Bump @lokalise/backend-http-client from 9.0.0 to 10.0.0

[dependabot]

Bumps @lokalise/backend-http-client from 9.0.0 to 10.0.0.

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Summary by CodeRabbit

• Chores
  • Updated an internal development dependency to a newer major version.

No user-facing changes in this release.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

Caution

Review failed

The pull request is closed.

Note

.coderabbit.yaml has unrecognized properties

CodeRabbit is using all valid settings from your configuration. Unrecognized properties (listed below) have been ignored and may indicate typos or deprecated fields that can be removed.

⚠️ Parsing warnings (1)

Validation error: Unrecognized key(s) in object: 'tools'

⚙️ Configuration instructions

• Please see the configuration documentation for more information.
• You can also validate your configuration using the online YAML validator.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Walkthrough

This PR updates the devDependency "@lokalise/backend-http-client" from ^9.0.0 to ^10.0.0 in package.json. No source files, exported entities, or runtime code were changed.

Changes

Cohort / File(s)	Change Summary
Dependency version update package.json	Bumped devDependency @lokalise/backend-http-client from ^9.0.0 to ^10.0.0

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

• Pay attention to any potential breaking changes in the upstream major version during broader integration testing (not visible in this diff).

Suggested reviewers

• kibertoad
• CarlosGamero
• drdaemos

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The PR description lacks required sections from the template: no 'Changes' section explaining the bump impact, no checklist items selected, and no documentation/test update statements.	Add a 'Changes' section explaining the dependency upgrade impact, complete the checklist by selecting appropriate labels and confirming documentation/test updates or their necessity.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title clearly summarizes the main change: a dependency version bump of @lokalise/backend-http-client from version 9.0.0 to 10.0.0.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

---

📜 Recent review details

Configuration used: Repository: lokalise/coderabbit/.coderabbit.yaml

Review profile: CHILL

Plan: Pro

Disabled knowledge base sources:

• Jira integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between b8e188b and b2ce075.

📒 Files selected for processing (1)

• package.json (1 hunks)

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

📜 Review details

Configuration used: Repository: lokalise/coderabbit/.coderabbit.yaml

Review profile: CHILL

Plan: Pro

Disabled knowledge base sources:

• Jira integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between 09562f1 and b8e188b.

📒 Files selected for processing (1)

• package.json (1 hunks)

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

🧩 Analysis chain

Verify compatibility and test coverage for the major version bump.

A major version bump typically introduces breaking changes. Since this is a development dependency, the risk is lower, but the test suite and development tooling should be validated to ensure no breakage.

Please verify the following before merging:

1. Run the full test suite: Ensure all tests pass with the new version.

   npm run test:ci

2. Check for security advisories: Verify there are no security vulnerabilities in the new version.

   npm audit --omit=prod

3. Validate breaking changes: Review the CHANGELOG or release notes for @lokalise/backend-http-client 10.0.0 to understand what breaking changes were introduced and confirm the codebase is compatible.

If there are API changes in the new version that affect how tests or development tools use this package, those changes will need to be reflected in the codebase.

---

---

🏁 Script executed:

```shell
#!/bin/bash
# Find usages of @lokalise/backend-http-client in the codebase
echo "=== Searching for @lokalise/backend-http-client usage ==="
rg -i "lokalise.*backend.*http" -n --type=ts --type=js --type=json

echo ""
echo "=== Checking package.json test scripts ==="
cat package.json | grep -A 20 '"scripts"'

echo ""
echo "=== Full devDependencies section ==="
cat package.json | grep -A 50 '"devDependencies"'

Length of output: 2630

---

🌐 Web query:

@lokalise/backend-http-client 10.0.0 breaking changes

💡 Result:

I couldn't find a 10.0.0 release for @lokalise/backend-http-client. The npm package's latest published version is 7.2.0 (package page). [1] Historic listings (Libraries.io / npm archive) likewise show v7.x as the published major line. [2]

If you expected a v10.0.0 release, options:

• Check the repository (github.com/lokalise/shared-ts-libs) for a changelog or unreleased/branch tags.
• If you want, I can search the repo releases/tags and changelogs for any mention of a v10.0.0 or breaking-change notes — shall I do that?

Sources:
[1] npm package page for @lokalise/backend-http-client (shows v7.2.0).
[2] Libraries.io / package history for @lokalise/backend-http-client (shows v7.x releases).

---

---

🏁 Script executed:

```shell
#!/bin/bash
# Check for npm configuration, registry setup, or monorepo structure
echo "=== Checking for .npmrc or npm configuration ==="
find . -maxdepth 2 -name ".npmrc" -o -name ".npmrc.example" 2>/dev/null | head -20

echo ""
echo "=== Checking for monorepo setup (package.json workspaces) ==="
cat package.json | grep -A 5 '"workspaces"'

echo ""
echo "=== Checking for lerna.json or pnpm-workspace.yaml ==="
ls -la lerna.json pnpm-workspace.yaml 2>/dev/null

echo ""
echo "=== Checking git log for recent version changes to this dependency ==="
git log --oneline -n 20 -- package.json 2>/dev/null | head -10

echo ""
echo "=== Checking if there's a lock file that shows resolved version ==="
if [ -f "package-lock.json" ]; then
  echo "package-lock.json found. Checking @lokalise/backend-http-client entry:"
  grep -A 10 '"@lokalise/backend-http-client"' package-lock.json | head -15
elif [ -f "yarn.lock" ]; then
  echo "yarn.lock found. Checking @lokalise/backend-http-client entry:"
  grep -A 5 '@lokalise/backend-http-client' yarn.lock | head -10
else
  echo "No lock file found"
fi

Length of output: 741

---

🌐 Web query:

@lokalise/backend-http-client latest npm registry version 2025

💡 Result:

As of November 17, 2025 the latest npm registry version of @lokalise/backend-http-client is 7.2.0. [1][2]

Sources:

• npm package page (version 7.2.0). [1]
• yarnpkg listing (shows 7.0.0, published June 9, 2025). [2]

---

Version 10.0.0 of @lokalise/backend-http-client does not exist on npm and will cause installation failures.

The public npm registry only has version 7.2.0 as the latest release. Versions 9.0.0 and 10.0.0 do not exist. Without a configured private registry or lock file, npm will fail to resolve the dependency. This will block the build and prevent tests from running.

The version in package.json line 64 must be corrected to an actual published version (e.g., ^7.2.0 or the appropriate version that contains the required APIs used in the test files).

🤖 Prompt for AI Agents

In package.json around line 64, the dependency "@lokalise/backend-http-client":
"^10.0.0" references a non-existent npm version and will break installs; change
the version to a published release (for example "^7.2.0" or the specific version
your code relies on), run npm install to verify resolution, and update
package-lock.json/yarn.lock accordingly before committing.

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot recreate.