chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
@commitlint/cli (source)	19.8.0 -> 19.8.1					devDependencies	patch
@commitlint/config-conventional (source)	19.8.0 -> 19.8.1					devDependencies	patch
@js-basics/vector	2.2.2 -> 2.2.4					dependencies	patch
@nuxt/content (source)	3.5.1 -> 3.6.0					dependencies	minor
@nuxt/eslint (source)	1.3.0 -> 1.4.1					devDependencies	minor
@nuxtjs/i18n (source)	9.5.4 -> 9.5.5					dependencies	patch
@pinia/nuxt (source)	0.11.0 -> 0.11.1					dependencies	patch
@snyk/protect	1.1296.2 -> 1.1297.1					devDependencies	minor
commitlint (source)	19.8.0 -> 19.8.1					devDependencies	patch
eslint (source)	9.26.0 -> 9.28.0					devDependencies	minor
eslint-config-prettier	10.1.2 -> 10.1.5					devDependencies	patch
eslint-plugin-prettier	5.3.1 -> 5.4.1					devDependencies	minor
lint-staged	15.5.1 -> 15.5.2					devDependencies	patch
node (source)	20.19.1 -> 20.19.2						patch
nuxt (source)	3.17.2 -> 3.17.5					dependencies	patch
pinia (source)	3.0.2 -> 3.0.3					dependencies	patch
postcss-custom-media (source)	11.0.5 -> 11.0.6					dependencies	patch
postcss-preset-env (source)	10.1.6 -> 10.2.3					dependencies	minor
stylelint (source)	16.19.1 -> 16.20.0					devDependencies	minor

---

Release Notes

conventional-changelog/commitlint (@​commitlint/cli)

v19.8.1

Compare Source

Bug Fixes

• update dependency tinyexec to v1 (#​4332) (e49449f)

conventional-changelog/commitlint (@​commitlint/config-conventional)

v19.8.1

Compare Source

Note: Version bump only for package @​commitlint/config-conventional

basics/vector (@​js-basics/vector)

v2.2.4

Compare Source

Bug Fixes

• deps: update babel monorepo (9e2978b)

v2.2.3

Compare Source

Bug Fixes

• toCSSVars: set default value for target parameter in toCSSVars method across multiple classes (003b2ae)

nuxt/content (@​nuxt/content)

v3.6.0

Compare Source

Features

• add findPageBreadcrumb, findPageChildren and findPageSiblings utils (#​3393) (c74ec44)
• parser: allow extra transformers to provide components used (#​3355) (baff541)
• source: do not watch for excluded files (2ee1149)
• toggle content heading extraction (#​3400) (f01256a)
• use json schema instead of zod for internal routines (#​3347) (3f2ff74)

Bug Fixes

• add sql_dump file extension (#​3339) (d0ceeb6)
• collections: default values (10f3a06)
• deps: remove optimized brace-expansion from preview module (d5ac591)
• do not escape newlines (#​3320) (eb60ecb)
• module: check modules existence using import (#​3348) (bd84992)
• module: ignore files in content folder in nuxt building (#​3380) (b01e307)
• preview: handle deleted key in object (231ef50)
• templates: populate preview template schema (b7230cd)
• websocket: client url (#​3344) (d67b63b)

nuxt/eslint (@​nuxt/eslint)

v1.4.1

Compare Source

   🐞 Bug Fixes

• Add node: prefix to build-in modules  -  by @​danielroe in https://github.com/nuxt/eslint/issues/579 (8180f)
• Sort imports objects by from + name  -  by @​danielroe in https://github.com/nuxt/eslint/issues/578 (766ae)

    View changes on GitHub

v1.4.0

Compare Source

   🚀 Features

• Update deps  -  by @​antfu (afc42)
• Support type-aware rules, fix #​499  -  by @​antfu in https://github.com/nuxt/eslint/issues/499 (70d23)

    View changes on GitHub

v1.3.1

Compare Source

No significant changes

    View changes on GitHub

nuxt-modules/i18n (@​nuxtjs/i18n)

v9.5.5

Compare Source

   🐞 Bug Fixes

• Validate user options and warn for undesired default values  -  by @​BobbieGoede in https://github.com/nuxt-modules/i18n/issues/3654 (2f90d)

    View changes on GitHub

vuejs/pinia (@​pinia/nuxt)

v0.11.1

Compare Source

snyk/snyk (@​snyk/protect)

v1.1297.1

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

• test: Rollbacked a regression introduced by a change in gradle module resolution in version 1.1297.0 (7991133)

v1.1297.0

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Features

• container: Support scanning container images from tar files without specifying a type (58b0861)
• iac: Improve IaC deployment to avoid on the fly downloads (5108f58)
• sbom: Introduce sbom monitor command (24e96c3)
• test: Improve gradle module resolution (7991133)
• language-server: Introduce explanation of AI fixes in IDEs (74fa322)

Bug Fixes

• container: Fix issue when scanning invalid node manifest files (ceb8020)
• code: Fix hash mismatches for files containing non-UTF-8 content (33d33e9)
• iac: Ensure to use the correct org id when sharing results for v2 (1c4094a)
• iac: Ensure to use target-name (2201f0a)
• sbom: Fix issues when generating sboms based on NuGet .sln (80c43d9)
• test: Fix issues when scanning gradle projects on Windows (11586cc)
• test: Improve error messages when using fail-fast, all-projects and json (a396bd6)
• test: Fix yarn 2 out of sync issues (18aee45)
• test: Fix pnpm out of sync issue for duplicated peer and dev dependencies (2581e16)
• test: Ensure internal dependencies are represented correctly when normalizing Gradle dependencies (c7e2713)
• test: Fix testing composer-based PHP projects (39e3379)
• language-server: Fix and improve issue filtering in IDEs (a474d67)
• language-server: Fix unmanaged C/C++ scans with '—unmanaged' flag in additional parameters (01f53e3)
• language-server: Fix applying Snyk Code AI fixes on the wrong lines (01f53e3)

conventional-changelog/commitlint (commitlint)

v19.8.1

Compare Source

Bug Fixes

• update dependency tinyexec to v1 (#​4332) (e49449f)

eslint/eslint (eslint)

v9.28.0

Compare Source

v9.27.0

Compare Source

prettier/eslint-config-prettier (eslint-config-prettier)

v10.1.5

Compare Source

Patch Changes

• #​332 60fef02 Thanks @​JounQin! - chore: add funding field into package.json

v10.1.4

Compare Source

Patch Changes

• #​328 94b4799 Thanks @​silvenon! - fix(cli): do not crash on no rules configured

v10.1.3

Compare Source

Patch Changes

• #​325 4e95a1d Thanks @​pilikan! - fix: this package is commonjs, align its types correctly

prettier/eslint-plugin-prettier (eslint-plugin-prettier)

v5.4.1

Compare Source

Patch Changes

• #​740 c21521f Thanks @​JounQin! - fix(deps): bump synckit to v0.11.7 to fix potential TypeError: Cannot read properties of undefined (reading 'message') error

v5.4.0

Compare Source

Minor Changes

• #​736 59a0cae Thanks @​yashtech00! - refactor: migrate worker.js to worker.mjs

lint-staged/lint-staged (lint-staged)

v15.5.2

Compare Source

Patch Changes

• #​1544 5561321 Thanks @​YimingIsCOLD! - Correctly handle colon (:) characters in staged filenames.

nodejs/node (node)

v20.19.2

Compare Source

nuxt/nuxt (nuxt)

v3.17.5

Compare Source

3.17.5 is a regularly scheduled patch release.

✅ Upgrading

Our recommendation for upgrading is to run:

npx nuxt upgrade --dedupe

This will deduplicate your lockfile as well, and help ensure that you pull in updates from other dependencies that Nuxt relies on, particularly in the unjs ecosystem.

👉 Changelog

compare changes

🔥 Performance

• nuxt: Replace remaining instance of globby (#​31688)

🩹 Fixes

• nuxt: Export useScriptRybbitAnalytics from script stubs (d275ae1a0)
• nuxt: Remove unneeded pattern from regexp (2954c092c)
• nuxt: Ensure appConfig sources are not duplicated (#​32216)
• nuxt: Wrap slot with h() in ClientOnly (#​30664)
• kit: Ensure template filename uses safe patterns (4372b24dd)
• nuxt: Access asyncData state from nuxt app instance (#​32232)
• nuxt: Make patterns relative to srcDir in buildCache (#​32260)
• nuxt: Return non-existent route component in RouteProvider (#​32266)
• nuxt: Use single asyncData watcher (#​32247)
• vite: Use arrow functions in dynamic imports (#​32285)
• webpack: Use plugin for rollup-compatible dynamic imports (#​32281)

📖 Documentation

• Update addRouteMiddleware path in example (#​32171)
• Narrow link to just middleware (#​32203)
• Use optional chaining in error example (#​32214)
• Give example of using --env-file (29f6392cd)
• Recommend nuxt command consistently (#​32237)
• Fix typos (#​30413)
• Add props to special metadata (#​29708)
• Fix wrong alert with warning in /guide/pages (#​32270)
• Update upgrade guide + roadmap (0040ee5e7)

📦 Build

• nuxt: Ensure cache is typed (33df20d17)

🏡 Chore

• Upgrade webpack dependencies separately (444d60936)
• Apply lint fixes (221ce99eb)
• Add missing dependency (720170dea)

✅ Tests

• Add regression test for useAsyncData + transition (29f7c8cb4)
• Ensure builder tests run sequentially (defa32829)

❤️ Contributors

• Daniel Roe (@​danielroe)
• Julien Huang (@​huang-julien)
• Hugo Richard (@​HugoRCD)
• mxmxmmgg (@​mxmxmmgg)
• xjccc (@​xjccc)
• Horu (@​HigherOrderLogic)
• Baptiste Leproux (@​larbish)
• Phojie Rengel (@​phojie)
• duolaameng (@​1411430556)
• David Stack (@​davidstackio)

v3.17.4

Compare Source

3.17.4 is a regularly-scheduled patch release.

✅ Upgrading

Our recommendation for upgrading is to run:

npx nuxi@latest upgrade --dedupe

This will deduplicate your lockfile as well, and help ensure that you pull in updates from other dependencies that Nuxt relies on, particularly in the unjs ecosystem.

👉 Changelog

compare changes

🔥 Performance

• nuxt: Use Set for circular dep plugin (#​32110)
• Refactor Array.includes checks to use Sets (#​32133)
• nuxt: Use shallowRef for primitive values (#​32152)
• nuxt: Skip route rules processing for empty child array (#​32166)
• nuxt: Use Intl.Collator instead of localeCompare (#​32167)

🩹 Fixes

• nuxt: Do not await lazy asyncData inside <ClientOnly> (#​32101)
• nuxt: Respect cachedData with multiple asyncData calls (#​32099)
• nuxt: Clear async data after a tick (#​32096)
• nuxt: Support reactive keys in useLazyAsyncData (#​32092)
• rspack: Use ts-checker-rspack-plugin (#​32115)
• nuxt: Clear previous head in island-renderer (#​32100)
• nuxt: Handle virtual files prefixed with / (#​32129)
• schema: Remove nitro options from DeepPartial (#​31990)
• nuxt: Ensure legacy async data remains reactive (#​32134)
• nuxt: Pass attrs down to single child of <ClientOnly> (#​32131)
• nuxt: Fix merge conflicts (7044450d4)
• nuxt: Clone vnode when passing attrs down to client-only (b3acf0c78)
• vite: Do not replace global with globalThis (#​32130)
• nuxt: Suppress client-side errors by crawlers (#​32137)
• nuxt: Use fresh route when <NuxtLayout> first renders (#​24673)
• nuxt: Add additional logging when skipping error page for bot (68c270083)
• nuxt: Add watch paths outside srcDir to parcel strategy (#​32139)

📖 Documentation

• Use emphasis instead of quotes (#​32078)
• Update useNuxtData default return to undefined (#​32054)
• Capitalise headings (#​32095)
• Prefix imports.dirs with alias (0dbf314d9)
• Mention node v20 is minimum requirement for nuxt setup (#​32148)
• Use more descriptive link text (d0b1b9d35)

🏡 Chore

• Remove unneeded JSdoc comments (#​32090)
• Use vitest workspaces for tests (#​32121)

✅ Tests

• Add universal routing tests + clean up output (64178b6f4)
• nuxt: Add unit tests for watch strategies (#​32138)
• Resolve watch path (8fb562c04)
• Use fake timers instead of setTimeout mock (#​32142)

🤖 CI

• Rename workflow (835098fcb)
• Skip codeql event on merge_group events (46c259664)

❤️ Contributors

• John Tanzer (@​moshetanzer)
• Daniel Roe (@​danielroe)
• Robin (@​OrbisK)
• @​beer (@​iiio2)
• Julien Huang (@​huang-julien)
• हिमांशु (@​CodeMan62)
• Norbiros (@​Norbiros)
• watsonhaw5566 (@​watsonhaw5566)
• xjccc (@​xjccc)

v3.17.3

Compare Source

3.17.3 is a regularly-scheduled patch release.

✅ Upgrading

Our recommendation for upgrading is to run:

npx nuxi@latest upgrade --dedupe

This will deduplicate your lockfile as well, and help ensure that you pull in updates from other dependencies that Nuxt relies on, particularly in the unjs ecosystem.

👉 Changelog

compare changes

🔥 Performance

• nuxt: Pre-calculate extension glob before app resolution (#​32052)
• nuxt: Improve islands client components chunks (#​32015)

🩹 Fixes

• nuxt: Preload async layouts (#​32002)
• nuxt: Handle File within FormData (#​32013)
• schema: Respect user-provided ignore patterns (#​32020)
• nuxt: Allow loading virtual files with query params (#​32022)
• nuxt: Don't use reactive key for useFetch with watch: false (#​32019)
• nuxt: Do not clear data if custom getCachedData is provided (#​32003)
• nuxt: Provide nuxtApp for asyncData functions run on server (#​32038)
• vite: Strip queries when skipping vite transform middleware (#​32041)
• nuxt: Sort hash sources and files (#​32048)
• nuxt: Do not suppress chunk import error (#​32064)

💅 Refactors

• nuxt: Directly access initialised asyncData (e779d6cd5)

📖 Documentation

• Fix module initialization command for pnpm (#​32024)
• Provide nuxt installation guide with deno (#​32029)
• Add codeblock closing tag (#​32043)
• Tweak nuxt doc (#​32063)
• Add space between sentences (#​32069)

🤖 CI

• Convert bug/enhancement labels to issue types (3ff743fe0)
• Update payload for issue types (791e5f443)

❤️ Contributors

• Ryota Watanabe (@​wattanx)
• Julien Huang (@​huang-julien)
• John Tanzer (@​moshetanzer)
• @​beer (@​iiio2)
• Daniel Roe (@​danielroe)
• xjccc (@​xjccc)
• Max (@​onmax)

csstools/postcss-plugins (postcss-custom-media)

v11.0.6

Compare Source

May 27, 2025

• Updated @csstools/css-tokenizer to 3.0.4 (patch)
• Updated @csstools/css-parser-algorithms to 3.0.5 (patch)
• Updated @csstools/cascade-layer-name-parser to 2.0.5 (patch)
• Updated @csstools/media-query-list-parser to 4.0.3 (patch)

csstools/postcss-plugins (postcss-preset-env)

v10.2.3

Compare Source

June 11, 2025

• Updated @csstools/postcss-is-pseudo-class to 5.0.3 (patch)

v10.2.2

Compare Source

June 10, 2025

• Updated @csstools/postcss-is-pseudo-class to 5.0.2 (patch)

v10.2.1

Compare Source

June 5, 2025

• Updated postcss-custom-properties to 14.0.6 (patch)

v10.2.0

Compare Source

May 27, 2025

• Added @csstools/postcss-color-mix-variadic-function-arguments Check the plugin README for usage details.
• Updated cssdb to 8.3.0 (patch)
• Updated @csstools/postcss-progressive-custom-properties to 4.1.0 (minor)
• Updated @csstools/css-tokenizer to 3.0.4 (patch)
• Updated postcss-custom-properties to 14.0.5 (patch)

stylelint/stylelint (stylelint)

v16.20.0

Compare Source

It fixes 2 bugs with the built-in rules.

• Fixed: function-url-no-scheme-relative false negatives for @import (#​8576) (@​pamelalozano16).
• Fixed: shorthand-property-no-redundant-values false negatives for additional radius (#​8539) (@​ryo-manba).

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.