Bump the all-dependencies group with 4 updates

[dependabot]

Bumps the all-dependencies group with 4 updates: @types/jsdom, @types/node, rolldown and tsdown.

Updates @types/jsdom from 28.0.1 to 28.0.3

Commits

• See full diff in compare view

Updates @types/node from 24.12.4 to 24.13.0

Commits

• See full diff in compare view

Updates rolldown from 1.0.3 to 1.1.0

Release notes

Sourced from rolldown's releases.

v1.1.0

[!IMPORTANT] This is a minor release. Two changes alter default behavior compared to 1.0.3. Please read this section before upgrading. Everything else is additive (new features, fixes, deps).

⚠️ Notable behavior changes

1. experimental.lazyBarrel is now enabled by default (#9632)

What changed. experimental.lazyBarrel now defaults to true. When a barrel module is recognized as side-effect-free, Rolldown skips compiling the re-exported modules that are never actually used.

Impact. For codebases with large barrel files (component libraries such as Ant Design, @mui/icons-material, etc.) this is a meaningful build-time speedup, and for the vast majority of projects the emitted output is unchanged. In rare cases where a barrel is incorrectly treated as side-effect-free, the optimization could drop a module that was being relied on for its side effects.

How to opt out (backward compatible).

// rolldown.config.js
export default {
  experimental: { lazyBarrel: false },
}

Note: this opt-out flag is planned to be removed in a future release. If you have a case where you must turn it off, please open an issue so we can fix the underlying detection instead.

---

2. tsconfig project-reference resolution now aligns with TypeScript

Upgrading oxc_resolver (11.19.1 → 11.20.0 in #9549, then → 11.21.0 in #9634) changes how Rolldown discovers and resolves tsconfig.json, in particular for a solution-style config (one that only lists references and delegates the real settings to tsconfig.app.json / tsconfig.node.json, as Vite scaffolds), bringing it in line with how TypeScript (tsc / tsserver) itself behaves:

• Auto-discovery walk-up (oxc-resolver #1154): in auto-discovery mode (tsconfig: true, the default), Rolldown now searches upward from the file's directory and uses the first tsconfig.json that owns the file. A tsconfig.json owns the file when the file matches its files/include/exclude, or when one of its references matches the file. A tsconfig.json that does not own the file is skipped, and the search continues in the parent directory. When no tsconfig.json up the tree owns the file, Rolldown falls back to the outermost (topmost) one found, not the nearest. Previously the nearest tsconfig.json was used unconditionally. This mirrors how TypeScript's tsserver assigns a file to a project.
• Reference match priority (oxc-resolver #1151): when the root has references, a referenced project that includes the file now takes precedence over the root, instead of the root matching it first (this is what TypeScript already does). So that project's compilerOptions.paths now apply.
• allowJs (oxc-resolver #1198): whether a .js/.jsx/.mjs/.cjs file is included is now decided by each referenced project's own allowJs, not the root's (again matching TypeScript). So tsconfig.app.json with allowJs: true + paths now resolves aliases for .js files even when the root doesn't set allowJs.

For most projects this is a fix (the standard Vite paths aliases now resolve, closes rolldown/rolldown#8468), but it is a behavior change if you relied on the previous behavior, where the root's paths / allowJs took precedence.

If you relied on the old "root wins" behavior. There is no exact toggle back, because the old behavior was the bug being fixed. The recommended path is to align your config with TypeScript: declare the paths / allowJs on the referenced project that actually owns the files.

If you must keep the old precedence while still using references: a referenced project's match wins, and the first matching references entry takes priority (the root is only a fallback when no reference claims the file). So extract the old root settings into their own config and list it first:

// tsconfig.json (solution root)
{
  "files": [],
  "references": [
    { "path": "./tsconfig.base.json" }, // old root paths/allowJs — listed first, so it wins
    { "path": "./tsconfig.app.json" },
    { "path": "./tsconfig.node.json" }
  ]
}

... (truncated)

Changelog

Sourced from rolldown's changelog.

[1.1.0] - 2026-06-03

🚀 Features

• enable experimental.lazyBarrel by default (#9632) by @​shulaoda
• import.meta.glob support caseSensitive option (#9594) by @​btea
• add SOURCEMAP_BROKEN warning for renderChunk hook (#9601) by @​sapphi-red
• add SOURCEMAP_BROKEN warning for transform hook (#9600) by @​sapphi-red
• add @__NO_SIDE_EFFECTS__ hint for invalid @__PURE__ before function declarations (#9505) by @​Copilot
• code-splitting: support group-local includeDependenciesRecursively (#9587) by @​hyf0

🐛 Bug Fixes

• report TSCONFIG_ERROR instead of UNHANDLEABLE_ERROR for a missing tsconfig file (#9633) by @​shulaoda
• browser: add missing exports and ensure consistency with rolldown package (#9629) by @​sapphi-red
• should build test-dev-server when test-node (#9610) by @​situ2001
• chunk-optimizer: refuse asymmetric merge for cyclic dynamic entries (#9320) (#9322) by @​aminpaks
• dev: handle the remaining errors in dev (#9570) by @​h-a-n-a
• handle slash-normalized ids with preserveModulesRoot (#9595) by @​IWANABETHATGUY
• json: preserve .default access on JSON default imports (#9568) by @​IWANABETHATGUY
• testing: remove unintended trigger_full_build from test harness (#9573) by @​hyf0

🚜 Refactor

• js-regex: use regress native replace/replace_all (#9607) by @​IWANABETHATGUY
• remove never-constructed ImportStatus variants (#9606) by @​Boshen

📚 Documentation

• clarify that RolldownBuild::close method should be called in most cases (#9619) by @​sapphi-red

⚡ Performance

• avoid unnecessary intermediate sourcemaps (#9599) by @​sapphi-red

🧪 Testing

• add unit test for collapsing module sourcemap (#9626) by @​sapphi-red
• cover vite-alias regex capture-group expansion (#9602) (#9608) by @​IWANABETHATGUY

⚙️ Miscellaneous Tasks

• deps: update oxc_resolver to 11.21.0 (#9634) by @​shulaoda
• update invalid option diagnostic link to point to Rolldown docs (#9631) by @​sapphi-red
• deps: update vite+ to v0.1.24 (#9628) by @​renovate[bot]
• deps: update oxc resolver to v11.20.0 (#9549) by @​renovate[bot]
• deps: update dependency vite-plus to v0.1.24 (#9470) by @​renovate[bot]
• deps: update npm packages (#9614) by @​renovate[bot]
• deps: upgrade oxc to 0.134.0 (#9625) by @​shulaoda
• deps: update crate-ci/typos action to v1.47.0 (#9620) by @​renovate[bot]

... (truncated)

Commits

• c462c7c release: v1.1.0 (#9637)
• 432bac8 feat: enable experimental.lazyBarrel by default (#9632)
• 239ca4c feat: import.meta.glob support caseSensitive option (#9594)
• be8eacc fix(browser): add missing exports and ensure consistency with rolldown pack...
• 93632ab chore(deps): update dependency vite-plus to v0.1.24 (#9470)
• b403112 feat: add SOURCEMAP_BROKEN warning for renderChunk hook (#9601)
• 84b7ed1 feat: add SOURCEMAP_BROKEN warning for transform hook (#9600)
• 31ad110 perf: avoid unnecessary intermediate sourcemaps (#9599)
• 5e05eba feat(code-splitting): support group-local includeDependenciesRecursively (#...
• 4265367 fix(dev): handle the remaining errors in dev (#9570)
• Additional commits viewable in compare view

Updates tsdown from 0.22.1 to 0.22.2

Release notes

Sourced from tsdown's releases.

v0.22.2

   🐞 Bug Fixes

• Pin rolldown to minor  -  by @​sxzz (69e78)

    View changes on GitHub

Commits

• 15ac682 chore: release v0.22.2
• 69e78ec fix: pin rolldown to minor
• d9f607b docs: update auto exports docs
• c66775e chore: upgrade deps
• e5a8c3d ci: use staging publish for release workflow
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions