Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

Bump the patch-updates group with 2 updates

Open
Number: #29
Type: Pull Request
State: Open
Author: dependabot[bot] dependabot[bot]
Association: Contributor
Comments: 0
Created: September 11, 2025 at 03:21 AM UTC
(about 2 months ago)
Updated: September 11, 2025 at 03:22 AM UTC
(about 2 months ago)
Labels:
dependencies javascript
Description:

Bumps the patch-updates group with 2 updates: svelte and @biomejs/biome.

Updates svelte from 5.38.8 to 5.38.9

Release notes

Sourced from svelte's releases.

svelte@5.38.9

Patch Changes

  • chore: generate CSS hash using the filename (#16740)

  • fix: correctly analyze <object.property> components (#16711)

  • fix: clean up scheduling system (#16741)

  • fix: transform input defaults from spread (#16481)

  • fix: don't destroy contents of svelte:boundary unless the boundary is an error boundary (#16746)

Changelog

Sourced from svelte's changelog.

5.38.9

Patch Changes

  • chore: generate CSS hash using the filename (#16740)

  • fix: correctly analyze <object.property> components (#16711)

  • fix: clean up scheduling system (#16741)

  • fix: transform input defaults from spread (#16481)

  • fix: don't destroy contents of svelte:boundary unless the boundary is an error boundary (#16746)

Commits

Updates @biomejs/biome from 2.2.3 to 2.2.4

Release notes

Sourced from @​biomejs/biome's releases.

Biome CLI v2.2.4

2.2.4

Patch Changes

  • #7453 aa8cea3 Thanks @​arendjr! - Fixed #7242: Aliases specified in package.json's imports section now support having multiple targets as part of an array.

  • #7454 ac17183 Thanks @​arendjr! - Greatly improved performance of noImportCycles by eliminating allocations.

    In one repository, the total runtime of Biome with only noImportCycles enabled went from ~23s down to ~4s.

  • #7447 7139aad Thanks @​rriski! - Fixes #7446. The GritQL $... spread metavariable now correctly matches members in object literals, aligning its behavior with arrays and function calls.

  • #6710 98cf9af Thanks @​arendjr! - Fixed #4723: Type inference now recognises index signatures and their accesses when they are being indexed as a string.

    Example

    type BagOfPromises = {
  // This is an index signature definition. It declares that instances of type
  // `BagOfPromises` can be indexed using arbitrary strings.
  [property: string]: Promise<void>;
};

    let bag: BagOfPromises = {};
// Because bag.iAmAPromise is equivalent to bag[&quot;iAmAPromise&quot;], this is
// considered an access to the string index, and a Promise is expected.
bag.iAmAPromise;

  • 351bccd Thanks @​ematipico! - Fixed #7212, now the useOptionalChain rule recognizes optional chaining using typeof (e.g., typeof foo !== 'undefined' && foo.bar).

  • 351bccd Thanks @​ematipico! - Fixed #7323. noUnusedPrivateClassMembers no longer reports as unused TypeScript private members if the rule encounters a computed access on this.

    In the following example, member as previously reported as unused. It is no longer reported.

    class TsBioo {
  private member: number;

    set_with_name(name: string, value: number) {
this[name] = value;
}
}

  • 351bccd Thanks @​ematipico! - Added the new nursery lint rule noJsxLiterals, which disallows the use of string literals inside JSX.

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

2.2.4

Patch Changes

  • #7453 aa8cea3 Thanks @​arendjr! - Fixed #7242: Aliases specified in package.json's imports section now support having multiple targets as part of an array.

  • #7454 ac17183 Thanks @​arendjr! - Greatly improved performance of noImportCycles by eliminating allocations.

    In one repository, the total runtime of Biome with only noImportCycles enabled went from ~23s down to ~4s.

  • #7447 7139aad Thanks @​rriski! - Fixes #7446. The GritQL $... spread metavariable now correctly matches members in object literals, aligning its behavior with arrays and function calls.

  • #6710 98cf9af Thanks @​arendjr! - Fixed #4723: Type inference now recognises index signatures and their accesses when they are being indexed as a string.

    Example

    type BagOfPromises = {
  // This is an index signature definition. It declares that instances of type
  // `BagOfPromises` can be indexed using arbitrary strings.
  [property: string]: Promise<void>;
};

    let bag: BagOfPromises = {};
// Because bag.iAmAPromise is equivalent to bag[&quot;iAmAPromise&quot;], this is
// considered an access to the string index, and a Promise is expected.
bag.iAmAPromise;

  • 351bccd Thanks @​ematipico! - Fixed #7212, now the useOptionalChain rule recognizes optional chaining using typeof (e.g., typeof foo !== 'undefined' && foo.bar).

  • 351bccd Thanks @​ematipico! - Fixed #7323. noUnusedPrivateClassMembers no longer reports as unused TypeScript private members if the rule encounters a computed access on this.

    In the following example, member as previously reported as unused. It is no longer reported.

    class TsBioo {
  private member: number;

    set_with_name(name: string, value: number) {
this[name] = value;
}
}

  • 351bccd Thanks @​ematipico! - Added the new nursery lint rule noJsxLiterals, which disallows the use of string literals inside JSX.

    The rule catches these cases:

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Pull Request Statistics
Commits:
1
Files Changed:
2
Additions:
+74
Deletions:
-74
Package Dependencies
Package:
svelte
Ecosystem:
npm
Version Change:
5.38.8 → 5.38.9
Update Type:
Patch
Package:
@biomejs/biome
Ecosystem:
npm
Version Change:
2.2.3 → 2.2.4
Update Type:
Patch
Actions
View on GitHub View Repository All Dependabot PRs
Technical Details
ID: 7523001
UUID: 2817414799
Node ID: PR_kwDOPKpW3M6n7laP
Host: GitHub
Repository: fishcpy/astro-theme-fishcpy
Merge State: Unknown