chore(deps-dev): bump the development-dependencies group with 3 updates

[dependabot]

Bumps the development-dependencies group with 3 updates: vite, @rsbuild/core and svelte.

Updates vite from 7.2.4 to 7.2.6

Release notes

Sourced from vite's releases.

v7.2.6

Please refer to CHANGELOG.md for details.

v7.2.5

Please refer to CHANGELOG.md for details.

Note: 7.2.5 failed to publish so it is skipped on npm

Changelog

Sourced from vite's changelog.

7.2.6 (2025-12-01)

7.2.5 (2025-12-01)

Bug Fixes

• config: handle shebang properly (#21158) (df5a30d)
• deps: update all non-major dependencies (#21146) (a3cd262)
• deps: update all non-major dependencies (#21175) (72e398a)
• fix external: true merging (#21164) (5ef557a)
• shortcuts not rebound after server restart (#21166) (3765f7b)

Performance Improvements

• deps: replace debug with obug (#21137) (203a551)

Documentation

• clarify manifest.json imports field is JS chunks only (#21136) (46d3077)

Miscellaneous Chores

• deps: update rolldown-related dependencies (#21174) (74559c9)

Commits

• bda5dbb release: v7.2.6
• 3aa7527 release: v7.2.5
• 72e398a fix(deps): update all non-major dependencies (#21175)
• 3765f7b fix: shortcuts not rebound after server restart (#21166)
• 5ef557a fix: fix external: true merging (#21164)
• 74559c9 chore(deps): update rolldown-related dependencies (#21174)
• df5a30d fix(config): handle shebang properly (#21158)
• a3cd262 fix(deps): update all non-major dependencies (#21146)
• 46d3077 docs: clarify manifest.json imports field is JS chunks only (#21136)
• 203a551 perf(deps): replace debug with obug (#21137)
• See full diff in compare view

Updates @rsbuild/core from 1.6.8 to 1.6.11

Release notes

Sourced from @​rsbuild/core's releases.

v1.6.11

What's Changed

Performance 🚀

• perf: lazy loading webpack-merge dependency by @​chenjiahan in web-infra-dev/rsbuild#6668

Bug Fixes 🐞

• fix: preserve status message in gzip middleware by @​chenjiahan in web-infra-dev/rsbuild#6663
• fix(core): send asynchronous warnings to the socketServer by @​zalishchuk in web-infra-dev/rsbuild#6671
• fix: failed to resolve Rsbuild client modules by @​chenjiahan in web-infra-dev/rsbuild#6674

Document 📖

• docs: refine browser compatibility wording by @​chenjiahan in web-infra-dev/rsbuild#6673

Other Changes

• chore(deps): update dependency @​shikijs/transformers to ^3.17.0 by @​renovate[bot] in web-infra-dev/rsbuild#6666
• chore(deps): update pnpm to v10.24.0 by @​renovate[bot] in web-infra-dev/rsbuild#6667
• chore(deps): update all patch dependencies by @​renovate[bot] in web-infra-dev/rsbuild#6672
• release: v1.6.11 by @​chenjiahan in web-infra-dev/rsbuild#6675

New Contributors

• @​zalishchuk made their first contribution in web-infra-dev/rsbuild#6671

Full Changelog: web-infra-dev/rsbuild@v1.6.10...v1.6.11

v1.6.10

What's Changed

New Features 🎉

• feat: improve error overlay readability by enabling line wrapping by @​chenjiahan in web-infra-dev/rsbuild#6660

Bug Fixes 🐞

• fix: encode content in virtual module to handle special characters by @​chenjiahan in web-infra-dev/rsbuild#6655
• fix: prevent HMR configs from overlapping across environments by @​chenjiahan in web-infra-dev/rsbuild#6656
• fix: handle status message in gzip middleware by @​chenjiahan in web-infra-dev/rsbuild#6659
• fix: use sequential config generation to ensure deterministic results by @​chenjiahan in web-infra-dev/rsbuild#6661
• fix(overlay): skip converting node internal paths in error messages by @​chenjiahan in web-infra-dev/rsbuild#6662
• fix(overlay): replace file URI scheme by @​chenjiahan in web-infra-dev/rsbuild#6664
• fix: add workaround for virtual modules build log by @​chenjiahan in web-infra-dev/rsbuild#6665

