Bump the npm_and_yarn group across 1 directory with 5 updates

[dependabot]

Bumps the npm_and_yarn group with 5 updates in the / directory:

Package	From	To
bootstrap	5.3.3	5.3.4
vue	3.4.33	3.4.34
postcss	8.4.46	8.4.47
http-proxy-middleware	2.0.6	2.0.9
nanoid	3.3.7	3.3.11

Updates bootstrap from 5.3.3 to 5.3.4

Release notes

Sourced from bootstrap's releases.

v5.3.4

Changes

• #40888: Dependabot: switch to grouped updates

🚀 Features

• #41299: Typo fixed
• #41187: Docs: mention removal of util.js in migration guide
• #41228: Docs: Simplify ids for checks, radios and switches
• #41150: Update fixtureId to FIXTURE_ID for consistency
• #40965: Docs: Use <article> element for example cards
• #40932: Docs: add ngx-bootstrap to JavaScript frameworks list
• #40790: Docs: Drop .grid where it shouldn't be used
• #40821: Docs: precise how to add new .order-* classes in 'Layout > Columns'
• #40914: Docs: drop useless .justify-content-start class in homepage
• #40876: Remove unneeded flexbug workaround
• #40870: Docs: Update modal min-height inline style
• #40844: Docs: Remove mention about Safari's limited support flexbox gap
• #40620: Docs: minor accessibility improvements for Examples
• #40619: Docs: Fix a minor accessibility issue (checkout example missing h1)
• #40577: Docs: Add main element to Cheatsheet Examples
• #39815: Docs: drop unused .bi-exclamation-triangle-fill class
• #40507: Docs: HTTPS link to ikons iconset
• #39777: Docs: fix Reddit URL to avoid redirection
• #39697: refactor(accordion): merge selectors for border-radius rule

🎨 CSS

• #41336: Fix modal and offcanvas header collapse
• #41126: Fix display issues of close button in contextual light and dark modes
• #40695: Fix light mode carousel in dark mode
• #41004: Add workarounds for postcss-values-parser error (negative values in calc())
• #41013: Align floating labels with form-select sizes
• #40931: Fix: correct typo in background-blend-mode value
• #40900: Remove unnecessary duplicated CSS class name
• #40876: Remove unneeded flexbug workaround
• #40844: Docs: Remove mention about Safari's limited support flexbox gap
• #40623: Fix use of declarations after nested rules (deprecated in Sass 1.77.7)
• #39720: Floating labels: Fix max-width and background-color
• #40488: button-group: Fix btn-group-vertical by using same rules as btn-group
• #39804: Optimize Sass SVG files
• #39494: Change floating label placeholder's color
• #39697: refactor(accordion): merge selectors for border-radius rule

☕️ JavaScript

• #38411: Add note about cancelling modal events to modal.md
• #41150: Update fixtureId to FIXTURE_ID for consistency
• #40803: Fix popover toggle twice to close
• #38725: Fix this reference for functions

... (truncated)

Commits

• 51581ed Release v5.3.4 (#40656)
• eed621d Build(deps-dev): Bump the development-dependencies group across 1 directory w...
• 253db02 Add active scale effect to animate-img (#40878)
• ed2bf13 Fix null modal-content-color in modal.scss (#39977)
• 51e7519 Quick fix for masthead banner icon spacing
• e304e6a Reintroduce #35759 and adding a guard rail on the active state
• 881ed59 Add .border-circle and .border-pill to the radius size part of the docume...
• ed25368 [Docs] Remove some unnecessary Twitter references/examples (#41174)
• a2c9b39 Fix animation when overriding --bs-progress-height
• 25965ba Add missing hyphen to 'Package managed'
• Additional commits viewable in compare view

Updates vue from 3.4.33 to 3.4.34

Release notes

Sourced from vue's releases.

v3.4.34

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

Changelog

Sourced from vue's changelog.

3.5.16 (2025-05-29)

Reverts

• Revert "fix(compiler-sfc): add scoping tag to trailing universal selector" (#13406) (19f23b1), closes #13406
• Revert "fix(compiler-sfc): add error handling for defineModel() without variable" (#13390) (42f879f), closes #13390

3.5.15 (2025-05-26)

Bug Fixes

• compat: ensure false value on input retains value attribute (#13216) (1a66474), closes #13205
• compat: should not warn COMPILER_V_BIND_OBJECT_ORDER when using v-bind together with v-for (#12993) (93949e6), closes #12992
• compile-sfc: handle inline template source map in prod build (#12701) (89edc6c), closes #12682 vitejs/vite-plugin-vue#500
• compiler-core: ensure mapping is added only if node source is available (#13285) (d37a2ac), closes #13261 vitejs/vite-plugin-vue#368
• compiler-dom: improve HTML nesting validation to allow any child element within template tag (#13320) (163b365), closes #13318
• compiler-sfc: add error handling for defineModel() without variable assignment (#13352) (00734af), closes #13280
• compiler-sfc: add scoping tag to trailing universal selector (#12918) (949df80), closes #12906
• compiler-sfc: improve type inference for TSTypeAliasDeclaration with better runtime type detection (#13245) (cf5a5e0), closes #13240
• compiler-sfc: simulate allowArbitraryExtensions on resolving type (#13301) (f7ce5ae), closes #13295
• custom-element: allow injecting values ​​from app context in nested elements (#13219) (b991075), closes #13212
• custom-element: ensure proper remount and prevent redundant slot parsing with shadowRoot false (#13201) (1d41d4d), closes #13199
• custom-element: preserve appContext during update (#12455) (013749e), closes #12453
• custom-element: properly resolve props for sync component defs (#12855) (a683c80), closes #12854
• hydration: handle transition appear hydration edge case (#13339) (35aeae7), closes #13335
• hydration: skip lazy hydration for patched components (#13283) (80055fd), closes #13255
• suspense: handle edge case in patching list nodes within Suspense (#13306) (772b008), closes #13305
• teleport: handle deferred teleport updates before and after mount (#13350) (d15dce3), closes #13349
• types: avoid merging component instance into $props in ComponentInstance (#12870) (f44feed), closes #12751
• types: exclude undefined from inferred prop types with default values (#13007) (5179d32), closes #13006
• watch: update oldValue before running cb to prevent stale value (#12296) (c69c4bb), closes #12294

3.5.14 (2025-05-15)

Bug Fixes

• compat: correct deprecation message for v-bind.sync usage (#13137) (466b30f), closes #13133
• compiler-core: remove slot cache from parent renderCache during unmounting (#13215) (5d166f3)
• compiler-sfc: fix scope handling for props destructure in function parameters and catch clauses (8e34357), closes #12790
• compiler-sfc: treat the return value of useTemplateRef as a definite ref (#13197) (8ae1122)
• compiler: fix spelling error in domTagConfig (#13043) (388295b)
• customFormatter: properly accessing ref value during debugger (#12948) (fdbd026)
• hmr/teleport: adjust static children traversal for HMR in dev mode (#12819) (5e37dd0), closes #12816

... (truncated)

Commits

• 9111252 release: v3.4.34
• b5cad0e refactor: use hasChanged for useModel comparisons
• a18f1ec fix(defineModel): correct update with multiple changes in same tick (#11430)
• See full diff in compare view

Updates postcss from 8.4.46 to 8.4.47

Release notes

Sourced from postcss's releases.

8.4.47

• Removed debug code.

Changelog

Sourced from postcss's changelog.

8.4.47

• Removed debug code.

Commits

• 5e6fd13 Release 8.4.47 version
• 714bc10 Typo
• See full diff in compare view

Updates http-proxy-middleware from 2.0.6 to 2.0.9

Release notes

Sourced from http-proxy-middleware's releases.

v2.0.9

What's Changed

• fix(fixRequestBody): check readableLength by @​chimurai in chimurai/http-proxy-middleware#1097
• chore(package): v2.0.9 by @​chimurai in chimurai/http-proxy-middleware#1099

Full Changelog: chimurai/http-proxy-middleware@v2.0.8...v2.0.9

v2.0.8

What's Changed

• fix(fixRequestBody): prevent multiple .write() calls by @​chimurai in chimurai/http-proxy-middleware#1090
• fix(fixRequestBody): handle invalid request by @​chimurai in chimurai/http-proxy-middleware#1091
• chore(package): v2.0.8 by @​chimurai in chimurai/http-proxy-middleware#1094

Full Changelog: chimurai/http-proxy-middleware@v2.0.7...v2.0.8

v2.0.7

Full Changelog: chimurai/http-proxy-middleware@v2.0.6...v2.0.7

v2.0.7-beta.1

Full Changelog: chimurai/http-proxy-middleware@v2.0.7-beta.0...v2.0.7-beta.1

v2.0.7-beta.0

Full Changelog: chimurai/http-proxy-middleware@v2.0.6...v2.0.7-beta.0

Changelog

Sourced from http-proxy-middleware's changelog.

v2.0.9

• fix(fixRequestBody): check readableLength

v2.0.8

• fix(fixRequestBody): prevent multiple .write() calls
• fix(fixRequestBody): handle invalid request

v2.0.7

• ci(github actions): add publish.yml
• fix(filter): handle errors

Commits

• 617a7c9 chore(package): v2.0.9 (#1099)
• d22d587 fix(fixRequestBody): check readableLength (#1097)
• d03d51b chore(package): v2.0.8 (#1094)
• c50dd06 fix(fixRequestBody): handle invalid request (#1091)
• 76a9d8d fix(fixRequestBody): prevent multiple .write() calls (#1090)
• 1e92339 ci(github-actions): fix npm tag
• 90afb7c chore(package): v2.0.7
• 0b4274e fix(filter): handle errors
• 1bd6dd5 ci(github actions): add publish.yml
• See full diff in compare view

Updates nanoid from 3.3.7 to 3.3.11

Release notes

Sourced from nanoid's releases.

3.3.11

• Fixed React Native support.

3.3.10

• Fixed React Native support (by @​steida).

3.3.9

• Reduced npm package size.

Changelog

Sourced from nanoid's changelog.

3.3.11

• Fixed React Native support.

3.3.10

• Fixed React Native support (by @​steida).

3.3.9

• Reduced npm package size.

3.3.8

• Fixed a way to break Nano ID by passing non-integer size (by @​myndzi).

Commits

• 37289ce Release 3.3.11 version
• 23690b7 Fix CI
• c147962 Fix RN support
• a83734e Move to manually ESM/CJS dual package
• bb12e8a Release 3.3.10 version
• 8f44264 Fix Expo support
• adf9b0c Release 3.3.9 version
• 1c6f088 Remove dev file from npm package
• 3044cd5 Release 3.3.8 version
• 4fe3495 Update size limit
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
facechess	❌ Failed (Inspect)			Jun 3, 2025 1:10pm