chore: update safe dependencies

[sasagar]

Summary / 概要

Bump dependencies with no breaking changes after auditing release notes for each.

Type of Change / 変更の種類

• CI/CD / ビルド・デプロイ (dependency maintenance)

Changes / 変更内容

Package	From	To	Notes
@hono/zod-validator (backend)	^0.7.6	^0.8.0	Peer hono >= 4.10 already satisfied. zValidator signature unchanged.
katex (frontend)	^0.16.45	^0.16.46	Single bugfix (math font preservation).
@types/react (frontend)	19.2.10	19.2.14	DefinitelyTyped patch on the same 19.2 line.
mfm-js (frontend)	^0.25.0	^0.26.0	Adds Unicode 17 emoji; parse / toString API unchanged. Only main entry imported.
rollup-plugin-visualizer (frontend)	^6.0.11	^7.0.1	ESM-only & Node >=22. Not actively imported anywhere in the repo; safe to bump (consider removing in a follow-up).

Deferred to follow-up PRs

• @lingui/* 5.9.5 → 6.0.1 — requires lingui.config.ts formatter API change, @lingui/format-po install, @lingui/macro → @lingui/react/macro migration in SearchField.tsx, and catalog regeneration.
• typescript 5.9.3 → 6.0.3 — requires peer compatibility check (drizzle-kit, Storybook 10, Lingui, Hono RPC #4867 type regression).

Test Plan / テスト計画

• bun run typecheck passes
• bun run lint passes (0 warnings, 0 errors)
• bun run test:unit passes (1012 tests)

Checklist / チェックリスト

• No new warnings introduced
• Self-review completed

Summary by CodeRabbit

Chores

• 複数の依存関係ライブラリを最新バージョンに更新し、セキュリティと互換性を強化しました。バックエンドおよびフロントエンドパッケージの安定性が向上します。

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: cfa8ecbe-30d6-4af3-a67b-eb7c6594b6d5

📥 Commits

Reviewing files that changed from the base of the PR and between 1d61d34 and 8225d6e.

⛔ Files ignored due to path filters (1)

• bun.lock is excluded by !**/*.lock

📒 Files selected for processing (2)

• packages/backend/package.json
• packages/frontend/package.json

---

📝 Walkthrough

Walkthrough

バックエンド and フロントエンドパッケージの依存関係を更新します。バックエンドは @hono/zod-validator を 0.8.0 にアップグレードし、フロントエンドは katex、mfm-js、@types/react、rollup-plugin-visualizer を新しいバージョンにアップグレードします。

Changes

依存関係バージョン更新

Layer / File(s)	Summary
バックエンド Zod バリデータ更新 packages/backend/package.json	@hono/zod-validator 依存関係を ^0.7.6 から ^0.8.0 にアップグレードします。
フロントエンド複数依存関係更新 packages/frontend/package.json	katex を ^0.16.45 から ^0.16.46 に、mfm-js を ^0.25.0 から ^0.26.0 に更新し、@types/react を 19.2.10 から 19.2.14 に、rollup-plugin-visualizer を ^6.0.11 から ^7.0.1 にアップグレードします。

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~5 minutes

Poem

ウサギが飛び跳ねて、バージョンを更新し 🐰
新しいツールで、プロジェクトもルンルン♪
Zod と React、katex も一緒に
マイナーアップデートで、みんな幸せ
小さな変更が、大きな力を呼ぶ

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title 'chore: update safe dependencies' accurately summarizes the main change in the pull request, which is a dependency version update across both backend and frontend packages after safety audits.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch chore/update-safe-deps

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}