Document 📖

• docs: update filename placeholders link and description by @​chenjiahan in web-infra-dev/rsbuild#6651
• docs: polish English phrasing in plugin and worker guides by @​chenjiahan in web-infra-dev/rsbuild#6654

Other Changes

• chore(deps): bump Rslib v0.18.2 to fix panic issue in watch mode by @​Timeless0911 in web-infra-dev/rsbuild#6649
• chore: add ua-parser-js to trustPolicyExclude list by @​yifancong in web-infra-dev/rsbuild#6616
• chore(deps): update dependency svelte to ^5.45.2 by @​renovate[bot] in web-infra-dev/rsbuild#6652
• chore(deps): update playwright monorepo to v1.57.0 by @​renovate[bot] in web-infra-dev/rsbuild#6653
• chore(deps): update dependency prettier to ^3.7.1 by @​renovate[bot] in web-infra-dev/rsbuild#6657
• release: v1.6.10 by @​chenjiahan in web-infra-dev/rsbuild#6669

Full Changelog: web-infra-dev/rsbuild@v1.6.9...v1.6.10

... (truncated)

Commits

• 14c4298 release: v1.6.11 (#6675)
• 61af857 fix: failed to resolve Rsbuild client modules (#6674)
• 1c17090 fix(core): send asynchronous warnings to the socketServer (#6671)
• c391513 chore(deps): update all patch dependencies (#6672)
• 3680000 perf: lazy loading webpack-merge dependency (#6668)
• c10a9d8 fix: preserve status message in gzip middleware (#6663)
• a01f5dc release: v1.6.10 (#6669)
• a58960e fix: add workaround for virtual modules build log (#6665)
• 2213e6f fix(overlay): replace file URI scheme (#6664)
• bb8998b fix(overlay): skip converting node internal paths in error messages (#6662)
• Additional commits viewable in compare view

Updates svelte from 5.43.14 to 5.45.2

Release notes

Sourced from svelte's releases.

svelte@5.45.2

Patch Changes

• fix: array destructuring after await (#17254)

• fix: throw on invalid {@tag}s (#17256)

svelte@5.45.1

Patch Changes

• fix: link offscreen items and last effect in each block correctly (#17240)

svelte@5.45.0

Minor Changes

• feat: add print(...) function (#16188)

svelte@5.44.1

Patch Changes

• fix: await blockers before initialising const (#17226)

• fix: link offscreen items and last effect in each block correctly (#17244)

• fix: generate correct code for simple destructurings (#17237)

• fix: ensure each block animations don't mess with transitions (#17238)

svelte@5.44.0

Minor Changes

• feat: hydratable API (#17154)

svelte@5.43.15

Patch Changes

• fix: don't execute attachments and attribute effects eagerly (#17208)

• chore: lift "flushSync cannot be called in effects" restriction (#17139)

• fix: store forked derived values (#17212)

Changelog

Sourced from svelte's changelog.

5.45.2

Patch Changes

• fix: array destructuring after await (#17254)

• fix: throw on invalid {@tag}s (#17256)

5.45.1

Patch Changes

• fix: link offscreen items and last effect in each block correctly (#17240)

5.45.0

Minor Changes

• feat: add print(...) function (#16188)

5.44.1

Patch Changes

• fix: await blockers before initialising const (#17226)

• fix: link offscreen items and last effect in each block correctly (#17244)

• fix: generate correct code for simple destructurings (#17237)

• fix: ensure each block animations don't mess with transitions (#17238)

5.44.0

Minor Changes

• feat: hydratable API (#17154)

5.43.15

Patch Changes

• fix: don't execute attachments and attribute effects eagerly (#17208)

• chore: lift "flushSync cannot be called in effects" restriction (#17139)

• fix: store forked derived values (#17212)

Commits

• b4b580a Version Packages (#17257)
• bec7ca7 fix: throw on invalid {@tag}s (#17256)
• ae60046 fix: array destructuring after await (#17254)
• 5c821c1 Version Packages (#17253)
• da4cd0e fix: link offscreen items and last effect in each block correctly (#17240)
• 1bc3ae7 Version Packages (#17247)
• 8addf20 feat: add print(...) function (#16188)
• cc1b3f2 Version Packages (#17245)
• 3c63b12 chore: fix typos in code comments and documentation (#17187)
• a7848c0 fix: generate correct code for simple destructurings (#17237)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.