chore(deps): bump the npm-all group across 1 directory with 10 updates

[dependabot]

Bumps the npm-all group with 10 updates in the /src/frontend directory:

Package	From	To
@astrojs/starlight	0.38.2	0.38.3
astro	6.1.2	6.1.4
marked	17.0.5	18.0.0
mermaid	11.13.0	11.14.0
starlight-links-validator	0.21.0	0.22.0
starlight-scroll-to-top	0.4.0	1.0.1
eslint	10.1.0	10.2.0
http-proxy-agent	8.0.0	9.0.0
https-proxy-agent	8.0.0	9.0.0
vitest	4.1.2	4.1.3

Updates @astrojs/starlight from 0.38.2 to 0.38.3

Release notes

Sourced from @​astrojs/starlight's releases.

@​astrojs/starlight@​0.38.3

Patch Changes

• #3799 313611b Thanks @​JosefJezek! - Improves Czech UI translations

• #3770 6e7bed1 Thanks @​gameroman! - Adds examples to the inline documentation for title in the Starlight configuration object

• #3801 fedd48b Thanks @​delucis! - Fixes missing draft content warning in dev on pages using the hero layout

Changelog

Sourced from @​astrojs/starlight's changelog.

0.38.3

Patch Changes

• #3799 313611b Thanks @​JosefJezek! - Improves Czech UI translations

• #3770 6e7bed1 Thanks @​gameroman! - Adds examples to the inline documentation for title in the Starlight configuration object

• #3801 fedd48b Thanks @​delucis! - Fixes missing draft content warning in dev on pages using the hero layout

Commits

• 7a59b9a [ci] release (#3773)
• 313611b Update Czech translations for consistency (#3799)
• fedd48b Include draft content notice on pages with hero component (#3801)
• d940845 [ci] format
• 6e7bed1 docs: update jsdoc for UserConfigSchema.title with example (#3770)
• See full diff in compare view

Updates astro from 6.1.2 to 6.1.4

Release notes

Sourced from astro's releases.

astro@6.1.4

Patch Changes

• #16197 21f9fe2 Thanks @​SchahinRohani! - Remove unused re-exports from assets/utils barrel file to fix Vite build warning

• #16059 6d5469e Thanks @​matthewp! - Fixes Expected 'miniflare' to be defined errors and 404 responses in dev mode when using the Cloudflare adapter and the config file changes. Instead of creating a brand new Vite server on config changes, Astro now performs a Vite in-place restart, allowing the Cloudflare adapter to reuse its existing miniflare instance across restarts.

• #16154 7610ba4 Thanks @​Desel72! - Fixes pages with dots in their filenames (e.g. hello.world.astro) returning 404 when accessed with a trailing slash in the dev server. The trailingSlashForPath function now only forces trailingSlash: 'never' for endpoints with file extensions, allowing pages to correctly respect the user's trailingSlash config.

• #16193 23425e2 Thanks @​matthewp! - Fixes trailingSlash: "always" producing redirect HTML instead of the actual response for extensionless endpoints during static builds

astro@6.1.3

Patch Changes

• #16161 b51f297 Thanks @​matthewp! - Fixes a dev rendering issue with the Cloudflare adapter where head metadata could be missing and dev CSS/scripts could be injected in the wrong place

• #16110 de669f0 Thanks @​tmimmanuel! - Fixes skew protection query parameters not being appended to inter-chunk JavaScript imports in client bundles, which could cause version mismatches during rolling deployments on Vercel

• #16162 a0a49e9 Thanks @​rururux! - Fixes an issue where HMR would not trigger when modifying files while using @​astrojs/cloudflare with prerenderEnvironment: 'node' enabled.

• #16142 7454854 Thanks @​rururux! - Fixes HTML content being incorrectly escaped as plain text when rendering a MDX component using the AstroContainer APIs.

• #16116 12602a9 Thanks @​riderx! - Fixes a bug where page-level CSS could leak between unrelated pages when traversing style parents across top-level route boundaries

• #16178 a7e7567 Thanks @​matthewp! - Fixes SSR builds failing with "No matching renderer found" when a project only has injected routes and no src/pages/ directory

Changelog

Sourced from astro's changelog.

6.1.4

Patch Changes

• #16197 21f9fe2 Thanks @​SchahinRohani! - Remove unused re-exports from assets/utils barrel file to fix Vite build warning

• #16059 6d5469e Thanks @​matthewp! - Fixes Expected 'miniflare' to be defined errors and 404 responses in dev mode when using the Cloudflare adapter and the config file changes. Instead of creating a brand new Vite server on config changes, Astro now performs a Vite in-place restart, allowing the Cloudflare adapter to reuse its existing miniflare instance across restarts.

• #16154 7610ba4 Thanks @​Desel72! - Fixes pages with dots in their filenames (e.g. hello.world.astro) returning 404 when accessed with a trailing slash in the dev server. The trailingSlashForPath function now only forces trailingSlash: 'never' for endpoints with file extensions, allowing pages to correctly respect the user's trailingSlash config.

• #16193 23425e2 Thanks @​matthewp! - Fixes trailingSlash: "always" producing redirect HTML instead of the actual response for extensionless endpoints during static builds

6.1.3

Patch Changes

• #16161 b51f297 Thanks @​matthewp! - Fixes a dev rendering issue with the Cloudflare adapter where head metadata could be missing and dev CSS/scripts could be injected in the wrong place

• #16110 de669f0 Thanks @​tmimmanuel! - Fixes skew protection query parameters not being appended to inter-chunk JavaScript imports in client bundles, which could cause version mismatches during rolling deployments on Vercel

• #16162 a0a49e9 Thanks @​rururux! - Fixes an issue where HMR would not trigger when modifying files while using @​astrojs/cloudflare with prerenderEnvironment: 'node' enabled.

• #16142 7454854 Thanks @​rururux! - Fixes HTML content being incorrectly escaped as plain text when rendering a MDX component using the AstroContainer APIs.

• #16116 12602a9 Thanks @​riderx! - Fixes a bug where page-level CSS could leak between unrelated pages when traversing style parents across top-level route boundaries

• #16178 a7e7567 Thanks @​matthewp! - Fixes SSR builds failing with "No matching renderer found" when a project only has injected routes and no src/pages/ directory

Commits

• 2c9bf5e [ci] release (#16182)
• 5557dca feat: erasableSyntaxOnly (#15719)
• 23425e2 Fix trailingSlash for extensionless endpoints in static builds (#16193)
• 21f9fe2 fix(astro): remove unused re-exports causing Vite build warning (#16197)
• 6d5469e Preserve Cloudflare miniflare instance across dev server config restarts (#16...
• 604f939 [ci] format
• 080d867 test: increase testing coverage (#16189)
• 3cd1b16 fix(e2e): remove bogus Node.js import breaking actions-blog tests (#16183)
• 7610ba4 Fix periods in URLs with trailing slashes causing 404s in dev server (#16154)
• b5b8093 [ci] release (#16159)
• Additional commits viewable in compare view

Updates marked from 17.0.5 to 18.0.0

Release notes

Sourced from marked's releases.

v18.0.0

18.0.0 (2026-04-07)

Bug Fixes

• Bump typescript from 5.9.3 to 6.0.2 (#3934) (e8efc51)
• prevent GFM table tokens from greedily capturing trailing newlines (#3926) (40f2665)
• prevent heading and def tokens from greedily capturing multiple newlines (#3925) (b379e3e)
• trim blank lines from block tokens (#3939) (b70895f)

BREAKING CHANGES

• trim trailing blank lines from block tokens
• update Typescript to v6

v17.0.6

17.0.6 (2026-04-05)

Bug Fixes

• avoid race condition in async parallel parse/parseInline with hooks (#3924) (6e96fa7)
• cli: honor positional input file (#3922) (a1c2617)
• cli: use file URL for config import (#3923) (73e1f3f)

Commits

• 28954e0 chore(release): 18.0.0 [skip ci]
• b70895f fix: trim blank lines from block tokens (#3939)
• 40f2665 fix: prevent GFM table tokens from greedily capturing trailing newlines (#3926)
• b379e3e fix: prevent heading and def tokens from greedily capturing multiple newlines...
• e8efc51 fix: Bump typescript from 5.9.3 to 6.0.2 (#3934)
• 71e5ae3 chore(deps-dev): Bump esbuild from 0.27.4 to 0.28.0 (#3940)
• b436e82 chore(deps-dev): Bump eslint from 10.1.0 to 10.2.0 (#3941)
• e07037e chore(release): 17.0.6 [skip ci]
• 6e96fa7 fix: avoid race condition in async parallel parse/parseInline with hooks (#3924)
• 73e1f3f fix(cli): use file URL for config import (#3923)
• Additional commits viewable in compare view

Updates mermaid from 11.13.0 to 11.14.0

Release notes

Sourced from mermaid's releases.

mermaid@11.14.0

Thanks to our awesome mermaid community that contributed to this release: @​ashishjain0512, @​tractorjuice, @​autofix-ci[bot], @​aloisklink, @​knsv, @​kibanana, @​chandershekhar22, @​khalil, @​ytatsuno, @​sidharthv96, @​github-actions[bot], @​dripcoding, @​knsv-bot, @​jeroensmink98, @​Alex9583, @​GhassenS, @​omkarht, @​darshanr0107, @​leentaylor, @​lee-treehouse, @​veeceey, @​turntrout, @​Mermaid-Chart, @​BambioGaming, Claude

Releases

@​mermaid-js/examples@​1.2.0

Minor Changes

• #7526 efe218a - add new TreeView diagram

mermaid@11.14.0

Minor Changes

• #7526 efe218a - Add Wardley Maps diagram type (beta)

  Adds Wardley Maps as a new diagram type to Mermaid (available as wardley-beta). Wardley Maps are visual representations of business strategy that help map value chains and component evolution.

  Features:

  • Component positioning with [visibility, evolution] coordinates (OWM format)
  • Anchors for users/customers
  • Multiple link types: dependencies, flows, labeled links
  • Evolution arrows and trend indicators
  • Custom evolution stages with optional dual labels
  • Custom stage widths using @​boundary notation
  • Pipeline components with visibility inheritance
  • Annotations, notes, and visual elements
  • Source strategy markers: build, buy, outsource, market
  • Inertia indicators
  • Theme integration

  Implementation includes parser, D3.js renderer, unit tests, E2E tests, and comprehensive documentation.

• #7526 efe218a - feat: implement neo look styling for state diagrams

• #7526 efe218a - feat: implement neo look support for sequence diagrams with drop shadows, and enhanced styling

• #7526 efe218a - feat: add randomize config option for architecture diagrams, defaulting to false for deterministic layout

• #7526 efe218a - feat: Add option to change timeline direction

• #7526 efe218a - Fix duplicate SVG element IDs when rendering multiple diagrams on the same page. Internal element IDs (nodes, edges, markers, clusters) are now prefixed with the diagram's SVG element ID across all diagram types. Custom CSS or JS using exact ID selectors like #arrowhead should use attribute-ending selectors like [id$="-arrowhead"] instead.

• #7526 efe218a - feat: implement neo look styling for ER diagrams

• #7526 efe218a - feat: implement neo look styling for requirement diagrams

• #7526 efe218a - feat: add theme support for data label colour in xy chart

... (truncated)

Commits

• 2b9d054 Version Packages (#7561)
• efe218a Release candidate 11.14.0 (#7526)
• d2b5b2b chore: Editor Picker V2 (#7497)
• 07c554e Setting the link to Get started to the correct on
• See full diff in compare view

Updates starlight-links-validator from 0.21.0 to 0.22.0

Release notes

Sourced from starlight-links-validator's releases.

starlight-links-validator@0.22.0

Minor Changes

• #151 6f66387 Thanks @​HiDeoo! - Adds support for validating frontmatter links transformed by Starlight route data middleware.

Changelog

Sourced from starlight-links-validator's changelog.

0.22.0

Minor Changes

• #151 6f66387 Thanks @​HiDeoo! - Adds support for validating frontmatter links transformed by Starlight route data middleware.

Commits

• 1f209f0 ci: release (#152)
• 6f66387 Add support for route data middleware frontmatter link transforms (#151)
• See full diff in compare view

Updates starlight-scroll-to-top from 0.4.0 to 1.0.1

Release notes

Sourced from starlight-scroll-to-top's releases.

starlight-scroll-to-top@1.0.1

Major Changes

• 96d9709 Thanks @​frostybee! - threshold option now uses absolute pixels instead of percentage #18

The threshold option now accepts an absolute pixel value instead of a percentage of the total page height. This provides consistent button visibility behavior regardless of page length.

⚠Breaking change: Update any existing threshold values in your configuration. For example, threshold: 30 (30%) should be replaced with an absolute pixel value such as threshold: 300 (300px).

The default value has changed from 30 (30%) to 300 (300px).

Changelog

Sourced from starlight-scroll-to-top's changelog.

1.0.1

Patch Changes

• 9534f53 Thanks @​frostybee! - Fix npm publish issue by bumping past unpublishable version 1.0.0

1.0.0

Major Changes

• 96d9709 Thanks @​frostybee! - threshold option now uses absolute pixels instead of percentage

  The threshold option now accepts an absolute pixel value instead of a percentage of the total page height. This provides consistent button visibility behavior regardless of page length.

  Breaking change: Update any existing threshold values in your configuration. For example, threshold: 30 (30%) should be replaced with an absolute pixel value such as threshold: 300 (300px).

  The default value has changed from 30 (30%) to 300 (300px).

Commits

• 299cc8f ci: release
• 7d0e529 ci: release
• 96d9709 feat: upgrade to Astro v6, harden CI, and fix threshold to use absolute pixel...
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for starlight-scroll-to-top since your current version.

Updates eslint from 10.1.0 to 10.2.0

Release notes

Sourced from eslint's releases.

v10.2.0

Features

• 586ec2f feat: Add meta.languages support to rules (#20571) (Copilot)
• 14207de feat: add Temporal to no-obj-calls (#20675) (Pixel998)
• bbb2c93 feat: add Temporal to ES2026 globals (#20672) (Pixel998)

Bug Fixes

• 542cb3e fix: update first-party dependencies (#20714) (Francesco Trotta)

Documentation

• a2af743 docs: add language to configuration objects (#20712) (Francesco Trotta)
• 845f23f docs: Update README (GitHub Actions Bot)
• 5fbcf59 docs: remove sourceType from ts playground link (#20477) (Tanuj Kanti)
• 8702a47 docs: Update README (GitHub Actions Bot)
• ddeaded docs: Update README (GitHub Actions Bot)
• 2b44966 docs: add Major Releases section to Manage Releases (#20269) (Milos Djermanovic)
• eab65c7 docs: update eslint versions in examples (#20664) (루밀LuMir)
• 3e4a299 docs: update ESM Dependencies policies with note for own-usage packages (#20660) (Milos Djermanovic)

Chores

• 8120e30 refactor: extract no unmodified loop condition (#20679) (kuldeep kumar)
• 46e8469 chore: update dependency markdownlint-cli2 to ^0.22.0 (#20697) (renovate[bot])
• 01ed3aa test: add unit tests for unicode utilities (#20622) (Manish chaudhary)
• 811f493 ci: remove --legacy-peer-deps from types integration tests (#20667) (Milos Djermanovic)
• 6b86fcf chore: update dependency npm-run-all2 to v8 (#20663) (renovate[bot])
• 632c4f8 chore: add prettier update commit to .git-blame-ignore-revs (#20662) (루밀LuMir)
• b0b0f21 chore: update dependency eslint-plugin-regexp to ^3.1.0 (#20659) (Milos Djermanovic)
• 228a2dd chore: update dependency eslint-plugin-eslint-plugin to ^7.3.2 (#20661) (Milos Djermanovic)
• 3ab4d7e test: Add tests for eslintrc-style keys (#20645) (kuldeep kumar)

Commits

• 000128c 10.2.0
• 1988fad Build: changelog update for 10.2.0
• 542cb3e fix: update first-party dependencies (#20714)
• a2af743 docs: add language to configuration objects (#20712)
• 845f23f docs: Update README
• 5fbcf59 docs: remove sourceType from ts playground link (#20477)
• 8702a47 docs: Update README
• ddeaded docs: Update README
• 8120e30 refactor: extract no unmodified loop condition (#20679)
• 46e8469 chore: update dependency markdownlint-cli2 to ^0.22.0 (#20697)
• Additional commits viewable in compare view

Updates http-proxy-agent from 8.0.0 to 9.0.0

Release notes

Sourced from http-proxy-agent's releases.

http-proxy-agent@9.0.0

Major Changes

• 7d12b51: Set minimum Node.js version to 20

Patch Changes

• 7ca27d0: Simplify package.json exports to remove unnecessary imports restriction
• Updated dependencies [ca12148]
• Updated dependencies [7d12b51]
• Updated dependencies [7ca27d0]
  • agent-base@9.0.0

Changelog

Sourced from http-proxy-agent's changelog.

9.0.0

Major Changes

• 7d12b51: Set minimum Node.js version to 20

Patch Changes

• 7ca27d0: Simplify package.json exports to remove unnecessary imports restriction
• Updated dependencies [ca12148]
• Updated dependencies [7d12b51]
• Updated dependencies [7ca27d0]
  • agent-base@9.0.0

Commits

• af317e0 Version Packages (#397)
• 7ca27d0 Simplify package.json exports to remove unnecessary imports restriction (#408)
• 7d12b51 Set minimum Node.js version to 20 and add Node 24.x to CI matrix
• See full diff in compare view

Updates https-proxy-agent from 8.0.0 to 9.0.0

Release notes

Sourced from https-proxy-agent's releases.

https-proxy-agent@9.0.0

Major Changes

• 7d12b51: Set minimum Node.js version to 20

Patch Changes

• 7ca27d0: Simplify package.json exports to remove unnecessary imports restriction
• Updated dependencies [ca12148]
• Updated dependencies [7d12b51]
• Updated dependencies [7ca27d0]
  • agent-base@9.0.0

Changelog

Sourced from https-proxy-agent's changelog.

9.0.0

Major Changes

• 7d12b51: Set minimum Node.js version to 20

Patch Changes

• 7ca27d0: Simplify package.json exports to remove unnecessary imports restriction
• Updated dependencies [ca12148]
• Updated dependencies [7d12b51]
• Updated dependencies [7ca27d0]
  • agent-base@9.0.0

Commits

• af317e0 Version Packages (#397)
• 7ca27d0 Simplify package.json exports to remove unnecessary imports restriction (#408)
• 7d12b51 Set minimum Node.js version to 20 and add Node 24.x to CI matrix
• See full diff in compare view

Updates vitest from 4.1.2 to 4.1.3

Release notes

Sourced from vitest's releases.

v4.1.3

   🚀 Experimental Features

• Add experimental.preParse flag  -  by @​sheremet-va in vitest-dev/vitest#10070 (78273)
• Support browser.locators.exact option  -  by @​sheremet-va in vitest-dev/vitest#10013 (48799)
• Add TestAttachment.bodyEncoding  -  by @​hi-ogawa in vitest-dev/vitest#9969 (89ca0)
• Support custom snapshot matcher  -  by @​hi-ogawa, Claude Sonnet 4.6 and Codex in vitest-dev/vitest#9973 (59b0e)

   🐞 Bug Fixes

• Advance fake timers with expect.poll interval  -  by @​hi-ogawa and Claude Sonnet 4.6 in vitest-dev/vitest#10022 (3f5bf)
• Add @vitest/coverage-v8 and @vitest/coverage-istanbul as optional dependency  -  by @​alan-agius4 in vitest-dev/vitest#10025 (146d4)
• Fix defineHelper for webkit async stack trace + update playwright 1.59.0  -  by @​hi-ogawa in vitest-dev/vitest#10036 (5a5fa)
• Fix suite hook throwing errors for unused auto test-scoped fixture  -  by @​hi-ogawa and Claude Sonnet 4.6 in vitest-dev/vitest#10035 (39865)
• expect:
  • Remove JestExtendError.context from verbose error reporting  -  by @​hi-ogawa in vitest-dev/vitest#9983 (66751)
  • Don't leak "runner" types  -  by @​sheremet-va in vitest-dev/vitest#10004 (ec204)
• snapshot:
  • Fix flagging obsolete snapshots for snapshot properties mismatch  -  by @​hi-ogawa and Claude Sonnet 4.6 in vitest-dev/vitest#9986 (6b869)
  • Export custom snapshot matcher helper from vitest  -  by @​hi-ogawa and Codex in vitest-dev/vitest#10042 (691d3)
• ui:
  • Don't leak vite types  -  by @​sheremet-va in vitest-dev/vitest#10005 (fdff1)
• vm:
  • Fix external module resolve error with deps optimizer query  -  by @​hi-ogawa and Claude Sonnet 4.6 in vitest-dev/vitest#10024 (9dbf4)

    View changes on GitHub

Commits

• 2dc0d62 chore: release v4.1.3
• 7827363 feat: add experimental.preParse flag (#10070)
• 691d341 fix(snapshot): export custom snapshot matcher helper from vitest (#10042)
• 59b0e64 feat(experimental/snapshot): support custom snapshot matcher (#9973)
• 487990a feat(experimental): support browser.locators.exact option (#10013)
• 146d4f0 fix: add @vitest/coverage-v8 and @vitest/coverage-istanbul as optional de...
• 3f5bfa3 fix: advance fake timers with expect.poll interval (#10022)
• 9dbf477 fix(vm): fix external module resolve error with deps optimizer query (#10024)
• ec20455 fix(expect): don't leak "runner" types (#10004)
• 66751c9 fix(expect): remove JestExtendError.context from verbose error reporting (#...
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions