fix(deps): update all patch dependencies (patch)

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
@applitools/eyes-cypress	^3.44.9 -> ^3.50.3					devDependencies	patch
@braintree/sanitize-url	^7.0.4 -> ^7.1.1					dependencies	patch
@changesets/cli (source)	^2.27.12 -> ^2.28.1					devDependencies	patch
@cypress/code-coverage	^3.12.49 -> ^3.13.12					devDependencies	patch
@iconify-json/carbon	^1.1.37 -> ^1.2.8					devDependencies	patch
@iconify/utils (source)	^2.1.33 -> ^2.3.0					dependencies	patch
@types/lodash (source)	^4.17.15 -> ^4.17.16					devDependencies	patch
@types/node (source)	^22.13.5 -> ^22.13.10					devDependencies	patch
@vitejs/plugin-vue (source)	^5.0.5 -> ^5.2.1					devDependencies	patch
@vitest/coverage-v8 (source)	^3.0.6 -> ^3.0.8					devDependencies	patch
@vitest/spy (source)	^3.0.6 -> ^3.0.8					devDependencies	patch
@vitest/ui (source)	^3.0.6 -> ^3.0.8					devDependencies	patch
@zenuml/core	^3.23.28 -> ^3.27.12					dependencies	patch
actions/cache	v4.2.1 -> v4.2.2					action	patch
changesets/action	v1.4.9 -> v1.4.10					action	patch
cspell (source)	^8.6.1 -> ^8.17.5					devDependencies	patch
cypress-io/github-action	v6.7.12 -> v6.7.16					action	patch
cytoscape (source)	^3.29.3 -> ^3.31.1					dependencies	patch
esbuild	^0.25.0 -> ^0.25.1					devDependencies	patch
express (source)	^4.19.2 -> ^4.21.2					devDependencies	patch
github/codeql-action	v3.28.10 -> v3.28.11					action	patch
globby	^14.0.2 -> ^14.1.0					devDependencies	patch
peter-evans/create-pull-request	v7.0.6 -> v7.0.8					action	patch
prettier (source)	^3.5.2 -> ^3.5.3					devDependencies	patch
start-server-and-test	^2.0.10 -> ^2.0.11					devDependencies	patch
tsx (source)	^4.7.3 -> ^4.19.3					devDependencies	patch
typedoc (source)	^0.27.8 -> ^0.27.9					devDependencies	patch
unplugin-vue-components	^28.4.0 -> ^28.4.1					devDependencies	patch
vitepress (source)	^1.0.2 -> ^1.6.3					devDependencies	patch
vitest (source)	^3.0.6 -> ^3.0.8					devDependencies	patch
vue (source)	^3.4.38 -> ^3.5.13					dependencies	patch

---

Release Notes

braintree/sanitize-url (@​braintree/sanitize-url)

v7.1.1

Compare Source

• DevDependency Changes

  • happy-dom to 15.11.6

• Update (sub-)dependencies

  • cross-spawn to 7.0.6
  • micromatch to 4.0.8
  • vite to 4.5.5

cypress-io/code-coverage (@​cypress/code-coverage)

v3.13.12

Compare Source

Bug Fixes

• deps: update dependency @​types/node to v22.13.5 (#​935) (2b78406)

v3.13.11

Compare Source

Bug Fixes

• deps: update dependency debug to v4.4.0 (#​917) (a6a8cd5)

v3.13.10

Compare Source

Bug Fixes

• deps: update dependency @​types/node to v22.10.5 (#​915) (ca77670)
• deps: update react monorepo (#​916) (b43adc7)

v3.13.9

Compare Source

Bug Fixes

• deps: update react monorepo (#​912) (b39f10b)

v3.13.8

Compare Source

Bug Fixes

• deps: update dependency @​types/node to v22.10.1 (#​903) (063c8de)

v3.13.7

Compare Source

Bug Fixes

• deps: update dependency @​types/node to v22 (#​902) (2631db8)

v3.13.6

Compare Source

Bug Fixes

• deps: update dependency @​types/jest to v29.5.14 (#​896) (cac8a4b)

v3.13.5

Compare Source

Bug Fixes

• fix: Batch coverage data sent to combineCoverage to prevent timeouts https://github.com/cypress-io/code-coverage/pull/877

• deps: update react monorepo (#​891) (90a67bb)

vitest-dev/vitest (@​vitest/coverage-v8)

v3.0.8

Compare Source

   🐞 Bug Fixes

• Fix fetch cache multiple writes  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/7546 (1a8b4)
• Use browser.isolate instead of config.isolate  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7560 (4b5ed)
• Remove vestigial spy stub, import directly from @vitest/spy  -  by @​mrginglymus in https://github.com/vitest-dev/vitest/issues/7575 (7f7ff)
• Correctly split the argv string  -  by @​btea in https://github.com/vitest-dev/vitest/issues/7533 (4325a)
• browser:
  • Remove @​testing-library/dom from dependencies  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7555 (5387a)
  • Improve source map handling for bundled files  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7534 (e2c57)
  • Print related test file and potential test in unhandled errors  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7564 (fee90)
• runner:
  • Fix beforeEach/All cleanup callback timeout  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/7500 (0c292)
  • Fix and simplify Task.suite initialization  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/7414 (ca9ff)
• snapshot:
  • Allow inline snapshot calls on same location with same snapshot  -  by @​jycouet and @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/7464 (d5cb8)
• vite-node:
  • Fix buildStart on Vite 6  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/7480 (c0f47)

    View changes on GitHub

v3.0.7

Compare Source

   🐞 Bug Fixes

• browser: Support webdriverio 9  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7553 (b1949)
• deps: Update all non-major dependencies  -  in https://github.com/vitest-dev/vitest/issues/7543 (365ff)
• expect: Correct generic MatchersObject this type in expect.extend  -  by @​Workingstiff-s in https://github.com/vitest-dev/vitest/issues/7526 (d5765)
• mocker: Include more modules to prefix-only module list  -  by @​btea in https://github.com/vitest-dev/vitest/issues/7524 (a12ec)
• spy: Clear/reset/restore mocks in stack order  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/7499 (f7100)

   🏎 Performance

• browser: Do wdio context switching only once per file  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/7549 (aaa58)

    View changes on GitHub

actions/cache (actions/cache)

v4.2.2

Compare Source

What's Changed

[!IMPORTANT]
As a reminder, there were important backend changes to release v4.2.0, see those release notes and the announcement for more details.

• Bump @​actions/cache to v4.0.2 by @​robherley in https://github.com/actions/cache/pull/1560

Full Changelog: actions/cache@v4.2.1...v4.2.2

changesets/action (changesets/action)

v1.4.10

Compare Source

Patch Changes

• #​448 8b16070 Thanks @​bluwy! - Use full git email (41898282+github-actions[bot]@​users.noreply.github.com) for github-actions bot when making commits

streetsidesoftware/cspell (cspell)

v8.17.5

Compare Source

• fix: Workflow Bot -- Update Dictionaries (main) (#​6937) (2bfee05), closes #​6937

cypress-io/github-action (cypress-io/github-action)

v6.7.16

Compare Source

Bug Fixes

• pass baseUrl into Octokit constructor (#​1395) (108b868)

v6.7.15

Compare Source

Bug Fixes

• pass GITHUB_API_URL for GitHub Enterprise (#​1388) (01ab638)

v6.7.14

Compare Source

Bug Fixes

• deps: update @​actions/cache to 4.0.2 (#​1380) (9c318d4)

v6.7.13

Compare Source

Bug Fixes

• deps: refresh lockfile dependencies (#​1369) (1052aa9)

cytoscape/cytoscape.js (cytoscape)

v3.31.1

Compare Source

Release version v3.31.1

evanw/esbuild (esbuild)

v0.25.1

Compare Source

• Fix incorrect paths in inline source maps (#​4070, #​4075, #​4105)

  This fixes a regression from version 0.25.0 where esbuild didn't correctly resolve relative paths contained within source maps in inline sourceMappingURL data URLs. The paths were incorrectly being passed through as-is instead of being resolved relative to the source file containing the sourceMappingURL comment, which was due to the data URL not being a file URL. This regression has been fixed, and this case now has test coverage.

• Fix invalid generated source maps (#​4080, #​4082, #​4104, #​4107)

  This release fixes a regression from version 0.24.1 that could cause esbuild to generate invalid source maps. Specifically under certain conditions, esbuild could generate a mapping with an out-of-bounds source index. It was introduced by code that attempted to improve esbuild's handling of "null" entries in source maps (i.e. mappings with a generated position but no original position). This regression has been fixed.

