chore(deps): update all non-major dependencies

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update
@atproto/common (source)	0.5.10 → 0.5.11			dependencies	patch
@atproto/lex (source)	0.0.13 → 0.0.16			dependencies	patch
@clack/prompts (source)	1.0.0 → 1.0.1			dependencies	patch
@iconify-json/lucide	1.2.87 → 1.2.90			dependencies	patch
@iconify-json/simple-icons	1.2.68 → 1.2.70			dependencies	patch
@iconify-json/vscode-icons	1.2.40 → 1.2.42			dependencies	patch
@playwright/test (source)	1.58.1 → 1.58.2			devDependencies	patch
@shikijs/langs (source)	3.21.0 → 3.22.0			dependencies	minor
@shikijs/themes (source)	3.21.0 → 3.22.0			dependencies	minor
@types/node (source)	24.10.9 → 24.10.13			devDependencies	patch
@upstash/redis	1.36.1 → 1.36.2			dependencies	patch
@vite-pwa/nuxt	1.1.0 → 1.1.1			dependencies	patch
@​voidzero-dev/vite-plus-core	0.0.0-833c515fa25cef20905a7f9affb156dfa6f151ab → 0.0.0-ffb4d08a8edafe855c59736c0a38ee85a2373ebb			dependencies	patch
@vueuse/core (source)	14.2.0 → 14.2.1			dependencies	patch
@vueuse/integrations (source)	14.2.0 → 14.2.1			dependencies	patch
@vueuse/nuxt (source)	14.2.0 → 14.2.1			dependencies	patch
@vueuse/router (source)	14.2.0 → 14.2.1			dependencies	patch
@vueuse/shared (source)	14.2.0 → 14.2.1			dependencies	patch
actions/checkout	v6.0.1 → v6.0.2			action	patch
actions/github-script	v7.0.1 → v7.1.0			action	minor
algoliasearch (source)	5.48.0 → 5.48.1			dependencies	patch
better-sqlite3	12.5.0 → 12.6.2			dependencies	minor
citty	0.2.0 → 0.2.1			dependencies	patch
docus	5.4.4 → 5.5.1			dependencies	minor
fast-npm-meta	1.0.0 → 1.2.1			dependencies	minor
h3-next (source)	2.0.1-rc.11 → 2.0.1-rc.14			devDependencies	patch
knip (source)	5.83.0 → 5.83.1			devDependencies	patch
marked (source)	17.0.1 → 17.0.2			dependencies	patch
mcr.microsoft.com/playwright	v1.58.0-noble → v1.58.2-noble			container	patch
oxfmt (source)	0.27.0 → 0.32.0			devDependencies	minor
pnpm (source)	10.28.2 → 10.29.3			packageManager	minor
semver	7.7.3 → 7.7.4			dependencies	patch
shiki (source)	3.21.0 → 3.22.0			dependencies	minor
srvx (source)	^0.10.1 → ^0.11.0			dependencies	minor
tsdown (source)	0.20.1 → 0.20.3			devDependencies	patch
vitest	0.0.0-833c515fa25cef20905a7f9affb156dfa6f151ab → 0.0.0-ffb4d08a8edafe855c59736c0a38ee85a2373ebb			devDependencies	patch

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

bluesky-social/atproto (@​atproto/common)

v0.5.11

Compare Source

Patch Changes

• Updated dependencies [ed61c62, ed61c62]:
  • @​atproto/lex-cbor@​0.0.11
  • @​atproto/lex-data@​0.0.11
  • @​atproto/common-web@​0.4.16

bluesky-social/atproto (@​atproto/lex)

v0.0.16

Compare Source

Patch Changes

• Updated dependencies [619068f]:
  • @​atproto/lex-builder@​0.0.15
  • @​atproto/lex-client@​0.0.12
  • @​atproto/lex-installer@​0.0.16

v0.0.15

Compare Source

Patch Changes

• #​4601 ed61c62 Thanks @​matthieusieben! - Fix exports field in package.json

• #​4601 ed61c62 Thanks @​matthieusieben! - Add JSDoc

• #​4601 ed61c62 Thanks @​matthieusieben! - Update README

• Updated dependencies [7b9a98a, 7b9a98a, ed61c62, ed61c62, ed61c62, 7b9a98a, 7b9a98a, ed61c62, ed61c62]:

  • @​atproto/lex-schema@​0.0.12
  • @​atproto/lex-client@​0.0.12
  • @​atproto/lex-json@​0.0.11
  • @​atproto/lex-installer@​0.0.15
  • @​atproto/lex-data@​0.0.11
  • @​atproto/lex-builder@​0.0.14

v0.0.14

Compare Source

Patch Changes

• #​4589 369bb02 Thanks @​matthieusieben! - Add ability to set default headers when creating XRPC agent

• Updated dependencies [369bb02, 369bb02, 369bb02, 369bb02]:

  • @​atproto/lex-client@​0.0.11
  • @​atproto/lex-data@​0.0.10
  • @​atproto/lex-installer@​0.0.14
  • @​atproto/lex-json@​0.0.10
  • @​atproto/lex-schema@​0.0.11
  • @​atproto/lex-builder@​0.0.13

bombshell-dev/clack (@​clack/prompts)

v1.0.1

Compare Source

Patch Changes

• 6404dc1: Disallows selection of disabled options in autocomplete.
• 86e36d8: Adds withGuide support to select prompt.
• c697439: Fixes line wrapping behavior in autocomplete.
• 0ded19c: Simplifies withGuide option checks.
• 0e4ddc9: Fixes withGuide support in password and path prompts.
• 76550d6: Adds withGuide support to selectKey prompt.
• f9b9953: Adds withGuide support to password prompt.
• 0e93ccb: Adds vertical arrangement option to confirm prompt.
• 4e9ae13: Adds withGuide support to confirm prompt.
• 0256238: Adds withGuide support to spinner prompt.
• Updated dependencies [6404dc1]
• Updated dependencies [2533180]
  • @​clack/core@​1.0.1

microsoft/playwright (@​playwright/test)

v1.58.2

Compare Source

shikijs/shiki (@​shikijs/langs)

v3.22.0

Compare Source

   🚀 Features

• Update grammar and themes  -  by @​antfu (40676)

    View changes on GitHub

upstash/upstash-redis (@​upstash/redis)

v1.36.2

Compare Source

What's Changed

• DX-2363: add redis-js skills by @​CahidArda in upstash/redis-js#1406
• Dx 2353: Add commands HGETDEL, HGETEX, HSETEX, XDELEX, XACKDEL, CLIENT SETINFO and add new options to BITOP and XADD by @​alitariksahin in upstash/redis-js#1407

Full Changelog: upstash/redis-js@v1.36.1...v1.36.2

vite-pwa/nuxt (@​vite-pwa/nuxt)

v1.1.1

Compare Source

No significant changes

    View changes on GitHub

vueuse/vueuse (@​vueuse/core)

v14.2.1

Compare Source

   🚀 Features

• Add skills at the root directory for skills cli  -  by @​antfu (c005d)
• skills: Transfer @vueuse/skills  -  by @​serkodev in #​5286 (532ac)

   🐞 Bug Fixes

• useRafFn: Resolve reactive null fpsLimit not being handled  -  by @​nemanjamalesija in #​5284 (8ce0d)

    View changes on GitHub

actions/checkout (actions/checkout)

v6.0.2

Compare Source

• Fix tag handling: preserve annotations and explicit fetch-tags by @​ericsciple in #​2356

actions/github-script (actions/github-script)

v7.1.0

Compare Source

What's Changed

• Upgrade husky to v9 by @​benelan in #​482
• Add workflow file for publishing releases to immutable action package by @​Jcambass in #​485
• Upgrade IA Publish by @​Jcambass in #​486
• Fix workflow status badges by @​joshmgross in #​497
• Update usage of actions/upload-artifact by @​joshmgross in #​512
• Clear up package name confusion by @​joshmgross in #​514
• Update dependencies with npm audit fix by @​joshmgross in #​515
• Specify that the used script is JavaScript by @​timotk in #​478
• chore: Add Dependabot for NPM and Actions by @​nschonni in #​472
• Define permissions in workflows and update actions by @​joshmgross in #​531
• chore: Add Dependabot for .github/actions/install-dependencies by @​nschonni in #​532
• chore: Remove .vscode settings by @​nschonni in #​533
• ci: Use github/setup-licensed by @​nschonni in #​473
• make octokit instance available as octokit on top of github, to make it easier to seamlessly copy examples from GitHub rest api or octokit documentations by @​iamstarkov in #​508
• Remove octokit README updates for v7 by @​joshmgross in #​557
• docs: add "exec" usage examples by @​neilime in #​546
• Bump ruby/setup-ruby from 1.213.0 to 1.222.0 by @​dependabot[bot] in #​563
• Bump ruby/setup-ruby from 1.222.0 to 1.229.0 by @​dependabot[bot] in #​575
• Clearly document passing inputs to the script by @​joshmgross in #​603
• Update README.md by @​nebuk89 in #​610

New Contributors

• @​benelan made their first contribution in #​482
• @​Jcambass made their first contribution in #​485
• @​timotk made their first contribution in #​478
• @​iamstarkov made their first contribution in #​508
• @​neilime made their first contribution in #​546
• @​nebuk89 made their first contribution in #​610

Full Changelog: actions/github-script@v7...v7.1.0

algolia/algoliasearch-client-javascript (algoliasearch)

v5.48.1

Compare Source

• 46be49a3f docs(specs): align with style guides (#​5930) by @​kai687
• 799a10c44 fix(specs): insights-api timestamp documentation (#​5925) by @​sirockin
• 4b3dc5c26 fix(specs): BREAKING CHANGE – remove unnecessary required fields (#​5959) by @​MarioAlexandruDan
  • The SearchResponse model now accepts query and params as optional parameters, as they are not always returned by the API.
• dfd992583 fix(specs): add missing redirect property to rule consequence schema (#​5934) by @​Fluf22
• b39c0798e chore(deps): dependencies 2026-02-09 (#​5935) by @​algolia-bot

WiseLibs/better-sqlite3 (better-sqlite3)

v12.6.2

Compare Source

What's Changed

• fix build: update node-abi version in package.json to ^4.25.0 by @​mceachen in #​1439

Full Changelog: WiseLibs/better-sqlite3@v12.6.1...v12.6.2

v12.6.0

Compare Source

What's Changed

• Update SQLite to version 3.51.2 in #​1436

Full Changelog: WiseLibs/better-sqlite3@v12.5.0...v12.6.0

unjs/citty (citty)

v0.2.1

Compare Source

compare changes

🩹 Fixes

• Propagate --no- negation to aliases and main option (#​225)

🏡 Chore

• Fix readme formatting (#​223)
• Use oxlint and oxfmt (f1d05f4)

❤️ Contributors

• Pooya Parsa (@​pi0)
• Kai Gritun kaigritun@gmail.com
• Jimmy Guzman (@​jimmy-guzman)

nuxt-content/docus (docus)

v5.5.1

Compare Source

Features

• layer: add more seo optimization (#​1267) (d283f9a)

Bug Fixes

• assistant: improves assistant UI/UX and responsiveness (#​1268) (e9edf7b)
• docs: do not show separator if github is disabled (#​1270) (bd2455c)
• logs: remove extra title (7adad7c)
• theme: don't use @​theme static for priority (#​1271) (ff8a045)

Reverts

• Revert "chore: make sure to use Nuxt 4.3.0 everywhere" (f40ac5e)

v5.5.0

Compare Source

Features

• add skills folder with first skill /create-docs (#​1257) (0b2d346)
• layer: add sitemap.xml generation (#​1259) (45bffbc)
• layer: add ai assistant module (#​1241) (1ff2829)
• llms: add docs page redirection to raw markdown for agents (#​1264) (9ceafe6)
• llms: redirect homepage to /llms.txt (#​1263) (6fd8686)

Bug Fixes

• .starters: prerendering issues (8fe3796)
• .starters: prerendering issues (edab8bf)
• .starters: prerendering issues in i18n template (251b962)
• assitant: do not trigger panel when opening Studio (6199d95)
• build: remove warnings (845e4c8)
• layer: add @vercel/oidc to optimizeDeps (#​1262) (88885ae)
• layer: enhance sitemap generation, exclude navigation files (#​1261) (cd2c62e)
• llms: default domain (d7ff04a)
• llms: infer vercel urls (6d437cc)
• locale: lazy import (#​1266) (dd4a526)
• logs: use nuxt logger (e6be163)

antfu/fast-npm-meta (fast-npm-meta)

v1.2.1

Compare Source

   🐞 Bug Fixes

• Handle specifier with =  -  by @​ghostdevv in #​29 (8adcf)

    View changes on GitHub

v1.2.0

Compare Source

No significant changes

    View changes on GitHub

v1.1.0

Compare Source

   🚀 Features

• Add retry options  -  by @​SukkaW and @​antfu in #​24 (de9a7)

   🐞 Bug Fixes

• Preserve npm registry error status code in responses  -  by @​9romise in #​27 (abb2d)

    View changes on GitHub

h3js/h3 (h3-next)

v2.0.1-rc.14

Compare Source

compare changes

💅 Refactors

• tracing: Rename tracing channel .fetch to .request (#​1294)
• auth: Enhance randomJitter function for cryptographic security (#​1295)

🏡 Chore

• Update h3 version in playground (54e722e)
• Update deps (d7e0fbd)

❤️ Contributors

• Pooya Parsa (@​pi0)
• Sandro Circi (@​sandros94)
• Abdelrahman Awad abdelrahman.awad@sentry.io

v2.0.1-rc.13

Compare Source

compare changes

💅 Refactors

• Improve cli (f107e07)

❤️ Contributors

• Pooya Parsa (@​pi0)

v2.0.1-rc.12

Compare Source

compare changes

🚀 Enhancements

• h3 cli (#​1293)
• writeEarlyHints: Add Link: rel:preload headers as fallback (#​1288)

💅 Refactors

• Allow better debugging headers are frozen (#​1287)

📖 Documentation

• Update example to use event.res.headers.set (#​1289)

📦 Build

• Update obuild (905886c)

🏡 Chore

• Migrate to oxlint and oxfmt (#​1286)
• Update deps (fd46b1e)
• Update deps (d82f198)
• Rename typecheck script (64a7081)
• Update undocs (a91970d)

🤖 CI

• Add pkg.pr.new integration (f6f152a)

❤️ Contributors

• Pooya Parsa (@​pi0)
• Kricsleo (@​kricsleo)
• Daniel Slepov danil.slepov@gmail.com

webpro-nl/knip (knip)

v5.83.1: Release 5.83.1

Compare Source

• Fix package.json import (f8c14c8)
• Organize imports (5d716ba)
• Update a bunch of dependencies (78bf644)
• Add minimal test suite to vscode-knip (b639508)
• Add support for monorepo when installing dependency (close #​1501) (5782b07)
• Fix unused file output in table (0f3dbb4)
• Restore slonik in ecosystem tests (35d9185)
• Fix type in exported value case (resolve #​1508) (d6dda74)
• Organize imports (fcdd33b)
• Remove unused export (c777bae)
• Don't flag exports (including used as type) in protected or consumed exports (a01bec1)
• Add npmx.dev to ecosystem tests (8f82052)
• fix: fix vitest setupFiles resolution (#​1511) (273b940) - thanks @​tmair!
• Improve & extend vitest args handling (6c49e5c)
• Detect Bun differently to avoid TS complaint (c1499d3)
• A temporary workaround until they catch up 🤫 (028b972)
• feat(vite): detect module entry from index.html (#​1487) (a76ab85) - thanks @​WooWan!
• Auto-format (69150bf)
• Add double-dash handling and add tests (close #​1404) (4c1de75)
• Revert most of previous commit 4c1de75 (0cd91ae)
• Auto-format (cf3d8ff)

markedjs/marked (marked)

v17.0.2

Compare Source

oxc-project/oxc (oxfmt)

v0.32.0

Compare Source

v0.30.0

🐛 Bug Fixes

• 1b2f354 ci: Add missing riscv64/s390x napi targets for oxfmt and oxlint (#​19217) (Cameron)

v0.28.0

Compare Source

pnpm/pnpm (pnpm)

v10.29.3

Compare Source

v10.29.2

Compare Source

v10.29.1: pnpm 10.29.1

Compare Source

Minor Changes

• The pnpm dlx / pnpx command now supports the catalog: protocol. Example: pnpm dlx shx@catalog:.
• Support configuring auditLevel in the pnpm-workspace.yaml file #​10540.
• Support bare workspace: protocol without version specifier. It is now treated as workspace:* and resolves to the concrete version during publish #​10436.

Patch Changes

• Fixed pnpm list --json returning incorrect paths when using global virtual store #​10187.

• Fix pnpm store path and pnpm store status using workspace root for path resolution when storeDir is relative #​10290.

• Fixed pnpm run -r failing with "No projects matched the filters" when an empty pnpm-workspace.yaml exists #​10497.

• Fixed a bug where catalogMode: strict would write the literal string "catalog:" to pnpm-workspace.yaml instead of the resolved version specifier when re-adding an existing catalog dependency #​10176.

• Fixed the documentation URL shown in pnpm completion --help to point to the correct page at https://pnpm.io/completion #​10281.

• Skip local file: protocol dependencies during pnpm fetch. This fixes an issue where pnpm fetch would fail in Docker builds when local directory dependencies were not available #​10460.

• Fixed pnpm audit --json to respect the --audit-level setting for both exit code and output filtering #​10540.

• update tar to version 7.5.7 to fix security issue

  Updating the version of dependency tar to 7.5.7 because the previous one have a security vulnerability reported here: CVE-2026-24842

• Fix pnpm audit --fix replacing reference overrides (e.g. $foo) with concrete versions #​10325.

• Fix shamefullyHoist set via updateConfig in .pnpmfile.cjs not being converted to publicHoistPattern #​10271.

• pnpm help should correctly report if the currently running pnpm CLI is bundled with Node.js #​10561.

• Add a warning when the current directory contains the PATH delimiter character. On macOS, folder names containing forward slashes (/) appear as colons (:) at the Unix layer. Since colons are PATH separators in POSIX systems, this breaks PATH injection for node_modules/.bin, causing binaries to not be found when running commands like pnpm exec #​10457.

Platinum Sponsors

Gold Sponsors

config help if that's undesired. If you want to rebase/retry this PR, check this box This PR was generated by Mend Renovate. View the repository job log.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
docs.npmx.dev	Ready	Preview, Comment	Feb 14, 2026 9:48am
npmx.dev	Ready	Preview, Comment	Feb 14, 2026 9:48am

1 Skipped Deployment

Project	Deployment	Actions	Updated (UTC)
npmx-lunaria	Ignored		Feb 14, 2026 9:48am

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ All tests successful. No failed tests found.

📢 Thoughts on this report? Let us know!

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.