[Snyk] Upgrade @radix-ui/react-popover from 1.1.14 to 1.1.15

[ntindle]

Snyk has created this PR to upgrade @radix-ui/react-popover from 1.1.14 to 1.1.15.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 11 versions ahead of your current version.

• The recommended version was released a month ago.

Release notes

Package name: @radix-ui/react-popover

• 1.1.15 - 2025-08-13
• 1.1.15-rc.1755205432459 - 2025-08-14
• 1.1.15-rc.1755201399387 - 2025-08-14
• 1.1.15-rc.1755118410828 - 2025-08-13
• 1.1.15-rc.1755114563302 - 2025-08-13
• 1.1.15-rc.1752791004720 - 2025-07-17
• 1.1.15-rc.1752166910601 - 2025-07-10
• 1.1.15-rc.1752166434368 - 2025-07-10
• 1.1.15-rc.1752166197873 - 2025-07-10
• 1.1.15-rc.1752165236204 - 2025-07-10
• 1.1.15-rc.1751501220403 - 2025-07-03
• 1.1.14 - 2025-05-20

from @radix-ui/react-popover GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[claude]

Claude finished @ntindle's task —— View job

---

Code Review: @radix-ui/react-popover Upgrade (1.1.14 → 1.1.15)

Review Checklist

• Analyze the dependency upgrade changes
• Search for @radix-ui/react-popover usage in the codebase
• Check for potential breaking changes
• Verify compatibility with the project
• Provide comprehensive review feedback

---

✅ What looks good

1. Minor version bump: This is a patch release (1.1.14 → 1.1.15), which according to semantic versioning should only contain backwards-compatible bug fixes.

2. Minimal impact: The package is properly encapsulated in the src/components/ui/popover.tsx component wrapper, which follows the shadcn/ui pattern. This abstraction layer minimizes the impact of any changes.

3. Limited usage: The Popover component is only used in one place in the codebase:

   • src/components/GridfinityCalculator/PrinterSettings.tsx - Used for the printer selection dropdown

4. Clean implementation: The popover wrapper properly forwards all props and refs, making it resilient to minor API changes.

5. TypeScript compatibility: The project uses TypeScript with proper type definitions, which would catch any breaking type changes at build time.

⚠️ Suggestions for improvement

1. Version gap: Snyk mentions "The recommended version is 11 versions ahead of your current version." While this PR updates to 1.1.15, there might be newer versions available (possibly 1.1.25 or higher). Consider checking if there's a more recent stable version.

2. Testing: After merging, it would be good to manually test the printer selection dropdown in PrinterSettings.tsx to ensure the popover still functions correctly (opening, closing, positioning, and keyboard navigation).

3. Bundle size: Minor version updates sometimes include dependency updates that could affect bundle size. Consider checking the build output size after the update.

🚨 Critical issues

None identified. This appears to be a safe, routine dependency update.

Summary

This is a low-risk dependency update that should be safe to merge. The change from @radix-ui/react-popover 1.1.14 to 1.1.15 is a patch release that should only contain bug fixes. The limited usage of this component in the codebase (only in the printer selection dropdown) and the abstraction layer provided by the shadcn/ui wrapper minimize any potential impact.

Recommendation: ✅ Approve and merge after running the standard CI/CD checks.

Additional Notes

• The project correctly follows the CLAUDE.md guidelines by using TypeScript and the @/ import alias
• No native JavaScript math operations or unitMath concerns apply to this UI component update
• The popover component is purely a UI element and doesn't involve any Gridfinity calculations

[netlify]

✅ Deploy Preview for gridfinity-drawer-planner ready!

Name	Link
🔨 Latest commit	bd7185c
🔍 Latest deploy log	https://app.netlify.com/projects/gridfinity-drawer-planner/deploys/68c3c6b9d0313500084f9fd9
😎 Deploy Preview	https://deploy-preview-47--gridfinity-drawer-planner.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
⚠️ Please upload report for BASE (main@bf3978a). Learn more about missing BASE report.
✅ All tests successful. No failed tests found.

Additional details and impacted files

@@           Coverage Diff           @@
##             main      #47   +/-   ##
=======================================
  Coverage        ?   64.43%           
=======================================
  Files           ?       49           
  Lines           ?     3430           
  Branches        ?      319           
=======================================
  Hits            ?     2210           
  Misses          ?     1198           
  Partials        ?       22           

Flag	Coverage Δ
unittests	64.43% <ø> (?)

Flags with carried forward coverage won't be shown. Click here to find out more.

🚀 New features to boost your workflow:

• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[github-actions]

PR Quality Report 📊

Check	Status
TypeScript	✅
ESLint	✅
Tests	✅
Build	✅

View detailed results