chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
@nuxt/eslint-config (source)	^0.7.4 -> ^0.7.5					devDependencies	patch
@nuxt/test-utils	^3.15.1 -> ^3.15.4					devDependencies	patch
@vitest/coverage-v8 (source)	^3.0.0 -> ^3.0.4					devDependencies	patch
consola	^3.3.1 -> ^3.4.0					dependencies	minor
eslint (source)	^9.17.0 -> ^9.19.0					devDependencies	minor
h3	^1.13.0 -> ^1.14.0					devDependencies	minor
knip (source)	^5.41.1 -> ^5.43.6					devDependencies	minor
node (source)	>=18.20.5 -> >=18.20.6					engines	patch
pathe	^2.0.0 -> ^2.0.2					dependencies	patch
pnpm (source)	9.15.1 -> 9.15.4					packageManager	patch
typescript (source)	^5.6.3 -> ^5.7.3					devDependencies	minor
unbuild	^3.0.1 -> ^3.3.1					devDependencies	minor
vitest (source)	^3.0.0 -> ^3.0.4					devDependencies	patch
vue-tsc (source)	^2.1.10 -> ^2.2.0					devDependencies	minor

---

Release Notes

nuxt/eslint (@​nuxt/eslint-config)

v0.7.5

Compare Source

No significant changes

    View changes on GitHub

nuxt/test-utils (@​nuxt/test-utils)

v3.15.4

Compare Source

compare changes

🩹 Fixes

• e2e: Use tinyexec to resolve nuxi binary (7df895e3)
• e2e: Increase default windows setup timeout (6f38dd58)

✅ Tests

• Bump timeout in test also (dcf038a0)

❤️ Contributors

• Daniel Roe (@​danielroe)

v3.15.3

Compare Source

compare changes

🩹 Fixes

• e2e: Use node:path to resolve dist directory (#​1054)

❤️ Contributors

• Scott Bedard (@​scottbedard)

v3.15.2

Compare Source

compare changes

🩹 Fixes

• module: Remove setInterval from the presets (#​1035)

🏡 Chore

• Add devtools-kit types + specify vite in jest fixture (c37781b5)
• Double windows timeout (45e16131)

✅ Tests

• Update windows timeout for e2e test (1acb335b)

❤️ Contributors

• Daniel Roe (@​danielroe)
• Ryota Watanabe (@​wattanx)

vitest-dev/vitest (@​vitest/coverage-v8)

v3.0.4

Compare Source

   🐞 Bug Fixes

• Filter projects eagerly during config resolution  -  by @​sheremet-va and @​AriPerkkio in https://github.com/vitest-dev/vitest/issues/7313 (dff44)
• Apply development|production condition on Vites 6 by @​hi-ogawa and @​sheremet-va (#​7301) (ef146)
• browser: Restrict served files from /__screenshot-error  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/7340 (ed9ae)
• deps: Update all non-major dependencies  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7297 (38ea8)
• runner: Timeout long sync hook  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/7289 (c60ee)
• typechecking: Support typechecking parsing with Vite 6  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7335 (bff70)
• types: Fix public types  -  by @​mrginglymus and @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7328 (ce6af)

    View changes on GitHub

v3.0.3

Compare Source

   🐞 Bug Fixes

• browser:
  • Don't throw a validation error if v8 coverage is used with filtered instances  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7306 (fa463)
  • Don't fail when running --browser.headless if the browser projest is part of the workspace  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7311 (e43a8)

   🏎 Performance

• reporters: Update summary only when needed  -  by @​AriPerkkio in https://github.com/vitest-dev/vitest/issues/7291 (7f36b)

    View changes on GitHub

v3.0.2

Compare Source

   🐞 Bug Fixes

• Don't await an empty timeout after every test  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7281 (ef1aa)
• expect: Fix expect().resolves/rejects chain typings  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/7273 (fa415)

    View changes on GitHub

v3.0.1

Compare Source

   🐞 Bug Fixes

• Revert "fix: re-apply default conditions if using vite 6 or later (https://github.com/vitest-dev/vitest/issues/7071)"  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7071 and https://github.com/vitest-dev/vitest/issues/7271 (755ec)
• deps: Update all non-major dependencies  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7147 (537fa)

    View changes on GitHub

unjs/consola (consola)

v3.4.0

Compare Source

compare changes

🚀 Enhancements

• Use upstream @clack/prompts (#​332)

🩹 Fixes

• Calculate box width without escape sequence chars (#​336)

💅 Refactors

• Keep prompt styles (cont. #​332) (#​332)

📦 Build

• Update exports for node16 typescript resolution (#​331)

🏡 Chore

• Update deps (9193d63)
• Apply automated updates (fc8b9b9)

❤️ Contributors

• Pooya Parsa (@​pi0)
• Yongqi <yongqi14@​qq.com>

v3.3.3

Compare Source

compare changes

📦 Build

• Revert "build: update exports for node16 typescript resolution" (2065136)

❤️ Contributors

• Pooya Parsa (@​pi0)

v3.3.2

Compare Source

compare changes

📦 Build

• Patch string-width for node 14 support (421c663)
• Update exports for node16 typescript resolution (18bc852)

❤️ Contributors

• Pooya Parsa (@​pi0)

eslint/eslint (eslint)

v9.19.0

Compare Source

v9.18.0

Compare Source

unjs/h3 (h3)

v1.14.0

Compare Source

compare changes

🚀 Enhancements

• session: Allow using with crossws hooks (#​960)

❤️ Contributors

• Pooya Parsa (@​pi0)
• Kanonji (@​kanonji)

v1.13.1

Compare Source

compare changes

🩹 Fixes

• proxy: Ignore incoming accept-encoding header (#​914)
• proxy: Pass host for local targets (#​946)

📖 Documentation

• Fix typos (#​917, #​918, #​919)
• Remove duplicate list (#​939)

❤️ Contributors

• Pooya Parsa (@​pi0)
• Mak (@​Makkalay)
• Daniel Rentz (@​danielrentz)

webpro-nl/knip (knip)

v5.43.6

Compare Source

v5.43.5

Compare Source

v5.43.4

Compare Source

• Add missing test & widen scope for implicit enumerations (resolves #​927) (d02db68)

v5.43.3

Compare Source

• Improve enum/member handling (fc5982e)
• More concise naming (f93a410)
• feat(jest): add mocks to entry files (#​925) (895434b) - thanks @​TkDodo!
• Move mock (0259b87)

v5.43.2

Compare Source

• Add a bit of error handling for failed contributors fetch (b70958a)
• Always use production entries by default in expo plugin (resolves #​918) (9b8cb69)
• knipignore → lintignore (47460d2)
• Fix scoping of namespace import refs (c8ce64d)
• Bun started exposing serialize and deserialize directly from node:v8 (cbfc56e)
• Update docs (b7b6273)
• Update dependencies (9b4f695)

v5.43.1

Compare Source

• Add ignoreUnresolved to json schema (ec1cca7)
• Update docs (d1f05c1)

v5.43.0

Compare Source

• Add ignoreUnresolved feature (resolves #​920) (081a776)
• Edit metro plugin doc (a418b57)

v5.42.3

Compare Source

• Do not crash when running npm init @​knip/config on a repository not using git (#​916) (10575b8) - thanks @​guillaumebrunerie!
• feat: add support for storybook framework option as a string (#​923) (030ac40) - thanks @​filipw01!
• Fix vitest reporters with options (#​922) (02a300c) - thanks @​dakro!
• Improve containingFilePath for inputs + debug output for failed script parser (8ccee81)

v5.42.2

Compare Source

• Accept function that returns config in expo plugin (96b6783)
• Improve pm binary/package handling (4b78b61)
• Make github-action inputs optional in production mode (resolves #​914) (c510a35)
• Minor housekeeping (4011b23)
• Track Angular polyfills (#​913) (e568802) - thanks @​davidlj95!

v5.42.1

Compare Source

• Exclude semantic-release packages (resolves #​899) (a28cc02)* Edit docs + gen (d850cbe)
• Improve reported line sorting (7ff0b70)
• Rename tests touching fs for easier exclusion (be5ba91)
• Add test:watch script to watch only failing test (86b2123)
• Add default formatter for jsx (4a212ad)
• Avoid overwrites in issue collector storage key (0530465)
• Rename file to match test/fixture consistency (959b64c)
• Fix case of node ../../node_modules/.bin/executable (resolves #​908) (5a77dcc)
• Log debug session from launcher (be1f9d4)
• Introduce optional dependencies & improve pm cli arg handling (1731ee5)
• Support more execa methods in visitor (5f2cf34)
• Minor refactor (052375f)
• Fix non-internal isDependency case (e908cfe)
• Format on save (0f67016)
• Fix case of $/execa script like yarn lint:spellcheck (03abffd)
• Reduce noise (5a3177f)
• feat: add dependency-cruiser plugin (#​911) (8d206a0) - thanks @​filipw01!
• Update dependencies (b9aff83)
• Update docs re. 1731ee5 (938496c)

v5.42.0

Compare Source

• Refactor getImportsAndExports return structure (3cb27eb)
• Add isModule to narrow down visitor condition (17f2224)
• Always run config resolver (#​884) (94474cb) - thanks @​davidlj95!
• Clean up after #​884 (4fc91eb)
• Add Karma configuration from Angular plugin configuration (#​885) (e1ba447) - thanks @​davidlj95!
• Ignore zip global binary (#​888) (62fbc76) - thanks @​davidlj95!
• Ignore rsync global binary (#​889) (d29ec34) - thanks @​davidlj95!
• Track Angular scripts build option (#​886) (f43b638) - thanks @​davidlj95!
• Fix up count after merging multiple PRs (9590b92)
• Add support for nx command shorthand to nx plugin (#​896) (337de52) - thanks @​jjjjonathan!
• Delete principal from array after usage for GC (#​897) (79a7d48) - thanks @​heystewart!
• Fix iterating over namespaces imported using '*' (star) reporting unused classes (#​898) (26331c0) - thanks @​heystewart!
• Add metro plugin (#​895) (b106a5f) - thanks @​jjjjonathan!
• Separate Angular production vs non-production entries (#​887) (91130f8) - thanks @​davidlj95!
• Add testimonial/tweet (9c82470)
• Remove links to closed "request plugin" issue (5e54e1d)
• Styling (169dba1)
• Update dependencies (fbaec01)
• Housekeep isInForIteration heuristic (566d11c)
• Only wipe principals in isolate-workspaces mode (f1e6770)
• Fix commands in dev guide (5d6fe80)
• Minor edit readme (b5f426c)
• Split angular test (4fa4a03)
• Fix photo url (a9f2d74)
• Fix cache location (5dc317a)
• Require Node.js v18.6.0 → v18.18.0 + downgrade release-it (daf92ce)
• Truncate start of lengthy symbols (a6b2b9e)
• Add args to webpack plugin to find webpack config files (0866302)
• Add args to jest plugin to find jest config files (3c0a6c5)
• Fix up create-new-plugin script (f5a1ede)
• Add platform-specific entries to metro plugin (2e8c8ac)
• Generate docs (093dcca)
• Improve plugin docs a bit (6471cf1)
• Update release-it and use new releaseNotes.commit template (0c49689)
• Minor housekeeping 🔍 (4a9ff56)
• Update dependencies (2bd03e0)
• Plugin docs tweaks (5fe4cb4)
• Update release-it (ac7e933)

nodejs/node (node)

v18.20.6: 2025-01-21, Version 18.20.6 'Hydrogen' (LTS), @​RafaelGSS

Compare Source

This is a security release.

Notable Changes

• CVE-2025-23085 - src: fix HTTP2 mem leak on premature close and ERR_PROTO (Medium)
• CVE-2025-23084 - path: fix path traversal in normalize() on Windows (Medium)

Dependency update:

• CVE-2025-22150 - Use of Insufficiently Random Values in undici fetch() (Medium)

Commits

• [c03ad5ed63] - build: use rclone instead of aws CLI (Michaël Zasso) #​55617
• [8232463294] - build, tools: drop leading / from r2dir (Richard Lau) #​53951
• [b26bcd3394] - build, tools: copy release assets to staging R2 bucket once built (flakey5) #​51394
• [56df127b7b] - build,tools: simplify upload of shasum signatures (Michaël Zasso) #​53892
• [a63e9372ed] - (CVE-2025-22150) deps: update undici to v5.28.5 (Matteo Collina) nodejs-private/node-private#657
• [da2d177f91] - (CVE-2025-23084) path: fix path traversal in normalize() on Windows (Tobias Nießen) nodejs-private/node-private#555
• [6cc8d58e6f] - (CVE-2025-23085) src: fix HTTP2 mem leak on premature close and ERR_PROTO (RafaelGSS) nodejs-private/node-private#650

unjs/pathe (pathe)

v2.0.2

Compare Source

compare changes

🩹 Fixes

• format: Allow calls with partial arguments (#​198)
• Use node:path export types (#​199)
• extname: Handle inputs ending with dot (#​203)

🏡 Chore

• Enable strict typescript compilation (#​200)
• Update deps (c284a3d)

❤️ Contributors

• Zhiyuanzmj (@​zhiyuanzmj)
• Pooya Parsa (@​pi0)
• James Garbutt (@​43081j)

v2.0.1

Compare Source

compare changes

🩹 Fixes

• Mixed posix/win32 namespaces (#​197)

❤️ Contributors

• Pooya Parsa (@​pi0)

pnpm/pnpm (pnpm)

v9.15.4: pnpm 9.15.4

Compare Source

Patch Changes

• Ensure that recursive pnpm update --latest <pkg> updates only the specified package, with dedupe-peer-dependents=true.

Platinum Sponsors

Gold Sponsors

v9.15.3

Compare Source

v9.15.2: pnpm 9.15.2

Compare Source

Patch Changes

• Fixed publish/pack error with workspace dependencies with relative paths #​8904. It was broken in v9.4.0 (398472c).
• Use double quotes in the command suggestion by pnpm patch on Windows #​7546.
• Do not fall back to SSH, when resolving a git-hosted package if git ls-remote works via HTTPS #​8906.
• Improve how packages with blocked lifecycle scripts are reported during installation. Always print the list of ignored scripts at the end of the output. Include a hint about how to allow the execution of those packages.

Platinum Sponsors

Gold Sponsors

microsoft/TypeScript (typescript)

v5.7.3

Compare Source

v5.7.2

Compare Source

unjs/unbuild (unbuild)

v3.3.1

Compare Source

compare changes

🩹 Fixes

• rollup: Improve external detection (#​488)

❤️ Contributors

• Pooya Parsa (@​pi0)

v3.3.0

Compare Source

compare changes

🚀 Enhancements

• Allow specifying dependencies to inline in inlineDependencies (#​480)

🩹 Fixes

• rollup: Resolve aliases using pathe utils (#​483)

💅 Refactors

• Inline withTrailingSlash util (#​482)

🏡 Chore

• Update deps (edc8784)

❤️ Contributors

• Pooya Parsa (@​pi0)
• Kricsleo (@​kricsleo)
• Daniel Roe (@​danielroe)

v3.2.0

Compare Source

compare changes

🚀 Enhancements

• mkdist: Fail build if mkdist errors in creating declarations (#​473)

🩹 Fixes

• Correct .d.cts default export type (#​458)

🏡 Chore

• Update deps ([4

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.