build(deps): bump the all-dependencies group across 1 directory with 7 updates

[dependabot]

Bumps the all-dependencies group with 7 updates in the / directory:

Package	From	To
@viglet/viglet-design-system	2026.2.53	2026.2.55
i18next	26.0.10	26.2.0
postcss	8.5.14	8.5.15
react-i18next	17.0.7	17.0.8
@mermaid-js/mermaid-cli	11.14.0	11.15.0
puppeteer	24.43.0	25.0.4
wait-on	9.0.6	9.0.10

Updates @viglet/viglet-design-system from 2026.2.53 to 2026.2.55

Commits

• See full diff in compare view

Updates i18next from 26.0.10 to 26.2.0

Release notes

Sourced from i18next's releases.

v26.2.0

• feat(types): new parseInterpolation TypeOption (default true). When set to false in CustomTypeOptions, the type-level extractor stops parsing translation strings for {{variable}} patterns. Required by i18next-icu users — the default extractor mistakes ICU MessageFormat nested-brace plurals like {count, plural, one {{count} row} other {{count} rows}} for an interpolation block and demands a phantom variable name. The flag is type-only; runtime interpolation is governed by InterpolationOptions and is unaffected. Fixes i18next-icu#85.
• fix(types): expose enableSelector on InitOptions so i18next.init({ enableSelector: 'strict' }) typechecks without a module augmentation. The runtime already reads opts?.enableSelector from init options; this lands the matching type declaration next to the other selector-resolution knobs. Accepts false | true | 'optimize' | 'strict'. Thanks @​Faithfinder (#2431)

v26.1.0

• feat: enableSelector: 'strict' (TypeOptions + runtime option). Opt-in mode that drops the flattened-primary form from NsResource at the type level — every namespace (primary included) is exposed only under its own key on $, uniformly across single- and multi-ns hooks. At runtime, a leading selector path segment matching the scope's namespace list is always rewritten as a namespace prefix, including the primary. Eliminates the silent-miss surface area where t($ => $.primary.foo) typechecks but doesn't resolve under the default mode (see #2429). Backward-compatible: default enableSelector: false | true | 'optimize' behavior is unchanged. Note: strict mode is incompatible with the #2405 pattern (keys whose names match sibling namespaces) — those users should stay on default mode.

Changelog

Sourced from i18next's changelog.

26.2.0

• feat(types): new parseInterpolation TypeOption (default true). When set to false in CustomTypeOptions, the type-level extractor stops parsing translation strings for {{variable}} patterns. Required by i18next-icu users — the default extractor mistakes ICU MessageFormat nested-brace plurals like {count, plural, one {{count} row} other {{count} rows}} for an interpolation block and demands a phantom variable name. The flag is type-only; runtime interpolation is governed by InterpolationOptions and is unaffected. Fixes i18next-icu#85.
• fix(types): expose enableSelector on InitOptions so i18next.init({ enableSelector: 'strict' }) typechecks without a module augmentation. The runtime already reads opts?.enableSelector from init options; this lands the matching type declaration next to the other selector-resolution knobs. Accepts false | true | 'optimize' | 'strict'. Thanks @​Faithfinder (#2431)

26.1.0

• feat: enableSelector: 'strict' (TypeOptions + runtime option). Opt-in mode that drops the flattened-primary form from NsResource at the type level — every namespace (primary included) is exposed only under its own key on $, uniformly across single- and multi-ns hooks. At runtime, a leading selector path segment matching the scope's namespace list is always rewritten as a namespace prefix, including the primary. Eliminates the silent-miss surface area where t($ => $.primary.foo) typechecks but doesn't resolve under the default mode (see #2429). Backward-compatible: default enableSelector: false | true | 'optimize' behavior is unchanged. Note: strict mode is incompatible with the #2405 pattern (keys whose names match sibling namespaces) — those users should stay on default mode.

Commits

• 22fb6ad 26.2.0
• b640ac4 feat(types): parseInterpolation flag for ICU-friendly t() typing (i18next-icu...
• 0b9debd changelog: 26.1.1 entry for #2431
• 50509e4 fix(types): expose enableSelector on InitOptions (#2431)
• 80b5402 Enhance Pro Tip in README with i18next-locize-backend plugin link
• 5af0475 26.1.0
• 85c0951 feat: enableSelector: 'strict' — explicit-ns selector mode, no flattened prim...
• 8fec684 docs(types): clarify ExistsFunction note re: narrowing through wrappers
• See full diff in compare view

Updates postcss from 8.5.14 to 8.5.15

Release notes

Sourced from postcss's releases.

8.5.15

• Fixed declaration parsing performance (by @​homanp).

Changelog

Sourced from postcss's changelog.

8.5.15

• Fixed declaration parsing performance (by @​homanp).

Commits

• eae46db Release 8.5.15 version
• 79508ff Update CI actions
• b128e21 Speed up declaration parsing by avoiding creating new array on each token
• 9825dca Fix code format
• 55789c8 Update dependencies
• 84fbbe9 Install older pnpm action for old Node.js
• 9f860bd Revert pnpm action for old Node.js
• 0877198 Update CI actions
• b2d1a33 Fix linter warnings
• 0700dac Merge pull request #2088 from rootvector2/add-oss-fuzz-harness
• Additional commits viewable in compare view

Updates react-i18next from 17.0.7 to 17.0.8

Changelog

Sourced from react-i18next's changelog.

17.0.8

• fix(types): <Trans i18nKey={$ => ...}> now typechecks under enableSelector: 'strict'. The Trans component's conditional type was gated on _EnableSelector extends true | 'optimize', excluding 'strict' and falling back to the legacy string-key signature. Runtime was already correct (it calls keyFromSelector(i18nKey) whenever typeof i18nKey === 'function'); this is a type-only fix that widens the conditional to include 'strict'. Thanks @​Faithfinder (#1921)

Commits

• a46ad23 17.0.8
• f715031 update i18next dep
• a515d5b changelog: 17.0.8 entry for #1921
• d5ab7c8 fix(types): accept selector i18nKey on <Trans> under enableSelector: 'strict'...
• b91ba36 Add Locize advice section near the top of README
• See full diff in compare view

Updates @mermaid-js/mermaid-cli from 11.14.0 to 11.15.0

Release notes

Sourced from @​mermaid-js/mermaid-cli's releases.

11.15.0

🚀 Features

• feat: add @mermaid-js/layout-tidy-tree support @​aloisklink (#1055)
• feat: add --jobs to limit parallel diagram renders @​aloisklink (#1058)
• feat: support fractional scaling @​patrick-5546 (#1016)

🐛 Bug Fixes

• perf: stop bundling FontAwesome/KaTeX CSS & fonts @​aloisklink (#1061)
• fix: handle a race-condition when writing the file in run() Node.JS API @​aloisklink (#1057)
• fix: bump @mermaid-js/layout-elk to ^0.1.5 || ^0.2 @​aloisklink (#1054)

🧰 Maintenance

• ci(release): improve the release-publish.yml workflow @​aloisklink (#1060)
• ci: run some E2E tests on Windows @​aloisklink (#1059)

📦 Dependency updates

• build(deps): bump mermaid from 11.14.0 to 11.15.0 @dependabot[bot] (#1056)
• build(deps): bump chalk from 5.6.0 to 5.6.2 @dependabot[bot] (#1049)
• build(deps): bump release-drafter/release-drafter from 6.1.0 to 7.3.0 @dependabot[bot] (#1053)
• build(deps-dev): bump yarn-upgrade-all from 0.7.5 to 0.8.1 @dependabot[bot] (#1042)
• build(deps): bump docker/login-action from 3.7.0 to 4.1.0 @dependabot[bot] (#1052)
• build(deps): bump docker/setup-qemu-action from 3.7.0 to 4.0.0 @dependabot[bot] (#1051)
• build(deps): bump github/codeql-action from 4.35.3 to 4.35.4 @dependabot[bot] (#1050)
• build(deps-dev): bump typescript from 5.8.3 to 6.0.3 @dependabot[bot] (#1039)
• build(deps): bump docker/setup-buildx-action from 3.12.0 to 4.0.0 @dependabot[bot] (#1038)
• build(deps): bump github/codeql-action from 4.35.2 to 4.35.3 @dependabot[bot] (#1041)
• build(deps-dev): bump @​tsconfig/node18 from 18.2.4 to 18.2.6 @dependabot[bot] (#1045)
• build(deps): bump actions/upload-artifact from 5.0.0 to 7.0.1 @dependabot[bot] (#1044)

Commits

• ed67a43 refactor: remove \<script> from index.html
• 6ad832f perf: stop bundling FontAwesome/KaTeX CSS & fonts
• 14aa877 ci(release): disable actions/setup-node cache
• 484747a ci(release): quote bash variables correctly
• 1800224 ci(release): include package-lock.json in update
• d90aff9 ci(release): add contents: write permissions
• 3537acd ci: test on Windows
• d225cf3 ci(test): disable strategy.fail-fast
• d311141 test: fix running tests on Windows
• 96b6f30 feat: add @mermaid-js/layout-tidy-tree support
• Additional commits viewable in compare view

Updates puppeteer from 24.43.0 to 25.0.4

Release notes

Sourced from puppeteer's releases.

puppeteer-core: v25.0.4

25.0.4 (2026-05-18)

🛠️ Fixes

• Throw TargetCloseError when session ID not found (#15002) (611abef)

puppeteer: v25.0.4

25.0.4 (2026-05-18)

♻️ Chores

• puppeteer: Synchronize puppeteer versions

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • puppeteer-core bumped from 25.0.3 to 25.0.4

puppeteer-core: v25.0.3

25.0.3 (2026-05-18)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​puppeteer/browsers bumped from 3.0.2 to 3.0.3

puppeteer: v25.0.3

25.0.3 (2026-05-18)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​puppeteer/browsers bumped from 3.0.2 to 3.0.3
    • puppeteer-core bumped from 25.0.2 to 25.0.3

puppeteer-core: v25.0.2

25.0.2 (2026-05-15)

🛠️ Fixes

... (truncated)

Changelog

Sourced from puppeteer's changelog.

25.0.4 (2026-05-18)

♻️ Chores

• puppeteer: Synchronize puppeteer versions

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • puppeteer-core bumped from 25.0.3 to 25.0.4

🛠️ Fixes

• Throw TargetCloseError when session ID not found (#15002) (611abef)

25.0.3 (2026-05-18)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​puppeteer/browsers bumped from 3.0.2 to 3.0.3

25.0.2 (2026-05-15)

♻️ Chores

• puppeteer: Synchronize puppeteer versions

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​puppeteer/browsers bumped from 3.0.1 to 3.0.2

🛠️ Fixes

• update docs text (#14992) (36527b8)

... (truncated)

Commits

• 019b49b chore: release main (#15003)
• 611abef fix: Throw TargetCloseError when session ID not found (#15002)
• 272b850 chore(webmcp): Update list tools test with fixed declarative behavior (#15000)
• acb4b9e chore: release main (#14999)
• cce47de fix: fix tar.exe invocation (#14997)
• 2e315b9 chore(deps): bump the all group with 2 updates (#14995)
• 042838f chore(deps): bump node from e989123 to 050bf2b in /docker in the all grou...
• 3aadc38 chore: release main (#14993)
• 36527b8 fix: update docs text (#14992)
• 3ea7bd5 fix: capitalize "Chrome" in troubleshooting.md (#14991)
• Additional commits viewable in compare view

Updates wait-on from 9.0.6 to 9.0.10

Release notes

Sourced from wait-on's releases.

v9.0.10

Cleaned up unnecessary files from npm published package, added code coverage

Removed:

• .fastembed_cache
• .github
• .nyc_output
• coverage
• .editorconfig
• .nycrc.json
• .prettierrc.js
• eslint.config.mjs

Increased code coverage

Thanks @​aarongoldenthal

Commits

• 27d5744 9.0.10
• c7c97df correct .npmignore for .prettierrc.js
• c152252 9.0.9
• 95f01cd Merge pull request #210 from jeffbski/cleanup-more-npm-publish
• d45cff3 more npm publish cleanup
• bab38d2 9.0.8
• 0ab9473 Merge pull request #209 from jeffbski/exclude-coverage
• 881dfaa also exclude .nyc_output and coverage from npm
• e3dad37 9.0.7
• 5a681e5 Merge pull request #208 from jeffbski/exclude-fastembed-cache-from-npm-publish
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions