chore(deps-dev): bump @ai-sdk/openai from 2.0.20 to 3.0.52#786
chore(deps-dev): bump @ai-sdk/openai from 2.0.20 to 3.0.52#786dependabot[bot] wants to merge 1 commit intomainfrom
Conversation
dependabot
bot
added
dependencies
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
![claude[bot]](https://avatars.githubusercontent.com/in/1236702?s=60&v=4){kind=small}
There was a problem hiding this comment.
This is a major version bump (v2 → v3) of a devDependency used in e2e tests — worth a quick human check to confirm the e2e tests still pass with the new API.
Extended reasoning...
Overview
This PR bumps @ai-sdk/openai from 2.0.20 to 3.0.52 (a major version bump: v2 → v3) in package.json and pnpm-lock.yaml. The package is a devDependency and is consumed only in tests/e2e/vercel-ai-sdk.e2e.test.ts via import { openai } from "@ai-sdk/openai".
Security risks
None identified. This is a third-party AI provider client used only in test code, with no auth or crypto handling.
Level of scrutiny
Moderate. Although the change is confined to devDependencies and test files, major version bumps can introduce breaking API changes. The single consumer (vercel-ai-sdk.e2e.test.ts) uses the openai named export, which could have changed in v3. Additionally, transitive deps shift: @ai-sdk/provider moves from 2.0.0 → 3.0.8 and @ai-sdk/provider-utils from 3.0.5 → 4.0.23, and a new dep @standard-schema/spec is introduced.
Other factors
No bugs were found by the automated scan. The lockfile changes are internally consistent. A human reviewer should verify the e2e tests pass with the upgraded package before merging.
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/ai-sdk/openai-3.0.52
branch
from
14a0867 to
5eeff40
Compare
Bumps [@ai-sdk/openai](https://github.com/vercel/ai) from 2.0.20 to 3.0.52. - [Release notes](https://github.com/vercel/ai/releases) - [Changelog](https://github.com/vercel/ai/blob/main/CHANGELOG.md) - [Commits](https://github.com/vercel/ai/compare/@ai-sdk/openai@2.0.20...@ai-sdk/openai@3.0.52) --- updated-dependencies: - dependency-name: "@ai-sdk/openai" dependency-version: 3.0.52 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/ai-sdk/openai-3.0.52
branch
from
5eeff40 to
261b77e
Compare
Bumps @ai-sdk/openai from 2.0.20 to 3.0.52.
Release notes
Sourced from
@ai-sdk/openai's releases.Commits
99327b1Version Packages (#14212)d42076dBackport: Add AI Gateway hint to provider READMEs (#14199)700ed7fVersion Packages (#14206)ec18852Backport: feat(gateway): add reranking model support (#14204)5b155e6Version Packages (#14202)1003609Backport: fix(ai): skip stringifying text when streaming partial text (#14200)9de7d7bBackport: chore(provider/gateway): update gateway model settings files v6 (#1...563c26aVersion Packages (#14190)ac80bc7Backport: fix(amazon-bedrock): preserve empty text blocks when reasoning cont...10afedeVersion Packages (#14176)