chore(deps): bump node from 18-alpine to 26-alpine#25
Conversation
Bumps node from 18-alpine to 26-alpine. --- updated-dependencies: - dependency-name: node dependency-version: 26-alpine dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
This PR jumps from Node 18-alpine to 26-alpine, skipping three major versions. Two concerns worth addressing before merging:
Mention @roomote in a comment to request specific changes to this pull request or fix all unresolved issues. |
| # Stage 1: Dependencies | ||
| # ============================================================ | ||
| FROM node:18-alpine AS deps | ||
| FROM node:26-alpine AS deps |
There was a problem hiding this comment.
Node 26 is a "Current" release, not LTS. It won't enter LTS until around October 2027. For a production Docker image, using a non-LTS version means shorter support windows and higher risk of instability. The jump from 18 directly to 26 also skips three major versions (20, 22, 24), which compounds the risk of breaking changes in native modules, APIs, or dependency compatibility. Consider targeting node:22-alpine or node:24-alpine (both LTS) instead.
| FROM node:26-alpine AS deps | |
| FROM node:22-alpine AS deps |
Fix it with Roo Code or mention @roomote and request a fix.
Bumps node from 18-alpine to 26-alpine.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)