Skip to content

Bump typescript from 5.9.3 to 6.0.3#5

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/typescript-6.0.3
Closed

Bump typescript from 5.9.3 to 6.0.3#5
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/typescript-6.0.3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 22, 2026

Copy link
Copy Markdown
Contributor

Bumps typescript from 5.9.3 to 6.0.3.

Release notes

Sourced from typescript's releases.

TypeScript 6.0.3

For release notes, check out the release announcement blog post.

Downloads are available on:

TypeScript 6.0

For release notes, check out the release announcement blog post.

Downloads are available on:

TypeScript 6.0 Beta

For release notes, check out the release announcement.

Downloads are available on:

Commits
  • 050880c Bump version to 6.0.3 and LKG
  • eeae9dd 🤖 Pick PR #63401 (Also check package name validity in...) into release-6.0 (#...
  • ad1c695 🤖 Pick PR #63368 (Harden ATA package name filtering) into release-6.0 (#63372)
  • 0725fb4 🤖 Pick PR #63310 (Mark class property initializers as...) into release-6.0 (#...
  • 607a22a Bump version to 6.0.2 and LKG
  • 9e72ab7 🤖 Pick PR #63239 (Fix missing lib files in reused pro...) into release-6.0 (#...
  • 35ff23d 🤖 Pick PR #63163 (Port anyFunctionType subtype fix an...) into release-6.0 (#...
  • e175b69 Bump version to 6.0.1-rc and LKG
  • af4caac Update LKG
  • 8efd7e8 Merge remote-tracking branch 'origin/main' into release-6.0
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 22, 2026
Bumps [typescript](https://github.com/microsoft/TypeScript) from 5.9.3 to 6.0.3.
- [Release notes](https://github.com/microsoft/TypeScript/releases)
- [Commits](microsoft/TypeScript@v5.9.3...v6.0.3)

---
updated-dependencies:
- dependency-name: typescript
  dependency-version: 6.0.3
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@BigSimmo
BigSimmo force-pushed the dependabot/npm_and_yarn/typescript-6.0.3 branch from cdf424a to 7a0ad82 Compare May 28, 2026 02:56
@BigSimmo

BigSimmo commented Jun 3, 2026

Copy link
Copy Markdown
Owner

Closed during cleanup because the branch cannot be updated against current main due to conflicts. The existing green checks are stale against the old base, so this should be handled by a fresh Dependabot TypeScript 6 PR rather than merging stale/conflicting history.

@BigSimmo BigSimmo closed this Jun 3, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jun 3, 2026

Copy link
Copy Markdown
Contributor Author

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@BigSimmo
BigSimmo deleted the dependabot/npm_and_yarn/typescript-6.0.3 branch June 3, 2026 08:06
BigSimmo added a commit that referenced this pull request Jul 3, 2026
* eval(retrieval): add content_mrr@10 passage-rank metric

The golden retrieval eval measured document-level rank (mrr@10, over
expectedDocumentSubstrings) and content-level *recall* (contentRecall@5,
binary "is the answer passage in the top 5"), but nothing measured how HIGH
the answer-bearing passage ranks. That left rerank/chunking changes that lift
the right passage from #5 to #1 unprovable: content recall stays 1.0 across
that move and doc-level mrr is blind to passage order within a document.

Add contentReciprocalRankAt10 — the mean over a case's expected content terms
of the reciprocal rank of the earliest top-10 result carrying that term
(1.0 iff every term rides the rank-1 passage). Surface it in the summary as
content_mrr_at_10, averaged only over cases that declare content terms
(content_mrr_case_count) so structural zeros don't dilute the signal, plus a
per-case contentRR@10 column and the human summary line.

Purely additive: the summary type is inferred, so reindex-eval-gate and the
other summary consumers are unaffected. Guarded by a focused test proving the
metric drops to 0.5 when the answer passage is demoted below a distractor
while content recall stays 1.0.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

* Fix retrieval content MRR scoring

* style: prettier-format eval-retrieval content_mrr scoring

The retrievalLimitForGoldenCase fix landed without a prettier pass, failing
the required verify check (format:check). Formatting-only; no logic change.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

* eval(retrieval): address Codex review on content_mrr@10 evidence text

Two remaining P2 review findings on the passage-rank metric:

- Quality-eval path truncation: runRetrievalQualityCases (eval-quality.ts) still
  fetched topK=testCase.topK, so content_mrr@10 silently degraded to content_mrr@topK
  for the many fixtures with topK<10. Now uses retrievalLimitForGoldenCase(=max(topK,10)),
  matching the standalone runner. hit@K semantics are unchanged (evaluateGoldenRetrievalCase
  still slices to the case's topK), so only positions 9-10 are exposed for the @10 metric.

- Missing first-class table/visual evidence: resultContentEvidenceText matched table_facts
  and a few image fields but not typed index-unit content or the accessible table markdown /
  table rows, so a hit carrying the answer only in a medication-chart row / risk-matrix cell
  / flowchart step was invisible to contentReciprocalRankAt10. Now includes index_unit
  title+content and image accessibleTableMarkdown + flattened tableRows.

The retrieval_synopsis stays in the evidence text: it is the stored first-class passage
representation used in ranking/display, and the metadata-distractor test already guards the
title/file/section vector that the earlier fix excluded.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

---------

Co-authored-by: Claude Opus 4.8 <noreply@anthropic.com>
BigSimmo added a commit that referenced this pull request Jul 8, 2026
…te guard (#381)

* test: fix WebKit hide-on-scroll flake + guard retrieval owner_filter callsites

Two follow-ups from the 48h PR review.

- tests/ui-tools.spec.ts (#5): the "phone bottom search dock hides while scrolling" test failed on
  WebKit only (release-browser-matrix) because WebKit doesn't reliably emit a native scroll event for
  a programmatic scrollTo, so useHideOnScroll never ran and data-scroll-hidden stayed unset. Dispatch
  an explicit scroll event after each scrollTo; harmless on Chromium/Firefox (the rAF guard dedupes).

- tests/retrieval-owner-filter-guard.test.ts (#3): defense-in-depth tripwire. The SQL
  retrieval_owner_matches fails OPEN on a null owner_filter and RLS is service-role-only, so the app
  filter is the sole tenant boundary. Until the matcher is made fail-closed (gated on the Supabase
  Preview migration-drift fix so the SQL change is verifiable), this asserts every src .rpc()
  owner_filter argument comes from a sanctioned scope helper / the public sentinel, never a literal null.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

* style: prettier-format owner_filter guard test

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

* fix(test): avoid Dirent.path typing in owner_filter guard (CI @types/node drift)

Use the string-returning readdirSync recursive overload instead of withFileTypes so the scan
doesn't depend on Dirent.parentPath/path, which differ across @types/node versions and failed
the CI typecheck (TS2339 Property 'path' does not exist on Dirent).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

---------

Co-authored-by: Claude Opus 4.8 <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant