Bump the all group with 8 updates

[dependabot]

Bumps the all group with 8 updates:

Package	From	To
@playwright/test	1.49.1	1.50.1
@sveltejs/kit	2.15.1	2.16.1
@types/node	22.10.3	22.13.0
flowbite	2.5.2	3.1.1
svelte	5.16.0	5.19.6
tailwindcss	3.4.17	4.0.2
typescript	5.7.2	5.7.3
vite	6.0.6	6.0.11

Updates @playwright/test from 1.49.1 to 1.50.1

Release notes

Sourced from @​playwright/test's releases.

v1.50.1

Highlights

microsoft/playwright#34483 - [Feature]: single aria snapshot for different engines/browsers microsoft/playwright#34497 - [Bug]: Firefox not handling keepalive: true fetch requests microsoft/playwright#34504 - [Bug]: update snapshots not creating good diffs microsoft/playwright#34507 - [Bug]: snapshotPathTemplate doesnt work when multiple projects microsoft/playwright#34462 - [Bug]: updateSnapshots "changed" throws an error

Browser Versions

• Chromium 133.0.6943.16
• Mozilla Firefox 134.0
• WebKit 18.2

This version was also tested against the following stable channels:

• Google Chrome 132
• Microsoft Edge 132

v1.50.0

Test runner

• New option timeout allows specifying a maximum run time for an individual test step. A timed-out step will fail the execution of the test.

  test('some test', async ({ page }) => {
    await test.step('a step', async () => {
      // This step can time out separately from the test
    }, { timeout: 1000 });
  });

• New method test.step.skip() to disable execution of a test step.

  test('some test', async ({ page }) => {
    await test.step('before running step', async () => {
      // Normal step
    });
  await test.step.skip('not yet ready', async () => {
  // This step is skipped
  });
  await test.step('after running step', async () => {
  // This step still runs even though the previous one was skipped
  });
  });

• Expanded expect(locator).toMatchAriaSnapshot() to allow storing of aria snapshots in separate YAML files.

... (truncated)

Commits

• dbc685c chore: mark v1.50.1 (#34575)
• 13d80f1 cherry-pick(#34560): chore(docs): clarify connection method via BrowserType.c...
• 159210d cherry-pick(#34556): fix(toMatchAriaSnapshot): fail test run when updating mi...
• fbad9f7 cherry-pick(#34537): feat: per-assertion snapshot path template in config (#3...
• 67313fa cherry-pick(#34550): roll follow-ups for .NET and Python
• 4b7794b cherry-pick(#34544): fix(aria): disregard text area textContent
• 1efbedd cherry-pick(#34535): Revert "Reapply "fix(har timing): record connect timing ...
• 1e258e0 cherry-pick(#34420): chore(deps): bump vite from 5.4.6 to 5.4.14 (#34539)
• 7be4ef5 cherry-pick(#34522): test: fetch request through socks proxy over ipv4
• 7b3e590 cherry-pick(#34530): fix(firefox): disable fetch keep-alive for now before a ...
• Additional commits viewable in compare view

Updates @sveltejs/kit from 2.15.1 to 2.16.1

Release notes

Sourced from @​sveltejs/kit's releases.

@​sveltejs/kit@​2.16.1

Patch Changes

• fix: avoid overwriting headers for sub-requests made while loading the error page (#13341)

• fix: correctly resolve index file entrypoints such as src/service-worker/index.js (#13354)

• fix: correctly handle relative anchors when using the hash router (#13356)

@​sveltejs/kit@​2.16.0

Minor Changes

• feat: add ability to invalidate a custom identifier on goto() (#13256)

• feat: remove the postinstall script to support pnpm 10 (#13304)

  NOTE: users should add "prepare": "svelte-kit sync" to their package.json in order to avoid the following warning upon first running Vite:

  ▲ [WARNING] Cannot find base config file "./.svelte-kit/tsconfig.json" [tsconfig.json]
  tsconfig.json:2:12:
    2 │   "extends": "./.svelte-kit/tsconfig.json",
      ╵              ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  
  

• feat: provide PageProps and LayoutProps types (#13308)

Patch Changes

• perf: shorten chunk file names (#13003)

• fix: strip internal data before passing URL to reroute (#13092)

• fix: support absolute URLs and reroutes with data-sveltekit-preload-code="viewport" (#12217)

• fix: use current window.fetch for server load fetch requests (#13315)

• fix: resolve symlinks when handling routes (#12740)

• fix: prevent infinite reload when using the hash router and previewing /index.html (#13296)

• fix: service worker base path in dev mode (#12577)

... (truncated)

Changelog

Sourced from @​sveltejs/kit's changelog.

2.16.1

Patch Changes

• fix: avoid overwriting headers for sub-requests made while loading the error page (#13341)

• fix: correctly resolve index file entrypoints such as src/service-worker/index.js (#13354)

• fix: correctly handle relative anchors when using the hash router (#13356)

2.16.0

Minor Changes

• feat: add ability to invalidate a custom identifier on goto() (#13256)

• feat: remove the postinstall script to support pnpm 10 (#13304)

  NOTE: users should add "prepare": "svelte-kit sync" to their package.json in order to avoid the following warning upon first running Vite:

  ▲ [WARNING] Cannot find base config file "./.svelte-kit/tsconfig.json" [tsconfig.json]
  tsconfig.json:2:12:
    2 │   "extends": "./.svelte-kit/tsconfig.json",
      ╵              ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  
  

• feat: provide PageProps and LayoutProps types (#13308)

Patch Changes

• perf: shorten chunk file names (#13003)

• fix: strip internal data before passing URL to reroute (#13092)

• fix: support absolute URLs and reroutes with data-sveltekit-preload-code="viewport" (#12217)

• fix: use current window.fetch for server load fetch requests (#13315)

• fix: resolve symlinks when handling routes (#12740)

... (truncated)

Commits

• 7c81ac9 Version Packages (#13353)
• ab58c22 fix: correctly check index file exists when resolving an entry (#13354)
• a8bdcf8 fix: correctly handle relative anchors when hash router is enabled (#13356)
• b764298 fix: do not replace headers on fetch requests with error state (#13341)
• f5103c6 docs: document derived use of $app/state's page (#13346)
• 18d69fb docs: mention page state (#13348)
• 702575e chore: upgrade to vitest 3 (#13330)
• 537cd1b Version Packages (#13316)
• 6774ebc fix: strip internal data before passing URL to reroute (#13092)
• 37f72fb fix: inline server stylesheets instead of client stylesheets (#13068)
• Additional commits viewable in compare view

Updates @types/node from 22.10.3 to 22.13.0

Commits

• See full diff in compare view

Updates flowbite from 2.5.2 to 3.1.1

Release notes

Sourced from flowbite's releases.

v3.1.1

• fixed CSS variables markup in plugin

v3.1.0

• use CSS variables instead of hex codes in plugin
• remove setting dark mode via class strategy in plugin

v3.0.0

• upgrade to Tailwind v4
• refactor and adapt the Flowbite plugin and UI components to the new deprecated changes from Tailwind v4

Commits

• 4ba07d7 push fixed 3.1.1
• 284eb58 fix(plugin): css variables
• e8d4ec7 docs(README): update
• 19c48c6 chore(3.1.0): upgrade to 3.1.0 release
• 89bba92 docs(v4): fix typo
• bf10fed docs(optimization): update optimization file
• 05b2709 docs(config): finish config page docs
• 6698d47 docs(configuration): add custom utilities docs
• 1a437a3 docs(configuration): update config settings for Tailwind v4
• 672a815 refactor(dark mode): set dark mode via CSS
• Additional commits viewable in compare view

Updates svelte from 5.16.0 to 5.19.6

Release notes

Sourced from svelte's releases.

[email protected]

Patch Changes

• fix: do not prune selectors like :global(.foo):has(.scoped) (#15140)

• fix: don't error on slot prop inside block inside other component (#15148)

• fix: ensure reactions are correctly attached for unowned deriveds (#15158)

• fix: silence a11y attribute warnings when spread attributes present (#15150)

• fix: prevent false-positive ownership validations due to hot reload (#15154)

• fix: widen ownership when calling setContext (#15153)

[email protected]

Patch Changes

• fix: improve derived connection to ownership graph (#15137)

• fix: correctly look for sibling elements inside blocks and components when pruning CSS (#15106)

[email protected]

Patch Changes

• fix: Add bind:focused property to HTMLAttributes type (#15122)

• fix: lazily connect derievds (in deriveds) to their parent (#15129)

• fix: disallow $state/$derived in const tags (#15115)

[email protected]

Patch Changes

• fix: don't throw for undefined non delegated event handlers (#15087)

• fix: consistently set value to blank string when value attribute is undefined (#15057)

• fix: optimise || expressions in template (#15092)

• fix: correctly handle novalidate attribute casing (#15083)

• fix: expand boolean attribute support (#15095)

• fix: avoid double deriveds in component props (#15089)

• fix: add check for is attribute to correctly detect custom elements (#15086)

[email protected]

Patch Changes

... (truncated)

Changelog

Sourced from svelte's changelog.

5.19.6

Patch Changes

• fix: do not prune selectors like :global(.foo):has(.scoped) (#15140)

• fix: don't error on slot prop inside block inside other component (#15148)

• fix: ensure reactions are correctly attached for unowned deriveds (#15158)

• fix: silence a11y attribute warnings when spread attributes present (#15150)

• fix: prevent false-positive ownership validations due to hot reload (#15154)

• fix: widen ownership when calling setContext (#15153)

5.19.5

Patch Changes

• fix: improve derived connection to ownership graph (#15137)

• fix: correctly look for sibling elements inside blocks and components when pruning CSS (#15106)

5.19.4

Patch Changes

• fix: Add bind:focused property to HTMLAttributes type (#15122)

• fix: lazily connect derievds (in deriveds) to their parent (#15129)

• fix: disallow $state/$derived in const tags (#15115)

5.19.3

Patch Changes

• fix: don't throw for undefined non delegated event handlers (#15087)

• fix: consistently set value to blank string when value attribute is undefined (#15057)

• fix: optimise || expressions in template (#15092)

• fix: correctly handle novalidate attribute casing (#15083)

• fix: expand boolean attribute support (#15095)

• fix: avoid double deriveds in component props (#15089)

... (truncated)

Commits

• 04addca Version Packages (#15156)
• 2be3823 chore: remove inert check from each block reconciliation (#15143)
• 7bef596 fix: ensure reactions are correctly attached for unowned deriveds (#15158)
• 970aa7c fix: prevent false-positive ownership validations due to hot reload (#15154)
• 83f00eb fix: don't error on slot prop inside block inside other component (#15148)
• b8607f8 fix: silence a11y attribute warnings when spread attributes present (#15150)
• f5406c9 fix: widen ownership when calling setContext (#15153)
• 5225575 fix: do not prune selectors like :global(.foo):has(.scoped) (#15140)
• 8e83127 chore: move more code (#15133)
• c8bbb15 Version Packages (#15139)
• Additional commits viewable in compare view

Updates tailwindcss from 3.4.17 to 4.0.2

Release notes

Sourced from tailwindcss's releases.

v4.0.2

Fixed

• Only generate positive grid-cols-* and grid-rows-* utilities (#16020)
• Ensure escaped theme variables are handled correctly (#16064)
• Ensure we process Tailwind CSS features when only using @reference or @variant (#16057)
• Refactor gradient implementation to work around prettier/prettier#17058 (#16072)
• Vite: Ensure hot-reloading works with SolidStart setups (#16052)
• Vite: Fix a crash when starting the development server in SolidStart setups (#16052)
• Vite: Don't rebase URLs that appear to be aliases (#16078)
• Vite: Transform <style> blocks in HTML files (#16069)
• Prevent camel-casing CSS custom properties added by JavaScript plugins (#16103)
• Do not emit @keyframes in @theme reference (#16120)
• Discard invalid declarations when parsing CSS (#16093)
• Do not emit empty CSS rules and at-rules (#16121)
• Handle @variant when at the top-level of a stylesheet (#16129)

v4.0.1

Added

• Include :open pseudo-class in existing open variant (#15349)

Fixed

• Remove invalid min-w/h-none utilities (#15845)
• Discard CSS variable shorthand utilities that don't use valid CSS variables (#15738)
• Ensure font-size utilities with none modifier have a line-height set e.g. text-sm/none (#15921)
• Ensure font-size utilities with unknown modifier don't generate CSS (#15921)
• Don’t suggest font weight utilities more than once (#15857)
• Suggest container query variants (#15857)
• Disable bare value suggestions when not using the --spacing variable (#15857)
• Ensure suggested classes are properly sorted (#15857)
• Don’t look at .gitignore files outside initialized repos (#15941)
• Find utilities when using the Svelte class shorthand syntax across multiple lines (#15974)
• Find utilities when using the Angular class shorthand syntax (#15974)
• Find utilities when using functions inside arrays (#15974)
• Ensure that @tailwindcss/browser does not pollute the global namespace (#15978)
• Ensure that tailwind-merge is not scanned when using the Vite plugin (#16005)
• Ensure CSS theme variables are available within shadow roots (#15975)
• Fix crash when project lives in the / directory (#15988)
• Ensure custom variants have a non-empty selector list (#16009)
• Upgrade: Ensure JavaScript config files on different drives are correctly migrated (#15927)
• Upgrade: Migrate leading-[1] to leading-none (#16004)
• Upgrade: Do not migrate arbitrary leading utilities to bare values (#16004)

v4.0.0

Holy shit it's actually done — we just tagged Tailwind CSS v4.0.

... (truncated)

Changelog

Sourced from tailwindcss's changelog.

[4.0.2] - 2025-01-31

Fixed

• Only generate positive grid-cols-* and grid-rows-* utilities (#16020)
• Ensure escaped theme variables are handled correctly (#16064)
• Ensure we process Tailwind CSS features when only using @reference or @variant (#16057)
• Refactor gradient implementation to work around prettier/prettier#17058 (#16072)
• Vite: Ensure hot-reloading works with SolidStart setups (#16052)
• Vite: Fix a crash when starting the development server in SolidStart setups (#16052)
• Vite: Don't rebase URLs that appear to be aliases (#16078)
• Vite: Transform <style> blocks in HTML files (#16069)
• Prevent camel-casing CSS custom properties added by JavaScript plugins (#16103)
• Do not emit @keyframes in @theme reference (#16120)
• Discard invalid declarations when parsing CSS (#16093)
• Do not emit empty CSS rules and at-rules (#16121)
• Handle @variant when at the top-level of a stylesheet (#16129)

[4.0.1] - 2025-01-29

Added

• Include :open pseudo-class in existing open variant (#15349)

Fixed

• Remove invalid min-w/h-none utilities (#15845)
• Discard CSS variable shorthand utilities that don't use valid CSS variables (#15738)
• Ensure font-size utilities with none modifier have a line-height set e.g. text-sm/none (#15921)
• Ensure font-size utilities with unknown modifier don't generate CSS (#15921)
• Don’t suggest font weight utilities more than once (#15857)
• Suggest container query variants (#15857)
• Disable bare value suggestions when not using the --spacing variable (#15857)
• Ensure suggested classes are properly sorted (#15857)
• Don’t look at .gitignore files outside initialized repos (#15941)
• Find utilities when using the Svelte class shorthand syntax across multiple lines (#15974)
• Find utilities when using the Angular class shorthand syntax (#15974)
• Find utilities when using functions inside arrays (#15974)
• Ensure that @tailwindcss/browser does not pollute the global namespace (#15978)
• Ensure that tailwind-merge is not scanned when using the Vite plugin (#16005)
• Ensure CSS theme variables are available within shadow roots (#15975)
• Fix crash when project lives in the / directory (#15988)
• Ensure custom variants have a non-empty selector list (#16009)
• Upgrade: Ensure JavaScript config files on different drives are correctly migrated (#15927)
• Upgrade: Migrate leading-[1] to leading-none (#16004)
• Upgrade: Do not migrate arbitrary leading utilities to bare values (#16004)

[4.0.0] - 2025-01-21

Added

... (truncated)

Commits

• 50bafce Prepare for v4.0.2 release (#16131)
• 4052eb2 Allow @variant to be used at the top-level (#16129)
• 7f1d097 Do not emit empty rules/at-rules (#16121)
• 35a5e8c Discard invalid declarations when parsing CSS (#16093)
• 60e6195 Ensure escaped theme variables are handled correctly (#16064)
• 3aa0e49 Do not emit @keyframes in @theme reference (#16120)
• 88c8906 Prevent modifying CSS variables in plugins (#16103)
• 2242941 Refactor gradient implementation to work around prettier/prettier#17058 (#16072)
• ea24995 Only generate positive grid-cols-* and grid-rows-* utilities (#16020)
• 0655209 Prepare v4.0.1 release (#16018)
• Additional commits viewable in compare view

Updates typescript from 5.7.2 to 5.7.3

Release notes

Sourced from typescript's releases.

TypeScript 5.7.3

For release notes, check out the release announcement.

• fixed issues query for Typescript 5.7.0 (Beta).
• fixed issues query for Typescript 5.7.1 (RC).
• fixed issues query for Typescript 5.7.2 (Stable).
• fixed issues query for Typescript 5.7.3 (Stable).

Downloads are available on npm

Commits

• a5e123d Update LKG
• 8bc0204 🤖 Pick PR #60828 (Fix CodeQL configuration, releases) into release-5.7 (#60923)
• 7aa63df 🤖 Pick PR #60393 (Don't try to add an implicit undefi...) into release-5.7 (#...
• 9df7c36 Bump version to 5.7.3 and LKG
• e167412 🤖 Pick PR #60794 (Harden sanitizeLog against incorr...) into release-5.7 (#...
• 9ba364c Fix coverage build on release-5.7 (#60792)
• 4b7441a 🤖 Pick PR #60680 (Mark the inherited any-based index ...) into release-5.7 (#...
• e844dc3 Cherry-pick #60402, #60440, #60616 into release-5.7 (#60777)
• 21b02a1 🤖 Pick PR #60749 (Do not require import attribute on ...) into release-5.7 (#...
• b82fd16 🤖 Pick PR #60576 (Avoid incorrectly reusing assertion...) into release-5.7 (#...
• Additional commits viewable in compare view

Updates vite from 6.0.6 to 6.0.11

Release notes

Sourced from vite's releases.

v6.0.11

Please refer to CHANGELOG.md for details.

v6.0.10

Please refer to CHANGELOG.md for details.

v6.0.9

This version contains a breaking change due to security fixes. See GHSA-vg6x-rcgg-rjx6 for more details.

Please refer to CHANGELOG.md for details.

v6.0.8

Please refer to CHANGELOG.md for details.

v6.0.7

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

6.0.11 (2025-01-21)

• fix: preview.allowedHosts with specific values was not respected (#19246) (aeb3ec8), closes #19246
• fix: allow CORS from loopback addresses by default (#19249) (3d03899), closes #19249

6.0.10 (2025-01-20)

• fix: try parse server.origin URL (#19241) (2495022), closes #19241

6.0.9 (2025-01-20)

• fix!: check host header to prevent DNS rebinding attacks and introduce server.allowedHosts (bd896fb)
• fix!: default server.cors: false to disallow fetching from untrusted origins (b09572a)
• fix: verify token for HMR WebSocket connection (029dcd6)

6.0.8 (2025-01-20)

• fix: avoid SSR HMR for HTML files (#19193) (3bd55bc), closes #19193
• fix: build time display 7m 60s (#19108) (cf0d2c8), closes #19108
• fix: don't resolve URL starting with double slash (#19059) (35942cd), closes #19059
• fix: ensure server.close() only called once (#19204) (db81c2d), closes #19204
• fix: resolve.conditions in ResolvedConfig was defaultServerConditions (#19174) (ad75c56), closes #19174
• fix: tree shake stringified JSON imports (#19189) (f2aed62), closes #19189
• fix: use shared sigterm callback (#19203) (47039f4), closes #19203
• fix(deps): update all non-major dependencies (#19098) (8639538), closes #19098
• fix(optimizer): use correct default install state path for yarn PnP (#19119) (e690d8b), closes #19119
• fix(types): improve ESBuildOptions.include / exclude type to allow readonly (string | RegExp)[] (ea53e70), closes #19146
• chore(deps): update dependency pathe to v2 (#19139) (71506f0), closes #19139

6.0.7 (2025-01-02)

• fix: fix minify when builder.sharedPlugins: true (#19025) (f7b1964), closes #19025
• fix: skip the plugin if it has been called before with the same id and importer (#19016) (b178c90), closes #19016
• fix(html): error while removing vite-ignore attribute for inline script (#19062) (a492253), closes #19062
• fix(ssr): fix semicolon injection by ssr transform (#19097) (1c102d5), closes #19097
• perf: skip globbing for static path in warmup (#19107) (677508b), closes #19107
• feat(css): show lightningcss warnings (#19076) (b07c036), closes #19076

Commits

• a0ed405 release: v6.0.11
• 3d03899 fix: allow CORS from loopback addresses by default (#19249)
• aeb3ec8 fix: preview.allowedHosts with specific values was not respected (#19246)
• 9654348 release: v6.0.10
• 2495022 fix: try parse server.origin URL (#19241)
• a55f8ba release: v6.0.9
• bd896fb fix!: check host header to prevent DNS rebinding attacks and introduce `serve...
• 029dcd6 fix: verify token for HMR WebSocket connection
• b09572a fix!: default server.cors: false to disallow fetching from untrusted origins
• c0f72a6 release: v6.0.8
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions