chore(deps): bump the npm-minor-patch group in /openmetadata-ui/src/main/resources/ui with 20 updates

[dependabot]

Bumps the npm-minor-patch group in /openmetadata-ui/src/main/resources/ui with 20 updates:

Package	From	To
@analytics/session-utils	0.1.19	0.2.4
@antv/g6	5.1.0	5.1.1
@melloware/react-logviewer	6.4.1	6.5.2
antlr4	4.9.2	4.13.2
axios	1.15.2	1.16.1
dompurify	3.4.1	3.4.3
elkjs	0.9.3	0.11.1
html-to-image	1.11.11	1.11.13
katex	0.16.45	0.16.46
qs	6.14.2	6.15.1
@types/qs	6.15.0	6.15.1
@babel/preset-env	7.29.2	7.29.5
@playwright/test	1.57.0	1.60.0
@types/use-analytics	0.0.0	0.0.3
@typescript-eslint/eslint-plugin	8.59.0	8.59.3
@typescript-eslint/parser	8.59.0	8.59.3
less	4.1.3	4.6.4
postcss	8.5.10	8.5.14
sync-i18n	0.0.20	0.0.21
vite-plugin-node-polyfills	0.24.0	0.27.0

Updates @analytics/session-utils from 0.1.19 to 0.2.4

Commits

• 96a8643 chore(release): 🎉 🚀 [skip ci]
• daa78b6 chore: add type
• 6e721e2 fix: update package.json main fields to use .cjs extension and add build veri...
• c69e93a chore(release): 🎉 🚀 [skip ci]
• 219df7b fix: update TypeScript types and enhance JSDoc comments in analytics-util-act...
• 4f3dad2 chore(release): 🎉 🚀 [skip ci]
• e99ddd2 chore: ignore
• ddd8bc5 chore: update pnpm-lock.yaml to include TypeScript 5.9.2 and modify test case...
• 704ae93 feat: enhance analytics-util-activity with TypeScript support and improved do...
• bc14ca8 chore: lock
• Additional commits viewable in compare view

Updates @antv/g6 from 5.1.0 to 5.1.1

Release notes

Sourced from @​antv/g6's releases.

5.1.1

What's Changed

• docs: replace playground with ob by @​yvonneyx in antvis/G6#7226
• docs: 更新图表示例中, 点选示例配置 by @​louhaojie99 in antvis/G6#7247
• docs: update labelText attribute types for generic node configuration by @​louhaojie99 in antvis/G6#7248
• docs: 修正元素 Element 内置节点 HTML 文档中样式配置类型以及默认值问题 by @​louhaojie99 in antvis/G6#7249
• docs: 修正元素 Element 的通用配置项中，属性介绍表头的类型与默认值位置错误 by @​louhaojie99 in antvis/G6#7250
• docs: 修正 Graph - 图 介绍中的内容符号缺失及空格问题 by @​louhaojie99 in antvis/G6#7251
• docs: restructure of the menu by @​yvonneyx in antvis/G6#7253
• docs: 更新元素通用属性文档 by @​yvonneyx in antvis/G6#7256
• docs: 丰富html节点文档 by @​yvonneyx in antvis/G6#7257
• docs: 更新元素状态和Tooltip插件文档，增强内容和示例 by @​yvonneyx in antvis/G6#7260
• fix: fix indented-tree demo by @​TZZack in antvis/G6#7242
• fix(edge-badge): add default edge badge opacity by @​TZZack in antvis/G6#7243
• fix: fix type of is-to-be-destroyed by @​Aarebecca in antvis/G6#7246
• fix: compact box layout docs by @​SamuNatsu in antvis/G6#7284
• feat(layout): add comboFilter by @​TZZack in antvis/G6#7244
• fix(transform): prevent redirected edges from being re-added in process-parallel-edges by @​lyw405 in antvis/G6#7266
• feat: minimap，配置项，shape方法，添加第3个参数，传入完整图形 by @​XiaoMing-xmg666 in antvis/G6#7286
• fix: divide by zero error when fitView with no content by @​louisch in antvis/G6#7292
• fix(brush-select and lasso-select): adapt html node by @​TZZack in antvis/G6#7293
• test: skip react node test case to make ci work by @​hustcc in antvis/G6#7311
• fix: correct drag node position at rotated canvas by @​Sloth9527 in antvis/G6#7310
• feat: title plugin by @​XiaoMing-xmg666 in antvis/G6#7294
• fix: console.error emit from grid line plugin when followZoom is on by @​louisch in antvis/G6#7289
• docs: 添加g6-extension-vue自定义节点文档 by @​Child-qjj in antvis/G6#7320
• docs: make redirect link right by @​ZWkang in antvis/G6#7323
• docs: 修正元素状态属性栏, 禁用状态名描述错误，将 disable 更正为 disabled by @​louhaojie99 in antvis/G6#7334
• feat: add hasNode/hasEdge/hasCombo API by @​Aarebecca in antvis/G6#7345
• fix: 修复 React 16/17 版本下 react-dom/client 模块解析失败的问题 by @​yinsong19 in antvis/G6#7389
• Update BaseNode.zh.md by @​Gitsifu in antvis/G6#7370
• chore:add issue automated by @​interstellarmt in antvis/G6#7391
• Upgrade canvas version in g6-ssr by @​hustcc in antvis/G6#7395
• chore: upgrade canvas to v3 in g6-ssr by @​hustcc in antvis/G6#7398
• chore: update version to 5.0.50 by @​yvonneyx in antvis/G6#7426
• feat: g6-extension-react 支持 React16~19 渲染兼容 by @​yvonneyx in antvis/G6#7434
• Update webpack configuration instructions by @​JieWongGitHub in antvis/G6#7433
• 更新bundle.zh.md by @​JieWongGitHub in antvis/G6#7431
• fix: tooltip when shown and next not enable, hide tooltip by @​XiaoMing-xmg666 in antvis/G6#7462
• chore: remove petercat by @​yvonneyx in antvis/G6#7469
• docs(site): 修复 v5 文档交互示例，将 'drag-node' 更正为 'drag-element' by @​baozjj in antvis/G6#7478
• The getNeighborIds method within the ClickSelect behavior has been changed from private to protected. by @​XiaoMing-xmg666 in antvis/G6#7481
• docs: zoom-canvas scroll-canvas conflict by @​XiaoMing-xmg666 in antvis/G6#7488
• feat: drag-element add trigger config by @​XiaoMing-xmg666 in antvis/G6#7497
• feat: focus element trigger option by @​XiaoMing-xmg666 in antvis/G6#7501
• update: 增加扩展实现相关文档指引 by @​imindtrack in antvis/G6#7493
• docs: canvas event sample fix by @​XiaoMing-xmg666 in antvis/G6#7506
• chore: update announcement content and link in .dumirc.ts by @​Aarebecca in antvis/G6#7511
• fix(shortcut): 修正全局事件监听器错误移除focus事件的问题 by @​Child-qjj in antvis/G6#7470
• feat: legend getMarkerData to protected by @​XiaoMing-xmg666 in antvis/G6#7507

... (truncated)

Commits

• See full diff in compare view

Updates @melloware/react-logviewer from 6.4.1 to 6.5.2

Release notes

Sourced from @​melloware/react-logviewer's releases.

6.5.2

• Fix #81 Enable Links causes issues

New Contributors

• @​joshvazquez-amzn made their first contribution in melloware/react-logviewer#140

Full Changelog: melloware/react-logviewer@6.5.1...6.5.2

6.5.1

What's Changed

Dependencies 👒

• Bump hotkeys-js from 4.0.2 to 4.0.3 by @​dependabot[bot] in melloware/react-logviewer#138
• Bump virtua from 0.48.8 to 0.49.0 by @​dependabot[bot] in melloware/react-logviewer#139

Full Changelog: melloware/react-logviewer@6.5.0...6.5.1

6.5.0

Fix #136 Add className and searchBarClassName to properties

Full Changelog: melloware/react-logviewer@6.4.1...6.5.0

Commits

• 3112a37 6.5.2
• 17da240 Don't truncate line after URL when links are enabled (#140)
• 0aa4615 6.5.1
• 4167115 Bump virtua from 0.48.8 to 0.49.0 (#139)
• 31ae6a9 Bump hotkeys-js from 4.0.2 to 4.0.3 (#138)
• 060675a 6.5.0
• 74de495 Fix #135: Add className and searchBarClassName to LazyLog (#136)
• See full diff in compare view

Updates antlr4 from 4.9.2 to 4.13.2

Release notes

Sourced from antlr4's releases.

4.13.2

Minor updates release.

Pull requests grouped by target

cpp target

• [Cpp] Use target_include_dirs for cmake targets (target:cpp)
• Update C++ documentation to state that C++17 is required (comp:doc, target:cpp)

go target

• fix go-target.md, remove duplicate 'get' (comp:doc, target:go)

javascript target

• fix(javascript): fix types not being recognized for NodeNext module resolution (target:javascript)
• [Javascript] Fix broken package entrypoints (target:javascript, type:cleanup)

python3 target

• name 'state' conflict with Python3 runtime. (target:python3)

Contributors

• 1 items: njnobles
• 1 items: Andreas Buhr (andreasbuhr)
• 1 items: Eric Vergnaud (ericvergnaud)
• 1 items: Gökhan Kurt (KurtGokhan)
• 1 items: johannesheesterman
• 1 items: Alex Miller (Codex-)
• 1 items: GP4cK
• 1 items: Alessandro Gatti (agatti)
• 1 items: cyqw
• 1 items: css521 (css521)

4.13.1

Pull requests grouped by target

csharp target

• [[CSharp] Fix for #4386 -- change signatures for ReportAttemptingFullContext() and ReportContextSensitivity() to be identical to all other targets](antlr/antlr4#4399) (target:csharp, type:cleanup)

go target

• Move GetText(), SetText(), and String() from CommonToken to BaseToken (target:go, type:cleanup)
• Restore "Obtained from string" source name. (target:go, type:cleanup)
• fix: Fix very minor code issues spotted by goreportcard.com (target:go, type:cleanup)

java target

• Java: suppress this-escape warning introduced in JDK 21. (actions, target:java)

javascript target

• Adds default targets for babel configuration (target:javascript)
• fix dependabot warnings (target:javascript, type:cleanup)

swift target

... (truncated)

Commits

• cc82115 [maven-release-plugin] prepare release 4.13.2
• b91cecf Update 4.13.1 -> 4.13.2
• 35ff30d Update release docs to say 4.13.2; rebuild XPathLexers
• 2559349 fix(javascript): fix types not being recognized for NodeNext module resolutio...
• e8bf978 rule name 'state' conflict with Python runtime.
• 88a0c7a Support TypeScript bundler module resolution
• caf46b9 [Python3] Replace deprecated assertEquals() to fix py3.12 compat
• 17f3f5e Add include dirs direclty to cpp targets
• b3bb743 chore: fix error link
• 7d4cea9 Fix singleton memory leaks
• Additional commits viewable in compare view

Updates axios from 1.15.2 to 1.16.1

Release notes

Sourced from axios's releases.

v1.16.1 — May 13, 2026

This release ships a defence-in-depth fix for prototype pollution in formDataToJSON, hardens proxy and CI workflows, restores Webpack 4 compatibility for the fetch adapter, and includes several small bug fixes and maintenance improvements.

