Update all dependencies to latest versions (v0.2.18)

[smartlabsAT]

Summary

• Updates all 28 dependencies to latest versions across 3 phases (Issue chore: update outdated dependencies (28 packages) #45)
• Aligns dependency versions with expandable-blocks (v1.3.4) and expandable-blocks-api (v0.3.0)
• Resolves 1 CRITICAL + 5 HIGH security vulnerabilities in direct dependencies

Changes

Phase 1: Safe Minor/Patch + Security Fixes

• lodash 4.17.21 → 4.18.1, @directus/format-title 12.0.1 → 12.1.2
• happy-dom 18.0.1 → 20.8.9 (CRITICAL: RCE fix)
• playwright 1.54.2 → 1.59.1 (HIGH: SSL bypass fix)
• 12 additional minor/patch updates

Phase 2: Major Tooling Updates

• eslint 9.x → 10.2.0, @eslint/js 9.x → 10.0.1
• typescript 5.x → 6.0.2
• vitest 3.x → 4.1.2 (+ vite 8.0.3 as peer dep)
• jsdom 26.x → 29.0.1, vue-router 4.x → 5.0.4

Phase 3: Directus SDK

• @directus/extensions-sdk 11.0.10 → 17.1.1
• @directus/types 13.2.2 → 15.0.1
• Fresh lockfile regenerated

Code Changes

• index.ts: Workaround for TS 6.0.2 compiler crash with SDK v17 complex types
• tsconfig.json: Removed deprecated baseUrl (TS 6)
• package.json: Version bump to 0.2.18
• CHANGELOG.md + README.md: Updated

Security Audit (after update)

4 remaining vulnerabilities — all transitive in @directus/extensions-sdk (lodash-es, unhead), not in our code.

Test plan

• pnpm run quality (type-check + lint + format:check) passed
• pnpm run build successful
• pnpm run test:run — 39/39 tests passed (Vitest 4)
• Manual test in Directus Admin UI — extension loads and works correctly

Closes #45

[github-actions]

Quality Check Results

TypeScript Type Check

✅ Passed - No type errors found

ESLint

✅ Passed - No linting errors

Prettier Format Check

✅ Passed - Code is properly formatted

Build

✅ Passed - Extension builds successfully

---

Updated: 2026-04-04T03:15:54.060Z