chore(deps): update all non-major dependencies

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence
@cloudflare/workers-types	^4.20260317.1 → ^4.20260420.1
@electric-sql/pglite (source)	^0.4.2 → ^0.4.4
@nuxt/test-utils	^4.0.0 → ^4.0.2
@nuxt/ui (source)	^4.6.0 → ^4.6.1
@nuxtjs/mdc	^0.21.0 → ^0.21.1
@types/bun (source)	^1.3.11 → ^1.3.12
@types/node (source)	^25.5.0 → ^25.6.0
@valibot/to-json-schema (source)	^1.5.0 → ^1.6.0
better-sqlite3	^12.8.0 → ^12.9.0
better-sqlite3	^12.5.0 → ^12.9.0
c12	^3.3.3 → ^3.3.4
defu	^6.1.4 → ^6.1.7
docus	^5.8.1 → ^5.10.0
drizzle-orm (source)	^0.45.1 → ^0.45.2
eslint (source)	^10.1.0 → ^10.2.1
happy-dom	^20.8.9 → ^20.9.0
isomorphic-git (source)	^1.37.4 → ^1.37.5
minimatch	^10.2.4 → ^10.2.5
nuxt-studio	^1.5.1 → ^1.6.0
slugify	^1.6.8 → ^1.6.9
std-env	^4.0.0 → ^4.1.0
tinyglobby (source)	^0.2.15 → ^0.2.16
valibot (source)	^1.2.0 → ^1.3.1
vitest (source)	^4.1.2 → ^4.1.4
vue-tsc (source)	^3.2.6 → ^3.2.7
wrangler (source)	^4.77.0 → ^4.84.0

---

Release Notes

cloudflare/workerd (@​cloudflare/workers-types)

v4.20260420.1

Compare Source

v4.20260418.1

Compare Source

v4.20260417.1

Compare Source

v4.20260416.2

Compare Source

v4.20260416.1

Compare Source

v4.20260415.1

Compare Source

v4.20260414.1

Compare Source

v4.20260413.1

Compare Source

v4.20260412.2

Compare Source

v4.20260412.1

Compare Source

v4.20260411.1

Compare Source

v4.20260410.1

Compare Source

v4.20260409.1

Compare Source

v4.20260408.1

Compare Source

v4.20260405.1

Compare Source

v4.20260404.1

Compare Source

v4.20260403.1

Compare Source

v4.20260402.1

Compare Source

v4.20260401.1

Compare Source

v4.20260331.1

Compare Source

v4.20260329.1

Compare Source

electric-sql/pglite (@​electric-sql/pglite)

v0.4.4

Compare Source

Patch Changes

• b88c5c3: Disable checkpointer

v0.4.3

Compare Source

Patch Changes

• 2ae666f: Default database, user and role are now all "postgres"
• fb95e66: Allow setting initial memory size.
• 65fc101: Disable background workers.

nuxt/test-utils (@​nuxt/test-utils)

v4.0.2

Compare Source

👉 Changelog

compare changes

🩹 Fixes

• config: Respect override dev value (#​1602)

🤖 CI

• Use pnpm publish to resolve workspace dependencies (#​1651)

❤️ Contributors

• Julien Huang (@​huang-julien)
• Vasily Kuzin (@​ExEr7um)

v4.0.1

Compare Source

👉 Changelog

compare changes

🩹 Fixes

• config: Rename deps.optimizer.web to client for vitest4 (#​1593)
• runtime-utils: Fix mockNuxtImport types when using string target (#​1592)
• config: Pass non-project options for non-nuxt simple setup (#​1582)
• config: Do not import defineConfig from vite (1aa5e8748)
• runtime: Handle ResourceLoader removal in jsdom v28 (#​1611)
• config,vitest-environment: Directly import peerDeps (#​1617)
• runtime-utils: Align mount options merge w/ vue-test-utils (#​1610)
• vitest-environment: Avoid vitest/environments import warning (#​1627)
• runtime: Avoid error when vue/test-utils is not installed (#​1646)
• config: Prefer project h3 version if present (#​1641)

🏡 Chore

• Bump vitest-environment-nuxt versions (f5ec72127)
• Use workspace dependency (14fb254a7)
• Example playwright config improve type annotation for devices (#​1581)
• pkg-pr-new prerelease vitest-environment-nuxt (#​1601)
• Allow explicit any (633c93c2a)
• Switch unit test target to dir and move type unit tests to test:types (#​1618)
• Update lockfile (8306abf00)

✅ Tests

• Add failing test for stubbed global provide (#​1314)
• Update assertions deprecated in vitest 4.1 (#​1629)
• Change example/workspace to use glob based projects setup (#​1585)

🤖 CI

• Pin github actions to full-length commit shas (2832fd6d5)
• Avoid checkout for reproduction comment (e4e67ab09)
• Rename workflow (99318b9fc)
• Correctly publish pkg-pr-new prerelease (#​1598)

❤️ Contributors

• Daniel Roe (@​danielroe)
• Yoshihiro Yamaguchi (@​yamachi4416)
• Robin (@​OrbisK)
• Paul Melero (@​paulmelero)

nuxt/ui (@​nuxt/ui)

v4.6.1

Compare Source

Bug Fixes

• ai: use part.state for streaming detection and deprecate isReasoningStreaming (d2d7543)
• ChatMessage: hide files slot when no file parts exist (9cddc8e)
• ChatMessages: keep indicator visible until first content arrives (195cce8)
• ChatMessages: reset scroll icon when messages are cleared (#​6239) (4ba3eef)
• ChatPrompt: guard enter during composition (#​6280) (a911ca8)
• DashboardSidebar: always pass collapsed: false in mobile menu slots (957a0f5), closes #​6157
• Modal/Slideover/Drawer: suppress reka ui title and description warnings (3451b8d), closes #​6240
• module: inline defaultVariants and prefix in dev template (314e23b)
• module: transpile reka-ui to prevent injection errors (#​6286) (b822c43)

nuxt-content/mdc (@​nuxtjs/mdc)

v0.21.1

Compare Source

compare changes

🏡 Chore

• Updgrade & add missing @shikijs/engine-javascript dependency (f4f3b58)

❤️ Contributors

• Farnabaz farnabaz@gmail.com

WiseLibs/better-sqlite3 (better-sqlite3)

v12.9.0

Compare Source

What's Changed

• Update SQLite to version 3.53.0 in #​1464

Full Changelog: WiseLibs/better-sqlite3@v12.8.0...v12.9.0

unjs/c12 (c12)

v3.3.4

Compare Source

compare changes

🏡 Chore

• Update deps (fe676ce)
• Bump giget to v3 (3cecdd3)

📦 Build

• Simplify exports field (99cb66f)

nuxt-content/docus (docus)

v5.10.0

Compare Source

Features

• customization: add AppHeaderLeft component (#​1332) (313ef59)
• layer: forward app config defaultVariants to subcomponents (#​1338) (8abf0d4)
• skills: make directory configurable via module options (#​1341) (764329f)

Bug Fixes

• .starters: accurate folder prefix (#​1334) (ff036f9)
• build: remove noisy vite warns (#​1344) (a95607a)
• i18n: add Dutch (nl) locales for assistant UI (#​1335) (965850f)
• i18n: add missing locale keys (#​1336) (3dd3e18)

v5.9.0

Compare Source

Features

• assistant: accept OIDC or API key (#​1323) (b21799b)
• assistant: improve mcp page tools (#​1326) (66ea500)
• layer: add option to force color-mode (#​1310) (8d8b0a7)
• ogImage: upgrade to v6 and use primary color (#​1312) (a30dcb8)
• skills: add agent skills discovery via .well-known (#​1297) (2f7861b)

Bug Fixes

• layer: do not display edit page if github url missing (#​1327) (d056a2c)
• og: limit description size (#​1325) (1981e83)
• og: set og image as static (#​1324) (46eb49d)
• starters: use extend in nuxt config (#​1328) (c5f4580)

eslint/eslint (eslint)

v10.2.1

Compare Source

capricorn86/happy-dom (happy-dom)

v20.9.0

Compare Source

🎨 Features

• Adds support for event listener properties on Window (e.g. Window.onkeydown) - By @​capricorn86 in task #​2131

isomorphic-git/isomorphic-git (isomorphic-git)

v1.37.5

Compare Source

Bug Fixes

• reduce pack verification memory use on Node (#​2299) (846a9f9)

nuxt-content/nuxt-studio (nuxt-studio)

v1.6.0

Compare Source

Features

• data: implement swapping objects in arrays (#​396) (c84b094)
• data: improve labels for arrays of objects (#​395) (2a8e961)
• editor: add folder filtering on media picker (#​411) (6585be0)
• i18n: add custom pluralization rules for i18n (#​416) (b3c9793)
• i18n: sync and improve chinese locale (#​399) (4c4784c)

Bug Fixes

• build: externalize studio app from host vite build (#​412) (15a2346)
• collections: empty prefix not matched correctly (#​398) (5892459)
• config: prioritize CI-detected repository values (#​417) (cf2c605)
• files: skip .navigation.yml when collection source doesn't exists (#​414) (0130bed)
• host: filter null value from list (#​419) (f068f8a)
• i18n: add missing locales keys (5441313)
• media: make ipx optional to support Cloudflare Workers (#​404) (e3db8ea)
• medias: resolve ipx from http path (#​413) (3635722)
• tree: empty route path for data items (#​407) (c9eb844)

simov/slugify (slugify)

v1.6.9

Compare Source

• #​171 fix: correct CommonJS export for "module": "node16" + ESM (171) (@​karlhorky)

unjs/std-env (std-env)

v4.1.0

Compare Source

compare changes

🚀 Enhancements

• providers: Detect edgeone-pages ci (b0f8384)

❤️ Contributors

• Pooya Parsa (@​pi0)

SuperchupuDev/tinyglobby (tinyglobby)

v0.2.16

Compare Source

Fixed

• Upgraded picomatch to 4.0.4, mitigating any potential exposure to
  CVE-2026-33671
  and CVE-2026-33672

Changed

• Overhauled and optimized most internals by Torathion
• Ignore patterns are no longer compiled twice by webpro

open-circle/valibot (valibot)

v1.3.1

Compare Source

• Change MAC48_REGEX, MAC64_REGEX and MAC_REGEX to drop the i flag for better JSON Schema compatibility (pull request #​1430)
• Change hash action to use case-expanded character classes instead of the i flag (pull request #​1430)

v1.3.0

Compare Source

Many thanks to @​EskiMojo14, @​yslpn, @​alexilyaev, @​idleberg, @​BerkliumBirb and @​frenzzy for contributing to this release.

Read the release notes on our website for a quick overview of the most exciting new features in this release.

• Add guard transformation action to narrow types using type predicates (pull request #​1204)
• Add parseBoolean transformation action to parse boolean values from strings and other types (pull request #​1251)
• Add isrc validation action to validate ISRC codes (pull request #​1373)
• Add cache method for caching schema output by input (pull request #​1170)
• Add domain validation action to validate domain names (pull request #​1284)
• Add jwsCompact validation action to validate JWS compact strings (pull request #​1348)
• Fix creditCard validation action to allow 13-digit Visa card numbers (pull request #​1347)
• Fix isoTimestamp validation action to allow optional space before UTC offset for PostgreSQL timestamptz compatibility (pull request #​1195)
• Fix types for deeply readonly default and fallback values

vitest-dev/vitest (vitest)

v4.1.4

Compare Source

   🚀 Features

• coverage:
  • Default to text reporter skipFull if agent detected  -  by @​hi-ogawa in #​10018 (53757)
• experimental:
  • Expose assertion as a public field  -  by @​sheremet-va in #​10095 (a120e)
  • Support aria snapshot  -  by @​hi-ogawa, Claude Opus 4.6 (1M context), @​AriPerkkio, Codex and @​sheremet-va in #​9668 (d4fbb)
• reporter:
  • Add filterMeta option to json reporter  -  by @​nami8824 and @​sheremet-va in #​10078 (b77de)

   🐞 Bug Fixes

• Use "black" foreground for labeled terminal message to ensure contrast  -  by @​hi-ogawa in #​10076 (203f0)
• Make expect(..., message) consistent as error message prefix  -  by @​hi-ogawa and Codex in #​10068 (a1b5f)
• Do not hoist imports whose names match class properties .  -  by @​SunsetFi in #​10093 and #​10094 (0fc4b)
• browser: Spread user server options into browser Vite server in project  -  by @​GoldStrikeArch in #​10049 (65c9d)

    View changes on GitHub

v4.1.3

Compare Source

   🚀 Experimental Features

• Add experimental.preParse flag  -  by @​sheremet-va in #​10070 (78273)
• Support browser.locators.exact option  -  by @​sheremet-va in #​10013 (48799)
• Add TestAttachment.bodyEncoding  -  by @​hi-ogawa in #​9969 (89ca0)
• Support custom snapshot matcher  -  by @​hi-ogawa, Claude Sonnet 4.6 and Codex in #​9973 (59b0e)

   🐞 Bug Fixes

• Advance fake timers with expect.poll interval  -  by @​hi-ogawa and Claude Sonnet 4.6 in #​10022 (3f5bf)
• Add @vitest/coverage-v8 and @vitest/coverage-istanbul as optional dependency  -  by @​alan-agius4 in #​10025 (146d4)
• Fix defineHelper for webkit async stack trace + update playwright 1.59.0  -  by @​hi-ogawa in #​10036 (5a5fa)
• Fix suite hook throwing errors for unused auto test-scoped fixture  -  by @​hi-ogawa and Claude Sonnet 4.6 in #​10035 (39865)
• expect:
  • Remove JestExtendError.context from verbose error reporting  -  by @​hi-ogawa in #​9983 (66751)
  • Don't leak "runner" types  -  by @​sheremet-va in #​10004 (ec204)
• snapshot:
  • Fix flagging obsolete snapshots for snapshot properties mismatch  -  by @​hi-ogawa and Claude Sonnet 4.6 in #​9986 (6b869)
  • Export custom snapshot matcher helper from vitest  -  by @​hi-ogawa and Codex in #​10042 (691d3)
• ui:
  • Don't leak vite types  -  by @​sheremet-va in #​10005 (fdff1)
• vm:
  • Fix external module resolve error with deps optimizer query  -  by @​hi-ogawa and Claude Sonnet 4.6 in #​10024 (9dbf4)

    View changes on GitHub

vuejs/language-tools (vue-tsc)

v3.2.7

Compare Source

component-meta

• fix: preserve non-ASCII characters in prop default values (#​6012) - Thanks to @​ef81sp!

workspace

• chore: bump typescript to 6.0.3 (#​6017) - Thanks to @​KazariEX!

cloudflare/workers-sdk (wrangler)

v4.84.0

Compare Source

Minor Changes

• #​13326 4a9ba90 Thanks @​mattzcarey! - Add Artifacts binding support to wrangler

  You can now configure Artifacts bindings in your wrangler configuration:

  // wrangler.jsonc
  {
    "artifacts": [{ "binding": "MY_ARTIFACTS", "namespace": "default" }]
  }

  Type generation produces the correct Artifacts type reference from the workerd type definitions:

  interface Env {
    MY_ARTIFACTS: Artifacts;
  }

• #​13567 d8c895a Thanks @​gpanders! - Rename the documented containers SSH config option to ssh

  Wrangler now accepts and documents containers.ssh in config files while continuing to accept containers.wrangler_ssh as an undocumented backwards-compatible alias. Wrangler still sends and reads wrangler_ssh when talking to the containers API.

• #​13571 7dc0433 Thanks @​must108! - Add regional and jurisdictional placement constraints for Containers. Users can now set constraints.regions and constraints.jurisdiction in wrangler config to control where containers run.

• #​12600 50bf819 Thanks @​penalosa! - Use workerd's debug port to power cross-process service bindings, Durable Objects, and tail workers via the dev registry. This enables Durable Object RPC via the dev registry, and is an overall stability improvement.

Patch Changes

• #​13160 05f4443 Thanks @​JoaquinGimenez1! - Log a helpful error message when AI binding requests fail with a 403 authentication error

  Previously, when the AI proxy token expired during a long session, users received an unhelpful 403 error. Now, wrangler detects error code 1031 and suggests running wrangler login to refresh the token.

• #​13557 8ca78bb Thanks @​dependabot! - Update dependencies of "miniflare", "wrangler"

  The following dependency versions have been updated:

  Dependency	From	To
  workerd	1.20260415.1	1.20260416.2

• #​13579 b6e1351 Thanks @​dependabot! - Update dependencies of "miniflare", "wrangler"

  The following dependency versions have been updated:

  Dependency	From	To
  workerd	1.20260416.2	1.20260417.1

• #​13604 d8314c6 Thanks @​petebacondarwin! - Update dependencies of "miniflare", "wrangler"

  The following dependency versions have been updated:

  Dependency	From	To
  workerd	1.20260417.1	1.20260420.1

• #​13515 b35617b Thanks @​petebacondarwin! - fix: ensure esbuild context is disposed during teardown

  The esbuild bundler cleanup function could race with the initial build. If BundlerController.teardown() ran before the initial build() completed, the stopWatching closure variable would still be undefined, so the esbuild context was never disposed. This left the esbuild child process running, keeping the Node.js event loop alive and causing processes to hang instead of exiting cleanly.

  The cleanup function now awaits the build promise before calling stopWatching, ensuring the esbuild context is always properly disposed.

• #​13470 4fda685 Thanks @​penalosa! - fix: prevent remote binding sessions from expiring during long-running dev sessions

  Preview tokens for remote bindings expire after one hour. Previously, the first request after expiry would fail before a refresh was triggered. This change proactively refreshes the token at 50 minutes so no request ever sees an expired session.

  The reactive recovery path is also improved: error code: 1031 responses (returned by bindings such as Workers AI when their session times out) now correctly trigger a refresh, where previously only Invalid Workers Preview configuration HTML responses did.

  Auth credentials are now resolved lazily when a remote proxy session starts rather than at bundle-complete time. This means that if your OAuth access token has been refreshed since wrangler dev started, the new token is used rather than the one captured at startup.

• #​12456 59eec63 Thanks @​venkatnikhilm! - Improve validation and error messaging for R2 CORS configuration files to catch AWS S3-style formatting mistake.

• #​13444 cc1413a Thanks @​naile! - fix: Pass force query parameter to API in pages deployment delete

• #​11918 d0a9d1c Thanks @​ksawaneh! - Allow wrangler r2 bucket list to run without a valid Wrangler config

  This is an account-level command and does not require parsing wrangler.toml/wrangler.jsonc. Previously, an invalid local config could prevent listing buckets, making it harder to fix the config.

• #​13516 4eb1da9 Thanks @​jonnyparris! - Rename "Browser Rendering" to "Browser Run" in all user-facing strings, error messages, and CLI output.

• #​13575 6d887db Thanks @​lambrospetrou! - Add D1 export prompt message for unavailability, use --skip-confirmation to not show the prompt.

• #​13473 5716d69 Thanks @​MattieTK! - Update am-i-vibing to v0.1.1 for improved agentic environme

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • "on Monday"
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
content	Ready	Preview, Comment	Apr 20, 2026 5:46pm

[pkg-pr-new]

npm i https://pkg.pr.new/@nuxt/content@3663

commit: 74d7c0a