fix(deps): update all non-major client dependencies

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update
@analogjs/vite-plugin-angular	1.22.4 → 1.22.5			devDependencies	patch
@analogjs/vitest-angular (source)	1.22.4 → 1.22.5			devDependencies	patch
@angular-devkit/build-angular	20.3.19 → 20.3.24			devDependencies	patch
@angular-eslint/builder (source)	20.5.0 → 20.7.0			devDependencies	minor
@angular-eslint/eslint-plugin (source)	20.5.0 → 20.7.0			devDependencies	minor
@angular-eslint/eslint-plugin-template (source)	20.5.0 → 20.7.0			devDependencies	minor
@angular-eslint/schematics (source)	20.5.0 → 20.7.0			devDependencies	minor
@angular-eslint/template-parser (source)	20.5.0 → 20.7.0			devDependencies	minor
@angular/animations (source)	20.3.9 → 20.3.19			dependencies	patch
@angular/build	20.3.19 → 20.3.24			devDependencies	patch
@angular/cli	20.3.19 → 20.3.24			devDependencies	patch
@angular/common (source)	20.3.14 → 20.3.19			dependencies	patch
@angular/compiler-cli (source)	20.3.9 → 20.3.19			devDependencies	patch
@angular/forms (source)	20.3.9 → 20.3.19			dependencies	patch
@angular/platform-browser (source)	20.3.9 → 20.3.19			dependencies	patch
@angular/platform-browser-dynamic (source)	20.3.9 → 20.3.19			dependencies	patch
@angular/router (source)	20.3.9 → 20.3.19			dependencies	patch
@hey-api/openapi-ts (source)	0.86.8 → 0.96.0			devDependencies	minor
@primeng/themes (source)	20.2.0 → 20.4.0			dependencies	minor
@sentry/angular (source)	10.22.0 → 10.49.0			dependencies	minor
@sentry/cli (source)	2.57.0 → 2.58.5			dependencies	minor
@tanstack/angular-query-experimental (source)	5.90.7 → 5.99.0			dependencies	minor
@types/jasmine (source)	5.1.12 → 5.1.15			devDependencies	patch
@types/node (source)	24.9.2 → 24.12.2			devDependencies	minor
@typescript-eslint/eslint-plugin (source)	8.46.2 → 8.58.2			devDependencies	minor
@typescript-eslint/parser (source)	8.46.2 → 8.58.2			devDependencies	minor
@typescript-eslint/types (source)	8.46.2 → 8.58.2			devDependencies	minor
@typescript-eslint/utils (source)	8.46.2 → 8.58.2			devDependencies	minor
@vitest/coverage-istanbul (source)	4.0.5 → 4.1.4			devDependencies	minor
@vitest/ui (source)	4.0.5 → 4.1.4			devDependencies	minor
alpine	3.22 → 3.23			final	minor
autoprefixer	10.4.21 → 10.5.0			devDependencies	minor
eslint (source)	9.38.0 → 9.39.4			devDependencies	minor
eslint-plugin-jsdoc	61.1.11 → 61.7.1			devDependencies	minor
eslint-plugin-prettier	5.5.4 → 5.5.5			devDependencies	patch
jasmine-core (source)	5.12.0 → 5.13.0			devDependencies	minor
keycloak-js (source)	26.2.1 → 26.2.3			dependencies	patch
marked (source)	16.4.1 → 16.4.2			dependencies	patch
nginx	1.29.3-alpine → 1.30.0-alpine			final	minor
node (source)	24.10.0 → 24.15.0				minor
postcss (source)	8.5.6 → 8.5.10			devDependencies	patch
prettier (source)	3.6.2 → 3.8.3			devDependencies	minor
primeng (source)	20.2.0 → 20.4.0			dependencies	minor
tailwindcss (source)	3.4.18 → 3.4.19			devDependencies	patch
vitest (source)	4.0.5 → 4.1.4			devDependencies	minor

---

Release Notes

analogjs/analog (@​analogjs/vite-plugin-angular)

v1.22.5

Compare Source

Bug Fixes

• vite-plugin-angular: expand optimization for Angular packages (484553c)

angular/angular-cli (@​angular-devkit/build-angular)

v20.3.24

Compare Source

@​angular/build

Commit	Type	Description
10c09c77b	fix	update esbuild to 0.28.0

v20.3.23

Compare Source

@​angular/build

Commit	Type	Description
ccab02ba0	fix	update vite to 7.3.2

v20.3.22

Compare Source

@​angular-devkit/build-angular

Commit	Type	Description
5978eeeff	fix	update picomatch to 4.0.4

@​angular-devkit/core

Commit	Type	Description
6e9b92612	fix	update picomatch to 4.0.4

@​angular/build

Commit	Type	Description
6f209c26d	fix	update picomatch to 4.0.4

v20.3.21

Compare Source

@​angular/ssr

Commit	Type	Description
1dc6992a5	fix	disallow x-forwarded-prefix starting with a backslash
0a2ff0b2b	fix	ensure unique values in redirect response Vary header
cdbac82a8	fix	support custom headers in redirect responses

v20.3.20

Compare Source

@​angular/build

Commit	Type	Description
0fd6823af	fix	pass process environment variables to prerender workers

angular-eslint/angular-eslint (@​angular-eslint/builder)

v20.7.0

Compare Source

This was a version bump only for builder to align it with other projects, there were no code changes.

v20.6.0

Compare Source

🚀 Features

• builder: support {projectName} and {projectRoot} placeholders in outputFile (#​2759)

❤️ Thank You

• James Henry @​JamesHenry

v20.5.2

Compare Source

This was a version bump only for builder to align it with other projects, there were no code changes.

v20.5.1

Compare Source

This was a version bump only for builder to align it with other projects, there were no code changes.

angular-eslint/angular-eslint (@​angular-eslint/eslint-plugin)

v20.7.0

Compare Source

🩹 Fixes

• eslint-plugin: [use-component-selector] detect variables (#​2797)
• eslint-plugin: false negatives in pipe-prefix, component-selector and directive-selector when linting selectors that only contain a prefix (#​2769)
• eslint-plugin: [prefer-inject] improve test coverage and documentation (#​2770)

❤️ Thank You

• Dmitry Zakharov @​pumano
• Evgeny Stepanovych @​undsoft
• James Henry @​JamesHenry

v20.6.0

Compare Source

🚀 Features

• eslint-plugin: support multiple configs for component-selector and directive-selector (#​2762)

❤️ Thank You

• James Henry @​JamesHenry

v20.5.2

Compare Source

🩹 Fixes

• eslint-plugin: update style guide links (#​2689)
• eslint-plugin-template: [use-lifecycle-interface] fix fixer when class contains generics (#​2749)

❤️ Thank You

• Aristeidis Bampakos @​bampakoa
• Evgeny Stepanovych @​undsoft

v20.5.1

Compare Source

🩹 Fixes

• eslint-plugin: [no-uncalled-signals] fix false positives (#​2705)

❤️ Thank You

• Dave @​reduckted

angular-eslint/angular-eslint (@​angular-eslint/eslint-plugin-template)

v20.7.0

Compare Source

🚀 Features

• eslint-plugin-template: [prefer-ngsrc] add suggestions (#​2772)

❤️ Thank You

• Evgeny Stepanovych @​undsoft

v20.6.0

Compare Source

This was a version bump only for eslint-plugin-template to align it with other projects, there were no code changes.

v20.5.2

Compare Source

🩹 Fixes

• eslint-plugin-template: [prefer-ngsrc] support data URLs in more scenarios (#​2719)
• eslint-plugin-template: [conditional-complexity] handle animation directives without values (#​2747)

❤️ Thank You

• Evgeny Stepanovych @​undsoft
• James Henry @​JamesHenry

v20.5.1

Compare Source

🩹 Fixes

• eslint-plugin-template: support uppercase tags (#​2712)

❤️ Thank You

• Evgeny Stepanovych @​undsoft

angular-eslint/angular-eslint (@​angular-eslint/schematics)

v20.7.0

Compare Source

This was a version bump only for schematics to align it with other projects, there were no code changes.

v20.6.0

Compare Source

This was a version bump only for schematics to align it with other projects, there were no code changes.

v20.5.2

Compare Source

This was a version bump only for schematics to align it with other projects, there were no code changes.

v20.5.1

Compare Source

This was a version bump only for schematics to align it with other projects, there were no code changes.

angular-eslint/angular-eslint (@​angular-eslint/template-parser)

v20.7.0

Compare Source

This was a version bump only for template-parser to align it with other projects, there were no code changes.

v20.6.0

Compare Source

This was a version bump only for template-parser to align it with other projects, there were no code changes.

v20.5.2

Compare Source

🩹 Fixes

• template-parser: ensure loc object is applied correctly (#​2754)

❤️ Thank You

• James Henry @​JamesHenry

v20.5.1

Compare Source

This was a version bump only for template-parser to align it with other projects, there were no code changes.

angular/angular (@​angular/animations)

v20.3.19

Compare Source

platform-server

Commit	Type	Description
303d4cd580	fix	prevent SSRF bypasses via protocol-relative and backslash URLs

v20.3.18

Compare Source

compiler

Commit	Type	Description
02fbf08890	fix	disallow translations of iframe src

core

Commit	Type	Description
72126f9a08	fix	sanitize translated attribute bindings with interpolations
626bc8bc20	fix	sanitize translated form attributes

v20.3.17

Compare Source

Breaking Changes

core

• Angular now only applies known attributes from HTML in translated ICU content. Unknown attributes are dropped and not rendered.

  (cherry picked from commit 03da204)

core

Commit	Type	Description
7f9de3c118	fix	block creation of sensitive URI attributes from ICU messages

v20.3.16

Compare Source

core

Commit	Type	Description
c2c2b4aaa8	fix	sanitize sensitive attributes on SVG script elements

v20.3.15

Compare Source

compiler

Commit	Type	Description
d1ca8ae043	fix	prevent XSS via SVG animation attributeName and MathML/SVG URLs

v20.3.14

Compare Source

http

Commit	Type	Description
0276479e7d	fix	prevent XSRF token leakage to protocol-relative URLs

v20.3.13

Compare Source

v20.3.12

Compare Source

v20.3.11

Compare Source

common

Commit	Type	Description
5047849a4a	fix	remove placeholder image listeners once view is removed

compiler

Commit	Type	Description
f9d0818087	fix	support arbitrary nesting in :host-context()
106b9040df	fix	support commas in :host() argument
9419ea348a	fix	support complex selectors in :nth-child()
036c5d2a07	fix	support one additional level of nesting in :host()

core

Commit	Type	Description
dcdd1bcdbb	fix	skip leave animations on view swaps

v20.3.10

Compare Source

compiler-cli

Commit	Description
	make required inputs diagnostic less noisy

migrations

Commit	Description
	Prevent removal of templates referenced with preceding whitespace characters

hey-api/openapi-ts (@​hey-api/openapi-ts)

v0.96.0

@​hey-api/openapi-ts 0.96.0

⚠️ Breaking

This release has 1 breaking change. Please review the release notes carefully before upgrading.

Updates

• ⚠️ Breaking: This release bumps the minimum required Node version to 22.13. (#​3694)
• cli: improve error message on invalid input (#​3679)
• parser: keep orphans when explicitly included in filters (#​3714)
• parser: process enum metadata (#​3727)

Plugins

@​angular/common

• requests and resources broken default configuration (#​3678)

@​hey-api/client-angular

• simplify SSE line endings normalization (#​3686)

@​hey-api/client-axios

• simplify SSE line endings normalization (#​3686)

@​hey-api/client-fetch

• simplify SSE line endings normalization (#​3686)

@​hey-api/client-ky

• simplify SSE line endings normalization (#​3686)

@​hey-api/client-next

• simplify SSE line endings normalization (#​3686)

@​hey-api/client-nuxt

• simplify SSE line endings normalization (#​3686)

@​hey-api/client-ofetch

• simplify SSE line endings normalization (#​3686)

@​hey-api/transformers

• return value for primitive array entries (#​3733)

---

@​hey-api/codegen-core 0.8.0

⚠️ Breaking

This release has 1 breaking change. Please review the release notes carefully before upgrading.

Updates

• ⚠️ Breaking: This release bumps the minimum required Node version to 22.13. (#​3694)

---

@​hey-api/json-schema-ref-parser 1.4.0

⚠️ Breaking

This release has 1 breaking change. Please review the release notes carefully before upgrading.

Updates

• ⚠️ Breaking: This release bumps the minimum required Node version to 22.13. (#​3694)
• internal: export errors (#​3679)

---

@​hey-api/shared 0.4.0

⚠️ Breaking

This release has 1 breaking change. Please review the release notes carefully before upgrading.

Updates

• ⚠️ Breaking: This release bumps the minimum required Node version to 22.13. (#​3694)
• parser: keep orphans when explicitly included in filters (#​3714)
• parser: process enum metadata (#​3727)
• error: handle InputError (#​3679)

---

@​hey-api/spec-types 0.2.0

⚠️ Breaking

This release has 2 breaking changes. Please review the release notes carefully before upgrading.

Updates

• ⚠️ Breaking: remove OpenAPI types from JSON Schema documents (#​3715)
• ⚠️ Breaking: rename OpenAPIExtensions to SpecExtensions (#​3715)
• types: add WithSpecExtensions type (#​3734)
• openapi: stricter 2.0 version type (#​3715)
• types: use mutable arrays (#​3715)

---

@​hey-api/vite-plugin 0.3.0

⚠️ Breaking

This release has 1 breaking change. Please review the release notes carefully before upgrading.

Updates

• ⚠️ Breaking: This package is now ESM-only. (#​3688)

---

v0.95.0

Minor Changes

• plugin(valibot): remove request data schema (#​3671) (96f60ad) by @​mrlubos

Validator request schemas

Valibot plugin no longer exports composite request Data schemas. Instead, each layer is exported as a separate schema. If you're using validators with SDKs, you can preserve the composite schema with shouldExtract:

export default {
  input: "hey-api/backend", // sign up at app.heyapi.dev
  output: "src/client",
  plugins: [
    // ...other plugins
    {
      name: "sdk",
      validator: "valibot",
    },
    {
      name: "valibot",
      requests: {
        shouldExtract: true,
      },
    },
  ],
};

• internal: remove plugin.getSymbol() function (#​3671) (96f60ad) by @​mrlubos

Removed plugin.getSymbol() function

This function has been removed. You can use plugin.querySymbol() instead. It accepts the same arguments and returns the same result.

• plugin(zod): remove request data schema (#​3671) (96f60ad) by @​mrlubos

Validator request schemas

Zod plugin no longer exports composite request Data schemas. Instead, each layer is exported as a separate schema. If you're using validators with SDKs, you can preserve the composite schema with shouldExtract:

export default {
  input: "hey-api/backend", // sign up at app.heyapi.dev
  output: "src/client",
  plugins: [
    // ...other plugins
    {
      name: "sdk",
      validator: "zod",
    },
    {
      name: "zod",
      requests: {
        shouldExtract: true,
      },
    },
  ],
};

Patch Changes

• plugin(@​hey-api/client-axios): fix: improve beforeRequest typing (#​3660) (f3f887e) by @​tomvdv

• plugin(zod): export request body, path, query, and headers schemas (#​3671) (96f60ad) by @​mrlubos

• plugin(@​hey-api/client-ky): fix: improve beforeRequest typing (#​3660) (d65b5c7) by @​tomvdv

• plugin(@​hey-api/client-next): fix: improve beforeRequest typing (#​3660) (a4b13d4) by @​tomvdv

• plugin(@​hey-api/client-angular): fix: improve beforeRequest typing (#​3660) (9ecc562) by @​tomvdv

• plugin(orpc): fix: adjust input shape (#​3671) (96f60ad) by @​mrlubos

• plugin(@​hey-api/client-fetch): fix: improve beforeRequest typing (#​3660) (11be579) by @​tomvdv

• plugin(valibot): export request b

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

🚨 Client Code Validation Failed 🚨

The client code in /client/src/app/core/modules/openapi is not up-to-date.
Please regenerate the client code by running:

cd ./client
yarn generate:openapi

Commit and push the updated files.

[codacy-production]

Up to standards ✅

🟢 Issues 0 issues

Results:
0 new issues

View in Codacy

🟢 Metrics 0 complexity

Metric	Results
Complexity	✅ 0 (≤ 20 complexity)

View in Codacy

🟢 Coverage ∅ diff coverage · -0.85% coverage variation

Metric	Results
Coverage variation	✅ -0.85% coverage variation (-1.00%)
Diff coverage	✅ ∅ diff coverage

View coverage diff in Codacy

Coverage variation details

	Coverable lines	Covered lines	Coverage
Common ancestor commit (4b1bd05)	10087	4191	41.55%
Head commit (84de6f4)	7426 (-2661)	3022 (-1169)	40.69% (-0.85%)

Coverage variation is the difference between the coverage for the head and common ancestor commits of the pull request branch: <coverage of head commit> - <coverage of common ancestor commit>

Diff coverage details

	Coverable lines	Covered lines	Diff coverage
Pull request (#851)	0	0	∅ (not applicable)

Diff coverage is the percentage of lines that are covered by tests out of the coverable lines that the pull request added or modified: <covered lines added or modified>/<coverable lines added or modified> * 100%

_{TIP This summary will be updated as you push new changes. Give us feedback}