chore(deps): bump fast-xml-parser from 4.4.0 to 4.5.6 in /docs/guides/examples/counter-dapp/frontend

[dependabot]

Bumps fast-xml-parser from 4.4.0 to 4.5.6.

Release notes

Sourced from fast-xml-parser's releases.

Summary update on all the previous releases from v4.2.4

• Multiple minor fixes provided in the validator and parser
• v6 is added for experimental use.
• ignoreAttributes support function, and array of string or regex
• Add support for parsing HTML numeric entities
• v5 of the application is ESM module now. However, JS is also supported

Note: Release section in not updated frequently. Please check CHANGELOG or Tags for latest release information.

Commits

• 42fbb0b update release info
• 805671c increase expansion limit as many system need it
• 9a2cf09 update version
• 88d0936 apply all fixes from v5
• d4eb6b4 update release version
• b1b9f63 update release info
• faccca1 sync with v5.3.9
• ab00cdc update package bundle for minor fixes
• 57c6187 Update ReadMe
• caeda37 fix: emit full JSON string from CLI when no output filename specified (#710)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[cursor]

PR Summary

Low Risk
Low risk dependency metadata update confined to the example counter-dapp frontend; main risk is unexpected build/runtime differences from the fast-xml-parser patch update or lockfile regen.

Overview
Bumps the fast-xml-parser dependency in docs/guides/examples/counter-dapp/frontend to 4.5.6, updating the resolved tarball/integrity and package metadata in package-lock.json.

The lockfile also reflects a regeneration that removes dev: true flags from several platform-specific optional @rollup/* packages (no functional source changes).

^{Reviewed by Cursor Bugbot for commit 872f87b. Bugbot is set up for automated code reviews on this repo. Configure here.}

[cursor]

Cursor Bugbot has reviewed your changes and found 1 potential issue.

^{❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, enable autofix in the Cursor dashboard.}

^{Reviewed by Cursor Bugbot for commit 872f87b. Configure here.}

[cursor]

Rollup optional packages lost dev-only classification

Low Severity

The "dev": true flag was removed from all 16 @rollup/rollup-* platform-specific binary packages as an unintended side effect of the fast-xml-parser bump. These are optional dependencies of rollup, which itself is only needed via the vite devDependency. Without the "dev": true flag, these platform binaries will now be included in production installs (npm ci --omit=dev), unnecessarily increasing install size and time. This change is unrelated to the stated purpose of bumping fast-xml-parser.

Additional Locations (1)

• docs/guides/examples/counter-dapp/frontend/package-lock.json#L5818-L5819

 

^{Reviewed by Cursor Bugbot for commit 872f87b. Configure here.}