chore(deps)(deps): bump @angular/compiler from 21.2.15 to 22.0.1

[dependabot]

Bumps @angular/compiler from 21.2.15 to 22.0.1.

Release notes

Sourced from @​angular/compiler's releases.

22.0.1

common

Commit	Description
	escape CSS string-terminating characters in escapeCssUrl
	Limits date format string length
	prevent prototype pollution in formatDateTime
	use cryptographically secure SHA-256 for transfer cache key generation

compiler

Commit	Description
	disallow i18n event attributes
	more robust logic to check if regex can be optimized
	sanitize href/xlink:href attributes of any element of the MathML namespace
	sanitize two-way properties

compiler-cli

Commit	Description
	bind switch exhaustive check expressions

core

Commit	Description
	disable WebMCP during SSR
	Handle synchronous errors in PendingTasks.run function
	harden TransferState restoration against DOM clobbering
	prevent dangling prevConsumer reference from leaking destroyed views (#68681)
	require WebMCP tool descriptions
	update comment for Default change detection
	use Object.hasOwn to handle null-prototype objects in toStylingKeyValueArray
	validate lowercase SVG animation attribute names

forms

Commit	Description
	delay mcp reading the form model by a tick
	harden FormGroup control lookups against prototype shadowing
	remove animationstart listener on component destroy to prevent memory leak
	set additionalProperties: false on generated WebMCP form

http

Commit	Description
	ensure query parameters are inserted before URL fragments
	pass down the reportUploadProgress and reportDownloadProgress on post/patch requests
	preserve empty referrer option in HttpRequest
	Rejects non-HTTP(S) URLs in JSONP requests

language-service

Commit	Description
	prevent external template inlay hints from appearing in TS files

platform-server

| Commit | Description |

... (truncated)

Changelog

Sourced from @​angular/compiler's changelog.

22.0.1 (2026-06-10)

Deprecations

platform-server

• XHR support in @angular/platform-server is deprecated. Use standard fetch APIs instead. (cherry picked from commit 8446e46f8bc33bd4419fa7f6106b8d117ca2e099)

common

Commit	Type	Description
c4b5fa3c92	fix	escape CSS string-terminating characters in escapeCssUrl
dfff57ede9	fix	Limits date format string length
3c2892c8df	fix	prevent prototype pollution in formatDateTime
1d87c49f6e	fix	use cryptographically secure SHA-256 for transfer cache key generation

compiler

Commit	Type	Description
1ee224ca30	fix	disallow i18n event attributes
a56f1cdf8f	fix	more robust logic to check if regex can be optimized
5946c18275	fix	sanitize href/xlink:href attributes of any element of the MathML namespace
393b84caf8	fix	sanitize two-way properties

compiler-cli

Commit	Type	Description
3d9ca2f173	fix	bind switch exhaustive check expressions

core

Commit	Type	Description
669146b0e7	fix	disable WebMCP during SSR
562a566ead	fix	Handle synchronous errors in PendingTasks.run function
fa546f382d	fix	harden TransferState restoration against DOM clobbering
29fdb98684	fix	prevent dangling prevConsumer reference from leaking destroyed views (#68681)
cdcea80327	fix	require WebMCP tool descriptions
4289c4c840	fix	update comment for Default change detection
3dd433b39a	fix	use Object.hasOwn to handle null-prototype objects in toStylingKeyValueArray
045bb736b3	fix	validate lowercase SVG animation attribute names

forms

Commit	Type	Description
11836a670a	fix	delay mcp reading the form model by a tick
85d2d100e3	fix	harden FormGroup control lookups against prototype shadowing
e51ad374ea	fix	remove animationstart listener on component destroy to prevent memory leak
55b7b5a6b6	fix	set additionalProperties: false on generated WebMCP form

http

Commit	Type	Description
ffb06c0514	fix	ensure query parameters are inserted before URL fragments
2dd65d21e6	fix	pass down the reportUploadProgress and reportDownloadProgress on post/patch requests
4254eb416c	fix	preserve empty referrer option in HttpRequest
167bd4c162	fix	Rejects non-HTTP(S) URLs in JSONP requests

language-service

| Commit | Type | Description |

... (truncated)

Commits

• 4645850 refactor(compiler): Remove 80 char limit on AbstractEmitterVisitor
• 1ee224c fix(compiler): disallow i18n event attributes
• 5946c18 fix(compiler): sanitize href/xlink:href attributes of any element of the ...
• 393b84c fix(compiler): sanitize two-way properties
• 3d9ca2f fix(compiler-cli): bind switch exhaustive check expressions
• a56f1cd fix(compiler): more robust logic to check if regex can be optimized
• 2891f7e fix(compiler): move projection attributes into constants
• 94d520f fix(compiler): prevent namespaced SVG <style> elements from being stripped
• d9c38e5 docs: fix typos in source code comments
• a08e4fb fix(core): normalize tag names in runtime i18n attribute security context loo...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

📊 Coverage Report

Metric		PR	Base	Diff
Statements	████████████████████	662/662 (100%)	662/662 (100%)	⚪ 0%
Branches	████████████████████	279/279 (100%)	279/279 (100%)	⚪ 0%
Functions	████████████████████	122/122 (100%)	122/122 (100%)	⚪ 0%
Lines	████████████████████	637/637 (100%)	637/637 (100%)	⚪ 0%

---

_{Updated for 22f2af5 | Compared against base branch}

[github-actions]

⏱️ Performance Report

✅ Tests	179 passed, 0 failed, 0 skipped
🧪 Suites	33
⏱️ Total step time	8.00s (install + tests) 🟢 -1.00s
⚙️ Test execution	1.46s 🟢 -161ms

🐢 Slowest test suites

#	Suite	Tests	Duration	vs Base
1	test/generators/schema-generator.spec.ts	15	796ms	🟢 -66ms
2	test/adapter/trpc-client-adapter-e2e.spec.ts	8	133ms	⚪ ~0
3	test/adapter/trpc-http-adapter.spec.ts	12	41ms	⚪ ~0
4	test/router/trpc-router.spec.ts	29	40ms	⚪ ~0
5	test/context/trpc-context-creator.spec.ts	26	29ms	⚪ ~0
6	test/adapter/trpc-http-adapter-unit.spec.ts	22	18ms	⚪ ~0
7	test/generators/zod-serializer.spec.ts	37	13ms	⚪ ~0
8	test/module/trpc-module.spec.ts	4	6ms	⚪ ~0
9	test/router/trpc-router-lifecycle.spec.ts	10	5ms	⚪ ~0
10	test/decorators/decorators.spec.ts	10	2ms	⚪ ~0

🐌 Slowest individual tests

#	Suite	Test	Duration	vs Base
1	schema-generator	generateSchemaContent (type-level AppRouter contract) should typecheck generated AppRouter with a typed tRPC client	790ms	🟢 -67ms
2	trpc-client-adapter-e2e	real @trpc/client adapter E2E express handles typed queries, mutations, and context extraction	59ms	⚪ ~0
3	trpc-client-adapter-e2e	real @trpc/client adapter E2E express streams subscriptions through the real client	17ms	⚪ ~0
4	trpc-client-adapter-e2e	real @trpc/client adapter E2E express runs class-validator DTO validation through ValidationPipe	15ms	⚪ ~0
5	trpc-client-adapter-e2e	real @trpc/client adapter E2E fastify handles typed queries, mutations, and context extraction	13ms	⚪ ~0
6	trpc-client-adapter-e2e	real @trpc/client adapter E2E fastify runs class-validator DTO validation through ValidationPipe	10ms	⚪ ~0
7	trpc-client-adapter-e2e	real @trpc/client adapter E2E express reports Zod input errors through the real client	8ms	⚪ ~0
8	trpc-client-adapter-e2e	real @trpc/client adapter E2E fastify streams subscriptions through the real client	6ms	⚪ ~0
9	trpc-http-adapter	TrpcHttpAdapter edge cases should handle Fastify GET with createContext	6ms	⚪ ~0
10	trpc-client-adapter-e2e	real @trpc/client adapter E2E fastify reports Zod input errors through the real client	5ms	⚪ ~0
11	trpc-http-adapter	TrpcHttpAdapter Express handler should handle GET query requests	5ms	⚪ ~0
12	trpc-http-adapter	TrpcHttpAdapter Express handler should apply method pipes and interceptors through HTTP requests	5ms	⚪ ~0
13	trpc-http-adapter	TrpcHttpAdapter Express handler should stream subscription responses over GET	4ms	⚪ ~0
14	trpc-http-adapter	TrpcHttpAdapter edge cases should use default path "/trpc" when path is not configured	4ms	⚪ ~0
15	trpc-http-adapter-unit	TrpcHttpAdapter (unit – response fallbacks) should end the response when the stream emits an error	3ms	⚪ ~0

---

_{Updated for 22f2af5 | Compared against base branch}

[github-actions]

🧠 Cognitive Complexity Report

Metric	PR	Base	Diff
Total complexity	157	157	⚪ 0
Max function complexity	12	12	⚪ 0
Functions measured	53	53	⚪ 0

🧩 Most complex functions

Function	Location	Complexity	Status
serializeZodSchema	packages/trpc/generators/zod-serializer.ts:9	12	🟢 OK
TrpcContextCreator.extractHttpExceptionMessage	packages/trpc/context/trpc-context-creator.ts:467	7	🟢 OK
generateSchemaContent	packages/trpc/generators/schema-generator.ts:45	7	🟢 OK
TrpcHttpAdapter.resolveBody	packages/trpc/trpc-http-adapter.ts:122	7	🟢 OK
TrpcRouter.validateSubscriptionOutput	packages/trpc/trpc-router.ts:546	7	🟢 OK
(anonymous callback)	packages/trpc/context/trpc-context-creator.ts:243	6	🟢 OK
TrpcRouter.assertUniqueAliasPath	packages/trpc/trpc-router.ts:431	6	🟢 OK
TrpcRouter.resolveContextId	packages/trpc/trpc-router.ts:499	6	🟢 OK
TrpcRouter.createRouterProviderContext	packages/trpc/trpc-router.ts:143	5	🟢 OK
(anonymous callback)	packages/trpc/trpc-router.ts:315	5	🟢 OK

🧭 Cognitive complexity is reported as a review signal, not a merge gate. Prefer small, intention-revealing refactors when complexity rises.

---

_{Updated for 22f2af5 | Compared against base branch}