NPM: Bump the npm-dependencies group across 1 directory with 5 updates

[dependabot]

Bumps the npm-dependencies group with 5 updates in the / directory:

Package	From	To
mermaid	11.12.1	11.12.2
esbuild	0.27.0	0.27.1
prettier	3.6.2	3.7.4
stylelint	16.26.0	16.26.1
stylelint-scss	6.12.1	6.13.0

Updates mermaid from 11.12.1 to 11.12.2

Release notes

Sourced from mermaid's releases.

mermaid@11.12.2

Patch Changes

• #7200 de7ed10 Thanks @​shubhamparikh2704! - fix: validate dates and tick interval to prevent UI freeze/crash in gantt diagramtype

Commits

• bd85b51 fix: Upgrade npm to v11 to support trusted publishing
• 939aff9 Merge pull request #7201 from mermaid-js/changeset-release/master
• e72b26c Version Packages
• 4bcb8f0 Merge pull request #7200 from mermaid-js/pre-release
• de7ed10 Merge pull request #7197 from mermaid-js/fix/5496-gantt-tickinterval-app-crash
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for mermaid since your current version.

Updates esbuild from 0.27.0 to 0.27.1

Release notes

Sourced from esbuild's releases.

v0.27.1

• Fix bundler bug with var nested inside if (#4348)

  This release fixes a bug with the bundler that happens when importing an ES module using require (which causes it to be wrapped) and there's a top-level var inside an if statement without being wrapped in a { ... } block (and a few other conditions). The bundling transform needed to hoist these var declarations outside of the lazy ES module wrapper for correctness. See the issue for details.

• Fix minifier bug with for inside try inside label (#4351)

  This fixes an old regression from version v0.21.4. Some code was introduced to move the label inside the try statement to address a problem with transforming labeled for await loops to avoid the await (the transformation involves converting the for await loop into a for loop and wrapping it in a try statement). However, it introduces problems for cross-compiled JVM code that uses all three of these features heavily. This release restricts this transform to only apply to for loops that esbuild itself generates internally as part of the for await transform. Here is an example of some affected code:

  // Original code
  d: {
    e: {
      try {
        while (1) { break d }
      } catch { break e; }
    }
  }
  // Old output (with --minify)
  a:try{e:for(;;)break a}catch{break e}
  // New output (with --minify)
  a:e:try{for(;;)break a}catch{break e}

• Inline IIFEs containing a single expression (#4354)

  Previously inlining of IIFEs (immediately-invoked function expressions) only worked if the body contained a single return statement. Now it should also work if the body contains a single expression statement instead:

  // Original code
  const foo = () => {
    const cb = () => {
      console.log(x())
    }
    return cb()
  }
  // Old output (with --minify)
  const foo=()=>(()=>{console.log(x())})();
  // New output (with --minify)
  const foo=()=>{console.log(x())};

• The minifier now strips empty finally clauses (#4353)

  This improvement means that finally clauses containing dead code can potentially cause the associated try statement to be removed from the output entirely in minified builds:

... (truncated)

Changelog

Sourced from esbuild's changelog.

0.27.1

• Fix bundler bug with var nested inside if (#4348)

  This release fixes a bug with the bundler that happens when importing an ES module using require (which causes it to be wrapped) and there's a top-level var inside an if statement without being wrapped in a { ... } block (and a few other conditions). The bundling transform needed to hoist these var declarations outside of the lazy ES module wrapper for correctness. See the issue for details.

• Fix minifier bug with for inside try inside label (#4351)

  This fixes an old regression from version v0.21.4. Some code was introduced to move the label inside the try statement to address a problem with transforming labeled for await loops to avoid the await (the transformation involves converting the for await loop into a for loop and wrapping it in a try statement). However, it introduces problems for cross-compiled JVM code that uses all three of these features heavily. This release restricts this transform to only apply to for loops that esbuild itself generates internally as part of the for await transform. Here is an example of some affected code:

  // Original code
  d: {
    e: {
      try {
        while (1) { break d }
      } catch { break e; }
    }
  }
  // Old output (with --minify)
  a:try{e:for(;;)break a}catch{break e}
  // New output (with --minify)
  a:e:try{for(;;)break a}catch{break e}

• Inline IIFEs containing a single expression (#4354)

  Previously inlining of IIFEs (immediately-invoked function expressions) only worked if the body contained a single return statement. Now it should also work if the body contains a single expression statement instead:

