build(deps-dev): Bump the npm-dependencies group across 1 directory with 7 updates

[dependabot]

Bumps the npm-dependencies group with 7 updates in the /internal/gui/frontend directory:

Package	From	To
@biomejs/biome	2.3.11	2.4.7
@playwright/test	1.57.0	1.58.2
@sveltejs/vite-plugin-svelte	6.2.4	7.0.0
@tsconfig/svelte	5.0.6	5.0.8
svelte	5.46.4	5.53.12
svelte-check	4.3.5	4.4.5
vite	7.3.1	8.0.0

Updates @biomejs/biome from 2.3.11 to 2.4.7

Release notes

Sourced from @​biomejs/biome's releases.

Biome CLI v2.4.7

2.4.7

Patch Changes

• #9318 3ac98eb Thanks @​ematipico! - Added new nursery lint rule useBaseline for CSS. The rule reports when CSS properties, property values, at-rules, media conditions, functions, or pseudo-selectors are not part of the configured Baseline tier.

  For example, at the time of writing, the rule will trigger for the use of accent-color because it has limited availability:

  a {
    accent-color: bar;
  }

• #9272 2de8362 Thanks @​terror! - Added the nursery rule useImportsFirst that enforces all import statements appear before any non-import statements in a module. Inspired by the eslint-plugin-import import/first rule.

  // Invalid
  import { foo } from "foo";
  const bar = 1;
  import { baz } from "baz"; // ← flagged
  // Valid
  import { foo } from "foo";
  import { baz } from "baz";
  const bar = 1;

• #9285 93ea495 Thanks @​dyc3! - Fixed noUndeclaredVariables from erroneously flagging props only used in the template section in Vue SFCs

• #9435 6c5a8f2 Thanks @​siketyan! - Fixed #9432: Values referenced as a JSX element in Astro/Vue/Svelte templates are now correctly detected; noUnusedImports and useImportType rules no longer reports these values as false positives.

• #9362 fc9ca4c Thanks @​Netail! - Extra rule source references. biome migrate eslint should do a bit better detecting rules in your eslint configurations.

• #9392 b881fea Thanks @​g-ortuno! - Fixed biomejs/biome-vscode#959: LSP now correctly resolves project directory when configurationPath points to a configuration file outside the workspace.

• #9420 a1c46af Thanks @​ematipico! - Fixed #9385: noUselessEscapeInString no longer incorrectly flags valid CSS hex escapes (e.g. \e7bb) as useless. The rule now recognizes all hex digits (0-9, a-f, A-F) as valid escape characters in CSS strings.

• #9416 f2581b8 Thanks @​ematipico! - Fixed #9131, #9112, #9166: the formatter no longer crashes or produces corrupt output when a JS file with experimentalEmbeddedSnippetsEnabled contains non-embedded template literals alongside embedded ones (e.g. console.log(\test`)next tographql(`...`)`).

• #9344 cb4d7d7 Thanks @​ematipico! - Fixed #6921: noShadow no longer incorrectly flags destructured variable bindings in sibling scopes as shadowing. Object destructuring, array destructuring, nested patterns, and rest elements are now properly recognized as declarations.

• #9360 bc5dd99 Thanks @​ematipico! - Fixed #7125: The rule noShadow no longer incorrectly flags parameters in TypeScript constructor and method overload signatures.

• #9371 29cac17 Thanks @​ematipico! - Fixed #5279: Tabs in diagnostic diff output are now rendered at a consistent width across context and changed lines, fixing visual misalignment when source files use tab indentation.

• #9043 61e2a02 Thanks @​dyc3! - Fixed #8897: Biome now parses @utility names containing / when Tailwind directives are enabled.

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

2.4.7

Patch Changes

• #9318 3ac98eb Thanks @​ematipico! - Added new nursery lint rule useBaseline for CSS. The rule reports when CSS properties, property values, at-rules, media conditions, functions, or pseudo-selectors are not part of the configured Baseline tier.

  For example, at the time of writing, the rule will trigger for the use of accent-color because it has limited availability:

  a {
    accent-color: bar;
  }

• #9272 2de8362 Thanks @​terror! - Added the nursery rule useImportsFirst that enforces all import statements appear before any non-import statements in a module. Inspired by the eslint-plugin-import import/first rule.

  // Invalid
  import { foo } from "foo";
  const bar = 1;
  import { baz } from "baz"; // ← flagged
  // Valid
  import { foo } from "foo";
  import { baz } from "baz";
  const bar = 1;

• #9285 93ea495 Thanks @​dyc3! - Fixed noUndeclaredVariables from erroneously flagging props only used in the template section in Vue SFCs

• #9435 6c5a8f2 Thanks @​siketyan! - Fixed #9432: Values referenced as a JSX element in Astro/Vue/Svelte templates are now correctly detected; noUnusedImports and useImportType rules no longer reports these values as false positives.

• #9362 fc9ca4c Thanks @​Netail! - Extra rule source references. biome migrate eslint should do a bit better detecting rules in your eslint configurations.

• #9392 b881fea Thanks @​g-ortuno! - Fixed biomejs/biome-vscode#959: LSP now correctly resolves project directory when configurationPath points to a configuration file outside the workspace.

• #9420 a1c46af Thanks @​ematipico! - Fixed #9385: noUselessEscapeInString no longer incorrectly flags valid CSS hex escapes (e.g. \e7bb) as useless. The rule now recognizes all hex digits (0-9, a-f, A-F) as valid escape characters in CSS strings.

• #9416 f2581b8 Thanks @​ematipico! - Fixed #9131, #9112, #9166: the formatter no longer crashes or produces corrupt output when a JS file with experimentalEmbeddedSnippetsEnabled contains non-embedded template literals alongside embedded ones (e.g. console.log(\test`)next tographql(`...`)`).

• #9344 cb4d7d7 Thanks @​ematipico! - Fixed #6921: noShadow no longer incorrectly flags destructured variable bindings in sibling scopes as shadowing. Object destructuring, array destructuring, nested patterns, and rest elements are now properly recognized as declarations.

• #9360 bc5dd99 Thanks @​ematipico! - Fixed #7125: The rule noShadow no longer incorrectly flags parameters in TypeScript constructor and method overload signatures.

• #9371 29cac17 Thanks @​ematipico! - Fixed #5279: Tabs in diagnostic diff output are now rendered at a consistent width across context and changed lines, fixing visual misalignment when source files use tab indentation.

• #9043 61e2a02 Thanks @​dyc3! - Fixed #8897: Biome now parses @utility names containing / when Tailwind directives are enabled.

• #9354 930c858 Thanks @​denbezrukov! - Improved CSS parser recovery for invalid unicode-range values that mix wildcard ranges with range intervals. For example, Biome now reports clearer diagnostics for invalid syntax like:

... (truncated)

Commits

• 1f30838 ci: release (#9346)
• 3ac98eb feat(css/lint): useBaseline (#9318)
• 2de8362 feat(lint): add nursery rule useImportsFirst (#9272)
• 776cb64 feat(json_analyze): implement noEmptyObjectKeys (#9365)
• dda9b3d chore: update rule count in readme (#9374)
• 722f0da feat(json_analyze): implement noTopLevelLiterals (#9367)
• cabc56c ci: release (#9301)
• 3bc07ab ci: release (#9188)
• 6b01778 feat(linter): add useUnicodeRegex rule (#8773)
• e43e730 feat(lint/html): add useVueScopedStyles (#9185)
• Additional commits viewable in compare view

Updates @playwright/test from 1.57.0 to 1.58.2

Release notes

Sourced from @​playwright/test's releases.

v1.58.2

Highlights

#39121 fix(trace viewer): make paths via stdin work #39129 fix: do not force swiftshader on chromium mac

Browser Versions

• Chromium 145.0.7632.6
• Mozilla Firefox 146.0.1
• WebKit 26.0

v1.58.1

Highlights

#39036 fix(msedge): fix local network permissions #39037 chore: update cft download location #38995 chore(webkit): disable frame sessions on fronzen builds

Browser Versions

• Chromium 145.0.7632.6
• Mozilla Firefox 146.0.1
• WebKit 26.0

v1.58.0

📣 Playwright CLI+SKILLs 📣

We are adding a new token-efficient CLI mode of operation to Playwright with the skills located at playwright-cli. This brings the long-awaited official SKILL-focused CLI mode to our story and makes it more coding agent-friendly.

It is the first snapshot with the essential command set (which is already larger than the original MCP!), but we expect it to grow rapidly. Unlike the token use, that one we expect to go down since snapshots are no longer forced into the LLM!

Timeline

If you're using merged reports, the HTML report Speedboard tab now shows the Timeline:

UI Mode and Trace Viewer Improvements

• New 'system' theme option follows your OS dark/light mode preference
• Search functionality (Cmd/Ctrl+F) is now available in code editors
• Network details panel has been reorganized for better usability
• JSON responses are now automatically formatted for readability

Thanks to @​cpAdm for contributing these improvements!

Miscellaneous

browserType.connectOverCDP() now accepts an isLocal option. When set to true, it tells Playwright that it runs on the same host as the CDP server, enabling file system optimizations.

Breaking Changes ⚠️

• Removed _react and _vue selectors. See locators guide for alternatives.

... (truncated)

Commits

• ce480a9 cherry-pick(#39171): devops: add ubuntu-22.04-arm bot
• e40c137 chore: mark v1.58.2 (#39155)
• 50b7296 cherry-pick(#39152): chore: fix execSync inheriting stdio
• f3dcf50 cherry-pick(#39129): fix: do not force swiftshader on chromium mac
• 8684e08 cherry-pick(#39121): fix(trace viewer): make paths via stdin work
• 97bc385 cherry-pick(#38995): chore(webkit): disable frame sessions on fronzen builds
• ad625fe chore: mark v1.58.1 (#39055)
• f07234d cherry-pick(#39036): fix(msedge): fix local network permissions (#39053)
• ab8136c cherry-pick(#39037): chore: update cft download location (#39052)
• aa6ffeb cherry-pick(#39014): docs: add 1.58 release notes for Java, Python, and C#
• Additional commits viewable in compare view

Updates @sveltejs/vite-plugin-svelte from 6.2.4 to 7.0.0

Release notes

Sourced from @​sveltejs/vite-plugin-svelte's releases.

@​sveltejs/vite-plugin-svelte@​7.0.0

Major Changes

• breaking(deps): require vite 8 (#1266)

• breaking(options): remove deprecated options (#1274)

  • vitePlugin.hot in svelte.config.js use compilerOptions.hmr instead
  • vitePlugin.ignorePluginPreprocessors in svelte.config.js no longer needed
  • api.idFilter of vite-plugin-svelte:api use api.filter instead
  • plugin.api.sveltePreprocess of other vite plugins Update affected plugins to a newer version or remove them. See docs for more information.

• breaking(dev): no longer overrides compilerOptions.cssHash because Svelte now produces a stable css hash by itself (#1271)

• breaking(inspector): integrate vite-plugin-svelte-inspector into vite-plugin-svelte to avoid circular dependency (#1270)

• breaking(deps): require svelte 5.46.4 or later (#1271)

Patch Changes

• chore: upgrade vitefu to compatible peer dependency range (#1286)

• remove author field from package.json (#1281)

@​sveltejs/vite-plugin-svelte@​7.0.0-next.1

Patch Changes

• chore: upgrade vitefu to compatible peer dependency range (#1286)

• remove author field from package.json (#1281)

@​sveltejs/vite-plugin-svelte@​7.0.0-next.0

Major Changes

• breaking(deps): require vite 8 (#1266)

• breaking(deps): require svelte 5.46.4 or later (#1271)

... (truncated)

Changelog

Sourced from @​sveltejs/vite-plugin-svelte's changelog.

7.0.0

Major Changes

• breaking(deps): require vite 8 (#1266)

• breaking(options): remove deprecated options (#1274)

  • vitePlugin.hot in svelte.config.js use compilerOptions.hmr instead
  • vitePlugin.ignorePluginPreprocessors in svelte.config.js no longer needed
  • api.idFilter of vite-plugin-svelte:api use api.filter instead
  • plugin.api.sveltePreprocess of other vite plugins Update affected plugins to a newer version or remove them. See docs for more information.

• breaking(dev): no longer overrides compilerOptions.cssHash because Svelte now produces a stable css hash by itself (#1271)

• breaking(inspector): integrate vite-plugin-svelte-inspector into vite-plugin-svelte to avoid circular dependency (#1270)

• breaking(deps): require svelte 5.46.4 or later (#1271)

Patch Changes

• chore: upgrade vitefu to compatible peer dependency range (#1286)

• remove author field from package.json (#1281)

7.0.0-next.1

Patch Changes

• chore: upgrade vitefu to compatible peer dependency range (#1286)

• remove author field from package.json (#1281)

7.0.0-next.0

Major Changes

• breaking(deps): require vite 8 (#1266)

... (truncated)

Commits

• 67721b6 Version Packages (#1289)
• 04fbcee Version Packages (next) (#1287)
• 9344fc3 chore: remove dominikg from author field (#1281)
• 22a402e chore: upgrade vitefu to compatible peer dependency range (#1286)
• 170bacc Version Packages (next) (#1268)
• 583f700 remove deprecations (#1274)
• 1011098 refactor: bump svelte and remove custom cssHash handling (#1271)
• 7e39bc1 refactor: move inspector into vite-plugin-svelte, adapt code (#1270)
• c6db092 refactor: update vite peer dep and remove esbuild (#1266)
• See full diff in compare view

Updates @tsconfig/svelte from 5.0.6 to 5.0.8

Commits

• See full diff in compare view

Updates svelte from 5.46.4 to 5.53.12

Release notes

Sourced from svelte's releases.

svelte@5.53.12

Patch Changes

• fix: update select.__value on change (#17745)

• chore: add invariant helper for debugging (#17929)

• fix: ensure deriveds values are correct across batches (#17917)

• fix: handle async RHS in assignment_value_stale (#17925)

• fix: avoid traversing clean roots (#17928)

svelte@5.53.11

Patch Changes

• fix: remove untrack circular dependency (#17910)

• fix: recover from errors that leave a corrupted effect tree (#17888)

• fix: properly lazily evaluate RHS when checking for assignment_value_stale (#17906)

• fix: resolve boundary in correct batch when hydrating (#17914)

• chore: rebase batches after process, not during (#17900)

svelte@5.53.10

Patch Changes

• fix: re-process batch if new root effects were scheduled (#17895)

svelte@5.53.9

Patch Changes

• fix: better bind:this cleanup timing (#17885)

svelte@5.53.8

Patch Changes

• fix: {@html} no longer duplicates content inside contenteditable elements (#17853)

• fix: don't access inert block effects (#17882)

• fix: handle asnyc updates within pending boundary (#17873)

• perf: avoid re-traversing the effect tree after $: assignments (#17848)

• chore: simplify scheduling logic (#17805)

svelte@5.53.7

... (truncated)

Changelog

Sourced from svelte's changelog.

5.53.12

Patch Changes

• fix: update select.__value on change (#17745)

• chore: add invariant helper for debugging (#17929)

• fix: ensure deriveds values are correct across batches (#17917)

• fix: handle async RHS in assignment_value_stale (#17925)

• fix: avoid traversing clean roots (#17928)

5.53.11

Patch Changes

• fix: remove untrack circular dependency (#17910)

• fix: recover from errors that leave a corrupted effect tree (#17888)

• fix: properly lazily evaluate RHS when checking for assignment_value_stale (#17906)

• fix: resolve boundary in correct batch when hydrating (#17914)

• chore: rebase batches after process, not during (#17900)

5.53.10

Patch Changes

• fix: re-process batch if new root effects were scheduled (#17895)

5.53.9

Patch Changes

• fix: better bind:this cleanup timing (#17885)

5.53.8

Patch Changes

• fix: {@html} no longer duplicates content inside contenteditable elements (#17853)

• fix: don't access inert block effects (#17882)

• fix: handle asnyc updates within pending boundary (#17873)

... (truncated)

Commits

• 8b86bdd Version Packages (#17919)
• dcf4865 chore: add "untracked allows writes" test (#17930)
• 1ebed68 fix: avoid traversing clean roots (#17928)
• 965f2a0 fix: handle async RHS in assignment_value_stale (#17925)
• a513da0 chore: add invariant utility (#17929)
• 3dbd950 fix: keep select.__value current when effect is deferred (#17745)
• ad94009 chore: add autofix workflow (#17922)
• 44c4f21 fix: ensure deriveds values are correct across batches (#17917)
• 63686ae chore(deps): bump devalue from 5.6.3 to 5.6.4 (#17916)
• bd433c5 Version Packages (#17901)
• Additional commits viewable in compare view

Updates svelte-check from 4.3.5 to 4.4.5

Release notes

Sourced from svelte-check's releases.

svelte-check@4.4.5

Patch Changes

• fix: use Promise for async kit handler return types (#2966)

svelte-check@4.4.4

Patch Changes

• fix: more robust detection of lang="ts" attribute (#2957)

• fix: pass filename to warningFilter (#2959)

• fix: resolve svelte files under path alias in --incremental/tsgo mode (#2955)

svelte-check@4.4.3

Patch Changes

• fix: respect @ts-ignore etc comments within tags (#2950)

svelte-check@4.4.2

Patch Changes

• fix: resolve shims correctly in --incremental/tsgo mode (cd1ff2f)

• fix: include references in generated tsconfig.json in --incremental/tsgo mode (1990f74)

svelte-check@4.4.1

Patch Changes

• fix: handle relative imports reaching outside working directory when using --incremental/--tsgo flags (#2942)

• fix: support SvelteKit zero types in svelte-check --incremental (#2939)

svelte-check@4.4.0

Minor Changes

• feat: provide --incremental and --tsgo flags (#2932)

Patch Changes

• fix: ignore Unix domain sockets in file watcher to prevent crashes (#2931)

• fix: properly use machine output by default for Claude Code (e9f58d2)

svelte-check@4.3.6

Patch Changes

• fix: don't hoist type/snippet referencing $store (#2926)

Commits

• 71676eb Version Packages (#2971)
• 93584d1 fix: use Promise<Response> for async kit handler return types (#2966)
• e7168a9 Version Packages (#2958)
• 2eb8170 fix: pass filename to warningFilter (#2959)
• 28adef3 fix: more robust detection of lang="ts" attribute (#2957)
• 379b0bd fix: resolve svelte files under path alias in --incremental/tsgo mode (#2955)
• abf0c20 Version Packages (#2951)
• 3a3d6e3 fix: respect @ts-ignore etc comments within tags (#2950)
• 27b7eb8 Version Packages (#2949)
• d69eb72 fix: detect existing JSDoc @​satisfies to prevent duplicate injection (#2946)
• Additional commits viewable in compare view

Updates vite from 7.3.1 to 8.0.0

Release notes

Sourced from vite's releases.

create-vite@8.0.0

Please refer to CHANGELOG.md for details.

plugin-legacy@8.0.0

Please refer to CHANGELOG.md for details.

v8.0.0

Please refer to CHANGELOG.md for details.

v8.0.0-beta.18

Please refer to CHANGELOG.md for details.

v8.0.0-beta.17

Please refer to CHANGELOG.md for details.

v8.0.0-beta.16

Please refer to CHANGELOG.md for details.

v8.0.0-beta.15

Please refer to CHANGELOG.md for details.

v8.0.0-beta.14

Please refer to CHANGELOG.md for details.

v8.0.0-beta.13

Please refer to CHANGELOG.md for details.

v8.0.0-beta.12

Please refer to CHANGELOG.md for details.

v8.0.0-beta.11

Please refer to CHANGELOG.md for details.

v8.0.0-beta.10

Please refer to CHANGELOG.md for details.

v8.0.0-beta.9

Please refer to CHANGELOG.md for details.

v8.0.0-beta.8

Please refer to CHANGELOG.md for details.

v8.0.0-beta.7

Please refer to CHANGELOG.md for details.

v8.0.0-beta.6

Please refer to CHANGELOG.md for details.

v8.0.0-beta.5

Please refer to CHANGELOG.md for details.

