chore(deps-dev): bump the development-dependencies group across 1 directory with 6 updates

[dependabot]

Bumps the development-dependencies group with 6 updates in the / directory:

Package	From	To
vite	7.1.12	7.2.2
parcel	2.16.0	2.16.1
rollup	4.52.5	4.53.2
@rsbuild/core	1.5.17	1.6.3
@sveltejs/kit	2.48.0	2.48.4
svelte	5.42.2	5.43.5

Updates vite from 7.1.12 to 7.2.2

Release notes

Sourced from vite's releases.

v7.2.2

Please refer to CHANGELOG.md for details.

[email protected]

Please refer to CHANGELOG.md for details.

v7.2.1

Please refer to CHANGELOG.md for details.

[email protected]

Please refer to CHANGELOG.md for details.

v7.2.0

Please refer to CHANGELOG.md for details.

v7.2.0-beta.1

Please refer to CHANGELOG.md for details.

v7.2.0-beta.0

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

7.2.2 (2025-11-07)

Bug Fixes

• revert "refactor: use fs.cpSync (#21019)" (#21081) (728c8ee)

7.2.1 (2025-11-06)

Bug Fixes

• worker: some worker asset was missing (#21074) (82d2d6c)

Code Refactoring

• build: rename indexOfMatchInSlice to findPreloadMarker (#21054) (f83264f)

7.2.0 (2025-11-05)

Bug Fixes

• css: fallback to sass when sass-embedded platform binary is missing (#21002) (b1fd616)
• module-runner: make getBuiltins response JSON serializable (#21029) (ad5b3bf)
• types: add undefined to optional properties for exactOptionalProperties type compatibility (#21040) (2833c55)

Miscellaneous Chores

• deps: update rolldown-related dependencies (#21047) (e3a6a83)

7.2.0-beta.1 (2025-10-29)

Bug Fixes

• increase stream reset rate limit for HTTP2 (#21024) (4f44f22)
• optimizer: externalize virtual modules for html like files (#21001) (e5af352)

Documentation

• clarify the values are escaped automatically (#21017) (246df13)

Code Refactoring

• use fs.cpSync (#21019) (a2df778)

7.2.0-beta.0 (2025-10-28)

Features

• add import.meta.resolve support for ESM config (bundle config loader) (#20962) (f86789a)
• add perEnvironmentWatchChangeDuringDev (#20996) (a5e98e6)
• add vite client connect events (#20978) (543d87c)
• build: emit license (#18546) (b42c3fb)
• dev: support HTTP2 even if proxy feature is used (#20869) (fc21af7)
• lib: enable minification but keep pure annotations for es output with terser (#20522) (df997d0)
• optimizer: add rush lockfile support (#20833) (718ca2d)
• utils: support multiple certificates in resolveServerUrls (#20707) (24513e5)

... (truncated)

Commits

• 572aaca release: v7.2.2
• 728c8ee fix: revert "refactor: use fs.cpSync (#21019)" (#21081)
• a532e68 release: v7.2.1
• 82d2d6c fix(worker): some worker asset was missing (#21074)
• f83264f refactor(build): rename indexOfMatchInSlice to findPreloadMarker (#21054)
• 8293de0 release: v7.2.0
• 2833c55 fix(types): add undefined to optional properties for exactOptionalProperties ...
• e3a6a83 chore(deps): update rolldown-related dependencies (#21047)
• b1fd616 fix(css): fallback to sass when sass-embedded platform binary is missing (#21...
• ad5b3bf fix(module-runner): make getBuiltins response JSON serializable (#21029)
• Additional commits viewable in compare view

Updates parcel from 2.16.0 to 2.16.1

Release notes

Sourced from parcel's releases.

v2.16.1

Fixed

• JavaScript

  • Fix macro location information – Details

• React Server Components Improve performance of RSC builds – Details

Changelog

Sourced from parcel's changelog.

[2.16.1] – 2025-11-04

Fixed

• JavaScript

  • Fix macro location information – Details

• React Server Components Improve performance of RSC builds – Details

Commits

• 9f01c02 v2.16.1
• cc19cca Improve performance of RSC builds (#10233)
• 4b81891 Fix macro location information (#10224)
• See full diff in compare view

Updates rollup from 4.52.5 to 4.53.2

Release notes

Sourced from rollup's releases.

v4.53.2

4.53.2

2025-11-10

Bug Fixes

• Do not throw when using invalid escape sequences in template literals (#6177)

Pull Requests

• #6177: handle TemplateElement with null cooked value (@​TrickyPi)

v4.53.1

4.53.1

2025-11-07

Bug Fixes

• Fix install script (#6172)

Pull Requests

• #6172: fix: move patch-package from postinstall to prepare script (@​mshima)

v4.53.0

4.53.0

2025-11-07

Features

• Improve rendering performance by caching generated variable names (#5947)

Pull Requests

• #5947: refactor: store safe variable names in cache for subsequent usage (@​Aslemammad, @​lukastaegert, @​Service account user)
• #6149: chore(deps): update dependency vite to v7.1.11 [security] (@​renovate[bot], @​Service account user)
• #6151: fix(deps): update swc monorepo (major) (@​renovate[bot], @​Service account user)
• #6152: fix(deps): lock file maintenance minor/patch updates (@​renovate[bot], @​Service account user)
• #6153: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot], @​Service account user)
• #6155: Fix tests: Do not swallow warnings for multi-format tests (@​lukastaegert, @​Service account user)
• #6159: chore(deps): update dependency eslint-plugin-unicorn to v62 (@​renovate[bot])
• #6160: chore(deps): update github artifact actions (major) (@​renovate[bot])
• #6161: fix(deps): lock file maintenance minor/patch updates (@​renovate[bot], @​lukastaegert)
• #6164: chore(deps): update dependency @​rollup/plugin-alias to v6 (@​renovate[bot])
• #6165: chore(deps): update dependency @​rollup/plugin-commonjs to v29 (@​renovate[bot])
• #6166: fix(deps): update swc monorepo (major) (@​renovate[bot], @​lukastaegert)
• #6167: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot], @​lukastaegert)

Changelog

Sourced from rollup's changelog.

4.53.2

2025-11-10

Bug Fixes

• Do not throw when using invalid escape sequences in template literals (#6177)

Pull Requests

• #6177: handle TemplateElement with null cooked value (@​TrickyPi)

4.53.1

2025-11-07

Bug Fixes

• Fix install script (#6172)

Pull Requests

• #6172: fix: move patch-package from postinstall to prepare script (@​mshima)

4.53.0

2025-11-07

Features

• Improve rendering performance by caching generated variable names (#5947)

Pull Requests

• #5947: refactor: store safe variable names in cache for subsequent usage (@​Aslemammad, @​lukastaegert, @​Service account user)
• #6149: chore(deps): update dependency vite to v7.1.11 [security] (@​renovate[bot], @​Service account user)
• #6151: fix(deps): update swc monorepo (major) (@​renovate[bot], @​Service account user)
• #6152: fix(deps): lock file maintenance minor/patch updates (@​renovate[bot], @​Service account user)
• #6153: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot], @​Service account user)
• #6155: Fix tests: Do not swallow warnings for multi-format tests (@​lukastaegert, @​Service account user)
• #6159: chore(deps): update dependency eslint-plugin-unicorn to v62 (@​renovate[bot])
• #6160: chore(deps): update github artifact actions (major) (@​renovate[bot])
• #6161: fix(deps): lock file maintenance minor/patch updates (@​renovate[bot], @​lukastaegert)
• #6164: chore(deps): update dependency @​rollup/plugin-alias to v6 (@​renovate[bot])
• #6165: chore(deps): update dependency @​rollup/plugin-commonjs to v29 (@​renovate[bot])
• #6166: fix(deps): update swc monorepo (major) (@​renovate[bot], @​lukastaegert)
• #6167: chore(deps): lock file maintenance minor/patch updates (@​renovate[bot], @​lukastaegert)

Commits

• d8b0150 4.53.2
• 4f43f03 handle TemplateElement with null cooked value (#6177)
• e3bdcdf 4.53.1
• 96b5453 fix: move patch-package from postinstall to prepare script (#6172)
• ecff532 4.53.0
• 05a6c01 refactor: store safe variable names in cache for subsequent usage (#5947)
• 5cf4264 fix(deps): update swc monorepo (major) (#6166)
• 75c4346 chore(deps): lock file maintenance minor/patch updates (#6167)
• 1ba7efe chore(deps): update dependency @​rollup/plugin-alias to v6 (#6164)
• e64d220 chore(deps): update dependency @​rollup/plugin-commonjs to v29 (#6165)
• Additional commits viewable in compare view

Updates @rsbuild/core from 1.5.17 to 1.6.3

Release notes

Sourced from @​rsbuild/core's releases.

v1.6.3

What's Changed

New Features 🎉

• feat(plugin-react): enhance splitChunks option to support boolean type by @​chenjiahan in web-infra-dev/rsbuild#6515
• feat(loader): support buffer code by @​Deku-nattsu in web-infra-dev/rsbuild#6522

Bug Fixes 🐞

• fix(server): improve middleware function naming by @​chenjiahan in web-infra-dev/rsbuild#6518
• fix(server): ensure historyApiFallback takes precedence over html falback by @​chenjiahan in web-infra-dev/rsbuild#6520

Refactor 🔨

• refactor: replace any type with unknown in type definitions by @​chenjiahan in web-infra-dev/rsbuild#6509
• refactor: use Rspack's OutputFileSystem type directly by @​chenjiahan in web-infra-dev/rsbuild#6512

Document 📖

• docs: remove angle brackets from markdown links by @​chenjiahan in web-infra-dev/rsbuild#6510
• docs: simplify and update contributing guide by @​chenjiahan in web-infra-dev/rsbuild#6511
• docs: improve documentation for history api fallback by @​chenjiahan in web-infra-dev/rsbuild#6521

Other Changes

• build(core): enable advanced ESM by @​chenjiahan in web-infra-dev/rsbuild#6513
• build(plugins): enable advanced ESM by @​chenjiahan in web-infra-dev/rsbuild#6514
• release: @​rsbuild/plugin-react v1.4.2 by @​chenjiahan in web-infra-dev/rsbuild#6516
• ci: use unified Rstack ecosystem CI by @​fi3ework in web-infra-dev/rsbuild#6517
• ci: fix rstack-ecosystem-ci version by @​fi3ework in web-infra-dev/rsbuild#6519
• Revert "build(core): enable advanced ESM (#6513)" by @​chenjiahan in web-infra-dev/rsbuild#6524
• chore: update comments for pathinfo by @​chenjiahan in web-infra-dev/rsbuild#6525
• release: v1.6.3 by @​chenjiahan in web-infra-dev/rsbuild#6527

New Contributors

• @​Deku-nattsu made their first contribution in web-infra-dev/rsbuild#6522

Full Changelog: web-infra-dev/rsbuild@v1.6.2...v1.6.3

v1.6.2

What's Changed

New Features 🎉

• feat(deps): update dependency @​rspack/core to v1.6.1 by @​chenjiahan in web-infra-dev/rsbuild#6507
• feat: enhance api.transform typing with conditional types by @​chenjiahan in web-infra-dev/rsbuild#6499
• feat(create-rsbuild): allow to omit --dir flag by @​chenjiahan in web-infra-dev/rsbuild#6502
• feat: add support for native html plugin implementation by @​chenjiahan in web-infra-dev/rsbuild#6504

Bug Fixes 🐞

• fix(mergeConfig): avoiding adding undefined properties by @​chenjiahan in web-infra-dev/rsbuild#6496
• fix(cli): improve command usage display by @​chenjiahan in web-infra-dev/rsbuild#6506

Refactor 🔨

• refactor(core): optimize config merging and object checks by @​chenjiahan in web-infra-dev/rsbuild#6497

Document 📖

• docs: update documentation for lazy compilation options by @​chenjiahan in web-infra-dev/rsbuild#6495
• docs: clarify unsupported options in environments config by @​chenjiahan in web-infra-dev/rsbuild#6498
• docs(quick-start): update non-interactive mode section by @​chenjiahan in web-infra-dev/rsbuild#6500

... (truncated)

Commits

• 8ce77c8 release: v1.6.3 (#6527)
• f2f941f chore: update comments for pathinfo (#6525)
• bb63487 docs: improve documentation for history api fallback (#6521)
• 7aee863 Revert "build(core): enable advanced ESM (#6513)" (#6524)
• 893ba9f feat(loader): support buffer code (#6522)
• fb0f6a7 fix(server): ensure historyApiFallback takes precedence over html falback (#6...
• 10a10ff fix(server): improve middleware function naming (#6518)
• 5b2c2d7 build(plugins): enable advanced ESM (#6514)
• c3b10d4 build(core): enable advanced ESM (#6513)
• 80ac499 refactor: use Rspack's OutputFileSystem type directly (#6512)
• Additional commits viewable in compare view

Updates @sveltejs/kit from 2.48.0 to 2.48.4

Release notes

Sourced from @​sveltejs/kit's releases.

@​sveltejs/kit@​2.48.4

Patch Changes

• fix: adjust query's promise implementation to properly allow chaining (#14859)

• fix: make prerender cache work, including in development (#14860)

@​sveltejs/kit@​2.48.3

Patch Changes

• fix: include hash when using resolve with hash routing enabled (#14786)

• fix: afterNavigate callback not running after hydration when experimental async is enabled (#14644) fix: Snapshot restore method not called after reload when experimental async is enabled

• fix: expose issue.path in .allIssues() (#14784)

@​sveltejs/kit@​2.48.2

Patch Changes

• fix: update DOM before running navigate callbacks (#14829)

@​sveltejs/kit@​2.48.1

Patch Changes

• fix: wait for commit promise instead of settled (#14818)

Changelog

Sourced from @​sveltejs/kit's changelog.

2.48.4

Patch Changes

• fix: adjust query's promise implementation to properly allow chaining (#14859)

• fix: make prerender cache work, including in development (#14860)

2.48.3

Patch Changes

• fix: include hash when using resolve with hash routing enabled (#14786)

• fix: afterNavigate callback not running after hydration when experimental async is enabled (#14644) fix: Snapshot restore method not called after reload when experimental async is enabled

• fix: expose issue.path in .allIssues() (#14784)

2.48.2

Patch Changes

• fix: update DOM before running navigate callbacks (#14829)

2.48.1

Patch Changes

• fix: wait for commit promise instead of settled (#14818)

Commits

• 6cee4c3 Version Packages (#14861)
• 5d76111 fix: adjust query's promise implementation to properly allow chaining (#14859)
• d9bbf66 fix: make prerender cache work, including in dev (#14860)
• e781061 fix (#14854)
• a15ac5c Version Packages (#14839)
• 2ccc638 fix: expose issue.path in .allIssues() for field containers (#14784)
• cd72d94 fix: prefix route pathname with hash when using resolve with hash routing e...
• 53b1b73 fix: afterNavigate callback not running after hydration when experimental a...
• 9aac3d4 Version Packages (#14831)
• 75eda1c fix: update DOM before running navigate callbacks (#14829)
• Additional commits viewable in compare view

Updates svelte from 5.42.2 to 5.43.5

Release notes

Sourced from svelte's releases.

[email protected]

Patch Changes

• fix: ensure async static props/attributes are awaited (#17120)

• fix: wait on dependencies of async bindings (#17120)

• fix: await dependencies of style directives (#17120)

[email protected]

Patch Changes

• chore: simplify connection/disconnection logic (#17105)

• fix: reconnect deriveds to effect tree when time-travelling (#17105)

[email protected]

Patch Changes

• fix: ensure fork always accesses correct values (#17098)

• fix: change title only after any pending work has completed (#17061)

• fix: preserve symbols when creating derived rest properties (#17096)

[email protected]

Patch Changes

• fix: treat each blocks with async dependencies as uncontrolled (#17077)

[email protected]

Patch Changes

• fix: transform $bindable after await expressions (#17066)

[email protected]

Minor Changes

• feat: out-of-order rendering (#17038)

Patch Changes

• fix: settle batch after DOM updates (#17054)

[email protected]

Patch Changes

• fix: handle <svelte:head> rendered asynchronously (#17052)

• fix: don't restore batch in #await (#17051)

Changelog

Sourced from svelte's changelog.

5.43.5

Patch Changes

• fix: ensure async static props/attributes are awaited (#17120)

• fix: wait on dependencies of async bindings (#17120)

• fix: await dependencies of style directives (#17120)

5.43.4

Patch Changes

• chore: simplify connection/disconnection logic (#17105)

• fix: reconnect deriveds to effect tree when time-travelling (#17105)

5.43.3

Patch Changes

• fix: ensure fork always accesses correct values (#17098)

• fix: change title only after any pending work has completed (#17061)

• fix: preserve symbols when creating derived rest properties (#17096)

5.43.2

Patch Changes

• fix: treat each blocks with async dependencies as uncontrolled (#17077)

5.43.1

Patch Changes

• fix: transform $bindable after await expressions (#17066)

5.43.0

Minor Changes

• feat: out-of-order rendering (#17038)

Patch Changes

• fix: settle batch after DOM updates (#17054)

... (truncated)

Commits

• 554202e Version Packages (#17127)
• 68d4f9c fix: wait on dependencies of async bindings (#17120)
• 3a4dc7d Version Packages (#17119)
• 46e9d2d chore: remove UNOWNED flag (#17105)
• 7a24354 Version Packages (#17087)
• eea8a18 fix: ensure fork always accesses correct values (#17098)
• b7625fd fix: do not spread non-enumerable symbols (#17097)
• 8ebbb3c fix: preserve symbols when creating derived rest properties (#17096)
• 0e709e3 fix: change title only after any pending work has completed (#17061)
• 723c421 Version Packages (#17078)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[tbouffard]

✔️ Tested locally with the artifact built by GH Actions
✔️ All checks pass
✔️ Changelog and release-notes reviewed. Nothing impactful for us.

@dependabot squash and merge

[dependabot]

Beginning January 27, 2026, Dependabot will no longer support the @dependabot squash and merge command. Please use GitHub's native pull request controls instead. Please see the changelog announcement for additional details.