  // Original code
  const foo = () => {
    const cb = () => {
      console.log(x())
    }
    return cb()
  }
  // Old output (with --minify)
  const foo=()=>(()=>{console.log(x())})();
  // New output (with --minify)
  const foo=()=>{console.log(x())};

• The minifier now strips empty finally clauses (#4353)

  This improvement means that finally clauses containing dead code can potentially cause the associated try statement to be removed from the output entirely in minified builds:

... (truncated)

Commits

• 5e0e56d publish 0.27.1 to npm
• 5a89732 fix #4354: improve IIFE inlining for expressions
• b940218 minify: move unused expr simplification later
• c46d498 fix #4353: remove empty try/finally clauses
• 7a72735 fix #4348: bundler bug with var inside if
• 4e4e177 fix #4351: label + try + for minifier bug
• d6427c9 fix: deno release url wrong comment (#4326)
• 48e3e19 calling Symbol.for with a primitive never throws
• 4ff88d0 update decorator-tests.js snapshot
• 1877e60 calling Symbol with a primitive will never throw
• See full diff in compare view

Updates prettier from 3.6.2 to 3.7.4

Release notes

Sourced from prettier's releases.

3.7.4

What's Changed

• Fix comment in union type gets duplicated by @​fisker in prettier/prettier#18393
• Fix unstable comment print in union type by @​fisker in prettier/prettier#18395
• Avoid quote around LWC interpolations by @​kovsu in prettier/prettier#18383

🔗 Changelog

3.7.3

What's Changed

• Fix prettier.getFileInfo() change that breaks VSCode extension by @​fisker in prettier/prettier#18375

🔗 Changelog

3.7.2

What's Changed

• Fix string print when switching quotes by @​fisker in prettier/prettier#18351
• Preserve quote for embedded HTML attribute values by @​kovsu in prettier/prettier#18352
• Fix comment in empty type literal by @​fisker in prettier/prettier#18364

🔗 Changelog

3.7.1

• Fix performance regression in doc printer (#18342 by @​fisker)

🔗 Changelog

3.7.0

diff

🔗 Release note

Changelog

Sourced from prettier's changelog.

3.7.4

diff

LWC: Avoid quote around interpolations (#18383 by @​kovsu)

<!-- Input -->
<div foo={bar}>   </div>
<!-- Prettier 3.7.3 (--embedded-language-formatting off) -->
<div foo="{bar}"></div>
<!-- Prettier 3.7.4 (--embedded-language-formatting off) -->
<div foo={bar}></div>

TypeScript: Fix comment inside union type gets duplicated (#18393 by @​fisker)

// Input
type Foo = (/** comment */ a | b) | c;
// Prettier 3.7.3
type Foo = /** comment / (/* comment */ a | b) | c;
// Prettier 3.7.4
type Foo = /** comment */ (a | b) | c;

TypeScript: Fix unstable comment print in union type comments (#18395 by @​fisker)

// Input
type X = (A | B) & (
  // comment
  A | B
);
// Prettier 3.7.3 (first format)
type X = (A | B) &
(// comment
A | B);
// Prettier 3.7.3 (second format)
type X = (
| A
</tr></table>

... (truncated)

Commits

• 7848357 Release 3.7.4
• 7686c59 Release @​prettier/plugin-hermes & @​prettier/plugin-oxc v0.1.3
• fe49434 Remove dead code checking union/intersection types length (#18396)
• ca02b37 Fix unstable comment print (#18395)
• 7efb988 Fix comment in union type get duplicated (#18393)
• cfa92c1 Update dependency @​angular/compiler to v21.0.2 (#18392)
• 1de2737 Update dependency yaml to v2.8.2 (#18391)
• 706aa4e Switch js parse postprocess to onEnter (#18382)
• d3eb2b2 Reuse arrays in visitor keys (#18386)
• c45fef1 Fix LWC attribute with --embedded-language-formatting off (#18383)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for prettier since your current version.

Updates stylelint from 16.26.0 to 16.26.1

Release notes

Sourced from stylelint's releases.

16.26.1

It fixes numerous false positive bugs, including many in the declaration-property-value-no-unknown rule for the latest CSS specifications.

• Fixed: *-no-unknown false positives for latest specs by integrating @csstools/css-syntax-patches-for-csstree (#8850) (@​romainmenke).
• Fixed: at-rule-no-unknown false positives for @function (#8851) (@​jeddy3).
• Fixed: declaration-property-value-no-unknown false positives for attr(), if() and custom functions (#8853) (@​jeddy3).
• Fixed: function-url-quotes false positives when URLs require quoting (#8804) (@​taearls).
• Fixed: selector-pseudo-element-no-unknown false positives for ::scroll-button() (#8856) (@​Mouvedia).

Changelog

Sourced from stylelint's changelog.

16.26.1 - 2025-11-28

It fixes numerous false positive bugs, including many in the declaration-property-value-no-unknown rule for the latest CSS specifications.

• Fixed: *-no-unknown false positives for latest specs by integrating @csstools/css-syntax-patches-for-csstree (#8850) (@​romainmenke).
• Fixed: at-rule-no-unknown false positives for @function (#8851) (@​jeddy3).
• Fixed: declaration-property-value-no-unknown false positives for attr(), if() and custom functions (#8853) (@​jeddy3).
• Fixed: function-url-quotes false positives when URLs require quoting (#8804) (@​taearls).
• Fixed: selector-pseudo-element-no-unknown false positives for ::scroll-button() (#8856) (@​Mouvedia).

Commits

• b968143 Release 16.26.1 (#8857)
• 2b24b9c Fix selector-pseudo-element-no-unknown false positives for `::scroll-button...
• f152564 Fix *-no-unknown false positives for latest specs by integrating `@csstools...
• 431cb53 Fix at-rule-no-unknown false positives for @function (#8851)
• 119097e Fix declaration-property-value-no-unknown false positives for attr() and ...
• 4b9c68b Fix function-url-quotes false positives when URLs require quoting (#8804)
• 8cc4ced Bump rollup from 4.52.5 to 4.53.2 (#8848)
• 4383feb Bump file-entry-cache from 11.1.0 to 11.1.1 (#8846)
• a8a7560 Bump the eslint group with 2 updates (#8845)
• 947ad33 Fix patch-package warning about mismatched @types/css-tree version (#8844)
• See full diff in compare view

Updates stylelint-scss from 6.12.1 to 6.13.0

Release notes

Sourced from stylelint-scss's releases.

6.13.0

• Added: at-mixin-argumentless-call-parentheses handle mixin calls with content block arguments (#1185).
• Added: at-function-pattern, at-mixin-pattern, dollar-variable-pattern, percent-placeholder-pattern add support for arguments in custom messages (#1187).
• Added: dollar-variable-no-missing-interpolation check for CSS custom properties, add autofix, rule documentation improvements (#1195).
• Fixed: dollar-variable-colon-space-after prevent TypeError for dynamically created nodes (#1159).
• Fixed: load-partial-extension add missing link to docs (#1202).
• Fixed: migrate rules to use autofix callback instead of deprecated context.fix (#1206).
• Updated: stylelint peer dependency version to ^16.8.2 (required by autofix callback) (#1206).

Full Changelog: stylelint-scss/stylelint-scss@v6.12.1...v6.13.0

Changelog

Sourced from stylelint-scss's changelog.

6.13.0

• Added: at-mixin-argumentless-call-parentheses handle mixin calls with content block arguments (#1185).
• Added: at-function-pattern, at-mixin-pattern, dollar-variable-pattern, percent-placeholder-pattern add support for arguments in custom messages (#1187).
• Added: dollar-variable-no-missing-interpolation check for CSS custom properties, add autofix, rule documentation improvements (#1195).
• Fixed: dollar-variable-colon-space-after prevent TypeError for dynamically created nodes (#1159).
• Fixed: load-partial-extension add missing link to docs (#1202).
• Fixed: migrate rules to use autofix callback instead of deprecated context.fix (#1206).
• Updated: stylelint peer dependency version to ^16.8.2 (required by autofix callback) (#1206).

Full Changelog: stylelint-scss/stylelint-scss@v6.12.1...v6.13.0

Commits

• 8603726 6.13.0
• 6ecc285 Prepare version 6.13.0 (#1210)
• 9e01965 Update contributors list (#1209)
• db73b89 Update Stylelint to 16.26.0 (#1208)
• c1da86f build(deps-dev): bump prettier from 3.7.3 to 3.7.4 (#1207)
• 4de4085 Migrate rules to use autofix callback (#1206)
• 2d3022d Bump Node version to 24 in CI (#1205)
• b9cb784 build(deps): bump mdn-data from 2.24.0 to 2.25.0 (#1204)
• a8634ad build(deps-dev): bump js-yaml from 3.14.1 to 3.14.2 (#1203)
• 3784a78 build(deps): bump postcss-selector-parser from 7.1.0 to 7.1.1 (#1197)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions