Bump fastify from 5.8.5 to 5.9.0 by dependabot[bot] · Pull Request #156 · uscreen/fastify-mongo-auth

dependabot · 2026-06-30T07:23:09Z

Bumps fastify from 5.8.5 to 5.9.0.

Release notes

v5.9.0

What's Changed

feat: add request.mediaType by @climba03003 in fastify/fastify#6653

docs: remove deprecated leveldb plugin and update ecosystem by @Tony133 in fastify/fastify#6661

chore(sponsor): add bestforandroid by @Eomm in fastify/fastify#6659

ci: drop Node.js 20 from yarn matrix in package-manager-ci.yml by @Tony133 in fastify/fastify#6662

fix: prevent duplicate res.end in sendTrailer with sync callbacks by @climba03003 in fastify/fastify#6676

fix: avoid duplicate closeIdleConnections call on native servers by @trivikr in fastify/fastify#6669

fix: error.code not present on some routing errors by @mcollina in fastify/fastify#6678

fix: correct isCustomSerializerCompiler flag check by @eddieran in fastify/fastify#6657

fix: validate invalid route logLevel at registration by @maxpetrusenko in fastify/fastify#6523

docs: update contribution rules by @Tony133 in fastify/fastify#6670

fix: use ContentType parser for response schema lookup by @UlisesGascon in fastify/fastify#6685

ci(ci): use shared quality workflow by @Fdawgs in fastify/fastify#6688

fix(types): allow request.getValidationFunction() to return undefined by @trivikr in fastify/fastify#6665

fix: do not trust forwarded host/proto when socket is missing by @mcollina in fastify/fastify#6684

perf: defer ContentType parsing in getSchemaSerializer until needed by @aquie00t in fastify/fastify#6692

perf: cache parsed ContentType objects in ContentTypeParser by @aquie00t in fastify/fastify#6694

perf: add typeof guard before toString.call in send and onSendEnd by @aquie00t in fastify/fastify#6693

chore: Bump pnpm/action-setup from 5.0.0 to 6.0.4 by @dependabot[bot] in fastify/fastify#6704

chore: Bump actions/github-script from 8 to 9 by @dependabot[bot] in fastify/fastify#6705

chore: Bump JustinBeckwith/linkinator-action from 2.4.0 to 2.4.2 by @dependabot[bot] in fastify/fastify#6706

docs: correct return503OnClosing comment in route.js by @mcollina in fastify/fastify#6712

fix: enable diagnostics tracking for async error handlers by @irzix in fastify/fastify#6458

fix: ignore duplicate trailer completions by @mcollina in fastify/fastify#6714

feat: add support of onMaxParamLength by @climba03003 in fastify/fastify#6716

chore: introduce TSTyche for type testing by @mrazauskas in fastify/fastify#6532

docs(reference): grammar and readability fixes by @Fdawgs in fastify/fastify#6710

chore: update depedabot setting by @climba03003 in fastify/fastify#6715

fix: include hint and docs URL in FSTWRN004 warning message by @aquie00t in fastify/fastify#6723

ci(ci): do not pass secrets to reusable workflow by @Fdawgs in fastify/fastify#6744

docs: add fastify-intlayer to ecosystem documentation by @aymericzip in fastify/fastify#6594

chore: Bump concurrently from 9.2.1 to 10.0.0 by @dependabot[bot] in fastify/fastify#6752

docs(Errors): fix incorrect usage of root fastify inside plugin scope by @Rpaudel379 in fastify/fastify#6731

ci: add node 26 to test matrices by @Fdawgs in fastify/fastify#6728

docs(Warnings): remove retired FSTWRN002 warning code by @leestana01 in fastify/fastify#6754

fix: chunk large HTTP/2 buffer replies by @mcollina in fastify/fastify#6746

chore: migrate type tests to TSTyche assertions (part one) by @mrazauskas in fastify/fastify#6726

chore: migrate type tests to TSTyche assertions (part two) by @mrazauskas in fastify/fastify#6727

docs: fix doubled braces in serializerCompiler signature by @DucMinhNe in fastify/fastify#6747

docs: remove HackerOne reporting link by @jhcpeixoto in fastify/fastify#6735

refactor(decorate): replace find with some in hasKey for correct boolean semantics by @aquie00t in fastify/fastify#6759

fix: replace AssertionError with FST_ERR_PLUGIN_DEPENDENCY_NOT_REGISTERED in checkDependencies by @aquie00t in fastify/fastify#6774

docs(ecosystem): add @inferdi/fastify by @maxrendel in fastify/fastify#6742

docs(typo): Write-Plugin.md by @zakirimadullahprogrammer-tech in fastify/fastify#6776

docs: fix duplicate anchor IDs causing broken TOC links by @AliMahmoudDev in fastify/fastify#6770

docs: add fastify-ata as a JSON Schema validator option by @mertcanaltin in fastify/fastify#6733

chore: rename type test files by @mrazauskas in fastify/fastify#6762

docs: update ajv-errors guidance by @Herrtian in fastify/fastify#6741

chore(warnings): correct duplicate 'not' typos in inline comments by @mixelburg in fastify/fastify#6713

... (truncated)

Commits

2e45a44 Bumped v5.9.0
630715d docs(types): mark request metadata accessors as untrusted input (#6572)
ff993e8 docs: update Serverless guide Dockerfile to a supported Node.js version (#6789)
458f104 docs: fix incorrect code examples in Hooks and Server reference (#6622)
ea454d0 docs: add warning about empty string coercion with nullable types (#6452)
121895b docs: migrate Zod type provider to official @fastify package (#6686)
cc8d9a3 fix: make hasRequestDecorator/hasReplyDecorator recognize constructor-assigne...
6e6be15 chore: Bump actions/checkout from 6 to 7 (#6812)
88bf134 chore: add new sponsor (#6813)
fabd964 chore: replace http with https in urls (#6809)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [fastify](https://github.com/fastify/fastify) from 5.8.5 to 5.9.0. - [Release notes](https://github.com/fastify/fastify/releases) - [Commits](fastify/fastify@v5.8.5...v5.9.0) --- updated-dependencies: - dependency-name: fastify dependency-version: 5.9.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 30, 2026

github-actions Bot approved these changes Jun 30, 2026

View reviewed changes

github-actions Bot merged commit 31618e3 into main Jun 30, 2026
6 checks passed

dependabot Bot deleted the dependabot/npm_and_yarn/main/fastify-5.9.0 branch June 30, 2026 07:24

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump fastify from 5.8.5 to 5.9.0#156

Bump fastify from 5.8.5 to 5.9.0#156
github-actions[bot] merged 1 commit into
mainfrom
dependabot/npm_and_yarn/main/fastify-5.9.0

dependabot Bot commented on behalf of github Jun 30, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Uh oh!

Conversation

dependabot Bot commented on behalf of github Jun 30, 2026

v5.9.0

What's Changed

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants