build(deps-dev): Bump the npm-dependencies group across 1 directory with 5 updates

[dependabot]

Bumps the npm-dependencies group with 5 updates in the /internal/gui/frontend directory:

Package	From	To
@biomejs/biome	2.3.11	2.4.5
@playwright/test	1.57.0	1.58.2
@tsconfig/svelte	5.0.6	5.0.8
svelte	5.46.4	5.53.6
svelte-check	4.3.5	4.4.4

Updates @biomejs/biome from 2.3.11 to 2.4.5

Release notes

Sourced from @​biomejs/biome's releases.

Biome CLI v2.4.5

2.4.5

Patch Changes

• #9185 e43e730 Thanks @​dyc3! - Added the nursery rule useVueScopedStyles for Vue SFCs. This rule enforces that <style> blocks have the scoped attribute (or module for CSS Modules), preventing style leakage and conflicts between components.

• #9184 49c8fde Thanks @​chocky335! - Improved plugin performance by batching all plugins into a single syntax visitor with a kind-to-plugin lookup map, reducing per-node dispatch overhead from O(N) to O(1) where N is the number of plugins.

• #9283 071c700 Thanks @​dyc3! - Fixed noUndeclaredVariables erroneously flagging functions and variables defined in the <script setup> section of Vue SFCs.

• #9221 4612133 Thanks @​ematipico! - Fixed an issue where the JSON reporter didn't contain the duration of the command.

• #9294 1805c8f Thanks @​Netail! - Extra rule source reference. biome migrate eslint should do a bit better detecting rules in your eslint configurations.

• #9178 101b3bb Thanks @​Bertie690! - Fixed #9172 and #9168: Biome now considers more constructs as valid test assertions.

  Previously, assert, expectTypeOf and assertType were not recognized as valid assertions by Biome's linting rules, producing false positives in lint/nursery/useExpect and other similar rules.

  Now, these rules will no longer produce errors in test cases that used these constructs instead of expect:

  import { expectTypeOf, assert, assertType } from "vitest";
  const myStr = "Hello from vitest!";
  it("should be a string", () => {
  expectTypeOf(myStr).toBeString();
  });
  test("should still be a string", () => {
  assertType<string>(myStr);
  });
  it.todo("should still still be a string", () => {
  assert(typeof myStr === "string");
  });

• #9173 32dad2d Thanks @​dyc3! - Added parsing support for Svelte's new comments-in-tags feature.

  The HTML parser will now accept JS style comments in tags in Svelte files.

  <button
    // single-line comment
    onclick={doTheThing}
  >click me</button>
  <div

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

2.4.5

Patch Changes

• #9185 e43e730 Thanks @​dyc3! - Added the nursery rule useVueScopedStyles for Vue SFCs. This rule enforces that <style> blocks have the scoped attribute (or module for CSS Modules), preventing style leakage and conflicts between components.

• #9184 49c8fde Thanks @​chocky335! - Improved plugin performance by batching all plugins into a single syntax visitor with a kind-to-plugin lookup map, reducing per-node dispatch overhead from O(N) to O(1) where N is the number of plugins.

• #9283 071c700 Thanks @​dyc3! - Fixed noUndeclaredVariables erroneously flagging functions and variables defined in the <script setup> section of Vue SFCs.

• #9221 4612133 Thanks @​ematipico! - Fixed an issue where the JSON reporter didn't contain the duration of the command.

• #9294 1805c8f Thanks @​Netail! - Extra rule source reference. biome migrate eslint should do a bit better detecting rules in your eslint configurations.

• #9178 101b3bb Thanks @​Bertie690! - Fixed #9172 and #9168: Biome now considers more constructs as valid test assertions.

  Previously, assert, expectTypeOf and assertType were not recognized as valid assertions by Biome's linting rules, producing false positives in lint/nursery/useExpect and other similar rules.

  Now, these rules will no longer produce errors in test cases that used these constructs instead of expect:

  import { expectTypeOf, assert, assertType } from "vitest";
  const myStr = "Hello from vitest!";
  it("should be a string", () => {
  expectTypeOf(myStr).toBeString();
  });
  test("should still be a string", () => {
  assertType<string>(myStr);
  });
  it.todo("should still still be a string", () => {
  assert(typeof myStr === "string");
  });

• #9173 32dad2d Thanks @​dyc3! - Added parsing support for Svelte's new comments-in-tags feature.

  The HTML parser will now accept JS style comments in tags in Svelte files.

  <button
    // single-line comment
    onclick={doTheThing}
  >click me</button>
  <div
  /* block comment */
  class="foo"

... (truncated)

Commits

• 3bc07ab ci: release (#9188)
• 6b01778 feat(linter): add useUnicodeRegex rule (#8773)
• e43e730 feat(lint/html): add useVueScopedStyles (#9185)
• edf8bb6 feat(lint): add ||= to ??= detection in useNullishCoalescing (#9257)
• 9bbdf4d feat(lint): add nursery rule useNamedCaptureGroup (#9048)
• 1f2fe2e feat: prefer-array-some from eslint-plugin-unicorn (#9056)
• 1d2ca15 feat(lint): add useNullishCoalescing nursery rule (#8952)
• 101b3bb fix(lint): consider more constructs as valid test assertions (#9178)
• 3d0648f feat(biome_js_analyze): implement noVueRefAsOperand (#9063)
• 6c296ea ci: release (#9160)
• Additional commits viewable in compare view

Updates @playwright/test from 1.57.0 to 1.58.2

Release notes

Sourced from @​playwright/test's releases.

v1.58.2

Highlights

#39121 fix(trace viewer): make paths via stdin work #39129 fix: do not force swiftshader on chromium mac

Browser Versions

• Chromium 145.0.7632.6
• Mozilla Firefox 146.0.1
• WebKit 26.0

v1.58.1

Highlights

#39036 fix(msedge): fix local network permissions #39037 chore: update cft download location #38995 chore(webkit): disable frame sessions on fronzen builds

Browser Versions

• Chromium 145.0.7632.6
• Mozilla Firefox 146.0.1
• WebKit 26.0

v1.58.0

📣 Playwright CLI+SKILLs 📣

We are adding a new token-efficient CLI mode of operation to Playwright with the skills located at playwright-cli. This brings the long-awaited official SKILL-focused CLI mode to our story and makes it more coding agent-friendly.

It is the first snapshot with the essential command set (which is already larger than the original MCP!), but we expect it to grow rapidly. Unlike the token use, that one we expect to go down since snapshots are no longer forced into the LLM!

Timeline

If you're using merged reports, the HTML report Speedboard tab now shows the Timeline:

UI Mode and Trace Viewer Improvements

• New 'system' theme option follows your OS dark/light mode preference
• Search functionality (Cmd/Ctrl+F) is now available in code editors
• Network details panel has been reorganized for better usability
• JSON responses are now automatically formatted for readability

Thanks to @​cpAdm for contributing these improvements!

Miscellaneous

browserType.connectOverCDP() now accepts an isLocal option. When set to true, it tells Playwright that it runs on the same host as the CDP server, enabling file system optimizations.

Breaking Changes ⚠️

• Removed _react and _vue selectors. See locators guide for alternatives.

... (truncated)

Commits

• ce480a9 cherry-pick(#39171): devops: add ubuntu-22.04-arm bot
• e40c137 chore: mark v1.58.2 (#39155)
• 50b7296 cherry-pick(#39152): chore: fix execSync inheriting stdio
• f3dcf50 cherry-pick(#39129): fix: do not force swiftshader on chromium mac
• 8684e08 cherry-pick(#39121): fix(trace viewer): make paths via stdin work
• 97bc385 cherry-pick(#38995): chore(webkit): disable frame sessions on fronzen builds
• ad625fe chore: mark v1.58.1 (#39055)
• f07234d cherry-pick(#39036): fix(msedge): fix local network permissions (#39053)
• ab8136c cherry-pick(#39037): chore: update cft download location (#39052)
• aa6ffeb cherry-pick(#39014): docs: add 1.58 release notes for Java, Python, and C#
• Additional commits viewable in compare view

Updates @tsconfig/svelte from 5.0.6 to 5.0.8

Commits

• See full diff in compare view

Updates svelte from 5.46.4 to 5.53.6

Release notes

Sourced from svelte's releases.

svelte@5.53.6

Patch Changes

• perf: optimize parser hot paths for faster compilation (#17811)

• fix: SvelteMap incorrectly handles keys with undefined values (#17826)

• fix: SvelteURL search setter now returns the normalized value, matching native URL behavior (#17828)

• fix: visit synthetic value node during ssr (#17824)

• fix: always case insensitive event handlers during ssr (#17822)

• chore: more efficient effect scheduling (#17808)

• perf: optimize compiler analysis phase (#17823)

• fix: skip redundant batch.apply (#17816)

• chore: null out current_batch before committing branches (#17809)

svelte@5.53.5

Patch Changes

• fix: escape innerText and textContent bindings of contenteditable (0df5abcae223058ceb95491470372065fb87951d)

• fix: sanitize transformError values prior to embedding in HTML comments (0298e979371bb583855c9810db79a70a551d22b9)

svelte@5.53.4

Patch Changes

• fix: set server context after async transformError (#17799)

• fix: hydrate if blocks correctly (#17784)

• fix: handle default parameters scope leaks (#17788)

• fix: prevent flushed effects from running again (#17787)

svelte@5.53.3

Patch Changes

• fix: render :catch of #await block with correct key (#17769)

• chore: pin aria-query@5.3.1 (#17772)

• fix: make string coercion consistent to toString (#17774)

svelte@5.53.2

Patch Changes

... (truncated)

Changelog

Sourced from svelte's changelog.

5.53.6

Patch Changes

• perf: optimize parser hot paths for faster compilation (#17811)

• fix: SvelteMap incorrectly handles keys with undefined values (#17826)

• fix: SvelteURL search setter now returns the normalized value, matching native URL behavior (#17828)

• fix: visit synthetic value node during ssr (#17824)

• fix: always case insensitive event handlers during ssr (#17822)

• chore: more efficient effect scheduling (#17808)

• perf: optimize compiler analysis phase (#17823)

• fix: skip redundant batch.apply (#17816)

• chore: null out current_batch before committing branches (#17809)

5.53.5

Patch Changes

• fix: escape innerText and textContent bindings of contenteditable (0df5abcae223058ceb95491470372065fb87951d)

• fix: sanitize transformError values prior to embedding in HTML comments (0298e979371bb583855c9810db79a70a551d22b9)

5.53.4

Patch Changes

• fix: set server context after async transformError (#17799)

• fix: hydrate if blocks correctly (#17784)

• fix: handle default parameters scope leaks (#17788)

• fix: prevent flushed effects from running again (#17787)

5.53.3

Patch Changes

• fix: render :catch of #await block with correct key (#17769)

• chore: pin aria-query@5.3.1 (#17772)

... (truncated)

Commits

• d4c7829 Version Packages (#17812)
• 361b32c fix: SvelteURL search setter uses unnormalized value (#17828)
• 1043f79 perf: optimize compiler analysis phase (#17823)
• b6faa2a fix: always case insensitive event handlers during ssr (#17822)
• e3d277b fix: visit synthetic value node during ssr (#17824)
• 18db0ca fix: SvelteMap incorrectly handles keys with undefined values (#17826)
• 3fc4bc6 chore: remove unused is_flushing variable (#17820)
• 16a1351 fix: skip redundant batch.apply (#17816)
• 04ba134 docs: flesh out attribute_invalid_sequence_expression message (#17789)
• fc67c9c chore(deps-dev): bump rollup from 4.52.5 to 4.59.0 (#17810)
• Additional commits viewable in compare view

Updates svelte-check from 4.3.5 to 4.4.4

Release notes

Sourced from svelte-check's releases.

svelte-check@4.4.4

Patch Changes

• fix: more robust detection of lang="ts" attribute (#2957)

• fix: pass filename to warningFilter (#2959)

• fix: resolve svelte files under path alias in --incremental/tsgo mode (#2955)

svelte-check@4.4.3

Patch Changes

• fix: respect @ts-ignore etc comments within tags (#2950)

svelte-check@4.4.2

Patch Changes

• fix: resolve shims correctly in --incremental/tsgo mode (cd1ff2f)

• fix: include references in generated tsconfig.json in --incremental/tsgo mode (1990f74)

svelte-check@4.4.1

Patch Changes

• fix: handle relative imports reaching outside working directory when using --incremental/--tsgo flags (#2942)

• fix: support SvelteKit zero types in svelte-check --incremental (#2939)

svelte-check@4.4.0

Minor Changes

• feat: provide --incremental and --tsgo flags (#2932)

Patch Changes

• fix: ignore Unix domain sockets in file watcher to prevent crashes (#2931)

• fix: properly use machine output by default for Claude Code (e9f58d2)

svelte-check@4.3.6

Patch Changes

• fix: don't hoist type/snippet referencing $store (#2926)

Commits

• e7168a9 Version Packages (#2958)
• 2eb8170 fix: pass filename to warningFilter (#2959)
• 28adef3 fix: more robust detection of lang="ts" attribute (#2957)
• 379b0bd fix: resolve svelte files under path alias in --incremental/tsgo mode (#2955)
• abf0c20 Version Packages (#2951)
• 3a3d6e3 fix: respect @ts-ignore etc comments within tags (#2950)
• 27b7eb8 Version Packages (#2949)
• d69eb72 fix: detect existing JSDoc @​satisfies to prevent duplicate injection (#2946)
• 1990f74 fix: include references in generated tsconfig.json in `--incremental/tsgo...
• cd1ff2f fix: resolve shims correctly in --incremental/tsgo mode
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.