fix(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@babel/core (source)	^7.26.9 -> ^7.26.10
@sxzz/eslint-config	^6.0.1 -> ^6.0.2
bumpp	^10.0.3 -> ^10.1.0
pnpm (source)	10.6.2 -> 10.6.3
tsdown	^0.6.4 -> ^0.6.8
vite (source)	^6.2.1 -> ^6.2.2

---

Release Notes

babel/babel (@​babel/core)

v7.26.10

Compare Source

👓 Spec Compliance

• babel-parser
  • #​17159 Disallow decorator in array pattern (@​JLHwung)

🐛 Bug Fix

• babel-parser, babel-template
  • #​17164 Fix: always initialize ExportDeclaration attributes (@​JLHwung)
• babel-core
  • #​17142 fix: "Map maximum size exceeded" in deepClone (@​liuxingbaoyu)
• babel-parser, babel-plugin-transform-typescript
  • #​17154 Update typescript parser tests (@​JLHwung)
• babel-traverse
  • #​17151 fix: Should not evaluate vars in child scope (@​liuxingbaoyu)
• babel-generator
  • #​17153 fix: Correctly generate abstract override (@​liuxingbaoyu)
• babel-parser
  • #​17107 Fix source type detection when parsing TypeScript (@​JLHwung)
• babel-helpers, babel-runtime, babel-runtime-corejs2, babel-runtime-corejs3
  • #​17173 Fix processing of replacement pattern with named capture groups (@​mmmsssttt404)

💅 Polish

• babel-standalone
  • #​17158 Avoid warnings when re-bundling @​babel/standalone with webpack (@​liuxingbaoyu)

🏠 Internal

• babel-parser
  • #​17160 Left-value parsing cleanup (@​JLHwung)

sxzz/eslint-config (@​sxzz/eslint-config)

v6.0.2

Compare Source

   🐞 Bug Fixes

• Sort more fields in package.json  -  by @​sxzz (84e42)

    View changes on GitHub

antfu-collective/bumpp (bumpp)

v10.1.0

Compare Source

   🚀 Features

• Replace picocolors with ansis  -  by @​webdiscus in https://github.com/antfu-collective/bumpp/issues/74 (6f836)
• Update deps  -  by @​antfu (7f208)

    View changes on GitHub

pnpm/pnpm (pnpm)

v10.6.3

Compare Source

Patch Changes

• pnpm install --prod=false should not crash, when executed in a project with a pnpm-workspace.yaml file #​9233. This fixes regression introduced via #​9211.

• Add the missing node-options config to recursive run #​9180.

• Removed a branching code path that only executed when dedupe-peer-dependents=false. We believe this internal refactor will not result in behavior changes, but we expect it to make future pnpm versions behave more consistently for projects that override dedupe-peer-dependents to false. There should be less unique bugs from turning off dedupe-peer-dependents.

  See details in #​9259.

sxzz/tsdown (tsdown)

v0.6.8

Compare Source

No significant changes

    View changes on GitHub

v0.6.7

Compare Source

   🚀 Features

• Support resolving specific id for bundle dts  -  by @​sxzz (16b9b)

    View changes on GitHub

v0.6.6

Compare Source

   🚀 Features

• Expose ResolveDtsPlugin  -  by @​sxzz (2a89c)

   🐞 Bug Fixes

• Add default compiler options for bundling dts  -  by @​sxzz (7c412)
• Disable resolve dts dependency by default  -  by @​sxzz (ab1cc)
• Use canary rolldown  -  by @​sxzz (59d87)

    View changes on GitHub

v0.6.5

Compare Source

   🚀 Features

• Resolve dts dependency  -  by @​sxzz (a5440)

   🐞 Bug Fixes

• Respect external for dts  -  by @​sxzz (3c370)
• deps: Update all non-major dependencies  -  in https://github.com/sxzz/tsdown/issues/73 (25f15)

    View changes on GitHub

vitejs/vite (vite)

v6.2.2

Compare Source

• fix: await client buildStart on top level buildStart (#​19624) (b31faab), closes #​19624
• fix(css): inline css correctly for double quote use strict (#​19590) (d0aa833), closes #​19590
• fix(deps): update all non-major dependencies (#​19613) (363d691), closes #​19613
• fix(indexHtml): ensure correct URL when querying module graph (#​19601) (dc5395a), closes #​19601
• fix(preview): use preview https config, not server (#​19633) (98b3160), closes #​19633
• fix(ssr): use optional chaining to prevent "undefined is not an object" happening in `ssrRewriteStac (4309755), closes #​19612
• feat: show friendly error for malformed base (#​19616) (2476391), closes #​19616
• feat(worker): show asset filename conflict warning (#​19591) (367d968), closes #​19591
• chore: extend commit hash correctly when ambigious with a non-commit object (#​19600) (89a6287), closes #​19600

---

Configuration

📅 Schedule: Branch creation - "* 0-3 * * 1" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[stackblitz]

Run & review this pull request in StackBlitz Codeflow.

[socket-security]

New, updated, and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@babel/[email protected] ➜ 7.26.10	None	+38	7.45 MB
npm/@sxzz/[email protected] ➜ 6.0.2	environment Transitive: eval, filesystem, unsafe	+233	28.8 MB	sxzz
npm/[email protected] ➜ 10.1.0	environment Transitive: filesystem, shell	+32	3.69 MB	antfu
npm/[email protected] ➜ 0.6.8	Transitive: filesystem, shell, unsafe	+32	7.56 MB	sxzz
npm/[email protected] ➜ 6.2.2	Transitive: environment, filesystem, network, shell	+7	6.12 MB	antfu, patak, soda, ...2 more

View full report↗︎