🔒 Security Fixes

• Prototype Pollution Defence-in-Depth: Hardened formDataToJSON against already-polluted Object.prototype by walking own properties only, so attacker-controlled keys inherited from a poisoned prototype cannot propagate through deserialization. (#7413)
• Proxy Cleartext Leak: Fixed an issue where HTTPS request data could be transmitted in cleartext to an HTTP proxy under certain configurations. (#10858)
• CI Cache Removal: Removed all GitHub Actions caches as a defence-in-depth measure against cache poisoning vectors in the build pipeline. (#10882)

🐛 Bug Fixes

• Data URI Parsing: Updated the fromDataURI regex to match RFC 2397 more strictly, fixing edge cases in data: URL handling. (#10829)
• Unicode Headers: Preserved Unicode header values when running through request interceptors, so non-ASCII header content is no longer corrupted before dispatch. (#10850)
• XHR Upload Progress: Guarded against malformed ProgressEvent payloads emitted by some environments during XHR upload, preventing crashes when loaded / total are missing or invalid. (#10868)
• Webpack 4 Fetch Adapter: Fixed an "unexpected token" error caused by syntax in the fetch adapter that Webpack 4 could not parse, restoring compatibility for legacy bundler users. (#10864)
• Type Definitions: Made parseReviver context.source optional in the type definitions to align with the ES2023 specification. (#10837)
• URL Object Support Reverted: Reverted the change that allowed passing a URL object as config.url (originally #10866) due to regressions; this support will be reintroduced in a later release once the underlying issues are addressed. (#10874)

🔧 Maintenance & Chores

• Cycle Detection Refactor: Replaced the array-based cycle tracker in toJSONObject with a WeakSet, improving performance and memory behaviour on large nested structures. (#10832)
• composeSignals Cleanup: Refactored composeSignals to use a clearer early-return structure, simplifying the cancellation/abort composition path. (#10844)
• AI Readiness & Repo Docs: Added AGENTS.md and related contributor-guide updates for both human and AI agents, plus post-release documentation improvements. (#10835, #10841)
• Docs Improvements: Clarified the GET request example, fixed the interceptor eject example to reference the correct instance, and corrected the Buzzoid sponsor description in the README. (#10836, #10853, #10856)
• Sponsorship Tooling: Fixed empty sponsor arrays in the sponsor processing script, added the ability to inject additional sponsors, updated the sponsorship link, and added a Twicsy advertisement entry. (#10843, #10859, #10869)
• Dependencies: Bumped @commitlint/cli from 20.5.0 to 20.5.2. (#10846)

🌟 New Contributors

We are thrilled to welcome our new contributors. Thank you for helping improve axios:

• @​hpinmetaverse (#10836)
• @​tommyhgunz14 (#7413)
• @​abhu85 (#10829)
• @​divyanshuraj1095 (#10853)
• @​sagodi97 (#10856)
• @​rkdfx (#10868)
• @​Liuwei1125 (#10866)

Full Changelog

v1.16.0 — May 2, 2026

This release adds support for the QUERY HTTP method and a new ECONNREFUSED error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.

⚠️ Notable Changes

A handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:

... (truncated)

Changelog

Sourced from axios's changelog.

Changelog

v1.16.0 — May 2, 2026

This release adds support for the QUERY HTTP method and a new ECONNREFUSED error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.

⚠️ Notable Changes

A handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:

• Fetch adapter now enforces maxBodyLength and maxContentLength. These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (#10795)
• Proxy requests now preserve user-supplied Host headers. Previously, the proxy path could overwrite a custom Host. Virtual-host-style routing through a proxy will now behave correctly. (#10822)
• Basic auth credentials embedded in URLs are now URL-decoded. If you have percent-encoded credentials in a URL (e.g. https://user:p%40ss@host), the decoded value is what now goes on the wire. (#10825)
• parseProtocol now strictly requires a colon in the protocol separator. Strings that loosely parsed as protocols before may no longer match. (#10729)
• Deprecated unescape() replaced with modern UTF-8 encoding. Non-ASCII URL handling is now spec-correct; consumers depending on legacy unescape() quirks may see different output bytes. (#7378)
• transformRequest input typing change was reverted. The typing change introduced in #10745 was reverted in #10810 after follow-up review — net behavior is unchanged from 1.15.2. (#10745, #10810)

🚀 New Features

• QUERY HTTP Method: Added support for the QUERY HTTP method across adapters and type definitions. (#10802)
• ECONNREFUSED Error Constant: Exposed ECONNREFUSED as a constant on AxiosError so callers can match connection-refused failures without comparing string literals (closes #6485). (#10680)
• Encode Helper Export: Exported the internal encode helper from buildURL so userland param serializers can reuse the same encoding logic that axios uses internally. (#6897)

🐛 Bug Fixes

• HTTP Adapter — Redirects & Headers: Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing requestDetails argument on beforeRedirect, preserved user-supplied Host headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (#10794, #10800, #6241, #10822, #10825)
• HTTP Adapter — Streams & Timeouts: Preserved the partial response object on AxiosError when a stream is aborted after headers arrive, honoured the timeout option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and maxRedirects: 0. (#10708, #10819, #7149)
• Fetch Adapter: Enforced maxBodyLength / maxContentLength in the fetch adapter, set the User-Agent header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a TypeError in restricted environments. (#10795, #10772, #10806, #7260)
• XHR Adapter: Unsubscribed the cancelToken and AbortSignal listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (#10787)
• Error Handling: Attached the parsed response to AxiosError when JSON.parse fails inside dispatchRequest, prevented settle from emitting undefined error codes, and tightened the parseProtocol regex to require a colon in the protocol separator. (#10724, #7276, #10729)
• Types & Exports: Aligned the CommonJS CancelToken typings with the ESM build, fixed a compiler error caused by RawAxiosHeaders, and re-exported create from the package index. (#7414, #6389, #6460)
• UTF-8 Encoding: Replaced the deprecated unescape() call with a modern UTF-8 encoding implementation. (#7378)
• Misc Cleanup: Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (#10833)

🔧 Maintenance & Chores

• Refactor — ES6 Modernisation: Modernised the utils module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (#10588, #7419)
• Tests: Hardened the HTTP test server lifecycle to fix flaky FormData EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (#10820, #10791, #10796)
• Docs: Documented paramsSerializer.encode for strict RFC 3986 query encoding, updated the parseReviver TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (#10821, #10782, #10759, #10804)
• Reverted: Reverted the transformRequest input typing change from #10745 after follow-up review. (#10745, #10810)
• Dependencies: Bumped actions/setup-node, the github-actions group, and postcss (in /docs) to their latest versions. (#10785, #10813, #10814)
• Release: Updated changelog and packages, and prepared the 1.16.0 release. (#10790, #10834)

🌟 New Contributors

We are thrilled to welcome our new contributors. Thank you for helping improve axios:

• @​singhankit001 (#10588)
• @​cuiweixie (#7419)
• @​iruizsalinas (#10787)

... (truncated)

Commits

• 1337d6b chore(release): prepare release 1.16.1 (#10877)
• 858a790 fix: remove all caches (#10882)
• 34adfd9 revert: "fix: support URL object as config.url input (#10866)" (#10874)
• 847d89b fix: support URL object as config.url input (#10866)
• 4094886 fix(progress): guard malformed XHR upload events (#10868)
• 44f0c5b chore: change sponsorship link and add Twicsy advertisement (#10869)
• 64e1095 chore: update PR and issue template to use h2 (#10865)
• 3e6b4e1 fix: error unexpected token in fetch JS compatibility issue with Webpack 4 (#...
• c4453ba fix: add the ability to add additional sponsors to the process sponsors scrip...
• caa00a9 fix: https data in cleartext to proxy (#10858)
• Additional commits viewable in compare view

Updates dompurify from 3.4.1 to 3.4.3

Release notes

Sourced from dompurify's releases.

DOMPurify 3.4.3

• Fixed an issue with handling of nested Shadow DOM trees, thanks @​fishjojo1
• Fixed the template regexes to be more robust against ReDoS attacks, thanks @​aleung27
• Updated the node iteration code to catch more Shadow DOM related issues
• Updated Playwright and added Node 26 to test matrix
• Updated existing workflows, fuzzer, release signing, etc., added more tests
• Bumped several dependencies where possible

DOMPurify 3.4.2

• Fixed an issue with URI validation on attributes allowed via ADD_ATTR callback, thanks @​nelstrom
• Fixed an issue with source maps referring to non-existing files, thanks @​cmdcolin
• Updated existing workflows, fuzzer, release signing, etc., added more tests
• Bumped several dependencies where possible

Commits

• 520edb0 release: 3.4.3 (#1352)
• 6f67fd3 Sync/3.4.2 (#1322)
• See full diff in compare view

Updates elkjs from 0.9.3 to 0.11.1

Release notes

Sourced from elkjs's releases.

0.11.1

Release based on 28e5173243cab0cf4e2c9816c803bc0d5c47ab24 at ELK master.

This patch is a security release.

Full Changelog: kieler/elkjs@0.11.0...0.11.1

0.11.0

Based on ELK 0.11.0

For changes and fixed issues see the release notes.

Full Changelog: kieler/elkjs@0.10.2...0.11.0

0.10.2

Release based on 28e5173243cab0cf4e2c9816c803bc0d5c47ab24 at ELK master.

What's changed?

eclipse-elk/elk#1144 eclipse-elk/elk#1142 eclipse-elk/elk#1154 eclipse-elk/elk#1155

0.10.1

Based on ELK 0.10.0

What's Changed

• update to xtext 2.36 by @​Eddykasp in kieler/elkjs#329
• Bump pbkdf2 from 3.1.2 to 3.1.3 by @​dependabot in kieler/elkjs#343

Full Changelog: kieler/elkjs@0.10.0...0.10.1

0.10.0

Based on ELK 0.10.0

For changes and fixed issues see the release notes.

elkjs changes

• #208 Add worker termination conditions and method by @​skspade in kieler/elkjs#274
• Enhance layout method typing with generic type by @​cjayyy in kieler/elkjs#282
• Remove DisCo from transpilation to elkjs because it somehow breaks the CI build by @​Eddykasp in kieler/elkjs#288
• add remove method for json adapter by @​Eddykasp in kieler/elkjs#316
• Add container property to ElkEdge by @​tuckergordon in kieler/elkjs#209

Full Changelog: kieler/elkjs@0.9.3...0.10.0

Commits

• 572e733 add files for release 0.11.1
• 99d7faf Merge pull request #371 from kieler/copilot/update-mocha-version
• ff6af54 Merge pull request #369 from kieler/dependabot/npm_and_yarn/qs-6.14.2
• 48718b9 Merge pull request #367 from kieler/mka/publish-from-ci
• 8f65a8a Fix typo in README regarding GitHub release
• 4bbb572 Update mocha from ^10.3.0 to ^11.0.0
• 2211570 Initial plan
• aeea8c8 Merge pull request #370 from kieler/dependabot/npm_and_yarn/multi-acd8535d99
• 9ab5a46 Bump minimatch
• e7593d4 Bump qs from 6.14.1 to 6.14.2
• Additional commits viewable in compare view

Updates html-to-image from 1.11.11 to 1.11.13

Release notes

Sourced from html-to-image's releases.

v1.11.13

1.11.13 (2025-02-14)

Bug Fixes

• mask: add support for -webkit-mask and -webkit-mask-image (#382) (5bdfda7)

---

This release is also available on:

• npm package (@​latest dist-tag)

v1.11.12

1.11.12 (2025-02-12)

Bug Fixes

• add possibility to use own handling of onerror which will not en… (#453) (04160c3)
• ensure images are totally prcoessed before using them (ios) (#478) (51fb98f)
• Fix fontEmbedCSS incorrect sizing (#422) (7020162)

Performance Improvements

• embed only used fonts (#476) (09bee44)
• svg cloning optimized using deep clone (#462) (9aac2fd)

---

This release is also available on:

• npm package (@​latest dist-tag)

Changelog

Sourced from html-to-image's changelog.

1.11.13 (2025-02-14)

Bug Fixes

• mask: add support for -webkit-mask and -webkit-mask-image (#382) (5bdfda7)

1.11.12 (2025-02-12)

Bug Fixes

• add possibility to use own handling of onerror which will not en… (#453) (04160c3)
• ensure images are totally prcoessed before using them (ios) (#478) (51fb98f)
• Fix fontEmbedCSS incorrect sizing (#422) (7020162)

Performance Improvements

• embed only used fonts (#476) (09bee44)
• svg cloning optimized using deep clone (#462) (9aac2fd)

Commits

• 9957281 chore(release): v1.11.13 [skip ci]
• d9b2fcf docs: Update README.md
• a02abc6 chore: update contributors [skip ci]
• 9de3db6 test: add spec
• 3cd8093 chore: update CONTRIBUTORS [skip ci]
• bad0d9c Add option to selectively include style properties when cloning element (#436)
• f0d0341 chore: update CONTRIBUTORS [skip ci]
• 5bdfda7 fix(mask): add support for -webkit-mask and -webkit-mask-image (#382)
• aa3c979 chore: update contributors [skip ci]
• 5b25b52 chore: update CONTRIBUTORS [skip ci]
• Additional commits viewable in compare view

Updates katex from 0.16.45 to 0.16.46

Release notes

Sourced from katex's releases.

v0.16.46

0.16.46 (2026-05-13)

Bug Fixes

• preserve math font in some styling commands (#4214) (e9ee046), closes #4213

Changelog

Sourced from katex's changelog.

0.16.46 (2026-05-13)

Bug Fixes

• preserve math font in some styling commands (#4214) (e9ee046), closes #4213

Commits

• 2c25b47 chore(release): 0.16.46 [ci skip]
• e9ee046 fix: preserve math font in some styling commands (#4214)
• 88256c0 ci(screenshotter): require safe to test label for PRs (#4211)
• a3fce45 ci(screenshotter): disable cache (#4209)
• 9de4b3d chore: update linters (#4205)
• c224153 refactor: improve typing for fonts (#4200)
• 89a3d67 chore(deps): update dependency postcss to v8.5.10 [security] (#4202)
• 441e6ca chore: update stylelint and adjust styles for updated set of rules (#4201)
• bdec9b0 docs: support for persian/arabic numerals (#4190)
• efedddd refactor(types): resolve most as any casts and TODO(ts) comments (#4171)
• Additional commits viewable in compare view

Updates qs from 6.14.2 to 6.15.1

Changelog

Sourced from qs's changelog.

6.15.1

• [Fix] parse: parameterLimit: Infinity with throwOnLimitExceeded: true silently drops all parameters
• [Deps] update @ljharb/eslint-config
• [Dev Deps] update @ljharb/eslint-config, iconv-lite
• [Tests] increase coverage

6.15.0

• [New] parse: add strictMerge option to wrap object/primitive conflicts in an array (#425, #122)
• [Fix] duplicates option should not apply to bracket notation keys (#514)

Commits

• 3f5e1c5 v6.15.1
• c85b67f [Fix] parse: parameterLimit: Infinity with throwOnLimitExceeded: true s...
• 4dfa0f0 [Deps] update @ljharb/eslint-config
• Description has been truncated

[github-actions]

Hi there 👋 Thanks for your contribution!

The OpenMetadata team will review the PR shortly! Once it has been labeled as safe to test, the CI workflows
will start executing and we'll be able to make sure everything is working as expected.

Let us know if you need any help!