chore(deps): bump the patch-minor-dependencies group in /tavla with 13 updates

[dependabot]

Bumps the patch-minor-dependencies group in /tavla with 13 updates:

Package	From	To
@sentry/nextjs	10.44.0	10.45.0
firebase	12.10.0	12.11.0
graphql	16.13.1	16.13.2
jsdom	29.0.0	29.0.1
next	16.1.7	16.2.1
posthog-js	1.360.2	1.363.4
posthog-node	5.28.2	5.28.5
@next/eslint-plugin-next	16.1.7	16.2.1
@typescript-eslint/eslint-plugin	8.57.1	8.57.2
@typescript-eslint/parser	8.57.1	8.57.2
eslint	10.0.3	10.1.0
eslint-config-next	16.1.7	16.2.1
firebase-tools	15.10.1	15.11.0

Updates @sentry/nextjs from 10.44.0 to 10.45.0

Release notes

Sourced from @​sentry/nextjs's releases.

10.45.0

Important Changes

• feat(remix): Server Timing Headers Trace Propagation (#18653)

  The Remix SDK now supports automatic trace propagation via Server-Timing response headers to continue pageload traces on the client side. This means, you no longer have to define a custom meta function to add Sentry <meta> tags to your page as previously. We'll update out Remix tracing docs after this release.

Other Changes

• fix(cloudflare): Use correct env types for withSentry (#19836)
• fix(core): Align error span status message with core SpanStatusType for langchain/google-genai (#19863)
• fix(deno): Clear pre-existing OTel global before registering TracerProvider (#19723)
• fix(nextjs): Skip tracing for tunnel requests (#19861)
• fix(node-core): Recycle propagationContext for each request (#19835)
• ref(core): Simplify core utility functions for smaller bundle (#19854)

• chore(deps): bump next from 16.1.5 to 16.1.7 in /dev-packages/e2e-tests/test-applications/nextjs-16 (#19851)
• ci(release): Switch from action-prepare-release to Craft (#18763)
• fix(deps): bump devalue 5.6.3 to 5.6.4 to fix CVE-2026-30226 (#19849)
• fix(deps): bump file-type to 21.3.2 and @​nestjs/common to 11.1.17 (#19847)
• fix(deps): bump flatted 3.3.1 to 3.4.2 to fix CVE-2026-32141 (#19842)
• fix(deps): bump hono 4.12.5 to 4.12.7 in cloudflare-hono E2E test app (#19850)
• fix(deps): bump next to 15.5.13/16.1.7 to fix CVE-2026-1525, CVE-202-33036 and related (#19870)
• fix(deps): bump tar 7.5.10 to 7.5.11 to fix CVE-2026-31802 (#19846)
• fix(deps): bump undici 6.23.0 to 6.24.1 to fix multiple CVEs (#19841)
• fix(deps): bump unhead 2.1.4 to 2.1.12 to fix CVE-2026-31860 and CVE-2026-31873 (#19848)
• test(nextjs): Skip broken ISR tests (#19871)
• test(react): Add gql tests for react router (#19844)

Bundle size 📦

Path	Size
@​sentry/browser	24.93 KB
@​sentry/browser - with treeshaking flags	23.47 KB
@​sentry/browser (incl. Tracing)	41.51 KB
@​sentry/browser (incl. Tracing, Profiling)	46.07 KB
@​sentry/browser (incl. Tracing, Replay)	79.41 KB
@​sentry/browser (incl. Tracing, Replay) - with treeshaking flags	69.22 KB
@​sentry/browser (incl. Tracing, Replay with Canvas)	84 KB
@​sentry/browser (incl. Tracing, Replay, Feedback)	95.97 KB
@​sentry/browser (incl. Feedback)	41.35 KB
@​sentry/browser (incl. sendFeedback)	29.49 KB

... (truncated)

Changelog

Sourced from @​sentry/nextjs's changelog.

10.45.0

Important Changes

• feat(remix): Server Timing Headers Trace Propagation (#18653)

  The Remix SDK now supports automatic trace propagation via Server-Timing response headers to continue pageload traces on the client side. This means, you no longer have to define a custom meta function to add Sentry <meta> tags to your page as previously. We'll update out Remix tracing docs after this release.

Other Changes

• fix(cloudflare): Use correct env types for withSentry (#19836)
• fix(core): Align error span status message with core SpanStatusType for langchain/google-genai (#19863)
• fix(deno): Clear pre-existing OTel global before registering TracerProvider (#19723)
• fix(nextjs): Skip tracing for tunnel requests (#19861)
• fix(node-core): Recycle propagationContext for each request (#19835)
• ref(core): Simplify core utility functions for smaller bundle (#19854)

• chore(deps): bump next from 16.1.5 to 16.1.7 in /dev-packages/e2e-tests/test-applications/nextjs-16 (#19851)
• ci(release): Switch from action-prepare-release to Craft (#18763)
• fix(deps): bump devalue 5.6.3 to 5.6.4 to fix CVE-2026-30226 (#19849)
• fix(deps): bump file-type to 21.3.2 and @​nestjs/common to 11.1.17 (#19847)
• fix(deps): bump flatted 3.3.1 to 3.4.2 to fix CVE-2026-32141 (#19842)
• fix(deps): bump hono 4.12.5 to 4.12.7 in cloudflare-hono E2E test app (#19850)
• fix(deps): bump next to 15.5.13/16.1.7 to fix CVE-2026-1525, CVE-202-33036 and related (#19870)
• fix(deps): bump tar 7.5.10 to 7.5.11 to fix CVE-2026-31802 (#19846)
• fix(deps): bump undici 6.23.0 to 6.24.1 to fix multiple CVEs (#19841)
• fix(deps): bump unhead 2.1.4 to 2.1.12 to fix CVE-2026-31860 and CVE-2026-31873 (#19848)
• test(nextjs): Skip broken ISR tests (#19871)
• test(react): Add gql tests for react router (#19844)

Commits

• ef79d28 release: 10.45.0
• 28208bc Merge pull request #19877 from getsentry/prepare-release/10.45.0
• 2e2fd35 meta(changelog): Update changelog for 10.45.0
• 79241b0 fix(nextjs): Skip tracing for tunnel requests (#19861)
• 938ab2d ref(core): Simplify core utility functions for smaller bundle (#19854)
• 3bb4325 fix(core): Align error span status message with core SpanStatusType for lan...
• 3e5499a fix(deps): bump next to 15.5.13/16.1.7 to fix CVE-2026-1525, CVE-202-33036 an...
• 6f17b8a fix(cloudflare): Use correct env types for withSentry (#19836)
• b4b9e71 test(nextjs): Skip broken ISR tests (#19871)
• ae7206f feat(remix): Server Timing Headers Trace Propagation (#18653)
• Additional commits viewable in compare view

Updates firebase from 12.10.0 to 12.11.0

Release notes

Sourced from firebase's releases.

firebase@12.11.0

For more detailed release notes, see Firebase JavaScript SDK Release Notes.

What's Changed

@​firebase/ai@​2.10.0

Minor Changes

• 843a8d7 #9693 (fixes #9625) - Added responseJsonSchema to GenerationConfig.

Patch Changes

• Updated dependencies [2f7f426]:
  • @​firebase/util@​1.15.0
  • @​firebase/component@​0.7.2

@​firebase/data-connect@​0.5.0

Minor Changes

• 9d33dd6 #9614 - Add validateArgsWithOptions() to Data Connect (internal change, no need to add to public release notes).

Patch Changes

• 2f7f426 #9608 - Remove updateEmulatorBanner(). (No release note needed.)

• Updated dependencies [2f7f426]:

  • @​firebase/util@​1.15.0
  • @​firebase/component@​0.7.2

firebase@12.11.0

Minor Changes

• 9d33dd6 #9614 - Add validateArgsWithOptions() to Data Connect (internal change, no need to add to public release notes).

• 843a8d7 #9693 (fixes #9625) - Added responseJsonSchema to GenerationConfig.

• 78384d3 #9492 - Add support for array expressions arrayFirst, arrayFirstN,arrayLast,arrayLastN,arrayMinimum,arrayMinimumN,arrayMaximum,arrayMaximumN,arrayIndexOf, arrayLastIndexOf and arrayIndexOfAll

Patch Changes

• Updated dependencies [54ff05e, 9d33dd6, 843a8d7, a383770, 78384d3, 2f7f426]:
  • @​firebase/app@​0.14.10
  • @​firebase/firestore@​4.13.0
  • @​firebase/data-connect@​0.5.0
  • @​firebase/ai@​2.10.0
  • @​firebase/functions@​0.13.3
  • @​firebase/database@​1.1.2

... (truncated)

Commits

• 852957b Version Packages (#9727)
• ae8cf28 Merge main into release
• 843a8d7 feat(ai): Add responseJsonSchema (#9693)
• 9d33dd6 feat(data-connect): Add validateArgsWithOptions() (#9614)
• 891a0c9 update CODEOWNERs (#9724)
• 54ff05e fix(firestore): read and write user data on pipeline execute (#9715)
• c44bb9a test(firestore): add vscode debug config for enterprise lite (#9621)
• d7b1826 Fix syntax in Pipeline examples in TSDoc (#9712)
• a383770 fix: Workaround rollup terser-plugin's inconsistent property naming when usin...
• f44d826 firestore: improve documentation about CRUD promises and when they resolve (#...
• Additional commits viewable in compare view

Updates graphql from 16.13.1 to 16.13.2

Release notes

Sourced from graphql's releases.

v16.13.2 (2026-03-24)

Docs 📝

• #4611 add dev mode docs (@​yaacovCR)

Polish 💅

• #4631 Use Object.create(null) over {} to avoid prototype issues - v16 (@​benjie)

Internal 🏠

• #4626 backport: internal: streamline release process (#4615) (@​yaacovCR)

Committers: 2

• Benjie(@​benjie)
• Yaacov Rydzinski (@​yaacovCR)

Commits

• 123e958 chore(release): v16.13.2 (#4632)
• 13f130d Use Object.create(null) over {} to avoid prototype issues - v16 (#4631)
• 6ca59e1 backport: internal: streamline release process (#4615) (#4626)
• df8c53f docs: dev mode for v17 (#4611)
• See full diff in compare view

Updates jsdom from 29.0.0 to 29.0.1

Release notes

Sourced from jsdom's releases.

v29.0.1

• Fixed CSS parsing of border, background, and their sub-shorthands containing keywords or var(). (@​asamuzaK)
• Fixed getComputedStyle() to return a more functional CSSStyleDeclaration object, including indexed access support, which regressed in v29.0.0.

Commits

• 34c7d6e 29.0.1
• 8ffc811 Add benchmark for computed style property access
• 5f2434c Update dependencies and dev dependencies
• 1e8a7ff Handle global keywords in CSS shorthand property handlers
• 0b79509 Wrap getComputedStyle return value for proper indexed access
• d589a8e Fix border shorthand parsing
• e528859 Modernize release infrastructure
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for jsdom since your current version.

Updates next from 16.1.7 to 16.2.1

Release notes

Sourced from next's releases.

v16.2.1

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• docs: post release amends (#91715)
• docs: fix broken Activity Patterns demo link in preserving UI state guide (#91698)
• Fix adapter outputs for dynamic metadata routes (#91680)
• Turbopack: fix webpack loader runner layer (#91727)
• Fix server actions in standalone mode with cacheComponents (#91711)
• turbo-persistence: remove Unmergeable mmap advice (#91713)
• Fix layout segment optimization: move app-page imports to server-utility transition (#91701)
• Turbopack: lazy require metadata and handle TLA (#91705)
• [turbopack] Respect {eval:true} in worker_threads constructors (#91666)

Credits

Huge thanks to @​icyJoseph, @​abhishekmardiya, @​ijjk, @​mischnic, @​unstubbable, @​sokra, and @​lukesandberg for helping!

v16.2.1-canary.13

Misc Changes

• docs: opengraph-image papercuts: #92018
• Update revalidateTag examples to use the new two-argument signature: #92065

Credits

Huge thanks to @​icyJoseph and @​aurorascharff for helping!

v16.2.1-canary.12

Core Changes

• Upgrade React from 3cb2c420-20260324 to 9627b5a1-20260327: #92015
• [experiment] Add useOffline flag with offline retry behavior: #92011
• adapters: remove unused suffix code: #91997
• [experiment] Add useOffline hook to expose offline state to userland: #92012
• [turbopack] Don't use turborepo to build the docker image: #92029

Misc Changes

• Use RcStr directly in napi(object) structs instead of converting to String: #92014
• Rename SingleModuleReference::asset to SingleModuleReference::module: #92028

Credits

Huge thanks to @​acdlite, @​ztanner, @​mmastrac, @​sokra, and @​bgw for helping!

v16.2.1-canary.11

Core Changes

... (truncated)

Commits

• ed7d2ce v16.2.1
• 3e37bb4 docs: post release amends (#91715)
• a15ec6e docs: fix broken Activity Patterns demo link in preserving UI state guide (#9...
• 600cd2f Fix adapter outputs for dynamic metadata routes (#91680)
• 27886d3 Turbopack: fix webpack loader runner layer (#91727)
• 88fc430 Fix server actions in standalone mode with cacheComponents (#91711)
• 37aed86 turbo-persistence: remove Unmergeable mmap advice (#91713)
• d6195ec Fix layout segment optimization: move app-page imports to server-utility tran...
• 6cb97d6 Turbopack: lazy require metadata and handle TLA (#91705)
• e6b101a [turbopack] Respect {eval:true} in worker_threads constructors (#91666)
• Additional commits viewable in compare view

Updates posthog-js from 1.360.2 to 1.363.4

Release notes

Sourced from posthog-js's releases.

posthog-js@1.363.4

1.363.4

Patch Changes

• #3275 664a11b Thanks @​fasyy612! - bump rrweb dependency version (2026-03-24)
• Updated dependencies []:
  • @​posthog/types@​1.363.4

posthog-js@1.363.3

1.363.3

Patch Changes

• #3253 42fbd41 Thanks @​marandaneto! - Reduce browser SDK bundle size by ~6.6 KB (-3.7%) through code modernization, build config tuning, string deduplication, enum-to-const conversions, and property access shorthand getters. (2026-03-23)
• Updated dependencies []:
  • @​posthog/types@​1.363.3

posthog-js@1.363.2

1.363.2

Patch Changes

• #3267 e5ef520 Thanks @​ksvat! - bump rrweb dependency version (2026-03-23)

• #3260 1435ec8 Thanks @​kyleswank! - Log warning instead of throwing error when session recording script is blocked by ad blockers (2026-03-23)

• Updated dependencies []:

  • @​posthog/types@​1.363.2

posthog-js@1.363.1

1.363.1

Patch Changes

• Updated dependencies [314120a]:
  • @​posthog/core@​1.24.1
  • @​posthog/types@​1.363.1

posthog-js@1.363.0

1.363.0

Minor Changes

• #3247 7efa558 Thanks @​dmarticus! - prevent silent identity switch during bootstrap and auto-identify anonymous users (2026-03-20)

... (truncated)

Commits

• dbb9eae chore: update versions and lockfile [version bump]
• 664a11b chore: bump rrweb version to 0.0.48 (#3275)
• d7391a3 chore: update versions and lockfile [version bump]
• 42fbd41 chore(browser): reduce bundle size by 6.6 KB (-3.7%) (#3253)
• f4b928c chore: update versions and lockfile [version bump]
• 1435ec8 fix: Instead of throwing, log as an error if the recorder isn't yet fully ava...
• 693cc0d fix(react-native): prevent set -e from aborting xcode script when npm is not ...
• e5ef520 chore: bump rrweb dep version (#3267)
• 482c85f chore: update versions and lockfile [version bump]
• 314120a chore(et): clean config building (#3265)
• Additional commits viewable in compare view

Updates posthog-node from 5.28.2 to 5.28.5

Release notes

Sourced from posthog-node's releases.

posthog-node@5.28.5

5.28.5

Patch Changes

• Updated dependencies [314120a]:
  • @​posthog/core@​1.24.1

posthog-node@5.28.4

5.28.4

Patch Changes

• Updated dependencies [9cd2313]:
  • @​posthog/core@​1.24.0

posthog-node@5.28.3

5.28.3

Patch Changes

• #3243 697e423 Thanks @​hpouillot! - fix captureExceptionImmediate return value (2026-03-18)

Changelog

Sourced from posthog-node's changelog.

5.28.5

Patch Changes

• Updated dependencies [314120a]:
  • @​posthog/core@​1.24.1

5.28.4

Patch Changes

• Updated dependencies [9cd2313]:
  • @​posthog/core@​1.24.0

5.28.3

Patch Changes

• #3243 697e423 Thanks @​hpouillot! - fix captureExceptionImmediate return value (2026-03-18)

Commits

• 482c85f chore: update versions and lockfile [version bump]
• f4e5889 chore: update versions and lockfile [version bump]
• 52ddf4e chore: update versions and lockfile [version bump]
• 697e423 fix: make captureExceptionImmediate return the promise (#3243)
• See full diff in compare view

Updates @next/eslint-plugin-next from 16.1.7 to 16.2.1

Release notes

Sourced from @​next/eslint-plugin-next's releases.

v16.2.1

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• docs: post release amends (#91715)
• docs: fix broken Activity Patterns demo link in preserving UI state guide (#91698)
• Fix adapter outputs for dynamic metadata routes (#91680)
• Turbopack: fix webpack loader runner layer (#91727)
• Fix server actions in standalone mode with cacheComponents (#91711)
• turbo-persistence: remove Unmergeable mmap advice (#91713)
• Fix layout segment optimization: move app-page imports to server-utility transition (#91701)
• Turbopack: lazy require metadata and handle TLA (#91705)
• [turbopack] Respect {eval:true} in worker_threads constructors (#91666)

Credits

Huge thanks to @​icyJoseph, @​abhishekmardiya, @​ijjk, @​mischnic, @​unstubbable, @​sokra, and @​lukesandberg for helping!

v16.2.1-canary.13

Misc Changes

• docs: opengraph-image papercuts: #92018
• Update revalidateTag examples to use the new two-argument signature: #92065

Credits

Huge thanks to @​icyJoseph and @​aurorascharff for helping!

v16.2.1-canary.12

Core Changes

• Upgrade React from 3cb2c420-20260324 to 9627b5a1-20260327: #92015
• [experiment] Add useOffline flag with offline retry behavior: #92011
• adapters: remove unused suffix code: #91997
• [experiment] Add useOffline hook to expose offline state to userland: #92012
• [turbopack] Don't use turborepo to build the docker image: #92029

Misc Changes

• Use RcStr directly in napi(object) structs instead of converting to String: #92014
• Rename SingleModuleReference::asset to SingleModuleReference::module: #92028

Credits

Huge thanks to @​acdlite, @​ztanner, @​mmastrac, @​sokra, and @​bgw for helping!

v16.2.1-canary.11

Core Changes

... (truncated)

Commits

• ed7d2ce v16.2.1
• c5c94df v16.2.0
• 3683192 v16.2.0-canary.104
• 6689814 v16.2.0-canary.103
• ad66dbc v16.2.0-canary.102
• b856498 v16.2.0-canary.101
• 136b77e v16.2.0-canary.100
• 0f59973 v16.2.0-canary.99
• 792522d v16.2.0-canary.98
• 2769b55 v16.2.0-canary.97
• Additional commits viewable in compare view

Updates @typescript-eslint/eslint-plugin from 8.57.1 to 8.57.2

Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.57.2

8.57.2 (2026-03-23)

🩹 Fixes

• eslint-plugin: [prefer-optional-chain] remove dangling closing parenthesis (#11865)
• eslint-plugin: [array-type] ignore Array and ReadonlyArray without type arguments (#11971)
• eslint-plugin: [no-restricted-types] flag banned generics in extends or implements (#12120)
• eslint-plugin: [no-unsafe-return] false positive on unwrapping generic (#12125)
• eslint-plugin: [no-unsafe-return] false positive on unwrapping generic (#12125)
• eslint-plugin: [no-useless-default-assignment] skip reporting false positives for unresolved type parameters (#12127)
• eslint-plugin: [prefer-readonly-parameter-types] preserve type alias infomation (#11954)
• typescript-estree: skip createIsolatedProgram fallback for projectService (#12066, #12065)

❤️ Thank You

• Kirk Waiblinger @​kirkwaiblinger
• Konv Suu
• mdm317
• Newton Yuan @​NewtonYuan
• RyoheiYamamoto
• SungHyun627 @​SungHyun627
• Tamashoo @​Tamashoo

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.57.2 (2026-03-23)

🩹 Fixes

• eslint-plugin: [prefer-readonly-parameter-types] preserve type alias infomation (#11954)
• eslint-plugin: [no-useless-default-assignment] skip reporting false positives for unresolved type parameters (#12127)
• eslint-plugin: [no-unsafe-return] false positive on unwrapping generic (#12125)
• eslint-plugin: [no-restricted-types] flag banned generics in extends or implements (#12120)
• eslint-plugin: [array-type] ignore Array and ReadonlyArray without type arguments (#11971)
• eslint-plugin: [prefer-optional-chain] remove dangling closing parenthesis (#11865)

❤️ Thank You

• Kirk Waiblinger @​kirkwaiblinger
• Konv Suu
• mdm317
• Newton Yuan @​NewtonYuan
• SungHyun627 @​SungHyun627
• Tamashoo @​Tamashoo

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Commits

• be4d54d chore(release): publish 8.57.2
• f68c8e4 fix(eslint-plugin): [prefer-readonly-parameter-types] preserve type alias inf...
• 73acd2e fix(eslint-plugin): [no-useless-default-assignment] skip reporting false posi...
• 3d21482 fix(eslint-plugin): [no-unsafe-return] false positive on unwrapping generic (...
• e128548 fix(eslint-plugin): [no-restricted-types] flag banned generics in extends or ...
• 2b7f63f chore(eslint-plugin): correct tsutils.isTypeFlag usage post-merge
• 65175cd fix(eslint-plugin): [array-type] ignore Array and ReadonlyArray without type ...
• 9c9ab5e feat(eslint-plugin): [no-unnecessary-type-arguments] report inferred required...
• 42a1c89 fix(eslint-plugin): [prefer-optional-chain] remove dangling closing parenthes...
• 71855ff docs(eslint-plugin): [no-unnecessary-condition] add link to TS handbook (#12131)
• See full diff in compare view

Updates @typescript-eslint/parser from 8.57.1 to 8.57.2

Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.57.2

8.57.2 (2026-03-23)

🩹 Fixes

• eslint-plugin: [prefer-optional-chain] remove dangling closing parenthesis (#11865)
• eslint-plugin: [array-type] ignore Array and ReadonlyArray without type arguments (#11971)
• eslint-plugin: [no-restricted-types] flag banned generics in extends or implements (#12120)
• eslint-plugin: [no-unsafe-return] false positive on unwrapping generic (#12125)
• eslint-plugin: [no-unsafe-return] false positive on unwrapping generic (#12125)
• eslint-plugin: [no-useless-default-assignment] skip reporting false positives for unresolved type parameters (#12127)
• eslint-plugin: [prefer-readonly-parameter-types] preserve type alias infomation (#11954)
• typescript-estree: skip createIsolatedProgram fallback for projectService (#12066, #12065)

❤️ Thank You

• Kirk Waiblinger @​kirkwaiblinger
• Konv Suu
• mdm317
• Newton Yuan @​NewtonYuan
• RyoheiYamamoto
• SungHyun627 @​SungHyun627
• Tamashoo @​Tamashoo

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.57.2 (2026-03-23)

This was a version bump only for parser to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Commits

• be4d54d chore(release): publish 8.57.2
• See full diff in compare view

Updates eslint from 10.0.3 to 10.1.0

Release notes

Sourced from eslint's releases.

v10.1.0

Features

• ff4382b feat: apply fix for no-var in TSModuleBlock (#20638) (Tanuj Kanti)
• 0916995 feat: Implement api support for bulk-suppressions (#20565) (Blake Sager)

Bug Fixes

• 2b8824e fix: Prevent no-var autofix when a variable is used before declaration (#20464) (Amaresh S M)
• e58b4bf fix: update eslint (#20597) (renovate[bot])

Documentation

• b7b57fe docs: use correct JSDoc link in require-jsdoc.md (#20641) (mkemna-clb)
• 58e4cfc docs: add deprecation notice partial (#20639) (Milos Djermanovic)
• 7143dbf docs: update v9 migration guide for @eslint/js usage (#20540) (fnx)
• 035fc4f docs: note that globalReturn applies only with sourceType: "script" (#20630) (Milos Djermanovic)
• e972c88 docs: merge ESLint option descriptions into type definitions (#20608) (Francesco Trotta)
• 7f10d84 docs: Update README (GitHub Actions Bot)
• aeed007 docs: open playground link in new tab (#20602) (Tanuj Kanti)
• a0d1a37 docs: Add AI Usage Policy (#20510) (Nicholas C. Zakas)

Chores

• a9f9cce chore: update dependency eslint-plugin-unicorn to ^63.0.0 (#20584) (Milos Djermanovic)
• 1f42bd7 chore: update prettier to 3.8.1 (#20651) (루밀LuMir)
• c0a6f4a chore: update dependency @​eslint/json to ^1.2.0 (#20652) (renovate[bot])
• cc43f79 chore: update dependency c8 to v11 (#20650) (renovate[bot])
• 2ce4635 chore: update dependency @​eslint/json to v1 (