... (truncated)

Changelog

Sourced from vite's changelog.

8.0.0 (2026-03-12)

Today, we're thrilled to announce the release of the next Vite major:

• Vite 8.0 announcement blog post
• Docs (translations: 简体中文, 日本語, Español, Português, 한국어, Deutsch, فارسی)
• Migration Guide

⚠ BREAKING CHANGES

• remove import.meta.hot.accept resolution fallback (#21382)
• update default browser target (#21193)
• the epic rolldown-vite merge (#21189)

Features

• update rolldown to 1.0.0-rc.9 (#21813) (f05be0e)
• warn when vite-tsconfig-paths plugin is detected (#21781) (ada493e)
• css: support es2025 build target for lightningcss (#21769) (08906e7)
• forward browser console logs and errors to dev server terminal (#20916) (2540ed0)
• update rolldown to 1.0.0-rc.8 (#21790) (a0c950e)
• export Visitor and ESTree from rolldown/utils (#21664) (45de31e)
• update rolldown to 1.0.0-rc.6 (#21714) (37a65f8)
• use util.inspect for CLI error display (#21668) (5f425a9)
• update rolldown to 1.0.0-rc.5 (#21660) (b3ddbc5)
• update rolldown to 1.0.0-rc.4 (#21617) (1ee5c7f)
• wasm: add SSR support for .wasm?init (#21102) (216a3b5)
• integrate devtools (#21331) (acbf507)
• update rolldown to 1.0.0-rc.3 (#21554) (43358e9)
• manifest: add assets field for standalone CSS entry points (#21015) (f289b9b)
• update rolldown to 1.0.0-rc.2 (#21512) (fa136a9)
• bundled-dev: support worker in initial bundle (#21415) (f3d3149)
• dev: detect port conflicts on wildcard hosts (#21381) (b0dd5a9)
• shortcuts case insensitive (#21224) (7796ade)
• update rolldown to 1.0.0-rc.1 (#21463) (ff9dd7f)
• warn if envPrefix contains spaces (#21292) (9fcde3c)
• update rolldown to 1.0.0-beta.60 (#21408) (c33aa7c)
• update rolldown to 1.0.0-beta.59 (#21374) (0037943)
• add ignoreOutdatedRequests option to optimizeDeps (#21364) (b2e75aa)
• add ios to default esbuild targets (#21342) (daae6e9)
• update rolldown to 1.0.0-beta.58 (#21354) (ba40cef)
• update rolldown to 1.0.0-beta.57 (#21335) (d5412ef)
• css: support es2024 build target for lightningcss (#21294) (bd33b8e)
• update rolldown to 1.0.0-beta.56 (#21323) (9847a63)
• introduce v2 native plugins and enable it by default (#21268) (42f2ab3)
• ssr: avoid errors when rewriting already rewritten stacktrace (#21269) (98d9a33)
• update rolldown to 1.0.0-beta.55 (#21300) (2c8db85)
• update rolldown to 1.0.0-beta.54 (#21267) (c751172)

... (truncated)

Commits

• ea68a88 chore(deps): update rolldown-related dependencies (#20810)
• 693d255 release: v7.1.7
• 98a3484 fix(hmr): wait for import.meta.hot.prune callbacks to complete before runni...
• 9f32b1d fix(hmr): trigger prune event when import is removed from non hmr module (#20...
• 9f2247c fix(deps): update all non-major dependencies (#20811)
• 105abe8 fix(glob): handle glob imports from folders starting with dot (#20800)
• 4c4583c fix(build): fix ssr environment emitAssets: true when `sharedConfigBuild: t...
• 9bc9d12 fix(client): use CSP nonce when rendering error overlay (#20791)
• 54377f7 release: v7.1.6
• 88af2ae fix(deps): update all non-major dependencies (#20773)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more...

Description has been truncated

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.