chore(deps): bump the npm group across 1 directory with 5 updates

[dependabot]

Bumps the npm group with 5 updates in the /ui directory:

Package	From	To
zod	3.23.8	3.24.0
prettier	3.3.3	3.4.2
prettier-plugin-svelte	3.2.8	3.3.2
svelte-check	4.0.9	4.1.1
typescript	5.6.3	5.7.2

Updates zod from 3.23.8 to 3.24.0

Release notes

Sourced from zod's releases.

v3.24.0

New features

Implement the Standard Schema spec

This is the first version of Zod to implement the Standard Schema spec. This is a new community effort among several validation library authors to implement a common interface, with the goal of simplifying the process of integrating schema validators with the rest of the ecosystem. Read more about the project and goals here.

z.string().jwt()

Thanks to @​Mokshit06 and @​Cognition-Labs for this contribution!

To verify that a string is a valid 3-part JWT.

z.string().jwt();

⚠️ This does not verify your JWT cryptographically! It merely ensures its in the proper format. Use a library like jsonwebtoken to verify the JWT signature, parse the token, and read the claims.

To constrain the JWT to a specific algorithm:

z.string().jwt({ alg: "RS256" });

z.string().base64url()

Thank you to @​marvinruder!

To complement the JWT validation, Zod 3.24 implements a standalone .base64url() string validation API. (The three elements of JWTs are base64url-encoded JSON strings.)

z.string().base64url()

This functionality is available along the standard z.string().base64() validator added in Zod 3.23.

z.string().cidr()

Thanks to @​wataryooou for their work on this!

A validator for CIDR notation for specifying IP address ranges, e.g. 192.24.12.0/22.

z.string().cidr()

To specify an IP version:

... (truncated)

Commits

• b333f96 Fix deno tests
• 964d622 Fix lint
• b68c05f feat: Add JWT string validator (#3893)
• c1dd537 Adds frrm package to documentation (#3818)
• 69a1798 Implement Standard Schema spec (#3850)
• 963386d Fix lint
• 3755146 Remove createParams cascade from .array() (#3530)
• 6407bed Allow creation of discriminated unions with a readonly array of options (#3535)
• b85686a Add support for base64url strings (#3712)
• 71a0c33 docs: add info on unqualified local datetime strings (#3760)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by colinhacks, a new releaser for zod since your current version.

Updates prettier from 3.3.3 to 3.4.2

Release notes

Sourced from prettier's releases.

3.4.2

🔗 Changelog

3.4.1

🔗 Changelog

3.4.0

diff

🔗 Release note

Changelog

Sourced from prettier's changelog.

3.4.2

diff

Treat U+30A0 & U+30FB in Katakana Block as CJK (#16796 by @​tats-u)

Prettier doesn't treat U+30A0 & U+30FB as Japanese. U+30FB is commonly used in Japanese to represent the delimitation of first and last names of non-Japanese people or “and”. The following “C言語・C++・Go・Rust” means “C language & C++ & Go & Rust” in Japanese.

<!-- Input (--prose-wrap=never) -->
C言
語
・
C++
・
Go
・
Rust
<!-- Prettier 3.4.1 -->
C言語・ C++ ・ Go ・ Rust
<!-- Prettier 3.4.2 -->
C言語・C++・Go・Rust

U+30A0 can be used as the replacement of the - in non-Japanese names (e.g. “Saint-Saëns” (Charles Camille Saint-Saëns) can be represented as “サン゠サーンス” in Japanese), but substituted by ASCII hyphen (U+002D) or U+FF1D (full width hyphen) in many cases (e.g. “サン=サーンス” or “サン＝サーンス”).

Fix comments print on class methods with decorators (#16891 by @​fisker)

// Input
class A {
  @decorator
  /** 
   * The method description
   *
  */
  async method(foo: Foo, bar: Bar) {
    console.log(foo);
  }
}
// Prettier 3.4.1
class A {
@​decorator
async /**
</tr></table>

... (truncated)

Commits

• cca9461 Release 3.4.2
• 572bebe Fix comments on class methods with decorators (#16891)
• 359c4f0 chore(deps): update dependency @​angular/compiler to v19.0.1 (#16903)
• 6470996 chore(deps): update dependency @​glimmer/syntax to v0.93.1 (#16904)
• e13614f Correct fit() for fill() (#16899)
• 10db357 Remove check on TSImportType.isTypeOf (#16892)
• ac46a4f Treat U+30A0 & U+30FB in Katakana Block as CJK (#16796)
• d52e905 Add test for #16207 (#16890)
• a1e354d Clean changelog_unreleased
• 99875da Bump Prettier dependency to 3.4.1
• Additional commits viewable in compare view

Updates prettier-plugin-svelte from 3.2.8 to 3.3.2

Changelog

Sourced from prettier-plugin-svelte's changelog.

3.3.2

• (fix) Svelte 5: handle type annotations on Svelte control flow blocks
• (fix) preserve style/script tags at the end of the file when using svelteSortOrder: "none"

3.3.1

• (feat) Svelte 5: support upcoming bind:value={get, set}

3.3.0

• (feat) Svelte 5: support upcoming <svelte:boundary>
• (feat) Svelte 5: support upcoming <svelte:html>
• (feat) Svelte 5: support upcoming #each without as

Commits

• 76c04eb fix: preserve style/script tags at the end of the file when using `svelte...
• d81ffcb fix: handle type annotations on Svelte control flow blocks
• ab6e713 feat: support bind:value={get, set}
• 4e88090 chore: refactor printJS
• cb3ab67 feat: support #each without as
• 29d9f94 feat: support upcoming \<svelte:boundary> / \<svelte:html> (#474)
• See full diff in compare view

Updates svelte-check from 4.0.9 to 4.1.1

Release notes

Sourced from svelte-check's releases.

svelte-check-4.1.1

• fix: support each without as (#2615)

svelte-check-4.1.0

• fix: don't move appended content from previous node while hoisting interface (#2596)
• fix: ensure hoisted interfaces are moved after hoisted imports (#2597)
• fix: preserve bind:... mapping on elements for better source maps
• feat: prepare for some upcoming features of Svelte 5

Commits

• 02db54d fix: support each without as (#2615)
• 131f78a fix: make sure snapshots are shared per ProjectService (#2614)
• 89cc22b fix: ensure imports without semicolon doesn't break intellisense (#2610)
• fda35fe chore: update tests
• 0bf5836 chore: pin TS to 5.6 for now
• 10820f9 fix: ensure organize imports doesn't mess with generated $$Component type
• cda5c86 fix: preserve bind:... mapping on elements for better source maps
• be44125 feat: support bind:value={get, set}
• 695c660 chore: bump prettier-plugin-svelte
• 9a5a6af feat: hoist snippets to module context if possible (#2601)
• Additional commits viewable in compare view

Updates typescript from 5.6.3 to 5.7.2

Release notes

Sourced from typescript's releases.

TypeScript 5.7

For release notes, check out the release announcement.

• fixed issues query for Typescript 5.7.0 (Beta).
• fixed issues query for Typescript 5.7.1 (RC).
• fixed issues query for Typescript 5.7.2 (Stable).

Downloads are available on:

• npm

TypeScript 5.7 RC

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for Typescript 5.7.0 (Beta).
• fixed issues query for Typescript 5.7.1 (RC).

Downloads are available on:

• npm

TypeScript 5.7 Beta

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for Typescript 5.7.0 (Beta).

Downloads are available on:

• npm

Commits

• d701d90 Bump version to 5.7.2 and LKG
• 0503a63 🤖 Pick PR #60450 (Move to file: fix detection of refe...) into release-5.7 (#...
• 3140dbb 🤖 Pick PR #60488 (Stub out copilotRelated command) into release-5.7 (#60495)
• c1216de Update LKG
• 3ee2b95 🤖 Pick PR #60415 (Fix false positive rewriteRelativeI...) into release-5.7 (#...
• 44bd3f2 Bump version to 5.7.1-rc and LKG
• 5925c81 Update LKG
• 84d58cf Merge remote-tracking branch 'origin/main' into release-5.7
• 0ec4d30 Fixing exception on unsaved file (#60362)
• 11b2930 Add compatible overloads that accept ArrayBuffer to BigInt64Array/BigUint64Ar...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #362.