Bump the npm-dependencies group with 12 updates

[dependabot]

Bumps the npm-dependencies group with 12 updates:

Package	From	To
vite	8.0.7	8.0.8
@eslint/compat	2.0.4	2.0.5
@lucide/svelte	1.7.0	1.8.0
@sveltejs/kit	2.57.0	2.57.1
@types/node	25.5.2	25.6.0
bits-ui	2.17.2	2.17.3
globals	17.4.0	17.5.0
prettier	3.8.1	3.8.2
rollup-plugin-license	3.7.0	3.7.1
svelte	5.55.2	5.55.3
vite-plugin-mkcert	1.17.10	2.0.0
vitest	4.1.3	4.1.4

Updates vite from 8.0.7 to 8.0.8

Release notes

Sourced from vite's releases.

v8.0.8

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

8.0.8 (2026-04-09)

Features

• update rolldown to 1.0.0-rc.15 (#22201) (6baf587)

Bug Fixes

• avoid dns.getDefaultResultOrder temporary (#22202) (15f1c15)
• ssr: class property keys hoisting matching imports (#22199) (e137601)

Commits

• 6e585dc release: v8.0.8
• e137601 fix(ssr): class property keys hoisting matching imports (#22199)
• 15f1c15 fix: avoid dns.getDefaultResultOrder temporary (#22202)
• 6baf587 feat: update rolldown to 1.0.0-rc.15 (#22201)
• See full diff in compare view

Updates @eslint/compat from 2.0.4 to 2.0.5

Release notes

Sourced from @​eslint/compat's releases.

migrate-config: v2.0.5

2.0.5 (2026-04-03)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​eslint/compat bumped from ^2.0.3 to ^2.0.4
  • devDependencies
    • @​eslint/core bumped from ^1.1.1 to ^1.2.0

compat: v2.0.5

2.0.5 (2026-04-08)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​eslint/core bumped from ^1.2.0 to ^1.2.1

Changelog

Sourced from @​eslint/compat's changelog.

2.0.5 (2026-04-08)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​eslint/core bumped from ^1.2.0 to ^1.2.1

Commits

• d2dbf7b chore: release main (#424)
• See full diff in compare view

Updates @lucide/svelte from 1.7.0 to 1.8.0

Release notes

Sourced from @​lucide/svelte's releases.

Version 1.8.0

What's Changed

• docs(packages/angular): add packageDirname for @​lucide/angular by @​rhutchison in lucide-icons/lucide#4211
• chore(icons): Username change knarlix to RajnishKMehta by @​RajnishKMehta in lucide-icons/lucide#4208
• ci(@​lucide/angular): Fix publishing problem by @​ericfennis in lucide-icons/lucide#4213
• docs: fix broken links in pull_request_template.md (got 404 page) by @​whoisBugsbunny in lucide-icons/lucide#4224
• fix(lucide-static): add viewBox to sprite symbol elements by @​TomaTV in lucide-icons/lucide#4223
• docs: Fix link to icon design principles in statement by @​whoisBugsbunny in lucide-icons/lucide#4225
• feat(docs): add Zephyr Cloud to Hero Backers tier by @​karsa-mistmere in lucide-icons/lucide#4226
• fix(icons): fixes gap issues in radio-off.svg by @​karsa-mistmere in lucide-icons/lucide#4227
• fix(icons): renamed text-select to square-dashed-text by @​jguddas in lucide-icons/lucide#3943
• fix(docs): improve mobile layout of v1 banner by @​karsa-mistmere in lucide-icons/lucide#4254
• fix(@​lucide/svelte): aria-hidden="true" was never set by @​blt-r in lucide-icons/lucide#4234
• fix(icons): remove ui/ux tag from heart-minus, add delete instead by @​karsa-mistmere in lucide-icons/lucide#4266
• chore(deps-dev): bump vite from 7.3.1 to 7.3.2 by @​dependabot[bot] in lucide-icons/lucide#4276
• chore(deps): bump lodash-es from 4.17.23 to 4.18.1 by @​dependabot[bot] in lucide-icons/lucide#4251
• chore(deps): bump vite from 5.4.21 to 6.4.2 by @​dependabot[bot] in lucide-icons/lucide#4286
• feat(docs): use initOnMounted: true for useSessionStorage in CarbonAdOverlay by @​karsa-mistmere in lucide-icons/lucide#4275
• feat(icons): added bookmark-off icon by @​ZeenatLawal in lucide-icons/lucide#4283

New Contributors

• @​rhutchison made their first contribution in lucide-icons/lucide#4211
• @​whoisBugsbunny made their first contribution in lucide-icons/lucide#4224
• @​TomaTV made their first contribution in lucide-icons/lucide#4223
• @​blt-r made their first contribution in lucide-icons/lucide#4234
• @​ZeenatLawal made their first contribution in lucide-icons/lucide#4283

Full Changelog: lucide-icons/lucide@1.7.0...1.8.0

Commits

• 51e37e2 fix aria-hidden="true" in @​lucide/svelte (#4234)
• 7623e23 feat(docs): add Zephyr Cloud to Hero Backers tier & rework updateSponsors scr...
• See full diff in compare view

Updates @sveltejs/kit from 2.57.0 to 2.57.1

Release notes

Sourced from @​sveltejs/kit's releases.

@​sveltejs/kit@​2.57.1

Patch Changes

• fix: better validation for redirect inputs (10d7b44)

• fix: enforce BODY_SIZE_LIMIT on chunked requests (3202ed6)

• fix: use default values as fallbacks (#15680)

• fix: relax form typings for union types (#15687)

Changelog

Sourced from @​sveltejs/kit's changelog.

2.57.1

Patch Changes

• fix: better validation for redirect inputs (10d7b44)

• fix: enforce BODY_SIZE_LIMIT on chunked requests (3202ed6)

• fix: use default values as fallbacks (#15680)

• fix: relax form typings for union types (#15687)

Commits

• 75147d4 Version Packages (#15684)
• 10d7b44 Merge commit from fork
• 3202ed6 Merge commit from fork
• 24d7e76 chore: fix reuse wording in client comment (#15679)
• 6a9cdaa fix: relax form typings for union types (#15687)
• ab8b2f1 fix: use default values as fallbacks (#15680)
• See full diff in compare view

Updates @types/node from 25.5.2 to 25.6.0

Commits

• See full diff in compare view

Updates bits-ui from 2.17.2 to 2.17.3

Release notes

Sourced from bits-ui's releases.

bits-ui@2.17.3

Patch Changes

• fix(ContextMenu): treat outside interactions correctly for nested floaters inside the trigger (#2020)

Commits

• a6ee9ae Version Packages (#2021)
• dd333c7 fix(ContextMenu): treat outside ints correctly for nested (#2020)
• See full diff in compare view

Updates globals from 17.4.0 to 17.5.0

Release notes

Sourced from globals's releases.

v17.5.0

• Update globals (2026-04-12) (#342) 5d84602

---

sindresorhus/globals@v17.4.0...v17.5.0

Commits

• b8170c8 17.5.0
• 5d84602 Update globals (2026-04-12) (#342)
• 1b727e5 Fix build script for ES globals (#341)
• See full diff in compare view

Updates prettier from 3.8.1 to 3.8.2

Release notes

Sourced from prettier's releases.

3.8.2

• Support Angular v21.2

🔗 Changelog

Changelog

Sourced from prettier's changelog.

3.8.2

diff

Angular: Support Angular v21.2 (#18722, #19034 by @​fisker)

Exhaustive typechecking with @default never;

<!-- Input -->
@switch (foo) {
  @case (1) {}
  @default never;
}
<!-- Prettier 3.8.1 -->
SyntaxError: Incomplete block "default never". If you meant to write the @ character, you should use the "&#64;" HTML entity instead. (3:3)
<!-- Prettier 3.8.2 -->
@​switch (foo) {
@​case (1) {}
@​default never;
}

arrow function and instanceof expressions.

<!-- Input -->
@let fn = (a) =>        a?    1:2;
{{ fn ( a         instanceof b)}}
<!-- Prettier 3.8.1 -->
@​let fn = (a) =>        a?    1:2;
{{ fn ( a         instanceof b)}}
<!-- Prettier 3.8.2 -->
@​let fn = (a) => (a ? 1 : 2);
{{ fn(a instanceof b) }}

Commits

• b31557c Release 3.8.2
• 96bbaed Support Angular v21.2 (#18722)
• 881360b Support default never in Angular v21.2 (#19034)
• 07d6724 Bump Prettier dependency to 3.8.1
• 8b4a53a Clean changelog_unreleased
• See full diff in compare view

Updates rollup-plugin-license from 3.7.0 to 3.7.1

Changelog

Sourced from rollup-plugin-license's changelog.

3.5.0 (2024-06-22)

• release: prepare next release (71f5bcf)
• release: prepare next release (2c51c64)
• release: release version (f27f51d)
• release: release version (8a7f79c)
• chore: fix lint task (a7c455f)
• chore: remove (deprecated) eslint-config-google (0ba031f)
• chore(ci): push release to current branch (03112e9)
• chore(deps-dev): bump @​rollup/plugin-commonjs from 25.0.7 to 25.0.8 (#1732) (8bd6fb3), closes #1732
• chore(deps-dev): bump @​rollup/plugin-commonjs from 25.0.8 to 26.0.1 (#1741) (25f03f2), closes #1741
• chore(deps-dev): bump globalthis from 1.0.3 to 1.0.4 (#1721) (54084da), closes #1721
• chore(deps-dev): bump gulp-conventional-changelog from 4.0.0 to 5.0.0 (#1723) (d6ae13f), closes #1723
• chore(deps-dev): bump prettier from 3.2.5 to 3.3.0 (#1737) (3e80b2a), closes #1737
• chore(deps-dev): bump prettier from 3.3.0 to 3.3.1 (#1740) (ef8aabf), closes #1740
• chore(deps-dev): bump prettier from 3.3.1 to 3.3.2 (#1746) (e4fbe41), closes #1746
• chore(deps-dev): bump rimraf from 5.0.5 to 5.0.7 (#1727) (44fd2d4), closes #1727
• chore(deps-dev): bump rollup from 4.14.3 to 4.16.2 (#1715) (0126778), closes #1715
• chore(deps-dev): bump rollup from 4.16.2 to 4.16.4 (#1716) (2256205), closes #1716
• chore(deps-dev): bump rollup from 4.16.4 to 4.17.2 (#1722) (084276a), closes #1722
• chore(deps-dev): bump the babel group with 2 updates (#1720) (6720a77), closes #1720
• chore(deps-dev): bump the babel group with 2 updates (#1739) (2d3d1d3), closes #1739
• chore(deps-dev): bump the babel group with 3 updates (#1733) (b56dc88), closes #1733
• chore(deps-dev): bump the typescript-eslint group across 1 directory with 2 updates (#1729) (5cfc7c0), closes #1729
• chore(deps-dev): bump the typescript-eslint group across 1 directory with 2 updates (#1748) (c0abf2d), closes #1748
• chore(deps-dev): bump the typescript-eslint group with 2 updates (#1714) (1deea69), closes #1714
• chore(deps-dev): bump the typescript-eslint group with 2 updates (#1717) (3571d80), closes #1717
• chore(deps-dev): bump the typescript-eslint group with 2 updates (#1735) (c3d769f), closes #1735
• chore(deps-dev): bump the typescript-eslint group with 2 updates (#1736) (2e053de), closes #1736
• chore(deps-dev): bump typescript from 5.4.5 to 5.5.2 (#1750) (374962d), closes #1750
• --- (#1730) (40dc5e6), closes #1730
• Update readme (780ff50)
• feat: drop glob usage (#1742) (2623a1b), closes #1742
• feat: drop mkdirp (#1743) (2f90c74), closes #1743
• feat: include private self dependency (1401f5d)
• docs: update README & changelog (bdfca87)

3.4.0 (2024-04-18)

• release: prepare next release (1c6c911)
• release: release version (a576572)
• chore: add changelog update workflow (5f4ed57)
• chore: update changelog (a48e164)
• chore: update readme (8254eae)
• chore(ci): add node 21 (80cefa0)
• chore(ci): remove invalid option (16e4d5d)
• chore(ci): update actions/checkout to version 4.1.2 (9742e59)
• chore(ci): use node 20 (184cc0b)

... (truncated)

Commits

• 6faf8f5 release: release version
• 9b28938 chore(ci): add provenance
• 23fd98e chore: update npmignore
• 4d9fc6f chore(ci): use --no-git-checks in publish task
• e01dc36 chore(ci): update publish task
• fd0f645 chore(ci): fix publish task
• 3f298e6 fix: fix lint
• 348e933 Fix bug when a package license type is string (#2108)
• 3fc6424 chore: enable pnpm trustPolicy
• ccc4626 chore: enable pnpm blockExoticSubdeps
• Additional commits viewable in compare view

Updates svelte from 5.55.2 to 5.55.3

Release notes

Sourced from svelte's releases.

svelte@5.55.3

Patch Changes

• fix: ensure proper HMR updates for dynamic components (#18079)

• fix: correctly calculate @const blockers (#18039)

• fix: freeze deriveds once their containing effects are destroyed (#17921)

• fix: defer error boundary rendering in forks (#18076)

• fix: avoid false positives for reactivity loss warning (#18088)

Changelog

Sourced from svelte's changelog.

5.55.3

Patch Changes

• fix: ensure proper HMR updates for dynamic components (#18079)

• fix: correctly calculate @const blockers (#18039)

• fix: freeze deriveds once their containing effects are destroyed (#17921)

• fix: defer error boundary rendering in forks (#18076)

• fix: avoid false positives for reactivity loss warning (#18088)

Commits

• 4a50e8e Version Packages (#18085)
• 15588f5 fix: avoid false positives for reactivity loss warning (#18088)
• 0e9e76f fix: freeze deriveds once their containing effects are destroyed (#17921)
• 3937ec0 fix: correctly calculate @const blockers (#18039)
• 7be1a02 fix: ensure proper HMR updates for dynamic components (#18079)
• a4ce776 fix: defer error boundary rendering in forks (#18076)
• See full diff in compare view

Updates vite-plugin-mkcert from 1.17.10 to 2.0.0

Release notes

Sourced from vite-plugin-mkcert's releases.

v2.0.0

2.0.0 (2026-04-09)

Bug Fixes

• plugin: relax request generic default type (0c62aed)

Features

• plugin: add ipv6 hosts to default list (8dfc9f7), closes #116
• plugin: add apply option for plugin execution (9a58063), closes #112
• plugin: detect mkcert binary from path (de2702c), closes #96
• plugin: improve logger control and download progress (23f8cd4)
• plugin: support proxy download and improve request handling (06f74b4)

BREAKING CHANGES

• plugin: require Node.js >= 22.19.0.

v1.17.12

1.17.12 (2026-04-09)

Bug Fixes

fix: replace axios with native fetch API

Changelog

Sourced from vite-plugin-mkcert's changelog.

2.0.0 (2026-04-09)

Bug Fixes

• plugin: relax request generic default type (0c62aed)

Features

• add ipv6 hosts to default list (8dfc9f7), closes #116
• plugin: add apply option for plugin execution (9a58063), closes #112
• plugin: detect mkcert binary from path (de2702c), closes #96
• plugin: improve logger control and download progress (23f8cd4)
• plugin: support proxy download and improve request handling (06f74b4)

BREAKING CHANGES

• plugin: require Node.js >= 22.19.0.

1.17.12 (2026-04-09)

Bug Fixes

• ci: pass npm token in release workflow (32355fd)
• ci: setup pnpm before node cache initialization (f44dc12)
• release: avoid setup-node npm auth conflicts (f896941)
• release: use OIDC auth path for npm publishing (2535095)

1.17.11 (2026-04-08)

Bug Fixes

• replace axios with native fetch API (#120) (b8f78c4), closes #119

Commits

• 0b2eeee chore(release): 2.0.0 [skip ci]
• de2702c feat(plugin): detect mkcert binary from path
• 9a58063 feat(plugin): add apply option for plugin execution
• 0c62aed fix(plugin): relax request generic default type
• a1e8e90 refactor(plugin): split lib helpers into utils modules
• 450a402 docs(plugin): add vite compatibility badge
• 23f8cd4 feat(plugin): improve logger control and download progress
• caa65b3 docs: update git commit message rules
• 06f74b4 feat(plugin): support proxy download and improve request handling
• f1db630 docs: add copilot commit message rules
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for vite-plugin-mkcert since your current version.

Updates vitest from 4.1.3 to 4.1.4

Release notes

Sourced from vitest's releases.

v4.1.4

   🚀 Experimental Features

• coverage:
  • Default to text reporter skipFull if agent detected  -  by @​hi-ogawa in vitest-dev/vitest#10018 (53757)
• experimental:
  • Expose assertion as a public field  -  by @​sheremet-va in vitest-dev/vitest#10095 (a120e)
  • Support aria snapshot  -  by @​hi-ogawa, Claude Opus 4.6 (1M context), @​AriPerkkio, Codex and @​sheremet-va in vitest-dev/vitest#9668 (d4fbb)
• reporter:
  • Add filterMeta option to json reporter  -  by @​nami8824 and @​sheremet-va in vitest-dev/vitest#10078 (b77de)

   🐞 Bug Fixes

• Use "black" foreground for labeled terminal message to ensure contrast  -  by @​hi-ogawa in vitest-dev/vitest#10076 (203f0)
• Make expect(..., message) consistent as error message prefix  -  by @​hi-ogawa and Codex in vitest-dev/vitest#10068 (a1b5f)
• Do not hoist imports whose names match class properties .  -  by @​SunsetFi in vitest-dev/vitest#10093 and vitest-dev/vitest#10094 (0fc4b)
• browser: Spread user server options into browser Vite server in project  -  by @​GoldStrikeArch in vitest-dev/vitest#10049 (65c9d)

    View changes on GitHub

Commits

• ac04bac chore: release v4.1.4
• 82c858d chore: Remove no-op function in plugin config logic (#8501)
• d4fbb5c feat(experimental): support aria snapshot (#9668)
• b77de96 feat(reporter): add filterMeta option to json reporter (#10078)
• a120e3a feat(experimental): expose assertion as a public field (#10095)
• 5375780 feat(coverage): default to text reporter skipFull if agent detected (#10018)
• a1b5f0f fix: make expect(..., message) consistent as error message prefix (#10068)
• 203f07a fix: use "black" foreground for labeled terminal message to ensure contrast (...
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are no longer updatable, so this is no longer needed.