Skip to content

chore(deps): bump the svelte group across 1 directory with 4 updates#761

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/svelte-42e97dc4ec
Open

chore(deps): bump the svelte group across 1 directory with 4 updates#761
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/svelte-42e97dc4ec

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 26, 2026
edited
Loading

Bumps the svelte group with 4 updates in the / directory: svelte-outclick, svelte-time, @sveltejs/vite-plugin-svelte and svelte.

Updates svelte-outclick from 3.7.1 to 4.2.0

Changelog

Sourced from svelte-outclick's changelog.

4.2.0

  • [feature] Use ClassValue for class attribute type instead of string.

4.1.0

  • [feature] Added tag prop and rest props type suggestion support with generic type support based on the tag prop.

4.0.1

  • Fixed "svelte" "peerDependencies" version by changing it to ">= 5".

4.0.0

[!IMPORTANT] There are breaking changes in this version.

  • [breaking] Use e.target instead of e.detail.target.
  • [breaking] OutClickEvent now returns pointerdown or pointerup or keydown, depending on how the outclick event is fired.
  • [breaking] Also, take a look at the migration guide below.
  • Exports OutClickEvent type.

Migration guide

Before:

<script>
    import OutClick from "svelte-outclick"
</script>

After:

<script>
    import { OutClick } from "svelte-outclick"
</script>

Before:

<OutClick on:outclick={() => {}}></OutClick>

After:

... (truncated)

Commits

Updates svelte-time from 1.1.0 to 2.1.0

Release notes

Sourced from svelte-time's releases.

v2.1.0

Features

  • add withoutSuffix prop to remove "ago" suffix from relative time (e.g., "2 hours" instead of "2 hours ago") (7b64399, #73)
  • add locale prop to support internationalization with multiple locales (8d8a0b1, #60)

v2.0.2

Fixes

  • restore reactivity for Time component and svelteTime action (bf3d93c, #67)

v2.0.1

Fixes

  • fix svelteTime import in TypeScript definitions (554596b, #57)

v2.0.0

The library is modernized to only support Svelte 5 (Runes mode). There are no component API changes.

Use svelte-time@1.0.0 for Svelte 3/4 support. v1 is also compatible with Svelte 5 (non-Runes mode).

Breaking Changes

f98694303f31160215b710390d83d07020a78f29, #51 contributed by @​kvangrae, @​niemyjski, @​metonym

  • update Time.svelte to use Runes
  • update svelteTime action to use Runes
  • update TypeScript definitions to replace deprecated SvelteComponentTyped with Component
Changelog

Sourced from svelte-time's changelog.

2.1.0 - 2026-01-12

Features

  • add withoutSuffix prop to remove "ago" suffix from relative time (e.g., "2 hours" instead of "2 hours ago")
  • add locale prop to support internationalization with multiple locales

2.0.2 - 2025-10-23

Fixes

  • restore reactivity for Time component and svelteTime action

2.0.1 - 2025-02-24

Fixes

  • fix svelteTime import in TypeScript definitions

2.0.0 - 2025-01-23

The library is modernized to only support Svelte 5 (Runes mode). There are no component API changes.

Use svelte-time@1.0.0 for Svelte 3/4 support. v1 is also compatible with Svelte 5 (non-Runes mode).

Breaking Changes

  • update Time.svelte to use Runes
  • update svelteTime action to use Runes
  • update TypeScript definitions to replace deprecated SvelteComponentTyped with Component

1.0.0 - 2025-01-23

Features

  • establish a stable release before upgrading to Svelte 5

Fixes

  • upgrade dayjs to v1.11.13

0.9.0 - 2024-04-19

Features

  • allow title attribute to be overridden

0.8.2 - 2023-12-16

Fixes

... (truncated)

Commits

Updates @sveltejs/vite-plugin-svelte from 3.1.2 to 6.2.4

Release notes

Sourced from @​sveltejs/vite-plugin-svelte's releases.

@​sveltejs/vite-plugin-svelte@​6.2.4

Patch Changes

  • fix(hmr): ensure that svelte files are recompiled and updated css modules returned correctly when reported out of order (#1258)

@​sveltejs/vite-plugin-svelte@​6.2.3

Patch Changes

  • fix(filter): ignore zero-tagged ids per rollup convention (#1255)

@​sveltejs/vite-plugin-svelte@​6.2.2

Patch Changes

  • Update experimental support for rolldown-vite to vite 8 beta (#1246)

  • perf: switch from debug to obug (smaller, esm-only) (#1241)

@​sveltejs/vite-plugin-svelte@​6.2.1

Patch Changes

  • fix: remove unscopable global styles warning (#1223)

  • Remove automatic configuration for rolldownOptions.optimization.inlineConst because latest version of rolldown-vite has it enabled by default. (#1225)

@​sveltejs/vite-plugin-svelte@​6.2.0

Minor Changes

  • feat(rolldown-vite): enable optimization.inlineConst by default to ensure treeshaking works with esm-env in svelte (#1207)

@​sveltejs/vite-plugin-svelte@​6.1.4

Patch Changes

  • fix: allow preprocess plugin to run twice (#1206)

  • fix(types): update urls to PreprocessorGroup and CompileOptions in type documention (#1203)

  • replace kleur dependency with builtin node:utils styleText (#1210)

@​sveltejs/vite-plugin-svelte@​6.1.3

Patch Changes

  • fix(api): add api.filter and deprecate api.idFilter to avoid confusing filter.id = idFilter.id assignments when used as hybrid filter in other plugins (#1199)

@​sveltejs/vite-plugin-svelte@​6.1.2

Patch Changes

... (truncated)

Changelog

Sourced from @​sveltejs/vite-plugin-svelte's changelog.

6.2.4

Patch Changes

  • fix(hmr): ensure that svelte files are recompiled and updated css modules returned correctly when reported out of order (#1258)

6.2.3

Patch Changes

  • fix(filter): ignore zero-tagged ids per rollup convention (#1255)

6.2.2

Patch Changes

  • Update experimental support for rolldown-vite to vite 8 beta (#1246)

  • perf: switch from debug to obug (smaller, esm-only) (#1241)

6.2.1

Patch Changes

  • fix: remove unscopable global styles warning (#1223)

  • Remove automatic configuration for rolldownOptions.optimization.inlineConst because latest version of rolldown-vite has it enabled by default. (#1225)

6.2.0

Minor Changes

  • feat(rolldown-vite): enable optimization.inlineConst by default to ensure treeshaking works with esm-env in svelte (#1207)

6.1.4

Patch Changes

  • fix: allow preprocess plugin to run twice (#1206)

  • fix(types): update urls to PreprocessorGroup and CompileOptions in type documention (#1203)

  • replace kleur dependency with builtin node:utils styleText (#1210)

6.1.3

Patch Changes

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​sveltejs/vite-plugin-svelte since your current version.


Updates svelte from 4.2.20 to 5.53.5

Release notes

Sourced from svelte's releases.

svelte@5.53.5

Patch Changes

svelte@5.53.4

Patch Changes

  • fix: set server context after async transformError (#17799)

  • fix: hydrate if blocks correctly (#17784)

  • fix: handle default parameters scope leaks (#17788)

  • fix: prevent flushed effects from running again (#17787)

svelte@5.53.3

Patch Changes

  • fix: render :catch of #await block with correct key (#17769)

  • chore: pin aria-query@5.3.1 (#17772)

  • fix: make string coercion consistent to toString (#17774)

svelte@5.53.2

Patch Changes

  • fix: update expressions on server deriveds (#17767)

  • fix: further obfuscate node:crypto import from overzealous static analysis (#17763)

svelte@5.53.1

Patch Changes

  • fix: handle shadowed function names correctly (#17753)

svelte@5.53.0

Minor Changes

  • feat: allow comments in tags (#17671)

  • feat: allow error boundaries to work on the server (#17672)

Patch Changes

  • fix: use TrustedHTML to test for customizable support, where necessary (#17743)

... (truncated)

Changelog

Sourced from svelte's changelog.

5.53.5

Patch Changes

5.53.4

Patch Changes

  • fix: set server context after async transformError (#17799)

  • fix: hydrate if blocks correctly (#17784)

  • fix: handle default parameters scope leaks (#17788)

  • fix: prevent flushed effects from running again (#17787)

5.53.3

Patch Changes

  • fix: render :catch of #await block with correct key (#17769)

  • chore: pin aria-query@5.3.1 (#17772)

  • fix: make string coercion consistent to toString (#17774)

5.53.2

Patch Changes

  • fix: update expressions on server deriveds (#17767)

  • fix: further obfuscate node:crypto import from overzealous static analysis (#17763)

5.53.1

Patch Changes

  • fix: handle shadowed function names correctly (#17753)

5.53.0

Minor Changes

  • feat: allow comments in tags (#17671)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for svelte since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Feb 26, 2026
@netlify
Copy link

netlify bot commented Feb 26, 2026
edited
Loading

Deploy Preview for btcmap failed. Why did it fail? →

Name Link
🔨 Latest commit 5d591d5
🔍 Latest deploy log https://app.netlify.com/projects/btcmap/deploys/69a801b52113070008b69871

@socket-security
Copy link

socket-security bot commented Feb 26, 2026
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updatedsvelte-outclick@​3.7.1 ⏵ 4.2.075 +910099 +4287 +6100
Updated@​sveltejs/​vite-plugin-svelte@​3.1.2 ⏵ 6.2.4100 +110081 +193 -2100
Updatedsvelte-time@​1.1.0 ⏵ 2.1.08510010089 +1100
Updatedsvelte@​4.2.20 ⏵ 5.53.788 -6100 +688 +198100

View full report

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/svelte-42e97dc4ec branch from cec5c1b to 262c9ce Compare March 3, 2026 10:33
@dependabot
chore(deps): bump the svelte group across 1 directory with 4 updates
5d591d5 
Bumps the svelte group with 4 updates in the / directory: [svelte-outclick](https://github.com/babakfp/svelte-outclick), [svelte-time](https://github.com/metonym/svelte-time), [@sveltejs/vite-plugin-svelte](https://github.com/sveltejs/vite-plugin-svelte/tree/HEAD/packages/vite-plugin-svelte) and [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).


Updates `svelte-outclick` from 3.7.1 to 4.2.0
- [Changelog](https://github.com/babakfp/svelte-outclick/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babakfp/svelte-outclick/commits)

Updates `svelte-time` from 1.1.0 to 2.1.0
- [Release notes](https://github.com/metonym/svelte-time/releases)
- [Changelog](https://github.com/metonym/svelte-time/blob/master/CHANGELOG.md)
- [Commits](metonym/svelte-time@v1.1.0...v2.1.0)

Updates `@sveltejs/vite-plugin-svelte` from 3.1.2 to 6.2.4
- [Release notes](https://github.com/sveltejs/vite-plugin-svelte/releases)
- [Changelog](https://github.com/sveltejs/vite-plugin-svelte/blob/main/packages/vite-plugin-svelte/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/vite-plugin-svelte/commits/@sveltejs/vite-plugin-svelte@6.2.4/packages/vite-plugin-svelte)

Updates `svelte` from 4.2.20 to 5.53.5
- [Release notes](https://github.com/sveltejs/svelte/releases)
- [Changelog](https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/svelte/commits/svelte@5.53.5/packages/svelte)

---
updated-dependencies:
- dependency-name: svelte-outclick
  dependency-version: 4.2.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: svelte
- dependency-name: svelte-time
  dependency-version: 2.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: svelte
- dependency-name: "@sveltejs/vite-plugin-svelte"
  dependency-version: 6.2.4
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: svelte
- dependency-name: svelte
  dependency-version: 5.53.5
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: svelte
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/svelte-42e97dc4ec branch from 262c9ce to 5d591d5 Compare March 4, 2026 09:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants