fix(deps): update all non-major dependencies

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update
@babel/types (source)	^7.27.1 → ^7.29.7			devDependencies	minor
@img/sharp-wasm32 (source)	^0.33.5 → ^0.35.2			pnpm.catalog.default	minor
@mdx-js/mdx (source)	^3.1.0 → ^3.1.1			pnpm.catalog.rspress	patch
@playwright/test (source)	^1.51.1 → ^1.61.0			pnpm.catalog.default	minor
@rsbuild/core (source)	^1.3.19 → ^1.7.5			pnpm.catalog.default	minor
@rsbuild/plugin-react (source)	^1.3.1 → ^1.4.6			pnpm.catalog.default	minor
@rslib/core (source)	^0.6.9 → ^0.23.0			pnpm.catalog.default	minor
@sindresorhus/is	^7.0.1 → ^7.2.0			pnpm.catalog.default	minor
@storybook/addon-essentials (source)	^8.6.12 → ^8.6.14			pnpm.catalog.default	patch
@storybook/addon-interactions (source)	^8.6.12 → ^8.6.14			pnpm.catalog.default	patch
@storybook/addon-links (source)	^8.6.12 → ^8.6.18			pnpm.catalog.default	patch
@storybook/addon-onboarding (source)	^8.6.12 → ^8.6.18			pnpm.catalog.default	patch
@storybook/blocks (source)	^8.6.12 → ^8.6.14			pnpm.catalog.default	patch
@storybook/react (source)	^8.6.12 → ^8.6.18			pnpm.catalog.default	patch
@storybook/test (source)	^8.6.12 → ^8.6.15			pnpm.catalog.default	patch
@testing-library/jest-dom	6.4.7 → 6.9.1			pnpm.catalog.default	minor
@types/babel__traverse (source)	^7.20.7 → ^7.28.0			devDependencies	minor
@types/debug (source)	^4.1.12 → ^4.1.13			pnpm.catalog.default	patch
@types/node (source)	^22.8.1 → ^22.19.21			pnpm.catalog.default	minor
@types/react (source)	^19.0.10 → ^19.2.17			pnpm.catalog.default	minor
@types/react-dom (source)	^19.0.10 → ^19.2.3			pnpm.catalog.default	minor
debug	^4.4.0 → ^4.4.3			pnpm.catalog.default	patch
get-port	^7.1.0 → ^7.2.0			devDependencies	minor
image-size	^2.0.1 → ^2.0.2			dependencies	patch
jsdom	^26.0.0 → ^26.1.0			pnpm.catalog.default	minor
knitwork	^1.2.0 → ^1.3.0			dependencies	minor
mlly	1.7.4 → 1.8.2			pnpm.catalog.default	minor
node (source)	>=18.0.0 → >=18.20.8			engines	minor
node	22 → 22.23.0			uses-with	minor
pnpm (source)	10.7.0 → 10.34.4			packageManager	minor
react (source)	^19.0.0 → ^19.2.7			pnpm.catalog.default	minor
react-dom (source)	^19.0.0 → ^19.2.7			pnpm.catalog.default	minor
rsbuild-plugin-publint	^0.3.2 → ^0.3.4			pnpm.catalog.default	patch
rslog	^1.1.0 → ^1.3.2			pnpm.catalog.default	minor
rspack-plugin-virtual-module	1.0.0 → 1.0.1			pnpm.catalog.default	patch
sharp (source, changelog)	^0.33.5 → ^0.35.2			pnpm.catalog.default	minor
simple-git-hooks	^2.12.1 → ^2.13.1			devDependencies	patch
storybook-addon-rslib (source)	^1.0.0 → ^1.0.3			pnpm.catalog.default	patch
storybook-react-rsbuild (source)	^1.0.0 → ^1.0.3			pnpm.catalog.default	patch
type-fest	^4.37.0 → ^4.41.0			pnpm.catalog.default	minor
typescript (source)	^5.8.2 → ^5.9.3			pnpm.catalog.rspress	minor
typescript (source)	^5.8.3 → ^5.9.3			pnpm.catalog.default	minor
ufo	^1.3.0 → ^1.6.4			pnpm.catalog.default	patch
unist-util-visit	^5.0.0 → ^5.1.0			pnpm.catalog.rspress	minor

---

Release Notes

babel/babel (@​babel/types)

v7.29.7

Compare Source

v7.29.7 (2026-05-25)

Re-release all packages with npm provenance attestations

v7.29.0

Compare Source

v7.29.0 (2026-01-31)

Thanks @​simbahax for your first PR!

🚀 New Feature

• babel-types
  • #​17750 [7.x backport] Add attributes import declaration builder (@​JLHwung)
• babel-standalone
  • #​17663 [7.x backport] feat(standalone): export async transform (@​JLHwung)
  • #​17725 [7.x backport] feat: read standalone targets from data-targets (@​JLHwung)

🐛 Bug Fix

• babel-parser
  • #​17765 fix(parser): correctly parse type assertions in extends clause (@​nicolo-ribaudo)
  • #​17723 [7.x backport] fix(parser): improve super type argument parsing (@​JLHwung)
• babel-traverse
  • #​17708 fix(traverse): provide a hub when traversing a File or Program and no parentPath is given (@​simbahax)
• babel-plugin-transform-block-scoping, babel-traverse
  • #​17737 [7.x backport] fix: Rename switch discriminant references when body creates shadowing variable (@​magic-akari)

🏃‍♀️ Performance

• babel-generator, babel-runtime-corejs3
  • #​17642 [Babel 7] Improve generator performance (@​liuxingbaoyu)

Committers: 6

• David (@​simbahax)
• Huáng Jùnliàng (@​JLHwung)
• Nicolò Ribaudo (@​nicolo-ribaudo)
• @​liuxingbaoyu
• @​magic-akari

v7.28.6

Compare Source

v7.28.6 (2026-01-12)

Thanks @​kadhirash and @​kolvian for your first PRs!

🐛 Bug Fix

• babel-cli, babel-code-frame, babel-core, babel-helper-check-duplicate-nodes, babel-helper-fixtures, babel-helper-plugin-utils, babel-node, babel-plugin-transform-flow-comments, babel-plugin-transform-modules-commonjs, babel-plugin-transform-property-mutators, babel-preset-env, babel-traverse, babel-types
  • #​17589 Improve Unicode handling in code-frame tokenizer (@​JLHwung)
• babel-plugin-transform-regenerator
  • #​17556 fix: transform-regenerator correctly handles scope (@​liuxingbaoyu)
• babel-plugin-transform-react-jsx
  • #​17538 fix: Keep jsx comments (@​liuxingbaoyu)

💅 Polish

• babel-core, babel-standalone
  • #​17606 Polish(standalone): improve message on invalid preset/plugin (@​JLHwung)

🏠 Internal

• babel-plugin-bugfix-v8-static-class-fields-redefine-readonly, babel-plugin-proposal-decorators, babel-plugin-proposal-import-attributes-to-assertions, babel-plugin-proposal-import-wasm-source, babel-plugin-syntax-async-do-expressions, babel-plugin-syntax-decorators, babel-plugin-syntax-destructuring-private, babel-plugin-syntax-do-expressions, babel-plugin-syntax-explicit-resource-management, babel-plugin-syntax-export-default-from, babel-plugin-syntax-flow, babel-plugin-syntax-function-bind, babel-plugin-syntax-function-sent, babel-plugin-syntax-import-assertions, babel-plugin-syntax-import-attributes, babel-plugin-syntax-import-defer, babel-plugin-syntax-import-source, babel-plugin-syntax-jsx, babel-plugin-syntax-module-blocks, babel-plugin-syntax-optional-chaining-assign, babel-plugin-syntax-partial-application, babel-plugin-syntax-pipeline-operator, babel-plugin-syntax-throw-expressions, babel-plugin-syntax-typescript, babel-plugin-transform-async-generator-functions, babel-plugin-transform-async-to-generator, babel-plugin-transform-class-properties, babel-plugin-transform-class-static-block, babel-plugin-transform-dotall-regex, babel-plugin-transform-duplicate-named-capturing-groups-regex, babel-plugin-transform-explicit-resource-management, babel-plugin-transform-exponentiation-operator, babel-plugin-transform-json-strings, babel-plugin-transform-logical-assignment-operators, babel-plugin-transform-nullish-coalescing-operator, babel-plugin-transform-numeric-separator, babel-plugin-transform-object-rest-spread, babel-plugin-transform-optional-catch-binding, babel-plugin-transform-optional-chaining, babel-plugin-transform-private-methods, babel-plugin-transform-private-property-in-object, babel-plugin-transform-regexp-modifiers, babel-plugin-transform-unicode-property-regex, babel-plugin-transform-unicode-sets-regex
  • #​17580 Allow Babel 8 in compatible Babel 7 plugins (@​nicolo-ribaudo)

