dev: bump the safe group across 1 directory with 16 updates

[dependabot]

Bumps the safe group with 16 updates in the / directory:

Package	From	To
@formatjs/intl-datetimeformat	7.3.1	7.3.2
@formatjs/intl-displaynames	7.3.1	7.3.2
@formatjs/intl-listformat	8.3.1	8.3.2
@formatjs/intl-locale	5.3.1	5.3.2
@formatjs/intl-numberformat	9.3.1	9.3.2
@formatjs/intl-pluralrules	6.3.1	6.3.2
@formatjs/intl-relativetimeformat	12.3.1	12.3.2
@sentry/react	10.47.0	10.49.0
apexcharts	5.10.5	5.10.6
@inquirer/prompts	8.4.0	8.4.2
@storybook/cli	10.3.4	10.3.5
cypress	15.13.0	15.14.0
html-webpack-plugin	5.6.6	5.6.7
prettier	3.8.1	3.8.3
wait-on	9.0.4	9.0.5
webpack	5.105.4	5.106.2

Updates @formatjs/intl-datetimeformat from 7.3.1 to 7.3.2

Release notes

Sourced from @​formatjs/intl-datetimeformat's releases.

@​formatjs/intl-datetimeformat@​7.3.2

7.3.2 (2026-04-13)

Reverts

• deps: revert gazelle migration phases 1-3 (#6205) (4c04aa2), closes #6197 #6198 #6199 #6195 #6196 - by @​longlho

Commits

• 0f5e9f8 build: publish
• 1c97d1c chore(deps): regen lockfile
• 4121d52 fix(deps): handle oxc parser errors gracefully instead of crashing (#6362)
• b2f095a fix(deps): handle oxc parser errors gracefully (#6361)
• b7e17a8 refactor(deps): replace tree-sitter with oxc for gazelle import parsing (#6360)
• 6c4ee92 refactor(deps): auto-generate gazelle rules, remove package_json attr (#6357)
• 3621526 refactor(deps): move generate_ide_tsconfig_json into formatjs_library (#6356)
• b3ed65a refactor(deps): migrate ts_compile packages to formatjs_library (#6355)
• 8688c63 refactor(deps): minor gazelle plugin cleanup (#6354)
• 25c04ab refactor(deps): auto-discover test fixtures, remove excludeFixtures from gaze...
• Additional commits viewable in compare view

Updates @formatjs/intl-displaynames from 7.3.1 to 7.3.2

Release notes

Sourced from @​formatjs/intl-displaynames's releases.

@​formatjs/intl-displaynames@​7.3.2

7.3.2 (2026-04-13)

Reverts

• deps: revert gazelle migration phases 1-3 (#6205) (4c04aa2), closes #6197 #6198 #6199 #6195 #6196 - by @​longlho

Commits

• 0f5e9f8 build: publish
• 1c97d1c chore(deps): regen lockfile
• 4121d52 fix(deps): handle oxc parser errors gracefully instead of crashing (#6362)
• b2f095a fix(deps): handle oxc parser errors gracefully (#6361)
• b7e17a8 refactor(deps): replace tree-sitter with oxc for gazelle import parsing (#6360)
• 6c4ee92 refactor(deps): auto-generate gazelle rules, remove package_json attr (#6357)
• 3621526 refactor(deps): move generate_ide_tsconfig_json into formatjs_library (#6356)
• b3ed65a refactor(deps): migrate ts_compile packages to formatjs_library (#6355)
• 8688c63 refactor(deps): minor gazelle plugin cleanup (#6354)
• 25c04ab refactor(deps): auto-discover test fixtures, remove excludeFixtures from gaze...
• Additional commits viewable in compare view

Updates @formatjs/intl-listformat from 8.3.1 to 8.3.2

Release notes

Sourced from @​formatjs/intl-listformat's releases.

@​formatjs/intl-listformat@​8.3.2

8.3.2 (2026-04-13)

Bug Fixes

• deps: fix broken GitHub URLs in changelogs (#6252) (f6f693f), closes #6248 - by @​longlho

Reverts

• deps: revert gazelle migration phases 1-3 (#6205) (4c04aa2), closes #6197 #6198 #6199 #6195 #6196 - by @​longlho

Commits

• 0f5e9f8 build: publish
• 1c97d1c chore(deps): regen lockfile
• 4121d52 fix(deps): handle oxc parser errors gracefully instead of crashing (#6362)
• b2f095a fix(deps): handle oxc parser errors gracefully (#6361)
• b7e17a8 refactor(deps): replace tree-sitter with oxc for gazelle import parsing (#6360)
• 6c4ee92 refactor(deps): auto-generate gazelle rules, remove package_json attr (#6357)
• 3621526 refactor(deps): move generate_ide_tsconfig_json into formatjs_library (#6356)
• b3ed65a refactor(deps): migrate ts_compile packages to formatjs_library (#6355)
• 8688c63 refactor(deps): minor gazelle plugin cleanup (#6354)
• 25c04ab refactor(deps): auto-discover test fixtures, remove excludeFixtures from gaze...
• Additional commits viewable in compare view

Updates @formatjs/intl-locale from 5.3.1 to 5.3.2

Release notes

Sourced from @​formatjs/intl-locale's releases.

@​formatjs/intl-locale@​5.3.2

5.3.2 (2026-04-13)

Reverts

• deps: revert gazelle migration phases 1-3 (#6205) (4c04aa2), closes #6197 #6198 #6199 #6195 #6196 - by @​longlho

Commits

• 0f5e9f8 build: publish
• 1c97d1c chore(deps): regen lockfile
• 4121d52 fix(deps): handle oxc parser errors gracefully instead of crashing (#6362)
• b2f095a fix(deps): handle oxc parser errors gracefully (#6361)
• b7e17a8 refactor(deps): replace tree-sitter with oxc for gazelle import parsing (#6360)
• 6c4ee92 refactor(deps): auto-generate gazelle rules, remove package_json attr (#6357)
• 3621526 refactor(deps): move generate_ide_tsconfig_json into formatjs_library (#6356)
• b3ed65a refactor(deps): migrate ts_compile packages to formatjs_library (#6355)
• 8688c63 refactor(deps): minor gazelle plugin cleanup (#6354)
• 25c04ab refactor(deps): auto-discover test fixtures, remove excludeFixtures from gaze...
• Additional commits viewable in compare view

Updates @formatjs/intl-numberformat from 9.3.1 to 9.3.2

Release notes

Sourced from @​formatjs/intl-numberformat's releases.

@​formatjs/intl-numberformat@​9.3.2

9.3.2 (2026-04-13)

Reverts

• deps: revert gazelle migration phases 1-3 (#6205) (4c04aa2), closes #6197 #6198 #6199 #6195 #6196 - by @​longlho

Commits

• 0f5e9f8 build: publish
• 1c97d1c chore(deps): regen lockfile
• 4121d52 fix(deps): handle oxc parser errors gracefully instead of crashing (#6362)
• b2f095a fix(deps): handle oxc parser errors gracefully (#6361)
• b7e17a8 refactor(deps): replace tree-sitter with oxc for gazelle import parsing (#6360)
• 6c4ee92 refactor(deps): auto-generate gazelle rules, remove package_json attr (#6357)
• 3621526 refactor(deps): move generate_ide_tsconfig_json into formatjs_library (#6356)
• b3ed65a refactor(deps): migrate ts_compile packages to formatjs_library (#6355)
• 8688c63 refactor(deps): minor gazelle plugin cleanup (#6354)
• 25c04ab refactor(deps): auto-discover test fixtures, remove excludeFixtures from gaze...
• Additional commits viewable in compare view

Updates @formatjs/intl-pluralrules from 6.3.1 to 6.3.2

Release notes

Sourced from @​formatjs/intl-pluralrules's releases.

@​formatjs/intl-pluralrules@​6.3.2

6.3.2 (2026-04-13)

Reverts

• deps: revert gazelle migration phases 1-3 (#6205) (4c04aa2), closes #6197 #6198 #6199 #6195 #6196 - by @​longlho

Commits

• 0f5e9f8 build: publish
• 1c97d1c chore(deps): regen lockfile
• 4121d52 fix(deps): handle oxc parser errors gracefully instead of crashing (#6362)
• b2f095a fix(deps): handle oxc parser errors gracefully (#6361)
• b7e17a8 refactor(deps): replace tree-sitter with oxc for gazelle import parsing (#6360)
• 6c4ee92 refactor(deps): auto-generate gazelle rules, remove package_json attr (#6357)
• 3621526 refactor(deps): move generate_ide_tsconfig_json into formatjs_library (#6356)
• b3ed65a refactor(deps): migrate ts_compile packages to formatjs_library (#6355)
• 8688c63 refactor(deps): minor gazelle plugin cleanup (#6354)
• 25c04ab refactor(deps): auto-discover test fixtures, remove excludeFixtures from gaze...
• Additional commits viewable in compare view

Updates @formatjs/intl-relativetimeformat from 12.3.1 to 12.3.2

Release notes

Sourced from @​formatjs/intl-relativetimeformat's releases.

@​formatjs/intl-relativetimeformat@​12.3.2

12.3.2 (2026-04-13)

Bug Fixes

• deps: fix broken GitHub URLs in changelogs (#6252) (f6f693f), closes #6248 - by @​longlho

Reverts

• deps: revert gazelle migration phases 1-3 (#6205) (4c04aa2), closes #6197 #6198 #6199 #6195 #6196 - by @​longlho

Commits

• 0f5e9f8 build: publish
• 1c97d1c chore(deps): regen lockfile
• 4121d52 fix(deps): handle oxc parser errors gracefully instead of crashing (#6362)
• b2f095a fix(deps): handle oxc parser errors gracefully (#6361)
• b7e17a8 refactor(deps): replace tree-sitter with oxc for gazelle import parsing (#6360)
• 6c4ee92 refactor(deps): auto-generate gazelle rules, remove package_json attr (#6357)
• 3621526 refactor(deps): move generate_ide_tsconfig_json into formatjs_library (#6356)
• b3ed65a refactor(deps): migrate ts_compile packages to formatjs_library (#6355)
• 8688c63 refactor(deps): minor gazelle plugin cleanup (#6354)
• 25c04ab refactor(deps): auto-discover test fixtures, remove excludeFixtures from gaze...
• Additional commits viewable in compare view

Updates @sentry/react from 10.47.0 to 10.49.0

Release notes

Sourced from @​sentry/react's releases.

10.49.0

Important Changes

• feat(browser): Add View Hierarchy integration (#14981)

  A new viewHierarchyIntegration captures the DOM structure when an error occurs, providing a snapshot of the page state for debugging. Enable it in your Sentry configuration:

  import * as Sentry from '@sentry/browser';
  Sentry.init({
  dsn: 'DSN',
  integrations: [Sentry.viewHierarchyIntegration()],
  });

• feat(cloudflare): Split alarms into multiple traces and link them (#19373)

  Durable Object alarms now create separate traces for each alarm invocation, with proper linking between related alarms for better observability.

• feat(cloudflare): Enable RPC trace propagation with enableRpcTracePropagation (#19991, #20345)

  A new enableRpcTracePropagation option enables automatic trace propagation for Cloudflare RPC calls via .fetch(), ensuring distributed traces flow correctly across service bindings.

• feat(core): Add enableTruncation option to AI integrations (#20167, #20181, #20182, #20183, #20184)

  All AI integrations (OpenAI, Anthropic, Google GenAI, LangChain, LangGraph) now support an enableTruncation option to control whether large AI inputs/outputs are truncated.

• feat(opentelemetry): Vendor AsyncLocalStorageContextManager (#20243)

  The OpenTelemetry context manager is now vendored internally, reducing external dependencies and ensuring consistent behavior across environments.

Other Changes

• feat(core): Export a reusable function to add tracing headers (#20076)
• feat(core): Expose rewriteSources top level option (#20142)
• feat(deps): bump defu from 6.1.4 to 6.1.6 (#20104)
• feat(node-native): Add support for V8 v14 (Node v25+) (#20125)
• feat(node): Include global scope for eventLoopBlockIntegration (#20108)
• fix(core, node): Support loading Express options lazily (#20211)
• fix(core): Set conversation_id only on gen_ai spans (#20274)
• fix(core): Use ai.operationId for Vercel AI V6 operation name mapping (#20285)
• fix(deno): Avoid inferring invalid span op from Deno tracer (#20128)
• fix(deno): Handle reader.closed rejection from releaseLock() in streaming (#20187)
• fix(nextjs): Preserve directive prologues in turbopack loaders (#20103)
• fix(nextjs): Skip custom browser tracing setup for bot user agents (#20263)
• fix(opentelemetry): Use WeakRef for context stored on scope to prevent memory leak (#20328)
• fix(replay): Use live click attributes in breadcrumbs (#20262)

... (truncated)

Changelog

Sourced from @​sentry/react's changelog.

10.49.0

Important Changes

• feat(browser): Add View Hierarchy integration (#14981)

  A new viewHierarchyIntegration captures the DOM structure when an error occurs, providing a snapshot of the page state for debugging. Enable it in your Sentry configuration:

  import * as Sentry from '@sentry/browser';
  Sentry.init({
  dsn: 'DSN',
  integrations: [Sentry.viewHierarchyIntegration()],
  });

• feat(cloudflare): Split alarms into multiple traces and link them (#19373)

  Durable Object alarms now create separate traces for each alarm invocation, with proper linking between related alarms for better observability.

• feat(cloudflare): Enable RPC trace propagation with enableRpcTracePropagation (#19991, #20345)

  A new enableRpcTracePropagation option enables automatic trace propagation for Cloudflare RPC calls via .fetch(), ensuring distributed traces flow correctly across service bindings.

• feat(core): Add enableTruncation option to AI integrations (#20167, #20181, #20182, #20183, #20184)

  All AI integrations (OpenAI, Anthropic, Google GenAI, LangChain, LangGraph) now support an enableTruncation option to control whether large AI inputs/outputs are truncated.

• feat(opentelemetry): Vendor AsyncLocalStorageContextManager (#20243)

  The OpenTelemetry context manager is now vendored internally, reducing external dependencies and ensuring consistent behavior across environments.

Other Changes

• feat(core): Export a reusable function to add tracing headers (#20076)
• feat(core): Expose rewriteSources top level option (#20142)
• feat(deps): bump defu from 6.1.4 to 6.1.6 (#20104)
• feat(node-native): Add support for V8 v14 (Node v25+) (#20125)
• feat(node): Include global scope for eventLoopBlockIntegration (#20108)
• fix(core, node): Support loading Express options lazily (#20211)
• fix(core): Set conversation_id only on gen_ai spans (#20274)
• fix(core): Use ai.operationId for Vercel AI V6 operation name mapping (#20285)
• fix(deno): Avoid inferring invalid span op from Deno tracer (#20128)
• fix(deno): Handle reader.closed rejection from releaseLock() in streaming (#20187)
• fix(nextjs): Preserve directive prologues in turbopack loaders (#20103)
• fix(nextjs): Skip custom browser tracing setup for bot user agents (#20263)
• fix(opentelemetry): Use WeakRef for context stored on scope to prevent memory leak (#20328)
• fix(replay): Use live click attributes in breadcrumbs (#20262)

... (truncated)

Commits

• 745af79 release: 10.49.0
• 46dcef1 Merge pull request #20348 from getsentry/prepare-release/10.49.0
• bf4e188 meta(changelog): Update changelog for 10.49.0
• 5f72df5 feat(cloudflare): Enable RPC trace propagation with enableRpcTracePropagation...
• 50438f9 feat(browser): Emit web vitals as streamed spans (#19827)
• 3332fec fix(opentelemetry): Use WeakRef for context stored on scope to prevent memory...
• 684a41f ref(opentelemetry): Replace @opentelemetry/resources with inline `getSentry...
• 8b2a9dc ci: Remove Docker container for Verdaccio package publishing (#20329)
• 0007c7b ci: Extract test names for flaky test issues (#20298)
• 9b9d65c chore(ci): Bump actions/cache to v5 and actions/download-artifact to v7 (#20249)
• Additional commits viewable in compare view

Updates apexcharts from 5.10.5 to 5.10.6

Release notes

Sourced from apexcharts's releases.

💎 Version 5.10.6

Bug Fixes

• Legend stays greyed out after re-enabling hidden series; Fixed a regression where toggling a hidden series back on via the legend would leave the legend item in a greyed-out/disabled visual state. (#5189, #5196)
• Focus outline visible on mouse click; Fixed an issue where clicking anywhere on the chart would show a browser focus outline around the entire chart container. The outline now only appears during keyboard navigation.

Commits

• 3bd6308 release: 5.10.6
• 188c5ad release: 5.10.6
• f671e48 fix: continuation of PR #5196 to fix the legend greyed out issue
• ad6e5ec Merge pull request #5196 from Vitalcheffe/fix/legend-re-enable-5189
• c5c5e95 Merge pull request #5205 from apexcharts/dependabot/npm_and_yarn/basic-ftp-5.2.2
• b65c198 Merge pull request #5203 from apexcharts/dependabot/npm_and_yarn/vite-6.4.2
• a4e1b3f Merge pull request #5207 from apexcharts/dependabot/npm_and_yarn/axios-1.15.0
• 385292e build(deps): bump axios from 1.13.6 to 1.15.0
• 4a5d534 fix: don't show focus outline for the whole chart on mouse click
• 0e1954b build(deps): bump basic-ftp from 5.2.0 to 5.2.2
• Additional commits viewable in compare view

Updates @inquirer/prompts from 8.4.0 to 8.4.2

Release notes

Sourced from @​inquirer/prompts's releases.

@​inquirer/prompts@​8.4.2

• Fix: some Windows terminals would freeze and not react to keypresses.

@​inquirer/prompts@​8.4.1

• Improve expand prompt type inferrence.

Commits

• 35bda2a chore: Publish new release
• 98eee29 fix(lint): suppress no-unnecessary-type-parameters on parseJSON helper
• aba5965 chore(deps-dev): Bump @​types/node in the types group (#2088)
• db8fbf1 chore(deps-dev): Bump turbo from 2.9.5 to 2.9.6 in the build group (#2087)
• 3cdecf5 chore(deps-dev): Bump oxfmt in the formatting group (#2086)
• e370b57 chore(deps-dev): Bump the linting group with 5 updates (#2085)
• 2787267 chore(deps-dev): Bump the testing group with 3 updates (#2084)
• 0c55499 chore(deps-dev): Bump the formatting group with 2 updates (#2081)
• e7115d9 fix(@​inquirer/core): mute output after readline initialization (#2077)
• e5e14ab chore(deps): Bump dependabot/fetch-metadata from 2 to 3 (#2078)
• Additional commits viewable in compare view

Updates @storybook/cli from 10.3.4 to 10.3.5

Release notes

Sourced from @​storybook/cli's releases.

v10.3.5

10.3.5

• Core: Disable component manifest by default - #34408, thanks @​yannbf!

[!NOTE] Version >=0.5.0 of @storybook/addon-mcp enables component manifests again. If you're upgrading Storybook from version >= 10.3.0 to >= 10.3.5 and are using the MCP addon, you should also upgrade @storybook/addon-mcp to keep the docs toolset in the MCP server.

Changelog

Sourced from @​storybook/cli's changelog.

10.3.5

• Core: Disable component manifest by default - #34408, thanks @​yannbf!

[!NOTE] Version >=0.5.0 of @storybook/addon-mcp enables component manifests again. If you're upgrading Storybook from version >= 10.3.0 to >= 10.3.5 and are using the MCP addon, you should also upgrade @storybook/addon-mcp to keep the docs toolset in the MCP server.

Commits

• e486d38 Bump version from "10.3.4" to "10.3.5" [skip ci]
• See full diff in compare view

Updates cypress from 15.13.0 to 15.14.0

Release notes

Sourced from cypress's releases.

v15.14.0

Changelog: https://docs.cypress.io/app/references/changelog#15-14-0

v15.13.1

Changelog: https://docs.cypress.io/app/references/changelog#15-13-1

Commits

• b8a9db2 chore: prep Cypress for 15.14.0 release (#33616)
• 1c6935f chore: updating v8 snapshot cache (#33613)
• 7532a05 chore: release @​cypress/vite-dev-server-v7.3.0
• eaacd99 chore: Update Chrome (stable) to 147.0.7727.55 and Chrome (beta) to 148.0.777...
• acf1eef feat: support vite 8 for component testing (#33580)
• 9f1f15e revert: "fix: truncate long strings in chai inspect (#33512)" (#33611)
• bf2f052 revert: "fix: stream privileged file reads over HTTP (#33538)" (#33612)
• f7f0c57 chore: updating v8 snapshot cache (#33609)
• 585b0df fix: stream privileged file reads over HTTP (#33538)
• cebbc85 perf(driver): allowlist keys kept after log memory cleanup when tests drop ou...
• Additional commits viewable in compare view

Updates html-webpack-plugin from 5.6.6 to 5.6.7

Changelog

Sourced from html-webpack-plugin's changelog.

5.6.7 (2026-04-17)

Bug Fixes

• provide module/exports in VM sandbox for Node.js 25+ compatibility (#1889) (c862830), closes #1880 facebook/docusaurus#11545

Commits

• fdef1b4 chore(release): 5.6.7
• c862830 fix: provide module/exports in VM sandbox for Node.js 25+ compatibility (#1889)
• 0d1ff98 refactor: remove lodash usage where possible (#1888)
• See full diff in compare view

Updates prettier from 3.8.1 to 3.8.3

Release notes

Sourced from prettier's releases.

3.8.3

• SCSS: Prevent trailing comma in if() function (prettier/prettier#18471 by @​kovsu)

🔗 Changelog

3.8.2

• Support Angular v21.2

🔗 Changelog

Changelog

Sourced from prettier's changelog.

3.8.3

diff

SCSS: Prevent trailing comma in if() function (#18471 by @​kovsu)

// Input
$value: if(sass(false): 1; else: -1);
// Prettier 3.8.2
$value: if(
sass(false): 1; else: -1,
);
// Prettier 3.8.3
$value: if(sass(false): 1; else: -1);

3.8.2

diff

Angular: Support Angular v21.2 (#18722, #19034 by @​fisker)

Exhaustive typechecking with @default never;

<!-- Input -->
@switch (foo) {
  @case (1) {}
  @default never;
}
<!-- Prettier 3.8.1 -->
SyntaxError: Incomplete block "default never". If you meant to write the @ character, you should use the "&#64;" HTML entity instead. (3:3)
<!-- Prettier 3.8.2 -->
@​switch (foo) {
@​case (1) {}
@​default never;
}

arrow function and instanceof expressions.

</tr></table> 

... (truncated)

Commits

• d7108a7 Release 3.8.3
• 177f908 Prevent trailing comma in SCSS if() function (#18471)
• 1cd4066 Release @​prettier/plugin-oxc@​0.1.4
• a8700e2 Update oxc-parser to v0.125.0
• 752157c Fix tests
• 053fd41 Bump Prettier dependency to 3.8.2
• 904c636 Clean changelog_unreleased
• dc1f7fc Update dependents count
• b31557c Release 3.8.2
• 96bbaed Support Angular v21.2 (#18722)
• Additional commits viewable in compare view

Updates wait-on from 9.0.4 to 9.0.5

Release notes

Sourced from wait-on's releases.

v9.0.5

Update minor dependencies and npm audit fixes

Commits

• 5ad83d4 9.0.5
• d000c2c Merge pull request #199 from jeffbski/deps-2026-04-10
• b0e1216 npm audit fix updates
• b0b1a35 minor deps
• See full diff in compare view

Updates webpack from 5.105.4 to 5.106.2

Release notes

Sourced from webpack's releases.

v5.106.2

Patch Changes

• CSS @​import now inherits the parent module's exportType, so a file configured as "text" correctly creates a style tag when @​imported by a "style" parent. (by @​xiaoxiaojx in #20838)

• Make asset modules available in JS context when referenced from both CSS and a lazily compiled JS chunk. (by @​xiaoxiaojx in #20801)

• Include missing generator options in hash to ensure persistent cache invalidation when configuration changes (...

  Description has been truncated

[johanstokking]

LGTM