chore(deps-dev): bump the npm_and_yarn group across 1 directory with 2 updates

[dependabot]

Bumps the npm_and_yarn group with 2 updates in the /frontend directory: @sveltejs/kit and svelte.

Updates @sveltejs/kit from 2.58.0 to 2.64.0

Release notes

Sourced from @​sveltejs/kit's releases.

@​sveltejs/kit@​2.64.0

Minor Changes

• feat: allow commands to receive File objects (#15978)

Patch Changes

• fix: avoid server components from being bundled if SSR is turned off for a route (#15982)

@​sveltejs/kit@​2.63.1

Patch Changes

• fix: use SSE for query.live (#15957)

• fix: use forward slashes in the generated env.d.ts import path on Windows (#15977)

• fix: allow $app/environment with a warning when explicitEnvironmentVariables is enabled (#15980)

• fix: avoid importing Vite while validating explicit environment variables (#15953)

• docs: adjust the release version of explicit env vars (#15968)

• fix: ensure version is defined when importing from $app/env with explicit environment variables (#15971)

@​sveltejs/kit@​2.63.0

Minor Changes

• feat: explicit env vars (#15934)

Patch Changes

• fix: remove check for svelte.config.js before running sync (#15946)

• fix: generate a placeholder tsconfig.json to squelch sync-time warnings (#15948)

• fix: allow use of $app/env/public in service workers (#15950)

... (truncated)

Changelog

Sourced from @​sveltejs/kit's changelog.

2.64.0

Minor Changes

• feat: allow commands to receive File objects (#15978)

Patch Changes

• fix: avoid server components from being bundled if SSR is turned off for a route (#15982)

2.63.1

Patch Changes

• fix: use SSE for query.live (#15957)

• fix: use forward slashes in the generated env.d.ts import path on Windows (#15977)

• fix: allow $app/environment with a warning when explicitEnvironmentVariables is enabled (#15980)

• fix: avoid importing Vite while validating explicit environment variables (#15953)

• docs: adjust the release version of explicit env vars (#15968)

• fix: ensure version is defined when importing from $app/env with explicit environment variables (#15971)

2.63.0

Minor Changes

• feat: explicit env vars (#15934)

Patch Changes

• fix: remove check for svelte.config.js before running sync (#15946)

• fix: generate a placeholder tsconfig.json to squelch sync-time warnings (#15948)

• fix: allow use of $app/env/public in service workers (#15950)

... (truncated)

Commits

• 1c30797 Version Packages (#15984)
• c630529 feat: allow commands to receive File objects (#15978)
• 1a2c1fd fix: avoid adding the component to the server node if SSR is turned off (#15982)
• 33dec0e Version Packages (#15962)
• 0fd507c fix: allow $app/environment with a warning when `explicitEnvironmentVariabl...
• a31fdc6 docs: fix explicit env vars docs version (#15968)
• 98ab0e2 chore: better internal types for page options (#15976)
• f57a4bc fix: use forward slashes in generated env.d.ts import path on Windows (#15977)
• 17fadaa fix: ensure version is defined when using $app/env with explicit env vars (#1...
• f0ba6e0 fix: keep vite out of the $app/env runtime validator (#15953)
• Additional commits viewable in compare view

Updates svelte from 5.55.5 to 5.56.3

Release notes

Sourced from svelte's releases.

svelte@5.56.3

Patch Changes

• fix: ignore errors that occur in destroyed effects (#18384)

• fix: type BigInts in $state.snapshot(...) return values (#18388)

svelte@5.56.2

Patch Changes

• fix: properly track effect end node for async sibling component (#18371)

• fix: prevent false-positive reactivity loss warning (#18373)

• chore: bump esrap dependency (#18372)

• fix: ignore declaration tags for animation directive (#18366)

• fix: reject pending async deriveds on discard (#18308)

svelte@5.56.1

Patch Changes

• fix: error at compile time on duplicate snippet/declaration tag definitions (#18351)

• fix: parse declaration tag contents more robustly (#18353)

• fix: correctly transform references to earlier declarators in a declaration tag (e.g. {let a = $state(0), b = $derived(a * 2)}) (#18348)

• fix: avoid spurious state_referenced_locally warnings for $derived declarations in declaration tags (#18348)

• fix: tolerate whitespace before let/const in declaration tags (#18348)

• fix: prevent infinite loop when a tag's expression ends with a trailing / at the end of the input (#18350)

• fix: more robust parsing of declaration tags with regards to type (#18330)

• fix: preserve newlines in spread input values when the type attribute is applied after value (#18345)

• fix: update SvelteURLSearchParams when setting duplicate keys to the same joined value (#18336)

• fix: check references for blockers on server, too (#18352)

svelte@5.56.0

Minor Changes

• feat: allow declarations in the template (#18282)

Patch Changes

... (truncated)

Changelog

Sourced from svelte's changelog.

5.56.3

Patch Changes

• fix: ignore errors that occur in destroyed effects (#18384)

• fix: type BigInts in $state.snapshot(...) return values (#18388)

5.56.2

Patch Changes

• fix: properly track effect end node for async sibling component (#18371)

• fix: prevent false-positive reactivity loss warning (#18373)

• chore: bump esrap dependency (#18372)

• fix: ignore declaration tags for animation directive (#18366)

• fix: reject pending async deriveds on discard (#18308)

5.56.1

Patch Changes

• fix: error at compile time on duplicate snippet/declaration tag definitions (#18351)

• fix: parse declaration tag contents more robustly (#18353)

• fix: correctly transform references to earlier declarators in a declaration tag (e.g. {let a = $state(0), b = $derived(a * 2)}) (#18348)

• fix: avoid spurious state_referenced_locally warnings for $derived declarations in declaration tags (#18348)

• fix: tolerate whitespace before let/const in declaration tags (#18348)

• fix: prevent infinite loop when a tag's expression ends with a trailing / at the end of the input (#18350)

• fix: more robust parsing of declaration tags with regards to type (#18330)

• fix: preserve newlines in spread input values when the type attribute is applied after value (#18345)

• fix: update SvelteURLSearchParams when setting duplicate keys to the same joined value (#18336)

• fix: check references for blockers on server, too (#18352)

5.56.0

Minor Changes

... (truncated)

Commits

• a9f4854 Version Packages (#18389)
• 71a6515 fix: check boundary exists before calling error handler in async derived (#18...
• 3d83c9a fix: add bigint to Primitive type for $state.snapshot (#18388)
• 51baf1c Version Packages (#18357)
• 3d5c4ab fix: prevent false-positive reactivity loss warning (#18373)
• bdb1a0f fix: ensure async block assigns correct nodes to effect (#18371)
• e4bfc5f chore: bump esrap dependency (#18372)
• 1b4c43b fix: ignore declaration tags for animation directive (#18366)
• 85dcb91 chore: upgrade to vitest v4 (#18265)
• a81f965 fix: reject pending async deriveds on discard (#18308)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.