chore(deps): bump the dependencies group across 1 directory with 11 updates

[dependabot]

Bumps the dependencies group with 1 update in the / directory: @biomejs/biome.

Updates @biomejs/biome from 1.5.3 to 1.9.4

Changelog

Sourced from @​biomejs/biome's changelog.

v1.9.4 (2024-10-17)

Analyzer

Bug fixes

• Implement GraphQL suppression action. Contributed by @​vohoanglong0107

• Improved the message for unused suppression comments. Contributed by @​dyc3

• Fix #4228, where the rule a11y/noInteractiveElementToNoninteractiveRole incorrectly reports a role for non-interactive elements. Contributed by @​eryue0220

• noSuspiciousSemicolonInJsx now catches suspicious semicolons in React fragments. Contributed by @​vasucp1207

• The syntax rule noTypeOnlyImportAttributes now ignores .cts files (#4361).

  Since TypeScript 5.3, type-only imports can be associated to an import attribute in CommonJS-enabled files. See the TypeScript docs.

  The following code is no longer reported as a syntax error:

  import type { TypeFromRequire } from "pkg" with {
      "resolution-mode": "require"
  };

  Note that this is only allowed in files ending with the cts extension.

  Contributed by @​Conaclos

CLI

Enhancements

• The --summary reporter now reports parsing diagnostics too. Contributed by @​ematipico

• Improved performance of GritQL queries by roughly 25-30%. Contributed by @​arendjr

Configuration

Bug fixes

• Fix an issue where the JSON schema marked lint rules options as mandatory. Contributed by @​ematipico

Editors

Formatter

Bug fixes

... (truncated)

Commits

• fa93a14 release: v1.9.4 (#4320)
• 2a05cd4 feat(lint): add useGoogleFontDisplay rule (#4264)
• bbb93b9 feat(lint): useCollapsedIf JS lint rule (#4179)
• 561b54c feat(linter): implement noUselessStringRaw (#4263)
• 5b7d158 feat(linter): implement noDuplicateProperties (#4029)
• 2342984 feat(lint): add noDocumentImportInPage rule (#4265)
• 3cf20eb chore(linter): rename useExplicitFunctionReturnType to `useExplicit… (#4261)
• 970f498 feat(useGuardForIn): add rule (#4104)
• 2e5b656 feat(lint): add noDocumentCookie rule (#4204)
• 3364640 feat(lint): add rule useAtIndex (#4120)
• Additional commits viewable in compare view

Updates @react-router/node from 7.5.3 to 7.6.0

Release notes

Sourced from @​react-router/node's releases.

v7.6.0

See the changelog for release notes: https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v760

Changelog

Sourced from @​react-router/node's changelog.

7.6.0

Patch Changes

• Updated dependencies:
  • react-router@7.6.0

Commits

• c29148e chore: Update version for release (#13561)
• 3adc571 chore: Update version for release (pre) (#13545)
• See full diff in compare view

Updates @react-router/serve from 7.5.3 to 7.6.0

Release notes

Sourced from @​react-router/serve's releases.

v7.6.0

See the changelog for release notes: https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v760

Changelog

Sourced from @​react-router/serve's changelog.

7.6.0

Patch Changes

• Updated dependencies:
  • react-router@7.6.0
  • @react-router/node@7.6.0
  • @react-router/express@7.6.0

Commits

• c29148e chore: Update version for release (#13561)
• 3adc571 chore: Update version for release (pre) (#13545)
• See full diff in compare view

Updates isbot from 5.1.27 to 5.1.28

Changelog

Sourced from isbot's changelog.

5.1.28

• [Pattern] Pattern update

Commits

• 2e76900 Resolve #290
• See full diff in compare view

Updates react-router from 7.5.3 to 7.6.0

Release notes

Sourced from react-router's releases.

v7.6.0

See the changelog for release notes: https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v760

Changelog

Sourced from react-router's changelog.

