Update all non-major dependencies

[renovate]

Note

Mend has cancelled the proposed renaming of the Renovate GitHub app being renamed to mend[bot].

This notice will be removed on 2025-10-07.

---

This PR contains the following updates:

Package	Change	Age	Confidence
@iconify-json/lucide	1.2.63 -> 1.2.68
@iconify-json/simple-icons	1.2.48 -> 1.2.53
@sveltejs/vite-plugin-svelte (source)	6.1.3 -> 6.2.1
@tsconfig/strictest (source)	2.0.5 -> 2.0.6
@tsconfig/svelte (source)	5.0.4 -> 5.0.5
@unocss/preset-icons (source)	66.4.2 -> 66.5.2
@unocss/preset-web-fonts (source)	66.4.2 -> 66.5.2
@unocss/preset-wind3 (source)	66.4.2 -> 66.5.2
@unocss/reset (source)	66.4.2 -> 66.5.2
@unocss/transformer-compile-class (source)	66.4.2 -> 66.5.2
@unocss/vite (source)	66.4.2 -> 66.5.2
meilisearch	0.52.0 -> 0.53.0
mutative (source)	1.2.0 -> 1.3.0
pnpm (source)	10.15.0 -> 10.17.1
svelte (source)	5.38.2 -> 5.39.8
svelte-check	4.3.1 -> 4.3.2
typescript (source)	5.9.2 -> 5.9.3
vite (source)	7.1.4 -> 7.1.14

---

Release Notes

sveltejs/vite-plugin-svelte (@​sveltejs/vite-plugin-svelte)

v6.2.1

Compare Source

Patch Changes

• fix: remove unscopable global styles warning (#​1223)

• Remove automatic configuration for rolldownOptions.optimization.inlineConst because latest version of rolldown-vite has it enabled by default. (#​1225)

v6.2.0

Compare Source

Minor Changes

• feat(rolldown-vite): enable optimization.inlineConst by default to ensure treeshaking works with esm-env in svelte (#​1207)

v6.1.4

Compare Source

Patch Changes

• fix: allow preprocess plugin to run twice (#​1206)

• fix(types): update urls to PreprocessorGroup and CompileOptions in type documention (#​1203)

• replace kleur dependency with builtin node:utils styleText (#​1210)

tsconfig/bases (@​tsconfig/strictest)

v2.0.6

Compare Source

unocss/unocss (@​unocss/preset-icons)

v66.5.2

Compare Source

   🐞 Bug Fixes

• eslint: Enhance handling of array expressions  -  by @​julienbenac and @​zyyv in #​4925 (d5e08)
• preset-wind4: Add unit for 0 deg close #​4921  -  by @​zyyv in #​4921 (cb7ae)
• transformer-directive: Replace $$ selector with nomerge utils  -  by @​zyyv in #​4930 (1a448)

    View changes on GitHub

v66.5.1

Compare Source

   🐞 Bug Fixes

• preset-web-fonts: Handle errors during web fonts preflight fetch  -  by @​luoling8192 in #​4912 (c4098)
• transformer-directives: Implicitly :where() selector in apply  -  by @​Jungzl in #​4913 (b7ba8)

    View changes on GitHub

v66.5.0

Compare Source

   🚀 Features

• core: Enhance raw css utils parse with apply variants  -  by @​zyyv in #​4889 (e91d1)
• preset-web-fonts: Add fetch option to LocalFontProcessor  -  by @​runyasak in #​4894 (dda90)

   🐞 Bug Fixes

• autocomplete:
  • Respect variant autocomplete template without mutipass  -  by @​zyyv in #​4891 (3587a)
• eslint:
  • Disallow extra properties in rule options  -  by @​andreww2012 in #​4873 (89243)
• playground:
  • Add import map plugin  -  by @​Jungzl in #​4874 (a587c)
• preset-typography:
  • Start with selectorName by default related to #​4882  -  by @​zyyv in #​4882 (45ca1)
• preset-web-fonts:
  • Support width axis and single axis config for google provider  -  by @​Jungzl, @​zyyv and Copilot in #​4878 (86435)
• preset-wind4:
  • Exclude containers key in theme preflight close #​4870  -  by @​zyyv in #​4870 (84c69)
  • space & divide aligned with tw4  -  by @​Jungzl in #​4879 (56e58)
  • Negative variant for scale rule  -  by @​Jungzl in #​4881 (c8863)
  • box-shadow & text-shadow & drop-shadow aligned with tw4  -  by @​Jungzl in #​4888 (4e6c2)
• svelte-scoped:
  • Update preset-typography usage in svelte  -  by @​zyyv in #​4900 (79c71)
• transformer-directives:
  • @apply in grouping selectors  -  by @​Jungzl in #​4895 (30bcc)

   🏎 Performance

• core: Cache rule index to reduce query index  -  by @​lghuahua and @​zyyv in #​4892 (48ea5)

    View changes on GitHub

meilisearch/meilisearch-js (meilisearch)

v0.53.0

Compare Source

🚀 Enhancements

• Add multi-modal search (#​1998) @​Strift

⚙️ Maintenance/misc

• Fix index swaps types (#​2000) @​Strift
• Use package.json directly for version in src/ files, bundle ESM too with Vite (#​2012) @​flevi29

Thanks again to @​Strift and @​flevi29! 🎉

unadlib/mutative (mutative)

v1.3.0: 1.3.0

Compare Source

What's Changed

• build(deps-dev): bump typedoc-plugin-markdown from 4.6.3 to 4.7.0 by @​dependabot[bot] in #​80
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 8.15.0 to 8.32.1 by @​dependabot[bot] in #​81
• build(deps-dev): bump eslint-plugin-import from 2.30.0 to 2.32.0 by @​dependabot[bot] in #​82
• build(deps-dev): bump eslint-plugin-prettier from 5.2.1 to 5.5.1 by @​dependabot[bot] in #​83
• build(deps-dev): bump eslint-config-prettier from 9.1.0 to 10.1.5 by @​dependabot[bot] in #​84
• perf(cache): improve drafts cache for perf by @​unadlib in #​136
  • Array filter operations are 1.63x faster
  • Array update operations are a whopping 3.1x faster
  • Array remove operations see a 1.31x speed boost
• fix(type): export DraftedObject by @​unadlib in #​137

Full Changelog: unadlib/mutative@v1.2.0...v1.3.0

pnpm/pnpm (pnpm)

v10.17.1

Compare Source

Patch Changes

• When a version specifier cannot be resolved because the versions don't satisfy the minimumReleaseAge setting, print this information out in the error message #​9974.
• Fix state.json creation path when executing pnpm patch in a workspace project #​9733.
• When minimumReleaseAge is set and the latest tag is not mature enough, prefer a non-deprecated version as the new latest #​9987.

v10.17.0

Compare Source

Minor Changes

• The minimumReleaseAgeExclude setting now supports patterns. For instance:

  minimumReleaseAge: 1440
  minimumReleaseAgeExclude:
    - "@​eslint/*"

  Related PR: #​9984.

Patch Changes

• Don't ignore the minimumReleaseAge check, when the package is requested by exact version and the packument is loaded from cache #​9978.
• When minimumReleaseAge is set and the active version under a dist-tag is not mature enough, do not downgrade to a prerelease version in case the original version wasn't a prerelease one #​9979.

v10.16.1

Compare Source

Patch Changes

• The full metadata cache should be stored not at the same location as the abbreviated metadata. This fixes a bug where pnpm was loading the abbreviated metadata from cache and couldn't find the "time" field as a result #​9963.
• Forcibly disable ANSI color codes when generating patch diff #​9914.

v10.16.0

Compare Source

Minor Changes

• There have been several incidents recently where popular packages were successfully attacked. To reduce the risk of installing a compromised version, we are introducing a new setting that delays the installation of newly released dependencies. In most cases, such attacks are discovered quickly and the malicious versions are removed from the registry within an hour.

  The new setting is called minimumReleaseAge. It specifies the number of minutes that must pass after a version is published before pnpm will install it. For example, setting minimumReleaseAge: 1440 ensures that only packages released at least one day ago can be installed.

  If you set minimumReleaseAge but need to disable this restriction for certain dependencies, you can list them under the minimumReleaseAgeExclude setting. For instance, with the following configuration pnpm will always install the latest version of webpack, regardless of its release time:

  minimumReleaseAgeExclude:
    - webpack

  Related issue: #​9921.

• Added support for finders #​9946.

  In the past, pnpm list and pnpm why could only search for dependencies by name (and optionally version). For example:

  pnpm why minimist
  

  prints the chain of dependencies to any installed instance of minimist:

  verdaccio 5.20.1
  ├─┬ handlebars 4.7.7
  │ └── minimist 1.2.8
  └─┬ mv 2.1.1
    └─┬ mkdirp 0.5.6
      └── minimist 1.2.8
  

  What if we want to search by other properties of a dependency, not just its name? For instance, find all packages that have react@17 in their peer dependencies?

  This is now possible with "finder functions". Finder functions can be declared in .pnpmfile.cjs and invoked with the --find-by=<function name> flag when running pnpm list or pnpm why.

  Let's say we want to find any dependencies that have React 17 in peer dependencies. We can add this finder to our .pnpmfile.cjs:

  module.exports = {
    finders: {
      react17: (ctx) => {
        return ctx.readManifest().peerDependencies?.react === "^17.0.0";
      },
    },
  };

  Now we can use this finder function by running:

  pnpm why --find-by=react17
  

  pnpm will find all dependencies that have this React in peer dependencies and print their exact locations in the dependency graph.

  @​apollo/client 4.0.4
  ├── @​graphql-typed-document-node/core 3.2.0
  └── graphql-tag 2.12.6
  

  It is also possible to print out some additional information in the output by returning a string from the finder. For example, with the following finder:

  module.exports = {
    finders: {
      react17: (ctx) => {
        const manifest = ctx.readManifest();
        if (manifest.peerDependencies?.react === "^17.0.0") {
          return `license: ${manifest.license}`;
        }
        return false;
      },
    },
  };

  Every matched package will also print out the license from its package.json:

  @​apollo/client 4.0.4
  ├── @​graphql-typed-document-node/core 3.2.0
  │   license: MIT
  └── graphql-tag 2.12.6
      license: MIT
  

Patch Changes

• Fix deprecation warning printed when executing pnpm with Node.js 24 #​9529.
• Throw an error if nodeVersion is not set to an exact semver version #​9934.
• pnpm publish should be able to publish a .tar.gz file #​9927.
• Canceling a running process with Ctrl-C should make pnpm run return a non-zero exit code #​9626.

v10.15.1

Compare Source

Patch Changes

• Fix .pnp.cjs crash when importing subpath #​9904.
• When resolving peer dependencies, pnpm looks whether the peer dependency is present in the root workspace project's dependencies. This change makes it so that the peer dependency is correctly resolved even from aliased npm-hosted dependencies or other types of dependencies #​9913.

sveltejs/svelte (svelte)

v5.39.8

Compare Source

Patch Changes

• fix: check boundary pending attribute at runtime on server (#​16855)

• fix: preserve tuple type in $state.snapshot (#​16864)

• fix: allow await in svelte:boundary without pending (#​16857)

• fix: update bind:checked error message to clarify usage with radio inputs (#​16874)

v5.39.7

Compare Source

Patch Changes

• chore: simplify batch logic (#​16847)

• fix: rebase pending batches when other batches are committed (#​16866)

• fix: wrap async children in $$renderer.async (#​16862)

• fix: silence label warning for buttons and anchor tags with title attributes (#​16872)

• fix: coerce nullish <title> to empty string (#​16863)

v5.39.6

Compare Source

Patch Changes

• fix: depend on reads of deriveds created within reaction (async mode) (#​16823)

• fix: SSR regression of processing attributes of <select> and <option> (#​16821)

• fix: async class: + spread attributes were compiled into sync server-side code (#​16834)

• fix: ensure tick resolves within a macrotask (#​16825)

v5.39.5

Compare Source

Patch Changes

• fix: allow {@​html await ...} and snippets with async content on the server (#​16817)

• fix: use nginx SSI-compatible comments for $props.id() (#​16820)

v5.39.4

Compare Source

Patch Changes

• fix: restore hydration state after await in <script> (#​16806)

v5.39.3

Compare Source

Patch Changes

• fix: remove outer hydration markers (#​16800)

• fix: async hydration (#​16797)

v5.39.2

Compare Source

Patch Changes

• fix: preserve SSR context when block expressions contain await (#​16791)

• chore: bump some devDependencies (#​16787)

v5.39.1

Compare Source

Patch Changes

• fix: issue state_proxy_unmount warning when unmounting a state proxy (#​16747)

• fix: add then to class component render output (#​16783)

v5.39.0

Compare Source

Minor Changes

• feat: experimental async SSR (#​16748)

Patch Changes

• fix: correctly SSR hidden="until-found" (#​16773)

v5.38.10

Compare Source

Patch Changes

• fix: flush effects scheduled during boundary's pending phase (#​16738)

v5.38.9

Compare Source

Patch Changes

• chore: generate CSS hash using the filename (#​16740)

• fix: correctly analyze <object.property> components (#​16711)

• fix: clean up scheduling system (#​16741)

• fix: transform input defaults from spread (#​16481)

• fix: don't destroy contents of svelte:boundary unless the boundary is an error boundary (#​16746)

v5.38.8

Compare Source

Patch Changes

• fix: send $effect.pending count to the correct boundary (#​16732)

v5.38.7

Compare Source

Patch Changes

• fix: replace undefined with void(0) in CallExpressions (#​16693)

• fix: ensure batch exists when resetting a failed boundary (#​16698)

• fix: place store setup inside async body (#​16687)

v5.38.6

Compare Source

Patch Changes

• fix: don't fail on flushSync while flushing effects (#​16674)

v5.38.5

Compare Source

Patch Changes

• fix: ensure async deriveds always get dependencies from thennable (#​16672)

v5.38.3

Compare Source

Patch Changes

• fix: ensure correct order of template effect values (#​16655)

• fix: allow async {@​const} in more places (#​16643)

• fix: properly catch top level await errors (#​16619)

• perf: prune effects without dependencies (#​16625)

• fix: only emit for_await_track_reactivity_loss in async mode (#​16644)

sveltejs/language-tools (svelte-check)

v4.3.2

Compare Source

Patch Changes

• perf: tweak some snapshot hot paths (#​2852)

• perf: more precise module cache invalidation (#​2853)

• fix: properly handle runes={false} in <svelte:options> (#​2847)

See https://github.com/sveltejs/language-tools/releases

microsoft/TypeScript (typescript)

v5.9.3

Compare Source

vitejs/rolldown-vite (vite)

v7.1.14

Compare Source

Features

• set generatedCode: 'es2015' (4cfe8e1)
• update rolldown (bac2c1b)

Bug Fixes

• use readFileSync to avoid "too many open files" (7c7ffdc)

Performance Improvements

• use single regex for isEntirelyImport (ac1ceaf)

Documentation

• create-vite: provide deno example (#​20747) (fdb758a)

Miscellaneous Chores

• deps: update rolldown-related dependencies (#​20810) (ea68a88)

v7.1.13

Compare Source

Features

• hmr: skip self-imports for import.meta.hot.invalidate (ebd134f)
• update rolldown (007e115)

v7.1.12

Compare Source

Features

• update rolldown (#​423) (6713908)

Bug Fixes

• build: fix ssr environment emitAssets: true when sharedConfigBuild: true (#​20787) (4c4583c)
• client: use CSP nonce when rendering error overlay (#​20791) (9bc9d12)
• deps: update all non-major dependencies (#​20811) (9f2247c)
• glob: handle glob imports from folders starting with dot (#​20800) (105abe8)
• hmr: trigger prune event when import is removed from non hmr module (#​20768) (9f32b1d)
• hmr: wait for import.meta.hot.prune callbacks to complete before running other HMRs (#​20698) (98a3484)

v7.1.11

Compare Source

Bug Fixes

• deps: update all non-major dependencies (#​20773) (88af2ae)
• esbuild: inject esbuild helper functions with minified $ variables correctly (#​20761) (7e8e004)
• fallback terser to main thread when nameCache is provided (#​20750) (a679a64)
• optimizer: avoid mutating optimizeDeps.rollupOptions.transforms for stable optimizer hash (#​417) (efed40f)
• types: strict env typings fail when skipLibCheck is false (#​20755) (cc54e29)

Miscellaneous Chores

• deps: update rolldown-related dependencies (#​20772) (d785e72)
• fix typecheck (438fee4)

v7.1.10

Compare Source

Features

• update rolldown (#​415) (854436b)

v7.1.9

Compare Source

Features

• update rolldown (d14afd7)

Bug Fixes

• enable minify other than codegen for ES lib mode (ad72fc3)

Miscellaneous Chores

• bump rolldown-plugin-dts (#​409) (2fbd7f1)

v7.1.8

Compare Source

Features

• enable optimization.inlineConst: { mode: 'smart' } by default (#​399) (b2b89d7)
• update rolldown (#​400) (88a0359)

Miscellaneous Chores

• deps: update rolldown-related dependencies (#​20675) (a67bb5f)
• support ESM rolldown (80120d6)
• update type build (762cb49)
• update typos (4698941)

v7.1.7

Compare Source

Bug Fixes

• add missing awaits (#​20697) (79d10ed)
• apply fs.strict check to HTML files (#​20736) (14015d7)
• deps: update all non-major dependencies (#​20676) (5a274b2)
• deps: update all non-major dependencies (#​20709) (0401feb)
• deps: update all non-major dependencies (#​20732) (122bfba)
• pass rollup watch options when building in watch mode (#​20674) (f367453)
• upgrade sirv to 3.0.2 (#​20735) (09f2b52)

Miscellaneous Chores

• remove unused constants entry from rolldown.config.ts (#​20710) (537fcf9)

Code Refactoring

• remove unnecessary minify parameter from finalizeCss (#​20701) (8099582)

v7.1.6

Compare Source

Features

• enable output.topLevelVar by default (#​380) (7ea4f54)
• update rolldown (6ea9918)

Bug Fixes

• build.minify: 'esbuild' + native plugins were not working (#​397) (1a05fc4)
• oxc: respect oxc.typescript.onlyRemoveTypeImports if it's set (#​394) (dd64f89)

v7.1.5

Compare Source

Features

• update rolldown (#​389) (6db67e5)

Bug Fixes

• native-plugin: generate a more readable manifest (#​388) (e76ad17)

---

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, on day 1 of the month ( * 0-3 1 * * ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.