chore(deps): bump the minor-and-patch-updates group with 12 updates

[dependabot]

Bumps the minor-and-patch-updates group with 12 updates:

Package	From	To
nanoid	5.1.6	5.1.7
sass	1.97.3	1.98.0
simple-git	3.32.3	3.33.0
sql.js	1.11.0	1.14.1
@iconify-json/material-symbols	1.2.58	1.2.62
@types/chrome	0.0.273	0.1.37
cssnano	7.1.2	7.1.3
cssnano-preset-advanced	7.0.10	7.0.11
eslint-plugin-react-refresh	0.4.26	0.5.2
eslint-plugin-tsdoc	0.3.0	0.5.2
postcss	8.5.6	8.5.8
prettier	3.6.2	3.8.1

Updates nanoid from 5.1.6 to 5.1.7

Release notes

Sourced from nanoid's releases.

5.1.7

• Added --version to CLI (by @​mahmoodhamdi).
• Updated nanoid.js for CDN (by @​mahmoodhamdi).
• Fixed docs (by @​mahmoodhamdi).
• Fixed customRandom types (by @​oguimbal).

Changelog

Sourced from nanoid's changelog.

5.1.7

• Added --version to CLI (by @​mahmoodhamdi).
• Updated nanoid.js for CDN (by @​mahmoodhamdi).
• Fixed docs (by @​mahmoodhamdi).
• Fixed customRandom types (by @​oguimbal).

Commits

• 90f047e Release 5.1.7 version
• 7071a42 Fix Node.js 18 support in CLI in another way
• 8239c4b Fix CLI support for Node.js 18
• 2db7c6b Fix ESLint warnings
• 1231ca7 Update clean-publish and ESLint config
• c7ca9e9 Fix outdated info and links in README (#566)
• e0a3080 Clean up code
• e9be4aa Add --version flag to CLI (#563)
• 1d6f2ff Improve prebuild control
• d8fba79 Update collision calculator URL in all README translations (#568)
• Additional commits viewable in compare view

Updates sass from 1.97.3 to 1.98.0

Release notes

Sourced from sass's releases.

Dart Sass 1.98.0

To install Sass 1.98.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

Command-Line Interface

• Gracefully handle dependency loops in --watch mode.

Dart API

• Add a const Logger.defaultLogger field. This provides a logger that emits to standard error or the browser console, but automatically chooses whether to use terminal colors.

JavaScript API

• Fix a crash when manually constructing a SassCalculation for 'calc' with an argument that can't be simplified.

• Properly emit deprecation warnings as text rather than StringBuffer objects when running in a browser.

• Emit colored warnings and other messages on the console when running in a browser.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.98.0

Command-Line Interface

• Gracefully handle dependency loops in --watch mode.

Dart API

• Add a const Logger.defaultLogger field. This provides a logger that emits to standard error or the browser console, but automatically chooses whether to use terminal colors.

JavaScript API

• Fix a crash when manually constructing a SassCalculation for 'calc' with an argument that can't be simplified.

• Properly emit deprecation warnings as text rather than StringBuffer objects when running in a browser.

• Emit colored warnings and other messages on the console when running in a browser.

Commits

• 5a81ae3 Bump version to 1.98.0 (#2754)
• e25e71d Update immutable to v5.1.5 (#2753)
• 43fac1a Bump actions/upload-artifact from 6 to 7 (#2747)
• 8b85c9a Bump actions/download-artifact from 7 to 8 (#2749)
• 00f83f0 Bump postcss from 8.5.6 to 8.5.8 in /pkg/sass-parser (#2752)
• 0a325a4 Bump actions/attest-build-provenance from 3 to 4 (#2748)
• 7fb3c0f Gracefully handle dependency loops in watch mode (#2746)
• e86d044 Bump eslint from 9.39.3 to 10.0.1 in /pkg/sass-parser (#2743)
• 4bcd256 Add Logger.defaultLogger to automatically choose whether to use colors (#2742)
• c3f8ff0 Always convert printed objects to strings in JS (#2741)
• Additional commits viewable in compare view

Updates simple-git from 3.32.3 to 3.33.0

Release notes

Sourced from simple-git's releases.

simple-git@3.33.0

Minor Changes

• a263635: Use pathspec wrappers for remote and local paths when running either git.clone or git.mirror to avoid leaving them less open for unexpected outcomes when passing unsanitised data into these tasks.

Patch Changes

• e253a0d: Enhanced git -c checks in unsafe plugin.

  Thanks to @​JohannesLks for identifying the issue

Changelog

Sourced from simple-git's changelog.

3.33.0

Minor Changes

• a263635: Use pathspec wrappers for remote and local paths when running either git.clone or git.mirror to avoid leaving them less open for unexpected outcomes when passing unsanitised data into these tasks.

Patch Changes

• e253a0d: Enhanced git -c checks in unsafe plugin.

  Thanks to @​JohannesLks for identifying the issue

Commits

• 8bbbabc Version Packages
• a263635 Clone API use pathspec (#1132)
• e253a0d Fix/block unsafe 2603 (#1135)
• See full diff in compare view

Updates sql.js from 1.11.0 to 1.14.1

Release notes

Sourced from sql.js's releases.

Release v1.14.1

No release notes provided.

Release v1.14.0

No release notes provided.

Release v1.13.0

sql.js v1.13 Release Notes

This release of sql.js brings significant updates and improvements, primarily focused on modernizing the underlying toolchain and enhancing functionality.

The online playground was rewritten:

Key highlights include:

🚀 Dependency Updates and Modernization

• SQLite Core Upgrade: sql.js is now built with SQLite version 3.49. This incorporates all the enhancements and bug fixes from SQLite versions 3.45.0 through 3.49.1. See SQLite release notes. Notable SQLite improvements in this range include:

  • Query Planner Enhancements: Expect improved query performance due to optimizations in query planning, especially for complex queries, star joins, and queries involving IN operators. These improvements are detailed in the SQLite release notes for versions 3.47.0, 3.49.0, and 3.46.0.
  • New SQL Features: Take advantage of new SQL functions and features introduced in SQLite 3.47+, such as:
    • Enhanced iif() function with support for multiple arguments (SQLite 3.49.0).
    • Right-hand side negative indexing for JSON ->> operator (SQLite 3.47.0).
    • json_pretty() function for formatted JSON output (SQLite 3.46.0).
    • Support for underscore characters in numeric literals (SQLite 3.46.0).
    • Improved date and time function modifiers like ceiling and floor (SQLite 3.46.0).
  • Bug Fixes and Stability: Benefit from numerous bug fixes and stability improvements across various SQLite components, ensuring a more robust database experience. Refer to the SQLite Changelog for detailed fixes in versions 3.45.1, 3.45.2, 3.45.3, 3.46.1, 3.47.1, 3.47.2, 3.49.1, and 3.44.2.

• Emscripten 4.x Upgrade: sql.js is now compiled with Emscripten 4. See changes in emscripten. This major update to the Emscripten toolchain brings several under-the-hood improvements:

  • Modern JavaScript Output: Emscripten 4 generates more modern JavaScript code. While compatibility with older browsers is still maintained through transpilation where necessary, this move to modern JS internally can lead to performance improvements in modern environments.
  • LLVM 19.1.6: The underlying compiler toolchain is updated to LLVM 19.1.6, which includes improvements to code generation, optimizations, and potentially better support for newer WebAssembly features.
  • Minimum Node.js Version Increase (for Emscripten Toolchain): While sql.js itself aims for broad compatibility, the Emscripten toolchain now requires Node.js v18.3 as a minimum (and is tested with Node.js 22 in this release). This is primarily relevant for developers building sql.js from source.

• Node.js Worker Thread Compatibility: The worker scripts are now fully compatible with Node.js worker threads, allowing for seamless integration in Node.js environments leveraging worker threads. This is a significant step towards better performance and concurrency in Node.js.

• Removal of Puppeteer Dev Dependency: The project no longer depends on Puppeteer for worker tests. Worker tests now utilize Node.js worker threads directly, simplifying the testing setup and removing an external dependency. This also speeds up the devcontainer installation.

✨ New Features

• updateHook API (#604): This release introduces a new low-level API, Database.updateHook, providing a mechanism to register a callback function that is invoked whenever a row is updated, inserted, or deleted in the database. view docs
  • This feature wraps the native sqlite3_update_hook functionality, allowing developers to monitor database modifications at a granular level.
  • Callbacks receive information about the operation type (update, insert, delete), the database name, table name, and rowid.

🛠️ Internal and Development Changes

• Worker Debug Script: Added a new debug script specifically for worker environments to aid in development and troubleshooting of worker-related issues.

Release v1.12.0

No release notes provided.

Commits

• 8088a68 Fix browser bundle (#625)
• ee29605 Update devcontainer + migrate linting to ESLint 10 (#623)
• c2f5c17 feat: add browser-only WASM build to eliminate Node.js require() warnings in ...
• 52e5649 Update CONTRIBUTING.md (#610)
• ee67aeb Remove usage of emscripten's allocate function. (#606)
• b645ca0 make updateHook return the db object
• 8dd13e5 fix jsdoc for updatehook
• b78df58 fix execBtn
• 293d57d mono
• bdd3cda syntax in snippet
• Additional commits viewable in compare view

Updates @iconify-json/material-symbols from 1.2.58 to 1.2.62

Commits

• See full diff in compare view

Updates @types/chrome from 0.0.273 to 0.1.37

Commits

• See full diff in compare view

Updates cssnano from 7.1.2 to 7.1.3

Release notes

Sourced from cssnano's releases.

v7.1.3

What's Changed

• Optimize mergeRule selector merging with WeakMap caching by @​Goodwine in cssnano/cssnano#1748

Full Changelog: https://github.com/cssnano/cssnano/compare/cssnano@7.1.2...cssnano@7.1.3

Commits

• b2e9903 Publish cssnano 7.1.3
• a9f72ef chore: update development dependencies
• 5674f7a fix(postcss-svgo: update SVGO
• c3e537a fix: update postcss-selector-parser
• 5b9af42 fix: update browserlist and autoprefixer
• c0053c8 chore: add changeset
• da88eca Optimize selector merging with WeakMap caching
• cf4fc27 chore(deps-dev): bump diff from 8.0.2 to 8.0.3
• a985c71 chore: update pnpm
• 4b2a74a chore: update to ESLint 10
• Additional commits viewable in compare view

Updates cssnano-preset-advanced from 7.0.10 to 7.0.11

Commits

• b2e9903 Publish cssnano 7.1.3
• a9f72ef chore: update development dependencies
• 5674f7a fix(postcss-svgo: update SVGO
• c3e537a fix: update postcss-selector-parser
• 5b9af42 fix: update browserlist and autoprefixer
• c0053c8 chore: add changeset
• da88eca Optimize selector merging with WeakMap caching
• cf4fc27 chore(deps-dev): bump diff from 8.0.2 to 8.0.3
• a985c71 chore: update pnpm
• 4b2a74a chore: update to ESLint 10
• Additional commits viewable in compare view

Updates eslint-plugin-react-refresh from 0.4.26 to 0.5.2

Release notes

Sourced from eslint-plugin-react-refresh's releases.

v0.5.2

• Support nested function calls for extraHOCs (actually fixes #104)

v0.5.1

• Mark ESLint v10 as supported
• Support false positives with TypeScript function overloading (fixes #105)
• Support nested function calls for extraHOCs (fixes #104)

v0.5.0

Breaking changes

• The package now ships as ESM and requires ESLint 9 + node 20. Because legacy config doesn't support ESM, this requires to use flat config
• A new reactRefresh export is available and prefered over the default export. It's an object with two properties:
  • plugin: The plugin object with the rules
  • configs: An object containing configuration presets, each exposed as a function. These functions accept your custom options, merge them with sensible defaults for that config, and return the final config object.
• customHOCs option was renamed to extraHOCs
• Validation of HOCs calls is now more strict, you may need to add some HOCs to the extraHOCs option (like connect or styled)

Config example:

import { defineConfig } from "eslint/config";
import { reactRefresh } from "eslint-plugin-react-refresh";
export default defineConfig(
/* Main config */
reactRefresh.configs.vite({ extraHOCs: ["someLibHOC"] }),
);

Config example without config:

import { defineConfig } from "eslint/config";
import { reactRefresh } from "eslint-plugin-react-refresh";
export default defineConfig({
files: ["/*.ts", "/*.tsx"],
plugins: {
// other plugins
"react-refresh": reactRefresh.plugin,
},
rules: {
// other rules
"react-refresh/only-export-components": [
"warn",
{ extraHOCs: ["someLibHOC"] },
],
},
});
</tr></table>

... (truncated)

Changelog

Sourced from eslint-plugin-react-refresh's changelog.

0.5.2

• Support nested function calls for extraHOCs (actually fixes #104)

0.5.1

• Mark ESLint v10 as supported
• Support false positives with TypeScript function overloading (fixes #105)
• Support nested function calls for extraHOCs (fixes #104)

0.5.0

Breaking changes

• The package now ships as ESM and requires ESLint 9 + node 20. Because legacy config doesn't support ESM, this requires to use flat config
• A new reactRefresh export is available and prefered over the default export. It's an object with two properties:
  • plugin: The plugin object with the rules
  • configs: An object containing configuration presets, each exposed as a function. These functions accept your custom options, merge them with sensible defaults for that config, and return the final config object.
• customHOCs option was renamed to extraHOCs
• Validation of HOCs calls is now more strict, you may need to add some HOCs to the extraHOCs option

Config example:

import { defineConfig } from "eslint/config";
import { reactRefresh } from "eslint-plugin-react-refresh";
export default defineConfig(
/* Main config */
reactRefresh.configs.vite({ extraHOCs: ["someLibHOC"] }),
);

Config example without config:

import { defineConfig } from "eslint/config";
import { reactRefresh } from "eslint-plugin-react-refresh";
export default defineConfig({
files: ["/*.ts", "/*.tsx"],
plugins: {
// other plugins
"react-refresh": reactRefresh.plugin,
},
rules: {
// other rules
"react-refresh/only-export-components": [
"warn",
{ extraHOCs: ["someLibHOC"] },
</tr></table>

... (truncated)

Commits

• c0317bf Fix support for nested function calls for extraHOCs [publish]
• 42a1805 Explicit v10 support (fixes #106) [publish]
• 199793e Support nested function calls for extraHOCs (fixes #104)
• 26b3c15 Support false positives with TypeScript function overloading (fixes #105)
• daa2efb Revamp logic to catch more cases [publish] (#97)
• See full diff in compare view

Updates eslint-plugin-tsdoc from 0.3.0 to 0.5.2

Changelog

Sourced from eslint-plugin-tsdoc's changelog.

0.5.2

Wed, 25 Feb 2026 21:34:35 GMT

Patches

• Replace deprecated context.getSourceCode() and context.getCwd() with context.sourceCode and context.cwd for ESLint 10 compatibility, with fallback for older versions.

0.5.1

Wed, 25 Feb 2026 02:06:43 GMT

Patches

• Update the @typescript-eslint/utils dependency to ~8.56.0 to address CVE-2026-26996.

0.5.0

Tue, 11 Nov 2025 00:51:42 GMT

Minor changes

• Normalize builtin imports.
• Use a more robust method to find the project root.

0.4.0

Sat, 23 Nov 2024 00:23:35 GMT

Minor changes

• Leverage parserOptions.tsConfigRootDir to reduce file system probing. This field is commonly used when eslint is configured with @typescript-eslint/parser.

Patches

• Include CHANGELOG.md in published releases again

Commits

• fb08c58 Merge pull request #462 from iclanton/bump-versions
• 0fe359e Merge pull request #461 from roli-lpci/fix/eslint-10-compat
• 8022897 Merge pull request #459 from iclanton/bump-rushstack-projects
• e11ec0b fix(eslint-plugin-tsdoc): replace deprecated ESLint APIs for v10 compatibility
• 5947510 Merge pull request #458 from iclanton/bump-versions
• b63ed12 Merge pull request #457 from roggervalf/minimatch
• b6cf4d2 Bump versions [skip ci]
• fe1c73c Update changelogs [skip ci]
• bfa9fe9 Merge pull request #448 from iclanton/handle-ts-built-in-directives
• 87c923c Update dependencies and general repo cleanup. (#446)
• Additional commits viewable in compare view

Updates postcss from 8.5.6 to 8.5.8

Release notes

Sourced from postcss's releases.

8.5.8

• Fixed Processor#version.

8.5.7

• Improved source map annotation cleaning performance (by CodeAnt AI).

Changelog

Sourced from postcss's changelog.

8.5.8

• Fixed Processor#version.

8.5.7

• Improved source map annotation cleaning performance (by CodeAnt AI).

Commits

• 65de537 Release 8.5.8 version
• b2c6d97 Run git hook register
• 0ae0a49 Update Processor#version
• 6ee9f14 Release 8.5.7 version
• 3fbc951 Fix uvu Node.js 25 support
• 52db53e Update dependencies
• 497daef Speed up source map annotation cleaning by moving from RegExp
• 41e739a Remove banner
• 1329142 chore: speed up space-only string check in lib/parser.js (#2064)
• 23beff9 Update dependencies
• Additional commits viewable in compare view

Updates prettier from 3.6.2 to 3.8.1

Release notes

Sourced from prettier's releases.

3.8.1

• Include available printers in plugin type declarations (#18706 by @​porada)

🔗 Changelog

3.8.0

• Support Angular v21.1

diff

🔗 Release note "Prettier 3.8: Support for Angular v21.1"

3.7.4

What's Changed

• Fix comment in union type gets duplicated by @​fisker in prettier/prettier#18393
• Fix unstable comment print in union type by @​fisker in prettier/prettier#18395
• Avoid quote around LWC interpolations by @​kovsu in prettier/prettier#18383

🔗 Changelog

3.7.3

What's Changed

• Fix prettier.getFileInfo() change that breaks VSCode extension by @​fisker in prettier/prettier#18375

🔗 Changelog

3.7.2

What's Changed

• Fix string print when switching quotes by @​fisker in prettier/prettier#18351
• Preserve quote for embedded HTML attribute values by @​kovsu in prettier/prettier#18352
• Fix comment in empty type literal by @​fisker in prettier/prettier#18364

🔗 Changelog

3.7.1

• Fix performance regression in doc printer (#18342 by @​fisker)

🔗 Changelog

3.7.0

diff

🔗 Release note

Changelog

Sourced from prettier's changelog.

3.8.1

diff

Include available printers in plugin type declarations (#18706 by @​porada)

// Input
import * as prettierPluginEstree from "prettier/plugins/estree";
// Prettier 3.8.0
// Property 'printers' does not exist on type 'typeof import("prettier/plugins/estree")'. ts(2339)
prettierPluginEstree.printers.estree; //=> any
// Prettier 3.8.1
prettierPluginEstree.printers.estree; //=> Printer
prettierPluginEstree.printers["estree-json"]; //=> Printer

3.8.0

diff

🔗 Release Notes

3.7.4

diff

LWC: Avoid quote around interpolations (#18383 by @​kovsu)

<!-- Input -->
<div foo={bar}>   </div>
<!-- Prettier 3.7.3 (--embedded-language-formatting off) -->
<div foo="{bar}"></div>
<!-- Prettier 3.7.4 (--embedded-language-formatting off) -->
<div foo={bar}></div>

TypeScript: Fix comment inside union type gets duplicated (#18393 by @​fisker)

// Input
type Foo = (/** comment */ a | b) | c;
</tr></table> 

... (truncated)

Commits

• 90983f4 Release 3.8.1
• 57f702f Include available printers in plugin type declarations (#18706)
• bece827 Revert change in release script
• 82a4ab2 Bump Prettier dependency to 3.8.0
• 5213ee4 Clean changelog_unreleased
• f95ad0f Comment out finished steps
• b2034e8 Fix release script
• 5824b15 Release 3.8.0
• 0433601 Add blog post for v3.8.0 (#18639)
• b04d05b Remove lint step from release script (#18415)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for prettier since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

---

This change is