build(deps): bump the production-dependencies group with 16 updates

[dependabot]

Bumps the production-dependencies group with 16 updates:

Package	From	To
fast-check	4.6.0	4.8.0
fflate	0.3.11	0.8.3
@fastify/http-proxy	11.4.4	11.5.0
@rocicorp/zero	1.1.1	1.6.1
effect	3.21.0	3.21.3
pg	8.20.0	8.21.0
xstate	5.30.0	5.32.0
zod	4.3.6	4.4.3
@base-ui/react	1.3.0	1.5.0
@hugeicons/core-free-icons	4.1.1	4.2.0
lucide-react	1.7.0	1.17.0
marked	17.0.6	18.0.5
react	19.2.4	19.2.7
react-dom	19.2.4	19.2.7
fast-xml-parser	5.7.3	5.8.0
typegpu	0.11.2	0.11.8

Updates fast-check from 4.6.0 to 4.8.0

Release notes

Sourced from fast-check's releases.

New arbitrary to chain in a loop fashion

[Code][Diff]

Features

• (PR#6678) Add chainUntil arbitrary for iterative chaining

Fixes

• (PR#6965) Bug: Restore ability not to use skipLibCheck
• (PR#6877) CI: Lowercase discussion_category_name to "announcements"
• (PR#6878) CI: Scope permissions of clean-caches
• (PR#6880) CI: Add PR-authoring guidance for Claude
• (PR#6887) CI: Delete CLAUDE.md
• (PR#6888) CI: Use tilde ranges for security dependency overrides
• (PR#6891) CI: Disable Renovate updates on pnpm overrides
• (PR#6899) CI: Scope Claude hooks to $CLAUDE_PROJECT_DIR
• (PR#6905) CI: Enable pnpm global virtual store
• (PR#6933) CI: Pin pnpm in npm install commands
• (PR#6932) CI: Grant discussions: write to release jobs
• (PR#6935) CI: Skip PR template check for dubzzz
• (PR#6937) CI: Mirror the repo to tangled
• (PR#6938) CI: Add missing runs-on for tangled
• (PR#6889) Doc: Add release notes for fast-check 4.7.0
• (PR#6900) Doc: Fix broken API reference links
• (PR#6844) Doc: Extract manual setup guide into dedicated page
• (PR#6845) Doc: Add index pages for documentation sections
• (PR#6918) Doc: Fix Documentation link to point to first doc page
• (PR#6939) Doc: Link to Tangled mirror of fast-check
• (PR#6934) Test: Tolerate \p{...} value drift in docs tests
• (PR#6951) Test: Fix poisoning tests for latest Node

---

Unicode property support in stringMatching

[Code][Diff]

Features

• (PR#6866) Reversible json arbitrary
• (PR#6868) Parse \p{} and \P{} in stringMatching
• (PR#6870) Support for \p{UnicodeProperty} in stringMatching
• (PR#6871) Support negated unicode properties in stringMatching

Fixes

• (PR#6710) CI: Pass explicit string to make_latest
• (PR#6714) CI: Remove unused vite dependency from multiple packages
• (PR#6780) CI: Silent zizmor issues (as they used to be)

... (truncated)

Changelog

Sourced from fast-check's changelog.

4.8.0

New arbitrary to chain in a loop fashion [Code][Diff]

Features

• (PR#6678) Add chainUntil arbitrary for iterative chaining

Fixes

• (PR#6965) Bug: Restore ability not to use skipLibCheck
• (PR#6877) CI: Lowercase discussion_category_name to "announcements"
• (PR#6878) CI: Scope permissions of clean-caches
• (PR#6880) CI: Add PR-authoring guidance for Claude
• (PR#6887) CI: Delete CLAUDE.md
• (PR#6888) CI: Use tilde ranges for security dependency overrides
• (PR#6891) CI: Disable Renovate updates on pnpm overrides
• (PR#6899) CI: Scope Claude hooks to $CLAUDE_PROJECT_DIR
• (PR#6905) CI: Enable pnpm global virtual store
• (PR#6933) CI: Pin pnpm in npm install commands
• (PR#6932) CI: Grant discussions: write to release jobs
• (PR#6935) CI: Skip PR template check for dubzzz
• (PR#6937) CI: Mirror the repo to tangled
• (PR#6938) CI: Add missing runs-on for tangled
• (PR#6889) Doc: Add release notes for fast-check 4.7.0
• (PR#6900) Doc: Fix broken API reference links
• (PR#6844) Doc: Extract manual setup guide into dedicated page
• (PR#6845) Doc: Add index pages for documentation sections
• (PR#6918) Doc: Fix Documentation link to point to first doc page
• (PR#6939) Doc: Link to Tangled mirror of fast-check
• (PR#6934) Test: Tolerate \p{...} value drift in docs tests
• (PR#6951) Test: Fix poisoning tests for latest Node

---

4.7.0

Unicode property support in stringMatching [Code][Diff]

Features

• (PR#6866) Reversible json arbitrary
• (PR#6868) Parse \p{} and \P{} in stringMatching
• (PR#6870) Support for \p{UnicodeProperty} in stringMatching
• (PR#6871) Support negated unicode properties in stringMatching

Fixes

... (truncated)

Commits

• c0da76f 🔖 Update CHANGELOG.md for fast-check@4.8.0, @​fast-check/ava@​3.0.1 (#6967)
• df6f4c1 🐛 Restore ability not to use skipLibCheck (#6965)
• af612c5 ⬆️ Update dependency @​types/node to ^24.12.3 (#6952)
• 917dda4 ✅ Fix poisoning tests for latest Node (#6951)
• acb5c6f ✅ Tolerate \p{...} value drift in docs tests (#6934)
• 26cab19 ✨ Add chainUntil arbitrary for iterative chaining (#6678)
• 16f65f6 ⬆️ Update dependency oxlint to ^1.60.0 (#6856)
• 0a8ce9a ⬆️ Update dependency @​microsoft/api-extractor to ^7.58.7 (#6898)
• debb9b6 📝 Fix broken API reference links (#6900)
• 642e651 ⬆️ Update dependency typescript to ~6.0.3 (#6886)
• Additional commits viewable in compare view

Updates fflate from 0.3.11 to 0.8.3

Release notes

Sourced from fflate's releases.

v0.8.3

• Fix buffer over-read for Zip64 extra fields
• Support sync flushes (Z_SYNC_FLUSH in zlib)
  • Allows for immediate decompression of all pushed bytes
  • Enables DEFLATE stream concatenation
• Fix zip/zipSync when using cross-realm Uint8Array
• Improve Zip64 support for streamed or undersized archives
• Update performance estimates in README
• Fix typings for TypeScript v5.7+
• Reduce memory consumption after compression stream completion

v0.8.2

• Fixed broken UMD build
• Fixed edge-case causing skipped data during streaming compression
• Fixed bug in GZIP streaming on member boundary
• Improved streaming performance on inconsistent chunk sizes
• Improved unzip performance on undercompressed archives
• Added flushing support into streaming API
• Added backpressure support into async streaming API
  • Use new ondrain handler and queuedSize

v0.8.0

No release notes provided.

v0.7.4

No release notes provided.

v0.7.3

No release notes provided.

v0.7.2

No release notes provided.

v0.7.1

No release notes provided.

v0.7.0

No release notes provided.

v0.6.9

No release notes provided.

v0.6.7

No release notes provided.

v0.6.4

No release notes provided.

v0.6.3

No release notes provided.

... (truncated)

Changelog

Sourced from fflate's changelog.

0.8.3

• Fix buffer over-read for Zip64 extra fields
• Support sync flushes (Z_SYNC_FLUSH in zlib)
  • Allows for immediate decompression of all pushed bytes
  • Enables DEFLATE stream concatenation
• Fix zip/zipSync when using cross-realm Uint8Array
• Improve Zip64 support for streamed or undersized archives
• Update performance estimates in README
• Fix typings for TypeScript v5.7+
• Reduce memory consumption after compression stream completion

0.8.2

• Fixed broken UMD build
• Fixed edge-case causing skipped data during streaming compression
• Fixed bug in GZIP streaming on member boundary
• Improved streaming performance on inconsistent chunk sizes
• Improved unzip performance on undercompressed archives
• Added flushing support into streaming API
• Added backpressure support into async streaming API
  • Use new ondrain handler and queuedSize

0.8.1

• Fixed reallocating on pre-supplied buffer in inflateSync and unzlibSync
• Minor documentation fixes

0.8.0

• BREAKING: synchronous decompression functions now take an options object rather than an output buffer as a second parameter
  • inflateSync(compressed, outBuf) is now inflateSync(compressed, { out: outBuf })
• Support dictionaries in compression and decompression
• Support multi-member files in GZIP streaming decompression
• Dramatically improved streaming performance
• Fixed missing error on certain malformed GZIP files

0.7.3

• Fix folder creation for certain operating system
  • Create 0-length "files" for each directory specified with "object" syntax"
  • Support empty folders
  • Add options for folders
• Fix minification in SWC
  • Remove instanceof, no-whitespace assumptions in async functions

0.7.2

• Fixed TypeScript typing for errors when using strictNullChecks
• Fixed failure to compress files above 64kB with { level: 0 }
• Fixed AMD module definition in UMD build

0.7.1

• Removed requirement for setTimeout
• Added support for unzip file filters (thanks to @​manucorporat: #67)
• Fixed streaming gunzip and unzlib bug causing corruption

0.7.0

• Improved errors
  • Now errors are error objects instead of strings
  • Check the error code to apply custom logic based on error type
• Made async operations always call callbacks asynchronously
• Fixed bug that caused errors to not appear in asynchronous operations in browsers

... (truncated)

Commits

• See full diff in compare view

Updates @fastify/http-proxy from 11.4.4 to 11.5.0

Release notes

Sourced from @​fastify/http-proxy's releases.

v11.5.0

What's Changed

• refactor(types): migrate from tsd to tstyche by @​Tony133 in fastify/fastify-http-proxy#463
• chore(.gitattributes): retain binary file eol style by @​Fdawgs in fastify/fastify-http-proxy#462
• feat: Added handler option. by @​ShogunPanda in fastify/fastify-http-proxy#465

Full Changelog: fastify/fastify-http-proxy@v11.4.4...v11.5.0

Commits

• 94c731f Bumped v11.5.0
• 5c2e54c feat: Added handler option. (#465)
• 833d446 chore: ignore AI files
• 360d23b chore(.gitattributes): retain binary file eol style (#462)
• 528b230 refactor(types): migrate from tsd to tstyche
• See full diff in compare view

Updates @rocicorp/zero from 1.1.1 to 1.6.1

Commits

• 24937f9 Bump Zero to v1.6.1
• 98a41b3 bump zero-sqlite3 to 1.1.2 (#6101)
• 9d3fb43 chore(zero): Use worktrees to clone repo for release instead of rsync.
• 01263c8 chore: Restore oxfmt to 0.45.0
• 8e879fa Revert "chore: Downgrade oxfmt" (#5937)
• 00a0da6 chore: Downgrade oxfmt (#5936)
• 4ea131c chore(lint): unify oxlint scripts and bump lint/test toolchain (#5911)
• 3993692 chore(zero-cache): update zero-sqlite3 (#5913)
• f79b714 refactor: replace TESTING global with import.meta.env.VITEST (#5864)
• 4615b4b Bump Zero to 1.6.0
• Additional commits viewable in compare view

Updates effect from 3.21.0 to 3.21.3

Release notes

Sourced from effect's releases.

effect@3.21.3

Patch Changes

• #6250 e2126bc Thanks @​milkyskies! - Fix $match generic type parameter inference inside arms (#6249)

• #6257 f7e836e Thanks @​gcanti! - Emit additionalProperties: false for records with string keys and Schema.Never values.

effect@3.21.2

Patch Changes

• #6194 74f3267 Thanks @​mikearnaldi! - Fix TestClock.unsafeCurrentTimeNanos() to floor fractional millisecond instants before converting them to BigInt.

effect@3.21.1

Patch Changes

• #6139 f99048e Thanks @​marbemac! - Fix batched request resolver defects causing consumer fibers to hang forever.

  When a RequestResolver.makeBatched resolver died with a defect, the request Deferreds were never completed because the cleanup logic in invokeWithInterrupt used flatMap (which only runs on success). Changed to ensuring so uncompleted request entries are always resolved regardless of exit type.

Changelog

Sourced from effect's changelog.

3.21.3

Patch Changes

• #6250 e2126bc Thanks @​milkyskies! - Fix $match generic type parameter inference inside arms (#6249)

• #6257 f7e836e Thanks @​gcanti! - Emit additionalProperties: false for records with string keys and Schema.Never values.

3.21.2

Patch Changes

• #6194 74f3267 Thanks @​mikearnaldi! - Fix TestClock.unsafeCurrentTimeNanos() to floor fractional millisecond instants before converting them to BigInt.

3.21.1

Patch Changes

• #6139 f99048e Thanks @​marbemac! - Fix batched request resolver defects causing consumer fibers to hang forever.

  When a RequestResolver.makeBatched resolver died with a defect, the request Deferreds were never completed because the cleanup logic in invokeWithInterrupt used flatMap (which only runs on success). Changed to ensuring so uncompleted request entries are always resolved regardless of exit type.

Commits

• 05d72ea Version Packages (#6259)
• e2126bc fix(Data): preserve generic A in TaggedEnum $match arms (#6250)
• f7e836e Emit additionalProperties: false for records with string keys and `Schema.N...
• 39c934c Version Packages (#6195)
• 74f3267 fix: floor TestClock nanoseconds before BigInt conversion (#6194)
• cc0c40a Version Packages (#6142)
• f99048e fix: resolve batched request resolver defects hanging consumer fibers (#6139)
• See full diff in compare view

Updates pg from 8.20.0 to 8.21.0

Changelog

Sourced from pg's changelog.

pg@8.21.0

• Handle SASL SCRAM server error responses properly.
• Add support for node@26.
• Add scramMaxIterations config option.
• Add client.getTransactionStatus() method.

Commits

• 544b1ce Publish
• cc03fa5 Add scramMaxIterations option to limit SCRAM iteration count (#3677)
• f776327 Remove compatibility code for unsupported versions of Node (<16) (#3678)
• f252870 cleanup: pg utils (#3675)
• c8da6ab Assorted test cleanup (#3673)
• fa47e73 fix: Client#end callback being called multiple times when first is no-op (#...
• 88a7e60 cleanup: Move declaration to more natural place
• 2095247 cleanup: Combine duplicated code in Client#query and avoid unneeded early n...
• 0ac3edd fix: apply SASLprep (RFC 4013) to passwords before SCRAM-SHA-256 PBKDF2 (#3669)
• be880d4 Assorted test fixes and cleanup (#3672)
• Additional commits viewable in compare view

Updates xstate from 5.30.0 to 5.32.0

Release notes

Sourced from xstate's releases.

xstate@5.32.0

Minor Changes

• #5512 063416d Thanks @​davidkpiano! - Export InspectedTransitionEvent from xstate.

xstate@5.31.1

Patch Changes

• #5525 f79ea13 Thanks @​davidkpiano! - Fixed route transition guards so named guards registered with setup({ guards }) are resolved for route.guard.

  const machine = setup({
    guards: {
      isReady: ({ context }) => context.ready
    }
  }).createMachine({
    states: {
      review: {
        id: 'review',
        route: {
          guard: 'isReady'
        }
      }
    }
  });

xstate@5.31.0

Minor Changes

• #5429 9d9c1fe Thanks @​davidkpiano! - Add mapState(snapshot, mapper) to map a snapshot to values based on active state(s).

  import { mapState } from 'xstate';
  const results = mapState(snapshot, {
  states: {
  loading: { map: () => 'Loading...' },
  success: { map: (snap) => snap.context.data },
  error: { map: (snap) => snap.context.error.message }
  }
  });
  console.log(results);
  // E.g. if snapshot.value === 'loading', then:
  // [
  //   { stateNode: { key: 'loading' }, result: 'Loading...' }
  // ]

... (truncated)

Commits

• ddca0ff Version Packages (#5529)
• 063416d [@​xstate/store] Version 4 (#5512)
• d7fb9c6 Harden CI configs (#5527)
• fb3876f Version Packages (#5526)
• f79ea13 [core] Fix route string guard resolution (#5525)
• 37a967a Version Packages (#5522)
• c4bb9e3 Fix missing build step in publish workflow (#5521)
• 09f1ad7 Version Packages (#5519)
• 3a881f5 [@​xstate/store] Fix synchronous updates through nested atom dependencies and ...
• 811c71c Tighten up publishing security (#5517)
• Additional commits viewable in compare view

Updates zod from 4.3.6 to 4.4.3

Release notes

Sourced from zod's releases.

v4.4.3

Commits:

• 4c2fa95ce3f3390fbc522324e406b4e9e89b88f9 docs: use Zernio primary wordmark for gold sponsor logo
• 2aeec83eb135e3a83756e973ef44845fc5a455d2 docs: prune lapsed gold sponsors and rebalance logo sizing
• 7391be88ac1ee5cd02057f5ccc012a1f5df4efd0 docs: prune lapsed silver/bronze sponsors and add active ones
• 2c703322a21b4e2b12f33f49ea8430c451a68b4f docs: normalize bronze sponsor logos to github avatar pattern
• 9195250cab0e7950efe39c3926d6c203b4b0a170 docs: remove Mintlify from bronze sponsors (churned)
• b8dffe9e62f17e6571e6249d05cc5102b54d94e4 docs: remove Numeric and Speakeasy (2+ missed monthly cycles)
• 1cab69383fcdeae2a366d5e2a2fc4d8fc765d168 fix(v4): restore catch handling for absent object keys (#5937) (#5939)
• c2be4f819064eed62c7c350a2d399b5faecd15f8 fix(v4): generalize optin/fallback to transform; restore preprocess on absent keys (#5941)
• f3c9ec03ba7a28ae72d25cc295f38674bee0f559 4.4.3
• 1fb56a5c18c27102dbc92260a4007c7732a0ccca docs: document release procedure in AGENTS.md

v4.4.2

Commits:

• 0c62df0ea19fd05abdf90473e9eef7eea530fab2 Clean up docs navigation and stale labels (#5901)
• 20cc794895cc8604fe0c87d83a5d1c3f89fad0ac chore: add security policy and refresh tooling deps
• 6fbe07b0177efdd1bf1c0b05160e70d7a0702337 fix(docs): heading anchor links now include the hash so it doesnt scoll all the way up, follows navbar logic (#5791)
• 4bbed1b1c73eca4ce9e59b1189ed236aa6c8b5bd Tighten discriminated union option typing
• bbac3e567e7fccfaaf7cdc97f1ce30c295e2c908 Update PR guidance for agents
• cf0dc942a32805c292fff59ade20a7ace980735a Merge remote-tracking branch 'origin/main' into fix-discriminated-union-key-constraint
• 292c894a5fd2aa42e527900b83d8d7a3009a709c docs: add Zernio gold sponsor
• 1fc9f311c28dcf80d0bb5a36b177086cbc3d8eca docs: document codec inversion
• 1373c85da9aeff704a9762d27bc58699618aefb7 docs: remove AI disclosure guidance
• e20d02b473c08e3a4e557bc610b1b5fac079b649 chore: ignore triage notes
• e58ea4d91b1dfe8194b73508203213cbc7e9c936 docs: test Zod Mini tab code heights
• 905761a5d127e8d5dd2ebb3bc88c75cb0b8149ff docs: document preprocess input type narrowing
• bf64bac850d4dee2b7dde7e64909d5d796d32043 chore: tighten test guidance in AGENTS.md
• 8ec4e73f4c4693b6361ad591be40fb41eb8a9f95 chore: update play.ts scratch
• 02c2baf7d0d615872fa4528a8020603b71211702 Make z.preprocess defer optionality to inner schema (#5929)
• 88015df8e25c44fb5385eb3ef28935119cd5edea fix(docs): drop deprecated baseUrl from tsconfig
• c59d4474e3b4cad1b323462186cf607178ce8267 4.4.2

v4.4.1

Commits:

• 481f7be4238c83ed58183f921b2646f340a91c6a ci: gate release publishing on full test workflow
• 95ccab423aec720b2523c3a64cdc7e3204537cc7 test(v3): restore optional undefined expectations
• cede2c63739a5823d6aa5093d291e9a111da943d fix(v4): reject tuple holes before required defaults (#5900)
• edd0bf0f5ada4a8dc581c259407d7bbad0a71ea7 release: 4.4.1
• 180d83d1dbe6a59260710cc8637a3dea2281ee56 docs: remove Jazz featured sponsor

v4.4.0

4.4.0

This is a minor release with a wide set of correctness and soundness fixes. Some fixes intentionally make Zod stricter, so code that depended on previously accepted invalid or ambiguous inputs may need small updates.

Potentially breaking bug fixes

... (truncated)

Commits

• 1fb56a5 docs: document release procedure in AGENTS.md
• f3c9ec0 4.4.3
• c2be4f8 fix(v4): generalize optin/fallback to transform; restore preprocess on absent...
• 1cab693 fix(v4): restore catch handling for absent object keys (#5937) (#5939)
• b8dffe9 docs: remove Numeric and Speakeasy (2+ missed monthly cycles)
• 9195250 docs: remove Mintlify from bronze sponsors (churned)
• 2c70332 docs: normalize bronze sponsor logos to github avatar pattern
• 7391be8 docs: prune lapsed silver/bronze sponsors and add active ones
• 2aeec83 docs: prune lapsed gold sponsors and rebalance logo sizing
• 4c2fa95 docs: use Zernio primary wordmark for gold sponsor logo
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for zod since your current version.

Updates @base-ui/react from 1.3.0 to 1.5.0

Release notes

Sourced from @​base-ui/react's releases.

v1.5.0

General changes

• Improve mount performance with interaction splitting, including closed popup mount performance by up to 50% and unmounting performance by up to 85% (#4661) by @​atomiks
• Use local document for virtual arrow (#4662) by @​lyzno1
• Fix macOS Safari and Firefox minimizing fullscreen when closing popups with Esc (#4695) by @​arturbien
• Drop unnecessary memoization (#4693) by @​flaviendelangle
• Do not use Math.random() in useStableCallback() (#4732) by @​michaldudak
• Fix return focus when reference disconnects (#4655) by @​atomiks
• Don't steal initial focus if focus already moved inside a popup (#4775) by @​stefee

Alert Dialog

• Fix handle defaults (#4834) by @​atomiks

Autocomplete

• Fix native FormData for popup inputs (#4725) by @​lunaxislu

Checkbox

• Submit the associated form when pressing Enter (#4713) by @​michaldudak

Combobox

• Expose clear visibility state (#4664) by @​atomiks
• Fix popup input form submit (#4687) by @​atomiks
• Preserve closeQuery when closing multiple input-inside-popup combobox (#4715) by @​mj12albert
• Fix RTL component behavior (#4840) by @​atomiks
• Ignore hidden-input changes while readonly or disabled (#4810) by @​lunaxislu

Dialog

• Consider the controlled open prop for open state detection (#4712) by @​michaldudak

Drawer

• Forward style prop in <Drawer.Viewport> (#4841) by @​atomiks

Field

• Avoid flushSync during validation (#4685) by @​atomiks

Form

• Avoid flushSync during validation (#4685) by @​atomiks

Menu

• Fix submenu pointer-events scope for keepMounted portals (#4723) by @​twillhorn

... (truncated)

Changelog

Sourced from @​base-ui/react's changelog.

v1.5.0

May 19, 2026

General changes

• Improve mount performance with interaction splitting, including closed popup mount performance by up to 50% and unmounting performance by up to 85% (#4661) by @​atomiks
• Use local document for virtual arrow (#4662) by @​lyzno1
• Fix macOS Safari and Firefox minimizing fullscreen when closing popups with Esc (#4695) by @​arturbien
• Drop unnecessary memoization (#4693) by @​flaviendelangle
• Do not use Math.random() in useStableCallback() (#4732) by @​michaldudak
• Fix return focus when reference disconnects (#4655) by @​atomiks
• Don't steal initial focus if focus already moved inside a popup (#4775) by @​stefee

Alert Dialog

• Fix handle defaults (#4834) by @​atomiks

Autocomplete

• Fix native FormData for popup inputs (#4725) by @​lunaxislu

Checkbox

• Submit the associated form when pressing Enter (#4713) by @​michaldudak

Combobox

• Expose clear visibility state (#4664) by @​atomiks
• Fix popup input form submit (#4687) by @​atomiks
• Preserve closeQuery when closing multiple input-inside-popup combobox (#4715) by @​mj12albert
• Fix RTL component behavior (#4840) by @​atomiks
• Ignore hidden-input changes while readonly or disabled (#4810) by @​lunaxislu

Dialog

• Consider the controlled open prop for open state detection (#4712) by @​michaldudak

Drawer

• Forward style prop in <Drawer.Viewport> (#4841) by @​atomiks

Field

• Avoid flushSync during validation (#4685) by @​atomiks

Form

• Avoid flushSync during validation (#4685) by @​atomiks

... (truncated)

Commits

• 2fdf1b0 [release] v1.5.0 (#4850)
• 8535638 [otp field] Fix vertical arrow slot navigation (#4844)
• 09ce83b [alert dialog] Fix handle defaults (#4834)
• 5e0f3e7 [menu] Support group labels in radio groups (#4826)
• 8db1aa9 [otp field] Fix RTL arrow navigation (#4847)
• ccb4b30 [otp field] Compose normalizeValue with validation (#4717)
• ad99b44 [direction provider] Fix RTL component behavior (#4840)
• 5579e7f [drawer] Forward style prop in \<Drawer.Viewport> (#4841)
• 8170336 [navigation menu] Fix keepMounted content sizing (#4817)
• 4a339d0 [otp field] Prevent locked hidden autofill validation (#4827)
• Additional commits viewable in compare view

Updates @hugeicons/core-free-icons from 4.1.1 to 4.2.0

Updates lucide-react from 1.7.0 to 1.17.0

Release notes

Sourced from lucide-react's releases.

Version 1.17.0

What's Changed

• chore(lucide-vue-next|lucide-svelte|lucide-angular): Remove deprecated packages by @​ericfennis in lucide-icons/lucide#4376
• chore(repo): Update issue templates and documentation for package ren… by @​ericfennis in lucide-icons/lucide#4379
• feat(site): Adds survey overlay to website by @​ericfennis in lucide-icons/lucide#4380
• feat(site): Certificate dev links by @​ericfennis in lucide-icons/lucide#4390
• fix(icons): changed martini icon by @​jamiemlaw in lucide-icons/lucide#4335
• chore(deps): bump brace-expansion from 1.1.11 to 5.0.6 by @​dependabot[bot] in lucide-icons/lucide#4386
• chore(deps): bump @​tootallnate/once from 2.0.0 to 2.0.1 by @​dependabot[bot] in lucide-icons/lucide#4404
• chore(deps): bump devalue from 5.8.0 to 5.8.1 by @​dependabot[bot] in lucide-icons/lucide#4391
• chore(deps): bump ws from 8.18.0 to 8.20.1 by @​dependabot[bot] in lucide-icons/lucide#4392
• fix(gh-icon): limit icon size to a maximum of 256 pixels by @​jguddas in lucide-icons/lucide#4398
• chore(dependencies): Update dependencies by @​ericfennis in lucide-icons/lucide#4377
• feat(copilot): Adding copilot instructions by @​ericfennis in lucide-icons/lucide#4407
• feat(icons): add globe-check by @​Barakudum in lucide-icons/lucide#4342
• feat(metadata): Require use-cases in meta json by @​ericfennis in lucide-icons/lucide#4321
• feat(icons): added parasol icon by @​karsa-mistmere in lucide-icons/lucide#4347

Full Changelog: lucide-icons/lucide@1.16.0...1.17.0

Version 1.16.0

What's Changed

• feat(icons): added blender icon by @​rrod497 in lucide-icons/lucide#3884

Full Changelog: lucide-icons/lucide@1.15.0...1.16.0

Version 1.15.0

What's Changed

• fix: remove 'less' from brand stopwords by @​jguddas in lucide-icons/lucide#4331
• fix(@​lucide/vue): Clone slots before passing to icon by @​axtho in lucide-icons/lucide#4339
• fix(icons): changed text-cursor icon by @​jamiemlaw in lucide-icons/lucide#4340
• fix(icons): changed landmark icon by @​jamiemlaw in lucide-icons/lucide#4334
• chore(deps-dev): bump nitropack from 2.13.1 to 2.13.4 by @​dependabot[bot] in lucide-icons/lucide#4352
• chore(deps-dev): bump simple-git from 3.33.0 to 3.36.0 by @​dependabot[bot] in lucide-icons/lucide#4349
• fix(icons): changed candy-cane icon by @​jguddas in lucide-icons/lucide#4148
• fix(icons): changed volleyball icon by @​jamiemlaw in

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml