chore(deps): update all non-major dependencies

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence
@resvg/resvg-js	^2.6.0 → ^2.6.2
@resvg/resvg-wasm	^2.6.0 → ^2.6.2
@takumi-rs/core	^0.70.1 → ^0.71.7
@takumi-rs/wasm	^0.70.1 → ^0.71.7
@unhead/vue (source)	^2.0.5 → ^2.1.12
eslint-plugin-harlanzw	^0.5.16 → ^0.5.17
fontless (source)	^0.2.0 → ^0.2.1
playwright-core (source)	^1.50.0 → ^1.58.2
satori	>=0.19.2 → >=0.25.0
sharp (source, changelog)	^0.34.0 → ^0.34.5
tailwindcss (source)	^4.0.0 → ^4.2.1
unifont	^0.7.0 → ^0.7.4
unstorage (source)	^1.15.0 → ^1.17.4

---

Release Notes

yisibl/resvg-js (@​resvg/resvg-js)

v2.6.2

Compare Source

Fixed

• fix: Uncaught LinkError WebAssembly.instantiate() #​322

v2.6.1

Compare Source

Added

• chore(deps): update yarn to v3.8.1
• chore(deps): update actions/cache action to v4

kane50613/takumi (@​takumi-rs/core)

v0.71.7

Compare Source

Patch Changes

• @​takumi-rs/core@​0.71.7
• @​takumi-rs/wasm@​0.71.7
• @​takumi-rs/helpers@​0.71.7

v0.71.6

Compare Source

Patch Changes

• Updated dependencies [1a111a6]
  • @​takumi-rs/core@​0.71.6
  • @​takumi-rs/wasm@​0.71.6
  • @​takumi-rs/helpers@​0.71.6

v0.71.5

Compare Source

Patch Changes

• @​takumi-rs/core@​0.71.5
• @​takumi-rs/wasm@​0.71.5
• @​takumi-rs/helpers@​0.71.5

v0.71.4

Compare Source

Patch Changes

• @​takumi-rs/core@​0.71.4
• @​takumi-rs/wasm@​0.71.4
• @​takumi-rs/helpers@​0.71.4

v0.71.3

Compare Source

Patch Changes

• a279b4c: Add dithering option for smoother gradients
• Updated dependencies [a279b4c]
  • @​takumi-rs/core@​0.71.3
  • @​takumi-rs/wasm@​0.71.3
  • @​takumi-rs/helpers@​0.71.3

v0.71.2

Compare Source

Patch Changes

• @​takumi-rs/core@​0.71.2
• @​takumi-rs/wasm@​0.71.2
• @​takumi-rs/helpers@​0.71.2

v0.71.1

Compare Source

Patch Changes

• Updated dependencies [a22b234]
  • @​takumi-rs/core@​0.71.1
  • @​takumi-rs/wasm@​0.71.1
  • @​takumi-rs/helpers@​0.71.1

v0.71.0

Compare Source

Patch Changes

• Updated dependencies [0930cdb]
• Updated dependencies [812029d]
  • @​takumi-rs/core@​0.71.0
  • @​takumi-rs/wasm@​0.71.0
  • @​takumi-rs/helpers@​0.71.0

v0.70.4

Compare Source

Patch Changes

• @​takumi-rs/core@​0.70.4
• @​takumi-rs/wasm@​0.70.4
• @​takumi-rs/helpers@​0.70.4

v0.70.3

Compare Source

Patch Changes

• Updated dependencies [a6fdb08]
  • @​takumi-rs/core@​0.70.3
  • @​takumi-rs/wasm@​0.70.3
  • @​takumi-rs/helpers@​0.70.3

v0.70.2

Compare Source

Patch Changes

• 7270512: Fix concurrent call to async methods caused race-condition

unjs/unhead (@​unhead/vue)

v2.1.12

Compare Source

v2.1.11

Compare Source

    ⚠️ Security

• Fixed XSS bypass in useHeadSafe via attribute name injection (GHSA-g5xx-pwrp-g3fv). Users handling untrusted input with useHeadSafe should upgrade immediately.

   🐞 Bug Fixes

• addons,schema-org: Permissive peer dependencies  -  by @​harlan-zw (4c5d1)

    View changes on GitHub

v2.1.10

Compare Source

   🐞 Bug Fixes

• solid-js: Correct peerDependency version  -  by @​tyeporter in #​671 (64e17)

    View changes on GitHub

v2.1.9

Compare Source

   🐞 Bug Fixes

• schema-org: Nuxt test utils compat bug  -  by @​harlan-zw (ef838)

    View changes on GitHub

v2.1.8

Compare Source

   🐞 Bug Fixes

• schema-org: Avoid crashing from 3+ duplicate nodes  -  by @​harlan-zw (4baf9)

    View changes on GitHub

v2.1.7

Compare Source

   🐞 Bug Fixes

• unhead:
  • deduplicate matching tags inside same render cycle  -  by @​harlan-zw in #​668 (5c0b2)

    View changes on GitHub

v2.1.6

Compare Source

   🐞 Bug Fixes

• react: Ssr regression  -  by @​harlan-zw (6adff)

    View changes on GitHub

v2.1.5

Compare Source

   🐞 Bug Fixes

• react: Dispose head entries on unmount in React 18 StrictMode  -  by @​harlan-zw in #​664 (50ffe)
• scripts: Prevent scope disposal from aborting unrelated trigger in useScript  -  by @​cernymatej in #​660 (e8f5b)
• unhead: Dedupe link rel without hreflang or type  -  by @​danielroe in #​658 (1487d)

    View changes on GitHub

v2.1.4

Compare Source

   🐞 Bug Fixes

• schema-org: Remove unimplemented SchemaOrgDebug  -  by @​onmax in #​649 (642dc)
• unhead: Dedupe <link rel="alternate"> by hreflang/type only, drop href from key  -  by @​harlan-zw in #​656 (86175)

    View changes on GitHub

v2.1.3

Compare Source

   🐞 Bug Fixes

• unhead:
  • Dedupe <link rel="alternate">  -  by @​danielroe and onmax in #​655 (fdabe)
• vue:
  • Support computed getter trigger  -  by @​harlan-zw in #​638 (fd63a)
  • Guard s._statusRef  -  by @​danielroe in #​642 (4ef03)

   🏎 Performance

• vue: Avoid duplicating error message in the bundle  -  by @​panstromek in #​652 (194e5)

    View changes on GitHub

v2.1.2

Compare Source

   🐞 Bug Fixes

• Broken cjs environment  -  by @​harlan-zw (ce989)

    View changes on GitHub

v2.1.1

Compare Source

No significant changes

    View changes on GitHub

v2.1.0

Compare Source

   🚀 Features

• schema-org: 12 new nodes  -  by @​harlan-zw in #​612 (1a9b8)

   🐞 Bug Fixes

• react:
  • Recursive function resolves broken  -  by @​harlan-zw (4e0c7)
• schema-org:
  • Correct month off-by-one  -  by @​harlan-zw in #​603 (a3e70)
  • Missing schema.org properties  -  by @​harlan-zw in #​614 (54e05)
• unhead:
  • Enforce boolean string meta contents  -  by @​kfreezen in #​594 (0b8e7)
  • Capo module scripts ordering  -  by @​Barbapapazes in #​600 (3c661)
  • Capo inline scripts ordering  -  by @​Barbapapazes in #​596 (7be75)
  • Normalize script type  -  by @​harlan-zw (e51b6)
  • Safer handling of input  -  by @​harlan-zw (b4b6c)

   🏎 Performance

• schema-org:
  • Remove ohash and defu dependencies  -  by @​harlan-zw in #​605 (0d508)
  • Rework graph resolution  -  by @​harlan-zw in #​616 (b79e4)

    View changes on GitHub

v2.0.19

Compare Source

   🐞 Bug Fixes

• vue: Tree shaking breaking some reactivity  -  by @​harlan-zw (7abb5)

    View changes on GitHub

v2.0.18

Compare Source

   🏎 Performance

• unhead: Avoid server side effects  -  by @​harlan-zw in #​585 (3fd09)

    View changes on GitHub

v2.0.17

Compare Source

No significant changes

    View changes on GitHub

v2.0.14

Compare Source

   🐞 Bug Fixes

• unhead: Multiword attributes in template  -  by @​NikSimonov in #​568 (f635b)

    View changes on GitHub

v2.0.13

Compare Source

   🐞 Bug Fixes

• unhead:
  • Canonical plugin modifying non-url properties  -  by @​paraboul (ee8fd)
  • Avoid normalizing template param input  -  by @​harlan-zw (1d205)
  • Safer removal of leading / trailing separators  -  by @​harlan-zw (d4501)

    View changes on GitHub

v2.0.12

Compare Source

   🐞 Bug Fixes

• react: Force invalidation on entry disposal  -  by @​harlan-zw in #​559 (4ee5e)

    View changes on GitHub

v2.0.11

Compare Source

   🐞 Bug Fixes

• Allow non-standard meta tags to be intentionally duped  -  by @​harlan-zw (9a899)

    View changes on GitHub

v2.0.10

Compare Source

   🐞 Bug Fixes

• Safer meta array deduping  -  by @​harlan-zw (32486)

    View changes on GitHub

v2.0.9

Compare Source

   🏎 Performance

• unhead: Normalize canonicalHost only once in canonical plugin  -  by @​negezor in #​550 (92713)

    View changes on GitHub

v2.0.8

Compare Source

No significant changes

    View changes on GitHub

v2.0.7

Compare Source

   🐞 Bug Fixes

• schema-org: unhead hoisting issue  -  by @​harlan-zw (bb0e4)

    View changes on GitHub

v2.0.6

Compare Source

   🐞 Bug Fixes

• ssr: Less aggressive encoding of non-title tags  -  by @​harlan-zw (f4d4f)

    View changes on GitHub

unjs/fontaine (fontless)

v0.2.1

Compare Source

   🚀 Features

• fontless: Support resolving fonts from local npm packages  -  by @​danielroe (1b35a)

    View changes on GitHub

microsoft/playwright (playwright-core)

v1.58.2

Compare Source

v1.58.1

Compare Source

Highlights

#​39036 fix(msedge): fix local network permissions
#​39037 chore: update cft download location
#​38995 chore(webkit): disable frame sessions on fronzen builds

Browser Versions

• Chromium 145.0.7632.6
• Mozilla Firefox 146.0.1
• WebKit 26.0

v1.58.0

Compare Source

v1.57.0

Compare Source

v1.56.1

Compare Source

Highlights

#​37871 chore: allow local-network-access permission in chromium
#​37891 fix(agents): remove workspaceFolder ref from vscode mcp
#​37759 chore: rename agents to test agents
#​37757 chore(mcp): fallback to cwd when resolving test config

Browser Versions

• Chromium 141.0.7390.37
• Mozilla Firefox 142.0.1
• WebKit 26.0

v1.56.0

Compare Source

Playwright Agents

Introducing Playwright Agents, three custom agent definitions designed to guide LLMs through the core process of building a Playwright test:

• 🎭 planner explores the app and produces a Markdown test plan
• 🎭 generator transforms the Markdown plan into the Playwright Test files
• 🎭 healer executes the test suite and automatically repairs failing tests

Run npx playwright init-agents with your client of choice to generate the latest agent definitions:

### Generate agent files for each agentic loop
### Visual Studio Code
npx playwright init-agents --loop=vscode

### Claude Code
npx playwright init-agents --loop=claude

### opencode
npx playwright init-agents --loop=opencode

[!NOTE]
VS Code v1.105 (currently on the VS Code Insiders channel) is needed for the agentic experience in VS Code. It will become stable shortly, we are a bit ahead of times with this functionality!

Learn more about Playwright Agents

New APIs

• New methods page.consoleMessages() and page.pageErrors() for retrieving the most recent console messages from the page
• New method page.requests() for retrieving the most recent network requests from the page
• Added --test-list and --test-list-invert to allow manual specification of specific tests from a file

UI Mode and HTML Reporter

• Added option to 'html' reporter to disable the "Copy prompt" button
• Added option to 'html' reporter and UI Mode to merge files, collapsing test and describe blocks into a single unified list
• Added option to UI Mode mirroring the --update-snapshots options
• Added option to UI Mode to run only a single worker at a time

Breaking Changes

• Event browserContext.on('backgroundpage') has been deprecated and will not be emitted. Method browserContext.backgroundPages() will return an empty list

Miscellaneous

• Aria snapshots render and compare input placeholder
• Added environment variable PLAYWRIGHT_TEST to Playwright worker processes to allow discriminating on testing status

Browser Versions

• Chromium 141.0.7390.37
• Mozilla Firefox 142.0.1
• WebKit 26.0

v1.55.1

Compare Source

Highlights

#​37479 - [Bug]: Upgrade Chromium to 140.0.7339.186.
#​37147 - [Regression]: Internal error: step id not found.
#​37146 - [Regression]: HTML reporter displays a broken chip link when there are no projects.
#​37137 - Revert "fix(a11y): track inert elements as hidden".
#​37532 - chore: do not use -k option

Browser Versions

• Chromium 140.0.7339.186
• Mozilla Firefox 141.0
• WebKit 26.0

This version was also tested against the following stable channels:

• Google Chrome 139
• Microsoft Edge 139

v1.55.0

Compare Source

New APIs

• New Property testStepInfo.titlePath Returns the full title path starting from the test file, including test and step titles.

Codegen

• Automatic toBeVisible() assertions: Codegen can now generate automatic toBeVisible() assertions for common UI interactions. This feature can be enabled in the Codegen settings UI.

Breaking Changes

• ⚠️ Dropped support for Chromium extension manifest v2.

Miscellaneous

• Added support for Debian 13 "Trixie".

Browser Versions

• Chromium 140.0.7339.16
• Mozilla Firefox 141.0
• WebKit 26.0

This version was also tested against the following stable channels:

• Google Chrome 139
• Microsoft Edge 139

v1.54.2

Compare Source

Highlights

#​36714 - [Regression]: Codegen is not able to launch in Administrator Terminal on Windows (ProtocolError: Protocol error)
#​36828 - [Regression]: Playwright Codegen keeps spamming with selected option
#​36810 - [Regression]: Starting Codegen with target language doesn't work anymore

Browser Versions

• Chromium 139.0.7258.5
• Mozilla Firefox 140.0.2
• WebKit 26.0

This version was also tested against the following stable channels:

• Google Chrome 140
• Microsoft Edge 140

v1.54.1

Compare Source

Highlights

#​36650 - [Regression]: 1.54.0 breaks downloading browsers when an HTTP(S) proxy is used

Browser Versions

• Chromium 139.0.7258.5
• Mozilla Firefox 140.0.2
• WebKit 26.0

This version was also tested against the following stable channels:

• Google Chrome 140
• Microsoft Edge 140

v1.54.0

Compare Source

Highlights

• New cookie property partitionKey in browserContext.cookies() and browserContext.addCookies(). This property allows to save and restore partitioned cookies. See CHIPS MDN article for more information. Note that browsers have different support and defaults for cookie partitioning.

• New option noSnippets to disable code snippets in the html report.

  import { defineConfig } from '@​playwright/test';
  
  export default defineConfig({
    reporter: [['html', { noSnippets: true }]]
  });

• New property location in test annotations, for example in testResult.annotations and testInfo.annotations. It shows where the annotation like test.skip or test.fixme was added.

Command Line

• New option --user-data-dir in multiple commands. You can specify the same user data dir to reuse browsing state, like authentication, between sessions.

  npx playwright codegen --user-data-dir=./user-data

• Option -gv has been removed from the npx playwright test command. Use --grep-invert instead.

• npx playwright open does not open the test recorder anymore. Use npx playwright codegen instead.

Miscellaneous

• Support for Node.js 16 has been removed.
• Support for Node.js 18 has been deprecated, and will be removed in the future.

Browser Versions

• Chromium 139.0.7258.5
• Mozilla Firefox 140.0.2
• WebKit 26.0

This version was also tested against the following stable channels:

• Google Chrome 140
• Microsoft Edge 140

v1.53.2

Compare Source

Highlights

#​36317 - [Regression]: Merging pre-1.53 blob reports loses attachments
#​36357 - [Regression (Chromium)]: CDP missing trailing slash
#​36292 - [Bug (MSEdge)]: Edge fails to launch when using msRelaunchNoCompatLayer

Browser Versions

• Chromium 138.0.7204.23
• Mozilla Firefox 139.0
• WebKit 18.5

This version was also tested against the following stable channels:

• Google Chrome 137
• Microsoft Edge 137

v1.53.1

Compare Source

Highlights

#​36339 - [Regression]: Click can fail when scrolling required
#​36307 - [Regression (Chromium)]: Under some scenarios filling a textarea doesn't fill
#​36294 - [Regression (Firefox)]: setViewportSize times out
#​36350 - [Fix]: Display HTTP method for fetch trace entries

Browser Versions

• Chromium 138.0.7204.23
• Mozilla Firefox 139.0
• WebKit 18.5

This version was also tested against the following stable channels:

• Google Chrome 137
• Microsoft Edge 137

v1.53.0

Compare Source

Trace Viewer and HTML Reporter Updates

• New Steps in Trace Viewer and HTML reporter:

• New option in 'html' reporter to set the title of a specific test run:

  import { defineConfig } from '@​playwright/test';
  
  export default defineConfig({
    reporter: [['html', { title: 'Custom test run #​1028' }]]
  });

Miscellaneous

• New option kind in testInfo.snapshotPath() controls which snapshot path template is used.

• New method locator.describe() to describe a locator. Used for trace viewer and reports.

  const button = page.getByTestId('btn-sub').describe('Subscribe button');
  await button.click();

• npx playwright install --list will now list all installed browsers, versions and locations.

Browser Versions

• Chromium 138.0.7204.4
• Mozilla Firefox 139.0
• WebKit 18.5

This version was also tested against the following stable channels:

• Google Chrome 137
• Microsoft Edge 137

v1.52.0

Compare Source

Highlights

• New method expect(locator).toContainClass() to ergonomically assert individual class names on the element.

  await expect(page.getByRole('listitem', { name: 'Ship v1.52' })).toContainClass('done');

• Aria Snapshots got two new properties: /children for strict matching and /url for links.

  await expect(locator).toMatchAriaSnapshot(`
    - list
      - /children: equal
      - listitem: Feature A
      - listitem:
        - link "Feature B":
          - /url: "https://playwright.dev"
  `);

Test Runner

• New property testProject.workers allows to specify the number of concurrent worker processes to use for a test project. The global limit of property testConfig.workers still applies.
• New testConfig.failOnFlakyTests option to fail the test run if any flaky tests are detected, similarly to --fail-on-flaky-tests. This is useful for CI/CD environments where you want to ensure that all tests are stable before deploying.
• New property testResult.annotations contains annotations for each test retry.

Miscellaneous

• New option maxRedirects in apiRequest.newContext() to control the maximum number of redirects.
• HTML reporter now supports NOT filtering via !@​my-tag or !my-file.spec.ts or !p:my-project.

Breaking Changes

• Changes to glob URL patterns in methods like page.route():
  • ? wildcard is not supported any more, it will always match question mark ? character.
  • Ranges/sets [] are not supported anymore. We recommend using regular expressions instead.
• Method route.continue() does not allow to override the Cookie header anymore. If a Cookie header is provided, it will be ignored, and the cookie will be loaded from the browser's cookie store. To set custom cookies, use browserContext.addCookies().
• macOS 13 is now deprecated and will no longer receive WebKit updates. Please upgrade to a more recent macOS version to continue benefiting from the latest WebKit improvements.

Browser Versions

• Chromium 136.0.7103.25
• Mozilla Firefox 137.0
• WebKit 18.4

This version was also tested against the following stable channels:

• Google Chrome 135
• Microsoft Edge 135

v1.51.1

Compare Source

Highlights

#​35093 - [Regression]: TimeoutOverflowWarning: 2149630.634 does not fit into a 32-bit signed integer
#​35138 - [Regression]: TypeError: Cannot read properties of undefined (reading 'expectInfo')

Browser Versions

• Chromium 134.0.6998.35
• Mozilla Firefox 135.0
• WebKit 18.4

This version was also tested against the following stable channels:

• Google Chrome 133
• Microsoft Edge 133

v1.51.0

Compare Source

StorageState for indexedDB

• New option indexedDB for browserContext.storageState() allows to save and restore IndexedDB contents. Useful when your application uses IndexedDB API to store authentication tokens, like Firebase Authentication.

