chore(deps-dev): bump storybook from 9.1.17 to 9.1.20 #17

2026-03-18T02:07:33Z

dependabot[bot] commented

2026-03-18 02:07:33 +00:00

(Migrated from github.com)

Bumps storybook from 9.1.17 to 9.1.20.

Release notes

v9.1.20

9.1.20

Add request validation

v9.1.19

9.1.19

Harden websocket connection

v9.1.18

9.1.18

No-op release. No changes.

Changelog

Sourced from storybook's changelog.

9.1.20

Add request validation

9.1.19

Harden websocket connection

9.1.18

No-op release. No changes.

9.1.16

CLI: Fix Nextjs project creation in empty directories - #32828, thanks @yannbf!

Core: Add experimental_devServer preset - #32862, thanks @yannbf!

Telemetry: Fix preview-first-load event - #32859, thanks @shilman!

9.1.15

Core: Add preview-first-load telemetry - #32770, thanks @shilman!

Dependencies: Update vite-plugin-storybook-nextjs - #32821, thanks @ndelangen!

9.1.14

NextJS: Add NextJS 16 support - #32791, thanks @yannbf and @ndelangen!

Addon-Vitest: Support Vitest 4 - #32819, thanks @yannbf and @ndelangen!

CSF: Fix play-fn tag for methods - #32695, thanks @shilman!

9.1.13

Nextjs: Fix config access for Vite - #32759, thanks @valentinpalkovic!

9.1.12

Maintenance: Hotfix for missing nextjs dts files, thanks @ndelangen!

9.1.11

Automigration: Improve the viewport/backgrounds automigration - #32619, thanks @valentinpalkovic!

Mocking: Fix sb.mock usage in Storybook's deployed in subpaths - #32678, thanks @valentinpalkovic!

NextJS-Vite: Automatically fix bad PostCSS configuration - #32691, thanks @ndelangen!

React Native Web: Fix REACT_NATIVE_AND_RNW should detect vite builder - #32718, thanks @dannyhw!

Telemetry: Add metadata for react routers - #32615, thanks @shilman!

9.1.10

Automigrations: Add automigration for viewport and backgrounds - #31614, thanks @valentinpalkovic!

Telemetry: Log userAgent in onboarding - #32566, thanks @shilman!

... (truncated)

Commits

f4eff48 Bump version from "9.1.19" to "9.1.20" [skip ci]
046ce4d Formatting
98e74eb Clarify hostname validation for HTTP requests and WebSocket connections
5f27e88 Core: Backport origin/host validation and update related configurations
20887f1 Bump version from "9.1.18" to "9.1.19" [skip ci]
66b2d8e Fix test
31f16c4 fix linting
62dd25b Core: Require token for websocket connections
bbe61e3 Bump version from "9.1.17" to "9.1.18" [skip ci]
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/core) from 9.1.17 to 9.1.20. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/storybookjs/storybook/releases">storybook's releases</a>.</em></p> <blockquote> <h2>v9.1.20</h2> <h2>9.1.20</h2> <ul> <li>Add request validation</li> </ul> <h2>v9.1.19</h2> <h2>9.1.19</h2> <ul> <li>Harden websocket connection</li> </ul> <h2>v9.1.18</h2> <h2>9.1.18</h2> <ul> <li>No-op release. No changes.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/storybookjs/storybook/blob/v9.1.20/CHANGELOG.md">storybook's changelog</a>.</em></p> <blockquote> <h2>9.1.20</h2> <ul> <li>Add request validation</li> </ul> <h2>9.1.19</h2> <ul> <li>Harden websocket connection</li> </ul> <h2>9.1.18</h2> <ul> <li>No-op release. No changes.</li> </ul> <h2>9.1.16</h2> <ul> <li>CLI: Fix Nextjs project creation in empty directories - <a href="https://redirect.github.com/storybookjs/storybook/pull/32828">#32828</a>, thanks <a href="https://github.com/yannbf"><code>@yannbf</code></a>!</li> <li>Core: Add <code>experimental_devServer</code> preset - <a href="https://redirect.github.com/storybookjs/storybook/pull/32862">#32862</a>, thanks <a href="https://github.com/yannbf"><code>@yannbf</code></a>!</li> <li>Telemetry: Fix preview-first-load event - <a href="https://redirect.github.com/storybookjs/storybook/pull/32859">#32859</a>, thanks <a href="https://github.com/shilman"><code>@shilman</code></a>!</li> </ul> <h2>9.1.15</h2> <ul> <li>Core: Add <code>preview-first-load</code> telemetry - <a href="https://redirect.github.com/storybookjs/storybook/pull/32770">#32770</a>, thanks <a href="https://github.com/shilman"><code>@shilman</code></a>!</li> <li>Dependencies: Update <code>vite-plugin-storybook-nextjs</code> - <a href="https://redirect.github.com/storybookjs/storybook/pull/32821">#32821</a>, thanks <a href="https://github.com/ndelangen"><code>@ndelangen</code></a>!</li> </ul> <h2>9.1.14</h2> <ul> <li>NextJS: Add NextJS 16 support - <a href="https://redirect.github.com/storybookjs/storybook/pull/32791">#32791</a>, thanks <a href="https://github.com/yannbf"><code>@yannbf</code></a> and <a href="https://github.com/ndelangen"><code>@ndelangen</code></a>!</li> <li>Addon-Vitest: Support Vitest 4 - <a href="https://redirect.github.com/storybookjs/storybook/pull/32819">#32819</a>, thanks <a href="https://github.com/yannbf"><code>@yannbf</code></a> and <a href="https://github.com/ndelangen"><code>@ndelangen</code></a>!</li> <li>CSF: Fix <code>play-fn</code> tag for methods - <a href="https://redirect.github.com/storybookjs/storybook/pull/32695">#32695</a>, thanks <a href="https://github.com/shilman"><code>@shilman</code></a>!</li> </ul> <h2>9.1.13</h2> <ul> <li>Nextjs: Fix config access for Vite - <a href="https://redirect.github.com/storybookjs/storybook/pull/32759">#32759</a>, thanks <a href="https://github.com/valentinpalkovic"><code>@valentinpalkovic</code></a>!</li> </ul> <h2>9.1.12</h2> <ul> <li>Maintenance: Hotfix for missing nextjs dts files, thanks <a href="https://github.com/ndelangen"><code>@ndelangen</code></a>!</li> </ul> <h2>9.1.11</h2> <ul> <li>Automigration: Improve the viewport/backgrounds automigration - <a href="https://redirect.github.com/storybookjs/storybook/pull/32619">#32619</a>, thanks <a href="https://github.com/valentinpalkovic"><code>@valentinpalkovic</code></a>!</li> <li>Mocking: Fix <code>sb.mock</code> usage in Storybook's deployed in subpaths - <a href="https://redirect.github.com/storybookjs/storybook/pull/32678">#32678</a>, thanks <a href="https://github.com/valentinpalkovic"><code>@valentinpalkovic</code></a>!</li> <li>NextJS-Vite: Automatically fix bad PostCSS configuration - <a href="https://redirect.github.com/storybookjs/storybook/pull/32691">#32691</a>, thanks <a href="https://github.com/ndelangen"><code>@ndelangen</code></a>!</li> <li>React Native Web: Fix REACT_NATIVE_AND_RNW should detect vite builder - <a href="https://redirect.github.com/storybookjs/storybook/pull/32718">#32718</a>, thanks <a href="https://github.com/dannyhw"><code>@dannyhw</code></a>!</li> <li>Telemetry: Add metadata for react routers - <a href="https://redirect.github.com/storybookjs/storybook/pull/32615">#32615</a>, thanks <a href="https://github.com/shilman"><code>@shilman</code></a>!</li> </ul> <h2>9.1.10</h2> <ul> <li>Automigrations: Add automigration for viewport and backgrounds - <a href="https://redirect.github.com/storybookjs/storybook/pull/31614">#31614</a>, thanks <a href="https://github.com/valentinpalkovic"><code>@valentinpalkovic</code></a>!</li> <li>Telemetry: Log userAgent in onboarding - <a href="https://redirect.github.com/storybookjs/storybook/pull/32566">#32566</a>, thanks <a href="https://github.com/shilman"><code>@shilman</code></a>!</li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/storybookjs/storybook/commit/f4eff4835ee6076bddf2fa2c8af680afebfaba0e"><code>f4eff48</code></a> Bump version from "9.1.19" to "9.1.20" [skip ci]</li> <li><a href="https://github.com/storybookjs/storybook/commit/046ce4d35020916e996521e04c18abfdf1052eaa"><code>046ce4d</code></a> Formatting</li> <li><a href="https://github.com/storybookjs/storybook/commit/98e74eb845a2f7f4d6a65d719284bc0a459395d6"><code>98e74eb</code></a> Clarify hostname validation for HTTP requests and WebSocket connections</li> <li><a href="https://github.com/storybookjs/storybook/commit/5f27e882807b4816fba5d30490232706dc8354e7"><code>5f27e88</code></a> Core: Backport origin/host validation and update related configurations</li> <li><a href="https://github.com/storybookjs/storybook/commit/20887f19d26d1f6e74712eeec4812f325031420b"><code>20887f1</code></a> Bump version from "9.1.18" to "9.1.19" [skip ci]</li> <li><a href="https://github.com/storybookjs/storybook/commit/66b2d8e30b1c235c198b8de0696755a13a72ceae"><code>66b2d8e</code></a> Fix test</li> <li><a href="https://github.com/storybookjs/storybook/commit/31f16c4cd46f9435e1558204cdccb6bf6b880c7f"><code>31f16c4</code></a> fix linting</li> <li><a href="https://github.com/storybookjs/storybook/commit/62dd25b508d3b8cd771cfadcac9a9f41881c0e11"><code>62dd25b</code></a> Core: Require token for websocket connections</li> <li><a href="https://github.com/storybookjs/storybook/commit/bbe61e351b4b45cd17c7d8005e48e4cab60a0315"><code>bbe61e3</code></a> Bump version from "9.1.17" to "9.1.18" [skip ci]</li> <li>See full diff in <a href="https://github.com/storybookjs/storybook/commits/v9.1.20/code/core">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=storybook&package-manager=npm_and_yarn&previous-version=9.1.17&new-version=9.1.20)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/privilegedescalation/headlamp-sealed-secrets-plugin/network/alerts). </details>

Chris Farhood approved these changes 2026-03-18 02:32:02 +00:00

Chris Farhood left a comment

CI green, dev dependency bump. Approved.

Sign in to join this conversation.

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: privilegedescalation/headlamp-sealed-secrets-plugin#17