7.6.0

Minor Changes

• Added a new react-router.config.ts routeDiscovery option to configure Lazy Route Discovery behavior. (#13451)

  • By default, Lazy Route Discovery is enabled and makes manifest requests to the /__manifest path:
    • routeDiscovery: { mode: "lazy", manifestPath: "/__manifest" }
  • You can modify the manifest path used:
    • routeDiscovery: { mode: "lazy", manifestPath: "/custom-manifest" }
  • Or you can disable this feature entirely and include all routes in the manifest on initial document load:
    • routeDiscovery: { mode: "initial" }

• Add support for route component props in createRoutesStub. This allows you to unit test your route components using the props instead of the hooks: (#13528)

  let RoutesStub = createRoutesStub([
    {
      path: "/",
      Component({ loaderData }) {
        let data = loaderData as { message: string };
        return <pre data-testid="data">Message: {data.message}</pre>;
      },
      loader() {
        return { message: "hello" };
      },
    },
  ]);
  render(<RoutesStub />);
  await waitFor(() => screen.findByText("Message: hello"));

Patch Changes

• Fix react-router module augmentation for NodeNext (#13498)

• Don't bundle react-router in react-router/dom CJS export (#13497)

• Fix bug where a submitting fetcher would get stuck in a loading state if a revalidating loader redirected (#12873)

• Fix hydration error if a server loader returned undefined (#13496)

• Fix initial load 404 scenarios in data mode (#13500)

• Stabilize useRevalidator's revalidate function (#13542)

• Preserve status code if a clientAction throws a data() result in framework mode (#13522)

... (truncated)

Commits

• c29148e chore: Update version for release (#13561)
• 3adc571 chore: Update version for release (pre) (#13545)
• 0fe5d6d Fix middleware error bubbling scenarios (#13538)
• 1678d41 feat(react-router): stabilize useRevalidator's revalidate (#13542)
• 5af3eaa Add component props support to createRoutesStub (#13528)
• 4e427a3 Short circuit dataStrategy post processing on aborted requests (#13521)
• 7583dc7 Preserve status code on clientAction throw data() results (#13522)
• 26ecf2f Fix fetcher state stuck on loading if a loader redirects (#12873)
• 5a966cb Inline turbo-stream@2.4.1 and fix decode ordering of Map/Set instances (#13518)
• eb59d5f feat(react-router): don't bundle react-router in react-router/dom export ...
• Additional commits viewable in compare view

Updates @react-router/dev from 7.5.3 to 7.6.0

Release notes

Sourced from @​react-router/dev's releases.

v7.6.0

See the changelog for release notes: https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v760

Changelog

Sourced from @​react-router/dev's changelog.

7.6.0

Minor Changes

• Added a new react-router.config.ts routeDiscovery option to configure Lazy Route Discovery behavior. (#13451)

  • By default, Lazy Route Discovery is enabled and makes manifest requests to the /__manifest path:
    • routeDiscovery: { mode: "lazy", manifestPath: "/__manifest" }
  • You can modify the manifest path used:
    • routeDiscovery: { mode: "lazy", manifestPath: "/custom-manifest" }
  • Or you can disable this feature entirely and include all routes in the manifest on initial document load:
    • routeDiscovery: { mode: "initial" }

• Automatic types for future flags (#13506)

  Some future flags alter the way types should work in React Router. Previously, you had to remember to manually opt-in to the new types.

  For example, for unstable_middleware:

  // react-router.config.ts
  // Step 1: Enable middleware
  export default {
  future: {
  unstable_middleware: true,
  },
  };
  // Step 2: Enable middleware types
  declare module "react-router" {
  interface Future {
  unstable_middleware: true; // 👈 Enable middleware types
  }
  }

  It was up to you to keep the runtime future flags synced with the types for those future flags. This was confusing and error-prone.

  Now, React Router will automatically enable types for future flags. That means you only need to specify the runtime future flag:

  // react-router.config.ts
  // Step 1: Enable middleware
  export default {
  future: {

... (truncated)

Commits

• c29148e chore: Update version for release (#13561)
• 3adc571 chore: Update version for release (pre) (#13545)
• 5af3eaa Add component props support to createRoutesStub (#13528)
• edb5fbe Skip unused routes.ts eval before Vite build (#13513)
• bbbcd2c typegen for future flags (#13506)
• dd520b0 Get critical CSS in dev from client env (#13503)
• cf57486 refactor (#13501)
• 09b7f49 Improve config change handling (#12319)
• 57da40b de-duplicate generated types for +register (href) (#13499)
• b840885 fix(dev): conditionally set status message for HTTP/2 compatibility (#13460)
• Additional commits viewable in compare view

Updates @tailwindcss/vite from 4.1.5 to 4.1.7

Release notes

Sourced from @​tailwindcss/vite's releases.

v4.1.7

Added

• Upgrade: Migrate bare values to named values (#18000)
• Upgrade: Added cache to improve template migration performance (#18025)

Fixed

• Allow _ before numbers during candidate extraction (#17961)
• Prevent duplicate suggestions when using @theme and @utility together (#17675)
• Ensure that media queries within ::before and ::after pseudo selectors create valid CSS rules in production builds (#17979)
• Ensure that the standalone CLI does not leave temporary files behind (#17981)
• Ensure -rotate-* utilities properly negate arbitrary values (#18014)
• Ignore custom variants using :merge(…) selectors in legacy JS plugins (#18020)
• Ensure classes containing . are properly extracted from Clojure files (#18038)
• Upgrade: Fix error when using @import … source(…) (#17963)
• Upgrade: Change casing of utilities with named values to kebab-case to match updated theme variables (#18017)
• Upgrade: Don't migrate strings that match utility names in Vue attribute bindings other than class (#18025)

v4.1.6

Added

• Upgrade: Automatically convert arbitrary values to named values when possible (e.g. h-[1lh] to h-lh) (#17831, #17854)
• Upgrade: Update dependencies in parallel for improved performance (#17898)
• Add detailed logging about @source directives, discovered files and scanned files when using DEBUG=* (#17906, #17952)
• Add support for generating source maps in development (#17775)

Fixed

• Ensure negative arbitrary scale values generate negative values (#17831)
• Fix HAML extraction with embedded Ruby (#17846)
• Don't scan files for utilities when using @reference (#17836)
• Fix incorrectly replacing _ with in arbitrary modifier shorthand bg-red-500/(--my_opacity) (#17889)
• Don't scan .log files for classes by default (#17906)
• Ensure that custom utilities applying other custom utilities don't swallow nested @apply rules (#17925)
• Download platform specific package if optionalDependencies are skipped (#17929)

Changelog

Sourced from @​tailwindcss/vite's changelog.

[4.1.7] - 2025-05-15

Added

• Upgrade: Migrate bare values to named values (#18000)
• Upgrade: Added cache to improve template migration performance (#18025)

Fixed

• Allow _ before numbers during candidate extraction (#17961)
• Prevent duplicate suggestions when using @theme and @utility together (#17675)
• Ensure that media queries within ::before and ::after pseudo selectors create valid CSS rules in production builds (#17979)
• Ensure that the standalone CLI does not leave temporary files behind (#17981)
• Ensure -rotate-* utilities properly negate arbitrary values (#18014)
• Ignore custom variants using :merge(…) selectors in legacy JS plugins (#18020)
• Ensure classes containing . are properly extracted from Clojure files (#18038)
• Upgrade: Fix error when using @import … source(…) (#17963)
• Upgrade: Change casing of utilities with named values to kebab-case to match updated theme variables (#18017)
• Upgrade: Don't migrate strings that match utility names in Vue attribute bindings other than class (#18025)

[4.1.6] - 2025-05-09

Added

• Upgrade: Automatically convert arbitrary values to named values when possible (e.g. h-[1lh] to h-lh) (#17831, #17854)
• Upgrade: Update dependencies in parallel for improved performance (#17898)
• Add detailed logging about @source directives, discovered files and scanned files when using DEBUG=* (#17906, #17952)
• Add support for generating source maps in development (#17775)

Fixed

• Ensure negative arbitrary scale values generate negative values (#17831)
• Fix HAML extraction with embedded Ruby (#17846)
• Don't scan files for utilities when using @reference (#17836)
• Fix incorrectly replacing _ with in arbitrary modifier shorthand bg-red-500/(--my_opacity) (#17889)
• Don't scan .log files for classes by default (#17906)
• Ensure that custom utilities applying other custom utilities don't swallow nested @apply rules (#17925)
• Download platform specific package if optionalDependencies are skipped (#17929)

Commits

• 74e084a Prepare v4.1.7 release (#18040)
• 2d13998 Prepare v4.1.6 release (#17951)
• 56b22bb Add support for source maps (#17775)
• See full diff in compare view

Updates @types/node from 20.17.41 to 20.17.48

Commits

• See full diff in compare view

Updates @types/react from 19.1.3 to 19.1.4

Commits

• See full diff in compare view

Updates @types/react-dom from 19.1.3 to 19.1.5

Commits

• See full diff in compare view

Updates tailwindcss from 4.1.5 to 4.1.7

Release notes

Sourced from tailwindcss's releases.

v4.1.7

Added

• Upgrade: Migrate bare values to named values (#18000)
• Upgrade: Added cache to improve template migration performance (#18025)

Fixed

• Allow _ before numbers during candidate extraction (#17961)
• Prevent duplicate suggestions when using @theme and @utility together (#17675)
• Ensure that media queries within ::before and ::after pseudo selectors create valid CSS rules in production builds (#17979)
• Ensure that the standalone CLI does not leave temporary files behind (#17981)
• Ensure -rotate-* utilities properly negate arbitrary values (#18014)
• Ignore custom variants using :merge(…) selectors in legacy JS plugins (#18020)
• Ensure classes containing . are properly extracted from Clojure files (#18038)
• Upgrade: Fix error when using @import … source(…) (#17963)
• Upgrade: Change casing of utilities with named values to kebab-case to match updated theme variables (#18017)
• Upgrade: Don't migrate strings that match utility names in Vue attribute bindings other than class (#18025)

v4.1.6

Added

• Upgrade: Automatically convert arbitrary values to named values when possible (e.g. h-[1lh] to h-lh) (#17831, #17854)
• Upgrade: Update dependencies in parallel for improved performance (#17898)
• Add detailed logging about @source directives, discovered files and scanned files when using DEBUG=* (#17906, #17952)
• Add support for generating source maps in development (#17775)

Fixed

• Ensure negative arbitrary scale values generate negative values (#17831)
• Fix HAML extraction with embedded Ruby (#17846)
• Don't scan files for utilities when using @reference (#17836)
• Fix incorrectly replacing _ with in arbitrary modifier shorthand bg-red-500/(--my_opacity) (#17889)
• Don't scan .log files for classes by default (#17906)
• Ensure that custom utilities applying other custom utilities don't swallow nested @apply rules (#17925)
• Download platform specific package if optionalDependencies are skipped (#17929)

Changelog

Sourced from tailwindcss's changelog.

[4.1.7] - 2025-05-15

Added

• Upgrade: Migrate bare values to named values (#18000)
• Upgrade: Added cache to improve template migration performance (#18025)

Fixed

• Allow _ before numbers during candidate extraction (#17961)
• Prevent duplicate suggestions when using @theme and @utility together (#17675)
• Ensure that media queries within ::before and ::after pseudo selectors create valid CSS rules in production builds (#17979)
• Ensure that the standalone CLI does not leave temporary files behind (#17981)
• Ensure -rotate-* utilities properly negate arbitrary values (#18014)
• Ignore custom variants using :merge(…) selectors in legacy JS plugins (#18020)
• Ensure classes containing . are properly extracted from Clojure files (#18038)
• Upgrade: Fix error when using @import … source(…) (#17963)
• Upgrade: Change casing of utilities with named values to kebab-case to match updated theme variables (#18017)
• Upgrade: Don't migrate strings that match utility names in Vue attribute bindings other than class (#18025)

[4.1.6] - 2025-05-09

Added

• Upgrade: Automatically convert arbitrary values to named values when possible (e.g. h-[1lh] to h-lh) (#17831, #17854)
• Upgrade: Update dependencies in parallel for improved performance (#17898)
• Add detailed logging about @source directives, discovered files and scanned files when using DEBUG=* (#17906, #17952)
• Add support for generating source maps in development (#17775)

Fixed

• Ensure negative arbitrary scale values generate negative values (#17831)
• Fix HAML extraction with embedded Ruby (#17846)
• Don't scan files for utilities when using @reference (#17836)
• Fix incorrectly replacing _ with in arbitrary modifier shorthand bg-red-500/(--my_opacity) (#17889)
• Don't scan .log files for classes by default (#17906)
• Ensure that custom utilities applying other custom utilities don't swallow nested @apply rules (#17925)
• Download platform specific package if optionalDependencies are skipped (#17929)

Commits

• 74e084a Prepare v4.1.7 release (#18040)
• f3157cd Ignore custom variants with :merge(…) selectors (#18020)
• 4db711d Fix -rotate-* with arbitary values (#18014)
• 4fba87b Upgrade lightningcss to 1.30.0 (#17979)
• 0d975f5 Update dedent 1.5.3 → 1.6.0 (minor) (#17965)
• f0986ce Prevent duplicate suggestions when using @theme and @utility together (#1...
• 2d13998 Prepare v4.1.6 release (#17951)
• 56b22bb Add support for source maps (#17775)
• 17ca56d Fix bug with nested @​apply rules in utility classes (#17924) (#17925)
• 4f8539c Fix bug replacing modifier variable shorthand syntax underscores (#17889)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: dependencies, npm. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.