chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
@antfu/eslint-config	7.4.3 → 7.6.1
@types/node (source)	24.10.13 → 24.11.0
lint-staged	16.2.7 → 16.3.2
pnpm (source)	10.30.1 → 10.30.3
postcss (source)	8.5.6 → 8.5.8
webpack	5.105.2 → 5.105.4

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

antfu/eslint-config (@​antfu/eslint-config)

v7.6.1

Compare Source

   🐞 Bug Fixes

• Separate node plugins setup and rules, fix #​817  -  by @​antfu in #​817 (fa3b0)

    View changes on GitHub

v7.6.0

Compare Source

   🚀 Features

• jsonc: Use jsonc/x language  -  by @​hyoban in #​824 (a9b7a)

   🐞 Bug Fixes

• jsdoc: Separate setup  -  by @​hyoban in #​825 (6742d)

    View changes on GitHub

v7.5.0

Compare Source

   🚀 Features

• markdown: Use markdown language  -  by @​hyoban and @​antfu in #​818 (93063)

    View changes on GitHub

lint-staged/lint-staged (lint-staged)

v16.3.2

Compare Source

Patch Changes

• #​1735 2adaf6c Thanks @​iiroj! - Hide the extra cmd window on Windows by spawning tasks without the detached option.

v16.3.1

Compare Source

Patch Changes

• #​1729 cd5d762 Thanks @​iiroj! - Remove nano-spawn as a dependency from package.json as it was replaced with tinyexec and is no longer used.

v16.3.0

Compare Source

Minor Changes

• #​1698 feda37a Thanks @​iiroj! - Run external processes with tinyexec instead of nano-spawn. nano-spawn replaced execa in lint-staged version 16 to limit the amount of npm dependencies required, but caused some unknown issues related to spawning tasks. Let's hope tinyexec improves the situation.

• #​1699 1346d16 Thanks @​iiroj! - Remove pidtree as a dependency. When a task fails, its sub-processes are killed more efficiently via the process group on Unix systems, and the taskkill command on Windows.

Patch Changes

• #​1726 87467aa Thanks @​iiroj! - Incorrect brace expansions like *.{js} (nothing to expand) are detected exhaustively, instead of just a single pass.

pnpm/pnpm (pnpm)

v10.30.3

Compare Source

v10.30.2

Compare Source

postcss/postcss (postcss)

v8.5.8

Compare Source

• Fixed Processor#version.

v8.5.7

Compare Source

• Improved source map annotation cleaning performance (by CodeAnt AI).

webpack/webpack (webpack)

v5.105.4

Compare Source

Patch Changes

• Add Module.getSourceBasicTypes to distinguish basic source types and clarify how modules with non-basic source types like remote still produce JavaScript output. (by @​xiaoxiaojx in #​20546)

• Handle createRequire in expressions. (by @​alexander-akait in #​20549)

• Fixed types for multi stats. (by @​alexander-akait in #​20556)

• Remove empty needless js output for normal css module. (by @​JSerFeng in #​20162)

• Update enhanced-resolve to support new features for tsconfig.json. (by @​alexander-akait in #​20555)

• Narrows export presence guard detection to explicit existence checks on namespace imports only, i.e. patterns like "x" in ns. (by @​hai-x in #​20561)

v5.105.3

Compare Source

Patch Changes

• Context modules now handle rejections correctly. (by @​alexander-akait in #​20455)

• Only mark asset modules as side-effect-free when experimental.futureDefaults is set to true, so asset-copying use cases (e.g. import "./x.png") won’t break unless the option is enabled. (by @​hai-x in #​20535)

• Add the missing webpack_exports declaration in certain cases when bundling a JS entry together with non-JS entries (e.g., CSS entry or asset module entry). (by @​hai-x in #​20463)

• Fixed HMR failure for CSS modules with @​import when exportType !== "link". When exportType is not "link", CSS modules now behave like JavaScript modules and don't require special HMR handling, allowing @​import CSS to work correctly during hot module replacement. (by @​xiaoxiaojx in #​20514)

• Fixed an issue where empty JavaScript files were generated for CSS-only entry points. The code now correctly checks if entry modules have JavaScript source types before determining whether to generate a JS file. (by @​xiaoxiaojx in #​20454)

• Do not crash when a referenced chunk is not a runtime chunk. (by @​alexander-akait in #​20461)

• Fix some types. (by @​alexander-akait in #​20412)

• Ensure that missing module error are thrown after the interception handler (if present), allowing module interception to customize the module factory. (by @​hai-x in #​20510)

• Added createRequire support for ECMA modules. (by @​stefanbinoj in #​20497)

• Added category for CJS reexport dependency to fix issues with ECMA modules. (by @​hai-x in #​20444)

• Implement immutable bytes for bytes import attribute to match tc39 spec. (by @​alexander-akait in #​20481)

• Fixed deterministic search for graph roots regardless of edge order. (by @​veeceey in #​20452)

---

Configuration

📅 Schedule: Branch creation - "on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	postcss@​8.5.6 ⏵ 8.5.8
	@​antfu/​eslint-config@​7.4.3 ⏵ 7.6.1				+1
	lint-staged@​16.2.7 ⏵ 16.3.2				+7

View full report

[codspeed-hq]

Merging this PR will not alter performance

✅ 9 untouched benchmarks

---

_{Comparing renovate/all-minor-patch (eef1e31) with main (f5c3789)}

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 84.81%. Comparing base (f5c3789) to head (eef1e31).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #269   +/-   ##
=======================================
  Coverage   84.81%   84.81%           
=======================================
  Files           8        8           
  Lines         843      843           
  Branches      235      235           
=======================================
  Hits          715      715           
  Misses        115      115           
  Partials       13       13           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.