Bump the minor-updates group across 1 directory with 5 updates

[dependabot]

Bumps the minor-updates group with 5 updates in the / directory:

Package	From	To
@swup/astro	1.6.0	1.7.0
astro	5.10.0	5.12.7
svelte	5.34.7	5.37.2
typescript	5.8.3	5.9.2
@biomejs/biome	2.0.0	2.1.3

Updates @swup/astro from 1.6.0 to 1.7.0

Release notes

Sourced from @​swup/astro's releases.

1.7.0

• Add support for replacing dynamic fragments
• Add option for native mode View Transitions
• Optimize client script when not using ignore option (@​aleclarson)

Changelog

Sourced from @​swup/astro's changelog.

1.7.0

• Add support for replacing dynamic fragments
• Add option for native mode View Transitions
• Optimize client script when not using ignore option (@​aleclarson)

Commits

• b517654 Merge pull request #40 from swup/version/automated
• df64414 Update changelog
• 49c807e Update package version
• a8f8211 Merge pull request #39 from swup/feat/native
• 5457624 Merge pull request #38 from swup/feat/fragments
• 82e3cac Document native mode
• d5d56a1 Pass along native option
• f04af0e Export fragment plugin from client script
• 0a95106 Document fragments option
• d7e7798 Include fragment plugin
• Additional commits viewable in compare view

Updates astro from 5.10.0 to 5.12.7

Release notes

Sourced from astro's releases.

astro@5.12.7

Patch Changes

• #14169 f4e8889 Thanks @​ascorbic! - Skips trailing slash handling for paths that start with /..

• #14170 34e6b3a Thanks @​ematipico! - Fixes an issue where static redirects couldn't correctly generate a redirect when the destination is a prerendered route, and the output is set to "server".

• #14169 f4e8889 Thanks @​ascorbic! - Fixes a bug that prevented images from being displayed in dev when using the Netlify adapter with trailingSlash set to always

• Updated dependencies [f4e8889]:

  • @​astrojs/internal-helpers@​0.7.0
  • @​astrojs/markdown-remark@​6.3.4

astro@5.12.6

Patch Changes

• #14153 29e9283 Thanks @​jp-knj! - Fixes a regression introduced by a recent optimisation of how SVG images are emitted during the build.

• #14156 592f08d Thanks @​TheOtterlord! - Fix the client router not submitting forms if the active URL contained a hash

• #14160 d2e25c6 Thanks @​ascorbic! - Fixes a bug that meant some remote image URLs could cause invalid filenames to be used for processed images

• #14167 62bd071 Thanks @​ascorbic! - Fixes a bug that prevented destroyed sessions from being deleted from storage unless the session had been loaded

astro@5.12.5

Patch Changes

• #14059 19f53eb Thanks @​benosmac! - Fixes a bug in i18n implementation, where Astro didn't emit the correct pages when fallback is enabled, and a locale uses a catch-all route, e.g. src/pages/es/[...catchAll].astro

• #14155 31822c3 Thanks @​ascorbic! - Fixes a bug that caused an error "serverEntrypointModule[_start] is not a function" in some adapters

astro@5.12.4

Patch Changes

• #14031 e9206c1 Thanks @​jp-knj! - Optimized the build pipeline for SVG images. Now, Astro doesn't reprocess images that have already been processed.

• #14132 976879a Thanks @​ematipico! - Fixes a bug where the property Astro.routePattern/context.routePattern wasn't updated when using a rewrite via middleware.

• #14131 aafc4d7 Thanks @​florian-lefebvre! - Fixes a case where an error occurring in a middleware would show the dev overlay instead of the custom 500.astro page

• #14127 2309ada Thanks @​florian-lefebvre! - Upgrades zod

• #14134 186c201 Thanks @​ascorbic! - Throws a more helpful error in dev if trying to use a server island without an adapter

• #14129 3572d85 Thanks @​ematipico! - Fixes a bug where the CSP headers was incorrectly added to a page when using an adapter.

astro@5.12.3

Patch Changes

• #14119 14807a4 Thanks @​ascorbic! - Fixes a bug that caused builds to fail if a client directive was mistakenly added to an Astro component

... (truncated)

Changelog

Sourced from astro's changelog.

5.12.7

Patch Changes

• #14169 f4e8889 Thanks @​ascorbic! - Skips trailing slash handling for paths that start with /..

• #14170 34e6b3a Thanks @​ematipico! - Fixes an issue where static redirects couldn't correctly generate a redirect when the destination is a prerendered route, and the output is set to "server".

• #14169 f4e8889 Thanks @​ascorbic! - Fixes a bug that prevented images from being displayed in dev when using the Netlify adapter with trailingSlash set to always

• Updated dependencies [f4e8889]:

  • @​astrojs/internal-helpers@​0.7.0
  • @​astrojs/markdown-remark@​6.3.4

5.12.6

Patch Changes

• #14153 29e9283 Thanks @​jp-knj! - Fixes a regression introduced by a recent optimisation of how SVG images are emitted during the build.

• #14156 592f08d Thanks @​TheOtterlord! - Fix the client router not submitting forms if the active URL contained a hash

• #14160 d2e25c6 Thanks @​ascorbic! - Fixes a bug that meant some remote image URLs could cause invalid filenames to be used for processed images

• #14167 62bd071 Thanks @​ascorbic! - Fixes a bug that prevented destroyed sessions from being deleted from storage unless the session had been loaded

5.12.5

Patch Changes

• #14059 19f53eb Thanks @​benosmac! - Fixes a bug in i18n implementation, where Astro didn't emit the correct pages when fallback is enabled, and a locale uses a catch-all route, e.g. src/pages/es/[...catchAll].astro

• #14155 31822c3 Thanks @​ascorbic! - Fixes a bug that caused an error "serverEntrypointModule[_start] is not a function" in some adapters

5.12.4

Patch Changes

• #14031 e9206c1 Thanks @​jp-knj! - Optimized the build pipeline for SVG images. Now, Astro doesn't reprocess images that have already been processed.

• #14132 976879a Thanks @​ematipico! - Fixes a bug where the property Astro.routePattern/context.routePattern wasn't updated when using a rewrite via middleware.

• #14131 aafc4d7 Thanks @​florian-lefebvre! - Fixes a case where an error occurring in a middleware would show the dev overlay instead of the custom 500.astro page

• #14127 2309ada Thanks @​florian-lefebvre! - Upgrades zod

• #14134 186c201 Thanks @​ascorbic! - Throws a more helpful error in dev if trying to use a server island without an adapter

• #14129 3572d85 Thanks @​ematipico! - Fixes a bug where the CSP headers was incorrectly added to a page when using an adapter.

... (truncated)

Commits

• 5eaf524 [ci] release (#14171)
• f76eeaa [ci] format
• f4e8889 fix: skip trailing slash redirection for more internal paths (#14169)
• 34e6b3a fix(routing): static redirect with prerendered route (#14170)
• bb9e945 [ci] release (#14163)
• 62bd071 fix: try to get session id from cookie when destroying an unloaded session (#...
• 67e2f60 [ci] format
• 592f08d Fix form submission with client router if a hash exists in the current URL (#...
• 29e9283 fix(astro): fix a regression that breaks builds when the same SVG is imported...
• cf3b5ed [ci] format
• Additional commits viewable in compare view

Updates svelte from 5.34.7 to 5.37.2

Release notes

Sourced from svelte's releases.

svelte@5.37.2

Patch Changes

• fix: double event processing in firefox due to event object being garbage collected (#16527)

• fix: add bindable dimension attributes types to SVG and MathML elements (#16525)

• fix: correctly differentiate static fields before emitting duplicate_class_field (#16526)

• fix: prevent last_propagated_event from being DCE'd (#16538)

svelte@5.37.1

Patch Changes

• chore: remove some todos (#16515)

• fix: allow await expressions inside {#await ...} argument (#16514)

• fix: append_styles in an effect to make them available on mount (#16509)

• chore: remove parser.template_untrimmed (#16511)

• fix: always inject styles when compiling as a custom element (#16509)

svelte@5.37.0

Minor Changes

• feat: ignore component options in compileModule (#16362)

Patch Changes

• fix: always mark props as stateful (#16504)

svelte@5.36.17

Patch Changes

• fix: throw on duplicate class field declarations (#16502)

• fix: add types for part attribute to svg attributes (#16499)

svelte@5.36.16

Patch Changes

• fix: don't update a focused input with values from its own past (#16491)

• fix: don't destroy effect roots created inside of deriveds (#16492)

svelte@5.36.15

Patch Changes

... (truncated)

Changelog

Sourced from svelte's changelog.

5.37.2

Patch Changes

• fix: double event processing in firefox due to event object being garbage collected (#16527)

• fix: add bindable dimension attributes types to SVG and MathML elements (#16525)

• fix: correctly differentiate static fields before emitting duplicate_class_field (#16526)

• fix: prevent last_propagated_event from being DCE'd (#16538)

5.37.1

Patch Changes

• chore: remove some todos (#16515)

• fix: allow await expressions inside {#await ...} argument (#16514)

• fix: append_styles in an effect to make them available on mount (#16509)

• chore: remove parser.template_untrimmed (#16511)

• fix: always inject styles when compiling as a custom element (#16509)

5.37.0

Minor Changes

• feat: ignore component options in compileModule (#16362)

Patch Changes

• fix: always mark props as stateful (#16504)

5.36.17

Patch Changes

• fix: throw on duplicate class field declarations (#16502)

• fix: add types for part attribute to svg attributes (#16499)

5.36.16

Patch Changes

• fix: don't update a focused input with values from its own past (#16491)

... (truncated)

Commits

• 9134856 Version Packages (#16529)
• c04975d fix: prevent last_propagated_event from being DCE'd (#16538)
• 72e46d3 fix: add types for SVG bindable attributes (#16525)
• f5950f8 fix: correctly differentiate static fields before emitting `duplicate_class_f...
• a91e015 fix: double event processing in Firefox (#16522) (#16527)
• d82edf6 Version Packages (#16513)
• 48f2fa2 fix: allow await expressions inside {#await ...} argument (#16514)
• 03f2e44 chore: remove some todos (#16515)
• 5177144 chore: remove parser.template_untrimmed (#16511)
• 9945205 fix: append_styles in an effect to make them available on mount (#16509)
• Additional commits viewable in compare view

Updates typescript from 5.8.3 to 5.9.2

Release notes

Sourced from typescript's releases.

TypeScript 5.9

Release notes pending.

• fixed issues query for Typescript 5.9.0 (Beta).
• fixed issues query for Typescript 5.9.1 (RC).
• [[No specific changes for TypeScript 5.9.2 (Stable)]]

Downloads are available on:

• npm

TypeScript 5.9 RC

For release notes, check out the release announcement

• fixed issues query for Typescript 5.9.0 (Beta).
• fixed issues query for Typescript 5.9.1 (RC).

Downloads are available on:

• npm

TypeScript 5.9 Beta

For release notes, check out the release announcement.

• fixed issues query for Typescript 5.9.0 (Beta).

Downloads are available on:

• npm

Commits

• be86783 Give more specific errors for verbatimModuleSyntax (#62113)
• 22ef577 LEGO: Pull request from lego/hb_5378966c-b857-470a-8675-daebef4a6da1_20250714...
• d5a414c Don't use noErrorTruncation when printing types with maximumLength set (#...
• f14b5c8 Remove unused and confusing dom.iterable.d.ts file (#62037)
• 2778e84 Restore AbortSignal.abort (#62086)
• 65cb4bd LEGO: Pull request from lego/hb_5378966c-b857-470a-8675-daebef4a6da1_20250710...
• 9e20e03 Clear out checker-level stacks on pop (#62016)
• 87740bc Fix for Issue 61081 (#61221)
• 833a8d4 Fix Symbol completion priority and cursor positioning (#61945)
• 0018c9f LEGO: Pull request from lego/hb_5378966c-b857-470a-8675-daebef4a6da1_20250702...
• Additional commits viewable in compare view

Updates @biomejs/biome from 2.0.0 to 2.1.3

Release notes

Sourced from @​biomejs/biome's releases.

Biome CLI v2.1.3

2.1.3

Patch Changes

• #7057 634a667 Thanks @​mdevils! - Added the rule noVueReservedKeys, which prevents the use of reserved Vue keys.

  It prevents the use of Vue reserved keys such as those starting with # @biomejs/biome (like $el, $data, $props) and keys starting with _` in data properties, which can cause conflicts and unexpected behavior in Vue components.

  Invalid example

  <script>
  export default {
    data: {
      $el: "",
      _foo: "bar",
    },
  };
  </script>

  <script>
  export default {
    computed: {
      $data() {
        return this.someData;
      },
    },
  };
  </script>

  Valid examples

  <script>
  export default {
    data() {
      return {
        message: "Hello Vue!",
        count: 0,
      };
    },
  };
  </script>

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

2.1.3

Patch Changes

• #7057 634a667 Thanks @​mdevils! - Added the rule noVueReservedKeys, which prevents the use of reserved Vue keys.

  It prevents the use of Vue reserved keys such as those starting with like $el, $data, $props) and keys starting with \_ in data properties, which can cause conflicts and unexpected behavior in Vue components.

  Invalid example

  <script>
  export default {
    data: {
      $el: "",
      _foo: "bar",
    },
  };
  </script>

  <script>
  export default {
    computed: {
      $data() {
        return this.someData;
      },
    },
  };
  </script>

  Valid examples

  <script>
  export default {
    data() {
      return {
        message: "Hello Vue!",
        count: 0,
      };
    },
  };
  </script>

  <script>

... (truncated)

Commits

• 018d188 ci: release (#6927)
• ee4828d feat(analyze/js): add useReactFunctionComponents rule (#7055)
• 634a667 feat(lint): implement noVueReservedKeys rule (#7057)
• 8f2703c chore: update generated code from analyzer codegen (#7001)
• 0b1e194 feat(json/analyze): rule noQuickfixBiome (#6992)
• ab41f3f chore: fix changelog (#6917)
• a146943 ci: release (#6909)
• c434f01 feat(linter): add excludedComponents option to useUniqueElementIds (#6723)
• d77eaff Revert "ci: release" (#6908)
• eb5a4e1 ci: release (#6807)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.