chore(deps): bump the npm-security-and-patches group across 1 directory with 8 updates

[dependabot]

Bumps the npm-security-and-patches group with 7 updates in the / directory:

Package	From	To
@mui/icons-material	9.0.1	9.1.1
react	19.2.6	19.2.7
@types/react	19.2.15	19.2.17
react-dom	19.2.6	19.2.7
react-router-dom	7.15.1	7.18.0
eslint-plugin-react-refresh	0.5.2	0.5.3
typescript-eslint	8.60.0	8.61.1

Updates @mui/icons-material from 9.0.1 to 9.1.1

Release notes

Sourced from @​mui/icons-material's releases.

v9.1.0

A big thanks to the 15 contributors who made this release possible. Here are some highlights ✨:

• ⚙️ Support for the prefers-reduced-motion setting.
• ♿️ Improved support for Windows High Contrast mode with the enhanceHighContrast theme wrapper.

@mui/material@9.1.0

• [autocomplete] Enable clearing highlight when mouse leaves popup (#48354) @​mj12albert
• [autocomplete] Fix freeSolo controlled values cleared by initial null (#48611) @​mj12albert
• [autocomplete] Fix item removal when it receives focus from VoiceOver before using Backspace (#48572) @​silviuaavram
• [autocomplete] Fix resetHighlightOnMouseLeave JSdoc (#48536) @​mj12albert
• [autocomplete] Guard against null inputRef during unmount (#48617) @​noam3127
• [badge] Add aria-hidden to badge content and polish docs demos (#48471) @​mj12albert
• [badge] Use inline CSS variables for anchorOrigin/overlap positioning (#48549) @​siriwatknp
• [button] Fix customized flex gap styles (#48542) @​mj12albert
• [dialog] Fix unwanted DialogPaper focus ring (#48535) @​mj12albert
• [focus trap] Fix incorrect tab order when tabIndex >= 1 (#48546) @​mj12albert
• [progress] Show runtime errors only once (#48591) @​silviuaavram
• [select] Allow spacebar to select elements (#48615) @​silviuaavram
• [select] Support typeahead when closed (#48563) @​mj12albert
• [step button] Choose higher contrast ripple color for dark mode focus (#48612) @​silviuaavram
• [stepper] Include StepConnector inside Step element (#48492) @​silviuaavram
• [stepper] Proper support for vertical alternativeLabel (#48485) @​silviuaavram
• [tabs] Fix React 18 roving tabindex and dedupe invalid-value warning (#48605) @​Janpot
• [theme] Add HighContrast theme enhancer (#48319) @​silviuaavram
• [timeline item] Fix extra ::before spacing when TimelineOppositeContent is present (#46663) @​tyalau
• [tooltip] Prevent stuck-open tooltip when child becomes disabled (#48606) @​Janpot
• [transitions] Custom Transition component (#48325) @​mj12albert
• [transitions] Support prefers-reduced-motion (#48357) @​mj12albert

@mui/utils@9.1.0

• [utils] Prevent prototype pollution in fastDeepAssign (#48580) @​Janpot

Docs

• [docs] Add function slotProps documentation (#48574) @​mj12albert
• [docs] Clarify styled-components version compatibility (#48533) @​nightt5879
• [docs] Fix broken URLs (#48520) @​oliviertassinari
• [docs] Fix invalid JSON in Zed MCP setup example (#48490) @​pavan-sh
• [docs] Mention release version for enhanceHighContrast (#48609) @​silviuaavram
• [docs] Remove outdated MUI X v8 notification (#48600) @​cherniavskii
• [docs] Remove redundant enhanceHighContrast information (#48632) @​silviuaavram
• [docs-infra] Decrease loaded bundle size on docs (#48584) @​brijeshb42
• [docs-infra] Drop multi-locale plumbing from API pages (#48370) @​brijeshb42
• [docs-infra] Fix Cookie banner heading (#48529) @​oliviertassinari
• [docs-infra] Infinitely cache all static assets (#48627) @​brijeshb42
• [docs-infra] Remove outdated noSEOadvantage entries (#48527) @​oliviertassinari
• [docs-infra] Restore build-only invariant throws via NEXT_RUNTIME guard (#48475) @​Janpot

... (truncated)

Changelog

Sourced from @​mui/icons-material's changelog.

9.1.1

Jun 11, 2026

A big thanks to the 9 contributors who made this release possible.

@mui/material@9.1.1

• [Autocomplete] Update fullWidth prop documentation (#48626) @​vipin8797
• [ButtonBase] Fix focus ripple lingering after blur (#48650) @​siriwatknp
• [InitColorSchemeScript] Server-render in tests for React 19.3 (#48604) @​Janpot
• [Transition] Mount child in same commit when opening from unmounted (#48649) @​siriwatknp

@mui/styled-engine@9.1.1

• [styled-engine] Prevent enableCssLayer styles from being overridden by unlayered styles (#48603) @​Janpot

Docs

• Send SOURCE to Brevo on newsletter subscribe (#48633) @​aemartos
• fix TypeScript heading capitalization (#48619) @​ifer47
• Remove outdated security section (#48628) @​oliviertassinari
• [legal] Update EULA links on website (#48642) @​rluzists1

Core

• Update dependencies to resolve Dependabot security alerts (#48641) @​Janpot
• [core-docs] Pin StackBlitz demo vite to v7 and plugin-react to v5 (#48643) @​Janpot
• [code-infra] Port codebase to use tsgo (#48616) @​brijeshb42
• [docs-infra] Fix immutable cache headers for /_next/static assets (#48655) @​brijeshb42
• [docs-infra] Run link checker during docs build instead of as separate CI step (#48634) @​Janpot
• [docs-infra] Support turbopack for docs (#48569) @​brijeshb42
• [test] Cover docs landing-page composites with Argos (#48589) @​LukasTy

All contributors of this release in alphabetical order: @​aemartos, @​brijeshb42, @​ifer47, @​Janpot, @​LukasTy, @​oliviertassinari, @​rluzists1, @​siriwatknp, @​vipin8797

9.1.0

Jun 8, 2026

A big thanks to the 15 contributors who made this release possible. Here are some highlights ✨:

• ⚙️ Support for the prefers-reduced-motion setting.
• ♿️ Improved support for Windows High Contrast mode with the enhanceHighContrast theme wrapper.

@mui/material@9.1.0

... (truncated)

Commits

• 0f9b43f [release] v9.1.1 (#48656)
• ef607d7 [code-infra] Port codebase to use tsgo (#48616)
• a389a2d [release] v9.1.0 (#48620)
• a34a94d [docs] Use the standard license header preferred by OSI and GitHub
• a11407d Bump react monorepo to 19.2.6 (#48511)
• ea0f8b9 Bump code-infra:devDependencies (#48401)
• 35b5b62 Bump react monorepo to 19.2.5 (#48406)
• See full diff in compare view

Updates @mui/material from 9.0.1 to 9.1.1

Release notes

Sourced from @​mui/material's releases.

v9.1.0

A big thanks to the 15 contributors who made this release possible. Here are some highlights ✨:

• ⚙️ Support for the prefers-reduced-motion setting.
• ♿️ Improved support for Windows High Contrast mode with the enhanceHighContrast theme wrapper.

@mui/material@9.1.0

• [autocomplete] Enable clearing highlight when mouse leaves popup (#48354) @​mj12albert
• [autocomplete] Fix freeSolo controlled values cleared by initial null (#48611) @​mj12albert
• [autocomplete] Fix item removal when it receives focus from VoiceOver before using Backspace (#48572) @​silviuaavram
• [autocomplete] Fix resetHighlightOnMouseLeave JSdoc (#48536) @​mj12albert
• [autocomplete] Guard against null inputRef during unmount (#48617) @​noam3127
• [badge] Add aria-hidden to badge content and polish docs demos (#48471) @​mj12albert
• [badge] Use inline CSS variables for anchorOrigin/overlap positioning (#48549) @​siriwatknp
• [button] Fix customized flex gap styles (#48542) @​mj12albert
• [dialog] Fix unwanted DialogPaper focus ring (#48535) @​mj12albert
• [focus trap] Fix incorrect tab order when tabIndex >= 1 (#48546) @​mj12albert
• [progress] Show runtime errors only once (#48591) @​silviuaavram
• [select] Allow spacebar to select elements (#48615) @​silviuaavram
• [select] Support typeahead when closed (#48563) @​mj12albert
• [step button] Choose higher contrast ripple color for dark mode focus (#48612) @​silviuaavram
• [stepper] Include StepConnector inside Step element (#48492) @​silviuaavram
• [stepper] Proper support for vertical alternativeLabel (#48485) @​silviuaavram
• [tabs] Fix React 18 roving tabindex and dedupe invalid-value warning (#48605) @​Janpot
• [theme] Add HighContrast theme enhancer (#48319) @​silviuaavram
• [timeline item] Fix extra ::before spacing when TimelineOppositeContent is present (#46663) @​tyalau
• [tooltip] Prevent stuck-open tooltip when child becomes disabled (#48606) @​Janpot
• [transitions] Custom Transition component (#48325) @​mj12albert
• [transitions] Support prefers-reduced-motion (#48357) @​mj12albert

@mui/utils@9.1.0

• [utils] Prevent prototype pollution in fastDeepAssign (#48580) @​Janpot

Docs

• [docs] Add function slotProps documentation (#48574) @​mj12albert
• [docs] Clarify styled-components version compatibility (#48533) @​nightt5879
• [docs] Fix broken URLs (#48520) @​oliviertassinari
• [docs] Fix invalid JSON in Zed MCP setup example (#48490) @​pavan-sh
• [docs] Mention release version for enhanceHighContrast (#48609) @​silviuaavram
• [docs] Remove outdated MUI X v8 notification (#48600) @​cherniavskii
• [docs] Remove redundant enhanceHighContrast information (#48632) @​silviuaavram
• [docs-infra] Decrease loaded bundle size on docs (#48584) @​brijeshb42
• [docs-infra] Drop multi-locale plumbing from API pages (#48370) @​brijeshb42
• [docs-infra] Fix Cookie banner heading (#48529) @​oliviertassinari
• [docs-infra] Infinitely cache all static assets (#48627) @​brijeshb42
• [docs-infra] Remove outdated noSEOadvantage entries (#48527) @​oliviertassinari
• [docs-infra] Restore build-only invariant throws via NEXT_RUNTIME guard (#48475) @​Janpot

... (truncated)

Changelog

Sourced from @​mui/material's changelog.

9.1.1

Jun 11, 2026

A big thanks to the 9 contributors who made this release possible.

@mui/material@9.1.1

• [Autocomplete] Update fullWidth prop documentation (#48626) @​vipin8797
• [ButtonBase] Fix focus ripple lingering after blur (#48650) @​siriwatknp
• [InitColorSchemeScript] Server-render in tests for React 19.3 (#48604) @​Janpot
• [Transition] Mount child in same commit when opening from unmounted (#48649) @​siriwatknp

@mui/styled-engine@9.1.1

• [styled-engine] Prevent enableCssLayer styles from being overridden by unlayered styles (#48603) @​Janpot

Docs

• Send SOURCE to Brevo on newsletter subscribe (#48633) @​aemartos
• fix TypeScript heading capitalization (#48619) @​ifer47
• Remove outdated security section (#48628) @​oliviertassinari
• [legal] Update EULA links on website (#48642) @​rluzists1

Core

• Update dependencies to resolve Dependabot security alerts (#48641) @​Janpot
• [core-docs] Pin StackBlitz demo vite to v7 and plugin-react to v5 (#48643) @​Janpot
• [code-infra] Port codebase to use tsgo (#48616) @​brijeshb42
• [docs-infra] Fix immutable cache headers for /_next/static assets (#48655) @​brijeshb42
• [docs-infra] Run link checker during docs build instead of as separate CI step (#48634) @​Janpot
• [docs-infra] Support turbopack for docs (#48569) @​brijeshb42
• [test] Cover docs landing-page composites with Argos (#48589) @​LukasTy

All contributors of this release in alphabetical order: @​aemartos, @​brijeshb42, @​ifer47, @​Janpot, @​LukasTy, @​oliviertassinari, @​rluzists1, @​siriwatknp, @​vipin8797

9.1.0

Jun 8, 2026

A big thanks to the 15 contributors who made this release possible. Here are some highlights ✨:

• ⚙️ Support for the prefers-reduced-motion setting.
• ♿️ Improved support for Windows High Contrast mode with the enhanceHighContrast theme wrapper.

@mui/material@9.1.0

... (truncated)

Commits

• 0f9b43f [release] v9.1.1 (#48656)
• bfd57b6 [ButtonBase] Fix focus ripple lingering after blur (#48650)
• aa5e12d [Transition] Mount child in same commit when opening from unmounted (#48649)
• 7c749df [Autocomplete] Update fullWidth prop documentation (#48626)
• 0798f38 Update dependencies to resolve Dependabot security alerts (#48641)
• ef607d7 [code-infra] Port codebase to use tsgo (#48616)
• 43bd37e [InitColorSchemeScript] Server-render in tests for React 19.3 (#48604)
• a389a2d [release] v9.1.0 (#48620)
• 19d59a2 [internal] Remove outdated rel values on target=_blank
• 41b68b8 [transitions] Support prefers-reduced-motion (#48357)
• Additional commits viewable in compare view

Updates react from 19.2.6 to 19.2.7

Release notes

Sourced from react's releases.

19.2.7 (June 1st, 2026)

React Server Components

• Fixed missing FormData entries in Server Actions which regressed in 19.2.6 (#36566 by @​unstubbable)

Commits

• 6117d7c Version 19.2.7 (#36591)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for react since your current version.

Updates @types/react from 19.2.15 to 19.2.17

Commits

• See full diff in compare view

Updates react-dom from 19.2.6 to 19.2.7

Release notes

Sourced from react-dom's releases.

19.2.7 (June 1st, 2026)

React Server Components

• Fixed missing FormData entries in Server Actions which regressed in 19.2.6 (#36566 by @​unstubbable)

Commits

• 6117d7c Version 19.2.7 (#36591)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for react-dom since your current version.

Updates react-router-dom from 7.15.1 to 7.18.0

Changelog

Sourced from react-router-dom's changelog.

v7.18.0

Patch Changes

• Updated dependencies:
  • react-router@7.18.0

v7.17.0

Patch Changes

• Updated dependencies:
  • react-router@7.17.0

v7.16.0

Patch Changes

• Remove stale/invalid unpkg field from package.json. This was removed from other packages with the release of v7 but missed in the react-router-dom re-export package (#15075)
• Updated dependencies:
  • react-router@7.16.0

Commits

• 6fb1e79 Release v7.18.0 (#15187)
• 195a0d0 Release v7.17.0 (#15145)
• 8984d23 Release v7.16.0 (#15105)
• 3ed77af chore: format
• e96962b fix: remove stale unpkg field from react-router-dom (#15075)
• See full diff in compare view

Updates @types/react from 19.2.15 to 19.2.17

Commits

• See full diff in compare view

Updates eslint-plugin-react-refresh from 0.5.2 to 0.5.3

Release notes

Sourced from eslint-plugin-react-refresh's releases.

v0.5.3

• Fix check for non component class exported via export { } #110 (fixes #109)

Changelog

Sourced from eslint-plugin-react-refresh's changelog.

0.5.3

• Fix check for non component class exported via export { } #110 (fixes #109)

Commits

• 00818e9 v0.5.3 [publish]
• 202fc4a Fix PascalCase class exported via export { Name } incorrectly treated as Re...
• See full diff in compare view

Updates typescript-eslint from 8.60.0 to 8.61.1

Release notes

Sourced from typescript-eslint's releases.

v8.61.1

8.61.1 (2026-06-15)

🩹 Fixes

• eslint-plugin: [consistent-indexed-object-style] do not remove comments when fixing (#12396, #10577)
• eslint-plugin: [no-unnecessary-type-assertion] avoid false positive for template literal expressions (#12281)
• eslint-plugin: [no-unnecessary-type-assertion] wrap object literal in parens when removing TSTypeAssertion in arrow body (#12394, #12393)
• eslint-plugin: [no-unnecessary-boolean-literal-compare] fix precedence bug in autofix (#12413)
• eslint-plugin: [no-unnecessary-template-expression] respect ECMAScript line terminators (#12388)

❤️ Thank You

• Anas @​anasm266
• Deftera @​Deftera186
• Kirk Waiblinger @​kirkwaiblinger
• lumir
• Sarath Francis @​sarathfrancis90

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

v8.61.0

8.61.0 (2026-06-08)

🚀 Features

• ast-spec: change type of UnaryExpression.prefix to always true (#12372)
• ast-spec: tighten types of ArrowFunction, YieldExpression, TSTypePredicate (#12373)

🩹 Fixes

• rule-schema-to-typescript-types: respect ECMAScript line terminators (#12374)

❤️ Thank You

• Kirk Waiblinger @​kirkwaiblinger
• lumir

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

v8.60.1

8.60.1 (2026-06-01)

🩹 Fixes

• eslint-plugin: respect ECMAScript line terminators in ts-comment rules (#12352)

... (truncated)

Changelog

Sourced from typescript-eslint's changelog.

8.61.1 (2026-06-15)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

8.61.0 (2026-06-08)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

8.60.1 (2026-06-01)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Commits

• aaad718 chore(release): publish 8.61.1
• 16a5b24 chore(release): publish 8.61.0
• 4f84a69 chore(release): publish 8.60.1
• 1849b53 chore: typecheck using tsgo (#12139)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions