chore(deps)(deps): bump image from 4.5.4 to 4.8.0 in /client

[dependabot]

Bumps image from 4.5.4 to 4.8.0.

Changelog

Sourced from image's changelog.

4.8.0 - February 17, 2026

• Fix JPEG decoding issue with Adobe RGB color transformations.
• Feature: Histogram equalize and stretch

4.7.1 - December 18, 2025

• Fix issue decoding the last row of lossless webp images.

4.7.0 - December 17, 2025

• Major update to the WebP decoder to resolve errors decoding some files.
• Fixed issue where App1 marker would not be written when Exif data is injected into jpegs without exif block. Also fixed wrong IFD1 pointer.
• Improved robustness of EXIF injection and reading:
• Skips malformed EXIF sub-IFDs (e.g., bad GPSInfo pointers) during reading and injection, preventing RangeErrors and crashes.
• Allows injecting new EXIF (including GPS) data into files with broken EXIF blocks.

4.6.0 - December 11, 2025

• Fix issues with injectJpegExif corrupting jpeg files.
• Clean up validation errors causing Wasm builds to fail.
• Fix issue with Jpeg subsampling causing some images to fail to load.
• Fix rgbToHsv function
• Fix jpeg RGB-to-YUV conversion and background blending logic.
• Decode and encode ICC profile data for JPEG
• Added export for ICO encoder
• Fix error adding frame to an empty image
• Fix GIF decoder animation frame clear color
• GIF animation frame background transparency.
• Fixes for TIFF decoding

Commits

• a5cc03b 4.8.0
• 0e99e51 code cleanup
• da5db33 fix analyzer error
• 46c87a4 fix jpeg with adobe rgb color transformation
• c82d8b2 cleanup code
• 32d8427 fix webp decoding of last row
• 8ea5931 dart format
• 3453978 Merge pull request #767 from wahahachan/impl_histogram_eq
• 21e5341 Merge pull request #769 from svr2kos2/main
• 762c7bc Fix GIF decode crash when frames use different local palettes; add regression...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: client. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[github-actions]

⚠️ Manual Review Required

This dependency update requires manual review before merging.

Reason: Minor or major version change may include breaking changes.

Action Required:

1. Review the changelog for this dependency
2. Test the changes locally if needed
3. Manually approve and merge when ready

---

Automated by Dependabot Auto-Merge workflow