chore(deps): bump the prod-dependencies group across 1 directory with 6 updates

[dependabot]

Bumps the prod-dependencies group with 6 updates in the / directory:

Package	From	To
axios	1.11.0	1.12.1
@lucide/svelte	0.543.0	0.544.0
@sveltejs/kit	2.38.1	2.39.0
bits-ui	2.9.6	2.9.7
svelte	5.38.9	5.38.10
zod	4.1.5	4.1.8

Updates axios from 1.11.0 to 1.12.1

Release notes

Sourced from axios's releases.

Release v1.12.1

Release notes:

Bug Fixes

• types: fixed env config types; (#7020) (b5f26b7)

Contributors to this release

• Dmitriy Mozgovoy

Release v1.12.0

Release notes:

Bug Fixes

• adding build artifacts (9ec86de)
• dont add dist on release (a2edc36)
• fetch-adapter: set correct Content-Type for Node FormData (#6998) (a9f47af)
• node: enforce maxContentLength for data: URLs (#7011) (945435f)
• package exports (#5627) (aa78ac2)
• params: removing '[' and ']' from URL encode exclude characters (#3316) (#5715) (6d84189)
• release pr run (fd7f404)
• types: change the type guard on isCancel (#5595) (0dbb7fd)

Features

• adapter: surface low‑level network error details; attach original error via cause (#6982) (78b290c)
• fetch: add fetch, Request, Response env config variables for the adapter; (#7003) (c959ff2)
• support reviver on JSON.parse (#5926) (2a97634), closes #5924
• types: extend AxiosResponse interface to include custom headers type (#6782) (7960d34)

Contributors to this release

• Willian Agostini
• Dmitriy Mozgovoy
• khani
• Ameer Assadi
• Emiedonmokumo Dick-Boro
• Zeroday BYTE
• Jason Saayman
• 최예찬
• Gligor Kotushevski
• Aleksandar Dimitrov

Changelog

Sourced from axios's changelog.

1.12.1 (2025-09-12)

Bug Fixes

• types: fixed env config types; (#7020) (b5f26b7)

Contributors to this release

• Dmitriy Mozgovoy

1.12.0 (2025-09-11)

Bug Fixes

• adding build artifacts (9ec86de)
• dont add dist on release (a2edc36)
• fetch-adapter: set correct Content-Type for Node FormData (#6998) (a9f47af)
• node: enforce maxContentLength for data: URLs (#7011) (945435f)
• package exports (#5627) (aa78ac2)
• params: removing '[' and ']' from URL encode exclude characters (#3316) (#5715) (6d84189)
• release pr run (fd7f404)
• types: change the type guard on isCancel (#5595) (0dbb7fd)

Features

• adapter: surface low‑level network error details; attach original error via cause (#6982) (78b290c)
• fetch: add fetch, Request, Response env config variables for the adapter; (#7003) (c959ff2)
• support reviver on JSON.parse (#5926) (2a97634), closes #5924
• types: extend AxiosResponse interface to include custom headers type (#6782) (7960d34)

Contributors to this release

• Willian Agostini
• Dmitriy Mozgovoy
• khani
• Ameer Assadi
• Emiedonmokumo Dick-Boro
• Zeroday BYTE
• Jason Saayman
• 최예찬
• Gligor Kotushevski
• Aleksandar Dimitrov

Commits

• 3cac78c chore(release): v1.12.1 (#7021)
• b5f26b7 fix(types): fixed env config types; (#7020)
• 0d8ad6e chore(release): v1.12.0 (#7013)
• fd7f404 fix: release pr run
• a2edc36 fix: dont add dist on release
• 9ec86de fix: adding build artifacts
• 945435f fix(node): enforce maxContentLength for data: URLs (#7011)
• 28e5e30 chore(sponsor): update sponsor block (#7005)
• d03f245 chore(CI): fixed release info script to use npm registry instead of git as fi...
• a0bc911 chore: removing dist files from src (#7002)
• Additional commits viewable in compare view

Updates @lucide/svelte from 0.543.0 to 0.544.0

Release notes

Sourced from @​lucide/svelte's releases.

Version 0.544.0

What's Changed

• docs: update lucide-static documentation about raw string imports by @​pascalduez in lucide-icons/lucide#3524
• feat(icons): added ev-charger icon by @​UsamaKhan in lucide-icons/lucide#2781

New Contributors

• @​pascalduez made their first contribution in lucide-icons/lucide#3524

Full Changelog: lucide-icons/lucide@0.543.0...0.544.0

Commits

• See full diff in compare view

Updates @sveltejs/kit from 2.38.1 to 2.39.0

Release notes

Sourced from @​sveltejs/kit's releases.

@​sveltejs/kit@​2.39.0

Minor Changes

• feat: lazy discovery of remote functions (#14293)

Patch Changes

• fix: layout load data not serialized on error page (#14395)

• fix: fail prerendering when remote function fails (#14365)

• fix: treat handle hook redirect as part of remote function call as json redirect (#14362)

Changelog

Sourced from @​sveltejs/kit's changelog.