🏃‍♀️ Performance

• babel-plugin-transform-react-jsx
  • #​17555 perf: Use lighter traversal for jsx __source,__self (@​liuxingbaoyu)

Committers: 7

• Babel Bot (@​babel-bot)
• Eliot Pontarelli (@​kolvian)
• Huáng Jùnliàng (@​JLHwung)
• Kadhirash Sivakumar (@​kadhirash)
• Nicolò Ribaudo (@​nicolo-ribaudo)
• @​liuxingbaoyu
• coderaiser (@​coderaiser)

v7.28.5

Compare Source

👓 Spec Compliance

• babel-parser
  • #​17446 Allow Runtime Errors for Function Call Assignment Targets (@​liuxingbaoyu)
• babel-helper-validator-identifier
  • #​17501 fix: update identifier to unicode 17 (@​fisker)

🐛 Bug Fix

• babel-plugin-proposal-destructuring-private
  • #​17534 Allow mixing private destructuring and rest (@​CO0Ki3)
• babel-parser
  • #​17521 Improve @babel/parser error typing (@​JLHwung)
  • #​17491 fix: improve ts-only declaration parsing (@​JLHwung)
• babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring
  • #​17519 fix: rest correctly returns plain array (@​liuxingbaoyu)
• babel-helper-create-class-features-plugin, babel-helper-member-expression-to-functions, babel-plugin-transform-block-scoping, babel-plugin-transform-optional-chaining, babel-traverse, babel-types
  • #​17503 Fix JSXIdentifier handling in isReferencedIdentifier (@​JLHwung)
• babel-traverse
  • #​17504 fix: ensure scope.push register in anonymous fn (@​JLHwung)

🏠 Internal

• babel-types
  • #​17494 Type checking babel-types scripts (@​JLHwung)

🏃‍♀️ Performance

• babel-core
  • #​17490 Faster finding of locations in buildCodeFrameError (@​liuxingbaoyu)

v7.28.4

Compare Source

🏠 Internal

• babel-core, babel-helper-check-duplicate-nodes, babel-traverse, babel-types
  • #​17493 Update Jest to v30.1.1 (@​JLHwung)
• babel-plugin-transform-regenerator
  • #​17455 chore: Clean up transform-regenerator (@​liuxingbaoyu)
• babel-core
  • #​17474 Switch to @​jridgewell/remapping (@​mrginglymus)

v7.28.2

Compare Source

🐛 Bug Fix

• babel-types
  • #​17445 [babel 7] Make operator param in t.tsTypeOperator optional (@​nicolo-ribaudo)
• babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-regenerator, babel-preset-env, babel-runtime-corejs3
  • #​17441 fix: regeneratorDefine compatibility with es5 strict mode (@​liuxingbaoyu)

v7.28.1

Compare Source

🐛 Bug Fix

• babel-plugin-transform-async-generator-functions, babel-plugin-transform-regenerator
  • #​17426 fix: regenerator correctly handles throw outside of try (@​liuxingbaoyu)

📝 Documentation

• babel-types
  • #​17422 Add missing FunctionParameter docs (@​JLHwung)

↩️ Revert

• babel-plugin-proposal-destructuring-private, babel-plugin-proposal-do-expressions, babel-types
  • #​17432 Do not mark OptionalMemberExpresion as LVal (@​JLHwung)

v7.28.0

Compare Source

🚀 New Feature

• babel-node
  • #​17147 Support top level await in node repl (@​liuxingbaoyu)
• babel-types
  • #​17258 feat(matchesPattern): support super/private/meta (@​JLHwung)
• babel-compat-data, babel-preset-env
  • #​17355 Add explicit resource management to preset-env (@​JLHwung)
• babel-core, babel-parser
  • #​17390 Support sourceType: "commonjs" (@​JLHwung)
• babel-generator, babel-parser
  • #​17346 Materialize explicitResourceManagement parser plugin (@​JLHwung)
• babel-plugin-proposal-destructuring-private, babel-plugin-proposal-do-expressions, babel-plugin-transform-object-rest-spread, babel-traverse, babel-types
  • #​17391 LVal coverage updates (Part 2) (@​JLHwung)
• babel-parser, babel-traverse, babel-types
  • #​17378 Accept bigints in t.bigIntLiteral factory (@​JLHwung)
• babel-generator, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring, babel-plugin-transform-explicit-resource-management, babel-plugin-transform-react-display-name, babel-types
  • #​17277 Transform discard binding (@​JLHwung)
• babel-generator, babel-parser, babel-plugin-proposal-destructuring-private, babel-plugin-transform-block-scoping, babel-plugin-transform-object-rest-spread, babel-plugin-transform-typescript, babel-traverse, babel-types
  • #​17163 Parse discard binding (@​JLHwung)

🐛 Bug Fix

• babel-helper-globals, babel-plugin-transform-classes, babel-traverse
  • #​17297 Create babel-helper-globals (@​JLHwung)
• babel-types
  • #​17009 feature: TSTypeOperator: keyof (#​16799) (@​coderaiser)

🏠 Internal

• babel-compat-data, babel-plugin-proposal-decorators, babel-plugin-transform-async-generator-functions, babel-plugin-transform-json-modules, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs3
  • #​17403 Update babel-polyfill packages (@​nicolo-ribaudo)

v7.27.7

Compare Source

👓 Spec Compliance

• babel-parser, babel-plugin-transform-classes
  • #​17203 Interepret parser allow* options as top level only (@​JLHwung)
• babel-parser
  • #​17371 fix: disable using in ambient context (@​JLHwung)

🐛 Bug Fix

• babel-core
  • #​17392 Improve TS babel config loading (@​JLHwung)
• babel-types
  • #​17376 fix: support negative bigint in valueToNode (@​JLHwung)
• babel-plugin-transform-parameters
  • #​17352 fix: Params of async function* should throw synchronously (@​liuxingbaoyu)

🏠 Internal

• babel-plugin-transform-destructuring, babel-plugin-transform-object-rest-spread
  • #​17389 Use NodePath#splitExportDeclaration in destructuring transforms (@​JLHwung)

v7.27.6

Compare Source

🐛 Bug Fix

• babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-regenerator, babel-preset-env, babel-runtime-corejs3
  • #​17366 fix: finally causes unexpected return value (@​liuxingbaoyu)
• babel-generator, babel-parser, babel-types
  • #​17357 Ensure syntactic ordering when visiting array-type AST nodes (@​JLHwung)

v7.27.3

Compare Source

🐛 Bug Fix

• babel-generator
  • #​17324 Improve multiline comments handling in yield/await expression (@​JLHwung)
• babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-regenerator, babel-preset-env, babel-runtime-corejs3
  • #​17328 Correctly set .displayName on GeneratorFunction (@​nicolo-ribaudo)
• babel-plugin-proposal-explicit-resource-management
  • #​17319 fix: handle shadowed binding in for using of body (@​JLHwung)
  • #​17317 fix: support named evaluation for using declaration (@​JLHwung)
• babel-plugin-proposal-decorators, babel-types
  • #​17321 fix(converter): Remove abstract modifiers in class declaration to expression conversion (@​magic-akari)
• babel-helper-module-transforms, babel-plugin-proposal-explicit-resource-management, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-umd
  • #​17257 Preserve class id when transforming using declarations with exported class (@​JLHwung)
• babel-parser
  • #​17312 fix(parser): properly handle optional markers in generator class methods (@​magic-akari)
  • #​17307 fix(parser): Terminate modifier parsing at newline (@​magic-akari)
• babel-generator, babel-parser
  • #​17308 Improve import phase parsing (@​JLHwung)

lovell/sharp (@​img/sharp-wasm32)

v0.35.2

Compare Source

• TypeScript: Add mediaType to metadata response.
  #​4492

• Improve WebAssembly fallback detection.
  #​4513

• Improve code bundler support with stub binaries.
  #​4543

• Verify GIF effort option is an integer.
  #​4544
  @​metsw24-max

• Verify recomb matrix entries are numbers.
  #​4545
  @​metsw24-max

• TypeScript: Replace namespace with named exports for ESM.
  #​4546

• Bound dilate and erode width to avoid mask-size overflow.
  #​4548
  @​metsw24-max

• Verify convolve kernel values are numbers.
  #​4549
  @​metsw24-max

v0.35.1

Compare Source

• TypeScript: Ensure type definitions are published for both ESM and CJS.
  #​4537

• WebAssembly: Ensure wrapper file is published.
  #​4538

v0.35.0

Compare Source

• Breaking: Drop support for Node.js 18, now requires Node.js >= 20.9.0.

• Breaking: Remove install script from package.json file.
  Compiling from source is now opt-in via the build script.

• Breaking: Lossy AVIF output is now tuned using SSIMULACRA2-based iq quality metrics.

• Breaking: Add limitInputChannels with a default value of 5.

• Breaking: Remove deprecated failOnError constructor property.

• Breaking: Remove deprecated paletteBitDepth from metadata response.

• Breaking: Remove deprecated properties from sharpen operation.

• Breaking: Rename format.jp2k as format.jp2 for API consistency.

• Upgrade to libvips v8.18.3 for upstream bug fixes.

• Remove experimental status from WebAssembly binaries.

• Add prebuilt binaries for FreeBSD (WebAssembly).

• Deprecate Windows 32-bit (win32-ia32) prebuilt binaries.

• Ensure TIFF output bitdepth option is limited to 1, 2 or 4.

• Add AVIF/HEIF tune option for control over quality metrics.
  #​4227

• Add keepGainMap and withGainMap to process HDR JPEG images with embedded gain maps.
  #​4314

• Add toUint8Array for output image as a TypedArray backed by a transferable ArrayBuffer.
  #​4355

• Require prebuilt binaries using static paths to aid code bundling.
  #​4380

• TypeScript: Ensure FormatEnum keys match reality.
  #​4475

• Add margin option to trim operation.
  #​4480
  @​eddienubes

• Ensure HEIF primary item is used as default page/frame.
  #​4487

• Add image Media Type (MIME Type) to metadata response.
  #​4492

• Add withDensity to set output density in EXIF metadata.
  #​4496

• Improve pkg-config path discovery.
  #​4504

• Add WebP exact option for control over transparent pixel colour values.

• Add support for ECMAScript Modules (ESM).
  #​4509
  @​florian-lefebvre

v0.34.5

Compare Source

• Upgrade to libvips v8.17.3 for upstream bug fixes.

• Add experimental support for prebuilt Linux RISC-V 64-bit binaries.

• Support building from source with npm v12+, deprecate --build-from-source flag.
  #​4458

• Add support for BigTIFF output.
  #​4459
  @​throwbi

• Improve error messaging when only warnings issued.
  #​4465

• Simplify ICC processing when retaining input profiles.
  #​4468

v0.34.4

Compare Source

• Upgrade to libvips v8.17.2 for upstream bug fixes.

• Ensure TIFF subifd and OpenSlide level input options are respected (regression in 0.34.3).

• Ensure autoOrient occurs before non-90 angle rotation.
  #​4425

• Ensure autoOrient removes existing metadata after shrink-on-load.
  #​4431

• TypeScript: Ensure KernelEnum includes linear.
  #​4441
  @​BayanBennett

• Ensure unlimited flag is passed upstream when reading TIFF images.
  #​4446

• Support Electron memory cage when reading XMP metadata (regression in 0.34.3).
  #​4451

• Add sharp-libvips rpath for yarn v5 support.
  #​4452
  @​arcanis

v0.34.3

Compare Source

v0.34.2

Compare Source

v0.34.1

Compare Source

v0.34.0

Compare Source

mdx-js/mdx (@​mdx-js/mdx)

v3.1.1

Compare Source

Fix

• 3cad7d7 @mdx-js/mdx: add dependency on acorn
• 0dc4472 @mdx-js/esbuild: fix crash with esbuild loader and jsx option
  by @​egnor in #​2593
• 84ec66e @mdx-js/esbuild: refactor to improve error conversion in esbuild
  by @​egnor in #​2595
• 2b3381a @mdx-js/rollup: fix support for query parameters in Vite
  by @​markdalgleish in #​2629

Types

• 933ab44 @mdx-js/mdx: add attributes to export/import declarations

Docs

• c156a1f Add rehype-mdx-toc to list of plugin
  by @​boning-w in #​2622
• 913659c Add recma-module-to-function to list of plugins
  by @​remcohaszing in #​2605
• 67fb1d0 Remove unneeded JSX type casting in docs, tests
• f0d20da Remove local use of JSX
  by @​remcohaszing in #​2604
• 63f39ce Remove references to twitter
• 35ac59d Refactor some docs regarding recma plugins

Full Changelog: mdx-js/mdx@3.1.0...3.1.1

microsoft/playwright (@​playwright/test)

v1.61.0

Compare Source

🔑 WebAuthn passkeys

New Credentials virtual authenticator, available via browserContext.credentials, lets tests register passkeys and answer navigator.credentials.create() / navigator.credentials.get() ceremonies in the page — no real hardware key required, works in all browsers:

const context = await browser.newContext();

// Seed a passkey your backend provisioned for a test user.
await context.credentials.create('example.com', {
  id: credentialId,
  userHandle,
  privateKey,
  publicKey,
});
await context.credentials.install();

const page = await context.newPage();
await page.goto('https://example.com/login');
// The page's navigator.credentials.get() is answered with the seeded passkey.

You can also let the app register a passkey once in a setup test, read it back with credentials.get(), and seed it into later tests — see Credentials for details.

🗃️ Web Storage

New WebStorage API, available via page.localStorage and page.sessionStorage, reads and writes the page's storage for the current origin:

await page.localStorage.setItem('token', 'abc');
const token = await page.localStorage.getItem('token');
const items = await page.sessionStorage.items();

New APIs

Network

• apiResponse.securityDetails() and apiResponse.serverAddr() mirror the browser-side response.securityDetails() and response.serverAddr().

Browser and Screencast

• New option artifactsDir in browserType.connectOverCDP() controls where artifacts such as traces and downloads are stored when attached to an existing browser.
• New option cursor in screencast.showActions() controls the cursor decoration rendered for pointer actions.
• The onFrame callback in screencast.start() now receives a timestamp of when the frame was presented by the browser.

Test runner

• The testOptions.video option now supports the same set of modes as trace: new 'on-all-retries', 'retain-on-first-failure' and 'retain-on-failure-and-retries' values. See the video modes table for which runs are recorded and kept in each mode.
• Supported expect.soft.poll(...).
• New fullConfig.argv — a snapshot of process.argv from the runner process, handy for reading custom arguments passed after the -- separator.
• New fullConfig.failOnFlakyTests mirrors the config option, so reporters can explain why a flaky run failed.
• testInfo.errors now lists each sub-error of an AggregateError as a separate entry.
• New -G command line shorthand for --grep-invert.

🛠️ Other improvements

• Playwright now supports Ubuntu 26.04.
• HAR and trace recordings now include WebSocket requests.

Browser Versions

• Chromium 149.0.7827.55
• Mozilla Firefox 151.0
• WebKit 26.5

This version was also tested against the following stable channels:

• Google Chrome 149
• Microsoft Edge 149

v1.60.0

Compare Source

🌐 HAR recording on Tracing

tracing.startHar() / tracing.stopHar() expose HAR recording as a first-class tracing API, with the same content, mode and urlFilter options as recordHar. The returned Disposable makes it easy to scope a recording with await using:

await using har = await context.tracing.startHar('trace.har');
const page = await context.newPage();
await page.goto('https://playwright.dev');
// HAR is finalized when `har` goes out of scope.

