build(deps-dev): Bump the dev-dependencies group across 1 directory with 4 updates

[dependabot]

Bumps the dev-dependencies group with 4 updates in the / directory: @biomejs/biome, @types/node, typescript and vitest.

Updates @biomejs/biome from 1.9.4 to 2.4.16

Release notes

Sourced from @​biomejs/biome's releases.

Biome CLI v2.4.16

2.4.16

Patch Changes

• #10329 ef764d5 Thanks @​Conaclos! - Fixed an issue where diagnostics showed an incorrect location in Astro files.

• #10363 50aa415 Thanks @​dyc3! - Fixed HTML formatting for a case where comments could cause the formatter to split up a closing tag, which would cause the resulting HTML to be syntactically invalid.

  Input:

  <span
    ><!-- 1
  --><span>a</span
    ><!-- 2
  --><span>b</span
    ><!-- 3
  --></span>

  Output:

    <span
  	  ><!-- 1
  - --> <span>a</span<!-- 2
  - --> ><span>b</span><!-- 3
  + --><span>a</span><!-- 2
  + --><span>b</span><!-- 3
    --></span
    >

• #10465 0c718da Thanks @​dfedoryshchev! - Fixed diagnostics emitted by the noUntrustedLicenses rule.

• #10358 05c2617 Thanks @​dyc3! - Fixed #10356: biome rage --linter now displays rules enabled through linter domains in the enabled rules list.

• #10300 950247c Thanks @​dyc3! - Fixed #10265: Svelte function bindings such as bind:value={get, set} are now parsed more precisely, so noCommaOperator won't emit false positives for that syntax anymore.

• #9786 e71f584 Thanks @​MeGaNeKoS! - Fixed #8480: useDestructuring now provides variableDeclarator and assignmentExpression options to control which contexts enforce destructuring, matching ESLint's prefer-destructuring configuration. Both default to {array: true, object: true}. The diagnostic for object destructuring in assignment expressions now instructs users to wrap the assignment in parentheses.

• #10425 1948b72 Thanks @​sjh9714! - Fixed #10244: The useOptionalChain rule now detects negated guard inequality chains like !foo || foo.bar !== "x".

• #10442 001f94f Thanks @​ematipico! - Fixed #10411: noMisusedPromises no longer causes a stack overflow when a nested function returns an object with shorthand properties that shadow destructured variables from an outer scope.

• #10318 9b1577f Thanks @​dyc3! - Added support for formatter.trailingCommas in overrides. This option was previously available in the top-level formatter configuration but missing from formatter overrides.

• #10319 2e37709 Thanks @​dyc3! - Fixed Vue and Svelte formatting for standalone interpolations in inline elements. Biome now preserves existing newlines in cases like:

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

2.4.16

Patch Changes

• #10329 ef764d5 Thanks @​Conaclos! - Fixed an issue where diagnostics showed an incorrect location in Astro files.

• #10363 50aa415 Thanks @​dyc3! - Fixed HTML formatting for a case where comments could cause the formatter to split up a closing tag, which would cause the resulting HTML to be syntactically invalid.

  Input:

  <span
    ><!-- 1
  --><span>a</span
    ><!-- 2
  --><span>b</span
    ><!-- 3
  --></span>

  Output:

    <span
  	  ><!-- 1
  - --> <span>a</span<!-- 2
  - --> ><span>b</span><!-- 3
  + --><span>a</span><!-- 2
  + --><span>b</span><!-- 3
    --></span
    >

• #10465 0c718da Thanks @​dfedoryshchev! - Fixed diagnostics emitted by the noUntrustedLicenses rule.

• #10358 05c2617 Thanks @​dyc3! - Fixed #10356: biome rage --linter now displays rules enabled through linter domains in the enabled rules list.

• #10300 950247c Thanks @​dyc3! - Fixed #10265: Svelte function bindings such as bind:value={get, set} are now parsed more precisely, so noCommaOperator won't emit false positives for that syntax anymore.

• #9786 e71f584 Thanks @​MeGaNeKoS! - Fixed #8480: useDestructuring now provides variableDeclarator and assignmentExpression options to control which contexts enforce destructuring, matching ESLint's prefer-destructuring configuration. Both default to {array: true, object: true}. The diagnostic for object destructuring in assignment expressions now instructs users to wrap the assignment in parentheses.

• #10425 1948b72 Thanks @​sjh9714! - Fixed #10244: The useOptionalChain rule now detects negated guard inequality chains like !foo || foo.bar !== "x".

• #10442 001f94f Thanks @​ematipico! - Fixed #10411: noMisusedPromises no longer causes a stack overflow when a nested function returns an object with shorthand properties that shadow destructured variables from an outer scope.

• #10318 9b1577f Thanks @​dyc3! - Added support for formatter.trailingCommas in overrides. This option was previously available in the top-level formatter configuration but missing from formatter overrides.

• #10319 2e37709 Thanks @​dyc3! - Fixed Vue and Svelte formatting for standalone interpolations in inline elements. Biome now preserves existing newlines in cases like:

... (truncated)

Commits

• 5f4ea56 ci: release (#10326)
• de2a33c fix(core): regression in emitted types (#10478)
• d835303 docs: remove redundant default phrase in useConsistentObjectDefinitions rul...
• 4f1aaf2 fix: incorrect build when using build or test (#10426)
• dc73b6b refactor: make plugins opt-in via feature gate (#10418)
• e71f584 feat(useDestructuring): add options for assignment/declaration and improve di...
• 9b1577f fix(config): support trailingCommas in overrides (#10318)
• 9dd3271 ci: release (#10210)
• 7b8d4e1 feat(lint/html/vue): add useVueValidVFor (#10195)
• ba3480e feat(lint/js): add useTestHooksInOrder (#9394)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​biomejs/biome since your current version.

Updates @types/node from 22.19.19 to 25.9.1

Commits

• See full diff in compare view

Updates typescript from 5.9.3 to 6.0.3

Release notes

Sourced from typescript's releases.

TypeScript 6.0.3

For release notes, check out the release announcement blog post.

• fixed issues query for TypeScript 6.0.0 (Beta).
• fixed issues query for TypeScript 6.0.1 (RC).
• fixed issues query for TypeScript 6.0.2 (Stable).
• fixed issues query for TypeScript 6.0.3 (Stable).

Downloads are available on:

• npm

TypeScript 6.0

For release notes, check out the release announcement blog post.

• fixed issues query for TypeScript 6.0.0 (Beta).
• fixed issues query for TypeScript 6.0.1 (RC).
• fixed issues query for TypeScript 6.0.2 (Stable).

Downloads are available on:

• npm

TypeScript 6.0 Beta

For release notes, check out the release announcement.

• fixed issues query for Typescript 6.0.0 (Beta).

Downloads are available on:

• npm

Commits

• 050880c Bump version to 6.0.3 and LKG
• eeae9dd 🤖 Pick PR #63401 (Also check package name validity in...) into release-6.0 (#...
• ad1c695 🤖 Pick PR #63368 (Harden ATA package name filtering) into release-6.0 (#63372)
• 0725fb4 🤖 Pick PR #63310 (Mark class property initializers as...) into release-6.0 (#...
• 607a22a Bump version to 6.0.2 and LKG
• 9e72ab7 🤖 Pick PR #63239 (Fix missing lib files in reused pro...) into release-6.0 (#...
• 35ff23d 🤖 Pick PR #63163 (Port anyFunctionType subtype fix an...) into release-6.0 (#...
• e175b69 Bump version to 6.0.1-rc and LKG
• af4caac Update LKG
• 8efd7e8 Merge remote-tracking branch 'origin/main' into release-6.0
• Additional commits viewable in compare view

Updates vitest from 4.1.7 to 4.1.8

Release notes

Sourced from vitest's releases.

v4.1.8

   🐞 Bug Fixes

• browser:
  • Disable client cdp API when allowWrite/allowExec: false [backport to v4]  -  by @​hi-ogawa and Codex in vitest-dev/vitest#10450 (e4067)
  • Remove orphaned Playwright route when same module is mocked via multiple ids [backport to v4]  -  by @​toxik and @​Zelys-DFKH in vitest-dev/vitest#10474 (675b4)

    View changes on GitHub

Commits

• e61f2dd chore: release v4.1.8
• e4067b3 fix(browser): disable client cdp API when allowWrite/allowExec: false [ba...
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

🔍 groundtruth — claim check

	Claim	Verdict
❌	file @biomejs/biome	Claimed a change to @biomejs/biome, but it is not among the files changed (package-lock.json, package.json).
❌	tests	Claimed test work, but no test file changed, no test command ran, and the added code has no test assertions.
❌	file @types/node	Claimed a change to @types/node, but it is not among the files changed (package-lock.json, package.json).
⚠️	action: "Bumps the dev-dependencies group with 4 updates in the / directory: [@biomejs/biome](http…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " Patch Changes "	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "- Fixed an issue where diagnostics showed an incorrect location in Astro files. "	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "- Fixed diagnostics emitted by the noUntrustedLicenses rule. "	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "- Fixed #10356: <cod…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "- Fixed #10265: Svel…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "- Fixed #8480: <a hre…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "- Fixed #10244: The …"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "- Fixed #10411: <a h…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "- Added support for formatter.trailingCommas in overrides."	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "- Fixed Vue and Svelte formatting for standalone interpolations in inline elements."	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " <a href="biomejs/biome@de2a33ce8be86b696742f3adee35a66dc9fa…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " <a href="biomejs/biome@d835303700f27f8f362a186a0dddc7995117…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " <a href="biomejs/biome@dc73b6baa55606ec7b6aa9229564b1c14211…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " <a href="biomejs/biome@e71f58490f3121432d1bc24ae5330ecf9639…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " <a href="biomejs/biome@9b1577fa400279d9b0222cbc920cfa9ddcf1…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " <a href="biomejs/biome@7b8d4e161a225f14bc9e070e04cc8572ee98…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " <a href="biomejs/biome@ba3480e62da6ac7f0f9d99126f1459a72306…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " Maintainer changes "	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " <a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&amp;q=mileston…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " <a href="microsoft/TypeScript@9e72ab71b575e26795d0d9eac3d2d…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " <a href="microsoft/TypeScript@35ff23d4b0cc715691323ebe54f52…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " <a href="microsoft/TypeScript@af4caac0e91e838c46b3fdc1c9afa…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " 🐞 Bug Fixes "	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " Remove orphaned Playwright route when same module is mocked via multiple ids [backpor…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " View changes …"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: " <a href="vitest-dev/vitest@e4067b3b150005fd42cf75f994300119…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "@dependabot ignore <dependency name> major version will close this group update PR and …"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "@dependabot ignore <dependency name> minor version will close this group update PR and …"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "@dependabot ignore <dependency name> will close this group update PR and stop Dependabo…"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "@dependabot unignore <dependency name> will remove all of the ignore conditions of the …"	Semantic claim — not machine-verifiable. Review manually.
⚠️	action: "@dependabot unignore <dependency name> <ignore condition> will remove the ignore condit…"	Semantic claim — not machine-verifiable. Review manually.
✅	symbol typescript	typescript appears in the added code.
✅	symbol vitest	vitest appears in the added code.

37 claims · 2 verified · 3 unsupported · 32 to review