chore(deps): bump the all group across 1 directory with 8 updates

[dependabot]

Bumps the all group with 8 updates in the / directory:

Package	From	To
algosdk	3.2.0	3.5.2
@types/lodash	4.17.16	4.17.20
@vscode/vsce	3.3.2	3.6.2
@wdio/mocha-framework	9.13.0	9.20.0
esbuild	0.25.3	0.25.12
prettier	3.5.3	3.6.2
rimraf	6.0.1	6.1.0
typescript	5.8.3	5.9.3

Updates algosdk from 3.2.0 to 3.5.2

Release notes

Sourced from algosdk's releases.

v3.5.2

What's Changed

Bugfixes

• Apps: Make sure reject version param gets serialized to message pack format by @​gmalouf in algorand/js-algorand-sdk#1007
• Apps: In access, addresses need to be checked for nil cases and compared via equals() rather than reference equality. by @​gmalouf in algorand/js-algorand-sdk#1009

Enhancements

• Deps: Bump tar-fs from 3.0.9 to 3.1.1 by @​dependabot[bot] in algorand/js-algorand-sdk#1010

Full Changelog: algorand/js-algorand-sdk@v3.5.1...v3.5.2

v3.5.1

What's Changed

Enhancements

• Types: Support using txnAccess in addMethodCall by @​gmalouf in algorand/js-algorand-sdk#1003
• Apps: Support for reject-version on application call transactions and txnAccess encoding tweaks by @​gmalouf in algorand/js-algorand-sdk#1004

Full Changelog: algorand/js-algorand-sdk@v3.5.0...v3.5.1

v3.5.0

What's Changed

Enhancements

• Deps: Bump tmp from 0.2.3 to 0.2.4 by @​dependabot[bot] in algorand/js-algorand-sdk#995
• API: Regenerate code with the latest specification file (e4539acc) by @​github-actions[bot] in algorand/js-algorand-sdk#997
• Signatures: support lmsig logicsig signatures by @​cce in algorand/js-algorand-sdk#999
• types: add txn access by @​algorandskiy in algorand/js-algorand-sdk#1000

New Contributors

• @​cce made their first contribution in algorand/js-algorand-sdk#999

Full Changelog: algorand/js-algorand-sdk@v3.4.0...v3.5.0

v3.4.0

What's Changed

Bugfixes

• fix: handle null values when deserializing byte arrays by @​neilcampbell in algorand/js-algorand-sdk#991

New Features

• CICD: implement tests in GitHub Actions by @​onetechnical in algorand/js-algorand-sdk#985

Enhancements

• Deps: Bump tar-fs from 3.0.8 to 3.0.9 by @​dependabot[bot] in algorand/js-algorand-sdk#986
• CICD: remove CircleCI by @​onetechnical in algorand/js-algorand-sdk#987

... (truncated)

Changelog

Sourced from algosdk's changelog.

v3.5.2

What's Changed

Bugfixes

• Apps: Make sure reject version param gets serialized to message pack format by @​gmalouf in algorand/js-algorand-sdk#1007
• Apps: In access, addresses need to be checked for nil cases and compared via equals() rather than reference equality. by @​gmalouf in algorand/js-algorand-sdk#1009

Enhancements

• Deps: Bump tar-fs from 3.0.9 to 3.1.1 by @​dependabot[bot] in algorand/js-algorand-sdk#1010

Full Changelog: algorand/js-algorand-sdk@v3.5.1...v3.5.2

v3.5.1

What's Changed

Enhancements

• Types: Support using txnAccess in addMethodCall by @​gmalouf in algorand/js-algorand-sdk#1003
• Apps: Support for reject-version on application call transactions and txnAccess encoding tweaks by @​gmalouf in algorand/js-algorand-sdk#1004

Full Changelog: algorand/js-algorand-sdk@v3.5.0...v3.5.1

v3.5.0

What's Changed

Enhancements

• Deps: Bump tmp from 0.2.3 to 0.2.4 by @​dependabot[bot] in algorand/js-algorand-sdk#995
• API: Regenerate code with the latest specification file (e4539acc) by @​github-actions[bot] in algorand/js-algorand-sdk#997
• Signatures: support lmsig logicsig signatures by @​cce in algorand/js-algorand-sdk#999
• types: add txn access by @​algorandskiy in algorand/js-algorand-sdk#1000

New Contributors

• @​cce made their first contribution in algorand/js-algorand-sdk#999

Full Changelog: algorand/js-algorand-sdk@v3.4.0...v3.5.0

v3.4.0

... (truncated)

Commits

• 80252be Merge pull request #1011 from algorand/release/v3.5.2
• f95eb2d bump up version to v3.5.2
• c27db40 Bump tar-fs from 3.0.9 to 3.1.1 (#1010)
• 8557518 In access, addresses need to be checked for nil cases and compared via equals...
• 0bf02d4 Make sure reject version param gets serialized to message pack format. (#1007)
• c49d76c Merge pull request #1005 from algorand/release/v3.5.1
• e79ea26 bump up version to v3.5.1
• 1c37b22 Apps: Support for reject-version on application call transactions and txnAcce...
• 08209b0 Support using txnAccess in . (#1003)
• 5222e0e Merge pull request #1001 from algorand/release/v3.5.0
• Additional commits viewable in compare view

Updates @types/lodash from 4.17.16 to 4.17.20

Commits

• See full diff in compare view

Updates @vscode/vsce from 3.3.2 to 3.6.2

Release notes

Sourced from @​vscode/vsce's releases.

v3.6.2

Changes:

• #1199: fix: generate language model tag for languageModelChatProvider contributions

This list of changes was auto generated.

v3.6.2-0

Changes:

• #1199: fix: generate language model tag for languageModelChatProvider contributions

This list of changes was auto generated.

v3.6.1

Changes:

• #1198: chore: bump vsce-sign to 2.0.7
• #1194: Engineering - do not run Azure Pipeline for pull requests
• #1193: fix: check exec params
• #1191: Bump tmp from 0.2.3 to 0.2.4
• #1188: Avoid Node.js DEP0190 warning by using string form for prepublish command
• #1190: chore: migrate PR check to GitHub Actions
• #1189: update secretlint
• #1187: Bump form-data from 4.0.0 to 4.0.4
• #1185: chore: onboard OSS pipeline to 1ES template
• #1179: add commonjs annotation to package.json

This list of changes was auto generated.

v3.6.1-9

Changes:

• #1198: chore: bump vsce-sign to 2.0.7

This list of changes was auto generated.

v3.6.1-8

Changes:

... (truncated)

Commits

• 6a944cc Merge pull request #1199 from joyceerhl/patch-1
• 623d46c fix test
• 70f3535 fix: generate language model tag for languageModelChatProvider contributions
• d9422df chore: bump vsce-sign to 2.0.7 (#1198)
• 91b5381 Engineering - do not run Azure Pipeline for pull requests (#1194)
• 6d9f87e fix: check exec params (#1193)
• 8fa2eb5 Bump tmp from 0.2.3 to 0.2.4 (#1191)
• 6b0b21d Avoid Node.js DEP0190 warning by using string form for prepublish command (#1...
• 29a2b75 chore: migrate PR check to GitHub Actions (#1190)
• 472e6ec Merge pull request #1189 from microsoft/benibenj/other-tarantula
• Additional commits viewable in compare view

Updates @wdio/mocha-framework from 9.13.0 to 9.20.0

Release notes

Sourced from @​wdio/mocha-framework's releases.

v9.20.0 (2025-09-27)

🚀 New Feature

• wdio-allure-reporter
  • #14719 Update wdio-allure-reporter for Allure 3 (@​todti)

🐛 Bug Fix

• webdriver
  • #14760 fix(webdriver): Fix no retrying requests when unexpected token on responses occurs (like on HTML responses) (@​Nyaran)
• wdio-cucumber-framework
  • #14763 feat(cucumber): Fix skipping tests with skip tag using complex regular expressions (@​Nyaran)
• wdio-allure-reporter
  • #14723 fix(@​wdio/allure-reporter): Encode HTML entities (@​sventschui)
• webdriverio
  • #14714 fix(attach-params): user options should override detectBackend (@​NaamuKim)
• wdio-utils
  • #14750 feat(utils): Fix reduce function to use the initial value parameter (@​Nyaran)

💅 Polish

• wdio-browserstack-service
  • #14783 Exhaustive logging for better capability flow debug (@​pranay-v29)
  • #14781 SDK-4104 Updated the build url format for azure pipelines (@​pranay-v29)
• wdio-cli, wdio-config
  • #14664 tsConfigPath in wdio.conf (@​sh41)
• webdriverio
  • #14744 fix: polish waitForClickable (@​wswebcreation)
  • #14745 fix: polish isStable commands (@​wswebcreation)
• wdio-browserstack-service, wdio-local-runner
  • #14734 Support added for change in product name:- Observability -> Test Reporting and Analytics v9 (@​Tanmay-Bstack)

📝 Documentation

• Other
  • #14786 Updated refs due to changes in the example-recipes repo (@​fpereira1)
  • #14787 Update docs on selector to warn that aria/ selectors can be slow (@​fpereira1)
  • #14776 corrected typo in the index page (@​alphabetkrish)
• wdio-junit-reporter
  • #14735 docs(@​wdio/junit-reporter): update readme (@​eglitise)

🏠 Internal

• #14748 chore(.nvmrc) upgrade node version to fix continuous release (@​NaamuKim)

Committers: 15

• Alex (@​todti)
• David Prevost (@​dprevost-LMI)
• Edgars Eglītis (@​eglitise)
• Erkan Erol (@​erkanerol)
• Filype (@​fpereira1)
• Luis Zurro (@​Nyaran)
• Luke (@​NaamuKim)
• Nathan Zhao (@​phantomwolf)

... (truncated)

Changelog

Sourced from @​wdio/mocha-framework's changelog.

v9.20.0 (2025-09-27)

🚀 New Feature

• wdio-allure-reporter
  • #14719 Update wdio-allure-reporter for Allure 3 (@​todti)

🐛 Bug Fix

• webdriver
  • #14760 fix(webdriver): Fix no retrying requests when unexpected token on responses occurs (like on HTML responses) (@​Nyaran)
• wdio-cucumber-framework
  • #14763 feat(cucumber): Fix skipping tests with skip tag using complex regular expressions (@​Nyaran)
• wdio-allure-reporter
  • #14723 fix(@​wdio/allure-reporter): Encode HTML entities (@​sventschui)
• webdriverio
  • #14714 fix(attach-params): user options should override detectBackend (@​NaamuKim)
• wdio-utils
  • #14750 feat(utils): Fix reduce function to use the initial value parameter (@​Nyaran)

💅 Polish

• wdio-browserstack-service
  • #14783 Exhaustive logging for better capability flow debug (@​pranay-v29)
  • #14781 SDK-4104 Updated the build url format for azure pipelines (@​pranay-v29)
• wdio-cli, wdio-config
  • #14664 tsConfigPath in wdio.conf (@​sh41)
• webdriverio
  • #14744 fix: polish waitForClickable (@​wswebcreation)
  • #14745 fix: polish isStable commands (@​wswebcreation)
• wdio-browserstack-service, wdio-local-runner
  • #14734 Support added for change in product name:- Observability -> Test Reporting and Analytics v9 (@​Tanmay-Bstack)

📝 Documentation

• Other
  • #14786 Updated refs due to changes in the example-recipes repo (@​fpereira1)
  • #14787 Update docs on selector to warn that aria/ selectors can be slow (@​fpereira1)
  • #14776 corrected typo in the index page (@​alphabetkrish)
• wdio-junit-reporter
  • #14735 docs(@​wdio/junit-reporter): update readme (@​eglitise)

🏠 Internal

• #14748 chore(.nvmrc) upgrade node version to fix continuous release (@​NaamuKim)

Committers: 15

• Alex (@​todti)
• David Prevost (@​dprevost-LMI)
• Edgars Eglītis (@​eglitise)
• Erkan Erol (@​erkanerol)
• Filype (@​fpereira1)
• Luis Zurro (@​Nyaran)
• Luke (@​NaamuKim)
• Nathan Zhao (@​phantomwolf)

... (truncated)

Commits

• 6c8694a v9.20.0
• 4ca4677 v9.19.2
• df3ec33 v9.19.1
• be9a423 v9.19.0
• a515cdf v9.18.0
• 37b4536 fix(security): address multiple security vulnerabilities across codebase (#14...
• 796df04 v9.17.0
• d748681 chore(linter) fixed linter warnings with --fix (#14626)
• b321474 fix(mocha-framework): report spec load error as failure in after hook (#14506)
• ff2154c v9.16.2
• Additional commits viewable in compare view

Updates esbuild from 0.25.3 to 0.25.12

Release notes

Sourced from esbuild's releases.

v0.25.12

• Fix a minification regression with CSS media queries (#4315)

  The previous release introduced support for parsing media queries which unintentionally introduced a regression with the removal of duplicate media rules during minification. Specifically the grammar for @media <media-type> and <media-condition-without-or> { ... } was missing an equality check for the <media-condition-without-or> part, so rules with different suffix clauses in this position would incorrectly compare equal and be deduplicated. This release fixes the regression.

• Update the list of known JavaScript globals (#4310)

  This release updates esbuild's internal list of known JavaScript globals. These are globals that are known to not have side-effects when the property is accessed. For example, accessing the global Array property is considered to be side-effect free but accessing the global scrollY property can trigger a layout, which is a side-effect. This is used by esbuild's tree-shaking to safely remove unused code that is known to be side-effect free. This update adds the following global properties:

  From ES2017:

  • Atomics
  • SharedArrayBuffer

  From ES2020:

  • BigInt64Array
  • BigUint64Array

  From ES2021:

  • FinalizationRegistry
  • WeakRef

  From ES2025:

  • Float16Array
  • Iterator

  Note that this does not indicate that constructing any of these objects is side-effect free, just that accessing the identifier is side-effect free. For example, this now allows esbuild to tree-shake classes that extend from Iterator:

  // This can now be tree-shaken by esbuild:
  class ExampleIterator extends Iterator {}

• Add support for the new @view-transition CSS rule (#4313)

  With this release, esbuild now has improved support for pretty-printing and minifying the new @view-transition rule (which esbuild was previously unaware of):

  /* Original code */
  @view-transition {
    navigation: auto;
    types: check;
  }
  /* Old output */
  @​view-transition { navigation: auto; types: check; }
  /* New output */
  @​view-transition {
  navigation: auto;
  types: check;

... (truncated)

Changelog

Sourced from esbuild's changelog.

0.25.12

• Fix a minification regression with CSS media queries (#4315)

  The previous release introduced support for parsing media queries which unintentionally introduced a regression with the removal of duplicate media rules during minification. Specifically the grammar for @media <media-type> and <media-condition-without-or> { ... } was missing an equality check for the <media-condition-without-or> part, so rules with different suffix clauses in this position would incorrectly compare equal and be deduplicated. This release fixes the regression.

• Update the list of known JavaScript globals (#4310)

  This release updates esbuild's internal list of known JavaScript globals. These are globals that are known to not have side-effects when the property is accessed. For example, accessing the global Array property is considered to be side-effect free but accessing the global scrollY property can trigger a layout, which is a side-effect. This is used by esbuild's tree-shaking to safely remove unused code that is known to be side-effect free. This update adds the following global properties:

  From ES2017:

  • Atomics
  • SharedArrayBuffer

  From ES2020:

  • BigInt64Array
  • BigUint64Array

  From ES2021:

  • FinalizationRegistry
  • WeakRef

  From ES2025:

  • Float16Array
  • Iterator

  Note that this does not indicate that constructing any of these objects is side-effect free, just that accessing the identifier is side-effect free. For example, this now allows esbuild to tree-shake classes that extend from Iterator:

  // This can now be tree-shaken by esbuild:
  class ExampleIterator extends Iterator {}

• Add support for the new @view-transition CSS rule (#4313)

  With this release, esbuild now has improved support for pretty-printing and minifying the new @view-transition rule (which esbuild was previously unaware of):

  /* Original code */
  @view-transition {
    navigation: auto;
    types: check;
  }
  /* Old output */
  @​view-transition { navigation: auto; types: check; }
  /* New output */
  @​view-transition {
  navigation: auto;

... (truncated)

Commits

• 208f539 publish 0.25.12 to npm
• 5f03afd update release notes
• 6b2ee78 minify: remove css rules containing empty :is()
• f361deb add some additional known static methods
• 07aa646 automatically mark "RegExp.escape()" calls as pure
• 9039c46 simplify some call expression checks
• 188944d add some additional known static methods
• d3c67f9 fix #4310: add Iterator and other known globals
• 4a51f0b fix: escape dev server breadcrumb hrefs properly (#4316)
• 26b29ed fix #4315: @media deduplication bug edge case
• Additional commits viewable in compare view

Updates prettier from 3.5.3 to 3.6.2

Release notes

Sourced from prettier's releases.

3.6.2

What's Changed

• Add missing blank line around code block by @​fisker in prettier/prettier#17675

🔗 Changelog

3.6.1

• Fix "Warning: File descriptor 39 closed but not opened in unmanaged mode" error when running --experimental-cli

🔗 Changelog

3.6.0

diff

🔗 Release note "Prettier 3.6: Experimental fast CLI and new OXC and Hermes plugins!"

Changelog

Sourced from prettier's changelog.

3.6.2

diff

Markdown: Add missing blank line around code block (#17675 by @​fisker)

<!-- Input -->
1. Some text, and code block below, with newline after code block
---
foo: bar


Another
List

<!-- Prettier 3.6.1 -->


Some text, and code block below, with newline after code block
---
foo: bar


Another
List



<!-- Prettier 3.6.2 -->


Some text, and code block below, with newline after code block
---
foo: bar


Another
List

3.6.1

diff

TypeScript: Allow const without initializer (#17650, #17654 by @​fisker)

// Input
</tr></table> 

... (truncated)

Commits

• 7a8b05f Release 3.6.2
• 46526b4 Add missing blank line around code block (#17675)
• a04ec11 chore(deps): update babel to v7.27.7 (#17684)
• 32be5b6 chore(deps): update dependency flow-parser to v0.274.1 (#17676)
• b55e777 Update docs about "TypeScript Configuration Files" (#17677)
• b197c99 chore(deps): update dependency @​vitejs/plugin-react to v4.6.0 (#17674)
• 1185f83 chore(deps): update dependency @​angular/compiler to v20.0.5 (#17680)
• aa1316f chore(deps): update dependency browserslist to v4.25.1 (#17671)
• c468d33 chore(deps): update dependency oxc-parser to v0.75.0 (#17672)
• 3f46d91 chore(deps): update dependency vite to v7 (#17673)
• Additional commits viewable in compare view

Updates rimraf from 6.0.1 to 6.1.0

Changelog

Sourced from rimraf's changelog.

6.1

• Move to native fs/promises usage instead of promisifying manually.

6.0

• Drop support for nodes before v20
• Add --version to CLI

5.0

• No default export, only named exports

4.4

• Provide Dirent or Stats object as second argument to filter

4.3

• Return boolean indicating whether the path was fully removed
• Add filter option
• bin: add --verbose, -v to print files as they are deleted
• bin: add --no-verbose, -V to not print files as they are deleted
• bin: add -i --interactive to be prompted on each deletion
• bin: add -I --no-interactive to not be prompted on each deletion
• 4.3.1 Fixed inappropriately following symbolic links to directories

v4.2

• Brought back glob support, using the new and improved glob v9

v4.1

• Improved hybrid module with no need to look at the .default dangly bit. .default preserved as a reference to rimraf for compatibility with anyone who came to rely on it in v4.0.
• Accept and ignore -rf and -fr arguments to the bin.

v4.0

• Remove glob dependency entirely. This library now only accepts actual file and folder names to delete.
• Accept array of paths or single path.
• Windows performance and reliability improved.
• All strategies separated into explicitly exported methods.
• Drop support for Node.js below version 14
• rewrite in TypeScript

... (truncated)

Commits

• 18dc77a 6.1.0
• 2bd2e62 changelog 6.1
• 19311cf refactor: switch to native fs.promises
• 0c437d4 Create separate dir for integration tests
• 65a3b8a Do not pass unnecessary rest args to fs functions
• 02b31b7 Use the same ignoreENOENT and fixEPERM utils everywhere
• c012f4f Mock process.platform with t.intercept
• c72278a Use tap.intercept to test bin
• 549d1e8 Configure tap coverage-map
• a76970b benchmark: add options to filter and compare benchmarks
• Additional commits viewable in compare view

Updates typescript from 5.8.3 to 5.9.3

Release notes

Sourced from typescript's releases.

TypeScript 5.9.3

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

• fixed issues query for Typescript 5.9.0 (Beta).
• fixed issues query for Typescript 5.9.1 (RC).
• No specific changes for TypeScript 5.9.2 (Stable)
• fixed issues query for Typescript 5.9.3 (Stable).

Downloads are available on:

• npm

TypeScript 5.9

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

• fixed issues query for Typescript 5.9.0 (Beta).
• fixed issues query for Typescript 5.9.1 (RC).
• No specific changes for TypeScript 5.9.2 (Stable)

Downloads are available on:

• npm

TypeScript 5.9 RC

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

• fixed issues query for Typescript 5.9.0 (Beta).
• fixed issues query for Typescript 5.9.1 (RC).

Downloads are available on:

• npm

TypeScript 5.9 Beta

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement.

• fixed issues query for Typescript 5.9.0 (Beta).

Downloads are available on:

• npm

Commits

• c63de15 Bump version to 5.9.3 and LKG
• 8428ca4 🤖 Pick PR #62438 (Fix incorrectly ignored dts file fr...) into release-5.9 (#...
• a131cac 🤖 Pick PR #62351 (Add missing Float16Array constructo...) into release-5.9 (#...
• 0424333 🤖 Pick PR #62423 (Revert PR 61928) into release-5.9 (#62425)
• bdb641a 🤖 Pick PR #62311 (Fix parenthesizer rules for manuall...) into release-5.9 (#...
• 0d9b9b9 🤖 Pick PR #61978 (Restructure CI to prepare for requi...) into release-5.9 (#...
• 2dce0c5 Intentionally regress one buggy declaration output to an older version (#62163)
• 5be3346 Bump version to 5.9.2 and LKG
• ad825f2 Bump version to 5.9.1-rc and LKG
• 463a5bf Update LKG
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions