This PR contains the following updates: | Package | Change | Age | Confidence | |---|---|---|---| | [astro](https://astro.build) ([source](https://redirect.github.com/withastro/astro/tree/HEAD/packages/astro)) | [`5.15.7` -> `5.15.8`](https://renovatebot.com/diffs/npm/astro/5.15.7/5.15.8) | [![age](https://developer.mend.io/api/mc/badges/age/npm/astro/5.15.8?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/astro/5.15.7/5.15.8?slim=true)](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>withastro/astro (astro)</summary> ### [`v5.15.8`](https://redirect.github.com/withastro/astro/blob/HEAD/packages/astro/CHANGELOG.md#5158) [Compare Source](https://redirect.github.com/withastro/astro/compare/astro@5.15.7...astro@5.15.8) ##### Patch Changes - [#14772](https://redirect.github.com/withastro/astro/pull/14772) [`00c579a`](https://redirect.github.com/withastro/astro/commit/00c579a23322d92459e4ccad0ec365c4d1980a5d) Thanks [@matthewp](https://redirect.github.com/matthewp)! - Improves the security of Server Islands slots by encrypting them before transmission to the browser, matching the security model used for props. This improves the integrity of slot content and prevents injection attacks, even when component templates don't explicitly support slots. Slots continue to work as expected for normal usage—this change has no breaking changes for legitimate requests. - [#14771](https://redirect.github.com/withastro/astro/pull/14771) [`6f80081`](https://redirect.github.com/withastro/astro/commit/6f800813516b07bbe12c666a92937525fddb58ce) Thanks [@matthewp](https://redirect.github.com/matthewp)! - Fix middleware pathname matching by normalizing URL-encoded paths Middleware now receives normalized pathname values, ensuring that encoded paths like `/%61dmin` are properly decoded to `/admin` before middleware checks. This prevents potential security issues where middleware checks might be bypassed through URL encoding. </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/creatorsgarten/contentsgarten).  Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>