chore(deps-dev): bump the dependencies group across 1 directory with 6 updates

[dependabot]

Bumps the dependencies group with 6 updates in the / directory:

Package	From	To
@eslint/js	9.37.0	9.38.0
@stylistic/eslint-plugin	5.4.0	5.5.0
@types/node	22.18.9	22.18.11
eslint	9.37.0	9.38.0
hono	4.9.10	4.10.1
koa	3.0.1	3.0.3

Updates @eslint/js from 9.37.0 to 9.38.0

Release notes

Sourced from @​eslint/js's releases.

v9.38.0

Features

• ce40f74 feat: update complexity rule to only highlight function header (#20048) (Atul Nair)
• e37e590 feat: correct no-loss-of-precision false positives with e notation (#20187) (Francesco Trotta)

Bug Fixes

• 50c3dfd fix: improve type support for isolated dependencies in pnpm (#20201) (Francesco Trotta)
• a1f06a3 fix: correct SourceCode typings (#20114) (Pixel998)

Documentation

• 462675a docs: improve web accessibility by hiding non-semantic character (#20205) (루밀LuMir)
• c070e65 docs: correct formatting in no-irregular-whitespace rule documentation (#20203) (루밀LuMir)
• b39e71a docs: Update README (GitHub Actions Bot)
• cd39983 docs: move custom-formatters type descriptions to nodejs-api (#20190) (Percy Ma)

Chores

• d17c795 chore: upgrade @​eslint/js@​9.38.0 (#20221) (Milos Djermanovic)
• 25d0e33 chore: package.json update for @​eslint/js release (Jenkins)
• c82b5ef refactor: Use types from @​eslint/core (#20168) (Nicholas C. Zakas)
• ff31609 ci: add Node.js 25 to ci.yml (#20220) (루밀LuMir)
• 004577e ci: bump github/codeql-action from 3 to 4 (#20211) (dependabot[bot])
• eac71fb test: remove use of nodejsScope option of eslint-scope from tests (#20206) (Milos Djermanovic)
• 4168a18 chore: fix typo in legacy-eslint.js (#20202) (Sweta Tanwar)
• 205dbd2 chore: fix typos (#20200) (ntnyq)
• dbb200e chore: use team member's username when name is not available in data (#20194) (Milos Djermanovic)
• 8962089 chore: mark deprecated rules as available until v11.0.0 (#20184) (Pixel998)

Commits

• 25d0e33 chore: package.json update for @​eslint/js release
• See full diff in compare view

Updates @stylistic/eslint-plugin from 5.4.0 to 5.5.0

Release notes

Sourced from @​stylistic/eslint-plugin's releases.

v5.5.0

5.5.0 (2025-10-18)

Features

• comma-dangle: support TSFunctionType and TSDeclareFunction (#1015) (cd3776f)
• comma-dangle: support TSTypeParameterInstantiation (#1016) (ba930e7)
• indent: deprecate offsetTernaryExpressionsOffsetCallExpressions via offsetTernaryExpressions.CallExpression (#997) (f2837b1)
• indent: introduce NewExpression and AwaitExpression in offsetTernaryExpressions (#996) (2b5a39f)
• new rule list-style (#895) (a9ec0de)
• object-curly-spacing: add emptyObjects option to control spacing in empty objects (#1002) (85ef5bc)
• padding-line-between-statements: narrow report range to reduce noise (#1017) (b3a3acf)
• update deps (#1011) (9d5085c)

Bug Fixes

• indent: correctly indent NewExpression in ConditionalExpression (#994) (01cec33)
• replace context.getSourceCode() with context.sourceCode (#1004) (f3faa54)

Documentation

• contribute: add guide to run the document site (#1001) (37a64c5)
• object-curly-spacing: introduce overrides (#998) (6452b52)

Chores

• no-extra-parens: remove useless logic (#1013) (8e34765)
• remove TestCaseError#type (#1005) (83d00c5)
• replace Object.prototype.hasOwnProperty.call with Object.hasOwn (#992) (97193e1)

Changelog

Sourced from @​stylistic/eslint-plugin's changelog.

5.5.0 (2025-10-18)

Features

• comma-dangle: support TSFunctionType and TSDeclareFunction (#1015) (cd3776f)
• comma-dangle: support TSTypeParameterInstantiation (#1016) (ba930e7)
• indent: deprecate offsetTernaryExpressionsOffsetCallExpressions via offsetTernaryExpressions.CallExpression (#997) (f2837b1)
• indent: introduce NewExpression and AwaitExpression in offsetTernaryExpressions (#996) (2b5a39f)
• new rule list-style (#895) (a9ec0de)
• object-curly-spacing: add emptyObjects option to control spacing in empty objects (#1002) (85ef5bc)
• padding-line-between-statements: narrow report range to reduce noise (#1017) (b3a3acf)
• update deps (#1011) (9d5085c)

Bug Fixes

• indent: correctly indent NewExpression in ConditionalExpression (#994) (01cec33)
• replace context.getSourceCode() with context.sourceCode (#1004) (f3faa54)

Documentation

• contribute: add guide to run the document site (#1001) (37a64c5)
• object-curly-spacing: introduce overrides (#998) (6452b52)

Chores

• no-extra-parens: remove useless logic (#1013) (8e34765)
• remove TestCaseError#type (#1005) (83d00c5)
• replace Object.prototype.hasOwnProperty.call with Object.hasOwn (#992) (97193e1)

Commits

• ad0c6a9 chore: release v5.5.0 (main) (#995)
• ba930e7 feat(comma-dangle): support TSTypeParameterInstantiation (#1016)
• b3a3acf feat(padding-line-between-statements): narrow report range to reduce noise (#...
• cd3776f feat(comma-dangle): support TSFunctionType and TSDeclareFunction (#1015)
• 8e34765 refactor(no-extra-parens): remove useless logic (#1013)
• 9d5085c feat: update deps (#1011)
• f2837b1 feat(indent): deprecate offsetTernaryExpressionsOffsetCallExpressions via `...
• 85ef5bc feat(object-curly-spacing): add emptyObjects option to control spacing in e...
• a9ec0de feat: new rule list-style (#895)
• 2b5a39f feat(indent): introduce NewExpression and AwaitExpression in `offsetTerna...
• Additional commits viewable in compare view

Updates @types/node from 22.18.9 to 22.18.11

Commits

• See full diff in compare view

Updates eslint from 9.37.0 to 9.38.0

Release notes

Sourced from eslint's releases.

v9.38.0

Features

• ce40f74 feat: update complexity rule to only highlight function header (#20048) (Atul Nair)
• e37e590 feat: correct no-loss-of-precision false positives with e notation (#20187) (Francesco Trotta)

Bug Fixes

• 50c3dfd fix: improve type support for isolated dependencies in pnpm (#20201) (Francesco Trotta)
• a1f06a3 fix: correct SourceCode typings (#20114) (Pixel998)

Documentation

• 462675a docs: improve web accessibility by hiding non-semantic character (#20205) (루밀LuMir)
• c070e65 docs: correct formatting in no-irregular-whitespace rule documentation (#20203) (루밀LuMir)
• b39e71a docs: Update README (GitHub Actions Bot)
• cd39983 docs: move custom-formatters type descriptions to nodejs-api (#20190) (Percy Ma)

Chores

• d17c795 chore: upgrade @​eslint/js@​9.38.0 (#20221) (Milos Djermanovic)
• 25d0e33 chore: package.json update for @​eslint/js release (Jenkins)
• c82b5ef refactor: Use types from @​eslint/core (#20168) (Nicholas C. Zakas)
• ff31609 ci: add Node.js 25 to ci.yml (#20220) (루밀LuMir)
• 004577e ci: bump github/codeql-action from 3 to 4 (#20211) (dependabot[bot])
• eac71fb test: remove use of nodejsScope option of eslint-scope from tests (#20206) (Milos Djermanovic)
• 4168a18 chore: fix typo in legacy-eslint.js (#20202) (Sweta Tanwar)
• 205dbd2 chore: fix typos (#20200) (ntnyq)
• dbb200e chore: use team member's username when name is not available in data (#20194) (Milos Djermanovic)
• 8962089 chore: mark deprecated rules as available until v11.0.0 (#20184) (Pixel998)

Commits

• 8fe511b 9.38.0
• f961736 Build: changelog update for 9.38.0
• d17c795 chore: upgrade @​eslint/js@​9.38.0 (#20221)
• 25d0e33 chore: package.json update for @​eslint/js release
• 50c3dfd fix: improve type support for isolated dependencies in pnpm (#20201)
• c82b5ef refactor: Use types from @​eslint/core (#20168)
• ff31609 ci: add Node.js 25 to ci.yml (#20220)
• ce40f74 feat: update complexity rule to only highlight function header (#20048)
• e37e590 feat: correct no-loss-of-precision false positives with e notation (#20187)
• 004577e ci: bump github/codeql-action from 3 to 4 (#20211)
• Additional commits viewable in compare view

Updates hono from 4.9.10 to 4.10.1

Release notes

Sourced from hono's releases.

v4.10.1

What's Changed

• fix(types): cannot .use non-return mw from createMiddleware by @​NamesMT in honojs/hono#4465

Full Changelog: honojs/hono@v4.10.0...v4.10.1

v4.10.0

Release Notes

Hono v4.10.0 is now available!

This release brings improved TypeScript support and new utilities.

The main highlight is the enhanced middleware type definitions that solve a long-standing issue with type safety for RPC clients.

Middleware Type Improvements

Imagine the following app:

import { Hono } from 'hono'
const app = new Hono()
const routes = app.get(
'/',
(c) => {
return c.json({ errorMessage: 'Error!' }, 500)
},
(c) => {
return c.json({ message: 'Success!' }, 200)
}
)

The client with RPC:

import { hc } from 'hono/client'
const client = hc<typeof routes>('/')
const res = await client.index.$get()
if (res.status === 500) {
}
if (res.status === 200) {
}
</tr></table>

... (truncated)

Commits

• db764c2 4.10.1
• 8774bf9 fix(types): cannot .use non-return mw from createMiddleware (#4465)
• 5eb7c15 4.10.0
• f0c0377 Merge pull request #4461 from honojs/next
• 9ae98c9 fix(proxy): Correct hop-by-hop header handling per RFC 9110 (#4459)
• 1280661 feat(request): add cloneRawRequest utility for request cloning (#4382)
• fb2a7ef feat(ssg): add default plugin that defines the recommended behavior (#4394)
• 0133317 feat(types): passing middleware types (#4393)
• 4b796cf 4.9.12
• 17e4455 refactor: use protected methods instead of computed properties to allow `tree...
• Additional commits viewable in compare view

Updates koa from 3.0.1 to 3.0.3

Release notes

Sourced from koa's releases.

v3.0.3

What's Changed

• fix: normalize referer before redirect by @​fengmk2 in koajs/koa#1908

Full Changelog: koajs/koa@v3.0.2...v3.0.3

v3.0.2

What's Changed

• fix: fixes response.attachment behaviour leads to Content-Type Sniffing by @​yowainwright in koajs/koa#1904
• chore: use NPM trusted publishing with semver tag triggers by @​Copilot in koajs/koa#1907

New Contributors

• @​Copilot made their first contribution in koajs/koa#1907

Full Changelog: koajs/koa@v3.0.1...v3.0.2

Commits

• ffd497a 3.0.3
• 769fd75 fix: normalize referer before redirect (#1908)
• 433b20c 3.0.2
• 307013b chore: use NPM trusted publishing with semver tag triggers (#1907)
• 83128eb fix: fixes response.attachment behavior leads to Content-Type Sniffing (#1904)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for koa since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions