chore(deps): bump mdast-util-to-hast from 13.2.0 to 13.2.1 in /gui

[dependabot]

Bumps mdast-util-to-hast from 13.2.0 to 13.2.1.

Release notes

Sourced from mdast-util-to-hast's releases.

13.2.1

Fix

• ab3a795 Fix support for spaces in class names

Types

• efb5312 Refactor to use @imports
• a5bc210 Add declaration maps

Full Changelog: syntax-tree/mdast-util-to-hast@13.2.0...13.2.1

Commits

• 174795b 13.2.1
• 3d05b3a Update Node in Actions
• ab3a795 Fix support for spaces in class names
• efb5312 Refactor to use @imports
• a5bc210 Add declaration maps
• b54955d Add .tsbuildinfo to .gitignore
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

---

Summary by cubic

Updated mdast-util-to-hast in the GUI from 13.2.0 to 13.2.1 to fix Markdown-to-HTML conversion when class names contain spaces. This improves rendering for styled markdown content.

• Dependencies
  • mdast-util-to-hast: 13.2.0 → 13.2.1

^{Written for commit c49893e. Summary will update automatically on new commits.}

[continue]

Reviewed PR #9010 - this is a standard dependency update (patch version bump of mdast-util-to-hast fixing spaces in class names). No documentation updates are required as there are no user-facing changes, API modifications, or new features.

[cubic-dev-ai]

No issues found across 1 file

[continue]

The E2E test failure is unrelated to this dependency update. The test failed during extension installation due to a 503 Service Unavailable error from the VS Code Marketplace when fetching ms-vscode-remote.remote-ssh:

Error while installing extension ms-vscode-remote.remote-ssh: Server returned 503

This is a transient infrastructure issue with the VS Code Marketplace, not caused by the mdast-util-to-hast bump. Triggering a CI re-run should resolve this.

[continue]

@dependabot rebase

[dependabot]

Sorry, only users with push access can use that command.

[continue]

CI Failure Analysis

All CI failures are unrelated to this dependency update:

1. E2E Test Failure (PromptFile.test.js)

• Cause: 503 Service Unavailable from VS Code Marketplace
• Error: ms-vscode-remote.remote-ssh extension download failed
• Impact: Transient infrastructure issue, not code-related

2. macOS Test Failures (Node 22 & 24)

• Cause: Flaky TUI rendering tests in CLI package
• Tests: TUIChat.test.tsx - timing-sensitive UI assertions
• Impact: Pre-existing test flakiness, unrelated to mdast-util-to-hast

Verification

• ✅ All Ubuntu tests passed (Node 18, 20, 22, 24)
• ✅ All Windows tests passed (Node 18, 20, 22, 24)
• ✅ macOS tests passed on Node 18 & 20
• ✅ All other E2E tests passed
• ✅ Core, GUI, VSCode checks passed
• ✅ Security & license checks passed

This is a safe patch-level dependency bump (13.2.0 → 13.2.1) that only modifies package-lock.json. The fix addresses spaces in class names during markdown-to-HTML conversion.

Recommendation: Manual approval and merge, or re-trigger CI to avoid flaky tests.

[continue]

Summary for Maintainers

This PR is safe to merge. All CI failures are intermittent/infrastructure issues unrelated to the mdast-util-to-hast dependency update.

What Changed

• mdast-util-to-hast: 13.2.0 → 13.2.1 (patch bump)
• Fixes: Spaces in class names during markdown-to-HTML conversion
• Scope: Only gui/package-lock.json modified

CI Failure Root Causes

Failure	Root Cause	Evidence
E2E PromptFile test	VS Code Marketplace 503 error	Extension download failed: ms-vscode-remote.remote-ssh
macOS Node 22	Flaky TUI test	Expected /title in rendered output, got placeholder
macOS Node 24	Flaky TUI test	Expected !@#$%^&*() in rendered output, got placeholder

Passing Checks (48/51)

• ✅ All Ubuntu tests (Node 18, 20, 22, 24)
• ✅ All Windows tests (Node 18, 20, 22, 24)
• ✅ macOS Node 18 & 20 tests
• ✅ All other E2E tests (Autocomplete, Edit, GUI, KeyboardShortcuts, PromptFile-yaml)
• ✅ Core, GUI, VSCode, JetBrains checks
• ✅ Security, license, linting

Recommendation

Merge via admin override or re-run failed workflows to bypass transient issues. The dependency change poses no risk.

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.