chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@auth/core (source)	^0.35.3 -> ^0.36.0
@biomejs/biome (source)	^1.9.2 -> ^1.9.3
@hono/vite-dev-server	^0.15.2 -> ^0.16.0
vike	^0.4.197 -> ^0.4.198
wrangler (source)	^3.78.12 -> ^3.80.0

---

Release Notes

nextauthjs/next-auth (@​auth/core)

v0.36.0

Compare Source

Features

• oauth: expose custom fetch (#​11975) (fedff04)

Bugfixes

• correctly set isNewUser during account linking & user creation

Other

• core: upgrade deps (917cb2c)
• stricter isDate (#​11953)

biomejs/biome (@​biomejs/biome)

v1.9.3

Compare Source

CLI

New features

• GritQL queries that match functions or methods will now match async functions or methods as well.

  If this is not what you want, you can capture the async keyword (or its absence) in a metavariable and assert its emptiness:

  $async function foo() {} where $async <: .
  

  Contributed by @​arendjr

Bug fixes

• Fix #​4077: Grit queries no longer need to match the statement's trailing semicolon. Contributed by @​arendjr

• Fix #​4102. Now the CLI command lint doesn't exit with an error code when using --write/--fix. Contributed by @​ematipico

Configuration

Bug fixes

• Fix #​4125, where noLabelWithoutControl options where incorrectly marked as mandatory. Contributed by @​ematipico

Editors

• Fix a case where CSS files weren't correctly linted using the default configuration. Contributed by @​ematipico

Formatter

Bug fixes

• Fix #​3924 where GraphQL formatter panics in block comments with empty line. Contributed by @​vohoanglong0107

• Fix a case where raw values inside url() functions weren't properly trimmed.

  .value {
  -  background: url(
  -   whitespace-around-string
  -  );
  + background: url(whitespace-around-string);
  }

  Contributed by @​ematipico

• Fixed #​4076, where a media query wasn't correctly formatted:

  .class {
  -  @&#8203;media (1024px <= width <=1280px) {
  +  @&#8203;media (1024px <= width <= 1280px) {
     color: red;
     }
  }

  Contributed by @​blaze-d83

JavaScript API

Bug fixes

• Fix #​3881, by updating the APIs to use the latest WASM changes. Contributed by @​ematipico

Linter

New features

• Add noDescendingSpecificity. Contributed by @​tunamaguro

• Add noNestedTernary. Contributed by @​kaykdm

• Add noTemplateCurlyInString. Contributed by @​fireairforce

• Add noOctalEscape. Contributed by @​fireairforce

Enhancements

• Add an option reportUnnecessaryDependencies to useExhaustiveDependencies.

  Defaults to true. When set to false, errors will be suppressed for React hooks that declare dependencies but do not use them.

  Contributed by @​simon-paris

• Add an option reportMissingDependenciesArray to useExhaustiveDependencies. Contributed by @​simon-paris

Bug fixes

• noControlCharactersInRegex no longer panics on regexes with incomplete escape sequences. Contributed by @​Conaclos

• noMisleadingCharacterClass no longer reports issues outside of character classes.

  The following code is no longer reported:

  /[a-z]👍/;

  Contributed by @​Conaclos

• noUndeclaredDependencies no longer reports Node.js builtin modules as undeclared dependencies.

  The rule no longer reports the following code:

  import * as fs from "fs";

  Contributed by @​Conaclos

• noUnusedVariables no longer panics when suggesting the renaming of a variable at the start of a file (#​4114). Contributed by @​Conaclos

• noUselessEscapeInRegex no longer panics on regexes that start with an empty character class. Contributed by @​Conaclos

• noUselessStringConcat no longer panics when it encounters malformed code. Contributed by @​Conaclos

• noUnusedFunctionParameters no longer reports unused parameters inside an object pattern with a rest parameter.

  In the following code, the rule no longer reports a as unused.

  function f({ a, ...rest }) {
    return rest;
  }

  This matches the behavior of noUnusedVariables.

  Contributed by @​Conaclos

• useButtonType no longer reports dynamically created button with a valid type (#​4072).

  The following code is no longer reported:

  React.createElement("button", { type: "button" }, "foo")

  Contributed by @​Conaclos

• useSemanticElements now ignores elements with the img role (#​3994).

  MDN recommends using role="img" for grouping images or creating an image from other elements.
  The following code is no longer reported:

  <div role="img" aria-label="That cat is so cute">
    <p>&#x1F408; &#x1F602;</p>
  </div>

  Contributed by @​Conaclos

• useSemanticElements now ignores alert and alertdialog roles (#​3858). Contributed by @​Conaclos

• noUselessFragments don't create invaild JSX code when Fragments children contains JSX Expression and in a LogicalExpression. Contributed by @​fireairforce

Parser

Bug fixes

• Forbid undefined as type name for typescript parser. Contributed by @​fireairforce

honojs/vite-plugins (@​hono/vite-dev-server)

v0.16.0

Compare Source

Minor Changes

• #​175 c44f9391cf145192b3632c6eb71b15a8d5d3178b Thanks @​yusukebe! - feat: add loadModule option

vikejs/vike (vike)

v0.4.198

Compare Source

Bug Fixes

• allow absolute URLs to be passed to navigate() and prefetch() (29ab56f)
• assertUsage() import strings (vikejs/vike-solid#​127) (11810cf)
• improve unknown config error message (c0b828b)
• refactor pointer importer / externalization logic (828238d)

Features

• [experimental] prefetch page context (#​246) (#​1617) (7971d17)

cloudflare/workers-sdk (wrangler)

v3.80.0

Compare Source

Minor Changes

• #​6408 3fa846e Thanks @​RamIdeas! - feat: update the --experimental-dev-env (shorthand: --x-dev-env) flag to on-by-default

  If you experience any issues, you can disable the flag with --x-dev-env=false. Please also let us know by opening an issue at https://github.com/cloudflare/workers-sdk/issues/new/choose.

Patch Changes

• #​6854 04a8fed Thanks @​penalosa! - chore: Include serialised FormData in debug logs

• #​6879 b27d8cb Thanks @​petebacondarwin! - fix: the docs command should not crash if given search terms

  Fixes a regression accidentally introduced by #​3735.

• #​6873 b123f43 Thanks @​zwily! - fix: reduce logging noise during wrangler dev with static assets

  Updates to static assets are accessible by passing in --log-level="debug" but otherwise hidden.

• #​6881 7ca37bc Thanks @​RamIdeas! - fix: custom builds outputting files in assets watched directory no longer cause the custom build to run again in an infinite loop

• #​6872 b2d094e Thanks @​petebacondarwin! - fix: render a helpful build error if a Service Worker mode Worker has imports

  A common mistake is to forget to export from the entry-point of a Worker, which causes
  Wrangler to infer that we are in "Service Worker" mode.

  In this mode, imports to external modules are not allowed.
  Currently this only fails at runtime, because our esbuild step converts these imports to an internal __require() call that throws an error.
  The error message is misleading and does not help the user identify the cause of the problem.
  This is particularly tricky where the external imports are added by a library or our own node.js polyfills.

  Fixes #​6648

• #​6792 27e8385 Thanks @​penalosa! - fix: Handle more module declaration cases

• #​6838 7dbd0c8 Thanks @​GregBrimble! - fix: Improve static asset upload messaging

v3.79.0

Compare Source

Minor Changes

• #​6801 6009bb4 Thanks @​RamIdeas! - feat: implement retries within wrangler deploy and wrangler versions upload to workaround spotty network connections and service flakes

Patch Changes

• #​6870 dc9039a Thanks @​penalosa! - fix: Include workerd in the external dependecies of Wrangler to fix local builds.

• #​6866 c75b0d9 Thanks @​zwily! - fix: debounce restarting worker on assets dir file changes

---

Configuration

📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[cloudflare-workers-and-pages]

Deploying vike-cloudflare-hattip-demo with    Cloudflare Pages

Latest commit:	e2d3672
Status:	✅  Deploy successful!
Preview URL:	https://5dc116fc.vike-clouflare-hattip-demo.pages.dev
Branch Preview URL:	https://renovate-all-minor-patch.vike-clouflare-hattip-demo.pages.dev

View logs

[cloudflare-workers-and-pages]

Deploying vike-cloudflare-vike-demo with    Cloudflare Pages

Latest commit:	e2d3672
Status:	✅  Deploy successful!
Preview URL:	https://505f5942.vike-clouflare-vike-demo.pages.dev
Branch Preview URL:	https://renovate-all-minor-patch.vike-clouflare-vike-demo.pages.dev

View logs

[cloudflare-workers-and-pages]

Deploying vike-cloudflare-hono-demo with    Cloudflare Pages

Latest commit:	e2d3672
Status:	✅  Deploy successful!
Preview URL:	https://681b2b90.vike-clouflare-hono-demo.pages.dev
Branch Preview URL:	https://renovate-all-minor-patch.vike-clouflare-hono-demo.pages.dev

View logs