Bump the frontend-npm-dependencies group in /frontend with 10 updates

[dependabot]

Bumps the frontend-npm-dependencies group in /frontend with 10 updates:

Package	From	To
axios	1.13.2	1.13.3
html-react-parser	5.2.11	5.2.12
motion	12.27.0	12.29.0
react-router	7.12.0	7.13.0
recharts	3.6.0	3.7.0
@types/node	25.0.9	25.0.10
@types/react	19.2.8	19.2.9
@vitejs/plugin-basic-ssl	2.1.3	2.1.4
globals	17.0.0	17.1.0
typescript-eslint	8.53.0	8.53.1

Updates axios from 1.13.2 to 1.13.3

Release notes

Sourced from axios's releases.

Release v1.13.3

Release notes:

Bug Fixes

• http2: Use port 443 for HTTPS connections by default. (#7256) (d7e6065)
• interceptor: handle the error in the same interceptor (#6269) (5945e40)
• main field in package.json should correspond to cjs artifacts (#5756) (7373fbf)
• package.json: add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (#5754) (b89217e)
• silentJSONParsing=false should throw on invalid JSON (#7253) (#7257) (7d19335)
• turn AxiosError into a native error (#5394) (#5558) (1c6a86d)
• types: add handlers to AxiosInterceptorManager interface (#5551) (8d1271b)
• types: restore AxiosError.cause type from unknown to Error (#7327) (d8233d9)
• unclear error message is thrown when specifying an empty proxy authorization (#6314) (6ef867e)

Features

• add undefined as a value in AxiosRequestConfig (#5560) (095033c)
• add automatic minor and patch upgrades to dependabot (#6053) (65a7584)
• add Node.js coverage script using c8 (closes #7289) (#7294) (ec9d94e)
• added copilot instructions (3f83143)
• compatibility with frozen prototypes (#6265) (860e033)
• enhance pipeFileToResponse with error handling (#7169) (88d7884)
• types: Intellisense for string literals in a widened union (#6134) (f73474d), closes microsoft/TypeScript#33471

Reverts

• Revert "fix: silentJSONParsing=false should throw on invalid JSON (#7253) (#7…" (#7298) (a4230f5), closes #7253 #7 #7298
• deps: bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (#7334) (2d6ad5e)

Contributors to this release

• Ashvin Tiwari
• Nikunj Mochi
• Anchal Singh
• jasonsaayman
• Julian Dax
• Akash Dhar Dubey
• Madhumita
• Tackoil
• Justin Dhillon
• Rudransh
• WuMingDao
• codenomnom
• Nandan Acharya
• Eric Dubé
• Tibor Pilz
• Gabriel Quaresma
• Turadg Aleahmad

... (truncated)

Changelog

Sourced from axios's changelog.

1.13.3 (2026-01-20)

Bug Fixes

• http2: Use port 443 for HTTPS connections by default. (#7256) (d7e6065)
• interceptor: handle the error in the same interceptor (#6269) (5945e40)
• main field in package.json should correspond to cjs artifacts (#5756) (7373fbf)
• package.json: add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (#5754) (b89217e)
• silentJSONParsing=false should throw on invalid JSON (#7253) (#7257) (7d19335)
• turn AxiosError into a native error (#5394) (#5558) (1c6a86d)
• types: add handlers to AxiosInterceptorManager interface (#5551) (8d1271b)
• types: restore AxiosError.cause type from unknown to Error (#7327) (d8233d9)
• unclear error message is thrown when specifying an empty proxy authorization (#6314) (6ef867e)

Features

• add undefined as a value in AxiosRequestConfig (#5560) (095033c)
• add automatic minor and patch upgrades to dependabot (#6053) (65a7584)
• add Node.js coverage script using c8 (closes #7289) (#7294) (ec9d94e)
• added copilot instructions (3f83143)
• compatibility with frozen prototypes (#6265) (860e033)
• enhance pipeFileToResponse with error handling (#7169) (88d7884)
• types: Intellisense for string literals in a widened union (#6134) (f73474d), closes microsoft/TypeScript#33471

Reverts

• Revert "fix: silentJSONParsing=false should throw on invalid JSON (#7253) (#7…" (#7298) (a4230f5), closes #7253 #7 #7298
• deps: bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (#7334) (2d6ad5e)

Contributors to this release

• Ashvin Tiwari
• Nikunj Mochi
• Anchal Singh
• jasonsaayman
• Julian Dax
• Akash Dhar Dubey
• Madhumita
• Tackoil
• Justin Dhillon
• Rudransh
• WuMingDao
• codenomnom
• Nandan Acharya
• Eric Dubé
• Tibor Pilz
• Gabriel Quaresma

... (truncated)

Commits

• ab06109 chore(release): v1.13.3 (#7335)
• 2d6ad5e revert(deps): bump peter-evans/create-pull-request from 7 to 8 in the github-...
• cb49a6f chore(sponsor): update sponsor block (#7330)
• d8233d9 fix(types): restore AxiosError.cause type from unknown to Error (#7327)
• 5945e40 fix(interceptor): handle the error in the same interceptor (#6269)
• 7373fbf fix: main field in package.json should correspond to cjs artifacts (#5756)
• 8d1271b fix(types): add handlers to AxiosInterceptorManager interface (#5551)
• f869434 docs: refresh CDN URLs and example JSON headers (#7236)
• 46db331 doc: update deprecated var usage in documentation examples (#7246)
• d6bbb3d docs: add async/await timeout handling example (#7250)
• Additional commits viewable in compare view

Updates html-react-parser from 5.2.11 to 5.2.12

Release notes

Sourced from html-react-parser's releases.

v5.2.12

5.2.12 (2026-01-23)

Performance Improvements

• deps: bump html-dom-parser from 5.1.2 to 5.1.4 (#2084) (7ebfae1)

Changelog

Sourced from html-react-parser's changelog.

5.2.12 (2026-01-23)

Performance Improvements

• deps: bump html-dom-parser from 5.1.2 to 5.1.4 (#2084) (7ebfae1)

Commits

• 91c5a8a Merge pull request #2085 from remarkablemark/release-please--branches--master...
• 0119ce8 chore(master): release 5.2.12
• 894f05b build(package-lock): fix 1 low severity vulnerability
• da5be1a build(package): bump @​rollup/plugin-typescript from 12.1.4 to 12.3.0
• 7ebfae1 perf(deps): bump html-dom-parser from 5.1.2 to 5.1.4 (#2084)
• 450f80d build(deps-dev): bump rollup from 4.55.3 to 4.56.0 (#2082)
• 8a980e9 build(deps-dev): bump globals from 17.0.0 to 17.1.0 (#2083)
• da3261c build(deps-dev): bump @​types/node from 25.0.9 to 25.0.10 (#2081)
• ea9f9a7 build(deps-dev): bump rollup from 4.55.2 to 4.55.3 (#2080)
• 917f8ef build(deps-dev): bump publint from 0.3.16 to 0.3.17 (#2079)
• Additional commits viewable in compare view

Updates motion from 12.27.0 to 12.29.0

Changelog

Sourced from motion's changelog.

[12.29.0] 2026-01-22

Added

• transformViewBoxPoint: Scale drag gestures within <svg> elements where viewBox and rendered width/height are mismatched.
• trackContentSize: New scroll and useScroll option for tracking changes to content size.

Fixed

• Add React 19 test suite to CI.
• Fix types with motion.create().
• Shared element animations now respect layoutDependency.

[12.28.2] 2026-01-22

Added

• Add default value type px for fontSize.

Fixed

• Removed default value type from radius.
• Ensure LazyMotion animates initial state even when state has changed before Motion is loaded.

