chore(deps):(deps-dev): bump @eslint/plugin-kit from 0.7.0 to 0.7.1

[dependabot]

Bumps @eslint/plugin-kit from 0.7.0 to 0.7.1.

Release notes

Sourced from @​eslint/plugin-kit's releases.

plugin-kit: v0.7.1

0.7.1 (2026-04-08)

Bug Fixes

• revert re-export ESM types in CommonJS (#427) (9b16fe1)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​eslint/core bumped from ^1.2.0 to ^1.2.1

Changelog

Sourced from @​eslint/plugin-kit's changelog.

0.7.1 (2026-04-08)

Bug Fixes

• revert re-export ESM types in CommonJS (#427) (9b16fe1)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​eslint/core bumped from ^1.2.0 to ^1.2.1

Commits

• d2dbf7b chore: release main (#424)
• 9b16fe1 fix: revert re-export ESM types in CommonJS (#427)
• fe114ee chore: release main (#413)
• 7680f69 feat: add languages and docs.dialects to rule meta types (#421)
• 8863791 docs: Update README sponsors
• ef16f80 fix: re-export ESM types in CommonJS (#416)
• 835ddf9 docs: Update README sponsors
• 8cd3676 docs: Update README sponsors
• 4d73459 docs: Update README sponsors
• 41eb19f chore: release main (#380)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

Note

Low Risk
Low risk lockfile-only dev dependency update; main risk is potential lint/tooling behavior changes or CI differences due to updated ESLint internals.

Overview
Bumps dev tooling in package-lock.json, updating @eslint/plugin-kit from 0.7.0 to 0.7.1 and pulling in @eslint/core 1.2.1.

The lockfile is also normalized for several platform-specific optional packages by removing libc metadata entries, without changing runtime application code.

^{Reviewed by Cursor Bugbot for commit 3d040dd. Bugbot is set up for automated code reviews on this repo. Configure here.}

[cursor]

Cursor Bugbot has reviewed your changes and found 1 potential issue.

^{❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, enable autofix in the Cursor dashboard.}

^{Reviewed by Cursor Bugbot for commit 3d040dd. Configure here.}

[cursor]

Missing libc fields break native package resolution on Linux

High Severity

The lockfile regeneration stripped all libc fields from every native binary package (@img/sharp-*, @rolldown/binding-*, lightningcss-*). The libc field tells npm whether a package requires glibc or musl, which is essential for selecting the correct platform-specific binary on Linux. Without it, npm cannot distinguish between glibc and musl variants, potentially installing the wrong native binary or installing both variants unnecessarily. This is especially problematic in musl-based environments like Alpine Linux containers commonly used in CI/CD.

Additional Locations (2)

• package-lock.json#L1773-L1774
• package-lock.json#L3293-L3294

 

^{Reviewed by Cursor Bugbot for commit 3d040dd. Configure here.}