2.39.0

Minor Changes

• feat: lazy discovery of remote functions (#14293)

Patch Changes

• fix: layout load data not serialized on error page (#14395)

• fix: fail prerendering when remote function fails (#14365)

• fix: treat handle hook redirect as part of remote function call as json redirect (#14362)

Commits

• 4d96559 Version Packages (#14412)
• fa74736 chore: fix test url (#14411)
• 08c9c8c fix: treat handle hook redirect as part of remote function call as json redir...
• 4d9cc7f fix: layout load data not serialized on error page (#14395)
• e5ac4a3 fix: fail prerendering when remote function fails (#14365)
• f9827cc feat: lazy discovery of remote functions (#14293)
• 95d64ed chore(deps): update dependency @​opentelemetry/sdk-node to ^0.205.0 (#14401)
• See full diff in compare view

Updates bits-ui from 2.9.6 to 2.9.7

Release notes

Sourced from bits-ui's releases.

bits-ui@2.9.7

Patch Changes

• fix(Checkbox): ensure focus does not go to hidden input on invalid form submission (#1750)

• fix(RadioGroup): ensure focus does not go to hidden input on invalid form submission (#1750)

• fix(Command): ensure value is properly registered when using textContent instead of value prop (#1748)

• fix(TimeField): include 'timeZoneName' in TimeSegmentPart type (#1744)

Commits

• 2dbf95d Version Packages (#1745)
• 886e3a4 fix: hidden input aria issues (#1750)
• f4c8ad6 chore: issue template updates (#1749)
• 76b4e6b fix(Command): value registration (#1748)
• 3987467 docs: dont include unavailable components (#1747)
• a5bc71f fix(TimeField): include 'timeZoneName' in TimeSegmentPart (#1744)
• 867bf98 docs: Fix demo for \<Accordion type="multiple"> (#1733)
• 70e1f75 docs: fix reusable component example (#1740)
• e4c8056 docs: Update Alert Dialog docs to describe the default autofocus behavior (#1...
• See full diff in compare view

Updates svelte from 5.38.9 to 5.38.10

Release notes

Sourced from svelte's releases.

svelte@5.38.10

Patch Changes

• fix: flush effects scheduled during boundary's pending phase (#16738)

Changelog

Sourced from svelte's changelog.

5.38.10

Patch Changes

• fix: flush effects scheduled during boundary's pending phase (#16738)

Commits

• df13be8 Version Packages (#16754)
• 72ce753 fix: flush effects scheduled during boundary's pending phase (#16738)
• See full diff in compare view

Updates zod from 4.1.5 to 4.1.8

Release notes

Sourced from zod's releases.

v4.1.8

Commits:

• 36c4ee354d0c1f47b7311e49f6dd4b7a11de04f5 Switch back to weakmap
• a1726d53172ba52ecf90999df73778cf416264fd 4.1.8

v4.1.7

Commits:

• 0cca351c8b152d7c4113ab7c2a44675efb060677 Fix variable name inconsistency in coercion documentation (#5188)
• aa78c270f1b43f4665339f4b61e7cb88037b8c84 Add copy/edit buttons
• 76452d4119d800a722b692755c1168627bc95f0f Update button txt
• 937f73c90cac90bd3b99b12c792c289b50416510 Fix tsconfig issue in bench
• 976b43657d4aff6d47c73c1c86125623ea08752d v4.1.6 (#5222)
• 4309c61304daf40aab2124b5f513abe2b4df8637 Fix cidrv6 validation - cidrv6 should reject invalid strings with multiple slashes (#5196)
• ef95a73b6d33299743e5ff4f0645b98c1b0d6f72 feat(locales): Add Lithuanian (lt) locale (#5210)
• 3803f3f37168212f2178e8b8deceb7bad78ed904 docs: update wrong contents in codeblocks in api.mdx (#5209)
• 8a47d5c6ba8e4fe2f934a8e55d0cba4d81d821de docs: update coerce example in api.mdx (#5207)
• e87db1322f11ff6907e1789da28933d258ab75fd feat(locales): Add Georgian (ka) locale (#5203)
• c54b123e399a6ab266504eb1389c724af31d5998 docs: adds @traversable/zod and @traversable/zod-test to v4 ecosystem (#5194)
• c27a294f5b792f47b8e9dbb293a8ff8cfb287a3a Fix two tiny grammatical errors in the docs. (#5193)
• 23a2d6692398e3dd1ad1cdb0491b271a9f989380 docs: fix broken links in async refinements and transforms references (#5190)
• 845a230bb06bff679b5f00e10153f4dbbd50d2b6 fix(locales): Add type name translations to Spanish locale (#5187)
• 27f13d62b98cf5c501b828ba8837ff73cd6263d2 Improve regex precision and eliminate duplicates in regexes.ts (#5181)
• a8a52b3ba370b761be76953fa3986aa43c4172a4 fix(v4): fix Khmer and Ukrainian locales (#5177)
• 887e37cd7568219c54f9c2f71bbfe0300ce48376 Update slugs
• e1f19482bbed3fbaa563a0d8e09f1a577cc58ac7 fix(v4): ensure array defaults are shallow-cloned (#5173)
• 9f650385644ae319f806a965b83f79ebd252e497 docs(ecosystem): add DRZL; fix Prisma Zod Generator placement (#5215)
• aa6f0f02c2a92a266ff1495a8d2541ae46012fcb More fixes (#5223)
• aab33566bdb44a651cc3e27fde729285e4312419 4.1.7

Commits

• a1726d5 4.1.8
• 36c4ee3 Switch back to weakmap
• aab3356 4.1.7
• aa6f0f0 More fixes (#5223)
• 9f65038 docs(ecosystem): add DRZL; fix Prisma Zod Generator placement (#5215)
• e1f1948 fix(v4): ensure array defaults are shallow-cloned (#5173)
• 887e37c Update slugs
• a8a52b3 fix(v4): fix Khmer and Ukrainian locales (#5177)
• 27f13d6 Improve regex precision and eliminate duplicates in regexes.ts (#5181)
• 845a230 fix(locales): Add type name translations to Spanish locale (#5187)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions