Skip to content

chore(deps): bump @getbrevo/brevo from 5.0.4 to 6.0.1 in /app#342

Open
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/bun/app/getbrevo/brevo-6.0.1
Open

chore(deps): bump @getbrevo/brevo from 5.0.4 to 6.0.1 in /app#342
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/bun/app/getbrevo/brevo-6.0.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor

Bumps @getbrevo/brevo from 5.0.4 to 6.0.1.

Release notes

Sourced from @​getbrevo/brevo's releases.

v6.0.1

First stable release of the v6 line. This is a major release with breaking changes — see the migration notes below before upgrading. v5.x remains supported and continues to receive wire-compatibility fixes.

npm install @getbrevo/brevo@^6.0.1

Why this release

Most of the breaking changes in v6 come from an internal effort at Brevo to make our API endpoints, parameters and models more self-descriptive. The goal is to make the public surface easier to read at a glance — both for developers and for AI agents working against the Brevo API — so that names, shapes and required fields convey intent without needing to cross-reference external docs. Concretely, this means consistent camelCase parameters, payload wrappers that reflect what the endpoint actually does (e.g. { events: [...] }), filter keys that match the wire format, and model fields renamed or removed where the previous names were ambiguous or misleading.

We're aware that renaming costs callers a one-time migration, and we've kept v5.x supported so you can adopt v6 on your own timeline.

⚠️ Breaking changes

Companies — getCompanies filter parameter renamed

  • client.companies.getCompanies({ filters }) — the filters parameter is renamed to the bracketed literal "filters[attributes.name]" to match the wire format.
  • The old filters name still compiles but the filter is silently dropped server-side and you get an unfiltered list. Audit every call site.

Events — createBatchEvents payload shape changed

  • client.event.createBatchEvents now wraps events in { events: [...] } instead of accepting a raw array.

Balance — getActiveBalancesApi response and parameter rename

  • Response type replaced: BalanceLimitGetLoyaltyBalanceProgramsPidActiveBalanceResponse.
  • Request parameters renamed from snake_case to camelCase: contact_idcontactId, balance_definition_idbalanceDefinitionId, sort_fieldsortField.

Balance — getContactBalances requires balanceDefinitionId

  • balanceDefinitionId is now a required parameter.

CRM — getCrmTasktypes returns an array

  • client.tasks.getCrmTasktypes return type changed from a single object to GetCrmTasktypesResponseItem[].

Model fields removed

  • GetWebhook.channel
  • GetProcessResponseInfo.export
  • GetEventsList.events[].source
  • GetExtendedCampaignOverview.utmIDActive — replaced by utmID: number

Model fields renamed

  • ConversationsMessage.File.filenamename
  • ConversationsMessage.File.urllink
  • SendTransacSms.tag is now string | string[] (previously an object { field?: ... })

Now-required fields

  • GetContactDetails.whatsappBlacklisted
  • Note.text
  • Task.date

Added

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [@getbrevo/brevo](https://github.com/getbrevo/brevo-node) from 5.0.4 to 6.0.1.
- [Release notes](https://github.com/getbrevo/brevo-node/releases)
- [Changelog](https://github.com/getbrevo/brevo-node/blob/main/changelog.md)
- [Commits](https://github.com/getbrevo/brevo-node/commits/v6.0.1)

---
updated-dependencies:
- dependency-name: "@getbrevo/brevo"
  dependency-version: 6.0.1
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 6, 2026
@github-actions

github-actions Bot commented Jul 6, 2026

Copy link
Copy Markdown

Dependency Review

The following issues were found:
  • ✅ 0 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 1 package(s) with unknown licenses.
See the Details below.

License Issues

app/package.json

PackageVersionLicenseIssue Type
@getbrevo/brevo^6.0.1NullUnknown License
Allowed Licenses: MIT, Apache-2.0, BSD-2-Clause, BSD-3-Clause, ISC, MPL-2.0, 0BSD, Unlicense, CC0-1.0

OpenSSF Scorecard

PackageVersionScoreDetails
npm/@getbrevo/brevo ^6.0.1 UnknownUnknown

Scanned Files

  • app/package.json

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants