chore(deps): update all non-major dependencies

[renovate]

Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more here.

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update
@nuxt/eslint (source)	1.4.1 -> 1.9.0			dependencies	minor
@nuxt/image (source)	1.10.0 -> 1.11.0			dependencies	minor
@nuxt/scripts	0.11.8 -> 0.11.13			dependencies	patch
@playwright/test (source)	1.52.0 -> 1.55.0			devDependencies	minor
@vueuse/nuxt (source)	13.3.0 -> 13.9.0			dependencies	minor
danielroe/provenance-action	v0.1.0 -> v0.1.1			action	patch
lint-staged	16.1.0 -> 16.2.0			devDependencies	minor
mcr.microsoft.com/playwright	v1.52.0-noble -> v1.55.0-noble			container	minor
nuxt-og-image (source)	5.1.4 -> 5.1.11			dependencies	patch
pnpm (source)	10.11.1 -> 10.17.0			packageManager	minor
simple-git-hooks	2.13.0 -> 2.13.1			devDependencies	patch
typescript (source)	5.8.3 -> 5.9.2			devDependencies	minor
unplugin-vue-router (source)	^0.12.0 -> ^0.15.0			dependencies	minor
vue-sonner	2.0.0 -> 2.0.8			dependencies	patch
vue-tsc (source)	3.0.1 -> 3.0.7			devDependencies	patch

---

Release Notes

nuxt/eslint (@​nuxt/eslint)

v1.9.0

Compare Source

   🚀 Features

• Update plugins  -  by @​antfu (b80cb)

   🐞 Bug Fixes

• Add defineNuxtConfig as ESLint's globals, close #​603  -  by @​antfu in #​603 (2e67f)

    View changes on GitHub

v1.8.0

Compare Source

   🚀 Features

• Update plugins  -  by @​antfu (932a7)

    View changes on GitHub

v1.7.1

Compare Source

   🐞 Bug Fixes

• Include eslint-typegen.d.ts in nuxt.node.d.ts, close #​596  -  by @​antfu in #​596 (ab74e)

    View changes on GitHub

v1.7.0

Compare Source

   🚀 Features

• Upgrade eslint-plugin-unicorn  -  by @​antfu (b3b7d)

    View changes on GitHub

v1.6.0

Compare Source

   🐞 Bug Fixes

• Bring back eslint-plugin-import-x as default, close #​590  -  by @​antfu in #​590 (e43d6)

    View changes on GitHub

v1.5.2

Compare Source

   🚀 Features

• Add option features.import.plugin to swap plugin implementation, close #​587  -  by @​antfu in #​587 (66f5e)

    View changes on GitHub

v1.5.1

Compare Source

   🐞 Bug Fixes

• eslint-config: Replace deprecated vue/object-property-newline option  -  by @​amery in #​586 (7805e)

    View changes on GitHub

v1.5.0

Compare Source

   🚀 Features

• Switch to eslint-plugin-import-lite, update deps  -  by @​antfu (31bd8)

   🐞 Bug Fixes

• eslint-config: Add file type restrictions to prevent CSS parsing errors  -  by @​amery in #​584 (40521)

    View changes on GitHub

nuxt/image (@​nuxt/image)

v1.11.0

Compare Source

compare changes

🚀 Enhancements

• Add support for image helpers in nitro endpoints (#​1473)
• ipx: Log the architecture of the build (#​1808)

🩹 Fixes

• Remove layer0 and edgio providers (#​1763)
• Add back layer0 and edgio providers (without) tests (a99ce09)
• cloudflare: Don't add baseURL if there are no operations (#​1790)
• ipx: Always use ipx provider if external baseURL is provided (#​1800)
• ipxStatic: Strip repeated slashes from image path (#​1801)
• Avoid deep type instantiation (12b37a2)

📖 Documentation

• Fix typo (#​1762)
• Fix link to runtime/providers (#​1819)

🏡 Chore

• Disable shamefully-hoist (#​1795)
• Do not ignore typescript upgrades (0809991)
• Switch to using typesVersions field (b4af05a)
• Allow major bumps in changelog (d486587)
• Enable oxc-resolver build (4be31c7)
• Release v1.11.0 (3123997)

✅ Tests

• Exclude layer0 + edgio from unit tests (3682a90)

🤖 CI

• Run tests against 1.x branch (0c83646)
• Add release workflow and add pkg.pr.new (#​1791)
• Set fetch-depth (18ae6c7)
• Test vs node 20 (e6babef)

❤️ Contributors

• Daniel Roe (@​danielroe)
• Matis (@​matisbag)
• Amir Afshar (@​Afshar07)
• Sébastien Chopin (@​atinux)
• Nicolas Großmann (@​grossmann94)

nuxt/scripts (@​nuxt/scripts)

v0.11.13

Compare Source

No significant changes

    View changes on GitHub

v0.11.10

Compare Source

compare changes

🏡 Chore

• NPM trusted publishing (b785b61)
• Sync changelog (032f73c)
• Bump deps (abfa89e)
• Sync lock (f26b0a2)
• Broken release script (c79c45a)

❤️ Contributors

• Harlan Wilton (@​harlan-zw)

v0.11.9

Compare Source

compare changes

🏡 Chore

• Migrate to addTypeTemplate (399e0c2)
• Add nightly releases (e49434e)
• Drop nuxt peer dependency (dc4e84a)
• Missing sqlite dep (922467c)

❤️ Contributors

• Harlan Wilton (@​harlan-zw)

microsoft/playwright (@​playwright/test)

v1.55.0

Compare Source

v1.54.2

Compare Source

Highlights

https://github.com/microsoft/playwright/issues/36714 - [Regression]: Codegen is not able to launch in Administrator Terminal on Windows (ProtocolError: Protocol error)https://github.com/microsoft/playwright/issues/368288 - [Regression]: Playwright Codegen keeps spamming with selected optiohttps://github.com/microsoft/playwright/issues/3681010 - [Regression]: Starting Codegen with target language doesn't work anymore

Browser Versions

• Chromium 139.0.7258.5
• Mozilla Firefox 140.0.2
• WebKit 26.0

This version was also tested against the following stable channels:

• Google Chrome 140
• Microsoft Edge 140

v1.54.1

Compare Source

v1.54.0

Compare Source

Highlights

• New cookie property partitionKey in browserContext.cookies() and browserContext.addCookies(). This property allows to save and restore partitioned cookies. See CHIPS MDN article for more information. Note that browsers have different support and defaults for cookie partitioning.

• New option noSnippets to disable code snippets in the html report.

  import { defineConfig } from '@​playwright/test';
  
  export default defineConfig({
    reporter: [['html', { noSnippets: true }]]
  });

• New property location in test annotations, for example in testResult.annotations and testInfo.annotations. It shows where the annotation like test.skip or test.fixme was added.

Command Line

• New option --user-data-dir in multiple commands. You can specify the same user data dir to reuse browsing state, like authentication, between sessions.

  npx playwright codegen --user-data-dir=./user-data

• Option -gv has been removed from the npx playwright test command. Use --grep-invert instead.

• npx playwright open does not open the test recorder anymore. Use npx playwright codegen instead.

Miscellaneous

• Support for Node.js 16 has been removed.
• Support for Node.js 18 has been deprecated, and will be removed in the future.

Browser Versions

• Chromium 139.0.7258.5
• Mozilla Firefox 140.0.2
• WebKit 26.0

This version was also tested against the following stable channels:

• Google Chrome 140
• Microsoft Edge 140

v1.53.2

Compare Source

v1.53.1

Compare Source

v1.53.0

Compare Source

Trace Viewer and HTML Reporter Updates

• New Steps in Trace Viewer and HTML reporter:

• New option in 'html' reporter to set the title of a specific test run:

  import { defineConfig } from '@​playwright/test';
  
  export default defineConfig({
    reporter: [['html', { title: 'Custom test run #​1028' }]]
  });

Miscellaneous

• New option kind in testInfo.snapshotPath() controls which snapshot path template is used.

• New method locator.describe() to describe a locator. Used for trace viewer and reports.

  const button = page.getByTestId('btn-sub').describe('Subscribe button');
  await button.click();

• npx playwright install --list will now list all installed browsers, versions and locations.

Browser Versions

• Chromium 138.0.7204.4
• Mozilla Firefox 139.0
• WebKit 18.5

This version was also tested against the following stable channels:

• Google Chrome 137
• Microsoft Edge 137

vueuse/vueuse (@​vueuse/nuxt)

v13.9.0

Compare Source

   🚀 Features

• onLongPress: Allow function as value in delay  -  by @​keeplearning66 in #​4979 (415f3)
• useAsyncState: Allow initial value to be a ref  -  by @​43081j in #​4992 (e38e8)

   🐞 Bug Fixes

• types: Update type casting for watch functions to use WatchSource  -  by @​ArthurDarkstone in #​4966 (00a72)
• useUrlSearchParams: Restore proper history and navigation behavior  -  by @​yosong-github and @​ilyaliao in #​4969 (1cff4)

    View changes on GitHub

v13.8.0

Compare Source

   🚀 Features

• useEventSource: Add serializer  -  by @​imddc and @​ilyaliao in #​4953 (64651)

   🏎 Performance

• docs: Replace twoslash with own function for comparing js snippet  -  by @​serkodev in #​4977 (909fd)
• usePointer: Use shallowRef for better performance  -  by @​broBinChen and xiaobin in #​4980 (ce09e)
• usePreferredLanguages: Use shallowRef for better performance  -  by @​ilyaliao in #​4973 (361c8)

    View changes on GitHub

v13.7.0

Compare Source

   🚨 Breaking Changes

• useAsyncState: Set globalThis.reportError as default onError  -  by @​kalu5 in #​4951 (f6e88)

   🚀 Features

• computedAsync: Use globalThis.reportError as default onError  -  by @​babu-ch in #​4943 (226a2)
• useClipboardItems: Expose read()  -  by @​OrbisK in #​4954 (d03b2)
• useDevicePixelRatio: Improve types  -  by @​doyuli in #​4927 (1b3d4)
• useSpeechSynthesisOptions: Add option onBoundary  -  by @​pkc918 in #​4960 (c0dca)
• useTimeAgoIntl: Add useTimaAgoIntl  -  by @​northword and Anthony Fu in #​4821 (81815)

   🐞 Bug Fixes

• ci: Avoid duplicate nr update execution in docs:build  -  by @​serkodev in #​4925 (a73ee)
• useAnimate: Respect immediate: false with conditionally rendered elements  -  by @​curtgrimes in #​4947 (90c7f)
• useGamepad: Correct type assertion for vibrationActuator  -  by @​ArthurDarkstone in #​4964 (c5277)
• useStorage: Make sure to always read data if new value is undefined  -  by @​OrbisK in #​4957 (22116)

   🏎 Performance

• twoslash: Optimize twoslash cache  -  by @​doyuli in #​4939 (93064)
• useMutationObserver: Watch ref directly  -  by @​VividLemon in #​4940 (01cd9)

    View changes on GitHub

v13.6.0

Compare Source

   🚀 Features

• Mark templateRef as deprecated  -  by @​ilyaliao in #​4894 (0271e)
• useFileDialog: Add MaybRef to multiple, accept, capture, reset, and directory  -  by @​hunterwilhelm, Anthony Fu and @​antfu in #​4813 (a44bd)
• useFocusTrap: Expose updateContainerElements for dynamic contai…  -  by @​PeikyLiu and @​ilyaliao in #​4849 (3d5e5)
• useIDBKeyval: Add options.serializer  -  by @​matthewjumpsoffbuildings, @​OrbisK and @​43081j in #​4781 (bb831)
• useStorageAsync: Add onReady option and Promise return  -  by @​asika32764, Fernando Fernández, @​OrbisK and Anthony Fu in #​4158 (3a2df)
• useTransition: Support custom window  -  by @​byronogis and Anthony Fu in #​4850 (a75f4)

   🐞 Bug Fixes

• onClickOutside: The order of overload signatures  -  by @​whiteyebrw, @​ilyaliao and Anthony Fu in #​4839 (d5812)
• types: Use Vue's native MaybeRef and MaybeRefOrGetter instead  -  by @​RYGRIT in #​4913 (2d179)
• useDraggable: Add capture prop to component  -  by @​wgh970312 in #​4911 (547f8)
• useMagicKeys: Prevent incorrect clearing of other keys after releasing shift  -  by @​keeplearning66 in #​4916 (d7f28)
• useMouseInElement: Correctly update elementX and elementY  -  by @​cszhjh and @​ilyaliao in #​4846 (cf02b)
• useVirtualList: Resolve invalid watch source  -  by @​cszhjh and @​OrbisK in #​4857 (d2381)

    View changes on GitHub

v13.5.0

Compare Source

   🚀 Features

• useSpeechSynthesis: Add reactivity for volume  -  by @​whiteyebrw in #​4837 (4d125)

   🐞 Bug Fixes

• useCookie: Update universal-cookie range to ^7 || ^8 #​4834

    View changes on GitHub

v13.4.0

Compare Source

   🚀 Features

• shared: Introduce TimerHandle for setTimeout type  -  by @​ilyaliao in #​4801 (319d8)
• useAsyncState: Add executeImmediate with the same type as the promise fn  -  by @​davidglezz in #​4716 (82740)
• useEventSource: Added lastEventId for named events  -  by @​whiteyebrw in #​4791 (f6f0b)
• useFetch: Support for custom abort reason  -  by @​doyuli in #​4820 (44c0b)
• useRefHistory: Add shouldCommit  -  by @​JonathanSchndr, Anthony Fu and Robin in #​4471 (18acf)
• useUrlSearchParams: Add a stringify option for users to provide stringify logic  -  by @​mingXta, Robin and Anthony Fu in #​4773 (6a523)

   🐞 Bug Fixes

• computedWithControl: Allow deeply watching source  -  by @​MetRonnie and Anthony Fu in #​4786 (ffc1a)
• useDevicesList: Check for device availability before requesting permissions  -  by @​ilyaliao in #​4818 (c424f)
• useEventListener: Improve types  -  by @​ArthurDarkstone, liliang18 and @​Alfred-Skyblue in #​4787 (6f565)
• useIdle: Changed the reset call when the initial value is true  -  by @​whiteyebrw in #​4800 (c6469)
• useMouseInElement: Fixing the issue where target element updates were not considered.  -  by @​Codfisher and bgm.cod in #​4782 (04af9)
• useScreenSafeArea: Сhanged initial value update  -  by @​whiteyebrw in #​4789 (ae573)
• useScriptTag: Support passing nonce  -  by @​1-dilikelei and 董梁玮 in #​4753 (57370)
• useScroll: Use mutationObserver to update arrivedState when the DOM is changed  -  by @​andylou0102, AndyLuo, Robin and Anthony Fu in #​4433 (135d5)
• watchIgnorable: Add and export types  -  by @​ArthurDarkstone, liliang18 and Robin in #​4809 (0e10e)

   🏎 Performance

• computedWithControl: Optimize with shallowRef  -  by @​broBinChen and binge_c-admin in #​4826 (2c91a)

    View changes on GitHub

danielroe/provenance-action (danielroe/provenance-action)

v0.1.1

Compare Source

compare changes

🚀 Enhancements

• Add support for bun.lock (#​12)

📖 Documentation

• Use @main constraint for example (237ceea)

❤️ Contributors

• Daniel Roe (@​danielroe)

lint-staged/lint-staged (lint-staged)

v16.2.0

Compare Source

Minor Changes

• #​1615 99eb742 Thanks @​iiroj! - Added a new option --fail-on-changes to make lint-staged exit with code 1 when tasks modify any files, making the precommit hook fail. This is similar to the git diff --exit-code option. Using this flag also implies the --no-revert flag which means any changes made my tasks will be left in the working tree after failing, so that they can be manually staged and the commit tried again.

• #​1611 cd05fd3 Thanks @​rlorenzo! - Added a new option --continue-on-error so that lint-staged will run all tasks to completion even if some of them fail. By default, lint-staded will exit early on the first failure.

• #​1637 82fcc07 Thanks @​iiroj! - Internal lint-staged errors are now thrown and visible in the console output. Previously they were caught with the process exit code set to 1, but not logged. This happens when, for example, there's a syntax error in the lint-staged configuration file.

• #​1647 a5ecc06 Thanks @​iiroj! - Remove debug as a dependency due to recent malware issue; read more at debug-js/debug#1005. Because of this, the DEBUG environment variable is no longer supported — use the --debug to enable debugging

• #​1636 8db2717 Thanks @​iiroj! - Added a new option --hide-unstaged so that lint-staged will hide all unstaged changes to tracked files before running tasks. The changes will be applied back after running the tasks. Note that the combination of flags --hide-unstaged --no-hide-partially-staged isn't meaningful and behaves the same as just --hide-unstaged.

  Thanks to @​ItsNickBarry for the idea and initial implementation in #​1552.

• #​1648 7900b3b Thanks @​iiroj! - Remove lilconfig to reduce reliance on third-party dependencies. It was used to find possible config files outside of those tracked in Git, including from the parent directories. This behavior has been moved directly into lint-staged and should work about the same.

Patch Changes

• #​1633 7f9e485 Thanks @​dependabot! - Bumps listr2 from 9.0.3 to 9.0.4.

• #​1626 99d5a9b Thanks @​iiroj! - Due to recent phishing attacks, for example chalk@5.6.1 was released with malware. To avoid lint-staged's users being at risk the direct dependencies are pinned to exact versions, instead of allowing future patch versions with the caret (^) range.

• #​1588 035bbf2 Thanks @​outslept! - Increase performance by listing staged files and searching for configuration concurrently.

• #​1645 deba3ad Thanks @​iiroj! - Remove chalk as a dependency due to recent malware issue; read more at chalk/chalk#656.

  If you are having trouble with ANSI color codes when using lint-staged, you can try setting either FORCE_COLOR=true or NO_COLOR=true env variables.

v16.1.6

Compare Source

Patch Changes

• #​1610 e93578e Thanks @​iiroj! - Try to improve terminating of subprocess of tasks by using SIGKILL, and only calling pidtree when the the main task process has a known pid.

v16.1.5

Compare Source

Patch Changes

• #​1608 4e3ce22 Thanks @​srsatt! - Detect the git repo's top-level directory correctly when in a worktree.

v16.1.4

Compare Source

Patch Changes

• #​1604 90b37b0 Thanks @​iiroj! - Add another types field to package.json to make even more sure NPM detects that lint-staged includes built-in TypeScript type definitions.

v16.1.3

Compare Source

Patch Changes

• #​1602 7ea700b Thanks @​dword-design! - Add the types field to package.json to make sure NPM detects lint-staged includes built-in TypeScript type definitions.

v16.1.2

Compare Source

Patch Changes

• #​1570 a7c0c88 Thanks @​ItsNickBarry! - When using --diff-filter with the D option to include deleted staged files, lint-staged no longer tries to stage the deleted files, unless they're no longer deleted. Previously this caused an error from git add like fatal: pathspec 'deleted-file' did not match any files.

• 38f942e Thanks @​iiroj! - Removed an extraneous log entry that printed shouldHidePArtiallyStagedFiles to console output.

v16.1.1

Compare Source

Patch Changes

• #​1565 3686977 Thanks @​iiroj! - Lint-staged now explicitly warns about potential data loss when using --no-stash.

• #​1571 02299a9 Thanks @​iiroj! - Function tasks (introduced in v16.0.0) only received the staged files matching the conpmnfigured glob, instead of all staged files.

• #​1563 bc61c74 Thanks @​iiroj! - This version fixes incorrect behavior where unstaged changes were committed when using the --no-stash option. This happened because --no-stash implied --no-hide-partially-staged, meaning unstaged changes to files which also had other staged changes were added to the commit by lint-staged; this is no longer the case.

  The previous (incorrect) behavior can still be achieved by using both options --no-stash --no-hide-partially-staged at the same time.

nuxt-modules/og-image (nuxt-og-image)

v5.1.11

Compare Source

   🐞 Bug Fixes

• Broken dist publishing  -  by @​harlan-zw (24a29)

    View changes on GitHub

v5.1.10

Compare Source

   🐞 Bug Fixes

• Broken getOgImagePath usage  -  by @​harlan-zw (8904f)
• NPM trusted publishing  -  by @​harlan-zw (81e90)

    View changes on GitHub

v5.1.9

Compare Source

   🐞 Bug Fixes

• Maybe resolve nitro path resolution bug  -  by @​harlan-zw (118dd)

    View changes on GitHub

v5.1.8

Compare Source

   🐞 Bug Fixes

• Remove #imports  -  by @​harlan-zw (f2788)
• content: Type broken when augmenting  -  by @​harlan-zw (76b7c)

    View changes on GitHub

v5.1.7

Compare Source

   🐞 Bug Fixes

• Prefer nitro.static over _generate  -  by @​danielroe in #​372 (7a570)

    View changes on GitHub

v5.1.6

Compare Source

   🐞 Bug Fixes

• Explicit sharp dependency usage  -  by @​harlan-zw (9e522)

    View changes on GitHub

v5.1.5

Compare Source

   🐞 Bug Fixes

• Handle undefined link/style in server component response  -  by @​danielroe in #​368 (f8ae4)
• Reworked sharp compatibility checks for JPEG rendering  -  by @​harlan-zw in #​370 (f7bb7)

   🏎 Performance

• Persist font cache between og image versions  -  by @​harlan-zw (3967b)
• Pass SVG data directly to sharp for JPEG's  -  by @​harlan-zw (efcc4)

    View changes on GitHub

pnpm/pnpm (pnpm)

---

Configuration

📅 Schedule: Branch creation - "on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[cloudflare-workers-and-pages]

Deploying dev-mode with    Cloudflare Pages

Latest commit:	d9a3314
Status:	🚫  Build failed.

View logs