

Bug Fixes

• buildFullPath: handle allowAbsoluteUrls: false without baseURL (#6833) (f10c2e0)

Contributors to this release

• Marc Hassan

1.8.3 (2025-03-10)

Bug Fixes

• add missing type for allowAbsoluteUrls (#6818) (10fa70e)
• xhr/fetch: pass allowAbsoluteUrls to buildFullPath in xhr and fetch adapters (#6814) (ec159e5)

Contributors to this release

• Ashcon Partovi
• StefanBRas
• Marc Hassan

1.8.2 (2025-03-07)

Bug Fixes

• http-adapter: add allowAbsoluteUrls to path building (#6810) (fb8eec2)

Contributors to this release

• Fasoro-Joseph Alexander

1.8.1 (2025-02-26)

Bug Fixes

• utils: move generateString to platform utils to avoid importing crypto module into client builds; (#6789) (36a5a62)

Contributors to this release

• Dmitriy Mozgovoy

1.8.0 (2025-02-25)

... (truncated)

Commits

• 9f6f97b chore(release): v1.8.4 (#6844)
• f10c2e0 fix(buildFullPath): handle allowAbsoluteUrls: false without baseURL (#6833)
• 1e6632c chore(deps): bump tj-actions/changed-files in the github-actions group (#6838)
• 39ec206 chore(release): v1.8.3 (#6819)
• 10fa70e fix: add missing type for allowAbsoluteUrls (#6818)
• 7821ef9 docs: update readme to include bun install (#6811)
• ec159e5 fix(xhr/fetch): pass allowAbsoluteUrls to buildFullPath in xhr and `fet...
• a9f7689 chore(release): v1.8.2 (#6812)
• fb8eec2 fix(http-adapter): add allowAbsoluteUrls to path building (#6810)
• 9812045 chore(sponsor): update sponsor block (#6804)
• Additional commits viewable in compare view

Updates keycloak-js from 26.0.8 to 26.1.4

Release notes

Sourced from keycloak-js's releases.

26.1.4

26.1.3

... (truncated)

Commits

• b281b5f Set version to 26.1.4
• c2c1232 removed automatic refresh and added refresh to empty state (#37828) (#38037)
• afe6147 removed fallback to attribute name on placeholder (#38005) (#38034)
• bdc7a64 changed default value so first one is selected by default (#38040) (#38046)
• c2c3032 Fixing incorrectly cached role after update/rename
• d573b40 fix: ensure the https truststore type transforms correctly (#37971) (#38022)
• 8f37774 fix: Admin events: resource type filter does not work (#37942)
• 3fce7ad Allow a token to be revoked twice
• 5a9d130 Upgrade to Infinispan 15.0.14 (#37713)
• 5cbd41a Upgrade to Quarkus 3.15.3.1
• Additional commits viewable in compare view

Updates next from 15.2.3 to 15.2.4

Release notes

Sourced from next's releases.

v15.2.4

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• Match subrequest handling for edge and node (#77474)
• exclude images and static media from dev origin check (#77417)
• ensure /__next middleware URLs are included in the origin check (#77416)
• remove direct ip/port bypass in dev origin check (#77414)
• switch development origin verification to be opt-in rather than opt-out (#77395)

Credits

Huge thanks to @​ijjk and @​ztanner for helping!

Commits

• 804aa35 v15.2.4
• ecb72ee Match subrequest handling for edge and node (#77474)
• 25f810b exclude images and static media from dev origin check (#77417)
• d9bcb83 ensure /__next middleware URLs are included in the origin check (#77416)
• cfeaa86 remove direct ip/port bypass in dev origin check (#77414)
• f847302 switch development origin verification to be opt-in rather than opt-out (#77395)
• See full diff in compare view

Updates react-markdown from 9.1.0 to 10.1.0

Release notes

Sourced from react-markdown's releases.

10.1.0

Add

• 939c667 Add fallback prop to MarkdownHooks by @​remcohaszing in remarkjs/react-markdown#897

Fix

• a40ae2e Fix race condition in MarkdownHooks by @​remcohaszing in remarkjs/react-markdown#896

Full Changelog: remarkjs/react-markdown@10.0.1...10.1.0

10.0.1

• 7c17ede Fix TypeScript performance around components by @​remcohaszing in remarkjs/react-markdown#893

Full Changelog: remarkjs/react-markdown@10.0.0...10.0.1

10.0.0

• aaaa40b Remove support for className prop see “Remove className”

Full Changelog: remarkjs/react-markdown@9.1.0...10.0.0

Changelog

Sourced from react-markdown's changelog.

Changelog

All notable changes will be documented in this file.

10.0.0 - 2025-02-20

• aaaa40b Remove support for className prop migrate: see “Remove className” below

Remove className

The className prop was removed. If you want to add classes to some element that wraps the markdown you can explicitly write that element and add the class to it. You can then choose yourself which tag name to use and whether to add other props.

Before:

<Markdown className="markdown-body">{markdown}</Markdown>

After:

<div className="markdown-body">
  <Markdown>{markdown}</Markdown>
</div>

Commits

• 44d2e4a 10.1.0
• f2369cd Refactor docs
• 26fdfe0 Update docs
• 544bff6 Refactor code-style
• 939c667 Add fallback prop to MarkdownHooks
• a40ae2e Fix race condition in MarkdownHooks
• ad7f37f Add lifecycle tests for MarkdownHooks
• 2792c32 10.0.1
• 7c17ede Fix performance around components
• 21b47b9 Remove local use of JSX
• Additional commits viewable in compare view

Updates tailwindcss from 3.4.17 to 4.0.17

Release notes

Sourced from tailwindcss's releases.

v4.0.17

Fixed

• Fix an issue causing the CLI to hang when processing Ruby files (#17383)

v4.0.16

Added

• Add support for literal values in --value('…') and --modifier('…') (#17304)

Fixed

• Fix class extraction followed by ( in Pug (#17320)
• Ensure @keyframes for theme animations are emitted if they are referenced following a comma (#17352)
• Vite: Ensure that updates to an imported CSS file are properly propagated after updating source files (#17347)
• Pre process Slim templates embedded in Ruby files (#17336)
• Error when input and output files resolve to the same file when using the CLI (#17311)
• Add missing suggestions when --spacing(--value(integer, number)) is used (#17308)
• Add ::-webkit-details-marker pseudo to marker variant (#17362)

v4.0.15

Fixed

• Fix incorrect angle in -bg-conic-* utilities (#17174)
• Fix border-[12px_4px] being interpreted as a border-color instead of a border-width (#17248)
• Work around a crash in Safari 16.4 and 16.5 when using the default Preflight styles (#17306)
• Pre-process \<template lang="…"> in Vue files (#17252)
• Ensure that all CSS variables used by Preflight are prefixed (#17036)
• Prevent segfault when loaded in a worker thread on Linux (#17276)
• Ensure multiple --value(…) or --modifier(…) calls don't delete subsequent declarations (#17273)
• Fix class extraction followed by ( in Slim (#17278)
• Export PluginUtils from tailwindcss/plugin for compatibility with v3 (#17299)
• Remove redundant line-height: initial from Preflight (#15212)
• Increase Standalone hardware compatibility on macOS x64 builds (#17267)
• Ensure that the CSS file rebuilds if a new CSS variable is used from templates (#17301)

Changed

• The --theme(…) function now returns CSS variables from your theme variables unless used inside positions where CSS variables are invalid (e.g. inside @media queries) (#17036)

v4.0.14

Fixed

• Do not extract candidates with JS string interpolation ${ (#17142)
• Fix extraction of variants containing . character (#17153)
• Fix extracting candidates in Clojure/ClojureScript (#17087)

v4.0.13

Fixed

... (truncated)

Changelog

Sourced from tailwindcss's changelog.

[4.0.17] - 2025-03-26

Fixed

• Fix an issue causing the CLI to hang when processing Ruby files (#17383)

[4.0.16] - 2025-03-25

Added

• Add support for literal values in --value('…') and --modifier('…') (#17304)

Fixed

• Fix class extraction followed by ( in Pug (#17320)
• Ensure @keyframes for theme animations are emitted if they are referenced following a comma (#17352)
• Vite: Ensure that updates to an imported CSS file are properly propagated after updating source files (#17347)
• Pre process Slim templates embedded in Ruby files (#17336)
• Error when input and output files resolve to the same file when using the CLI (#17311)
• Add missing suggestions when --spacing(--value(integer, number)) is used (#17308)
• Add ::-webkit-details-marker pseudo to marker variant (#17362)

[4.0.15] - 2025-03-20

Fixed

• Fix incorrect angle in -bg-conic-* utilities (#17174)
• Fix border-[12px_4px] being interpreted as a border-color instead of a border-width (#17248)
• Work around a crash in Safari 16.4 and 16.5 when using the default Preflight styles (#17306)
• Pre-process \<template lang="…"> in Vue files (#17252)
• Ensure that all CSS variables used by Preflight are prefixed (#17036)
• Prevent segfault when loaded in a worker thread on Linux (#17276)
• Ensure multiple --value(…) or --modifier(…) calls don't delete subsequent declarations (#17273)
• Fix class extraction followed by ( in Slim (#17278)
• Export PluginUtils from tailwindcss/plugin for compatibility with v3 (#17299)
• Remove redundant line-height: initial from Preflight (#15212)
• Increase Standalone hardware compatibility on macOS x64 builds (#17267)
• Ensure that the CSS file rebuilds if a new CSS variable is used from templates (#17301)

Changed

• The --theme(…) function now returns CSS variables from your theme variables unless used inside positions where CSS variables are invalid (e.g. inside @media queries) (#17036)

[4.0.14] - 2025-03-13

Fixed

• Do not extract candidates with JS string interpolation ${ (#17142)
• Fix extraction of variants containing . character (#17153)
• Fix extracting candidates in Clojure/ClojureScript (#17087)

... (truncated)

Commits

• 6b1c650 Prepare v4.0.17 release
• 1c50b5c Prepare v4.0.16 release (#17372)
• bd501e8 Add ::-webkit-details-marker pseudo to marker variant (#17362)
• e8715d0 Extract keyframe name when followed by comma (#17352)
• 91c0d56 Revert "Temporarily revert changes to `@utility"
• 1aab04c Temporarily revert changes to `@utility
• 250c843 Add suggestions when --spacing(--value(integer, number)) is used (#17308)
• a3316f2 Add support for literal values in --value('…') and --modifier('…') (#17304)
• 4c57d9f Prepare v4.0.15 release (#17302)
• 40a76e3 Revert "Don't use color-mix(…) on currentColor (#17247)" and work around ...
• Additional commits viewable in compare view

Updates use-subscription from 1.10.0 to 1.11.0

Commits

• See full diff in compare view

Updates @types/node from 22.10.10 to 22.13.16

Commits

• See full diff in compare view

Updates eslint-config-next from 15.1.3 to 15.2.4

Release notes

Sourced from eslint-config-next's releases.

v15.2.4

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• Match subrequest handling for edge and node (#77474)
• exclude images and static media from dev origin check (#77417)
• ensure /__next middleware URLs are included in the origin check (#77416)
• remove direct ip/port bypass in dev origin check (#77414)
• switch development origin verification to be opt-in rather than opt-out (#77395)

Credits

Huge thanks to @​ijjk and @​ztanner for helping!

v15.2.3

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary. This release contains a security patch for CVE-2025-29927.

Core Changes

• Update default allowed origins list (#77212)
• unify allowed origin detection handling (#77053)
• Add dev warning for cross-origin and stabilize allowedDevOrigins (#77044)
• Ensure deploymentId is used for CSS preloads (#77210)
• Update middleware request header (#77201)
• [metadata] remove the default segement check for metadata rendering (#77119)
• [ts-hint] fix vscode type hint plugin enabling (#77099)
• [metadata] re-insert icons to head for streamed metadata (#76915)

Credits

Huge thanks to @​ijjk, @​ztanner, and @​huozhi for helping!

v15.2.2

Core Changes

• [dev-overlay] fix styling on overflow error messages, add button hover state: #76771
• Fix: respond 405 status code on OPTIONS request to SSG page: #76767
• [dev-overlay] Always show relative paths: #76742
• [metadata] remove the duplicate metadata in the error boundary: #76791
• Upgrade React from d55cc79b-20250228 to 443b7ff2-20250303: #76804
• [dev-overlay] Ignore animations on page load: #76834
• fix: remove useless set-cookie in action-handler: #76839
• Turbopack: handle task cancelation: #76831
• Upgrade React from 443b7ff2-20250303 to e03ac20f-20250305: #76842

... (truncated)

Commits

• 804aa35 v15.2.4
• 535e26d v15.2.3
• f455282 v15.2.2
• 38cf78e v15.2.2-canary.6
• bdb9cb4 v15.2.2-canary.5
• aa55567 v15.2.2-canary.4
• 15741c5 v15.2.2-canary.3
• 910b07b v15.2.2-canary.2
• 3355371 v15.2.2-canary.1
• f609222 v15.2.2-canary.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions