Bump swr from 2.3.6 to 2.3.8

[dependabot]

Bumps swr from 2.3.6 to 2.3.8.

Release notes

Sourced from swr's releases.

v2.3.8

What's Changed

• deps: upgrade dev deps for build by @​promer94 in vercel/swr#4188
• update use-sync-external-store to latest by @​huozhi in vercel/swr#4189
• fix: cve-2025-55182 critical rce vulnerability by @​PierreCrb in vercel/swr#4192
• fix: cve-2025-55184 & CVE-2025-55183 by @​PierreCrb in vercel/swr#4198
• upgrade dev dep nextjs by @​huozhi in vercel/swr#4199
• update dev dependencies to address cve by @​PierreCrb in vercel/swr#4200
• enhance: Improve TSDoc comments by @​shuding in vercel/swr#4203
• test: Import act from React by @​shuding in vercel/swr#4202

New Contributors

• @​PierreCrb made their first contribution in vercel/swr#4192

Full Changelog: vercel/swr@v2.3.7...v2.3.8

v2.3.7

What's Changed

• deps: upgrade ci node version to 22 by @​promer94 in vercel/swr#4184
• deps: upgrade pnpm version by @​promer94 in vercel/swr#4185
• deps: upgrade playwright version by @​promer94 in vercel/swr#4186
• deps: upgrade eslint version and fix lint problem by @​promer94 in vercel/swr#4187
• feat: Add strictServerPrefetchWarning by @​shuding in vercel/swr#4183

Full Changelog: vercel/swr@v2.3.6...v2.3.7

Commits

• e0426a9 2.3.8
• ca6e11d test: Import act from React (#4202)
• eff8fda enhance: Improve TSDoc comments (#4203)
• b2e7db3 update dev dependencies to address cve (#4200)
• 952198b upgrade dev dep nextjs (#4199)
• 147c728 fix: cve-2025-55184 & CVE-2025-55183 (#4198)
• 7051040 fix: cve-2025-55182 critical rce vulnerability (#4192)
• da76c01 update use-sync-external-store to latest (#4189)
• c7eda39 deps: upgrade dev deps for build (#4188)
• 5460504 2.3.7
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once it's up-to-date and CI passes on it, as requested by @plaharanne.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[plaharanne]

@dependabot merge

[dependabot]

Beginning January 27, 2026, Dependabot will no longer support the @dependabot merge command. Please use GitHub's native pull request controls instead. Please see the changelog announcement for additional details.