build(deps): bump the production-dependencies group across 1 directory with 16 updates

[dependabot]

Bumps the production-dependencies group with 16 updates in the / directory:

Package	From	To
@clack/prompts	1.0.0	1.1.0
@expressive-code/plugin-frames	0.41.6	0.41.7
@floating-ui/dom	1.7.5	1.7.6
esbuild-sass-plugin	3.6.0	3.7.0
globby	16.1.0	16.1.1
lightningcss	1.31.1	1.32.0
minimatch	10.1.2	10.2.4
pixi.js	8.16.0	8.17.0
preact	10.28.3	10.28.4
preact-render-to-string	6.6.5	6.6.6
rehype-pretty-code	0.14.1	0.14.3
rimraf	6.1.2	6.1.3
satori	0.19.2	0.25.0
serve-handler	6.1.6	6.1.7
shiki	3.22.0	4.0.2
@types/node	25.2.3	25.4.0

Updates @clack/prompts from 1.0.0 to 1.1.0

Release notes

Sourced from @​clack/prompts's releases.

@​clack/prompts@​1.1.0

Minor Changes

• e3333fb: Replaces picocolors with Node.js built-in styleText.

Patch Changes

• c3666e2: destruct limitOption param for better code readability, tweak types definitions
• ba3df8e: Fixes withGuide support in intro, outro, and cancel messages.
• Updated dependencies [e3333fb]
  • @​clack/core@​1.1.0

@​clack/prompts@​1.0.1

Patch Changes

• 6404dc1: Disallows selection of disabled options in autocomplete.
• 86e36d8: Adds withGuide support to select prompt.
• c697439: Fixes line wrapping behavior in autocomplete.
• 0ded19c: Simplifies withGuide option checks.
• 0e4ddc9: Fixes withGuide support in password and path prompts.
• 76550d6: Adds withGuide support to selectKey prompt.
• f9b9953: Adds withGuide support to password prompt.
• 0e93ccb: Adds vertical arrangement option to confirm prompt.
• 4e9ae13: Adds withGuide support to confirm prompt.
• 0256238: Adds withGuide support to spinner prompt.
• Updated dependencies [6404dc1]
• Updated dependencies [2533180]
  • @​clack/core@​1.0.1

Changelog

Sourced from @​clack/prompts's changelog.

1.1.0

Minor Changes

• e3333fb: Replaces picocolors with Node.js built-in styleText.

Patch Changes

• c3666e2: destruct limitOption param for better code readability, tweak types definitions
• ba3df8e: Fixes withGuide support in intro, outro, and cancel messages.
• Updated dependencies [e3333fb]
  • @​clack/core@​1.1.0

1.0.1

Patch Changes

• 6404dc1: Disallows selection of disabled options in autocomplete.
• 86e36d8: Adds withGuide support to select prompt.
• c697439: Fixes line wrapping behavior in autocomplete.
• 0ded19c: Simplifies withGuide option checks.
• 0e4ddc9: Fixes withGuide support in password and path prompts.
• 76550d6: Adds withGuide support to selectKey prompt.
• f9b9953: Adds withGuide support to password prompt.
• 0e93ccb: Adds vertical arrangement option to confirm prompt.
• 4e9ae13: Adds withGuide support to confirm prompt.
• 0256238: Adds withGuide support to spinner prompt.
• Updated dependencies [6404dc1]
• Updated dependencies [2533180]
  • @​clack/core@​1.0.1

Commits

• 56edf97 [ci] release (#472)
• ba3df8e fix(prompts): honor withGuide for intro/outro/cancel messages (#474)
• e3333fb refactor(core, prompts): replace picocolors with styleText (#403)
• 594c58a [ci] format
• c3666e2 chore(prompts): destruct limitOption param for better code readability (#457)
• 667572b [ci] release (#456)
• 6404dc1 fix: support disabled options in autocomplete (#466)
• ba10721 [ci] format
• 0e4ddc9 fix: respect withGuide option in password and path prompts (#460)
• 0ded19c chore(prompts): simplify guide option checks (#459)
• Additional commits viewable in compare view

Updates @expressive-code/plugin-frames from 0.41.6 to 0.41.7

Release notes

Sourced from @​expressive-code/plugin-frames's releases.

@​expressive-code/plugin-frames@​0.41.7

Patch Changes

• 0599626: Prevents the frames plugin from treating Twoslash // @filename directives as filename comments. This keeps multi-file Twoslash code blocks intact. Thank you for the report, @​Adammatthiesen!
  • @​expressive-code/core@​0.41.7

Changelog

Sourced from @​expressive-code/plugin-frames's changelog.

0.41.7

Patch Changes

• 0599626: Prevents the frames plugin from treating Twoslash // @filename directives as filename comments. This keeps multi-file Twoslash code blocks intact. Thank you for the report, @​Adammatthiesen!
  • @​expressive-code/core@​0.41.7

Commits

• a6eefe9 [CI] Release (#429)
• 0599626 Prevent removal of Twoslash // @filename directives (#428)
• 9a99203 Migrate to ESLint v9 with flat config (#421)
• See full diff in compare view

Updates @floating-ui/dom from 1.7.5 to 1.7.6

Release notes

Sourced from @​floating-ui/dom's releases.

@​floating-ui/dom@​1.7.6

Patch Changes

• fix(types): ensure Platform type contains detectOverflow type
• perf: bundle and runtime improvements
• feat(autoUpdate): allow not passing a floating element
• Update dependencies: @floating-ui/utils@0.2.11, @floating-ui/core@1.7.5

Changelog

Sourced from @​floating-ui/dom's changelog.

1.7.6

Patch Changes

• fix(types): ensure Platform type contains detectOverflow type
• perf: bundle and runtime improvements
• feat(autoUpdate): allow not passing a floating element
• Update dependencies: @floating-ui/utils@0.2.11, @floating-ui/core@1.7.5

Commits

• See full diff in compare view

Updates esbuild-sass-plugin from 3.6.0 to 3.7.0

Release notes

Sourced from esbuild-sass-plugin's releases.

v3.7.0 Hasta la vista

Commits

• See full diff in compare view

Updates globby from 16.1.0 to 16.1.1

Release notes

Sourced from globby's releases.

v16.1.1

• Fix negation patterns with absolute filesystem paths 72e9916

---

sindresorhus/globby@v16.1.0...v16.1.1

Commits

• ff45aa5 16.1.1
• 72e9916 Fix negation patterns with absolute filesystem paths
• See full diff in compare view

Updates lightningcss from 1.31.1 to 1.32.0

Release notes

Sourced from lightningcss's releases.

v1.32.0

Added

• Enable custom resolvers to mark imports as external. Resolvers may now return {external: string} to mark an import as external. This will leave the @import in the output CSS instead of bundling it. See the docs for details.
• Allow visitors to add dependencies. Visitors may now be functions which receive an addDependency function as an option. Dependencies may be used by tools that call Lightning CSS such as bundlers to implement file watching or caching. See the docs for details.
• Add mix-blend-mode property support

Fixed

• Output unknown color-scheme keywords as-is instead of normal
• Improved serialization of the rotate property
• keep a single space between functions when formatting transform values
• Fix additionally inserted whitespace in var(--foo,) and env(--foo,)
• Convert the percentage in the scale property or scale() to a number
• update compat data

Commits

• See full diff in compare view

Updates minimatch from 10.1.2 to 10.2.4

Changelog

Sourced from minimatch's changelog.

change log

10.2

• Add braceExpandMax option

10.1

• Add magicalBraces option for escape
• Fix makeRe when partial: true is set.
• Fix makeRe when pattern ends in a final ** path part.

10.0

• Require node 20 or 22 and higher

9.0

• No default export, only named exports.

8.0

• Recursive descent parser for extglob, allowing correct support for arbitrarily nested extglob expressions
• Bump required Node.js version

7.4

• Add escape() method
• Add unescape() method
• Add Minimatch.hasMagic() method

7.3

• Add support for posix character classes in a unicode-aware way.

7.2

• Add windowsNoMagicRoot option

7.1

• Add optimizationLevel configuration option, and revert the default back to the 6.2 style minimal optimizations, making the advanced transforms introduced in 7.0 opt-in. Also, process provided file paths in the same way in optimizationLevel:2 mode, so most things that matched with optimizationLevel 1 or 0 should match with level 2 as well. However, level 1 is the default, out of an abundance of caution.

... (truncated)

Commits

• c36addb 10.2.4
• 26b9002 docs: add warning about ReDoS
• 3a0d83b fix partial matching of globstar patterns
• ea94840 10.2.3
• 0873fba update deps
• cecaad1 more extglob coalescing for performance
• 11d0df6 limit nested extglob recursion, flatten extglobs
• c3448c4 update assertValidPattern param type to unknown from any
• 0bf499a limit recursion for **, improve perf considerably
• 9f15c58 update deps
• Additional commits viewable in compare view

Updates pixi.js from 8.16.0 to 8.17.0

Release notes

Sourced from pixi.js's releases.

v8.17.0

💾 Download

Installation:

npm install pixi.js@8.17.0

Development Build:

• https://cdn.jsdelivr.net/npm/pixi.js@8.17.0/dist/pixi.js
• https://cdn.jsdelivr.net/npm/pixi.js@8.17.0/dist/pixi.mjs

Production Build:

• https://cdn.jsdelivr.net/npm/pixi.js@8.17.0/dist/pixi.min.js
• https://cdn.jsdelivr.net/npm/pixi.js@8.17.0/dist/pixi.min.mjs

Documentation:

• https://pixijs.download/v8.17.0/docs/index.html

Changed

pixijs/pixijs@v8.16.0...v8.17.0

🚨 Behavior Change

• BlurFilter now uses an optimized halving strength scheme by default, which changes visual output compared to previous versions. Set legacy: true to restore the old behavior.

  new BlurFilter({ legacy: true });
  // or globally:
  BlurFilter.defaultOptions.legacy = true;

• Text with align: 'justify' now uses wordWrapWidth for width calculation instead of maxLineWidth, matching CSS behavior. The last line is no longer stretched.
• breakWords: true in HTMLText now correctly uses CSS word-break: break-word instead of break-all to match behavior of other text renderers.

🎁 Added

• feat: add tagged text support to canvasTextSplit by @​Zyie in pixijs/pixijs#11949
  • SplitText now supports tagStyles, so styled runs (e.g. <red>Hello</red> <blue>World</blue>) are correctly split into per-character Text objects with individual styles preserved.
• feat: Improves text rendering and layout handling by @​Zyie in pixijs/pixijs#11947
  • Bitmap text now supports whiteSpace modes (normal, pre, nowrap, pre-line, pre-wrap) with proper space/newline collapsing
  • Bitmap text word wrap supports break-after characters (hyphens, en-dash, em-dash, soft hyphen)
  • Canvas text and split text now render align: 'justify' by distributing extra word spacing
  • Dynamic bitmap fonts scale drop shadow blur and distance proportionally to font size
  • Bitmap font xAdvance now uses true advance width from measureText() instead of bounding-box width
  • Kerning values correctly scaled by fontScale in dynamic bitmap fonts
• feat: add visibleChanged event to container by @​ikigai-bjorn-s in pixijs/pixijs#11940

  container.on('visibleChanged', (visible) => {
      console.log('Visibility changed to:', visible);
  });

• feat: Add function for removing aliases from resolver by @​Sertion in pixijs/pixijs#11921

... (truncated)

Commits

• 4806c3b v8.17.0
• 6e9619d feat: add tagged text support to canvasTextSplit (#11949)
• 128ab8a docs: expand build, test, and API documentation (#11956)
• 4f3c960 chore: add titles to visual test diff snapshots (#11954)
• c450e9a feat: Improves text rendering and layout handling (#11947)
• c877399 fix: move DOMPipe extension registration back to init.ts (#11953)
• 3878d00 fix: removeAllListeners() on Renderer.destroy() (#11951)
• fb8f8bb fix: correct minFPS/maxFPS mutual clamping in Ticker (#11952)
• c24a9ca fix: return valid empty bounds from empty Graphics (#11908)
• aa6045d documentation updated (#11935)
• Additional commits viewable in compare view

Updates preact from 10.28.3 to 10.28.4

Release notes

Sourced from preact's releases.

10.28.4

Fixes

• Fix crash where a synchronous effect render unmounts the tree (#5026, thanks @​JoviDeCroock)

Performance

• Core size optimizations (#5022, thanks @​JoviDeCroock)
• Hooks size optimizations (#5021, thanks @​JoviDeCroock)
• Make oldProps diffing more compact (#5004) (#5019, thanks @​JoviDeCroock)
• Compat size optimizations (#5020, thanks @​JoviDeCroock)
• Land size optimization separately (#5018, thanks @​JoviDeCroock)

Commits

• b4f9cab 10.28.4 (#5027)
• 8cbed5f Fix crash where a synchronous effect render unmounts the tree (#5026)
• 4ac7204 Core size optimizations (#5022)
• e02fd69 Make forEach --> some (#5021)
• 387d8f2 refactor(diff): make oldProps diffing more compact (#5004) (#5019)
• 084b75f Transform forEach to some and consolidate condition (#5020)
• 3c8506d Land size optimization separately (#5018)
• See full diff in compare view

Updates preact-render-to-string from 6.6.5 to 6.6.6

Release notes

Sourced from preact-render-to-string's releases.

v6.6.6

Patch Changes

• #446 b7b288c Thanks @​JoviDeCroock! - Fix issues regarding streaming full HTML documents

Changelog

Sourced from preact-render-to-string's changelog.

6.6.6

Patch Changes

• #446 b7b288c Thanks @​JoviDeCroock! - Fix issues regarding streaming full HTML documents

Commits

• 4c47e70 Merge pull request #447 from preactjs/changeset-release/main
• e71cb4e Version Packages
• 867be3e Merge pull request #448 from preactjs/document-streaming
• 5e1b20b Apply suggestion from @​JoviDeCroock
• 6c0ace6 Apply suggestions from code review
• 811f05b Add streaming to readme
• e5dbe50 Merge pull request #446 from preactjs/chunked-rendering-fixes
• b7b288c Add doctype html and changeset
• c63d294 Fixes
• 7dd1349 Fix client code as well
• Additional commits viewable in compare view

Updates rehype-pretty-code from 0.14.1 to 0.14.3

Release notes

Sourced from rehype-pretty-code's releases.

rehype-pretty-code@0.14.3

Patch Changes

• Support Shiki 4
• chore: fix npm OIDC trusted publishing workflow
• docs: update docs with renamed shiki function: getHighlighter -> createHighlighter

Changelog

Sourced from rehype-pretty-code's changelog.

0.14.3

Patch Changes

• chore: fix npm OIDC trusted publishing workflow
• docs: update docs with renamed shiki function: getHighlighter -> createHighlighter

0.14.2

Patch Changes

• Support Shiki 4

Commits

• 8c3530f [ci] release (#270)
• 9b53bd1 [ci] release (#268)
• d14e996 Support Shiki 4 (#267)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for rehype-pretty-code since your current version.

Updates rimraf from 6.1.2 to 6.1.3

Commits

• f738c78 6.1.3
• a164a85 update deps
• 4635ba7 update deps
• 509c53f limit ci workflow permissions
• 68ce04f formatting
• 37680c5 add warning to not pass untrusted input to this method ever
• 786563d remove contributing doc, already covered by .github repo
• dbeef73 contributing
• 84d27af update workflows and standard project junk
• See full diff in compare view

Updates satori from 0.19.2 to 0.25.0

Release notes

Sourced from satori's releases.

0.25.0

0.25.0 (2026-03-05)

Features

• CSS variables (#736) (d246913)

0.24.1

0.24.1 (2026-03-03)

Bug Fixes

• Consistent text positioning when embedFont is false (#723) (dc07b70)

0.24.0

0.24.0 (2026-03-03)

Features

• Improved object-position support (#734) (9377f70)

0.23.0

0.23.0 (2026-03-03)

Features

• Add text-indent support (#733) (2b7e825)

0.22.0

0.22.0 (2026-03-03)

Features

• Support for object-fit fill and scale-down (#732) (453fd91)

0.21.0

0.21.0 (2026-03-02)

Features

• 10% perf improvements in the core lib (#729) (4e761c6)

0.20.0

0.20.0 (2026-03-02)

... (truncated)

Commits

• d246913 feat: CSS variables (#736)
• dc07b70 fix: Consistent text positioning when embedFont is false (#723)
• 54a749b chore: export InitInput and allow Promise (#726)
• 9377f70 feat: Improved object-position support (#734)
• 2b7e825 feat: Add text-indent support (#733)
• 453fd91 feat: Support for object-fit fill and scale-down (#732)
• c8dd6f5 chore: Add more tests (#731)
• c1087d6 chore: Update benchmark code (#730)
• 4e761c6 feat: 10% perf improvements in the core lib (#729)
• c78869b feat: Add support for background size cover, contain and auto (#728)
• Additional commits viewable in compare view

Updates serve-handler from 6.1.6 to 6.1.7

Release notes

Sourced from serve-handler's releases.

6.1.7

Patches

• Fix: update minimatch to 3.1.5 to resolve security vulnerabilities: #228

Credits

Huge thanks to @​ParakhJaggi for helping!

Commits

• 5158ae7 6.1.7
• 754d1dc fix: update minimatch to 3.1.5 to resolve security vulnerabilities (#228)
• 8b357fa Revert "chore(deps): upgrade minimatch to v10.2.4 (#226)"
• 8df54ef chore(deps): upgrade minimatch to v10.2.4 (#226)
• See full diff in compare view

Updates shiki from 3.22.0 to 4.0.2

Release notes

Sourced from shiki's releases.

v4.0.2

   🐞 Bug Fixes

• Support ANSI language with multiple themes  -  by @​dan-lee in shikijs/shiki#1259 (2a232)

    View changes on GitHub

v4.0.1

   🐞 Bug Fixes

• Try fix dts bundle, thanks @​sxzz  -  by @​antfu (1f26c)

    View changes on GitHub

v4.0.0

   🚨 Breaking Changes

• Drop Node v18 support, remove deprecated APIs  -  by @​antfu in shikijs/shiki#1249 (cdca9)

   🚀 Features

• A leaner @shikijs/primitive package  -  by @​antfu in shikijs/shiki#1251 (05a77)
• New @shikijs/markdown-exit package  -  by @​antfu (d1257)

    View changes on GitHub

v3.23.0

   🚀 Features

• Update grammar and themes  -  by @​antfu (9b4ca)
• cli:
  • Add stdin support and list commands  -  by @​Divyapahuja31 and DIVYA PAHUJA in shikijs/shiki#1241 (213f1)
• transformers:
  • Add 'leading' position to transformerRenderWhitespace  -  by @​Divyapahuja31 and DIVYA PAHUJA in shikijs/shiki#1236 (49cbb)
  • Add support for [!code info] notation  -  by @​Divyapahuja31 and DIVYA PAHUJA in shikijs/shiki#1237 (cd2a6)

   🐞 Bug Fixes

• Add declare modifier to top level declarations in .d.ts  -  by @​KazariEX in shikijs/shiki#1242 (142d5)
• cli: Normalize language/extension casing for CLI inputs  -  by @​Nandann018-ux and @​antfu in shikijs/shiki#1245 (4bea1)

    View changes on GitHub

Commits

• 7a1007d chore: release v4.0.2
• ef42a16 chore: update deps
• 2a23230 fix: support ANSI language with multiple themes (#1259)
• 69bec64 chore: release v4.0.1
• 2060ca8 chore: update deps
• 32f35b5 chore: release v4.0.0
• 720f6d8 test: restructure tests
• 05a77f1 feat: a leaner @shikijs/primitive package (#1251)
• cdca994 feat!: drop Node v18 support, remove deprecated APIs (#1249)
• 2b33c0c chore: release v3.23.0
• Additional commits viewable in compare view

Updates @types/node from 25.2.3 to 25.4.0

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions