Bump the frontend-production group in /frontend with 4 updates

[dependabot]

Bumps the frontend-production group in /frontend with 4 updates: @hookform/resolvers, @sentry/nextjs, bootstrap and openid-client.

Updates @hookform/resolvers from 4.1.3 to 5.0.1

Release notes

Sourced from @​hookform/resolvers's releases.

v5.0.1

5.0.1 (2025-04-02)

Bug Fixes

• relax version constraint for react-hook-form 7.55.0 → ^7.55.0 (#758) (6e88393)

v5.0.0

5.0.0 (2025-04-01)

Features

• infer input/output types from schema (#753) (6124c59)

BREAKING CHANGES

• Requires react-hook-form@7.55.0 or higher

Before Prior to V5, some projects used manual types like

useForm<FormValues>();

After With V5, the correct approach is:

useForm<Input, Context, Output>();
useForm<FormInputValues, Context, FormOutputValues>();

This update enables distinct outputs when utilizing features like transform from validation libraries.

ℹ️ The best approach is to let the types be inferred from your schema, rather than manually defining them.

Commits

• 6e88393 fix: relax version constraint for react-hook-form 7.55.0 → ^7.55.0 (#758)
• a54d05a Merge branch 'dev'
• 6124c59 feat: infer input/output types from schema (#753)
• See full diff in compare view

Updates @sentry/nextjs from 9.10.1 to 9.11.0

Release notes

Sourced from @​sentry/nextjs's releases.

9.11.0

• feat(browser): Add http.redirect_count attribute to browser.redirect span (#15943)
• feat(core): Add consoleLoggingIntegration for logs (#15955)
• feat(core): Don't truncate error messages (#15818)
• feat(nextjs): Add release injection in Turbopack (#15958)
• feat(nextjs): Record turbopack as tag (#15928)
• feat(nuxt): Base decision on source maps upload only on Nuxt source map settings (#15859)
• feat(react-router): Add sentryHandleRequest (#15787)
• fix(node): Use module instead of require for CJS check (#15927)
• fix(remix): Remove mentions of deprecated ErrorBoundary wrapper (#15930)
• ref(browser): Temporarily add sentry.previous_trace span attribute (#15957)
• ref(browser/core): Move all log flushing logic into clients (#15831)
• ref(core): Improve URL parsing utilities (#15882)

Bundle size 📦

Path	Size
@​sentry/browser	23.2 KB
@​sentry/browser - with treeshaking flags	23.02 KB
@​sentry/browser (incl. Tracing)	36.83 KB
@​sentry/browser (incl. Tracing, Replay)	73.99 KB
@​sentry/browser (incl. Tracing, Replay) - with treeshaking flags	67.39 KB
@​sentry/browser (incl. Tracing, Replay with Canvas)	78.66 KB
@​sentry/browser (incl. Tracing, Replay, Feedback)	91.22 KB
@​sentry/browser (incl. Feedback)	40.33 KB
@​sentry/browser (incl. sendFeedback)	27.83 KB
@​sentry/browser (incl. FeedbackAsync)	32.63 KB
@​sentry/react	25 KB
@​sentry/react (incl. Tracing)	38.75 KB
@​sentry/vue	27.41 KB
@​sentry/vue (incl. Tracing)	38.55 KB
@​sentry/svelte	23.23 KB
CDN Bundle	24.44 KB
CDN Bundle (incl. Tracing)	36.85 KB
CDN Bundle (incl. Tracing, Replay)	71.87 KB
CDN Bundle (incl. Tracing, Replay, Feedback)	77.07 KB
CDN Bundle - uncompressed	71.24 KB
CDN Bundle (incl. Tracing) - uncompressed	108.94 KB
CDN Bundle (incl. Tracing, Replay) - uncompressed	220.23 KB
CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	232.8 KB
@​sentry/nextjs (client)	40.06 KB
@​sentry/sveltekit (client)	37.26 KB
@​sentry/node	142.88 KB
@​sentry/node - without tracing	96.08 KB
@​sentry/aws-serverless	120.43 KB

Changelog

Sourced from @​sentry/nextjs's changelog.

9.11.0

• feat(browser): Add http.redirect_count attribute to browser.redirect span (#15943)
• feat(core): Add consoleLoggingIntegration for logs (#15955)
• feat(core): Don't truncate error messages (#15818)
• feat(nextjs): Add release injection in Turbopack (#15958)
• feat(nextjs): Record turbopack as tag (#15928)
• feat(nuxt): Base decision on source maps upload only on Nuxt source map settings (#15859)
• feat(react-router): Add sentryHandleRequest (#15787)
• fix(node): Use module instead of require for CJS check (#15927)
• fix(remix): Remove mentions of deprecated ErrorBoundary wrapper (#15930)
• ref(browser): Temporarily add sentry.previous_trace span attribute (#15957)
• ref(browser/core): Move all log flushing logic into clients (#15831)
• ref(core): Improve URL parsing utilities (#15882)

Commits

• 392c061 release: 9.11.0
• 1e407cb Merge pull request #15967 from getsentry/prepare-release/9.11.0
• 90ee178 meta: Update CHANGELOG for 9.11.0
• a6e9651 feat(react-router): Add sentryHandleRequest (#15787)
• 438e8be feat(core): Add consoleLoggingIntegration for logs (#15955)
• 6501d52 feat(nuxt): Base decision on source maps upload only on Nuxt source map setti...
• 9807efb chore(nest): Add @sentry/nestjs to release registry
• ee592ad feat(tanstackstart-react): Add tanstackstart-react to release registry craft ...
• 64b1d0d feat(nestjs): Add nestjs release registry craft entry (#15963)
• ad5c06c feat(nuxt): Add nuxt release registry craft entry (#15962)
• Additional commits viewable in compare view

Updates bootstrap from 5.3.3 to 5.3.5

Release notes

Sourced from bootstrap's releases.

v5.3.5

Hot fix for a regression from upstream in Autoprefixer.

What's Changed

• Fix floating labels rendering on Firefox by @​julien-deramond in twbs/bootstrap#41347
• Bump to v5.3.5 by @​mdo in twbs/bootstrap#41348

Full Changelog: twbs/bootstrap@v5.3.4...v5.3.5

v5.3.4

Changes

• #40888: Dependabot: switch to grouped updates

🚀 Features

• #41299: Typo fixed
• #41187: Docs: mention removal of util.js in migration guide
• #41228: Docs: Simplify ids for checks, radios and switches
• #41150: Update fixtureId to FIXTURE_ID for consistency
• #40965: Docs: Use <article> element for example cards
• #40932: Docs: add ngx-bootstrap to JavaScript frameworks list
• #40790: Docs: Drop .grid where it shouldn't be used
• #40821: Docs: precise how to add new .order-* classes in 'Layout > Columns'
• #40914: Docs: drop useless .justify-content-start class in homepage
• #40876: Remove unneeded flexbug workaround
• #40870: Docs: Update modal min-height inline style
• #40844: Docs: Remove mention about Safari's limited support flexbox gap
• #40620: Docs: minor accessibility improvements for Examples
• #40619: Docs: Fix a minor accessibility issue (checkout example missing h1)
• #40577: Docs: Add main element to Cheatsheet Examples
• #39815: Docs: drop unused .bi-exclamation-triangle-fill class
• #40507: Docs: HTTPS link to ikons iconset
• #39777: Docs: fix Reddit URL to avoid redirection
• #39697: refactor(accordion): merge selectors for border-radius rule

🎨 CSS

• #41336: Fix modal and offcanvas header collapse
• #41126: Fix display issues of close button in contextual light and dark modes
• #40695: Fix light mode carousel in dark mode
• #41004: Add workarounds for postcss-values-parser error (negative values in calc())
• #41013: Align floating labels with form-select sizes
• #40931: Fix: correct typo in background-blend-mode value
• #40900: Remove unnecessary duplicated CSS class name
• #40876: Remove unneeded flexbug workaround
• #40844: Docs: Remove mention about Safari's limited support flexbox gap
• #40623: Fix use of declarations after nested rules (deprecated in Sass 1.77.7)
• #39720: Floating labels: Fix max-width and background-color

... (truncated)

Commits

• 85f2353 Bump to v5.3.5 (#41348)
• b1e16bd Fix floating labels rendering on Firefox
• 51581ed Release v5.3.4 (#40656)
• eed621d Build(deps-dev): Bump the development-dependencies group across 1 directory w...
• 253db02 Add active scale effect to animate-img (#40878)
• ed2bf13 Fix null modal-content-color in modal.scss (#39977)
• 51e7519 Quick fix for masthead banner icon spacing
• e304e6a Reintroduce #35759 and adding a guard rail on the active state
• 881ed59 Add .border-circle and .border-pill to the radius size part of the docume...
• ed25368 [Docs] Remove some unnecessary Twitter references/examples (#41174)
• Additional commits viewable in compare view

Updates openid-client from 6.3.4 to 6.4.1

Release notes

Sourced from openid-client's releases.

v6.4.1

Fixes

• allow client secret based auth factories to be used with DCR (d125b30)

v6.4.0

Features

• add support for Dynamic Client Registration (15f6953)

Fixes

• handle max_age=0 in buildAuthorizationUrlWithJAR() (5a5a7c9)

Changelog

Sourced from openid-client's changelog.

6.4.1 (2025-04-03)

Fixes

• allow client secret based auth factories to be used with DCR (d125b30)

6.4.0 (2025-04-03)

Features

• add support for Dynamic Client Registration (15f6953)

Fixes

• handle max_age=0 in buildAuthorizationUrlWithJAR() (5a5a7c9)

Commits

• e05383e chore(release): 6.4.1
• d125b30 fix: allow client secret based auth factories to be used with DCR
• ff6b412 chore: cleanup after release
• c04b64d chore(release): 6.4.0
• 15f6953 feat: add support for Dynamic Client Registration
• 5a5a7c9 fix: handle max_age=0 in buildAuthorizationUrlWithJAR()
• 555bc88 chore: update README.md and SECURITY.md
• 8aaf16f chore: bump packages
• 6dd38fc chore: bump packages
• ac5b2a8 test: use sloppy imports in tap:deno
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[pierluca]

@Tyratox this merge is blocked by the breaking change introduced in react-hook-form v5, introduced in this PR.

Shall we skip that upgrade for now, and introduce it manually later?
If you agree, I'll tell Dependabot to ignore it for now and we can merge the rest :)

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.