[12.28.1] 2026-01-21

Fixed

• Ensure scale: "0%" isn't treated as default value.

[12.28.0] 2026-01-20

Added

• useFollowValue and followValue: useSpring-style motion values that can accept any transition.

Fixed

• Fix "multiple keyframe" error when using spring animations as default transitions for animation sequences.

[12.27.5] 2026-01-20

Fixed

• Ensure pen gesture is correctly cleaned up on drag cancel.
• Fix edge case where DocumentProjectionNode's attached element was null.

[12.27.4] 2026-01-20

Added

... (truncated)

Commits

• 9482fc1 v12.29.0
• 80802dc Updating changelog
• b8a46fe Updating changelog
• 17218e3 Updating changelog
• fcfe5cd Merge pull request #3497 from motiondivision/scroll-progress-after-layout
• 84d28bf Merge pull request #3494 from motiondivision/claude/fix-transformed-layout-an...
• e63d56a Merge pull request #3495 from motiondivision/claude/fix-issue-1436-8qFF9
• d3bd6de Merge pull request #3506 from motiondivision/claude/fix-create-proxy-ts-error...
• 479f35e Merge pull request #3507 from motiondivision/dependabot/npm_and_yarn/lodash-4...
• 911cd39 Merge pull request #3493 from motiondivision/react-19-ci
• Additional commits viewable in compare view

Updates react-router from 7.12.0 to 7.13.0

Release notes

Sourced from react-router's releases.

v7.13.0

See the changelog for release notes: https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v7130

Changelog

Sourced from react-router's changelog.

7.13.0

Minor Changes

• Add crossOrigin prop to Links component (#14687)

Patch Changes

• Fix double slash normalization for useNavigate colon urls (#14718)
• Update failed origin checks to return a 400 status instead of a 500 (#14737)
• Bugfix #14666: Inline criticalCss is missing nonce (#14691)
• Loosen allowedActionOrigins glob check so ** matches all domains (#14722)

Commits

• 5557ba3 chore: Update version for release (#14749)
• 62c6e0e chore: Update version for release (pre) (#14738)
• 3126264 Return 400 response on failed origin checks (#14737)
• 3a5b5ad Fix double slash normalization for useNavigate paths with colons (#14718)
• f29c6c9 Add docs and loosen origins wildcard check (#14722)
• 0bb972b fix(react-router/dom/ssr): add nonce to inline critical css (#14691)
• dd08f8d fix(react-router): add crossOrigin prop to Links component (#14687)
• c38d76c chore: format
• See full diff in compare view

Updates recharts from 3.6.0 to 3.7.0

Release notes

Sourced from recharts's releases.

v3.7.0

What's Changed

📢 Cell is now deprecated and will be removed in the next major version. Please migrate all Cell usage to use the shape prop of respective chart elements. ‼️

Feat

New Hooks

• useIsTooltipActive: returns if the tooltip is active by @​PavelVanecek in recharts/recharts#6880
• useActiveTooltipCoordinate: returns current tooltip coordinate by @​PavelVanecek in recharts/recharts#6880

Other

• Tooltip: allow offset prop to accept Coordinate object by @​bigsaigon333 in recharts/recharts#6868 X/YAxis add new axis type: "auto" by @​PavelVanecek in recharts/recharts#6823
  • sets the type to "category" for categorical axes, and "number" for numeric axis.
• X/YAxis: replace tick: any with explicit type by @​PavelVanecek in recharts/recharts#6911
• Bar/TypeScript: add BarShapeProps type to fix Bar.shape type by @​PavelVanecek in recharts/recharts#6900
• TypeScript: add missing useful type exports for content, shape functions, etc. @​PavelVanecek in recharts/recharts#6852

Fix

• BarChart: fix stackOffset=sign for charts with 3 or more positive values in one series by @​PavelVanecek in recharts/recharts#6807
• BarStack: fix circular dependency when building with vite by @​jkr2255 in recharts/recharts#6777
• BarStack: fix BarStack clipPath in charts with stackOffset=sign by @​PavelVanecek in recharts/recharts#6806
• BarStack: apply bar stack radius to active bars by @​PavelVanecek in recharts/recharts#6906

Chore

• Enabled strict tsconfig by @​PavelVanecek in recharts/recharts#6842

Docs

We've started auto-generating our docs for the most part so you should see large improvements in accuracy of the docs between the code, the website, and the storybook. Huge shoutout to @​PavelVanecek 🚀

• Dark mode 🕶️ by @​cloud-walker in recharts/recharts#6828
  • Thanks @​cloud-walker
• Recharts devtools has been added to all website examples for easier issue debugging

New Contributors

• @​jkr2255 made their first contribution in recharts/recharts#6777
• @​cloud-walker made their first contribution in recharts/recharts#6824
• @​bigsaigon333 made their first contribution in recharts/recharts#6868
• @​huangkevin-apr made their first contribution in recharts/recharts#6872

Full Changelog: recharts/recharts@v3.6.0...v3.7.0

Commits

• d1bc41c 3.7.0 (#6913)
• 8ea7355 Replace tick: any with explicit type (#6911)
• 5586fb2 Deprecate Cell, move all examples to shape, export ScatterShapeProps (#6904)
• 9644f29 chore(deps-dev): bump typescript-eslint from 8.53.0 to 8.53.1 (#6910)
• 3f9dbd0 chore(deps): bump eventemitter3 from 5.0.1 to 5.0.4 (#6908)
• 6529696 chore(deps-dev): bump @​testing-library/react from 16.3.1 to 16.3.2 (#6909)
• bef3630 Clarify docs (#6907)
• 2548a9f Apply BarStackClipLayer on active bars (#6906)
• 0374d8e Remove duplicate stories (#6901)
• 23a42f4 [Omnidoc] Link examples from each prop (#6899)
• Additional commits viewable in compare view

Updates @types/node from 25.0.9 to 25.0.10

Commits

• See full diff in compare view

Updates @types/react from 19.2.8 to 19.2.9

Commits

• See full diff in compare view

Updates @vitejs/plugin-basic-ssl from 2.1.3 to 2.1.4

Release notes

Sourced from @​vitejs/plugin-basic-ssl's releases.

v2.1.4

Please refer to CHANGELOG.md for details.

Changelog

Sourced from @​vitejs/plugin-basic-ssl's changelog.

2.1.4 (2026-01-20)

Miscellaneous Chores

• add metadata for vite-plugin-registry (#93) (c0cd669)
• deps: update all non-major dependencies (#92) (2c68bf6)

Commits

• b0cee95 release: v2.1.4
• 2c68bf6 chore(deps): update all non-major dependencies (#92)
• c0cd669 chore: add metadata for vite-plugin-registry (#93)
• See full diff in compare view

Updates globals from 17.0.0 to 17.1.0

Release notes

Sourced from globals's releases.

v17.1.0

• Add webpack and rspack globals (#333) 65cae73

---

sindresorhus/globals@v17.0.0...v17.1.0

Commits

• 7a2f354 17.1.0
• 65cae73 Add webpack and rspack globals (#333)
• 3efe5aa Remove script transform (#332)
• See full diff in compare view

Updates typescript-eslint from 8.53.0 to 8.53.1

Release notes

Sourced from typescript-eslint's releases.

v8.53.1

8.53.1 (2026-01-19)

🩹 Fixes

• eslint-plugin: [consistent-indexed-object-style] skip fixer if interface is a default export (#11951)
• utils: make RuleCreator root defaultOptions optional (#11956)

❤️ Thank You

• Cameron
• Yukihiro Hasegawa @​y-hsgw

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from typescript-eslint's changelog.

8.53.1 (2026-01-19)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

• 9940e53 chore(release): publish 8.53.1
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions