chore(deps-dev): bump the development-dependencies group with 6 updates

[dependabot]

Bumps the development-dependencies group with 6 updates:

Package	From	To
@eslint/js	9.39.0	9.39.1
@grpc/grpc-js	1.14.0	1.14.1
mocha	11.7.4	11.7.5
semantic-release	25.0.1	25.0.2
type-fest	5.1.0	5.2.0
typescript-eslint	8.46.2	8.46.3

Updates @eslint/js from 9.39.0 to 9.39.1

Release notes

Sourced from @​eslint/js's releases.

v9.39.1

Bug Fixes

• 650753e fix: Only pass node to JS lang visitor methods (#20283) (Nicholas C. Zakas)

Documentation

• 51b51f4 docs: add a section on when to use extends vs cascading (#20268) (Tanuj Kanti)
• b44d426 docs: Update README (GitHub Actions Bot)

Chores

• 92db329 chore: update @eslint/js version to 9.39.1 (#20284) (Francesco Trotta)
• c7ebefc chore: package.json update for @​eslint/js release (Jenkins)
• 61778f6 chore: update eslint-config-eslint dependency @​eslint/js to ^9.39.0 (#20275) (renovate[bot])
• d9ca2fc ci: Add rangeStrategy to eslint group in renovate config (#20266) (唯然)
• 009e507 test: fix version tests for ESLint v10 (#20274) (Milos Djermanovic)

Commits

• c7ebefc chore: package.json update for @​eslint/js release
• See full diff in compare view

Updates @grpc/grpc-js from 1.14.0 to 1.14.1

Release notes

Sourced from @​grpc/grpc-js's releases.

@​grpc/grpc-js 1.14.1

• Fix a regression of the settings used internally for HTTP/2 sessions (#3023)

Commits

• 425e7cb Merge pull request #3023 from murgatroid99/grpc-js_session_memory_fix
• dcb2182 grpc-js: Re-add a couple of accidentally removed HTTP/2 session settings
• See full diff in compare view

Updates mocha from 11.7.4 to 11.7.5

Release notes

Sourced from mocha's releases.

v11.7.5

11.7.5 (2025-11-04)

🩹 Fixes

• swallow more require errors from *ts files (#5498) (d89dbaf)

🧹 Chores

• run tests on PRs for and pushes to v11.x (#5525) (8b21b38)
• setup release-please for v11 (#5522) (663fff4)

Changelog

Sourced from mocha's changelog.

11.7.5 (2025-11-04)

🩹 Fixes

• swallow more require errors from *ts files (#5498) (d89dbaf)

🧹 Chores

• run tests on PRs for and pushes to v11.x (#5525) (8b21b38)
• setup release-please for v11 (#5522) (663fff4)

Commits

• 9a6a5db chore(v11.x): release 11.7.5 (#5523)
• 8b21b38 chore: run tests on PRs for and pushes to v11.x (#5525)
• 663fff4 chore: setup release-please for v11 (#5522)
• 8d97220 Update release-please to include v11.x and use Node ^22
• d89dbaf fix: swallow more require errors from *ts files (#5498)
• See full diff in compare view

Updates semantic-release from 25.0.1 to 25.0.2

Release notes

Sourced from semantic-release's releases.

v25.0.2

25.0.2 (2025-11-07)

Bug Fixes

• deps: update dependency read-package-up to v12 (#3935) (1494cb9)

Commits

• 1494cb9 fix(deps): update dependency read-package-up to v12 (#3935)
• b79ff4c Merge pull request #3931 from Simek/patch-1
• ddfe3cb Merge pull request #3932 from Deltamir/docs-add-semantic-release-uv-community...
• adac0b7 Merge pull request #3920 from semantic-release/installation
• 8b68108 update Node version in npx command example
• 15293df docs(plugins): add semantic-release-uv community plugin in plugins list
• bfc6d4d docs: Update minimal required Node version
• 8d7d8ed chore(deps): update dependency @​types/node to v24.10.0 (#3929)
• 809126c chore(deps): lock file maintenance (#3928)
• d1affd3 chore(deps): update dependency got to v14.6.2 (#3927)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for semantic-release since your current version.

Updates type-fest from 5.1.0 to 5.2.0

Release notes

Sourced from type-fest's releases.

v5.2.0

New types

• Add ExclusifyUnion type (#1278) 2b906fe
• Add ArrayElement type (#1270) 2afaa40

Improvements

• CamelCase: Add splitOnNumbers option (#1290) ce2d244
• PackageJson: Add devEngines type (#1286) 3b4ad2e

Fixes

• ExcludeRestElement: Fix generic assignability with arrays (#1274) 12ef5b2
• GreaterThanOrEqual / LessThan: Fix behavior with operands like N and N | N + >0 (#1280) b2caa3f

---

sindresorhus/type-fest@v5.1.0...v5.2.0

Commits

• c300548 5.2.0
• 2b906fe Add ExclusifyUnion type (#1278)
• ce2d244 CamelCase: Add support for splitOnNumbers option (#1290)
• ff32c66 Fix CI
• bdb5658 ExtractStrict: Fix typo in docs (#1288)
• 12ef5b2 ExcludeRestElement: Fix generic assignability with arrays (#1274)
• 3b4ad2e PackageJson: Add devEngines type (#1286)
• ad62d2c Or/And: Fix documentation errors and add link to Xor (#1261)
• b2caa3f GreaterThanOrEqual / LessThan: Fix behavior with operands like N and `N...
• 5612f64 IfNotAnyOrNever: Add note regarding tail recursion (#1276)
• Additional commits viewable in compare view

Updates typescript-eslint from 8.46.2 to 8.46.3

Release notes

Sourced from typescript-eslint's releases.

v8.46.3

8.46.3 (2025-11-03)

🩹 Fixes

• eslint-plugin: [no-misused-promises] expand union type to retrieve target property (#11706)
• eslint-plugin: [no-duplicate-enum-values] support signed numbers (#11722, #11723)

❤️ Thank You

• Evgeny Stepanovych @​undsoft
• tao

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from typescript-eslint's changelog.

8.46.3 (2025-11-03)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

• d9f3497 chore(release): publish 8.46.3
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	@​grpc/​grpc-js@​1.14.0 ⏵ 1.14.1	+1		+1	+5
	mocha@​11.7.4 ⏵ 11.7.5				+4
	@​eslint/​js@​9.39.0 ⏵ 9.39.1				+1

View full report

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[github-actions]

🎉 This PR is included in version 3.0.7 🎉

The release is available on:

• npm package (@latest dist-tag)
• GitHub release

Your semantic-release bot 📦🚀