deps(js): bump the minor-and-patch group across 1 directory with 7 updates

[dependabot]

Bumps the minor-and-patch group with 6 updates in the /sdn-js directory:

Package	From	To
@helia/unixfs	7.1.0	7.2.1
hd-wallet-ui	2.0.6	2.0.19
helia	6.0.22	6.1.4
@playwright/test	1.59.1	1.61.0
svelte	5.55.5	5.56.3
svelte-check	4.4.8	4.6.0

Updates @helia/unixfs from 7.1.0 to 7.2.1

Release notes

Sourced from @​helia/unixfs's releases.

unixfs: v7.2.1

7.2.1 (2026-04-10)

Bug Fixes

• add module-sync (#1001) (ef5363e)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​helia/interface bumped from ^6.2.0 to ^6.2.1

unixfs: v7.2.0

7.2.0 (2026-04-08)

Features

• emit standardized block broker events (#995) (397f2d8)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​helia/interface bumped from ^6.1.1 to ^6.2.0

mfs: v7.1.1

7.1.1 (2026-04-10)

Bug Fixes

• add module-sync (#1001) (ef5363e)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​helia/unixfs bumped from ^7.2.0 to ^7.2.1

Commits

• 13daa26 chore: release main (#483)
• 9ea934e fix: improve sessions implementation (#495)
• 9a10498 fix: blockstore operations should throw when passed an aborted signal (#497)
• 5323724 ci: bump codecov/codecov-action from 4.2.0 to 4.3.0 (#496)
• 9c8a2c0 chore: order of releases in changelog (#492)
• b67ac5f fix: wrap blockstore in identity blockstore (#493)
• b1c761d fix: remove wants from wantlist when multiple block retrievers are used (#491)
• 395cd9e fix: cancel in-flight block requests when racing brokers (#490)
• 532d6c4 docs: update root CHANGELOG package links (#489)
• ba4b7ba ci: bump codecov/codecov-action from 4.1.1 to 4.2.0 (#487)
• Additional commits viewable in compare view

Updates hd-wallet-ui from 2.0.6 to 2.0.19

Release notes

Sourced from hd-wallet-ui's releases.

v2.0.19

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.18...v2.0.19

v2.0.18

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.17...v2.0.18

v2.0.17

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.16...v2.0.17

v2.0.16

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.15...v2.0.16

v2.0.15

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.14...v2.0.15

v2.0.14

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.13...v2.0.14

v2.0.13

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.12...v2.0.13

v2.0.12

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.11...v2.0.12

v2.0.11

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.10...v2.0.11

v2.0.10

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.9...v2.0.10

v2.0.7

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.6...v2.0.7

Commits

• 537ac9a Clear stored wallet on logout
• 008561d Move wallet logout to host API
• 2013e90 Default wallet storage to PIN unlock
• dabf1a6 Preserve wallet session on modal reopen
• 2a9a1a8 Center wallet bond label in header
• b710cd2 Left align wallet header bond summary
• 54d54d0 Move wallet balance into account header
• 3f3605c Use icon controls for wallet dismiss actions
• df99e4b Refine account wallet header controls
• 9c9825d Rework wallet account modal identity flow
• Additional commits viewable in compare view

Updates hd-wallet-wasm from 2.0.6 to 2.0.19

Release notes

Sourced from hd-wallet-wasm's releases.

v2.0.19

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.18...v2.0.19

v2.0.18

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.17...v2.0.18

v2.0.17

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.16...v2.0.17

v2.0.16

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.15...v2.0.16

v2.0.15

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.14...v2.0.15

v2.0.14

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.13...v2.0.14

v2.0.13

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.12...v2.0.13

v2.0.12

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.11...v2.0.12

v2.0.11

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.10...v2.0.11

v2.0.10

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.9...v2.0.10

v2.0.7

Full Changelog: DigitalArsenal/hd-wallet-wasm@v2.0.6...v2.0.7

Commits

• 537ac9a Clear stored wallet on logout
• 008561d Move wallet logout to host API
• 2013e90 Default wallet storage to PIN unlock
• dabf1a6 Preserve wallet session on modal reopen
• 2a9a1a8 Center wallet bond label in header
• b710cd2 Left align wallet header bond summary
• 54d54d0 Move wallet balance into account header
• 3f3605c Use icon controls for wallet dismiss actions
• df99e4b Refine account wallet header controls
• 9c9825d Rework wallet account modal identity flow
• Additional commits viewable in compare view

Updates helia from 6.0.22 to 6.1.4

Release notes

Sourced from helia's releases.

helia: v6.1.4

6.1.4 (2026-04-15)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​helia/block-brokers bumped from ^5.2.3 to ^5.2.4
    • @​helia/utils bumped from ^2.5.1 to ^2.5.2

helia: v6.1.3

6.1.3 (2026-04-13)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​helia/block-brokers bumped from ^5.2.2 to ^5.2.3

helia: v6.1.2

6.1.2 (2026-04-10)

Bug Fixes

• add module-sync (#1001) (ef5363e)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​helia/block-brokers bumped from ^5.2.1 to ^5.2.2
    • @​helia/interface bumped from ^6.2.0 to ^6.2.1
    • @​helia/routers bumped from ^5.1.0 to ^5.1.1
    • @​helia/utils bumped from ^2.5.0 to ^2.5.1

helia: v6.1.1

6.1.1 (2026-04-09)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​helia/block-brokers bumped from ^5.2.0 to ^5.2.1

helia: v6.1.0

... (truncated)

Commits

• b6c3914 chore: release main (#1008)
• 35b081c fix: cancel re-provide when deleting block (#1007)
• 3d77ad9 chore: release main (#1006)
• eb1908b fix: prefix signal access (#1005)
• 2435bc2 chore: release main (#1004)
• 210059d fix: restore aegir file in interop suite (#1003)
• 42b3874 chore: release main (#1002)
• ef5363e fix: add module-sync (#1001)
• 0ab3267 deps: bump cborg from 4.5.8 to 5.1.0 (#998)
• 33d2b41 chore: release main (#1000)
• Additional commits viewable in compare view

Updates @playwright/test from 1.59.1 to 1.61.0

Release notes

Sourced from @​playwright/test's releases.

v1.61.0

🔑 WebAuthn passkeys

New Credentials virtual authenticator, available via browserContext.credentials, lets tests register passkeys and answer navigator.credentials.create() / navigator.credentials.get() ceremonies in the page — no real hardware key required, works in all browsers:

const context = await browser.newContext();
// Seed a passkey your backend provisioned for a test user.
await context.credentials.create('example.com', {
id: credentialId,
userHandle,
privateKey,
publicKey,
});
await context.credentials.install();
const page = await context.newPage();
await page.goto('https://example.com/login');
// The page's navigator.credentials.get() is answered with the seeded passkey.

You can also let the app register a passkey once in a setup test, read it back with credentials.get(), and seed it into later tests — see Credentials for details.

🗃️ Web Storage

New WebStorage API, available via page.localStorage and page.sessionStorage, reads and writes the page's storage for the current origin:

await page.localStorage.setItem('token', 'abc');
const token = await page.localStorage.getItem('token');
const items = await page.sessionStorage.items();

New APIs

Network

• apiResponse.securityDetails() and apiResponse.serverAddr() mirror the browser-side response.securityDetails() and response.serverAddr().

Browser and Screencast

• New option artifactsDir in browserType.connectOverCDP() controls where artifacts such as traces and downloads are stored when attached to an existing browser.
• New option cursor in screencast.showActions() controls the cursor decoration rendered for pointer actions.
• The onFrame callback in screencast.start() now receives a timestamp of when the frame was presented by the browser.

Test runner

• The testOptions.video option now supports the same set of modes as trace: new 'on-all-retries', 'retain-on-first-failure' and 'retain-on-failure-and-retries' values. See the video modes table for which runs are recorded and kept in each mode.
• Supported expect.soft.poll(...).
• New fullConfig.argv — a snapshot of process.argv from the runner process, handy for reading custom arguments passed after the -- separator.
• New fullConfig.failOnFlakyTests mirrors the config option, so reporters can explain why a flaky run failed.
• testInfo.errors now lists each sub-error of an AggregateError as a separate entry.

... (truncated)

Commits

• 1cc5a90 cherry-pick(#41295): chore: PLAYWRIGHT_TRACING_NO_WEBSOCKET_FRAMES and PLAYWR...
• a6772bd cherry-pick(#41280): Revert "fix(trace-viewer): add keyboard navigation to `N...
• 8133dcf cherry-pick(#41283): docs: add Ubuntu 26.04 and Node.js 26.x to system requir...
• 812432e chore: mark v1.61.0 (#41277)
• ac05145 fix(fetch): report serverAddr and securityDetails for reused sockets (#41267)
• 056efc9 fix(trace-viewer): add keyboard navigation to NetworkFilters component (#41...
• 41f7b9a chore: fixes uncovered by the .NET 1.61 roll (#41266)
• ba50778 fix(mcp): assign caps as array for legacy --vision flag (#41253)
• b8ee5ae docs: release notes for v1.61 (#41261)
• 49c1f69 fix(trace viewer): load trace from a local file (#41263)
• Additional commits viewable in compare view

Updates svelte from 5.55.5 to 5.56.3

Release notes

Sourced from svelte's releases.

svelte@5.56.3

Patch Changes

• fix: ignore errors that occur in destroyed effects (#18384)

• fix: type BigInts in $state.snapshot(...) return values (#18388)

svelte@5.56.2

Patch Changes

• fix: properly track effect end node for async sibling component (#18371)

• fix: prevent false-positive reactivity loss warning (#18373)

• chore: bump esrap dependency (#18372)

• fix: ignore declaration tags for animation directive (#18366)

• fix: reject pending async deriveds on discard (#18308)

svelte@5.56.1

Patch Changes

• fix: error at compile time on duplicate snippet/declaration tag definitions (#18351)

• fix: parse declaration tag contents more robustly (#18353)

• fix: correctly transform references to earlier declarators in a declaration tag (e.g. {let a = $state(0), b = $derived(a * 2)}) (#18348)

• fix: avoid spurious state_referenced_locally warnings for $derived declarations in declaration tags (#18348)

• fix: tolerate whitespace before let/const in declaration tags (#18348)

• fix: prevent infinite loop when a tag's expression ends with a trailing / at the end of the input (#18350)

• fix: more robust parsing of declaration tags with regards to type (#18330)

• fix: preserve newlines in spread input values when the type attribute is applied after value (#18345)

• fix: update SvelteURLSearchParams when setting duplicate keys to the same joined value (#18336)

• fix: check references for blockers on server, too (#18352)

svelte@5.56.0

Minor Changes

• feat: allow declarations in the template (#18282)

Patch Changes

... (truncated)

Changelog

Sourced from svelte's changelog.

5.56.3

Patch Changes

• fix: ignore errors that occur in destroyed effects (#18384)

• fix: type BigInts in $state.snapshot(...) return values (#18388)

5.56.2

Patch Changes

• fix: properly track effect end node for async sibling component (#18371)

• fix: prevent false-positive reactivity loss warning (#18373)

• chore: bump esrap dependency (#18372)

• fix: ignore declaration tags for animation directive (#18366)

• fix: reject pending async deriveds on discard (#18308)

5.56.1

Patch Changes

• fix: error at compile time on duplicate snippet/declaration tag definitions (#18351)

• fix: parse declaration tag contents more robustly (#18353)

• fix: correctly transform references to earlier declarators in a declaration tag (e.g. {let a = $state(0), b = $derived(a * 2)}) (#18348)

• fix: avoid spurious state_referenced_locally warnings for $derived declarations in declaration tags (#18348)

• fix: tolerate whitespace before let/const in declaration tags (#18348)

• fix: prevent infinite loop when a tag's expression ends with a trailing / at the end of the input (#18350)

• fix: more robust parsing of declaration tags with regards to type (#18330)

• fix: preserve newlines in spread input values when the type attribute is applied after value (#18345)

• fix: update SvelteURLSearchParams when setting duplicate keys to the same joined value (#18336)

• fix: check references for blockers on server, too (#18352)

5.56.0

Minor Changes

... (truncated)

Commits

• a9f4854 Version Packages (#18389)
• 71a6515 fix: check boundary exists before calling error handler in async derived (#18...
• 3d83c9a fix: add bigint to Primitive type for $state.snapshot (#18388)
• 51baf1c Version Packages (#18357)
• 3d5c4ab fix: prevent false-positive reactivity loss warning (#18373)
• bdb1a0f fix: ensure async block assigns correct nodes to effect (#18371)
• e4bfc5f chore: bump esrap dependency (#18372)
• 1b4c43b fix: ignore declaration tags for animation directive (#18366)
• 85dcb91 chore: upgrade to vitest v4 (#18265)
• a81f965 fix: reject pending async deriveds on discard (#18308)
• Additional commits viewable in compare view

Updates svelte-check from 4.4.8 to 4.6.0

Release notes

Sourced from svelte-check's releases.

svelte-check@4.6.0

Minor Changes

• feat: support reading Svelte config from vite.config.js/ts (#3031)

Patch Changes

• Updated dependencies [151cf45]:
  • @​sveltejs/load-config@​0.1.1

svelte-check@4.5.0

Minor Changes

• feat: support Svelte 5 declaration tags (#3033)

Patch Changes

• fix: properly handle props with the name slot inside Svelte 5 snippets (#3030)

• feat: add support for svelte config ts/mts files (#3009)

Commits

• 20d5ab2 Version Packages (#3040)
• 0ecf6c3 fix: adjust rollup config (#3047)
• 151cf45 fix: adjust paths in PKG.json (#3046)
• 6099462 chore: fix changeset (#3045)
• 5b13da1 feat: support reading Svelte config from vite.config.js/ts (#3031)
• f2bcbda fix: mark optional members with a trailing ? in completion labels (#3043) (#3...
• e5ed88f fix: don't show type inlay hint for component inside snippets (#3041)
• b118dd3 fix: correct 'occured' typo in svelte:boundary onerror description (#3039)
• 67fbcae Version Packages (#3018)
• 3474048 fix(emitDts): drop declarations emitted outside declarationDir (#2965)
• Additional commits viewable in compare view

[dependabot]

Labels

The following labels could not be found: dependencies, javascript. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.