Bump the npm-all group across 1 directory with 5 updates

[dependabot]

Bumps the npm-all group with 5 updates in the / directory:

Package	From	To
@sentry/vue	10.53.1	10.56.0
markdown-it	14.1.1	14.2.0
marked	18.0.3	18.0.4
vue	3.5.34	3.5.35
vuetify	4.0.7	4.1.0

Updates @sentry/vue from 10.53.1 to 10.56.0

Release notes

Sourced from @​sentry/vue's releases.

10.56.0

Important Changes

• feat(deno): Redis diagnostics channel based integration for Deno (#21087)

  Adds Redis integration support for Deno, covering both redis and ioredis clients.

Other Changes

• feat(cloudflare): Only capture workflow step error on final retry attempt (#21025)
• feat(hono): Emit warning if @sentry/node was imported instead of @sentry/hono/node (#21240)
• feat(node): Use ioredis tracing channels (#21187)
• fix(browser): Correctly parse sampleRate when consistentTraceSampling is enabled (#21281)
• fix(cloudflare): Fix instrumentDurableObjectWithSentry breaking Cloudflare Agents (#21101)
• fix(cloudflare): Wait for span links to be set (#21167)
• fix(core): Use WeakRef for Span-Scope circular references (#21242)
• fix(node): Vendor InstrumentationNodeModuleFile to fix Bun --bytecode crash (#21262)
• fix(profiling-node): Ensure node version support warning includes latest 26 (#21229)

• chore: Ignore scheduled_tasks.lock (#21252)
• chore: Promote lint warnings to errors (#21213)
• chore(docs): Document how to support a new node version (#21228)
• chore(size-limit): Weekly auto-bump (#21243)
• chore(skills): Add linear-project-status skill (#21214)
• chore(skills): Add linear-project-update skill (#21233)
• chore(skills): Improve triage-issue skill (#21257)
• chore(skills): Update linear-project-status skill with more details & context (#21234)
• feat(deps): Bump axios from 1.15.0 to 1.16.0 in /dev-packages/e2e-tests/test-applications/nestjs-basic (#21263)
• feat(server-utils): Initial scaffolding (#21200)
• ref(cloudflare): Move D1 instrumentation (#21266)
• ref(node): Refactor usage of hrTime utilities from @opentelemetry/core (#21191)
• ref(node): Stop mutating OTel RPC metadata to set http.route (#21193)
• ref(opentelemetry): Vendor minimal TraceState implementation (#21192)
• test(browser): Add unit test for http client header collection behavior (#21273)
• test(browser): Move browser integration tests to dataCollection (#21282)
• test(cloudflare): Remove vitest in CF e2e tests (#21259)

Bundle size 📦

Path	Size
@​sentry/browser	26.57 KB
@​sentry/browser - with treeshaking flags	25.05 KB
@​sentry/browser (incl. Tracing)	44.19 KB
@​sentry/browser (incl. Tracing + Span Streaming)	46.37 KB

... (truncated)

Changelog

Sourced from @​sentry/vue's changelog.

10.56.0

Important Changes

• feat(deno): Redis diagnostics channel based integration for Deno (#21087)

  Adds Redis integration support for Deno, covering both redis and ioredis clients.

Other Changes

• feat(cloudflare): Only capture workflow step error on final retry attempt (#21025)
• feat(hono): Emit warning if @sentry/node was imported instead of @sentry/hono/node (#21240)
• feat(node): Use ioredis tracing channels (#21187)
• fix(browser): Correctly parse sampleRate when consistentTraceSampling is enabled (#21281)
• fix(cloudflare): Fix instrumentDurableObjectWithSentry breaking Cloudflare Agents (#21101)
• fix(cloudflare): Wait for span links to be set (#21167)
• fix(core): Use WeakRef for Span-Scope circular references (#21242)
• fix(node): Vendor InstrumentationNodeModuleFile to fix Bun --bytecode crash (#21262)
• fix(profiling-node): Ensure node version support warning includes latest 26 (#21229)

• chore: Ignore scheduled_tasks.lock (#21252)
• chore: Promote lint warnings to errors (#21213)
• chore(docs): Document how to support a new node version (#21228)
• chore(size-limit): Weekly auto-bump (#21243)
• chore(skills): Add linear-project-status skill (#21214)
• chore(skills): Add linear-project-update skill (#21233)
• chore(skills): Improve triage-issue skill (#21257)
• chore(skills): Update linear-project-status skill with more details & context (#21234)
• feat(deps): Bump axios from 1.15.0 to 1.16.0 in /dev-packages/e2e-tests/test-applications/nestjs-basic (#21263)
• feat(server-utils): Initial scaffolding (#21200)
• ref(cloudflare): Move D1 instrumentation (#21266)
• ref(node): Refactor usage of hrTime utilities from @opentelemetry/core (#21191)
• ref(node): Stop mutating OTel RPC metadata to set http.route (#21193)
• ref(opentelemetry): Vendor minimal TraceState implementation (#21192)
• test(browser): Add unit test for http client header collection behavior (#21273)
• test(browser): Move browser integration tests to dataCollection (#21282)
• test(cloudflare): Remove vitest in CF e2e tests (#21259)

10.55.0

Important Changes

• feat(hono): Promote @sentry/hono to stable and deprecate honoIntegration (#21208)

  The @sentry/hono SDK is now stable. See the Sentry Hono SDK docs to get started.

... (truncated)

Commits

• 29b276c release: 10.56.0
• f94a87b Merge pull request #21291 from getsentry/prepare-release/10.56.0
• 165c82a meta(changelog): Update changelog for 10.56.0
• a7cb7e6 fix(cloudflare): Fix instrumentDurableObjectWithSentry breaking Cloudflare Ag...
• d8015e2 feat(deps): Bump axios from 1.15.0 to 1.16.0 in /dev-packages/e2e-tests/test-...
• 01104fb fix(browser): Correctly parse sampleRate when consistentTraceSampling is en...
• 0613ef7 test(browser): Move browser integration tests to dataCollection (#21282)
• 231e1f5 test(browser): Add unit test for http client header collection behavior (#21273)
• ec5f82c feat(server-utils): initial scaffolding (#21200)
• dfeeb11 fix(cloudflare): Wait for span links to be set (#21167)
• Additional commits viewable in compare view

Updates markdown-it from 14.1.1 to 14.2.0

Changelog

Sourced from markdown-it's changelog.

[14.2.0] - 2026-05-24

Added

• isPunctCharCode to utilities.

Fixed

• Don't end HTML comment blocks on a blank line, #1155.
• Properly recognize astral chars (surrogates) in delimiter scans for emphasis-like markers, #1072. Big thanks to @​tats-u for his global efforts with improving CJK support.
• Preserve unicode whitespaces when trimm headings/paragraphs, #1074.
• More strict entities decode to avoid false positives ;, #1096.
• Restore block parser state on fail in lheading rule, #1131.

Security

• Fixed poor smartquotes perfomance on > 70k quotes in single block
• Bumped linkify-it to 5.0.1 with fixed potential perfomance issues.

Commits

• 829797a 14.2.0 released
• 9ce2087 Fix smartquotes perfomance
• 02e73b8 linkify-it bump
• 68cfb8c fix: don't end HTML comment blocks on a blank line (#1155)
• 1083137 Readme cleanup
• 97c7ca2 Update funding info
• c471b55 Changelog update
• 7769621 isPunctChar => isPunctCharCode
• aa2aa70 fix: always reset parentType in lheading rule (#1131)
• 59955f2 Polish PRs #1072, #1074
• Additional commits viewable in compare view

Updates marked from 18.0.3 to 18.0.4

Release notes

Sourced from marked's releases.

v18.0.4

18.0.4 (2026-05-19)

Bug Fixes

• cache list indentation regexes (#3969) (a37983f)
• fix cli not reading stdin (#3967) (11adb69)

Commits

• 0a2cd54 chore(release): 18.0.4 [skip ci]
• 11adb69 fix: fix cli not reading stdin (#3967)
• a37983f fix: cache list indentation regexes (#3969)
• d38b8c2 chore(deps-dev): bump eslint from 10.3.0 to 10.4.0 (#3976)
• 7d9b17e chore(docs): fix typo in package links (#3975)
• a7affc3 chore(deps-dev): bump @​semantic-release/release-notes-generator from 14.1.0 t...
• 47d6ba1 chore(deps-dev): bump @​semantic-release/github from 12.0.6 to 12.0.8 (#3972)
• 69257e4 chore(deps-dev): bump eslint from 10.2.1 to 10.3.0 (#3966)
• 1731d38 refactor(test): move task list output coverage to specs (#3963)
• See full diff in compare view

Updates vue from 3.5.34 to 3.5.35

Release notes

Sourced from vue's releases.

v3.5.35

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

Changelog

Sourced from vue's changelog.

3.5.35 (2026-05-27)

Bug Fixes

• compiler-core: avoid double processing v-for keys with v-memo (#14861) (34a0ded), closes #14859
• compiler-sfc: resolve top-level exports from files registered as global types (#14805) (3d077f2), closes nuxt/nuxt#33694
• runtime-core: avoid repeated hydration mismatch checks (#14857) (170fc95), closes #14855
• runtime-core: skip idle persisted transition hooks in keep-alive moves (#14865) (80fc139), closes #14031
• server-renderer: propagate sync errors from ssrRenderSuspense (#14804) (4760997), closes nuxt/nuxt#28162
• teleport: skip child unmount when pending mount discarded (#14876) (#14877) (584beb1)

Performance Improvements

• reactivity: skip type checks for cached proxies (#14860) (5734fe9)
• runtime-dom: optimize array event handler dispatch (#14828) (bb18dc8)
• server-renderer: avoid materializing iterables in ssrRenderList (#14821) (1b7a2cc)

Commits

• 8be32d6 release: v3.5.35
• 80fc139 fix(runtime-core): skip idle persisted transition hooks in keep-alive moves (...
• d6c7371 ci: use backup action for size report comments
• bb18dc8 perf(runtime-dom): optimize array event handler dispatch (#14828)
• 5734fe9 perf(reactivity): skip type checks for cached proxies (#14860)
• 584beb1 fix(teleport): skip child unmount when pending mount discarded (#14876) (#14877)
• 34a0ded fix(compiler-core): avoid double processing v-for keys with v-memo (#14861)
• 170fc95 fix(runtime-core): avoid repeated hydration mismatch checks (#14857)
• 1b7a2cc perf(server-renderer): avoid materializing iterables in ssrRenderList (#14821)
• 3d077f2 fix(compiler-sfc): resolve top-level exports from files registered as global ...
• Additional commits viewable in compare view

Updates vuetify from 4.0.7 to 4.1.0

Release notes

Sourced from vuetify's releases.

v4.1.0

The following components have been promoted to the core framework from labs:

• validation rules
• v-icon-btn
• v-stepper-vertical
• v-pull-to-refresh
• v-file-upload
• v-date-input
• v-color-input
• v-picker

🚀 Features

• VCalendar: add interval-highlight prop (#22885) (4b1b720), closes #22593
• VExpansionPanelTitle: add hover prop to disable hover effect (#22827) (51fdd04), closes #21615
• VSwitch: add size prop (#22882) (d0fb972), closes #18334
• VSwitch: add 'square' as new inset variant (#22881) (f0fb506)
• VSwitch: align with MD3 spec (#22879) (010c8e7), closes #22164
• VDataTable: add aria-sort to sortable headers (e20fe22), closes #20974
• VDataTable: add aria-labels for selection controls (4e605c5), closes #9956
• VDataTable: loading prop to accept object with side (#22872) (1f64f3c), closes #9655
• VDataTable: add expanded slot with transition support (#22871) (54ed488), closes #8197 #17527
• VDataTable: add filtered itemsLength to slot props (#22874) (372a614), closes #20496
• VRating: expose activeColor in item slot props (#22814) (7923f7b), closes #22273
• VTable: add caption slot and pass aria-* to <table> (15e86a3), closes #21805
• VTable: add gridlines prop (#22873) (2cf2aab), closes #10083 #14412
• elevation: add hover-elevation prop and CSS utilities (#22621) (c41efc4), closes #20462
• rounded: accept arbitrary values (#22721) (bd9037c), closes #14368
• theme: add optional page transitions (#22623) (b85a946)
• VCalendar: 24hour support (#22853) (c046c1f), closes #22415
• VColorPicker: add hide-input-labels prop (82ffc22), closes #22285
• VCommandPalette, VOverlay: introduce viewport location strategy (#22698) (ca399e5)
• VDataTable: add mobile header slot (#21429) (c0bdb9c), closes #19730
• VDataTable: add v-model:opened for group-by (#22772) (355e37a), closes #22300 #17707
• VDataTable: highlight search matches (#22852) (d4e1812), closes #20357
• VDatePicker: keyboard arrows navigation in selection grid (#22857) (d100d83), closes #5629
• VExpansionPanels: add more props for customization (#22723) (cd7b8ca), closes #21616 #12039
• VFileInput, VFileUpload: support pasting files and folders (b60d830), closes #22732
• VNumberInput: add grouping prop (#22134) (ff04a2c), closes #22453
• VOtpInput: groups, a11y improvements, emoji (#22803) (825bf43), closes #22659 #18427
• VPagination, VDataTableFooter: ability to hide last page (#22788) (c8a245c)
• VProgressLinear: add split variant to align with MD3 (#22662) (105a8b8)
• VSparkline: markers & tooltips (#22748) (4eb9dc0)

... (truncated)

Commits

• f8ba871 chore(release): publish v4.1.0
• a7d0bae fix(VSwitch): tune track color for inset material
• 4929c2c Merge branch 'master' into dev
• e3bc5b4 chore(release): publish v4.0.9
• 23f139b fix(VSwitch): outline should have neutral color
• 4b1b720 feat(VCalendar): add interval-highlight prop (#22885)
• 359a492 fix(VProgressLinear): avoid opacity:NaN when rendering with SSR (#22880)
• e0133c2 fix(VNumberInput): keep both controls enabled when empty
• 451e7c3 fix(focusTrap): prevent page scroll when capturing focus
• d0fb972 feat(VSwitch): add size prop (#22882)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	marked@​18.0.3 ⏵ 18.0.4
	markdown-it@​14.1.1 ⏵ 14.2.0	+1		+1
	vue@​3.5.34 ⏵ 3.5.35			+1
	@​sentry/​vue@​10.53.1 ⏵ 10.56.0	+1
	vuetify@​4.0.7 ⏵ 4.1.0	+2			+2

View full report