chore(deps-dev): bump svelte from 3.50.1 to 5.51.5 in /examples/svelte/localized-sveltekit

[dependabot]

Bumps svelte from 3.50.1 to 5.51.5.

Release notes

Sourced from svelte's releases.

svelte@5.51.5

Patch Changes

• fix: check to make sure svelte:element tags are valid during SSR (73098bb26c6f06e7fd1b0746d817d2c5ee90755f)

• fix: misc option escaping and backwards compatibility (#17741)

• fix: strip event handlers during SSR (a0c7f289156e9fafaeaf5ca14af6c06fe9b9eae5)

• fix: replace usage of for in with for of Object.keys (f89c7ddd7eebaa1ef3cc540400bec2c9140b330c)

• fix: always escape option body in SSR (f7c80da18c215e3727c2a611b0b8744cc6e504c5)

• chore: upgrade devalue (#17739)

svelte@5.51.4

Patch Changes

• chore: proactively defer effects in pending boundary (#17734)

• fix: detect and error on non-idempotent each block keys in dev mode (#17732)

svelte@5.51.3

Patch Changes

• fix: prevent event delegation logic conflicting between svelte instances (#17728)

• fix: treat CSS attribute selectors as case-insensitive for HTML enumerated attributes (#17712)

• fix: locate Rollup annontaion friendly to JS downgraders (#17724)

• fix: run effects in pending snippets (#17719)

svelte@5.51.2

Patch Changes

• fix: take async into consideration for dev delegated handlers (#17710)

• fix: emit state_referenced_locally warning for non-destructured props (#17708)

svelte@5.51.1

Patch Changes

• fix: don't crash on undefined document.contentType (#17707)

• fix: use symbols for encapsulated event delegation (#17703)

svelte@5.51.0

Minor Changes

... (truncated)

Changelog

Sourced from svelte's changelog.

svelte

4.2.3

Patch Changes

• fix: improve a11y-click-events-have-key-events message (#9358)

• fix: more robust hydration of html tag (#9184)

4.2.2

Patch Changes

• fix: support camelCase properties on custom elements (#9328)

• fix: add missing plaintext-only value to contenteditable type (#9242)

• chore: upgrade magic-string to 0.30.4 (#9292)

• fix: ignore trailing comments when comparing nodes (#9197)

4.2.1

Patch Changes

• fix: update style directive when style attribute is present and is updated via an object prop (#9187)

• fix: css sourcemap generation with unicode filenames (#9120)

• fix: do not add module declared variables as dependencies (#9122)

• fix: handle svelte:element with dynamic this and spread attributes (#9112)

• fix: silence false positive reactive component warning (#9094)

• fix: head duplication when binding is present (#9124)

• fix: take custom attribute name into account when reflecting property (#9140)

• fix: add indeterminate to the list of HTMLAttributes (#9180)

• fix: recognize option value on spread attribute (#9125)

4.2.0

Minor Changes

• feat: move svelteHTML from language-tools into core to load the correct svelte/element types (#9070)

... (truncated)

Commits

• 8ea33bf Version Packages (#17740)
• f855a0b fix: misc option escaping and backwards compatibility (#17741)
• 781052e chore: upgrade devalue (#17739)
• f7c80da Merge commit from fork
• a0c7f28 Merge commit from fork
• 73098bb Merge commit from fork
• f89c7dd Merge commit from fork
• b8f2b86 Version Packages (#17733)
• c83aa06 chore: proactively defer effects in pending boundary (#17734)
• 2287ad0 fix: detect and error on non-idempotent each block keys in dev mode (#17732)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for svelte since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

---

Note

Medium Risk
Major framework upgrade (Svelte 3→5) plus a looser @sveltejs/kit version in the lockfile can introduce build/runtime incompatibilities in the example and require Node 18+.

Overview
Updates the examples/svelte/localized-sveltekit example to use Svelte 5 by bumping svelte from 3.50.1 to 5.51.5 in package.json and refreshing package-lock.json to pull in Svelte 5’s new dependency tree.

The lockfile also loosens @sveltejs/kit from next to *, which can change which Kit prerelease gets installed for this example.

^{Written by Cursor Bugbot for commit da4bd6d. This will update automatically on new commits. Configure here.}

[changeset-bot]

⚠️ No Changeset found

Latest commit: da4bd6d

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[cursor]

Cursor Bugbot has reviewed your changes and found 2 potential issues.

^{Bugbot Autofix is OFF. To automatically fix reported issues with Cloud Agents, enable Autofix in the Cursor dashboard.}

[cursor]

Svelte 5 incompatible with sdk-svelte peer dependency

High Severity

Bumping svelte from 3 to 5 breaks compatibility with @builder.io/sdk-svelte ^1.0.27, which declares a peer dependency of "svelte": "^4.1.2". This is a runtime dependency used in the page component to render Builder content via the Content and isPreviewing imports. The SDK was built against Svelte 4 APIs and is unlikely to function correctly with Svelte 5's fundamentally different internals.

Additional Locations (1)

• examples/svelte/localized-sveltekit/package-lock.json#L31-L33

 

[cursor]

eslint-plugin-svelte3 incompatible with Svelte 5

Medium Severity

Bumping svelte to 5 breaks eslint-plugin-svelte3, which declares a peer dependency of "svelte": "^3.2.0". This package is deprecated and specific to Svelte 3. The project's .eslintrc.cjs actively uses the svelte3/svelte3 processor, so the lint script will fail or produce incorrect results when parsing Svelte 5 syntax.

 

[nx-cloud]

View your CI Pipeline Execution ↗ for commit da4bd6d

Command	Status	Duration	Result
nx test @e2e/nextjs-sdk-next-app	✅ Succeeded	6m 53s	View ↗
nx test @e2e/angular-17	✅ Succeeded	6m 38s	View ↗
nx test @e2e/react-sdk-next-15-app	✅ Succeeded	4m 50s	View ↗
nx test @e2e/remix	✅ Succeeded	4m 46s	View ↗
nx test @e2e/qwik-city	✅ Succeeded	7m 20s	View ↗
nx test @e2e/angular-19-ssr	✅ Succeeded	5m 6s	View ↗
nx test @e2e/nuxt	✅ Succeeded	5m 22s	View ↗
nx test @e2e/hydrogen	✅ Succeeded	5m 3s	View ↗
Additional runs (37)	✅ Succeeded	...	View ↗

---

☁️ Nx Cloud last updated this comment at 2026-02-23 09:42:26 UTC

[dependabot]

Superseded by #4324.