chore(frontend)(deps): bump the ant-design group across 1 directory with 2 updates

[dependabot]

Bumps the ant-design group with 2 updates in the /src/main/frontend directory: @ant-design/icons and antd.

Updates @ant-design/icons from 5.6.1 to 6.2.1

Commits

• See full diff in compare view

Updates antd from 5.29.3 to 6.3.7

Release notes

Sourced from antd's releases.

6.3.7

• Input
  • 🐞 Fix Input.OTP masked value being visible when selected on Windows. #57689 @​QDyanbing
  • ⌨️ Improve Input accessibility for the clear button. #57432 @​cyphercodes
• 🐞 Fix Card rendering an empty body wrapper when no content was provided. #57735 @​QDyanbing
• 🐞 Fix InputNumber selection highlight radius. #57705 @​QDyanbing
• 🐞 Fix Tooltip semantic configs such as className, styles, etc. leaking into Popover and Popconfirm from ConfigProvider. #57731 @​pikanohup
• 🐞 Fix Typography.Link cannot trigger action buttons such as copy, edit, etc. when disabled. #57762 @​aviu16
• 🐞 Fix ConfigProvider language packs export from ESM/CJS dist files. #57318 @​ug-hero
• 💄 Fix Alert focus styles for the close button. #57695 @​KittyGiraudel

---

• Input
  • 🐞 修复 Input.OTP 在 Windows 下选中文本时可能显示真实值的问题。#57689 @​QDyanbing
  • ⌨️ 优化 Input 清除按钮的可访问性。#57432 @​cyphercodes
• 🐞 修复 Card 在未传入内容时仍渲染空 body 容器的问题。#57735 @​QDyanbing
• 🐞 修复 InputNumber 选中文本时的高亮圆角问题。#57705 @​QDyanbing
• 🐞 修复 Tooltip 的 ConfigProvider 语义化配置比如 className、styles 等泄漏到 Popover 和 Popconfirm 的问题。#57731 @​pikanohup
• 🐞 修复 Typography.Link 在 disabled 状态下无法触发复制、编辑等操作按钮的问题。#57762 @​aviu16
• 🐞 修复 ESM/CJS 默认导出 ConfigProvider 语言包失效的问题。#57318 @​ug-hero
• 💄 修复 Alert 的关闭按钮没有焦点样式的问题。#57695 @​KittyGiraudel

6.3.6

• 🐞 Fix InputNumber disabled handlers showing hover styles. #57592 @​QDyanbing
• 🐞 Fix Space.Addon wrapping CJK content in compact layouts. #57622 @​QDyanbing
• 🐞 Fix Cascader menu item ellipsis styles for long option labels. #57540 @​QDyanbing
• 🐞 Fix Image preview focus not being locked when opened via keyboard, and restore focus to trigger element after preview closes. #57613 #57614 @​aojunhao123
• 🐞 Fix Input disabled border color to use colorBorderDisabled token. #57518 @​Gdhanush-13
• 🐞 MISC: Fix some expand animation crash issues. #57636 @​momesana
• 🐞 Fix Notification close button overlapping description when title is empty. #57590 @​EndlessLucky
• 🐞 Fix Radio hover color display issue in disabled state. #57562 @​yfy3939
• Table
  • ⚡️ Improve Table filter performance by caching flattened filter keys. #57546 @​Jiyur
  • ⚡️ Improve Table filter search performance by reusing normalized search input. #57651 @​li-jia-nan
  • 🐞 Fix Table rowSelection to use selectionColumnWidth from Design Token as default columnWidth. #57621 @​EmilyyyLiu
• 🐞 Fix Design Token shadow tokens not adapting to dark theme. #57511 @​QDyanbing
• 🐞 Fix Transfer remove button still changing color on hover when the list item is disabled. #57579 @​Jiyur
• 🐞 Fix Tree checkbox, switcher and content alignment when parent nodes have multiple lines of content. #57471 @​jiangrong-devops

---

• 🐞 修复 InputNumber 禁用步进按钮仍显示悬浮样式的问题。 #57592 @​QDyanbing
• 🐞 修复 Space.Addon 在紧凑布局中展示中文等 CJK 内容时会换行的问题。 #57622 @​QDyanbing
• 🐞 修复 Cascader 菜单项长选项文本的省略样式问题。 #57540 @​QDyanbing
• 🐞 修复 Image 通过键盘打开预览时焦点未被正确锁定的问题，并在关闭预览后恢复焦点到触发元素。 #57613 #57614 @​aojunhao123
• 🐞 修复 Input 禁用状态边框未使用 colorBorderDisabled token 的问题。 #57518 @​Gdhanush-13
• 🐞 MISC: 修复部分展开动画崩溃的问题。 #57636 @​momesana
• 🐞 修复 Notification 在 title 为空时关闭按钮与描述内容重叠的问题。 #57590 @​EndlessLucky
• 🐞 修复 Radio 禁用状态下 hover 仍显示主色的问题。 #57562 @​yfy3939
• Table
  • ⚡️ 优化 Table 筛选性能，缓存展开后的筛选键，避免重复计算。 #57546 @​Jiyur
  • ⚡️ 优化 Table 筛选搜索性能，复用规范化后的搜索输入。 #57651 @​li-jia-nan
  • 🐞 修复 Table rowSelection 默认未使用 Design Token 中 selectionColumnWidth 的问题。 #57621 @​EmilyyyLiu

... (truncated)

Changelog

Sourced from antd's changelog.

6.3.7

2026-04-27

• Input
  • 🐞 Fix Input.OTP masked value being visible when selected on Windows. #57689 @​QDyanbing
  • ⌨️ Improve Input accessibility for the clear button. #57432 @​cyphercodes
• 🐞 Fix Card rendering an empty body wrapper when no content was provided. #57735 @​QDyanbing
• 🐞 Fix InputNumber selection highlight radius. #57705 @​QDyanbing
• 🐞 Fix Tooltip semantic configs such as className, styles, etc. leaking into Popover and Popconfirm from ConfigProvider. #57731 @​pikanohup
• 🐞 Fix Typography.Link cannot trigger action buttons such as copy, edit, etc. when disabled. #57762 @​aviu16
• 🐞 Fix ConfigProvider language packs export from ESM/CJS dist files. #57318 @​ug-hero
• 💄 Fix Alert focus styles for the close button. #57695 @​KittyGiraudel

6.3.6

2026-04-17

• 🐞 Fix InputNumber disabled handlers showing hover styles. #57592 @​QDyanbing
• 🐞 Fix Space.Addon wrapping CJK content in compact layouts. #57622 @​QDyanbing
• 🐞 Fix Cascader menu item ellipsis styles for long option labels. #57540 @​QDyanbing
• 🐞 Fix Image preview focus not being locked when opened via keyboard, and restore focus to trigger element after preview closes. #57613 #57614 @​aojunhao123
• 🐞 Fix Input disabled border color to use colorBorderDisabled token. #57518 @​Gdhanush-13
• 🐞 MISC: Fix some expand animation crash issues. #57636 @​momesana
• 🐞 Fix Notification close button overlapping description when title is empty. #57590 @​EndlessLucky
• 🐞 Fix Radio hover color display issue in disabled state. #57562 @​yfy3939
• Table
  • ⚡️ Improve Table filter performance by caching flattened filter keys. #57546 @​Jiyur
  • ⚡️ Improve Table filter search performance by reusing normalized search input. #57651 @​li-jia-nan
  • 🐞 Fix Table rowSelection to use selectionColumnWidth from Design Token as default columnWidth. #57621 @​EmilyyyLiu
• 🐞 Fix Design Token shadow tokens not adapting to dark theme. #57511 @​QDyanbing
• 🐞 Fix Transfer remove button still changing color on hover when the list item is disabled. #57579 @​Jiyur
• 🐞 Fix Tree checkbox, switcher and content alignment when parent nodes have multiple lines of content. #57471 @​jiangrong-devops

6.3.5

2026-03-30

• 🐞 Fix Image preview action buttons not resetting native button styles. #57491 @​QDyanbing
• 🐞 Fix TimePicker column cannot scroll directly on touch devices. #57468 @​afc163
• 🐞 MISC: Fix Icon not being centered in certain scenarios. #57460 @​QDyanbing

6.3.4

2026-03-24

• 🔥 Add @ant-design/cli official command-line tool for querying Ant Design component knowledge, analyzing project usage, and guiding migrations offline. #57413 @​afc163
• 🐞 Fix Form.List losing sibling field values when using onValuesChange. #57399 @​zombieJ
• 🐞 Fix missing screenXXXLMin in useToken causing incorrect antd.css to be generated. #57372 @​sealye09
• 🐞 Fix ConfigProvider component config typings to expose semantic classNames and styles for supported components. #57396 @​QDyanbing

... (truncated)

Commits

• 88d0d0d docs: changelog for 6.3.7 (#57787)
• afc78d0 fix(Input): make clear button keyboard accessible (#57432)
• 0369f6e docs: update AGENTS.md (#57782)
• b9e7287 refactor: add isPlainObject utils (#57780)
• 7909521 refactor(typeScript): refine collapse motion transition handling (#57779)
• 8303936 refactor(utils): refactor shared type guard utilities (#57777)
• b70ce24 fix(site): fix site style (#57776)
• ca4d8e5 fix(test): coverage (#57774)
• fcb185e fix(demo): update demo (#57775)
• 5f0ca81 chore(deps): update dependency @​biomejs/biome to v2.4.13 (#57772)
• Additional commits viewable in compare view

[dependabot]

Labels

The following labels could not be found: area:frontend, type:dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	npm/​antd@​5.29.3 ⏵ 6.3.7	+1			+2
	npm/​@​ant-design/​icons@​5.6.1 ⏵ 6.2.1	+6		+1	+5

View full report

[socket-security]

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert  (click "▶" to expand/collapse)
Warn		Potentially malicious package (AI signal): npm @ant-design/icons is 82.0% likely malicious Notes: High security risk due to an explicit runtime remote script injection mechanism. LW/bW load attacker-influenced scriptUrl values by creating <script> tags, setting their src, and appending them to document.body, which can execute arbitrary remote JavaScript in the consuming web page context. While the excerpt does not prove malicious payload behavior (no exfiltration shown), the loader’s capability alone warrants a strong security review and strict trust controls/allowlisting for scriptUrl. Confidence: 0.82 Severity: 0.80 From: src/main/frontend/package-lock.json → npm/@ant-design/icons@6.2.1 ℹ Read more on: This package | This alert | What is AI-detected potential malware? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev. Suggestion: Given the AI system's identification of this package as malware, extreme caution is advised. It is recommended to avoid downloading or installing this package until the threat is confirmed or flagged as a false positive. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/@ant-design/icons@6.2.1. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report