Merge pull request #27 from FrancoStino/dependabot/npm_and_yarn/develop/vercel/node-5.8.4 chore(deps-dev): bump @vercel/node from 5.8.2 to 5.8.4

[FrancoStino]

Summary by cubic

Upgraded @vercel/node to 5.8.4 and removed legacy opencode GitHub Actions. Also updated several dependencies to improve security and build stability.

• Dependencies

  • Runtime: axios 1.16.1, express-rate-limit 8.5.2, helmet 8.2.0, lru-cache 11.5.0
  • Dev: @types/node 25.9.1, eslint 10.4.0, webpack 5.107.1

• Refactors

  • Removed .github/workflows/opencode.yml, opencode-review.yml, and opencode-triage.yml to retire the opencode automation workflows.

^{Written for commit a91a25b. Summary will update on new commits.}

Review in cubic

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
github-contribution-card	Ready	Preview, Comment	May 29, 2026 8:24am

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: 70ac0852-47ba-4f2c-9f5e-08da1ca90427

📥 Commits

Reviewing files that changed from the base of the PR and between e975d41 and a91a25b.

⛔ Files ignored due to path filters (1)

• yarn.lock is excluded by !**/yarn.lock, !**/*.lock

📒 Files selected for processing (4)

• .github/workflows/opencode-review.yml
• .github/workflows/opencode-triage.yml
• .github/workflows/opencode.yml
• package.json

💤 Files with no reviewable changes (3)

• .github/workflows/opencode.yml
• .github/workflows/opencode-review.yml
• .github/workflows/opencode-triage.yml

📜 Recent review details

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)

• GitHub Check: cubic · AI code reviewer

🔇 Additional comments (1)

package.json (1)

27-27: LGTM!

Also applies to: 31-31, 33-33, 36-36, 42-43, 45-45, 52-52

---

📝 Walkthrough

Summary by CodeRabbit

• Chores
  • Updated project dependencies to latest compatible versions for improved stability and security.
  • Removed internal workflow automation configurations.

Walkthrough

This PR removes three GitHub Actions workflows for automated code review and issue triage (opencode-review.yml, opencode-triage.yml, opencode.yml) and updates runtime and development dependency versions in package.json to newer releases.

Changes

Maintenance and Dependency Updates

Layer / File(s)	Summary
Dependency version updates package.json	Runtime dependencies (axios, express-rate-limit, helmet, lru-cache) and development dependencies (@types/node, @vercel/node, eslint, webpack) are bumped to newer versions. GitHub Actions workflows for code review and issue triage automation are removed.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~4 minutes

Poem

🐰 A rabbit tidies up the burrow today,
Old workflows hop away, now workflows stay,
Dependencies gleam in their newest attire,
Security patches and fixes inspire! ✨

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Title check	⚠️ Warning	The title describes a dependency version bump for @vercel/node, but the changeset also removes three GitHub Actions workflows and updates multiple other dependencies, making the title incomplete and misleading about the main scope of changes.	Revise the title to reflect the primary changes more accurately, such as 'Remove opencode workflows and update dependencies' to better represent the full scope of the pull request.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description check	✅ Passed	The description is well-structured and relates to the changeset, accurately summarizing the dependency updates and the removal of opencode workflows.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch develop

✨ Simplify code

• Create PR with simplified code
• Commit simplified code in branch develop

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: a91a25bc7c

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Restore the comment-triggered opencode workflow

This commit deletes the only workflow that listens for /oc or /opencode comments; I checked the remaining .github/workflows files and there is no replacement issue_comment/pull_request_review_comment handler. In repos relying on those comments to run opencode on issues or PR discussions, the automation silently stops working after this dependency-bump merge.

Useful? React with 👍 / 👎.

[cubic-dev-ai]

No issues found across 5 files

<sub>Shadow auto-approve: would require human review. The PR removes three GitHub Actions workflow files and includes multiple production and dev dependency updates, which together represent a non-trivial change that could affect CI/CD processes and requires human review to ensure no unintended consequences.

Re-trigger cubic</sub>