Skip to content

chore(deps): bump dev dependencies and CI actions#98

Merged
kellenmurphy merged 21 commits into
mainfrom
chore/dependabot-batch-2026-06
Jun 3, 2026
Merged

chore(deps): bump dev dependencies and CI actions#98
kellenmurphy merged 21 commits into
mainfrom
chore/dependabot-batch-2026-06

Conversation

@kellenmurphy
Copy link
Copy Markdown
Owner

@kellenmurphy kellenmurphy commented Jun 3, 2026

Combines all 11 open Dependabot PRs into a single batch to avoid 11 individual rebase/merge cycles (branch protection requires "branches up to date", so sequential merges each invalidate the rest).

All updates are dev dependencies or CI actions — nothing touches runtime dependencies. All patch/minor.

GitHub Actions

npm devDependencies

Built by merging each Dependabot branch; lockfile conflicts resolved as union-of-bumps (each package's integrity block taken from the branch that bumped it). Every resolved package-lock.json version matches its package.json range.

Merging this supersedes #87#97; Dependabot will auto-close them.

dependabot Bot and others added 21 commits June 3, 2026 16:29
@dependabot
chore(deps): bump actions/checkout from 6.0.2 to 6.0.3
74fd3c9 
Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.2 to 6.0.3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@de0fac2...df4cb1c)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 6.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps): bump astral-sh/setup-uv from 8.1.0 to 8.2.0
42d8bc8 
Bumps [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) from 8.1.0 to 8.2.0.
- [Release notes](https://github.com/astral-sh/setup-uv/releases)
- [Commits](astral-sh/setup-uv@0880764...fac544c)

---
updated-dependencies:
- dependency-name: astral-sh/setup-uv
  dependency-version: 8.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps): bump github/codeql-action from 4.36.0 to 4.36.1
cd2397b 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.36.0 to 4.36.1.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@7211b7c...87557b9)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.36.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps-dev): bump the svelte group with 3 updates
8466487 
Bumps the svelte group with 3 updates: [@sveltejs/kit](https://github.com/sveltejs/kit/tree/HEAD/packages/kit), [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) and [svelte-check](https://github.com/sveltejs/language-tools).


Updates `@sveltejs/kit` from 2.61.1 to 2.62.0
- [Release notes](https://github.com/sveltejs/kit/releases)
- [Changelog](https://github.com/sveltejs/kit/blob/main/packages/kit/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/kit/commits/@sveltejs/kit@2.62.0/packages/kit)

Updates `svelte` from 5.56.0 to 5.56.1
- [Release notes](https://github.com/sveltejs/svelte/releases)
- [Changelog](https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/svelte/commits/svelte@5.56.1/packages/svelte)

Updates `svelte-check` from 4.4.8 to 4.5.0
- [Release notes](https://github.com/sveltejs/language-tools/releases)
- [Commits](https://github.com/sveltejs/language-tools/compare/svelte-check@4.4.8...svelte-check@4.5.0)

---
updated-dependencies:
- dependency-name: "@sveltejs/kit"
  dependency-version: 2.62.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: svelte
- dependency-name: svelte
  dependency-version: 5.56.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: svelte
- dependency-name: svelte-check
  dependency-version: 4.5.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: svelte
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps-dev): bump wrangler in the cloudflare group
1ec1644 
Bumps the cloudflare group with 1 update: [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler).


Updates `wrangler` from 4.95.0 to 4.97.0
- [Release notes](https://github.com/cloudflare/workers-sdk/releases)
- [Commits](https://github.com/cloudflare/workers-sdk/commits/wrangler@4.97.0/packages/wrangler)

---
updated-dependencies:
- dependency-name: wrangler
  dependency-version: 4.97.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: cloudflare
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps-dev): bump vitest from 4.1.7 to 4.1.8
2fcee3a 
Bumps [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) from 4.1.7 to 4.1.8.
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Changelog](https://github.com/vitest-dev/vitest/blob/main/docs/releases.md)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.8/packages/vitest)

---
updated-dependencies:
- dependency-name: vitest
  dependency-version: 4.1.8
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps-dev): bump prettier-plugin-svelte from 4.0.1 to 4.1.0
5441635 
Bumps [prettier-plugin-svelte](https://github.com/sveltejs/prettier-plugin-svelte) from 4.0.1 to 4.1.0.
- [Release notes](https://github.com/sveltejs/prettier-plugin-svelte/releases)
- [Changelog](https://github.com/sveltejs/prettier-plugin-svelte/blob/main/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/prettier-plugin-svelte/compare/prettier-plugin-svelte@4.0.1...prettier-plugin-svelte@4.1.0)

---
updated-dependencies:
- dependency-name: prettier-plugin-svelte
  dependency-version: 4.1.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps-dev): bump vite from 8.0.14 to 8.0.16
75bdbec 
Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 8.0.14 to 8.0.16.
- [Release notes](https://github.com/vitejs/vite/releases)
- [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite/commits/v8.0.16/packages/vite)

---
updated-dependencies:
- dependency-name: vite
  dependency-version: 8.0.16
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps-dev): bump typescript-eslint from 8.60.0 to 8.60.1
1c8b48d 
Bumps [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) from 8.60.0 to 8.60.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.60.1/packages/typescript-eslint)

---
updated-dependencies:
- dependency-name: typescript-eslint
  dependency-version: 8.60.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps-dev): bump @vitest/coverage-v8 from 4.1.7 to 4.1.8
f4bb02e 
Bumps [@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8) from 4.1.7 to 4.1.8.
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Changelog](https://github.com/vitest-dev/vitest/blob/main/docs/releases.md)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.8/packages/coverage-v8)

---
updated-dependencies:
- dependency-name: "@vitest/coverage-v8"
  dependency-version: 4.1.8
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps-dev): bump eslint-plugin-svelte from 3.18.0 to 3.19.0
fee8ef6 
Bumps [eslint-plugin-svelte](https://github.com/sveltejs/eslint-plugin-svelte/tree/HEAD/packages/eslint-plugin-svelte) from 3.18.0 to 3.19.0.
- [Release notes](https://github.com/sveltejs/eslint-plugin-svelte/releases)
- [Changelog](https://github.com/sveltejs/eslint-plugin-svelte/blob/main/packages/eslint-plugin-svelte/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/eslint-plugin-svelte/commits/eslint-plugin-svelte@3.19.0/packages/eslint-plugin-svelte)

---
updated-dependencies:
- dependency-name: eslint-plugin-svelte
  dependency-version: 3.19.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@kellenmurphy
Merge remote-tracking branch 'origin/dependabot/github_actions/astral…
ac35ba2 
…-sh/setup-uv-8.2.0' into chore/dependabot-batch-2026-06
@kellenmurphy
Merge remote-tracking branch 'origin/dependabot/github_actions/github…
f70ba9b 
…/codeql-action-4.36.1' into chore/dependabot-batch-2026-06
@kellenmurphy
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/svelte-f…
b699832 
…22c5a8db3' into chore/dependabot-batch-2026-06
@kellenmurphy
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/cloudfla…
c8a694a 
…re-0c92b164ce' into chore/dependabot-batch-2026-06
@kellenmurphy
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/vitest-4…
d1bb620 
….1.8' into chore/dependabot-batch-2026-06

# Conflicts:
#	package-lock.json
#	package.json
@kellenmurphy
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/prettier…
77c24a7 
…-plugin-svelte-4.1.0' into chore/dependabot-batch-2026-06

# Conflicts:
#	package-lock.json
#	package.json
@kellenmurphy
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/vite-8.0…
f2e0e12 
….16' into chore/dependabot-batch-2026-06

# Conflicts:
#	package-lock.json
#	package.json
@kellenmurphy
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/typescri…
60f0d2b 
…pt-eslint-8.60.1' into chore/dependabot-batch-2026-06

# Conflicts:
#	package-lock.json
#	package.json
@kellenmurphy
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/vitest/c…
d3da6f4 
…overage-v8-4.1.8' into chore/dependabot-batch-2026-06
@kellenmurphy
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/eslint-p…
3075ada 
…lugin-svelte-3.19.0' into chore/dependabot-batch-2026-06
@codecov
Copy link
Copy Markdown

codecov Bot commented Jun 3, 2026

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

@kellenmurphy kellenmurphy merged commit f2a6d66 into main Jun 3, 2026
12 checks passed
@kellenmurphy kellenmurphy deleted the chore/dependabot-batch-2026-06 branch June 3, 2026 21:33
This was referenced Jun 3, 2026
Closed
Closed
Closed
Closed
Closed
Closed
This was referenced Jun 3, 2026
Closed
Closed
Closed
Closed
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@kellenmurphy