build(deps): bump the dev-dependencies group across 1 directory with 4 updates

[dependabot]

Bumps the dev-dependencies group with 3 updates in the / directory: @biomejs/biome, @cloudflare/vitest-pool-workers and typescript.

Updates @biomejs/biome from 2.3.2 to 2.3.8

Release notes

Sourced from @​biomejs/biome's releases.

Biome CLI v2.3.8

2.3.8

Patch Changes

• #8188 4ca088c Thanks @​ematipico! - Fixed #7390, where Biome couldn't apply the correct configuration passed via --config-path.

  If you have multiple root configuration files, running any command with --config-path will now apply the chosen configuration file.

• #8171 79adaea Thanks @​dibashthapa! - Added the new rule noLeakedRender. This rule helps prevent potential leaks when rendering components that use binary expressions or ternaries.

  For example, the following code triggers the rule because the component would render 0:

  const Component = () => {
    const count = 0;
    return <div>{count && <span>Count: {count}</span>}</div>;
  };

• #8116 b537918 Thanks @​Netail! - Added the nursery rule noDuplicatedSpreadProps. Disallow JSX prop spreading the same identifier multiple times.

  Invalid:

  <div {...props} something="else" {...props} />

• #8256 f1e4696 Thanks @​cormacrelf! - Fixed a bug where logs were discarded (the kind from --log-level=info etc.). This is a regression introduced after an internal refactor that wasn't adequately tested.

• #8226 3f19b52 Thanks @​dyc3! - Fixed #8222: The HTML parser, with Vue directives enabled, can now parse v-slot shorthand syntax, e.g. \<template #foo>.

• #8007 182ecdc Thanks @​brandonmcconnell! - Added support for dollar-sign-prefixed filenames in the useFilenamingConvention rule.

  Biome now allows filenames starting with the dollar-sign (e.g. $postId.tsx) by default to support naming conventions used by frameworks such as TanStack Start for file-based-routing.

• #8218 91484d1 Thanks @​hirokiokada77! - Added the noMultiStr rule, which disallows creating multiline strings by escaping newlines.

  Invalid:

  const foo =
    "Line 1\n\
  Line 2";

  Valid:

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

2.3.8

Patch Changes

• #8188 4ca088c Thanks @​ematipico! - Fixed #7390, where Biome couldn't apply the correct configuration passed via --config-path.

  If you have multiple root configuration files, running any command with --config-path will now apply the chosen configuration file.

• #8171 79adaea Thanks @​dibashthapa! - Added the new rule noLeakedRender. This rule helps prevent potential leaks when rendering components that use binary expressions or ternaries.

  For example, the following code triggers the rule because the component would render 0:

  const Component = () => {
    const count = 0;
    return <div>{count && <span>Count: {count}</span>}</div>;
  };

• #8116 b537918 Thanks @​Netail! - Added the nursery rule noDuplicatedSpreadProps. Disallow JSX prop spreading the same identifier multiple times.

  Invalid:

  <div {...props} something="else" {...props} />

• #8256 f1e4696 Thanks @​cormacrelf! - Fixed a bug where logs were discarded (the kind from --log-level=info etc.). This is a regression introduced after an internal refactor that wasn't adequately tested.

• #8226 3f19b52 Thanks @​dyc3! - Fixed #8222: The HTML parser, with Vue directives enabled, can now parse v-slot shorthand syntax, e.g. \<template #foo>.

• #8007 182ecdc Thanks @​brandonmcconnell! - Added support for dollar-sign-prefixed filenames in the useFilenamingConvention rule.

  Biome now allows filenames starting with the dollar-sign (e.g. $postId.tsx) by default to support naming conventions used by frameworks such as TanStack Start for file-based-routing.

• #8218 91484d1 Thanks @​hirokiokada77! - Added the noMultiStr rule, which disallows creating multiline strings by escaping newlines.

  Invalid:

  const foo =
    "Line 1\n\
  Line 2";

  Valid:

  const foo = "Line 1\nLine 2";
  const bar = `Line 1

... (truncated)

Commits

• 0a6b6fb chore: restore version and yaml how they were
• 5d15cd5 chore: revert version
• 59fa146 ci: release (#8263)
• f7e836f feat(biome_js_analyze): implement noProto rule (#8276)
• b537918 feat(js_biome_analyze): implement noDuplicatedSpreadProps (#8116)
• 91484d1 feat(biome_js_analyze): implement noMultiStr rule (#8218)
• 68c052e feat(biome_js_analyze): implement noEqualsToNull rule (#8214)
• 79adaea feat(lint): added new rule no-leaked-render from eslint-react (#8171)
• cd2edd7 feat(js_analyze): implement noTernary (#8201)
• 8e97b89 ci: release (#8161)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​biomejs/biome since your current version.

Updates @cloudflare/vitest-pool-workers from 0.8.71 to 0.10.15

Release notes

Sourced from @​cloudflare/vitest-pool-workers's releases.

@​cloudflare/vitest-pool-workers@​0.10.15

Patch Changes

• Updated dependencies [c15e99e, 31c162a, bd5f087, c6dd86f, 235d325, b17797c, b17797c, 41103f5, ea6fbec, bb47e20, 991760d]:
  • wrangler@4.54.0
  • miniflare@4.20251210.0

@​cloudflare/vitest-pool-workers@​0.10.14

Patch Changes

• Updated dependencies [af54c63, 9988cc9, ce295bf, 45480b1, 9514c9a, 94c67e8, ac861f8, 79d30d4, 56e78c8, f550b62]:
  • wrangler@4.53.0
  • miniflare@4.20251202.1

@​cloudflare/vitest-pool-workers@​0.10.13

Patch Changes

• Updated dependencies [59534ba, 7e80340]:
  • miniflare@4.20251202.0
  • wrangler@4.52.1

@​cloudflare/vitest-pool-workers@​0.10.12

Patch Changes

• Updated dependencies [2b4813b, abe49d8, b154de2, f29e699, 5ee3780, 6e63b57, 71ab562, 76f0540, 2342d2f, 5e937c1, 9a1de61, 6b38532, e4ddbc2, 2aec2b4, 695fa25, 504e258, 5a873bb, d25f7e2, 1cfae2d, e7b690b, 1d685cb, edf896d, 2b4813b, c47ad11, a977701, 9eaa9e2]:
  • miniflare@4.20251128.0
  • wrangler@4.52.0

@​cloudflare/vitest-pool-workers@​0.10.11

Patch Changes

• Updated dependencies [69f4dc3, 1133c4d, 4d61fae, d524e55, 43903a3, e496280]:
  • miniflare@4.20251125.0
  • wrangler@4.51.0

@​cloudflare/vitest-pool-workers@​0.10.10

Patch Changes

• Updated dependencies [0cf696d, 524a6e5, c922a81, bb44120, 4a158e9]:
  • wrangler@4.50.0
  • miniflare@4.20251118.1

@​cloudflare/vitest-pool-workers@​0.10.9

Patch Changes

• Updated dependencies [e5ec8cf, c758809, dfba912]:
  • miniflare@4.20251118.0
  • wrangler@4.49.1

@​cloudflare/vitest-pool-workers@​0.10.8

... (truncated)

Changelog

Sourced from @​cloudflare/vitest-pool-workers's changelog.

0.10.15

Patch Changes

• Updated dependencies [c15e99e, 31c162a, bd5f087, c6dd86f, 235d325, b17797c, b17797c, 41103f5, ea6fbec, bb47e20, 991760d]:
  • wrangler@4.54.0
  • miniflare@4.20251210.0

0.10.14

Patch Changes

• Updated dependencies [af54c63, 9988cc9, ce295bf, 45480b1, 9514c9a, 94c67e8, ac861f8, 79d30d4, 56e78c8, f550b62]:
  • wrangler@4.53.0
  • miniflare@4.20251202.1

0.10.13

Patch Changes

• Updated dependencies [59534ba, 7e80340]:
  • miniflare@4.20251202.0
  • wrangler@4.52.1

0.10.12

Patch Changes

• Updated dependencies [2b4813b, abe49d8, b154de2, f29e699, 5ee3780, 6e63b57, 71ab562, 76f0540, 2342d2f, 5e937c1, 9a1de61, 6b38532, e4ddbc2, 2aec2b4, 695fa25, 504e258, 5a873bb, d25f7e2, 1cfae2d, e7b690b, 1d685cb, edf896d, 2b4813b, c47ad11, a977701, 9eaa9e2]:
  • miniflare@4.20251128.0
  • wrangler@4.52.0

0.10.11

Patch Changes

• Updated dependencies [69f4dc3, 1133c4d, 4d61fae, d524e55, 43903a3, e496280]:
  • miniflare@4.20251125.0
  • wrangler@4.51.0

0.10.10

Patch Changes

• Updated dependencies [0cf696d, 524a6e5, c922a81, bb44120, 4a158e9]:
  • wrangler@4.50.0
  • miniflare@4.20251118.1

0.10.9

... (truncated)

Commits

• d9eae49 Version Packages (#11538)
• 8672321 Version Packages (#11511)
• 0c71b87 Version Packages (#11503)
• 1b3e10d Version Packages (#11427)
• ed5186e add tests for vitest-pool-workers context exports (#11441)
• f87b057 Version Packages (#11374)
• 86eab8e Version Packages (#11356)
• 9cd9b96 Debugging vitest-pool-workers flakes (#11358)
• 9f3cfc2 Version Packages (#11334)
• e5ec8cf Bump the workerd-and-workers-types group with 2 updates (#11318)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​cloudflare/vitest-pool-workers since your current version.

Updates typescript from 5.9.2 to 5.9.3

Release notes

Sourced from typescript's releases.

TypeScript 5.9.3

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

• fixed issues query for Typescript 5.9.0 (Beta).
• fixed issues query for Typescript 5.9.1 (RC).
• No specific changes for TypeScript 5.9.2 (Stable)
• fixed issues query for Typescript 5.9.3 (Stable).

Downloads are available on:

• npm

Commits

• c63de15 Bump version to 5.9.3 and LKG
• 8428ca4 🤖 Pick PR #62438 (Fix incorrectly ignored dts file fr...) into release-5.9 (#...
• a131cac 🤖 Pick PR #62351 (Add missing Float16Array constructo...) into release-5.9 (#...
• 0424333 🤖 Pick PR #62423 (Revert PR 61928) into release-5.9 (#62425)
• bdb641a 🤖 Pick PR #62311 (Fix parenthesizer rules for manuall...) into release-5.9 (#...
• 0d9b9b9 🤖 Pick PR #61978 (Restructure CI to prepare for requi...) into release-5.9 (#...
• 2dce0c5 Intentionally regress one buggy declaration output to an older version (#62163)
• See full diff in compare view

Updates wrangler from 4.45.2 to 4.54.0

Release notes

Sourced from wrangler's releases.

wrangler@4.54.0

Minor Changes

• #11512 c15e99e Thanks @​emily-shen! - Enable using ctx.exports with containers

  You can now use containers with Durable Objects that are accessed via ctx.exports.

  Now your config file can look something like this:

  {
  	"name": "container-app",
  	"main": "src/index.ts",
  	"compatibility_date": "2025-12-01",
  	"compatibility_flags": ["enable_ctx_exports"], // compat flag needed for now.
  	"containers": [
  		{
  			"image": "./Dockerfile",
  			"class_name": "MyDOClassname",
  			"name": "my-container"
  		},
  	],
  	"migrations": [
  		{
  			"tag": "v1",
  			"new_sqlite_classes": ["MyDOClassname"],
  		},
  	],
  	// no need to declare your durable object binding here
  }
  

  Note that when using ctx.exports, where you previously accessed a Durable Object via something like env.DO, you should now access with ctx.exports.MyDOClassname.

  Refer to the docs for more information on using ctx.exports.

• #11508 b17797c Thanks @​dario-piotrowicz! - Wrangler will no longer try to add additional configuration to projects using @cloudflare/vite-plugin when deploying or running wrangler setup

• #11508 b17797c Thanks @​dario-piotrowicz! - When a Vite project is detected, install @cloudflare/vite-plugin

• #11576 bb47e20 Thanks @​dario-piotrowicz! - Support Analog projects in autoconfig

• #10582 991760d Thanks @​flakey5! - Add containers ssh command

Patch Changes

• #11467 235d325 Thanks @​edmundhung! - fix: prevent reporting SQLite error from wrangler d1 execute to Sentry

• #11414 41103f5 Thanks @​petebacondarwin! - add extra logging to user log-in flow for diagnosing failed login requests

• #11559 ea6fbec Thanks @​nikitassharma! - Remove image validation for containers on wrangler deploy.

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: dependencies, npm. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.