  This fix was contributed by @​jridgewell.

• Fix a regression with non-file source map paths (#​4078)

  The format of paths in source maps that aren't in the file namespace was unintentionally changed in version 0.25.0. Path namespaces is an esbuild-specific concept that is optionally available for plugins to use to distinguish paths from file paths and from paths meant for other plugins. Previously the namespace was prepended to the path joined with a : character, but version 0.25.0 unintentionally failed to prepend the namespace. The previous behavior has been restored.

• Fix a crash with switch optimization (#​4088)

  The new code in the previous release to optimize dead code in switch statements accidentally introduced a crash in the edge case where one or more switch case values include a function expression. This is because esbuild now visits the case values first to determine whether any cases are dead code, and then visits the case bodies once the dead code status is known. That triggered some internal asserts that guard against traversing the AST in an unexpected order. This crash has been fixed by changing esbuild to expect the new traversal ordering. Here's an example of affected code:

  switch (x) {
    case '':
      return y.map(z => z.value)
    case y.map(z => z.key).join(','):
      return []
  }

• Update Go from 1.23.5 to 1.23.7 (#​4076, #​4077)

  This should have no effect on existing code as this version change does not change Go's operating system support. It may remove certain reports from vulnerability scanners that detect which version of the Go compiler esbuild uses.

  This PR was contributed by @​MikeWillCook.

expressjs/express (express)

v4.21.2

Compare Source

What's Changed

• Add funding field (v4) by @​bjohansebas in https://github.com/expressjs/express/pull/6065
• deps: path-to-regexp@0.1.11 by @​blakeembrey in https://github.com/expressjs/express/pull/5956
• deps: bump path-to-regexp@0.1.12 by @​jonchurch in https://github.com/expressjs/express/pull/6209
• Release: 4.21.2 by @​UlisesGascon in https://github.com/expressjs/express/pull/6094

Full Changelog: expressjs/express@4.21.1...4.21.2

v4.21.1

Compare Source

What's Changed

• Backport a fix for CVE-2024-47764 to the 4.x branch by @​joshbuker in https://github.com/expressjs/express/pull/6029
• Release: 4.21.1 by @​UlisesGascon in https://github.com/expressjs/express/pull/6031

Full Changelog: expressjs/express@4.21.0...4.21.1

github/codeql-action (github/codeql-action)

v3.28.11

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.11 - 07 Mar 2025

• Update default CodeQL bundle version to 2.20.6. #​2793

See the full CHANGELOG.md for more information.

peter-evans/create-pull-request (peter-evans/create-pull-request)

v7.0.8: Create Pull Request v7.0.8

Compare Source

What's Changed

• build(deps-dev): bump ts-jest from 29.2.5 to 29.2.6 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3751
• build(deps-dev): bump eslint-import-resolver-typescript from 3.8.1 to 3.8.3 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3752
• build(deps): bump @​octokit/plugin-paginate-rest from 11.4.2 to 11.4.3 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3753
• build(deps-dev): bump prettier from 3.5.1 to 3.5.2 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3754
• fix: suppress output for some git operations by @​peter-evans in https://github.com/peter-evans/create-pull-request/pull/3776

Full Changelog: peter-evans/create-pull-request@v7.0.7...v7.0.8

v7.0.7: Create Pull Request v7.0.7

Compare Source

⚙️ Fixes an issue with commit signing where modifications to the same file in multiple commits squash into the first commit.

What's Changed

• build(deps): bump @​octokit/core from 6.1.2 to 6.1.3 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3593
• build(deps-dev): bump @​types/node from 18.19.68 to 18.19.70 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3594
• Update distribution by @​actions-bot in https://github.com/peter-evans/create-pull-request/pull/3603
• build(deps-dev): bump typescript from 5.7.2 to 5.7.3 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3610
• build(deps): bump octokit dependencies by @​peter-evans in https://github.com/peter-evans/create-pull-request/pull/3618
• docs: add workflow tip for showing message via workflow command by @​ybiquitous in https://github.com/peter-evans/create-pull-request/pull/3626
• build(deps-dev): bump eslint-plugin-prettier from 5.2.1 to 5.2.3 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3628
• build(deps): bump node-fetch-native from 1.6.4 to 1.6.6 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3627
• build(deps-dev): bump undici from 6.21.0 to 6.21.1 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3630
• build(deps-dev): bump @​types/node from 18.19.70 to 18.19.71 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3629
• Update distribution by @​actions-bot in https://github.com/peter-evans/create-pull-request/pull/3647
• build(deps-dev): bump @​types/node from 18.19.71 to 18.19.74 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3657
• build(deps-dev): bump @​types/node from 18.19.74 to 18.19.75 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3663
• build(deps): bump @​octokit/plugin-rest-endpoint-methods from 13.3.0 to 13.3.1 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3670
• build(deps-dev): bump prettier from 3.4.2 to 3.5.0 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3671
• Update distribution by @​actions-bot in https://github.com/peter-evans/create-pull-request/pull/3680
• build(deps): bump @​octokit/request-error from 6.1.6 to 6.1.7 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3685
• build(deps): bump @​octokit/plugin-paginate-rest from 11.4.0 to 11.4.1 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3688
• build(deps): bump @​octokit/endpoint from 10.1.2 to 10.1.3 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3700
• Update distribution by @​actions-bot in https://github.com/peter-evans/create-pull-request/pull/3691
• build(deps-dev): bump prettier from 3.5.0 to 3.5.1 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3709
• build(deps-dev): bump eslint-import-resolver-typescript from 3.7.0 to 3.8.1 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3710
• build(deps): bump @​octokit/plugin-paginate-rest from 11.4.1 to 11.4.2 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3713
• build(deps-dev): bump @​types/node from 18.19.75 to 18.19.76 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3712
• build(deps): bump @​octokit/core from 6.1.3 to 6.1.4 by @​dependabot in https://github.com/peter-evans/create-pull-request/pull/3711
• Update distribution by @​actions-bot in https://github.com/peter-evans/create-pull-request/pull/3736
• Use showFileAtRefBase64 to read per-commit file contents by @​grahamc in https://github.com/peter-evans/create-pull-request/pull/3744

New Contributors

• @​ybiquitous made their first contribution in https://github.com/peter-evans/create-pull-request/pull/3626
• @​grahamc made their first contribution in https://github.com/peter-evans/create-pull-request/pull/3744

Full Changelog: peter-evans/create-pull-request@v7.0.6...v7.0.7

prettier/prettier (prettier)

v3.5.3

Compare Source

bahmutov/start-server-and-test (start-server-and-test)

v2.0.11

Compare Source

TypeStrong/TypeDoc (typedoc)

[v0.27.9](https://github.com/TypeStrong/TypeDoc/blob/HEAD/CHANGELOG.

---

Configuration

📅 Schedule: Branch creation - "* 0-3 * * 1" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[changeset-bot]

⚠️ No Changeset found

Latest commit: 74d6f47

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[netlify]

✅ Deploy Preview for mermaid-js ready!

Name	Link
🔨 Latest commit	74d6f47
🔍 Latest deploy log	https://app.netlify.com/sites/mermaid-js/deploys/67d2b61e1b095e0008417149
😎 Deploy Preview	https://deploy-preview-6348--mermaid-js.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site configuration.

[pkg-pr-new]

Open in Stackblitz

npm i https://pkg.pr.new/mermaid-js/mermaid@6348

npm i https://pkg.pr.new/mermaid-js/mermaid/@mermaid-js/layout-elk@6348

npm i https://pkg.pr.new/mermaid-js/mermaid/@mermaid-js/mermaid-zenuml@6348

npm i https://pkg.pr.new/mermaid-js/mermaid/@mermaid-js/parser@6348

commit: 74d6f47

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 3.86%. Comparing base (d602240) to head (74d6f47).

Additional details and impacted files

@@           Coverage Diff           @@
##           develop   #6348   +/-   ##
=======================================
  Coverage     3.86%   3.86%           
=======================================
  Files          402     401    -1     
  Lines        42682   42671   -11     
  Branches       644     644           
=======================================
  Hits          1648    1648           
+ Misses       41034   41023   -11     

Flag	Coverage Δ
unit	3.86% <ø> (+<0.01%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

see 1 file with indirect coverage changes

🚀 New features to boost your workflow:

• ❄ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.