build(deps): bump the yarn group across 1 directory with 11 updates

[dependabot]

Bumps the yarn group with 11 updates in the / directory:

Package	From	To
@scalar/fastify-api-reference	1.44.24	1.47.0
jwks-rsa	3.2.2	4.0.1
typebox	1.0.81	1.1.5
@commitlint/cli	20.4.2	20.4.3
@commitlint/config-conventional	20.4.2	20.4.3
@eslint/js	9.39.3	10.0.1
@types/node	25.3.0	25.3.3
@typescript/native-preview	7.0.0-dev.20260219.1	7.0.0-dev.20260304.1
eslint	9.39.2	9.39.3
lint-staged	16.2.7	16.3.2
typescript-eslint	8.56.0	8.56.1

Updates @scalar/fastify-api-reference from 1.44.24 to 1.47.0

Changelog

Sourced from @​scalar/fastify-api-reference's changelog.

1.47.0

Minor Changes

• #8322: chore: bump required node version to >=22 (LTS)

Patch Changes

Updated Dependencies

• @​scalar/openapi-parser@​0.25.0

  • #8322: chore: bump required node version to >=22 (LTS)

• @​scalar/openapi-types@​0.6.0

  • #8322: chore: bump required node version to >=22 (LTS)

• @​scalar/core@​0.4.0

  • #8322: chore: bump required node version to >=22 (LTS)

1.46.4

1.46.3

Patch Changes

Updated Dependencies

• @​scalar/openapi-types@​0.5.4

  • #8275: fix(openapi-types): make the $ref property in the ReferenceObject type required

• @​scalar/openapi-parser@​0.24.17

• @​scalar/core@​0.3.45

1.46.2

1.46.1

Patch Changes

Updated Dependencies

• @​scalar/openapi-parser@​0.24.16

• @​scalar/core@​0.3.44

1.46.0

1.45.0

... (truncated)

Commits

• See full diff in compare view

Updates jwks-rsa from 3.2.2 to 4.0.1

Release notes

Sourced from jwks-rsa's releases.

v4.0.1

Changed

• chore: update lru-memoizer to v3 #476 (isidrok)

v4.0.0

⚠️ BREAKING CHANGES

• feat: upgrade jose dependency to v6 #486 (cschetan77)
• chore: upgrade minimum Node.js runtime to 20.19.0 #485 (cschetan77)

Changelog

Sourced from jwks-rsa's changelog.

v4.0.1 (2026-03-02)

Full Changelog

Changed

• chore: update lru-memoizer to v3 #476 (isidrok)

v4.0.0 (2026-02-27)

Full Changelog

⚠️ BREAKING CHANGES

• Drops support for Node 14, 16, and 18. The minimum supported Node versions are now 20.19.0, 22.12.0, and 23.0.0.
• Drops support for the ES256K algorithm (secp256k1 curve). Keys using ES256K will be ignored. Users must transition to a supported curve (e.g., ES256/P-256) or handle legacy keys externally.
• feat: upgrade jose dependency to v6 #486 (cschetan77)
• chore: upgrade minimum Node.js runtime to 20.19.0 #485 (cschetan77)

Commits

• d319e7d Release v4.0.1 (#492)
• 088d7ff Release v4.0.1
• fee6f01 chore: update lru-memoizer to v3 (#476)
• e11b943 update lru memoizer and add cache maxage test
• ed91a13 Release v4.0.0 (#490)
• 7d00243 Revise CHANGELOG for v4.0.0 release
• f3e185a Release v4.0.0
• 8c9bcc4 feat: upgrade jose dependency to v6 (#486)
• 084941b sync master
• 70983b2 chore: upgrade minimum Node.js runtime to 20.19.0 (#485)
• Additional commits viewable in compare view

Updates typebox from 1.0.81 to 1.1.5

Commits

• 9dc04a1 Version 1.1.5 (#1538)
• f4ed621 Version 1.1.4 (#1537)
• e47a11c Version 1.1.3 (#1536)
• 7855419 Version 1.1.2 (#1535)
• 6b35cfd Version 1.1.2
• d8110f4 Tasksmith
• 62ebbcd Version 1.1.1 (#1533)
• 6849407 Version 1.1.0 (#1532)
• 672ff3f Maintenance (#1528)
• See full diff in compare view

Updates @commitlint/cli from 20.4.2 to 20.4.3

Release notes

Sourced from @​commitlint/cli's releases.

v20.4.3

20.4.3 (2026-03-03)

Bug Fixes

• fix: npx usage #613 by @​escapedcat in conventional-changelog/commitlint#4630
• fix(types): incorrect types for rule options by @​Zamiell in conventional-changelog/commitlint#4633
• fix: footer parser does not escape special chars for regex #4560 by @​escapedcat in conventional-changelog/commitlint#4634

Chore etc.

• ci: enhance format check with error message by @​knocte in conventional-changelog/commitlint#4632

New Contributors

• @​Zamiell made their first contribution in conventional-changelog/commitlint#4633

Full Changelog: conventional-changelog/commitlint@v20.4.2...v20.4.3

Changelog

Sourced from @​commitlint/cli's changelog.

20.4.3 (2026-03-03)

Bug Fixes

• footer parser does not escape special chars for regex #4560 (#4634) (8ff7c7f)

Commits

• a746981 v20.4.3
• 18bd371 chore: deps (#4635)
• 8ff7c7f fix: footer parser does not escape special chars for regex #4560 (#4634)
• See full diff in compare view

Updates @commitlint/config-conventional from 20.4.2 to 20.4.3

Release notes

Sourced from @​commitlint/config-conventional's releases.

v20.4.3

20.4.3 (2026-03-03)

Bug Fixes

• fix: npx usage #613 by @​escapedcat in conventional-changelog/commitlint#4630
• fix(types): incorrect types for rule options by @​Zamiell in conventional-changelog/commitlint#4633
• fix: footer parser does not escape special chars for regex #4560 by @​escapedcat in conventional-changelog/commitlint#4634

Chore etc.

• ci: enhance format check with error message by @​knocte in conventional-changelog/commitlint#4632

New Contributors

• @​Zamiell made their first contribution in conventional-changelog/commitlint#4633

Full Changelog: conventional-changelog/commitlint@v20.4.2...v20.4.3

Changelog

Sourced from @​commitlint/config-conventional's changelog.

20.4.3 (2026-03-03)

Bug Fixes

• footer parser does not escape special chars for regex #4560 (#4634) (8ff7c7f)

Commits

• a746981 v20.4.3
• 8ff7c7f fix: footer parser does not escape special chars for regex #4560 (#4634)
• See full diff in compare view

Updates @eslint/js from 9.39.3 to 10.0.1

Release notes

Sourced from @​eslint/js's releases.

v10.0.1

Bug Fixes

• c87d5bd fix: update eslint (#20531) (renovate[bot])
• d841001 fix: update minimatch to 10.2.1 to address security vulnerabilities (#20519) (루밀LuMir)
• 04c2147 fix: update error message for unused suppressions (#20496) (fnx)
• 38b089c fix: update dependency @​eslint/config-array to ^0.23.1 (#20484) (renovate[bot])

Documentation

• 5b3dbce docs: add AI acknowledgement section to templates (#20431) (루밀LuMir)
• 6f23076 docs: toggle nav in no-JS mode (#20476) (Tanuj Kanti)
• b69cfb3 docs: Update README (GitHub Actions Bot)

Chores

• e5c281f chore: updates for v9.39.3 release (Jenkins)
• 8c3832a chore: update @​typescript-eslint/parser to ^8.56.0 (#20514) (Milos Djermanovic)
• 8330d23 test: add tests for config-api (#20493) (Milos Djermanovic)
• 37d6e91 chore: remove eslint v10 prereleases from eslint-config-eslint deps (#20494) (Milos Djermanovic)
• da7cd0e refactor: cleanup error message templates (#20479) (Francesco Trotta)
• 84fb885 chore: package.json update for @​eslint/js release (Jenkins)
• 1f66734 chore: add eslint to peerDependencies of @eslint/js (#20467) (Milos Djermanovic)

v10.0.0

Breaking Changes

• f9e54f4 feat!: estimate rule-tester failure location (#20420) (ST-DDT)
• a176319 feat!: replace chalk with styleText and add color to ResultsMeta (#20227) (루밀LuMir)
• c7046e6 feat!: enable JSX reference tracking (#20152) (Pixel998)
• fa31a60 feat!: add name to configs (#20015) (Kirk Waiblinger)
• 3383e7e fix!: remove deprecated SourceCode methods (#20137) (Pixel998)
• 501abd0 feat!: update dependency minimatch to v10 (#20246) (renovate[bot])
• ca4d3b4 fix!: stricter rule tester assertions for valid test cases (#20125) (唯然)
• 96512a6 fix!: Remove deprecated rule context methods (#20086) (Nicholas C. Zakas)
• c69fdac feat!: remove eslintrc support (#20037) (Francesco Trotta)
• 208b5cc feat!: Use ScopeManager#addGlobals() (#20132) (Milos Djermanovic)
• a2ee188 fix!: add uniqueItems: true in no-invalid-regexp option (#20155) (Tanuj Kanti)
• a89059d feat!: Program range span entire source text (#20133) (Pixel998)
• 39a6424 fix!: assert 'text' is a string across all RuleFixer methods (#20082) (Pixel998)
• f28fbf8 fix!: Deprecate "always" and "as-needed" options of the radix rule (#20223) (Milos Djermanovic)
• aa3fb2b fix!: tighten func-names schema (#20119) (Pixel998)
• f6c0ed0 feat!: report eslint-env comments as errors (#20128) (Francesco Trotta)
• 4bf739f fix!: remove deprecated LintMessage#nodeType and TestCaseError#type (#20096) (Pixel998)
• 523c076 feat!: drop support for jiti < 2.2.0 (#20016) (michael faith)
• 454a292 feat!: update eslint:recommended configuration (#20210) (Pixel998)
• 4f880ee feat!: remove v10_* and inactive unstable_* flags (#20225) (sethamus)
• f18115c feat!: no-shadow-restricted-names report globalThis by default (#20027) (sethamus)
• c6358c3 feat!: Require Node.js ^20.19.0 || ^22.13.0 || >=24 (#20160) (Milos Djermanovic)

Features

• bff9091 feat: handle Array.fromAsync in array-callback-return (#20457) (Francesco Trotta)
• 290c594 feat: add self to no-implied-eval rule (#20468) (sethamus)
• 43677de feat: fix handling of function and class expression names in no-shadow (#20432) (Milos Djermanovic)

... (truncated)

Commits

• 84fb885 chore: package.json update for @​eslint/js release
• 1f66734 chore: add eslint to peerDependencies of @eslint/js (#20467)
• f3fbc2f chore: set @eslint/js version to 10.0.0 to skip releasing it (#20466)
• b4b3127 chore: package.json update for @​eslint/js release
• 0b14059 chore: package.json update for @​eslint/js release
• fa31a60 feat!: add name to configs (#20015)
• 1e2cad5 chore: package.json update for @​eslint/js release
• 454a292 feat!: update eslint:recommended configuration (#20210)
• c6358c3 feat!: Require Node.js ^20.19.0 || ^22.13.0 || >=24 (#20160)
• See full diff in compare view

Updates @types/node from 25.3.0 to 25.3.3

Commits

• See full diff in compare view

Updates @typescript/native-preview from 7.0.0-dev.20260219.1 to 7.0.0-dev.20260304.1

Commits

• See full diff in compare view

Updates eslint from 9.39.2 to 9.39.3

Release notes

Sourced from eslint's releases.

v9.39.3

Bug Fixes

• 791bf8d fix: restore TypeScript 4.0 compatibility in types (#20504) (sethamus)

Chores

• 8594a43 chore: upgrade @​eslint/js@​9.39.3 (#20529) (Milos Djermanovic)
• 9ceef92 chore: package.json update for @​eslint/js release (Jenkins)
• af498c6 chore: ignore /docs/v9.x in link checker (#20453) (Milos Djermanovic)

Commits

• a7d5fe6 9.39.3
• 42e6b06 Build: changelog update for 9.39.3
• 8594a43 chore: upgrade @​eslint/js@​9.39.3 (#20529)
• 9ceef92 chore: package.json update for @​eslint/js release
• 791bf8d fix: restore TypeScript 4.0 compatibility in types (#20504)
• af498c6 chore: ignore /docs/v9.x in link checker (#20453)
• See full diff in compare view

Updates lint-staged from 16.2.7 to 16.3.2

Release notes

Sourced from lint-staged's releases.

v16.3.2

Patch Changes

• #1735 2adaf6c Thanks @​iiroj! - Hide the extra cmd window on Windows by spawning tasks without the detached option.

v16.3.1

Patch Changes

• #1729 cd5d762 Thanks @​iiroj! - Remove nano-spawn as a dependency from package.json as it was replaced with tinyexec and is no longer used.

v16.3.0

Minor Changes

• #1698 feda37a Thanks @​iiroj! - Run external processes with tinyexec instead of nano-spawn. nano-spawn replaced execa in lint-staged version 16 to limit the amount of npm dependencies required, but caused some unknown issues related to spawning tasks. Let's hope tinyexec improves the situation.

• #1699 1346d16 Thanks @​iiroj! - Remove pidtree as a dependency. When a task fails, its sub-processes are killed more efficiently via the process group on Unix systems, and the taskkill command on Windows.

Patch Changes

• #1726 87467aa Thanks @​iiroj! - Incorrect brace expansions like *.{js} (nothing to expand) are detected exhaustively, instead of just a single pass.

Changelog

Sourced from lint-staged's changelog.

16.3.2

Patch Changes

• #1735 2adaf6c Thanks @​iiroj! - Hide the extra cmd window on Windows by spawning tasks without the detached option.

16.3.1

Patch Changes

• #1729 cd5d762 Thanks @​iiroj! - Remove nano-spawn as a dependency from package.json as it was replaced with tinyexec and is no longer used.

16.3.0

Minor Changes

• #1698 feda37a Thanks @​iiroj! - Run external processes with tinyexec instead of nano-spawn. nano-spawn replaced execa in lint-staged version 16 to limit the amount of npm dependencies required, but caused some unknown issues related to spawning tasks. Let's hope tinyexec improves the situation.

• #1699 1346d16 Thanks @​iiroj! - Remove pidtree as a dependency. When a task fails, its sub-processes are killed more efficiently via the process group on Unix systems, and the taskkill command on Windows.

Patch Changes

• #1726 87467aa Thanks @​iiroj! - Incorrect brace expansions like *.{js} (nothing to expand) are detected exhaustively, instead of just a single pass.

Commits

• dfd6a7a chore(changeset): release
• 2adaf6c fix(Windows): do not spawn tasks as detached since it opens a cmd window on ...
• 60957ce docs: add CONTRIBUTING.md
• 2a74cd2 chore(changeset): release
• cd5d762 refactor: remove nano-spawn dependency completely
• e342cab build(deps): move nano-spawn to dev
• 9aa2cd7 chore(changeset): release
• 0c387bc test: make long-running task longer because of GitHub Actions slowness
• 87467aa refactor: detect incorrect brace expansion exhaustively
• dceabc6 ci: run npm audit in GitHub Actions
• Additional commits viewable in compare view

Updates typescript-eslint from 8.56.0 to 8.56.1

Release notes

Sourced from typescript-eslint's releases.

v8.56.1

8.56.1 (2026-02-23)

What's Changed

• chore(deps): update dependency minimatch to v10.2.2 by @​benmccann in typescript-eslint/typescript-eslint#12074

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from typescript-eslint's changelog.

8.56.1 (2026-02-23)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Commits

• 96a04a9 chore(release): publish 8.56.1
• See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
eslint	[>= 10.a, < 11]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions