fix(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
@commitlint/cli (source)	^21.0.2 → ^21.1.0
@commitlint/config-conventional (source)	^21.0.2 → ^21.1.0
eslint (source)	^10.5.0 → ^10.6.0
eslint-plugin-regexp	^3.1.0 → ^3.1.1
fastify (source)	^5.8.5 → ^5.9.0
oxfmt (source)	^0.55.0 → ^0.56.0
oxlint (source)	^1.70.0 → ^1.71.0
pnpm (source)	11.8.0 → 11.9.0

---

Release Notes

conventional-changelog/commitlint (@​commitlint/cli)

v21.1.0

Compare Source

Features

• cli: add --default-config flag to lint without a config file (#​4805) (7af27ba), closes #​3662

21.0.2 (2026-05-29)

Bug Fixes

• disallow same commit hash for --from and --to (#​4773) (121005e)

21.0.1 (2026-05-12)

Note: Version bump only for package @​commitlint/cli

conventional-changelog/commitlint (@​commitlint/config-conventional)

v21.1.0

Compare Source

Note: Version bump only for package @​commitlint/config-conventional

21.0.2 (2026-05-29)

Note: Version bump only for package @​commitlint/config-conventional

21.0.1 (2026-05-12)

Note: Version bump only for package @​commitlint/config-conventional

eslint/eslint (eslint)

v10.6.0

Compare Source

Features

• b1f9106 feat: detect Symbol() and BigInt() in no-constant-binary-expression (#​20981) (Taejin Kim)
• f291007 feat: add checkRelationalComparisons to no-constant-binary-expression (#​20948) (sethamus)

Bug Fixes

• 6b05784 fix: prefer-exponentiation-operator invalid autofix at statement start (#​20997) (Milos Djermanovic)
• bb9eb2a fix: account for shadowed Boolean in no-extra-boolean-cast (#​21013) (den$)
• 8fd8741 fix: don't report shadowed undefined in radix rule (#​21011) (Pixel)
• 5784980 fix: don't report shadowed undefined in no-throw-literal (#​21010) (Pixel)
• 9cd1e6d fix: suppress invalid class suggestion in no-promise-executor-return (#​21008) (Pixel)
• d4eb2dc fix: don't report shadowed undefined in prefer-promise-reject-errors (#​21006) (Pixel)
• 2360464 fix: prefer-promise-reject-errors false positives for shadowed Promise (#​21003) (den$)
• 63d52d2 fix: restore max-classes-per-file report range (#​21002) (Pixel)
• 7feaff0 fix: callback detection logic for IIFEs in max-nested-callbacks (#​20979) (fnx)
• 399a2ec fix: don't report inner non-callbacks in max-nested-callbacks (#​20995) (Milos Djermanovic)

Documentation

• a83683d docs: Update README (GitHub Actions Bot)
• f5449f9 docs: document userland patterns for global assertionOptions in RuleT… (#​20986) (playgirl)
• bea49f7 docs: Update README (GitHub Actions Bot)
• e5f70f9 docs: update code-path diagrams (#​20984) (Tanuj Kanti)
• 8890c2d docs: add TypeScript config guidance for MCP server (#​20796) (Pierluigi Lenoci)
• 3eb3d9b docs: Update README (GitHub Actions Bot)
• c5bb59c docs: Update README (GitHub Actions Bot)
• eb3c97c docs: fix grammar in prefer-const rule description (#​20983) (lumir)

Chores

• 6a42034 ci: run ecosystem tests on main branch (#​20891) (sethamus)
• 3dbacdb ci: bump actions/checkout from 6 to 7 (#​21014) (dependabot[bot])
• c3abfca chore: correct JSDoc param types in html formatter (#​21018) (Minseon Kim)
• a832320 ci: split ecosystem tests into separate jobs (#​21001) (xbinaryx)
• 27166e7 chore: update ecosystem plugins (#​21005) (ESLint Bot)
• 865d76e ci: bump pnpm/action-setup from 6.0.8 to 6.0.9 (#​20989) (dependabot[bot])
• 27a88c9 chore: update dependency markdown-it to v14 in root (#​20994) (Milos Djermanovic)
• 970cea6 chore: update dependency markdown-it to v14 (#​20993) (Milos Djermanovic)
• b482120 chore: update dependency prettier to v3.8.4 (#​20990) (renovate[bot])
• 6993fb3 chore: update ecosystem plugins (#​20985) (ESLint Bot)

ota-meshi/eslint-plugin-regexp (eslint-plugin-regexp)

v3.1.1

Compare Source

Patch Changes

• Handle matchAll().toArray() capture usage (#​992)

fastify/fastify (fastify)

v5.9.0

Compare Source

oxc-project/oxc (oxfmt)

v0.56.0

Compare Source

oxc-project/oxc (oxlint)

v1.71.0

Compare Source

🚀 Features

• 0dc2405 linter: Add schema for eslint/no-restricted-properties (#​23619) (Sysix)
• b638d0e linter: Add schema for node/callback-return (#​23615) (Sysix)
• eb8bedc linter: Add schema for import/extensions (#​23557) (WaterWhisperer)
• 46f3625 linter: Implement node/no-sync rule (#​23589) (fujitani sora)
• b01739a linter: Add schema for unicorn/numeric-separators-style (#​23554) (Mikhail Baev)
• 68afd2a linter/node: Implement no-mixed-requires rule (#​23539) (fujitani sora)
• a421215 linter: Add schema for eslint/prefer-destructuring (#​23410) (WaterWhisperer)
• 84438be linter/jsdoc: Added missing options to require-param-description (#​23416) (kapobajza)
• 51910df linter/jsdoc: Add missing options to require-param-type rule (#​23418) (kapobajza)
• e90925f linter/unicorn: Implement prefer-number-coercion rule (#​23497) (Shekhu☺️)
• dd1c866 linter/vue: Implement no-async-in-computed-properties rule (#​23493) (bab)
• b02444e linter: Add schema for react/jsx-no-script-url (#​23475) (WaterWhisperer)
• a8dce46 linter/unicorn: Implement max-nested-calls rule (#​23461) (arieleli01212)

🐛 Bug Fixes

• a303c23 linter/jsx-a11y: Align anchor-is-valid config with upstream (#​23446) (camc314)

📚 Documentation

• b50bf4d linter: Remove manually written options doc for eslint/arrow-body-style (#​23490) (Mikhail Baev)

pnpm/pnpm (pnpm)

v11.9.0

Compare Source

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • "before 12pm on Sunday"
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

---

^{Need help on this PR? Tag /codesmith with what you need. Autofix is disabled.}

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: pnpm-lock.yaml

? Verifying lockfile against supply-chain policies (646 entries)...
Progress: resolved 1, reused 0, downloaded 0, added 0
Progress: resolved 12, reused 0, downloaded 0, added 0
Progress: resolved 16, reused 0, downloaded 0, added 0
Progress: resolved 17, reused 0, downloaded 0, added 0
Progress: resolved 19, reused 0, downloaded 0, added 0
Progress: resolved 20, reused 0, downloaded 0, added 0
Progress: resolved 23, reused 0, downloaded 0, added 0
Progress: resolved 24, reused 0, downloaded 0, added 0
[WARN] Request took 10281ms: https://registry.npmjs.org/typescript
Progress: resolved 25, reused 0, downloaded 0, added 0
Progress: resolved 27, reused 0, downloaded 0, added 0
[WARN] Request took 10016ms: https://registry.npmjs.org/@prisma%2Fengines
[WARN] Request took 11339ms: https://registry.npmjs.org/@prisma%2Fdebug
[WARN] Request took 11538ms: https://registry.npmjs.org/@prisma%2Fget-platform
[WARN] Request took 12098ms: https://registry.npmjs.org/@prisma%2Ffetch-engine
[WARN] Request took 14453ms: https://registry.npmjs.org/prisma
Progress: resolved 28, reused 0, downloaded 0, added 0
[WARN] Request took 16311ms: https://registry.npmjs.org/@prisma%2Fclient
Progress: resolved 29, reused 0, downloaded 0, added 0
[WARN] Request took 15710ms: https://registry.npmjs.org/@prisma%2Fclient
✓ Lockfile passes supply-chain policies (646 entries in 17.6s)
[ERR_PNPM_NO_MATCHING_VERSION] No matching version found for @wolfstar/http-framework@^3.0.1 while fetching it from https://registry.npmjs.org/

This error happened while installing a direct dependency of /tmp/renovate/repos/github/wolfstar-project/ring

The latest release of @wolfstar/http-framework is "2.2.2".

If you need the full list of all 1 published versions run "pnpm view @wolfstar/http-framework versions".