diff --git a/dev/bench/data.js b/dev/bench/data.js
index 45b2986068600136c29c1498111266fb658e34be..b27044d7d4ebb4a16a6f07b22a66435dbe25ab45 100644
--- a/dev/bench/data.js
+++ b/dev/bench/data.js
@@ -1,5 +1,5 @@
 window.BENCHMARK_DATA = {
-  "lastUpdate": 1769533513719,
+  "lastUpdate": 1769535011655,
   "repoUrl": "https://github.com/git-bug/git-bug",
   "entries": {
     "Benchmark": [
@@ -16614,6 +16614,102 @@ window.BENCHMARK_DATA = {
             "extra": "2 times\n4 procs"
           }
         ]
+      },
+      {
+        "commit": {
+          "author": {
+            "email": "49699333+dependabot[bot]@users.noreply.github.com",
+            "name": "dependabot[bot]",
+            "username": "dependabot[bot]"
+          },
+          "committer": {
+            "email": "noreply@github.com",
+            "name": "GitHub",
+            "username": "web-flow"
+          },
+          "distinct": true,
+          "id": "0d58c4961980536c6e33638919ebac52d58bc757",
+          "message": "build(deps): bump the npm_and_yarn group across 1 directory with 5 updates (#1510)\n\nBumps the npm_and_yarn group with 5 updates in the /webui directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n|\n[mdast-util-to-hast](https://github.com/syntax-tree/mdast-util-to-hast)\n| `13.2.0` | `13.2.1` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` |\n`1.3.3` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.14.1` |\n|\n[react-router](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router)\n| `7.6.0` | `7.13.0` |\n\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a\nhref=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"><code>dec55b7</code></a>\nBump main to v4.17.23 (<a\nhref=\"https://redirect.github.com/lodash/lodash/issues/6088\">#6088</a>)</li>\n<li><a\nhref=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"><code>19c9251</code></a>\nfix: setCacheHas JSDoc return type should be boolean (<a\nhref=\"https://redirect.github.com/lodash/lodash/issues/6071\">#6071</a>)</li>\n<li><a\nhref=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"><code>b5e6729</code></a>\njsdoc: Add -0 and BigInt zeros to _.compact falsey values list (<a\nhref=\"https://redirect.github.com/lodash/lodash/issues/6062\">#6062</a>)</li>\n<li><a\nhref=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"><code>edadd45</code></a>\nPrevent prototype pollution on baseUnset function</li>\n<li><a\nhref=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"><code>4879a7a</code></a>\ndoc: fix autoLink function, conversion of source links (<a\nhref=\"https://redirect.github.com/lodash/lodash/issues/6056\">#6056</a>)</li>\n<li><a\nhref=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"><code>9648f69</code></a>\nchore: remove <code>yarn.lock</code> file (<a\nhref=\"https://redirect.github.com/lodash/lodash/issues/6053\">#6053</a>)</li>\n<li><a\nhref=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"><code>dfa407d</code></a>\nci: remove legacy configuration files (<a\nhref=\"https://redirect.github.com/lodash/lodash/issues/6052\">#6052</a>)</li>\n<li><a\nhref=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"><code>156e196</code></a>\nfeat: add renovate setup (<a\nhref=\"https://redirect.github.com/lodash/lodash/issues/6039\">#6039</a>)</li>\n<li><a\nhref=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"><code>933e106</code></a>\nci: add pipeline for Bun (<a\nhref=\"https://redirect.github.com/lodash/lodash/issues/6023\">#6023</a>)</li>\n<li><a\nhref=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"><code>072a807</code></a>\ndocs: update links related to Open JS Foundation (<a\nhref=\"https://redirect.github.com/lodash/lodash/issues/5968\">#5968</a>)</li>\n<li>Additional commits viewable in <a\nhref=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\">compare\nview</a></li>\n</ul>\n</details>\n<br />\n\nUpdates `mdast-util-to-hast` from 13.2.0 to 13.2.1\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/syntax-tree/mdast-util-to-hast/releases\">mdast-util-to-hast's\nreleases</a>.</em></p>\n<blockquote>\n<h2>13.2.1</h2>\n<h4>Fix</h4>\n<ul>\n<li>ab3a795 Fix support for spaces in class names</li>\n</ul>\n<h4>Types</h4>\n<ul>\n<li>efb5312 Refactor to use <code>@import</code>s</li>\n<li>a5bc210 Add declaration maps</li>\n</ul>\n<p><strong>Full Changelog</strong>: <a\nhref=\"https://github.com/syntax-tree/mdast-util-to-hast/compare/13.2.0...13.2.1\">https://github.com/syntax-tree/mdast-util-to-hast/compare/13.2.0...13.2.1</a></p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a\nhref=\"https://github.com/syntax-tree/mdast-util-to-hast/commit/174795b21f7757fffb54dd8d5fb4012f4751f791\"><code>174795b</code></a>\n13.2.1</li>\n<li><a\nhref=\"https://github.com/syntax-tree/mdast-util-to-hast/commit/3d05b3a715133df55689fe3753c2e47101315b4e\"><code>3d05b3a</code></a>\nUpdate Node in Actions</li>\n<li><a\nhref=\"https://github.com/syntax-tree/mdast-util-to-hast/commit/ab3a79570a1afbfa7efef5d4a0cd9b5caafbc5d7\"><code>ab3a795</code></a>\nFix support for spaces in class names</li>\n<li><a\nhref=\"https://github.com/syntax-tree/mdast-util-to-hast/commit/efb531231020055e0dab7b39a18d80b569d5b566\"><code>efb5312</code></a>\nRefactor to use <code>@import</code>s</li>\n<li><a\nhref=\"https://github.com/syntax-tree/mdast-util-to-hast/commit/a5bc210f1aa308e4c6141ac374893c9237fcd746\"><code>a5bc210</code></a>\nAdd declaration maps</li>\n<li><a\nhref=\"https://github.com/syntax-tree/mdast-util-to-hast/commit/b54955d4e123b0167eac13646333c809bb8f301c\"><code>b54955d</code></a>\nAdd <code>.tsbuildinfo</code> to <code>.gitignore</code></li>\n<li>See full diff in <a\nhref=\"https://github.com/syntax-tree/mdast-util-to-hast/compare/13.2.0...13.2.1\">compare\nview</a></li>\n</ul>\n</details>\n<br />\n\nUpdates `node-forge` from 1.3.1 to 1.3.3\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md\">node-forge's\nchangelog</a>.</em></p>\n<blockquote>\n<h2>1.3.3 - 2025-12-02</h2>\n<h3>Fixed</h3>\n<ul>\n<li>[pkcs12] Make digestAlgorithm parameters optional to fix PKCS#12/PFX\nissues\nintroduced in 1.3.2.</li>\n</ul>\n<h2>1.3.2 - 2025-11-25</h2>\n<h3>Security</h3>\n<ul>\n<li><strong>HIGH</strong>: ASN.1 Validator Desynchronization\n<ul>\n<li>An Interpretation Conflict (CWE-436) vulnerability in node-forge\nversions\n1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1\nstructures to desynchronize schema validations, yielding a semantic\ndivergence that may bypass downstream cryptographic verifications and\nsecurity decisions.</li>\n<li>Reported by Hunter Wodzenski.</li>\n<li>CVE ID: <a\nhref=\"https://www.cve.org/CVERecord?id=CVE-2025-12816\">CVE-2025-12816</a></li>\n<li>GHSA ID: <a\nhref=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq\">GHSA-5gfm-wpxj-wjgq</a></li>\n</ul>\n</li>\n<li><strong>HIGH</strong>: ASN.1 Unbounded Recursion\n<ul>\n<li>An Uncontrolled Recursion (CWE-674) vulnerability in node-forge\nversions\n1.3.1 and below enables remote, unauthenticated attackers to craft deep\nASN.1 structures that trigger unbounded recursive parsing. This leads to\na\nDenial-of-Service (DoS) via stack exhaustion when parsing untrusted DER\ninputs.</li>\n<li>Reported by Hunter Wodzenski.</li>\n<li>CVE ID: <a\nhref=\"https://www.cve.org/CVERecord?id=CVE-2025-66031\">CVE-2025-66031</a></li>\n<li>GHSA ID: <a\nhref=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-554w-wpv2-vw27\">GHSA-554w-wpv2-vw27</a></li>\n</ul>\n</li>\n<li><strong>MODERATE</strong>: ASN.1 OID Integer Truncation\n<ul>\n<li>An Integer Overflow (CWE-190) vulnerability in node-forge versions\n1.3.1\nand below enables remote, unauthenticated attackers to craft ASN.1\nstructures containing OIDs with oversized arcs. These arcs may be\ndecoded\nas smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the\nbypass of downstream OID-based security decisions.</li>\n<li>Reported by Hunter Wodzenski.</li>\n<li>CVE ID: <a\nhref=\"https://www.cve.org/CVERecord?id=CVE-2025-66030\">CVE-2025-66030</a></li>\n<li>GHSA ID: <a\nhref=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-65ch-62r8-g69g\">GHSA-65ch-62r8-g69g</a></li>\n</ul>\n</li>\n</ul>\n<h3>Fixed</h3>\n<ul>\n<li>[asn1] Fix for vulnerability identified by CVE-2025-12816 PKCS#12\nMAC\nverification bypass due to missing macData enforcement and improper\nasn1.validate routine.</li>\n<li>[asn1] Add <code>fromDer()</code> max recursion depth check.\n<ul>\n<li>Add a <code>asn1.maxDepth</code> global configurable maximum depth\nof 256.</li>\n<li>Add a <code>asn1.fromDer()</code> per-call <code>maxDepth</code>\noption.</li>\n<li><strong>NOTE</strong>: The default maximum is assumed to be higher\nthan needed for valid\ndata. If this assumption is false then this could be a breaking change.\nPlease file an issue if there are use cases that need a higher\nmaximum.</li>\n<li><strong>NOTE</strong>: The per-call <code>maxDepth</code> parameter\nhas not been exposed up through\nall of the API stack due to the complexities involved. Please file an\nissue\nif there are use cases that require this instead of changing the\ndefault</li>\n</ul>\n</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a\nhref=\"https://github.com/digitalbazaar/forge/commit/1cea0aff4901589ae86e314f25782bbe312f9f69\"><code>1cea0af</code></a>\nRelease 1.3.3.</li>\n<li><a\nhref=\"https://github.com/digitalbazaar/forge/commit/5265989cf5e54cfe1e27a10d71523007ce0507b1\"><code>5265989</code></a>\nUpdate changelog.</li>\n<li><a\nhref=\"https://github.com/digitalbazaar/forge/commit/e4f3961406395dd8e985dcf841852ceca73ac3a9\"><code>e4f3961</code></a>\nFix changelog for release.</li>\n<li><a\nhref=\"https://github.com/digitalbazaar/forge/commit/503979b0295cf633a30199d6bd937f4a222481a0\"><code>503979b</code></a>\nUpdate changelog.</li>\n<li><a\nhref=\"https://github.com/digitalbazaar/forge/commit/c3b3b32a8c157ac57752934d3af63b5f798b58b8\"><code>c3b3b32</code></a>\nMake digestAlgorithm parameters optional</li>\n<li><a\nhref=\"https://github.com/digitalbazaar/forge/commit/6f70043a6db1abb9f3304f3d432efed3ba50fcca\"><code>6f70043</code></a>\nUpdate CVE details.</li>\n<li><a\nhref=\"https://github.com/digitalbazaar/forge/commit/f547b0d292745094190ecb250429d21e8804a375\"><code>f547b0d</code></a>\nStart 1.3.3-0.</li>\n<li><a\nhref=\"https://github.com/digitalbazaar/forge/commit/235ad3e70e4fdfdca4fdeb662dfba6588e2c38bd\"><code>235ad3e</code></a>\nRelease 1.3.2.</li>\n<li><a\nhref=\"https://github.com/digitalbazaar/forge/commit/25982441171dc9815c87d3d886c5c8a1d092b334\"><code>2598244</code></a>\nUpdate changelog.</li>\n<li><a\nhref=\"https://github.com/digitalbazaar/forge/commit/0032dd0be8b6fb1b1092ef754d1dde91c10a95ad\"><code>0032dd0</code></a>\nFix typos.</li>\n<li>Additional commits viewable in <a\nhref=\"https://github.com/digitalbazaar/forge/compare/v1.3.1...v1.3.3\">compare\nview</a></li>\n</ul>\n</details>\n<br />\n\nUpdates `qs` from 6.13.0 to 6.14.1\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\">qs's\nchangelog</a>.</em></p>\n<blockquote>\n<h2><strong>6.14.1</strong></h2>\n<ul>\n<li>[Fix] ensure arrayLength applies to <code>[]</code> notation as\nwell</li>\n<li>[Fix] <code>parse</code>: when a custom decoder returns\n<code>null</code> for a key, ignore that key</li>\n<li>[Refactor] <code>parse</code>: extract key segment splitting\nhelper</li>\n<li>[meta] add threat model</li>\n<li>[actions] add workflow permissions</li>\n<li>[Tests] <code>stringify</code>: increase coverage</li>\n<li>[Dev Deps] update <code>eslint</code>,\n<code>@ljharb/eslint-config</code>, <code>npmignore</code>,\n<code>es-value-fixtures</code>, <code>for-each</code>,\n<code>object-inspect</code></li>\n</ul>\n<h2><strong>6.14.0</strong></h2>\n<ul>\n<li>[New] <code>parse</code>: add\n<code>throwOnParameterLimitExceeded</code> option (<a\nhref=\"https://redirect.github.com/ljharb/qs/issues/517\">#517</a>)</li>\n<li>[Refactor] <code>parse</code>: use <code>utils.combine</code>\nmore</li>\n<li>[patch] <code>parse</code>: add explicit\n<code>throwOnLimitExceeded</code> default</li>\n<li>[actions] use shared action; re-add finishers</li>\n<li>[meta] Fix changelog formatting bug</li>\n<li>[Deps] update <code>side-channel</code></li>\n<li>[Dev Deps] update <code>es-value-fixtures</code>,\n<code>has-bigints</code>, <code>has-proto</code>,\n<code>has-symbols</code></li>\n<li>[Tests] increase coverage</li>\n</ul>\n<h2><strong>6.13.1</strong></h2>\n<ul>\n<li>[Fix] <code>stringify</code>: avoid a crash when a\n<code>filter</code> key is <code>null</code></li>\n<li>[Fix] <code>utils.merge</code>: functions should not be stringified\ninto keys</li>\n<li>[Fix] <code>parse</code>: avoid a crash with\ninterpretNumericEntities: true, comma: true, and iso charset</li>\n<li>[Fix] <code>stringify</code>: ensure a non-string\n<code>filter</code> does not crash</li>\n<li>[Refactor] use <code>__proto__</code> syntax instead of\n<code>Object.create</code> for null objects</li>\n<li>[Refactor] misc cleanup</li>\n<li>[Tests] <code>utils.merge</code>: add some coverage</li>\n<li>[Tests] fix a test case</li>\n<li>[actions] split out node 10-20, and 20+</li>\n<li>[Dev Deps] update <code>es-value-fixtures</code>,\n<code>mock-property</code>, <code>object-inspect</code>,\n<code>tape</code></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a\nhref=\"https://github.com/ljharb/qs/commit/3fa11a5f643c76896387bd2d86904a2d0141fdf7\"><code>3fa11a5</code></a>\nv6.14.1</li>\n<li><a\nhref=\"https://github.com/ljharb/qs/commit/a62670423c1ccab0dd83c621bfb98c7c024e314d\"><code>a626704</code></a>\n[Dev Deps] update <code>npmignore</code></li>\n<li><a\nhref=\"https://github.com/ljharb/qs/commit/3086902ecf7f088d0d1803887643ac6c03d415b9\"><code>3086902</code></a>\n[Fix] ensure arrayLength applies to <code>[]</code> notation as\nwell</li>\n<li><a\nhref=\"https://github.com/ljharb/qs/commit/fc7930e86c2264c1568c9f5606830e19b0bc2af2\"><code>fc7930e</code></a>\n[Dev Deps] update <code>eslint</code>,\n<code>@ljharb/eslint-config</code></li>\n<li><a\nhref=\"https://github.com/ljharb/qs/commit/0b06aac566abee45ef0327667a7cc89e7aed8b58\"><code>0b06aac</code></a>\n[Dev Deps] update <code>@ljharb/eslint-config</code></li>\n<li><a\nhref=\"https://github.com/ljharb/qs/commit/64951f6200a1fb72cc003c6e8226dde3d2ef591f\"><code>64951f6</code></a>\n[Refactor] <code>parse</code>: extract key segment splitting helper</li>\n<li><a\nhref=\"https://github.com/ljharb/qs/commit/e1bd2599cdff4c936ea52fb1f16f921cbe7aa88c\"><code>e1bd259</code></a>\n[Dev Deps] update <code>@ljharb/eslint-config</code></li>\n<li><a\nhref=\"https://github.com/ljharb/qs/commit/f4b3d39709fef6ddbd85128d1ba4c6b566c4902e\"><code>f4b3d39</code></a>\n[eslint] add eslint 9 optional peer dep</li>\n<li><a\nhref=\"https://github.com/ljharb/qs/commit/6e94d9596ca50dffafcef40a5f64eca89962cf34\"><code>6e94d95</code></a>\n[Dev Deps] update <code>eslint</code>,\n<code>@ljharb/eslint-config</code>, <code>npmignore</code></li>\n<li><a\nhref=\"https://github.com/ljharb/qs/commit/973dc3c51c86da9f4e30edeb4b1725158d439102\"><code>973dc3c</code></a>\n[actions] add workflow permissions</li>\n<li>Additional commits viewable in <a\nhref=\"https://github.com/ljharb/qs/compare/v6.13.0...v6.14.1\">compare\nview</a></li>\n</ul>\n</details>\n<br />\n\nUpdates `react-router` from 7.6.0 to 7.13.0\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/remix-run/react-router/releases\">react-router's\nreleases</a>.</em></p>\n<blockquote>\n<h2>v7.13.0</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v7130\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v7130</a></p>\n<h2>v7.12.0</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v7120\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v7120</a></p>\n<h2>v7.11.0</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v7110\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v7110</a></p>\n<h2>v7.10.1</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v7101\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v7101</a></p>\n<h2>v7.10.0</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v7100\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v7100</a></p>\n<h2>v7.9.6</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v796\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v796</a></p>\n<h2>v7.9.5</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v795\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v795</a></p>\n<h2>v7.9.4</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v794\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v794</a></p>\n<h2>v7.9.3</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v793\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v793</a></p>\n<h2>v7.9.2</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v792\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v792</a></p>\n<h2>v7.9.1</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v791\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v791</a></p>\n<h2>v7.9.0</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v790\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v790</a></p>\n<h2>v7.8.2</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v782\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v782</a></p>\n<h2>v7.8.1</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v781\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v781</a></p>\n<h2>v7.8.0</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v780\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v780</a></p>\n<h2>v7.7.1</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v771\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v771</a></p>\n<h2>v7.7.0</h2>\n<p>See the changelog for release notes: <a\nhref=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v770\">https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v770</a></p>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/remix-run/react-router/blob/main/packages/react-router/CHANGELOG.md\">react-router's\nchangelog</a>.</em></p>\n<blockquote>\n<h2>7.13.0</h2>\n<h3>Minor Changes</h3>\n<ul>\n<li>Add <code>crossOrigin</code> prop to <code>Links</code> component\n(<a\nhref=\"https://redirect.github.com/remix-run/react-router/pull/14687\">#14687</a>)</li>\n</ul>\n<h3>Patch Changes</h3>\n<ul>\n<li>Fix double slash normalization for useNavigate colon urls (<a\nhref=\"https://redirect.github.com/remix-run/react-router/pull/14718\">#14718</a>)</li>\n<li>Update failed origin checks to return a 400 status instead of a 500\n(<a\nhref=\"https://redirect.github.com/remix-run/react-router/pull/14737\">#14737</a>)</li>\n<li>Bugfix <a\nhref=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14666\">#14666</a>:\nInline criticalCss is missing nonce (<a\nhref=\"https://redirect.github.com/remix-run/react-router/pull/14691\">#14691</a>)</li>\n<li>Loosen <code>allowedActionOrigins</code> glob check so\n<code>**</code> matches all domains (<a\nhref=\"https://redirect.github.com/remix-run/react-router/pull/14722\">#14722</a>)</li>\n</ul>\n<h2>7.12.0</h2>\n<h3>Minor Changes</h3>\n<ul>\n<li>Add additional layer of CSRF protection by rejecting submissions to\nUI routes from external origins. If you need to permit access to\nspecific external origins, you can specify them in the\n<code>react-router.config.ts</code> config\n<code>allowedActionOrigins</code> field. (<a\nhref=\"https://redirect.github.com/remix-run/react-router/pull/14708\">#14708</a>)</li>\n</ul>\n<h3>Patch Changes</h3>\n<ul>\n<li>\n<p>Fix <code>generatePath</code> when used with suffixed params (i.e.,\n&quot;/books/:id.json&quot;) (<a\nhref=\"https://redirect.github.com/remix-run/react-router/pull/14269\">#14269</a>)</p>\n</li>\n<li>\n<p>Export <code>UNSAFE_createMemoryHistory</code> and\n<code>UNSAFE_createHashHistory</code> alongside\n<code>UNSAFE_createBrowserHistory</code> for consistency. These are not\nintended to be used for new apps but intended to help apps usiong\n<code>unstable_HistoryRouter</code> migrate from v6-&gt;v7 so they can\nadopt the newer APIs. (<a\nhref=\"https://redirect.github.com/remix-run/react-router/pull/14663\">#14663</a>)</p>\n</li>\n<li>\n<p>Escape HTML in scroll restoration keys (<a\nhref=\"https://redirect.github.com/remix-run/react-router/pull/14705\">#14705</a>)</p>\n</li>\n<li>\n<p>Validate redirect locations (<a\nhref=\"https://redirect.github.com/remix-run/react-router/pull/14706\">#14706</a>)</p>\n</li>\n<li>\n<p>[UNSTABLE] Pass <code>&lt;Scripts nonce&gt;</code> value through to\nthe underlying <code>importmap</code> <code>script</code> tag when using\n<code>future.unstable_subResourceIntegrity</code> (<a\nhref=\"https://redirect.github.com/remix-run/react-router/pull/14675\">#14675</a>)</p>\n</li>\n<li>\n<p>[UNSTABLE] Add a new\n<code>future.unstable_trailingSlashAwareDataRequests</code> flag to\nprovide consistent behavior of <code>request.pathname</code> inside\n<code>middleware</code>, <code>loader</code>, and <code>action</code>\nfunctions on document and data requests when a trailing slash is present\nin the browser URL. (<a\nhref=\"https://redirect.github.com/remix-run/react-router/pull/14644\">#14644</a>)</p>\n<p>Currently, your HTTP and <code>request</code> pathnames would be as\nfollows for <code>/a/b/c</code> and <code>/a/b/c/</code></p>\n<table>\n<thead>\n<tr>\n<th>URL <code>/a/b/c</code></th>\n<th><strong>HTTP pathname</strong></th>\n<th><strong><code>request</code> pathname`</strong></th>\n</tr>\n</thead>\n<tbody>\n<tr>\n<td><strong>Document</strong></td>\n<td><code>/a/b/c</code></td>\n<td><code>/a/b/c</code> ✅</td>\n</tr>\n<tr>\n<td><strong>Data</strong></td>\n<td><code>/a/b/c.data</code></td>\n<td><code>/a/b/c</code> ✅</td>\n</tr>\n</tbody>\n</table>\n<table>\n<thead>\n<tr>\n<th>URL <code>/a/b/c/</code></th>\n<th><strong>HTTP pathname</strong></th>\n<th><strong><code>request</code> pathname`</strong></th>\n</tr>\n</thead>\n<tbody>\n<tr>\n<td><strong>Document</strong></td>\n<td><code>/a/b/c/</code></td>\n<td><code>/a/b/c/</code> ✅</td>\n</tr>\n<tr>\n<td><strong>Data</strong></td>\n<td><code>/a/b/c.data</code></td>\n<td><code>/a/b/c</code> ⚠️</td>\n</tr>\n</tbody>\n</table>\n<p>With this flag enabled, these pathnames will be made consistent\nthough a new <code>_.data</code> format for client-side\n<code>.data</code> requests:</p>\n<table>\n<thead>\n<tr>\n<th>URL <code>/a/b/c</code></th>\n<th><strong>HTTP pathname</strong></th>\n<th><strong><code>request</code> pathname`</strong></th>\n</tr>\n</thead>\n<tbody>\n<tr>\n<td><strong>Document</strong></td>\n<td><code>/a/b/c</code></td>\n<td><code>/a/b/c</code> ✅</td>\n</tr>\n</tbody>\n</table>\n</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a\nhref=\"https://github.com/remix-run/react-router/commit/5557ba3f848e52dfe400a47cc28256a51e13a150\"><code>5557ba3</code></a>\nchore: Update version for release (<a\nhref=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14749\">#14749</a>)</li>\n<li><a\nhref=\"https://github.com/remix-run/react-router/commit/62c6e0effd9ae754fa05b1812fd013341226c0cb\"><code>62c6e0e</code></a>\nchore: Update version for release (pre) (<a\nhref=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14738\">#14738</a>)</li>\n<li><a\nhref=\"https://github.com/remix-run/react-router/commit/3126264a690b1de97666fbd0c804b001d1c98235\"><code>3126264</code></a>\nReturn 400 response on failed origin checks (<a\nhref=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14737\">#14737</a>)</li>\n<li><a\nhref=\"https://github.com/remix-run/react-router/commit/3a5b5ad0e5cf9918c646509563f5c41a89226ff3\"><code>3a5b5ad</code></a>\nFix double slash normalization for <code>useNavigate</code> paths with\ncolons (<a\nhref=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14718\">#14718</a>)</li>\n<li><a\nhref=\"https://github.com/remix-run/react-router/commit/f29c6c95631368afa1b475f824854a781e690c02\"><code>f29c6c9</code></a>\nAdd docs and loosen origins wildcard check (<a\nhref=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14722\">#14722</a>)</li>\n<li><a\nhref=\"https://github.com/remix-run/react-router/commit/0bb972b74740cad416f5e551c10b54f2c20078ef\"><code>0bb972b</code></a>\nfix(react-router/dom/ssr): add <code>nonce</code> to inline critical css\n(<a\nhref=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14691\">#14691</a>)</li>\n<li><a\nhref=\"https://github.com/remix-run/react-router/commit/dd08f8d3b152ac3b6e7d126680fb74d88d18de9a\"><code>dd08f8d</code></a>\nfix(react-router): add crossOrigin prop to Links component (<a\nhref=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14687\">#14687</a>)</li>\n<li><a\nhref=\"https://github.com/remix-run/react-router/commit/c38d76ce4e9c7d3b689d7b375032859ea7b29d7f\"><code>c38d76c</code></a>\nchore: format</li>\n<li><a\nhref=\"https://github.com/remix-run/react-router/commit/26653a6bcbf8a9c5541f99dcfb526eafadf13434\"><code>26653a6</code></a>\nchore: Update version for release (<a\nhref=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14712\">#14712</a>)</li>\n<li><a\nhref=\"https://github.com/remix-run/react-router/commit/7ac2346873b4bba26d16c88e5cd5c5cb81ce6bb3\"><code>7ac2346</code></a>\nchore: Update version for release (pre) (<a\nhref=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14709\">#14709</a>)</li>\n<li>Additional commits viewable in <a\nhref=\"https://github.com/remix-run/react-router/commits/react-router@7.13.0/packages/react-router\">compare\nview</a></li>\n</ul>\n</details>\n<details>\n<summary>Maintainer changes</summary>\n<p>This version was pushed to npm by [GitHub Actions](<a\nhref=\"https://www.npmjs.com/~GitHub\">https://www.npmjs.com/~GitHub</a>\nActions), a new releaser for react-router since your current\nversion.</p>\n</details>\n<br />\n\n\nDependabot will resolve any conflicts with this PR as long as you don't\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore <dependency name> major version` will close this\ngroup update PR and stop Dependabot creating any more for the specific\ndependency's major version (unless you unignore this specific\ndependency's major version or upgrade to it yourself)\n- `@dependabot ignore <dependency name> minor version` will close this\ngroup update PR and stop Dependabot creating any more for the specific\ndependency's minor version (unless you unignore this specific\ndependency's minor version or upgrade to it yourself)\n- `@dependabot ignore <dependency name>` will close this group update PR\nand stop Dependabot creating any more for the specific dependency\n(unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore <dependency name>` will remove all of the ignore\nconditions of the specified dependency\n- `@dependabot unignore <dependency name> <ignore condition>` will\nremove the ignore condition of the specified dependency and ignore\nconditions\nYou can disable automated security fix PRs for this repo from the\n[Security Alerts\npage](https://github.com/git-bug/git-bug/network/alerts).\n\n</details>\n\nSigned-off-by: dependabot[bot] <support@github.com>\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>",
+          "timestamp": "2026-01-27T17:21:02Z",
+          "tree_id": "c167b6374917771a840808b3b547027b73809ef9",
+          "url": "https://github.com/git-bug/git-bug/commit/0d58c4961980536c6e33638919ebac52d58bc757"
+        },
+        "date": 1769535010388,
+        "tool": "go",
+        "benches": [
+          {
+            "name": "BenchmarkReadBugs5",
+            "value": 15861282,
+            "unit": "ns/op\t 1064184 B/op\t   16256 allocs/op",
+            "extra": "102 times\n4 procs"
+          },
+          {
+            "name": "BenchmarkReadBugs5 - ns/op",
+            "value": 15861282,
+            "unit": "ns/op",
+            "extra": "102 times\n4 procs"
+          },
+          {
+            "name": "BenchmarkReadBugs5 - B/op",
+            "value": 1064184,
+            "unit": "B/op",
+            "extra": "102 times\n4 procs"
+          },
+          {
+            "name": "BenchmarkReadBugs5 - allocs/op",
+            "value": 16256,
+            "unit": "allocs/op",
+            "extra": "102 times\n4 procs"
+          },
+          {
+            "name": "BenchmarkReadBugs25",
+            "value": 73467632,
+            "unit": "ns/op\t 5064677 B/op\t   75781 allocs/op",
+            "extra": "14 times\n4 procs"
+          },
+          {
+            "name": "BenchmarkReadBugs25 - ns/op",
+            "value": 73467632,
+            "unit": "ns/op",
+            "extra": "14 times\n4 procs"
+          },
+          {
+            "name": "BenchmarkReadBugs25 - B/op",
+            "value": 5064677,
+            "unit": "B/op",
+            "extra": "14 times\n4 procs"
+          },
+          {
+            "name": "BenchmarkReadBugs25 - allocs/op",
+            "value": 75781,
+            "unit": "allocs/op",
+            "extra": "14 times\n4 procs"
+          },
+          {
+            "name": "BenchmarkReadBugs150",
+            "value": 436121939,
+            "unit": "ns/op\t35551434 B/op\t  465709 allocs/op",
+            "extra": "3 times\n4 procs"
+          },
+          {
+            "name": "BenchmarkReadBugs150 - ns/op",
+            "value": 436121939,
+            "unit": "ns/op",
+            "extra": "3 times\n4 procs"
+          },
+          {
+            "name": "BenchmarkReadBugs150 - B/op",
+            "value": 35551434,
+            "unit": "B/op",
+            "extra": "3 times\n4 procs"
+          },
+          {
+            "name": "BenchmarkReadBugs150 - allocs/op",
+            "value": 465709,
+            "unit": "allocs/op",
+            "extra": "3 times\n4 procs"
+          }
+        ]
       }
     ]
   }

URL `/a/b/c`	HTTP pathname	`request` pathname`
Document	`/a/b/c`	`/a/b/c` ✅
Data	`/a/b/c.data`	`/a/b/c` ✅
URL `/a/b/c/`	HTTP pathname	`request` pathname`
Document	`/a/b/c/`	`/a/b/c/` ✅
Data	`/a/b/c.data`	`/a/b/c` ⚠️