fix(deps): update all dependencies - patch updates

[svc-secops]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@apollo/client (source)	3.12.3 -> 3.12.6
@apollo/client-devtools-vscode	4.19.1 -> 4.19.4
@changesets/cli (source)	2.27.10 -> 2.27.11
@graphql-codegen/cli (source)	5.0.2 -> 5.0.3
@graphql-tools/schema (source)	10.0.13 -> 10.0.16
eslint-plugin-prettier	5.2.1 -> 5.2.2
glob	11.0.0 -> 11.0.1
graphql-http	1.22.1 -> 1.22.3
undici (source)	6.21.0 -> 6.21.1

---

Release Notes

apollographql/apollo-client (@​apollo/client)

v3.12.6

Compare Source

Patch Changes

• #​12267 d57429d Thanks @​jerelmiller! - Maintain the TData type when used with Unmasked when TData is not a masked type generated from GraphQL Codegen.

• #​12270 3601246 Thanks @​jerelmiller! - Fix handling of tagged/branded primitive types when used as scalar values with Unmasked.

v3.12.5

Compare Source

Patch Changes

• #​12252 cb9cd4e Thanks @​jerelmiller! - Changes the default behavior of the MaybeMasked type to preserve types unless otherwise specified. This change makes it easier to upgrade from older versions of the client where types could have unexpectedly changed in the application due to the default of trying to unwrap types into unmasked types. This change also fixes the compilation performance regression experienced when simply upgrading the client since types are now preserved by default.

  A new mode option has now been introduced to allow for the old behavior. See the next section on migrating if you wish to maintain the old default behavior after upgrading to this version.

Migrating from <= v3.12.4

If you've adopted data masking and have opted in to using masked types by setting the enabled property to true, you can remove this configuration entirely:

-declare module "@​apollo/client" {
-  interface DataMasking {
-    mode: "unmask"
-  }
-}

If you prefer to specify the behavior explicitly, change the property from enabled: true, to mode: "preserveTypes":

declare module "@​apollo/client" {
  interface DataMasking {
-    enabled: true
+    mode: "preserveTypes"
  }
}

If you rely on the default behavior in 3.12.4 or below and would like to continue to use unmasked types by default, set the mode to unmask:

declare module "@​apollo/client" {
  interface DataMasking {
    mode: "unmask";
  }
}

v3.12.4

Compare Source

Patch Changes

• #​12236 4334d30 Thanks @​charpeni! - Fix an issue with refetchQueries where comparing DocumentNodes internally by references could lead to an unknown query, even though the DocumentNode was indeed an active query—with a different reference.

apollographql/apollo-client-devtools (@​apollo/client-devtools-vscode)

v4.19.4

Compare Source

v4.19.3

Compare Source

v4.19.2

Compare Source

changesets/changesets (@​changesets/cli)

v2.27.11

Compare Source

Patch Changes

• Updated dependencies [f0270f6]:
  • @​changesets/config@​3.0.5
  • @​changesets/apply-release-plan@​7.0.7
  • @​changesets/get-release-plan@​4.0.6

dotansimha/graphql-code-generator (@​graphql-codegen/cli)

v5.0.3

Compare Source

Patch Changes

• #​10069 8bb34e7 Thanks @​renovate! - dependencies updates:

  • Updated dependency @whatwg-node/fetch@^0.9.20 ↗︎ (from ^0.8.0, in dependencies)
  • Updated dependency graphql-config@^5.1.1 ↗︎ (from ^5.0.2, in dependencies)

• e0092b5 Thanks @​ardatan! - Bump whatwg-node and graphql-config

• Updated dependencies [8471a18, 67e7556]:

  • @​graphql-codegen/client-preset@​4.4.0

ardatan/graphql-tools (@​graphql-tools/schema)

v10.0.16

Compare Source

Patch Changes

• Updated dependencies
  [53bb601,
  53bb601]:
  • @​graphql-tools/utils@​10.7.2
  • @​graphql-tools/merge@​9.0.17

v10.0.15

Compare Source

Patch Changes

• Updated dependencies
  [4912f19]:
  • @​graphql-tools/utils@​10.7.1
  • @​graphql-tools/merge@​9.0.16

v10.0.14

Compare Source

Patch Changes

• Updated dependencies
  [2c70d27]:
  • @​graphql-tools/utils@​10.7.0
  • @​graphql-tools/merge@​9.0.15

prettier/eslint-plugin-prettier (eslint-plugin-prettier)

v5.2.2

Compare Source

Patch Changes

• #​700 aa5b59f Thanks @​ntnyq! - fix: report node when loc not found

isaacs/node-glob (glob)

v11.0.1

Compare Source

graphql/graphql-http (graphql-http)

v1.22.3

Compare Source

Bug Fixes

• handler: Response options status and statusText are optional (38a0191), closes #​133

v1.22.2

Compare Source

Bug Fixes

• use/koa: Use the parsed request body rather than ctx.body (#​132) (9f8b1f1)

nodejs/undici (undici)

v6.21.1

Compare Source

⚠️ Security Release ⚠️

Fixes CVE CVE-2025-22150 /~https://github.com/nodejs/undici/security/advisories/GHSA-c76h-2ccp-4975 (embargoed until 22-01-2025).

What's Changed

• fix(#​3736): back-port 183f8e9 to v6.x by @​ggoodman in /~https://github.com/nodejs/undici/pull/3855
• fix(#​3817): send servername for SNI on TLS (#​3821) [backport] by @​metcoder95 in /~https://github.com/nodejs/undici/pull/3864
• fix: sending formdata bodies with http2 (#​3863) [backport] by @​metcoder95 in /~https://github.com/nodejs/undici/pull/3866
• [Backport v6.x] fix: Fixed the issue that there is no running request when http2 goaway by @​github-actions in /~https://github.com/nodejs/undici/pull/3877
• types: [backport] Update return type of RetryCallback (#​3851) by @​metcoder95 in /~https://github.com/nodejs/undici/pull/3876

Full Changelog: nodejs/undici@v6.21.0...v6.21.1

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - "after 8am and before 4pm on tuesday" in timezone America/Los_Angeles.

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

This PR has been generated by Renovate Bot.

[changeset-bot]

⚠️ No Changeset found

Latest commit: a195585

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[github-actions]

You can download the latest build of the extension for this PR here:
vscode-apollo-0.0.0-build-1737293204.pr-260.commit-6cd759b.zip.

To install the extension, download the file, unzip it and install it in VS Code by selecting "Install from VSIX..." in the Extensions view.

Alternatively, run

code --install-extension vscode-apollo-0.0.0-build-1737293204.pr-260.commit-6cd759b.vsix --force

from the command line.

For older builds, please see the edit history of this comment.