Bump the npm-minor-patch group across 1 directory with 4 updates

[dependabot]

Bumps the npm-minor-patch group with 4 updates in the /packages/tokens directory: color, markdownlint-cli, style-dictionary and vite.

Updates color from 5.0.0 to 5.0.3

Release notes

Sourced from color's releases.

5.0.3

Full Changelog: Qix-/color@5.0.2...5.0.3

5.0.2

Functionally identical release to 5.0.0.

Version 5.0.1 is compromised. Please see debug-js/debug#1005.

Commits

• 4fda9a3 5.0.3
• e41fa22 update color dependencies
• 02a615f 5.0.2
• See full diff in compare view

Updates markdownlint-cli from 0.45.0 to 0.46.0

Release notes

Sourced from markdownlint-cli's releases.

v0.46.0

• Replace glob dependency with tinyglobby (smaller and fewer dependencies)
• Update markdownlint dependency to 0.39.0
  • Add MD060/table-column-style
  • Improve MD001/MD007/MD009/MD010/MD029/MD033/MD037/MD059
• Update all dependencies via Dependabot

Commits

• c8fd500 Bump version 0.46.0
• 5d85fc6 Delete and recreate package-lock.json via "npm install" to bump indirect js-y...
• 1b2b54c Bump glob from 10.4.5 to 10.5.0
• 845c5ff Bump smol-toml from 1.4.2 to 1.5.2
• 00e4437 Bump js-yaml from 4.1.0 to 4.1.1
• 76208f1 Bump minimatch from 10.0.3 to 10.1.1
• 8e31aca Bump commander from 14.0.1 to 14.0.2
• 15c3ed0 Bump actions/setup-node from 5 to 6
• 9cc24e8 Update tests for previous commit upgrading markdownlint library.
• 34c77a6 Bump markdownlint from 0.38.0 to 0.39.0
• Additional commits viewable in compare view

Updates style-dictionary from 5.0.4 to 5.1.1

Release notes

Sourced from style-dictionary's releases.

v5.1.1

Patch Changes

• 65745da: Fix outputReferences for tokens with 'value' in their name. Previously, references to tokens like object_type.value_chain were incorrectly resolved because the code removed the first occurrence of .value instead of only the trailing suffix.

v5.1.0

Minor Changes

• 97a209a: Add new size/compose/{sp,dp} transforms

Patch Changes

• dbcdae3: Fix fontName parsing to handle double quotes
• c47600d: Export expand DTCGTypesMap for extension use cases.

Changelog

Sourced from style-dictionary's changelog.

5.1.1

Patch Changes

• 65745da: Fix outputReferences for tokens with 'value' in their name. Previously, references to tokens like object_type.value_chain were incorrectly resolved because the code removed the first occurrence of .value instead of only the trailing suffix.

5.1.0

Minor Changes

• 97a209a: Add new size/compose/{sp,dp} transforms

Patch Changes

• dbcdae3: Fix fontName parsing to handle double quotes
• c47600d: Export expand DTCGTypesMap for extension use cases.

Commits

• 352598d chore: release (#1578)
• 65745da fix: resolve references to tokens with 'value' in their name (#1577)
• 21b23d3 chore: release (#1576)
• dbcdae3 fix: handle double quoted fontNames for fontFamily/css (#1575)
• 97a209a feat: add size/compose/{dp, sp} to builtin transforms (#1569)
• 77959fb De-Amazon the repository (#1516)
• c47600d fix: export DTCGTypesMap, update docs (#1574)
• f35e30f chore(deps): bump tmp and style-dictionary (#1573)
• 60c7ebd chore(deps): bump tar-fs from 3.1.0 to 3.1.1 (#1571)
• 426b6f0 chore(deps): bump vite from 6.3.5 to 6.3.6 (#1567)
• Additional commits viewable in compare view

Updates vite from 7.1.12 to 7.2.4

Release notes

Sourced from vite's releases.

v7.2.4

Please refer to CHANGELOG.md for details.

v7.2.3

Please refer to CHANGELOG.md for details.

v7.2.2

Please refer to CHANGELOG.md for details.

plugin-legacy@7.2.1

Please refer to CHANGELOG.md for details.

v7.2.1

Please refer to CHANGELOG.md for details.

plugin-legacy@7.2.0

Please refer to CHANGELOG.md for details.

v7.2.0

Please refer to CHANGELOG.md for details.

v7.2.0-beta.1

Please refer to CHANGELOG.md for details.

v7.2.0-beta.0

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

7.2.4 (2025-11-20)

Bug Fixes

• revert "perf(deps): replace debug with obug (#21107)" (2d66b7b)

7.2.3 (2025-11-20)

Bug Fixes

• allow multiple bindCLIShortcuts calls with shortcut merging (#21103) (5909efd)
• deps: update all non-major dependencies (#21096) (6a34ac3)
• deps: update all non-major dependencies (#21128) (4f8171e)

Performance Improvements

• deps: replace debug with obug (#21107) (acfe939)

Miscellaneous Chores

• deps: update dependency @​rollup/plugin-commonjs to v29 (#21099) (02ceaec)
• deps: update rolldown-related dependencies (#21095) (39a0a15)
• deps: update rolldown-related dependencies (#21127) (5029720)

7.2.2 (2025-11-07)

Bug Fixes

• revert "refactor: use fs.cpSync (#21019)" (#21081) (728c8ee)

7.2.1 (2025-11-06)

Bug Fixes

• worker: some worker asset was missing (#21074) (82d2d6c)

Code Refactoring

• build: rename indexOfMatchInSlice to findPreloadMarker (#21054) (f83264f)

7.2.0 (2025-11-05)

Bug Fixes

• css: fallback to sass when sass-embedded platform binary is missing (#21002) (b1fd616)
• module-runner: make getBuiltins response JSON serializable (#21029) (ad5b3bf)
• types: add undefined to optional properties for exactOptionalProperties type compatibility (#21040) (2833c55)

Miscellaneous Chores

• deps: update rolldown-related dependencies (#21047) (e3a6a83)

7.2.0-beta.1 (2025-10-29)

Bug Fixes

... (truncated)

Commits

• 24a611f release: v7.2.4
• 2d66b7b fix: revert "perf(deps): replace debug with obug (#21107)"
• a668014 release: v7.2.3
• acfe939 perf(deps): replace debug with obug (#21107)
• 4f8171e fix(deps): update all non-major dependencies (#21128)
• 5029720 chore(deps): update rolldown-related dependencies (#21127)
• 5909efd fix: allow multiple bindCLIShortcuts calls with shortcut merging (#21103)
• 39a0a15 chore(deps): update rolldown-related dependencies (#21095)
• 6a34ac3 fix(deps): update all non-major dependencies (#21096)
• 02ceaec chore(deps): update dependency @​rollup/plugin-commonjs to v29 (#21099)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: dependencies, npm. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}