Skip to content

build(deps-dev): Bump vercel from 54.11.0 to 54.13.0#3660

Merged
KATO-Hiro merged 1 commit into
stagingfrom
dependabot/npm_and_yarn/vercel-54.13.0
Jun 13, 2026
Merged

build(deps-dev): Bump vercel from 54.11.0 to 54.13.0#3660
KATO-Hiro merged 1 commit into
stagingfrom
dependabot/npm_and_yarn/vercel-54.13.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 13, 2026

Copy link
Copy Markdown
Contributor

Bumps vercel from 54.11.0 to 54.13.0.

Release notes

Sourced from vercel's releases.

vercel@54.13.0

Minor Changes

  • 128ad88: Add --category / -c filter to vercel integration discover and a new vercel integration categories subcommand. The filter scopes marketplace integrations to a single category (e.g. storage, ai, monitoring) — filtering happens server-side. The new categories subcommand lists the valid slugs (Slug | Title table or --json for scripts/agents).

Patch Changes

  • Updated dependencies [c453e66]
    • @​vercel/backends@​0.8.14
    • @​vercel/static-build@​2.10.3
    • @​vercel/express@​0.1.105

vercel@54.12.2

Patch Changes

  • Updated dependencies [4421ad9]
    • @​vercel/backends@​0.8.13
    • @​vercel/static-build@​2.10.3
    • @​vercel/express@​0.1.104

vercel@54.12.1

Patch Changes

  • 800286e: vercel connect create --data now accepts @<path> to read the JSON from a file and @- to read it from stdin, so non-managed connector credentials (e.g. client secrets) no longer have to be passed inline where they leak into shell history and process listings. Inline --data still works but now warns when it looks like it contains a secret.
  • 800286e: Strip ANSI escape sequences from team-controlled connector names, UIDs, and project names in all vercel connect command output (attach, detach, remove, revoke-tokens, and the list table's type/projects cells), not just the list UID/name cells. Prevents terminal escape injection from maliciously-named connectors visible across a team.
  • 1e64d1f: Added vc api --spec-url <url> for loading endpoints from a custom OpenAPI spec instead of the default public Vercel spec. Custom specs are fetched fresh, can use the current CLI token to pass Vercel deployment protection via the SSO handshake, and replace the public spec entirely for listing, interactive selection, and tag/operation resolution.
  • Updated dependencies [52f005f]
  • Updated dependencies [2d2aad9]
  • Updated dependencies [01e18e8]
    • @​vercel/backends@​0.8.12
    • @​vercel/build-utils@​13.30.0
    • @​vercel/next@​4.19.0
    • @​vercel/elysia@​0.1.93
    • @​vercel/express@​0.1.103
    • @​vercel/fastify@​0.1.96
    • @​vercel/go@​3.9.0
    • @​vercel/h3@​0.1.102
    • @​vercel/hono@​0.2.96
    • @​vercel/hydrogen@​1.4.0
    • @​vercel/koa@​0.1.76
    • @​vercel/nestjs@​0.2.97
    • @​vercel/node@​5.8.17
    • @​vercel/python@​6.44.1
    • @​vercel/redwood@​2.5.0
    • @​vercel/remix-builder@​5.9.1
    • @​vercel/ruby@​2.4.0
    • @​vercel/rust@​1.3.0
    • @​vercel/static-build@​2.10.3

vercel@54.12.0

... (truncated)

Changelog

Sourced from vercel's changelog.

54.13.0

Minor Changes

  • 128ad88: Add --category / -c filter to vercel integration discover and a new vercel integration categories subcommand. The filter scopes marketplace integrations to a single category (e.g. storage, ai, monitoring) — filtering happens server-side. The new categories subcommand lists the valid slugs (Slug | Title table or --json for scripts/agents).

Patch Changes

  • Updated dependencies [c453e66]
    • @​vercel/backends@​0.8.14
    • @​vercel/static-build@​2.10.3
    • @​vercel/express@​0.1.105

54.12.2

Patch Changes

  • Updated dependencies [4421ad9]
    • @​vercel/backends@​0.8.13
    • @​vercel/static-build@​2.10.3
    • @​vercel/express@​0.1.104

54.12.1

Patch Changes

  • 800286e: vercel connect create --data now accepts @<path> to read the JSON from a file and @- to read it from stdin, so non-managed connector credentials (e.g. client secrets) no longer have to be passed inline where they leak into shell history and process listings. Inline --data still works but now warns when it looks like it contains a secret.
  • 800286e: Strip ANSI escape sequences from team-controlled connector names, UIDs, and project names in all vercel connect command output (attach, detach, remove, revoke-tokens, and the list table's type/projects cells), not just the list UID/name cells. Prevents terminal escape injection from maliciously-named connectors visible across a team.
  • 1e64d1f: Added vc api --spec-url <url> for loading endpoints from a custom OpenAPI spec instead of the default public Vercel spec. Custom specs are fetched fresh, can use the current CLI token to pass Vercel deployment protection via the SSO handshake, and replace the public spec entirely for listing, interactive selection, and tag/operation resolution.
  • Updated dependencies [52f005f]
  • Updated dependencies [2d2aad9]
  • Updated dependencies [01e18e8]
    • @​vercel/backends@​0.8.12
    • @​vercel/build-utils@​13.30.0
    • @​vercel/next@​4.19.0
    • @​vercel/elysia@​0.1.93
    • @​vercel/express@​0.1.103
    • @​vercel/fastify@​0.1.96
    • @​vercel/go@​3.9.0
    • @​vercel/h3@​0.1.102
    • @​vercel/hono@​0.2.96
    • @​vercel/hydrogen@​1.4.0
    • @​vercel/koa@​0.1.76
    • @​vercel/nestjs@​0.2.97
    • @​vercel/node@​5.8.17
    • @​vercel/python@​6.44.1
    • @​vercel/redwood@​2.5.0
    • @​vercel/remix-builder@​5.9.1
    • @​vercel/ruby@​2.4.0
    • @​vercel/rust@​1.3.0

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps-dev): Bump vercel from 54.11.0 to 54.13.0
05247e1 
Bumps [vercel](https://github.com/vercel/vercel/tree/HEAD/packages/cli) from 54.11.0 to 54.13.0.
- [Release notes](https://github.com/vercel/vercel/releases)
- [Changelog](https://github.com/vercel/vercel/blob/main/packages/cli/CHANGELOG.md)
- [Commits](https://github.com/vercel/vercel/commits/vercel@54.13.0/packages/cli)

---
updated-dependencies:
- dependency-name: vercel
  dependency-version: 54.13.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 13, 2026
@KATO-Hiro KATO-Hiro merged commit c3708a5 into staging Jun 13, 2026
3 checks passed
@KATO-Hiro KATO-Hiro deleted the dependabot/npm_and_yarn/vercel-54.13.0 branch June 13, 2026 23:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@KATO-Hiro