chore(deps-dev): bump the npm group in /.github/frontend with 3 updates

[dependabot]

Bumps the npm group in /.github/frontend with 3 updates: @sveltejs/kit, @sveltejs/vite-plugin-svelte and svelte-check.

Updates @sveltejs/kit from 2.58.0 to 2.59.1

Release notes

Sourced from @​sveltejs/kit's releases.

@​sveltejs/kit@​2.59.1

Patch Changes

• fix: resolve paths to route files with the letter drive on Windows (#15793)

@​sveltejs/kit@​2.59.0

Minor Changes

• feat: support query.batch in requested(...) (#15751)

• breaking: on the server, make the promise returned from refresh represent adding the refresh to the map, not the time it takes to run the remote function (#15705)

• feat: experimental query.live function (#15705)

Patch Changes

• fix: unwrap Promise in RemoteCommand output type (#15771)

• fix: empty call to .updates() on a command/form invocation means "don't update anything" (#15705)

• fix: form.fields.foo.as('checkbox', default_value) now works (#15752)

• fix: remote forms with default values defined by field.as('text', defaultValue) now correctly reset to the provided default values once submitted (#15753)

• fix: make sure queries always get started correctly (#15705)

• fix: allow plain functions as overrides in updates (#15705)

Changelog

Sourced from @​sveltejs/kit's changelog.

2.59.1

Patch Changes

• fix: resolve paths to route files with the letter drive on Windows (#15793)

2.59.0

Minor Changes

• feat: support query.batch in requested(...) (#15751)

• breaking: on the server, make the promise returned from refresh represent adding the refresh to the map, not the time it takes to run the remote function (#15705)

• feat: experimental query.live function (#15705)

Patch Changes

• fix: unwrap Promise in RemoteCommand output type (#15771)

• fix: empty call to .updates() on a command/form invocation means "don't update anything" (#15705)

• fix: form.fields.foo.as('checkbox', default_value) now works (#15752)

• fix: remote forms with default values defined by field.as('text', defaultValue) now correctly reset to the provided default values once submitted (#15753)

• fix: make sure queries always get started correctly (#15705)

• fix: allow plain functions as overrides in updates (#15705)

Commits

• 9cfa07d Version Packages (#15795)
• e547ec1 fix: resolve user files with drive letter on Windows (#15793)
• 522ac32 Version Packages (#15769)
• a416bb0 docs: improve description for read config parameter (#15673)
• af248a7 fix: unwrap Promise in RemoteCommand output type (#15771)
• 1c8e573 fix: remote forms with default values defined by `field.as('text', defaultVal...
• 5b28e23 feat: support query.batch in requested (#15751)
• a074dc1 fix: .as('checkbox', value) was completely broken (#15752)
• 055ac24 feat: experimental query.live remote function (#15705)
• c1d3633 chore: fix IDE typescript errors (#15756)
• See full diff in compare view

Updates @sveltejs/vite-plugin-svelte from 7.0.0 to 7.1.1

Release notes

Sourced from @​sveltejs/vite-plugin-svelte's releases.

@​sveltejs/vite-plugin-svelte@​7.1.1

Patch Changes

• fix: pass typescript.onlyRemoveTypeImports to transformWithOxc in vitePreprocess so that value imports are not dropped when they are only referenced in Svelte template markup (#1326)

• fix: correctly resolve compiled CSS for optimised Svelte dependencies on the server (#1336)

@​sveltejs/vite-plugin-svelte@​7.1.0

Minor Changes

• feat: enable optimizer for server environments during dev (#1328)

Changelog

Sourced from @​sveltejs/vite-plugin-svelte's changelog.

7.1.1

Patch Changes

• fix: pass typescript.onlyRemoveTypeImports to transformWithOxc in vitePreprocess so that value imports are not dropped when they are only referenced in Svelte template markup (#1326)

• fix: correctly resolve compiled CSS for optimised Svelte dependencies on the server (#1336)

7.1.0

Minor Changes

• feat: enable optimizer for server environments during dev (#1328)

Commits

• 508d91b Version Packages (#1339)
• 990e58c fix: correctly resolve Svelte CSS on the server during development (#1336)
• d5458a9 fix: restore value imports stripped by oxc in script preprocessing (#1326)
• 1c85126 Version Packages (#1331)
• 1a4d225 feat: enable optimizer for server environments during dev (#1328)
• d91be5f fix: use correct pnpm catalog syntax
• 4d3afb4 chore: fix audit CI (#1327)
• 8b3687b use modern JSDoc imports (#1309)
• See full diff in compare view

Updates svelte-check from 4.4.6 to 4.4.8

Release notes

Sourced from svelte-check's releases.

svelte-check@4.4.8

Patch Changes

• feat: typescript 6.0 support (#2985)

svelte-check@4.4.7

Patch Changes

• fix: flush stdout/stderr before exit (#3014)

• fix: report diagnostics in tsconfig.json (#3005)

Commits

• 0070c6f Version Packages (#3015)
• 29e2894 feat: typescript 6.0 support (#2985)
• d99bb34 Version Packages (#2999)
• 35428ae fix: flush stdout/stderr before exit in svelte-check (#3014)
• a553963 fix: report diagnostics in tsconfig.json (#3005)
• 4c306eb fix: prevent incorrect $types imports being injected in update import (#3010)
• 31488f9 fix: properly place svelte-ignore comment in quickfix when \<script module> ...
• 5be821d fix: prevent duplicate diagnostics (#3000)
• 8b103ba fix: hoist self-referenced props interface (#2998)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codeant-ai]

Skipping PR review because a bot author is detected.

If you want to trigger CodeAnt AI, comment @codeant-ai review to trigger a manual review.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	npm/​@​sveltejs/​kit@​2.59.1
	npm/​@​sveltejs/​vite-plugin-svelte@​7.1.1
	npm/​svelte-check@​4.4.8

View full report