  Here is an example following the authentication guide:

  // tests/auth.setup.ts
  import { test as setup, expect } from '@​playwright/test';
  import path from 'path';
  
  const authFile = path.join(__dirname, '../playwright/.auth/user.json');
  
  setup('authenticate', async ({ page }) => {
    await page.goto('/');
    // ... perform authentication steps ...
  
    // make sure to save indexedDB
    await page.context().storageState({ path: authFile, indexedDB: true });
  });

Copy prompt

New "Copy prompt" button on errors in the HTML report, trace viewer and UI mode. Click to copy a pre-filled LLM prompt that contains the error message and useful context for fixing the error.

Filter visible elements

New option visible for locator.filter() allows matching only visible elements.

// example.spec.ts
test('some test', async ({ page }) => {
  // Ignore invisible todo items.
  const todoItems = page.getByTestId('todo-item').filter({ visible: true });
  // Check there are exactly 3 visible ones.
  await expect(todoItems).toHaveCount(3);
});

Git information in HTML report

Set option testConfig.captureGitInfo to capture git information into testConfig.metadata.

// playwright.config.ts
import { defineConfig } from '@​playwright/test';

export default defineConfig({
  captureGitInfo: { commit: true, diff: true }
});

HTML report will show this information when available:

Test Step improvements

A new TestStepInfo object is now available in test steps. You can add step attachments or skip the step under some conditions.

test('some test', async ({ page, isMobile }) => {
  // Note the new "step" argument:
  await test.step('here is my step', async step => {
    step.skip(isMobile, 'not relevant on mobile layouts');

    // ...
    await step.attach('my attachment', { body: 'some text' });
    // ...
  });
});

Miscellaneous

• New option contrast for methods page.emulateMedia() and browser.newContext() allows to emulate the prefers-contrast media feature.
• New option failOnStatusCode makes all fetch requests made through the APIRequestContext throw on response codes other than 2xx and 3xx.
• Assertion expect(page).toHaveURL() now supports a predicate.

Browser Versions

• Chromium 134.0.6998.35
• Mozilla Firefox 135.0
• WebKit 18.4

This version was also tested against the following stable channels:

• Google Chrome 133
• Microsoft Edge 133

v1.50.1

Compare Source

Highlights

#​34483 - [Feature]: single aria snapshot for different engines/browsers
#​34497 - [Bug]: Firefox not handling keepalive: true fetch requests
#​34504 - [Bug]: update snapshots not creating good diffs
#​34507 - [Bug]: snapshotPathTemplate doesnt work when multiple projects
#​34462 - [Bug]: updateSnapshots "changed" throws an error

Browser Versions

• Chromium 133.0.6943.16
• Mozilla Firefox 134.0
• WebKit 18.2

This version was also tested against the following stable channels:

• Google Chrome 132
• Microsoft Edge 132

vercel/satori (satori)

v0.25.0

Compare Source

Features

• CSS variables (#​736) (d246913)

v0.24.1

Compare Source

Bug Fixes

• Consistent text positioning when embedFont is false (#​723) (dc07b70)

v0.24.0

Compare Source

Features

• Improved object-position support (#​734) (9377f70)

v0.23.0

Compare Source

Features

• Add text-indent support (#​733) (2b7e825)

v0.22.0

Compare Source

Features

• Support for object-fit fill and scale-down (#​732) (453fd91)

v0.21.0

Compare Source

Features

• 10% perf improvements in the core lib (#​729) (4e761c6)

v0.20.0

Compare Source

Features

• Add support for background size cover, contain and auto (#​728) (c78869b)

v0.19.3

Compare Source

Bug Fixes

• Support xlinkHref attribute for SVG image elements (#​724) (f4729fe)

lovell/sharp (sharp)

v0.34.5

Compare Source

• Upgrade to libvips v8.17.3 for upstream bug fixes.

• Add experimental support for prebuilt Linux RISC-V 64-bit binaries.

• Support building from source with npm v12+, deprecate --build-from-source flag.
  #​4458

• Add support for BigTIFF output.
  #​4459
  @​throwbi

• Improve error messaging when only warnings issued.
  #​4465

• Simplify ICC processing when retaining input profiles.
  #​4468

v0.34.4

Compare Source

• Upgrade to libvips v8.1

---

Configuration

📅 Schedule: Branch creation - "on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: pnpm-lock.yaml

Scope: all 3 workspace projects
Progress: resolved 1, reused 0, downloaded 0, added 0
Progress: resolved 29, reused 0, downloaded 0, added 0
Progress: resolved 58, reused 0, downloaded 0, added 0
Progress: resolved 84, reused 0, downloaded 0, added 0
Progress: resolved 86, reused 0, downloaded 0, added 0
Progress: resolved 88, reused 0, downloaded 0, added 0
Progress: resolved 89, reused 0, downloaded 0, added 0
Progress: resolved 143, reused 0, downloaded 0, added 0
Progress: resolved 195, reused 0, downloaded 0, added 0
Progress: resolved 260, reused 0, downloaded 0, added 0
Progress: resolved 324, reused 0, downloaded 0, added 0
Progress: resolved 336, reused 0, downloaded 0, added 0
Progress: resolved 362, reused 0, downloaded 0, added 0
Progress: resolved 406, reused 0, downloaded 0, added 0
Progress: resolved 449, reused 0, downloaded 0, added 0
Progress: resolved 501, reused 0, downloaded 0, added 0
Progress: resolved 562, reused 0, downloaded 0, added 0
Progress: resolved 572, reused 0, downloaded 0, added 0
 WARN  Request took 12086ms: https://registry.npmjs.org/@typescript-eslint%2Feslint-plugin
Progress: resolved 578, reused 0, downloaded 0, added 0
Progress: resolved 608, reused 0, downloaded 0, added 0
Progress: resolved 628, reused 0, downloaded 0, added 0
Progress: resolved 722, reused 0, downloaded 0, added 0
Progress: resolved 827, reused 0, downloaded 0, added 0
Progress: resolved 898, reused 0, downloaded 0, added 0
Progress: resolved 993, reused 0, downloaded 0, added 0
Progress: resolved 1018, reused 0, downloaded 0, added 0
Progress: resolved 1043, reused 0, downloaded 0, added 0
 WARN  Request took 30401ms: https://registry.npmjs.org/vite
Progress: resolved 1059, reused 0, downloaded 0, added 0
 WARN  Request took 10862ms: https://registry.npmjs.org/framer-motion
Progress: resolved 1094, reused 0, downloaded 0, added 0
Progress: resolved 1104, reused 0, downloaded 0, added 0
 WARN  Request took 12727ms: https://registry.npmjs.org/@typescript-eslint%2Fscope-manager
Progress: resolved 1128, reused 0, downloaded 0, added 0
Progress: resolved 1129, reused 0, downloaded 0, added 0
 WARN  Request took 15568ms: https://registry.npmjs.org/@typescript-eslint%2Ftypescript-estree
Progress: resolved 1133, reused 0, downloaded 0, added 0
 WARN  Request took 13258ms: https://registry.npmjs.org/@typescript-eslint%2Ftypes
Progress: resolved 1149, reused 0, downloaded 0, added 0
 WARN  Request took 10322ms: https://registry.npmjs.org/@typescript-eslint%2Ftype-utils
Progress: resolved 1206, reused 0, downloaded 0, added 0
Progress: resolved 1320, reused 0, downloaded 0, added 0
 WARN  Request took 13697ms: https://registry.npmjs.org/@typescript-eslint%2Fvisitor-keys
Progress: resolved 1361, reused 0, downloaded 0, added 0
Progress: resolved 1470, reused 0, downloaded 0, added 0
Progress: resolved 1542, reused 0, downloaded 0, added 0
Progress: resolved 1673, reused 0, downloaded 0, added 0
Progress: resolved 1791, reused 0, downloaded 0, added 0
 ERR_PNPM_TRUST_DOWNGRADE  High-risk trust downgrade for "semver@5.7.2" (possible package takeover)

This error happened while installing the dependencies of @nuxtjs/eslint-config-typescript@12.1.0
 at @nuxtjs/eslint-config@12.0.0
 at eslint-plugin-unicorn@44.0.2
 at read-pkg-up@7.0.1
 at read-pkg@5.2.0
 at normalize-package-data@2.5.0

Trust checks are based solely on publish date, not semver. A package cannot be installed if any earlier-published version had stronger trust evidence. Earlier versions had provenance attestation, but this version has no trust evidence. A trust downgrade may indicate a supply chain incident.