Skip to content

chore(deps-dev): bump the all-pnpm-dependencies group across 1 directory with 7 updates#68

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/all-pnpm-dependencies-85d6f6838c
Open

chore(deps-dev): bump the all-pnpm-dependencies group across 1 directory with 7 updates#68
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/all-pnpm-dependencies-85d6f6838c

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 19, 2026
edited
Loading

Bumps the all-pnpm-dependencies group with 7 updates in the / directory:

Package From To
@sveltejs/kit 2.49.5 2.52.2
devalue 5.6.2 5.6.3
prettier 3.8.0 3.8.1
prettier-plugin-svelte 3.4.1 3.5.0
rollup 4.55.1 4.57.1
svelte 5.46.4 5.53.0
svelte-check 4.3.5 4.4.1

Updates @sveltejs/kit from 2.49.5 to 2.52.2

Release notes

Sourced from @​sveltejs/kit's releases.

@​sveltejs/kit@​2.52.2

Patch Changes

  • fix: validate form file information to prevent amplification attacks (3e607b3)

  • chore: upgrade devalue and svelte (#15339)

  • fix: parse file offset table more strictly (f47c01b)

@​sveltejs/kit@​2.52.0

Minor Changes

  • feat: match function to map a path back to a route id and params (#14997)

Patch Changes

  • fix: respect scroll-margin when navigating to a url-supplied anchor (#15246)

  • fix: resolve will narrow types to follow trailing slash page settings (#15027)

@​sveltejs/kit@​2.51.0

Minor Changes

  • feat: add scroll property to NavigationTarget in navigation callbacks (#15248)

    Navigation callbacks (beforeNavigate, onNavigate, and afterNavigate) now include scroll position information via the scroll property on from and to targets:

    • from.scroll: The scroll position at the moment navigation was triggered
    • to.scroll: In beforeNavigate and onNavigate, this is populated for popstate navigations (back/forward) with the scroll position that will be restored, and null for other navigation types. In afterNavigate, this is always the final scroll position after navigation completed.

    This enables use cases like animating transitions based on the target scroll position when using browser back/forward navigation.

  • feat: hydratable's injected script now works with CSP (#15048)

Patch Changes

  • fix: put preloads before styles (#15232)

  • fix: suppress false-positive inner content warning when children prop is forwarded to a child component (#15269)

  • fix: fetch not working when URL is same host but different than paths.base (#15291)

  • fix: navigate to hash link when base element is present (#15236)

... (truncated)

Changelog

Sourced from @​sveltejs/kit's changelog.

2.52.2

Patch Changes

  • fix: validate form file information to prevent amplification attacks (3e607b3)

  • chore: upgrade devalue and svelte (#15339)

  • fix: parse file offset table more strictly (f47c01b)

2.52.1

Patch Changes

  • fix: clear stale preflight issues on subsequent valid form submissions (#15281)

  • chore: remove dependency on sade (#15272)

  • fix: include .txt files in precompression (#15259)

  • fix: escape backticks and dollar signs when creating inlined css (#15320)

  • fix: increment form.pending count before preflight validation (#15279)

2.52.0

Minor Changes

  • feat: match function to map a path back to a route id and params (#14997)

Patch Changes

  • fix: respect scroll-margin when navigating to a url-supplied anchor (#15246)

  • fix: resolve will narrow types to follow trailing slash page settings (#15027)

2.51.0

Minor Changes

  • feat: add scroll property to NavigationTarget in navigation callbacks (#15248)

... (truncated)

Commits

Updates devalue from 5.6.2 to 5.6.3

Release notes

Sourced from devalue's releases.

v5.6.3

Patch Changes

  • 0f04d4d: fix: Properly handle __proto__
  • 819f1ac: fix: better encoding for sparse arrays
Changelog

Sourced from devalue's changelog.

5.6.3

Patch Changes

  • 0f04d4d: fix: Properly handle __proto__
  • 819f1ac: fix: better encoding for sparse arrays
Commits

Updates prettier from 3.8.0 to 3.8.1

Release notes

Sourced from prettier's releases.

3.8.1

🔗 Changelog

Changelog

Sourced from prettier's changelog.

3.8.1

diff

Include available printers in plugin type declarations (#18706 by @​porada)

// Input
import * as prettierPluginEstree from "prettier/plugins/estree";
// Prettier 3.8.0
// Property 'printers' does not exist on type 'typeof import("prettier/plugins/estree")'. ts(2339)
prettierPluginEstree.printers.estree; //=> any
// Prettier 3.8.1
prettierPluginEstree.printers.estree; //=> Printer
prettierPluginEstree.printers["estree-json"]; //=> Printer

Commits

Updates prettier-plugin-svelte from 3.4.1 to 3.5.0

Commits

Updates rollup from 4.55.1 to 4.57.1

Release notes

Sourced from rollup's releases.

v4.57.1

4.57.1

2026-01-30

Bug Fixes

  • Fix heap corruption issue in Windows (#6251)
  • Ensure exports of a dynamic import are fully included when called from a try...catch (#6254)

Pull Requests

v4.57.0

4.57.0

2026-01-27

Features

  • Add import attributes to all plugin hooks that did not provide them yet (#5700)
  • Deprecate returning import attributes from load or transform hooks as that will no longer be supported with rollup 5 (#5700)

Pull Requests

v4.56.0

4.56.0

2026-01-22

Features

  • Track object property inclusions of dynamic namespace members (#6230)

Bug Fixes

  • Handle methods that access dynamically imported namespace members via this (#6230)

Pull Requests

... (truncated)

Changelog

Sourced from rollup's changelog.

4.57.1

2026-01-30

Bug Fixes

  • Fix heap corruption issue in Windows (#6251)
  • Ensure exports of a dynamic import are fully included when called from a try...catch (#6254)

Pull Requests

4.57.0

2026-01-27

Features

  • Add import attributes to all plugin hooks that did not provide them yet (#5700)
  • Deprecate returning import attributes from load or transform hooks as that will no longer be supported with rollup 5 (#5700)

Pull Requests

4.56.0

2026-01-22

Features

  • Track object property inclusions of dynamic namespace members (#6230)

Bug Fixes

  • Handle methods that access dynamically imported namespace members via this (#6230)

Pull Requests

... (truncated)

Commits
  • d37675f 4.57.1
  • eafac0b chore(deps): lock file maintenance (#6255)
  • 47fa568 chore(deps): update dependency lru-cache to v11 (#6252)
  • 416f476 Fully include dynamic imports in a try-catch (#6254)
  • 5e393e3 fix: Isolate and cache process.report.getReport() calls in a child process ...
  • c931d23 chore(deps): lock file maintenance minor/patch updates (#6253)
  • c79e6c2 Mitigate vulnerability that would allow to steal credentials
  • 743d054 4.57.0
  • 74121c7 extend more hooks to include import attributes and add warnings (#5700)
  • c519d82 Refactor to reduce Rollup 5 upgrade diff (#6246)
  • Additional commits viewable in compare view

Updates svelte from 5.46.4 to 5.53.0

Release notes

Sourced from svelte's releases.

svelte@5.53.0

Minor Changes

  • feat: allow comments in tags (#17671)

  • feat: allow error boundaries to work on the server (#17672)

Patch Changes

  • fix: use TrustedHTML to test for customizable support, where necessary (#17743)

  • fix: ensure head effects are kept in the effect tree (#17746)

  • chore: deactivate current_batch by default in unset_context (#17738)

svelte@5.52.0

Minor Changes

  • feat: support TrustedHTML in {@html} expressions (#17701)

Patch Changes

  • fix: repair dynamic component truthy/falsy hydration mismatches (#17737)

  • fix: re-run non-render-bound deriveds on the server (#17674)

svelte@5.51.5

Patch Changes

svelte@5.51.4

Patch Changes

  • chore: proactively defer effects in pending boundary (#17734)

  • fix: detect and error on non-idempotent each block keys in dev mode (#17732)

svelte@5.51.3

Patch Changes

... (truncated)

Changelog

Sourced from svelte's changelog.

5.53.0

Minor Changes

  • feat: allow comments in tags (#17671)

  • feat: allow error boundaries to work on the server (#17672)

Patch Changes

  • fix: use TrustedHTML to test for customizable support, where necessary (#17743)

  • fix: ensure head effects are kept in the effect tree (#17746)

  • chore: deactivate current_batch by default in unset_context (#17738)

5.52.0

Minor Changes

  • feat: support TrustedHTML in {@html} expressions (#17701)

Patch Changes

  • fix: repair dynamic component truthy/falsy hydration mismatches (#17737)

  • fix: re-run non-render-bound deriveds on the server (#17674)

5.51.5

Patch Changes

5.51.4

Patch Changes

  • chore: proactively defer effects in pending boundary (#17734)

... (truncated)

Commits

Updates svelte-check from 4.3.5 to 4.4.1

Release notes

Sourced from svelte-check's releases.

svelte-check@4.4.1

Patch Changes

  • fix: handle relative imports reaching outside working directory when using --incremental/--tsgo flags (#2942)

  • fix: support SvelteKit zero types in svelte-check --incremental (#2939)

svelte-check@4.4.0

Minor Changes

  • feat: provide --incremental and --tsgo flags (#2932)

Patch Changes

  • fix: ignore Unix domain sockets in file watcher to prevent crashes (#2931)

  • fix: properly use machine output by default for Claude Code (e9f58d2)

svelte-check@4.3.6

Patch Changes

  • fix: don't hoist type/snippet referencing $store (#2926)
Commits
  • c14bf1d Version Packages (#2940)
  • 9b7025a chore: remove outdated "experimental-modules" runtime flag (#2898)
  • 6a04679 fix: rewrite relative imports reaching outside root (#2942)
  • c82f540 fix: extract style/script tag followed by destructuring in the template (#2921)
  • b914d01 fix: support SvelteKit zero-types with svelte-check --incremental (#2939)
  • 3b17f20 Version Packages (#2929)
  • 2142753 feat: add links to diagnostic error codes via codeDescription (#2936)
  • 8f4fe71 fix(svelte-check): ignore Unix domain sockets in file watcher (#2931)
  • 0b8af82 feat: svelte-check --incremental / --tsgo (#2932)
  • e9f58d2 fix: properly use machine output by default for Claude Code
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps-dev): bump the all-pnpm-dependencies group across 1 direct…
6494fdf 
…ory with 7 updates

Bumps the all-pnpm-dependencies group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@sveltejs/kit](https://github.com/sveltejs/kit/tree/HEAD/packages/kit) | `2.49.5` | `2.52.2` |
| [devalue](https://github.com/sveltejs/devalue) | `5.6.2` | `5.6.3` |
| [prettier](https://github.com/prettier/prettier) | `3.8.0` | `3.8.1` |
| [prettier-plugin-svelte](https://github.com/sveltejs/prettier-plugin-svelte) | `3.4.1` | `3.5.0` |
| [rollup](https://github.com/rollup/rollup) | `4.55.1` | `4.57.1` |
| [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) | `5.46.4` | `5.53.0` |
| [svelte-check](https://github.com/sveltejs/language-tools) | `4.3.5` | `4.4.1` |



Updates `@sveltejs/kit` from 2.49.5 to 2.52.2
- [Release notes](https://github.com/sveltejs/kit/releases)
- [Changelog](https://github.com/sveltejs/kit/blob/main/packages/kit/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/kit/commits/@sveltejs/kit@2.52.2/packages/kit)

Updates `devalue` from 5.6.2 to 5.6.3
- [Release notes](https://github.com/sveltejs/devalue/releases)
- [Changelog](https://github.com/sveltejs/devalue/blob/main/CHANGELOG.md)
- [Commits](sveltejs/devalue@v5.6.2...v5.6.3)

Updates `prettier` from 3.8.0 to 3.8.1
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@3.8.0...3.8.1)

Updates `prettier-plugin-svelte` from 3.4.1 to 3.5.0
- [Changelog](https://github.com/sveltejs/prettier-plugin-svelte/blob/master/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/prettier-plugin-svelte/commits)

Updates `rollup` from 4.55.1 to 4.57.1
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](rollup/rollup@v4.55.1...v4.57.1)

Updates `svelte` from 5.46.4 to 5.53.0
- [Release notes](https://github.com/sveltejs/svelte/releases)
- [Changelog](https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/svelte/commits/svelte@5.53.0/packages/svelte)

Updates `svelte-check` from 4.3.5 to 4.4.1
- [Release notes](https://github.com/sveltejs/language-tools/releases)
- [Commits](https://github.com/sveltejs/language-tools/compare/svelte-check@4.3.5...svelte-check@4.4.1)

---
updated-dependencies:
- dependency-name: "@sveltejs/kit"
  dependency-version: 2.52.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-pnpm-dependencies
- dependency-name: devalue
  dependency-version: 5.6.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: all-pnpm-dependencies
- dependency-name: prettier
  dependency-version: 3.8.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: all-pnpm-dependencies
- dependency-name: prettier-plugin-svelte
  dependency-version: 3.5.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-pnpm-dependencies
- dependency-name: rollup
  dependency-version: 4.57.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-pnpm-dependencies
- dependency-name: svelte
  dependency-version: 5.53.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-pnpm-dependencies
- dependency-name: svelte-check
  dependency-version: 4.4.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all-pnpm-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file npm npm dependencies labels Feb 19, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file npm npm dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants

Comments