fix(deps): update non-major updates

[bottd]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence
@cloudflare/workers-types	4.20260124.0 → 4.20260205.0
@internationalized/date (source)	3.10.1 → 3.11.0
@sveltejs/kit (source)	2.50.1 → 2.50.2
@sveltejs/kit (source)	2.50.1 → 2.50.2
@takumi-rs/core	0.65.0 → 0.66.13
@takumi-rs/helpers	0.65.0 → 0.66.13
@types/node (source)	24.10.9 → 24.10.10
@types/node (source)	24.10.4 → 24.10.10
@types/react (source)	19.2.9 → 19.2.11
bits-ui	2.15.4 → 2.15.5
globals	17.1.0 → 17.3.0
happy-dom	20.3.9 → 20.5.0
happy-dom	20.1.0 → 20.5.0
layerchart	2.0.0-next.27 → 2.0.0-next.44
msw (source)	2.12.7 → 2.12.8
playwright (source)	1.57.0 → 1.58.1
react (source)	19.2.3 → 19.2.4
svelte (source)	5.48.0 → 5.49.2
svelte (source)	5.48.0 → 5.49.2
svelte-check	4.3.5 → 4.3.6
typescript-eslint (source)	8.53.1 → 8.54.0
vite-tsconfig-paths	6.0.4 → 6.0.5
wrangler (source)	4.60.0 → 4.62.0

---

Release Notes

cloudflare/workerd (@​cloudflare/workers-types)

v4.20260205.0

Compare Source

v4.20260203.0

Compare Source

v4.20260131.0

Compare Source

v4.20260130.0

Compare Source

v4.20260129.0

Compare Source

v4.20260128.0

Compare Source

v4.20260127.0

Compare Source

adobe/react-spectrum (@​internationalized/date)

v3.11.0

Compare Source

sveltejs/kit (@​sveltejs/kit)

v2.50.2

Compare Source

Patch Changes

• fix: ensure inlined CSS follows paths.assets and paths.relative settings (#​15153)

• fix: emit script CSP nonces when unsafe-inline is present if strict-dynamic is also present (#​15221)

• fix: re-export browser/dev from esm-env (#​15206)

• fix: use validated args in batch resolver in both csr and ssr (#​15215)

• fix: ensure CSS inlining includes components that are conditionally rendered (#​15153)

• fix: only match rest params with matchers when the matcher matches (#​15216)

• fix: properly handle percent-encoded anchors (e.g. <a href="#sparkles-%E2%9C%A8">) during prerendering. (#​15231)

kane50613/takumi (@​takumi-rs/core)

v0.66.13

Compare Source

v0.66.12

Compare Source

Patch Changes

• 7389d6e: add persistent image cache

v0.66.11

Compare Source

v0.66.10

Compare Source

v0.66.9

Compare Source

v0.66.8

Compare Source

v0.66.7

Compare Source

Patch Changes

• a3e7f9c: document all the functions

v0.66.6

Compare Source

v0.66.5

Compare Source

v0.66.4

Compare Source

v0.66.3

Compare Source

v0.66.2

Compare Source

v0.66.1

Compare Source

v0.66.0

Compare Source

Patch Changes

• 80da5a7: remove unused browser field

huntabyte/bits-ui (bits-ui)

v2.15.5

Compare Source

Patch Changes

• fix(Tooltip): allow overriding trigger tabindex (#​1932)

• fix(Pin Input): keyboard navigation (#​1872)

• fix(ScrollArea): cleanup when pointercapture is lost (#​1935)

• fix(Accordion): allow overriding trigger tabindex (#​1932)

• fix(Presence): optimize animation detection for large DOMs (#​1924)

• fix: floating components should respect style prop (#​1934)

• fix(FocusScope): ensure focus scopes works with only 1 tabbable item (#​1933)

sindresorhus/globals (globals)

v17.3.0

Compare Source

• Update globals (2026-02-01) (#​336) 295fba9

---

v17.2.0

Compare Source

• jasmine: Add throwUnless and throwUnlessAsync globals (#​335) 97f23a7

---

capricorn86/happy-dom (happy-dom)

v20.5.0

Compare Source

👷‍♂️ Patch fixes

• Removes circular dependencies internally - By @​capricorn86 in task #​2055
  • Compilers can handle simpler circular dependencies, but warnings may be outputted
• Changes naming of types used internally to follow a consistent pattern - By @​capricorn86 in task #​2055
• Enforces use of the "type" modifier internally in the source code (e.g. import type and export type) - By @​capricorn86 in task #​2055

v20.4.0

Compare Source

🎨 Features

• Adds support for caching the compiled code of EcmaScript modules - By @​capricorn86 in task #​2049
• Improves the way nodes are destroyed and garbage collected - By @​capricorn86 in task #​2049

techniq/layerchart (layerchart)

v2.0.0-next.44

Compare Source

Patch Changes

• fix(Canvas): Fix pointer events (hit canvas) when using Brave browser with fingerprinting protection enabled (#​449)

v2.0.0-next.43

Compare Source

Patch Changes

• fix(Highlight|TooltipContext): Support xInterval / yInterval (#​449)

v2.0.0-next.42

Compare Source

Patch Changes

• fix(Calendar): Respect start instead of always start of year (#​657)

v2.0.0-next.41

Compare Source

Patch Changes

• fix(Tooltip): Correctly set tooltip position on chart enter and exit (#​655)

v2.0.0-next.40

Compare Source

Patch Changes

• fix(LineChart): Restore passing xScale / yScale overrides (#​449)

v2.0.0-next.39

Compare Source

Minor Changes

• feat: Support css-only usage (no Tailwind required) while retaining first-class Tailwind support (#​557)

Patch Changes

• feat: Simplify daisyUI, shadcn-svelte, and Skeleton integrations with single line @import 'layerchart/{library}.css' added to app.css (#​557)

• docs: Add examples for standalone, daisyUI v5, shadcn-svelte v1, Skeleton v3, and Svelte UX v2 (next) (including light/dark theming) (#​557)

• feat(LineChart): Support orientation="vertical". Resolves #​640 (#​557)

• feat: Add Html context support for applicable primitives such as Circle, Line, Rect, Text (and more) as well as transitively such as Axis, Grid, Labels (and more) (#​557)

• feat(LinearGradient): Support Html context (#​557)

• fix(Text): Apply fill: currentColor to support more straightforward way of changing color (ex. class="text-red-500" or style="color:red") (#​557)

• fix(TooltipContext): Revert back to pointer events (instead of mouse/touch) but with touch-action: pan-y. Provides simplified events while allowing horizontal scrubbing with vertical scrolling. (#​557)

• feat(TooltipContext): Add touchEvents to control touch event behavior. Defaults to pan-y to allow vertical scrolling but horizontal scrubbing. (#​557)

• fix(TooltipContext): Fix band mode regression when both x/y are scaleBand (ex. punchcard chart) (#​557)

• fix(SimplifiedCharts): Properly handle legend prop as object when determining bottom padding (#​557)

• fix(AreaChart|LineChart|DefaultTooltip): Handle per-series data with different length (#​557)

• feat(Highlight): Support passing opacity (#​557)

• fix(SimplifiedChart): Still add selected legend item opacity when item classes are also applied (#​557)

• feat(Legend): Add selected prop to fade out unselected items (if passed and non-empty) (#​557)

• feat(SeriesState): Add isHighlighted(seriesKey) to easy check if series is hightlight (or should be faded) (#​557)

• fix(Primatives): Apply default classes when using Canvas context (like Svg). Resolves #​544 (#​557)

• refactor: Remove use of layerClass and apply lc-{name} class directly to allow easy component <style> targetting within LayerChart (#​557)

v2.0.0-next.38

Compare Source

Patch Changes

• Update dependencies (#​629)

• fix(autoScale): Ignore null domain values, fixing some brush examples (#​449)

• fix: Update dagreAncestors() and dagreDescendants() util types (#​629)

v2.0.0-next.37

Compare Source

Patch Changes

• fix(ArcChart): Do not pass y accessor to use linear scale fallback (#​449)

v2.0.0-next.36

Compare Source

Patch Changes

• fix(PieChart): Do not pass y accessor to use linear scale fallback (#​631)

v2.0.0-next.35

Compare Source

Patch Changes

• feat(Chart): Automatically determine scale based on data and domain values (instead of defaulting to scaleLinear) (#​624)

v2.0.0-next.34

Compare Source

Minor Changes

• feat(Rule): Support using as data-driven mark (ex. candlestick, lollipop) by default (<Rule> using Chart accessors) or passing explicit x/y accessors (ex. <Rule y={["high", "low"]} />). Resolves #​64 (#​622)

• breaking(Points): Remove <Points links> prop. Use <Rule> with x/y accessor instead (#​622)

Patch Changes

• breaking(Axis): Rename x="left|right" and y="top|bottom" props with # LayerChart prefix (ex. `) (#​622)

v2.0.0-next.33

Compare Source

Patch Changes

• fix(Bars): Fix inverted rect when rendered top-to-bottom or right-to-left. Fixes #​540 (#​613)

• fix(Axis): Filter distinct tick values (useful when manually injecting extra values) (#​615)

• feat(Axis): Use format to filter ticks (integer and date/time). Helpful to keep ticks above a threshold for wide charts or short durations. (#​615)

v2.0.0-next.32

Compare Source

Patch Changes

• fix(Points): Update point.x / point.y based on ctx.radial to simplify children snippet usage (#​611)

v2.0.0-next.31

Compare Source

Minor Changes

• feat(Chart): Add xInterval / yInterval for time scales usage with bar charts (#​562)

• feat(BarChart): Support time scale with xInterval / yInterval props (#​562)

• feat(TooltipContext): Support band mode with time scale (similar to band scale) (#​562)

• feat(ForceSimulation): Added onNodesChange callback to ForceSimulation (#​607)

Patch Changes

• fix(Bar): Clamp radius to width/height to not cause artifacts with small values (including 0) when rounding a single edge. Fixes #​383 (#​610)

• fix(Highlight): Properly handle area highlights with y-axis time scales (#​562)

v2.0.0-next.30

Compare Source

Patch Changes

• fix(AnnotationPoint): Do not propagate mouse/touch move/leave events to TooltipContext after switching from pointer events. Fixes #​598 (#​602)

v2.0.0-next.29

Compare Source

Patch Changes

• fix(Axis): Fix display of axis labels (#​591)

v2.0.0-next.28

Compare Source

Patch Changes

• fix(Axis): Fix memory leak and improve performance when tick values are Date instances (#​586)

mswjs/msw (msw)

v2.12.8

Compare Source

v2.12.8 (2026-02-03)

Bug Fixes

• update @mswjs/interceptors to fix a memory leak (#​2659) (e5e905f) @​kettanaito
• update rettime (#​2657) (3a7b451) @​kettanaito

microsoft/playwright (playwright)

v1.58.1

Compare Source

Highlights

#​39036 fix(msedge): fix local network permissions
#​39037 chore: update cft download location
#​38995 chore(webkit): disable frame sessions on fronzen builds

Browser Versions

• Chromium 145.0.7632.6
• Mozilla Firefox 146.0.1
• WebKit 26.0

v1.58.0

Compare Source

📣 Playwright CLI+SKILLs 📣

We are adding a new token-efficient CLI mode of operation to Playwright with the skills located at playwright-cli. This brings the long-awaited official SKILL-focused CLI mode to our story and makes it more coding agent-friendly.

It is the first snapshot with the essential command set (which is already larger than the original MCP!), but we expect it to grow rapidly. Unlike the token use, that one we expect to go down since snapshots are no longer forced into the LLM!

Timeline

If you're using merged reports, the HTML report Speedboard tab now shows the Timeline:

UI Mode and Trace Viewer Improvements

• New 'system' theme option follows your OS dark/light mode preference
• Search functionality (Cmd/Ctrl+F) is now available in code editors
• Network details panel has been reorganized for better usability
• JSON responses are now automatically formatted for readability

Thanks to @​cpAdm for contributing these improvements!

Miscellaneous

browserType.connectOverCDP() now accepts an isLocal option. When set to true, it tells Playwright that it runs on the same host as the CDP server, enabling file system optimizations.

Breaking Changes ⚠️

• Removed _react and _vue selectors. See locators guide for alternatives.
• Removed :light selector engine suffix. Use standard CSS selectors instead.
• Option devtools from browserType.launch() has been removed. Use args: ['--auto-open-devtools-for-tabs'] instead.
• Removed macOS 13 support for WebKit. We recommend to upgrade your macOS version, or keep using an older Playwright version.

Browser Versions

• Chromium 145.0.7632.6
• Mozilla Firefox 146.0.1
• WebKit 26.0

This version was also tested against the following stable channels:

• Google Chrome 144
• Microsoft Edge 144

facebook/react (react)

v19.2.4: 19.2.4 (January 26th, 2026)

Compare Source

React Server Components

• Add more DoS mitigations to Server Actions, and harden Server Components (#​35632 by @​gnoff, @​lubieowoce, @​sebmarkbage, @​unstubbable)

sveltejs/svelte (svelte)

v5.49.2

Compare Source

Patch Changes

• chore: remove SvelteKit data attributes from elements.d.ts (#​17613)

• fix: avoid erroneous async derived expressions for blocks (#​17604)

• fix: avoid Cloudflare warnings about not having the "node:crypto" module (#​17612)

• fix: reschedule effects inside unskipped branches (#​17604)

v5.49.1

Compare Source

Patch Changes

• fix: merge consecutive large text nodes (#​17587)

• fix: only create async functions in SSR output when necessary (#​17593)

• fix: properly separate multiline html blocks from each other in print() (#​17319)

• fix: prevent unhandled exceptions arising from dangling promises in <script> (#​17591)

v5.49.0

Compare Source

Minor Changes

• feat: allow passing ShadowRootInit object to custom element shadow option (#​17088)

Patch Changes

• fix: throw for unset createContext get on the server (#​17580)

• fix: reset effects inside skipped branches (#​17581)

• fix: preserve old dependencies when updating reaction inside fork (#​17579)

• fix: more conservative assignment_value_stale warnings (#​17574)

• fix: disregard popover elements when determining whether an element has content (#​17367)

• fix: fire introstart/outrostart events after delay, if specified (#​17567)

• fix: increment signal versions when discarding forks (#​17577)

v5.48.5

Compare Source

Patch Changes

• fix: run boundary onerror callbacks in a microtask, in case they result in the boundary's destruction (#​17561)

• fix: prevent unintended exports from namespaces (#​17562)

• fix: each block breaking with effects interspersed among items (#​17550)

v5.48.4

Compare Source

Patch Changes

• fix: avoid duplicating escaped characters in CSS AST (#​17554)

v5.48.3

Compare Source

Patch Changes

• fix: hydration failing with settled async blocks (#​17539)

• fix: add pointer and touch events to a11y_no_static_element_interactions warning (#​17551)

• fix: handle false dynamic components in SSR (#​17542)

• fix: avoid unnecessary block effect re-runs after async work completes (#​17535)

• fix: avoid using dev-mode array.includes wrapper on internal array checks (#​17536)

v5.48.2

Compare Source

Patch Changes

• fix: export wait function from internal client index (#​17530)

v5.48.1

Compare Source

Patch Changes

• fix: hoist snippets above const in same block (#​17516)

• fix: properly hydrate await in {@​html} (#​17528)

• fix: batch resolution of async work (#​17511)

• fix: account for empty statements when visiting in transform async (#​17524)

• fix: avoid async overhead for already settled promises (#​17461)

• fix: better code generation for const tags with async dependencies (#​17518)

sveltejs/language-tools (svelte-check)

v4.3.6

Compare Source

Patch Changes

• fix: don't hoist type/snippet referencing $store (#​2926)

typescript-eslint/typescript-eslint (typescript-eslint)

v8.54.0

Compare Source

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

aleclarson/vite-tsconfig-paths (vite-tsconfig-paths)

v6.0.5

Compare Source

cloudflare/workers-sdk (wrangler)

v4.62.0

Compare Source

Minor Changes

• #​12064 964a39d Thanks @​G4brym! - Add AI Search OAuth scopes to login

  Adds ai-search:write and ai-search:run OAuth scopes to the default login scopes, enabling wrangler to authenticate with AI Search APIs.

• #​11867 253a85d Thanks @​rahulsuresh-git! - Add wrangler r2 bucket local-uploads command to manage local uploads for R2 buckets

  When enabled, object data is written to the nearest region first, then asynchronously replicated to the bucket's primary region.

  Docs: https://developers.cloudflare.com/r2/buckets/local-uploads

  # Get local uploads status
  wrangler r2 bucket local-uploads get my-bucket
  
  # Enable local uploads (will prompt for confirmation)
  wrangler r2 bucket local-uploads enable my-bucket
  
  # Enable without confirmation prompt
  wrangler r2 bucket local-uploads enable my-bucket --force
  
  # Disable local uploads
  wrangler r2 bucket local-uploads disable my-bucket

• #​11803 1bd1488 Thanks @​dario-piotrowicz! - Add a new subrequests limit to the limits field of the Wrangler configuration file

  Before only the cpu_ms limit was supported in the limits field of the Wrangler configuration file, now a subrequests limit can be specified as well which enables the user to limit the number of fetch requests that a Worker's invocation can make.

  Example:

  {
  	"$schema": "./node_modules/wrangler/config-schema.json",
  	"limits": {
  		"cpu_ms": 1000,
  		"subrequests": 150 // newly added field
  	}
  }

• #​12185 f7aa8c7 Thanks @​penalosa! - Add timestamp field to the version metadata binding in local development. The version metadata binding now includes id, tag, and timestamp fields, making it easier to test version-aware logic locally.

Patch Changes

• #​12190 ce736b9 Thanks @​dario-piotrowicz! - Update autoconfig logic to handle Next.js projects by using the new @opennextjs/cloudflare migrate command

• #​12065 47944d1 Thanks @​langningchen! - Improve error message when d1 export --output points to a directory

• #​12292 4c4d5a5 Thanks @​dario-piotrowicz! - Add versionCommand to the autoconfig_summary field in the autoconfig output entry

  Add the version upload command to the output being printed by wrangler deploy to WRANGLER_OUTPUT_FILE_DIRECTORY/WRANGLER_OUTPUT_FILE_PATH. This complements the existing buildCommand and deployCommand fields and allows CI systems to know how to upload new versions of Workers.

  For example, for a standard npm project this would be:

  • Version command: npx wrangler versions upload

  While for a Next.js project it would be:

  • Version command: npx @​opennextjs/cloudflare upload

• #​12050 b05b919 Thanks @​NuroDev! - Fixed Wrangler's error handling for both invalid commands with and without the --help flag, ensuring consistent and clear error messages.

  Additionally, it also ensures that if you provide an invalid argument to a valid command, Wrangler will now correctly display that specific commands help menu.

• #​12289 0aaf080 Thanks @​dependabot! - Update dependencies of "miniflare", "wrangler"

  The following dependency versions have been updated:

  Dependency	From	To
  workerd	1.20260128.0	1.20260129.0

• #​12295 b981db5 Thanks @​dependabot! - Update dependencies of "miniflare", "wrangler"

  The following dependency versions have been updated:

  Dependency	From	To
  workerd	1.20260129.0	1.20260130.0

• #​12355 a113c0d Thanks @​dependabot! - Update dependencies of "miniflare", "wrangler"

  The following dependency versions have been updated:

  Dependency	From	To
  workerd	1.20260130.0	1.20260131.0

• #​11971 fdd7a9f Thanks @​dario-piotrowicz! - Add framework id, build command, and deploy command to the autoconfig_summary field in the deploy output entry

  Add the framework id alongside the commands to build and deploy the project to the output being printed by wrangler deploy to WRANGLER_OUTPUT_FILE_DIRECTORY or WRANGLER_OUTPUT_FILE_PATH.

  For example for an npm Astro project these would be:

  • Framework id: astro
  • Build command: npm run build
  • Deploy command: npx wrangler deploy

  While for a Next.js project they would instead be:

  • Framework id: next
  • Build command: npx @​opennextjs/cloudflare build
  • Deploy command: npx @​opennextjs/cloudflare deploy

• #​12211 a5fca2c Thanks @​elithrar! - Remove the 'pubsub' sub-command and related functionality

  The Pub/Sub product was never made publicly available and has been discontinued. This removes the wrangler pubsub command and all associated functionality.

• Updated dependencies [0c9625a, 0aaf080, b981db5, a113c0d, f7aa8c7]:

  • miniflare@​4.20260131.0
  • @​cloudflare/kv-asset-handler@​0.4.2

v4.61.1

Compare Source

Patch Changes

• #​12189 eb8a415 Thanks @​NuroDev! - Fixed Durable Object missing migrations warning message.

  If a Workers project includes some durable_objects in it but no migrations we show a warning to the user to add migrations to their config. However, this warning recommended new_classes for their migrations, but we instead now recommend all users use new_sqlite_classes instead.

• #​11804 3b06b18 Thanks @​emily-shen! - fix: allow d1 execute, d1 export, and d1 migrations to work locally without database_id in config.

• #​12183 17961bb Thanks @​dependabot! - chore: update dependencies of "miniflare", "wrangler"

  The following dependency versions have been updated:

  Dependency	From	To
  workerd	1.20260124.0	1.20260127.0

• #​12196 52fdfe7 Thanks [@&#

---

Configuration

📅 Schedule: Branch creation - "every weekday" in timezone America/Chicago, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.