Bump svelte from 4.2.3 to 5.2.4

[dependabot[bot]]

Bumps svelte from 4.2.3 to 5.2.4.

Release notes

Sourced from svelte's releases.

svelte@5.2.4

Patch Changes

• fix: ensure internal cloning can work circular values (#14347)

• fix: correctly update dynamic member expressions (#14359)

• fix: ensure is_pure takes into account $effect.tracking() (#14333)

• fix: coerce value to number when hydrating range/number input with changed value (#14349)

svelte@5.2.3

Patch Changes

• fix: ensure dynamic call expressions correctly generate output (#14345)

svelte@5.2.2

Patch Changes

• fix: treat property accesses of literals as pure (#14325)

svelte@5.2.1

Patch Changes

• fix: mark pseudo classes nested inside :not as used (#14303)

• fix: disallow invalid attributes for <svelte:window> and <svelte:document> (#14228)

• fix: ensure props passed to components via mount are updateable (#14210)

• fix: mark subtree dynamic for img with loading attribute (#14317)

• fix: avoid relying on Node specifics within compiler (#14314)

svelte@5.2.0

Minor Changes

• feat: better inlining of static attributes (#14269)

svelte@5.1.17

Patch Changes

• fix: account for :has(...) as part of :root (#14229)

• fix: prevent nested pseudo class from being marked as unused (#14229)

• fix: use strict equality for key block comparisons in runes mode (#14285)

• fix: bump is-reference dependency to fix import.meta bug (#14286)

... (truncated)

Changelog

Sourced from svelte's changelog.

svelte

Commits

• 53cc600 Version Packages (#14362)
• 747d408 fix: ensure is_pure takes into account runes (#14333)
• 7411068 fix: ensure internal cloning can work circular values (#14347)
• 6e8267f fix: correctly update dynamic member expressions (#14359)
• 012166e fix: convert input value to number on hydration (#14349)
• b145035 Version Packages (#14348)
• 1c454c2 fix: ensure dynamic call expressions correctly generate output (#14345)
• 396ea2e Version Packages (#14328)
• 3a69b4c fix: ensure inline object literals are correctly serialised (#14325)
• 95ab85f Version Packages (#14304)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[socket-security[bot]]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/next@15.0.4-canary.19	environment, filesystem, network, shell, unsafe	+8	121 MB	vercel-release-bot
npm/svelte@5.2.4	None	+17	4.77 MB	conduitry, rich_harris, svelte-admin

🚮 Removed packages: npm/next@15.0.4-canary.18, npm/svelte@4.2.3

View full report↗︎

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.