chore(deps): update dependency svelte to v5.46.3

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
svelte (source)	5.46.1 → 5.46.3

---

Release Notes

sveltejs/svelte (svelte)

v5.46.3

Patch Changes

• fix: reconnect clean deriveds when they are read in a reactive context (#​17362)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[claude]

Pull Request Review: Update svelte to v5.46.3

Overview

This is an automated Renovate PR updating Svelte from 5.46.1 to 5.46.3 (patch version bump). The change only affects frontend/package-lock.json.

Analysis

Code Quality: ✅ APPROVED

• Clean dependency update via package-lock.json
• No source code changes required
• Follows semantic versioning (patch release)

Changes Summary

Version Jump: 5.46.1 → 5.46.3 (includes 5.46.2 and 5.46.3)

Key Fix (v5.46.3):

• Fixes reconnection of clean deriveds when read in reactive context (#17362)
• This addresses a potential reactivity bug in Svelte 5's signals/deriveds system

Security: ✅ SAFE

• GitGuardian security checks passed
• No security-related changes in these patch versions
• Standard dependency update from official npm registry

Testing: ⏳ IN PROGRESS

• Frontend build checks are running
• CI pipeline includes: Rustfmt ✅, Clippy, Tests, Frontend build
• Renovate has automerge enabled - will merge automatically after CI passes

Performance: ✅ NEUTRAL/POSITIVE

• Patch releases typically include bug fixes and minor performance improvements
• No breaking changes expected
• The reactivity fix may actually improve performance in edge cases

Best Practices: ✅ FOLLOWS CONVENTIONS

• Automated dependency management via Renovate
• Proper use of package-lock.json for reproducible builds
• Conventional commit message format: chore(deps): update dependency svelte to v5.46.3

Recommendation

✅ APPROVE - This is a safe, low-risk dependency update that:

1. Fixes a known reactivity bug in Svelte 5
2. Maintains API compatibility (patch version)
3. Has passed security scans
4. Follows the project's automated dependency update workflow

The PR is configured to automerge once CI checks pass, which is appropriate for patch-level dependency updates.

Notes

• Svelte is listed as a peerDependency in package-lock.json, used by SvelteKit and vite-plugin-svelte
• The frontend is tightly coupled with the API (per CLAUDE.md), so breaking changes are acceptable when needed - but this is just a patch release
• No manual testing required for this type of automated dependency update