From e0e25eac2bbf4d9122a90279e6d33c2aa4e6611a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 19 Mar 2026 10:10:58 +0100
Subject: [PATCH] chore(deps): bump @ai-sdk/mistral from 3.0.20 to 3.0.25
(#18755)
Bumps [@ai-sdk/mistral](https://github.com/vercel/ai) from 3.0.20 to
3.0.25.
Commits
4c1613a
Version Packages (#13131)64ac0fd
Backport: fix(security): validate redirect targets in download functions
to p...f622bf8
Version Packages (#13126)e2a59ef
Backport: fix(provider/google): preserve groundingMetadata when streamed
befo...ebf43a6
Version Packages (#13120)2589004
Backport: feat(openai): add GPT-5.4 model support (#13117)d23121f
Backport: chore(ai): add optional ChatRequestOptions to
`addToolApprovalRespo...55a2acf
Version Packages (#13101)45d71c3
Backport: fix(google): use VALIDATED function calling mode when any tool
has ...ee92dc7
ci(release): add --tag ai-v6 to ci:release
script (#13096)- Additional commits viewable in compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
yarn.lock | 21 +++++++++++++++++----
1 file changed, 17 insertions(+), 4 deletions(-)
diff --git a/yarn.lock b/yarn.lock
index 24d6bca608b..a015397c4d3 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -102,14 +102,14 @@ __metadata:
linkType: hard
"@ai-sdk/mistral@npm:^3.0.20":
- version: 3.0.20
- resolution: "@ai-sdk/mistral@npm:3.0.20"
+ version: 3.0.25
+ resolution: "@ai-sdk/mistral@npm:3.0.25"
dependencies:
"@ai-sdk/provider": "npm:3.0.8"
- "@ai-sdk/provider-utils": "npm:4.0.15"
+ "@ai-sdk/provider-utils": "npm:4.0.20"
peerDependencies:
zod: ^3.25.76 || ^4.1.8
- checksum: 10c0/32caf651dae8a0fb7b7faceb8706e711404a32bc21aea94fe6bcbbe6adb09c31fc6563efd28547bdcbbfe99165145ec73fe83f4b54bd75f290b6020cc9834bc7
+ checksum: 10c0/4ea732fc807e9e8f143ecbc3168e103dbb0c43f611ab9d9fdfe532510059c18aa8b44a61c7eafda4d9a91977e7d83fa94022c4aa39be21ad035b186f8471384f
languageName: node
linkType: hard
@@ -163,6 +163,19 @@ __metadata:
languageName: node
linkType: hard
+"@ai-sdk/provider-utils@npm:4.0.20":
+ version: 4.0.20
+ resolution: "@ai-sdk/provider-utils@npm:4.0.20"
+ dependencies:
+ "@ai-sdk/provider": "npm:3.0.8"
+ "@standard-schema/spec": "npm:^1.1.0"
+ eventsource-parser: "npm:^3.0.6"
+ peerDependencies:
+ zod: ^3.25.76 || ^4.1.8
+ checksum: 10c0/749d9f91b2b098f716246bbb92a801d0f8a952fed4481e48b7d36a1c026cfe96b9d956f34b95270bc4628048ad57edd7b19026c167e8ded288e741aa289d4cdd
+ languageName: node
+ linkType: hard
+
"@ai-sdk/provider@npm:2.0.1":
version: 2.0.1
resolution: "@ai-sdk/provider@npm:2.0.1"