Skip to content

build(deps): bump @apollo/client from 4.2.5 to 4.2.7 in the graphql group across 1 directory#2942

Open
dependabot[bot] wants to merge 1 commit into
trunkfrom
dependabot/npm_and_yarn/graphql-491ed7b1f9
Open

build(deps): bump @apollo/client from 4.2.5 to 4.2.7 in the graphql group across 1 directory#2942
dependabot[bot] wants to merge 1 commit into
trunkfrom
dependabot/npm_and_yarn/graphql-491ed7b1f9

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 7, 2026

Copy link
Copy Markdown
Contributor

Bumps the graphql group with 1 update in the / directory: @apollo/client.

Updates @apollo/client from 4.2.5 to 4.2.7

Release notes

Sourced from @​apollo/client's releases.

@​apollo/client@​4.2.7

Patch Changes

@​apollo/client@​4.2.6

Patch Changes

  • #13315 a406cc9 Thanks @​fallintoplace! - Prevent relay multipart subscriptions from issuing a fetch request after serializing the request body fails.

  • #13307 abd0781 Thanks @​wolfie! - Speed up cache writes by avoiding a full AST visit of every written field to detect @stream. The check now runs only when the result carries stream info, and only inspects the field node's own directives. As a result, fields that merely contain @stream on a nested field are no longer treated as streamed themselves and now overwrite existing lists like regular fields instead of merging chunk-wise.

Changelog

Sourced from @​apollo/client's changelog.

4.2.7

Patch Changes

4.2.6

Patch Changes

  • #13315 a406cc9 Thanks @​fallintoplace! - Prevent relay multipart subscriptions from issuing a fetch request after serializing the request body fails.

  • #13307 abd0781 Thanks @​wolfie! - Speed up cache writes by avoiding a full AST visit of every written field to detect @stream. The check now runs only when the result carries stream info, and only inspects the field node's own directives. As a result, fields that merely contain @stream on a nested field are no longer treated as streamed themselves and now overwrite existing lists like regular fields instead of merging chunk-wise.

Commits

@github-actions

github-actions Bot commented Jul 7, 2026

Copy link
Copy Markdown
Contributor

Dependency Review

The following issues were found:
  • ✅ 0 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 1 package(s) with unknown licenses.
See the Details below.

License Issues

package-lock.json

PackageVersionLicenseIssue Type
@apollo/client4.2.7NullUnknown License

OpenSSF Scorecard

PackageVersionScoreDetails
npm/@apollo/client 4.2.7 UnknownUnknown

Scanned Files

  • package-lock.json

@dependabot dependabot Bot changed the title build(deps): bump @apollo/client from 4.2.5 to 4.2.6 in the graphql group build(deps): bump @apollo/client from 4.2.5 to 4.2.6 in the graphql group across 1 directory Jul 8, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/graphql-491ed7b1f9 branch 2 times, most recently from 350ed54 to 3e7710a Compare July 10, 2026 18:45
Bumps the graphql group with 1 update in the / directory: [@apollo/client](https://github.com/apollographql/apollo-client).


Updates `@apollo/client` from 4.2.5 to 4.2.7
- [Release notes](https://github.com/apollographql/apollo-client/releases)
- [Changelog](https://github.com/apollographql/apollo-client/blob/main/CHANGELOG.md)
- [Commits](https://github.com/apollographql/apollo-client/compare/@apollo/client@4.2.5...@apollo/client@4.2.7)

---
updated-dependencies:
- dependency-name: "@apollo/client"
  dependency-version: 4.2.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: graphql
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title build(deps): bump @apollo/client from 4.2.5 to 4.2.6 in the graphql group across 1 directory build(deps): bump @apollo/client from 4.2.5 to 4.2.7 in the graphql group across 1 directory Jul 14, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/graphql-491ed7b1f9 branch from 3e7710a to 357a742 Compare July 14, 2026 12:22
@sonarqubecloud

Copy link
Copy Markdown

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants