Bump tmp and @lingui/cli

[dependabot]

Bumps tmp to 0.2.5 and updates ancestor dependency @lingui/cli. These dependencies need to be updated together.

Updates tmp from 0.2.3 to 0.2.5

Commits

• 3d2fe38 Bump up the version
• e162828 Merge pull request #309 from fflorent/fix-tmp-dir-with-dir
• b847d2f Fix use of tmp.dir() with dir option
• 08fa3ab Update version
• 1cf4ec5 Merge commit from fork
• 188b25e Fix GHSA-52f5-9888-hmc6
• 73b9fe4 Add test case for GHSA-52f5-9888-hmc6
• b8e2f29 Remove broken tests
• 2892a02 Remove outdated URL
• f592318 Reformat package.json
• Additional commits viewable in compare view

Updates @lingui/cli from 5.1.2 to 5.5.0

Release notes

Sourced from @​lingui/cli's releases.

v5.5.0

5.5.0 (2025-09-12)

Features

• cli: support multithreading in all CLI commands (#2320) (86fbcd8)
• cli: add babel parser flag for import defer * as q from '...' (#2309) (a09c973)

To learn more about CLI multithreading, see the --workers parameter in the CLI documentation.

v5.4.1

5.4.1 (2025-08-11)

Bug Fixes

• extractor: sort placeholders to keep them stable between runs (#2307) (decf4cd)
• vite-plugin: add error handling for dynamic import of @lingui/core/macro (#2056) (c863faa)
• remove @messageformat/date-skeleton from bundledDependencies (#2293) (9601701)

v5.4.0

5.4.0 (2025-08-01)

Features

• cli: full concurrency for extract / compile commands (#2299) (489fb3a)

Bug Fixes

• react: remove VFC, FC type usage (#2290) (30e5242)
• metro-transformer: remove metro peer dep from metro-transformer (#2287) (eb8a429)

Docs

• New "Optimizing Bundle Size" guide (#2296) (83d91fe)
• llms.txt and llms-full.txt support (#2298) (e0b4901)

v5.3.3

5.3.3 (2025-07-11)

Bug Fixes

• cli: remove unused dependency babel-plugin-macros (#2266) (d6906cc)
• core: remove unraw dependency (#2271) (494c152)
• cli: replace chalk with picocolors (#2268) (73f867c)
• update Vite peer dependence to include v7 (#2280) (d5c2086)
• standardize repository field format across all packages (#2269) (a03a984)

v5.3.2

5.3.2 (2025-05-28)

... (truncated)

Changelog

Sourced from @​lingui/cli's changelog.

5.5.0 (2025-09-12)

Features

• add babel parser flag for import defer * as q from '...' (#2309) (a09c973)
• cli: support multithreading in all cli commands (#2320) (86fbcd8)

5.4.1 (2025-08-11)

Bug Fixes

• extractor: sort placeholders to keep them stable between runs (#2307) (decf4cd)

5.4.0 (2025-08-01)

Features

• full concurrency for extract / compile commands (#2299) (489fb3a)

5.3.3 (2025-07-11)

Bug Fixes

• cli: remove unused dependency babel-plugin-macros (#2266) (d6906cc)
• standardize repository field format across all packages (#2269) (a03a984)

5.3.2 (2025-05-27)

Bug Fixes

• cli: catalogsMergePath generates only one compiled locale (#2238) (b1c7aac)
• use makePathRegexSafe with globSync (#2242) (7a8256c)

5.3.1 (2025-04-14)

Bug Fixes

• cli: update esbuild (#2187) (643a604)

5.3.0 (2025-03-21)

Features

• failOnMissing & failOnCompileError for loaders + compiler (#2198) (68c29ab)

5.2.0 (2025-01-31)

Bug Fixes

• Allow empty translations for pseudo locale in compile --strict (#2129) (8cae5e0)

Commits

• 26700f0 chore(release): published v5.5.0 [skip ci] (#2325)
• 86fbcd8 feat(cli): support multithreading in all cli commands (#2320)
• a09c973 feat: add babel parser flag for import defer * as q from '...' (#2309)
• 296f115 chore(release): published v5.4.1 [skip ci] (#2310)
• decf4cd fix(extractor): sort placeholders to keep them stable between runs (#2307)
• ce0d17b chore(release): published v5.4.0 [skip ci] (#2302)
• 489fb3a feat: full concurrency for extract / compile commands (#2299)
• 24d5e08 chore: add homepage field to package.json for all packages (#2294)
• f8dc4af chore(release): published v5.3.3 [skip ci] (#2281)
• 73f867c chore: replace chalk with picocolors (#2268)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.