🪝 Drop API

New locator.drop() simulates an external drag-and-drop of files or clipboard-like data onto an element. Playwright dispatches dragenter, dragover, and drop with a synthetic [DataTransfer] in the page context — works cross-browser and is great for testing upload zones:

await page.locator('#dropzone').drop({
  files: { name: 'note.txt', mimeType: 'text/plain', buffer: Buffer.from('hello') },
});

await page.locator('#dropzone').drop({
  data: {
    'text/plain': 'hello world',
    'text/uri-list': 'https://example.com',
  },
});

🎯 Aria snapshots

• expect(page).toMatchAriaSnapshot() now wor

✂ Note

PR body was truncated to here.

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • Between 12:00 AM and 03:59 AM, on day 1 of the month (* 0-3 1 * *)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[coderabbitai]

📝 Walkthrough

Walkthrough

This PR performs a comprehensive dependency update across the workspace. The pnpm-workspace.yaml catalog is refreshed with newer versions of build tooling (Rsbuild, Rslib), test frameworks (Playwright, Vitest), type definitions, TypeScript, Storybook, and image processing libraries. Node.js version 22.22.3 is pinned across all GitHub Actions workflows for consistency. Root and package-level manifests are updated with bumped versions for specific dependencies (get-port, simple-git-hooks, image-size, knitwork, @babel/types, @types/babel__traverse), and the minimum Node.js requirement in packages/rspress is tightened to 18.20.8.

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title clearly and concisely describes the main change: updating non-major (minor and patch) dependencies across the project.
Description check	✅ Passed	The description is directly related to the changeset, providing a detailed changelog table and release notes for the updated dependencies.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch renovate/all-minor-patch

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@pnpm-workspace.yaml`:
- Line 6: The workspace pins mismatched Playwright packages: '`@playwright/test`'
is ^1.60.0 while 'playwright' is ^1.51.1, causing multiple playwright versions
in pnpm-lock.yaml; update the package entries so both '`@playwright/test`' and
'playwright' use the same release (e.g., ^1.60.0), then reinstall/regenerate the
lockfile (run pnpm install) so pnpm-lock.yaml only contains the aligned version;
ensure any package.jsons referencing 'playwright' or '`@playwright/test`' are
updated consistently and CI runs use the same version.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro Plus

Run ID: 1bca2cbe-1de5-433d-95b4-065e76efba9a

📥 Commits

Reviewing files that changed from the base of the PR and between 8ee6190 and 26c8e0b.

⛔ Files ignored due to path filters (1)

• pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

📒 Files selected for processing (7)

• .github/workflows/playwright.yml
• .github/workflows/release.yml
• .github/workflows/test.yml
• package.json
• packages/core/package.json
• packages/rspress/package.json
• pnpm-workspace.yaml

[coderabbitai]

⚠️ Potential issue | 🟠 Major

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
# Verify Playwright version alignment across workspace manifests and lock data.
set -euo pipefail

echo "== Catalog entries =="
rg -n "^\s*'`@playwright/test`'|^\s*playwright:" pnpm-workspace.yaml

echo
echo "== package.json entries using catalog refs =="
rg -n "\"`@playwright/test`\"|\"playwright\"" package.json packages/**/package.json

echo
echo "== Lockfile resolved versions (if present) =="
if [ -f pnpm-lock.yaml ]; then
  rg -n "`@playwright/test`@|/playwright@" pnpm-lock.yaml
else
  echo "pnpm-lock.yaml not found"
fi

Repository: rstackjs/rsbuild-image

Length of output: 405

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "== pnpm-workspace.yaml (lines 1-30) =="
nl -ba pnpm-workspace.yaml | sed -n '1,40p'

Repository: rstackjs/rsbuild-image

Length of output: 166

---

🌐 Web query:

Playwright compatibility requirement playwright and @playwright/test same version mismatch supported

💡 Result:

Yes, Playwright strictly requires that the @playwright/test package and the underlying playwright (or playwright-core) package remain synchronized at the exact same version [1][2][3]. A version mismatch between these packages will often trigger runtime errors, such as "Playwright Test compatibility check failed" [1] or "Playwright Test did not expect... to be called here" [2][4], because Playwright requires a single, consistent instance of its internal engine to manage tests and browser automation [5][3]. Key best practices to maintain this compatibility include: 1. Keep Versions Aligned: Ensure all @playwright/test, playwright, and playwright-core dependencies listed in your package.json are pinned to the same version [2][3]. Use your package manager's lock file (e.g., package-lock.json, yarn.lock) to verify that no transitive dependencies or other packages are pulling in conflicting versions [2][3]. 2. Avoid Installing Both Packages if Unnecessary: In many cases, you do not need to install both the playwright (browser automation library) and @playwright/test (test runner) packages [6][7]. If you are using the test runner, @playwright/test already includes playwright-core as a dependency [8][7]. Using both can lead to conflicts, especially if they are updated independently or installed in an order that causes symlink collisions [6][7]. 3. Deduplicate Dependencies: If you are using a monorepo or have utility packages that also depend on Playwright, ensure that they do not introduce a second, different version of the library [3][9]. Move dependencies to a higher level (e.g., the root package.json) so all projects share the same installation [5]. 4. Run Commands Correctly: Always use the Playwright CLI via npx playwright ... or your package manager's execution tool (e.g., pnpm playwright ...) to ensure the command uses the local version of Playwright installed in your node_modules, which helps prevent mismatches between the CLI version and the project dependencies [1][6].

Citations:

• 1: [Question] Github Actions test compatibility check failed mitigation? microsoft/playwright#17955
• 2: [Bug]: Error: No tests can be executed after update to 1.42.0 ("Playwright did not expect ... to be called here) microsoft/playwright#29712
• 3: [NPM] Error: Requiring @playwright/test second time - when using 2 separate npm packages microsoft/playwright#31478
• 4: [BUG] possible bug when test cannot be run from vscode microsoft/playwright#17509
• 5: [Bug]: Error: Requiring @playwright/test second time when running some tests with VS Code Test Explorer microsoft/playwright#32959
• 6: [BUG] Getting "Please install @playwright/test package to use Playwright Test." microsoft/playwright#6981
• 7: https://stackoverflow.com/questions/76310103/cannot-run-playwright-test-ui-if-playwright-package-is-installed
• 8: [BUG] Getting "Please install @playwright/test package..." after upgrading from 1.34.0 to 1.34.1 microsoft/playwright#23228
• 9: [Question] How to use Playwright Test with a test project and shared project? microsoft/playwright#15349

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "== pnpm-workspace.yaml (lines 1-20) =="
sed -n '1,20p' pnpm-workspace.yaml

echo
echo "== pnpm-lock.yaml resolved Playwright versions =="
rg -n "playwright@|playwright-core@|`@playwright/test`@" pnpm-lock.yaml | head -n 50

Repository: rstackjs/rsbuild-image

Length of output: 890

---

Align Playwright versions (@playwright/test vs playwright) to the same release.

pnpm-workspace.yaml sets @playwright/test to ^1.60.0 but playwright to ^1.51.1, and pnpm-lock.yaml contains both playwright@1.51.1 and playwright@1.60.0 (plus playwright-core), which can cause Playwright Test compatibility check/runtime failures.

Proposed fix

-  playwright: ^1.51.1
+  playwright: ^1.60.0

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@pnpm-workspace.yaml` at line 6, The workspace pins mismatched Playwright
packages: '`@playwright/test`' is ^1.60.0 while 'playwright' is ^1.51.1, causing
multiple playwright versions in pnpm-lock.yaml; update the package entries so
both '`@playwright/test`' and 'playwright' use the same release (e.g., ^1.60.0),
then reinstall/regenerate the lockfile (run pnpm install) so pnpm-lock.yaml only
contains the aligned version; ensure any package.jsons referencing 'playwright'
or '`@playwright/test`' are updated consistently and CI runs use the same version.