[dependency]: bump the faucet-frontend-dependencies group across 1 directory with 4 updates

[dependabot]

Bumps the faucet-frontend-dependencies group with 4 updates in the /faucet/frontend directory: next, dotenv, eslint-config-next and webpack.

Updates next from 15.3.5 to 15.4.2

Release notes

Sourced from next's releases.

v15.4.2

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• pages router metadata bugs with React 19 (#81733)
• [metadata] replace for initial body icon case (#81688)
• Ensure custom NextServer config is honored (#81681)

Credits

Huge thanks to @​huozhi, @​ijjk, and @​ztanner for helping!

v15.4.2-canary.10

Core Changes

• Turbopack: fix dist dir on Windows: #81758
• fix: remove boundary sentinel from RSC responses: #81857

Credits

Huge thanks to @​mischnic and @​wyattjoh for helping!

v15.4.2-canary.9

Core Changes

• [devtool] migrate css reset to global.css: #81783
• [dev-tools] Robust shortcut detection: #81756
• [segment explorer] hide for pages router: #81813
• [devtool] fix scrollbar styling: #81814
• fix(ppr): ensure fallback route params trigger dynamic resume: #81812
• [devtools] restart server pending state: #80858

Misc Changes

• [turbopack] use require to load chunks in our node runtime: #81738

Credits

Huge thanks to @​huozhi, @​raunofreiberg, @​lukesandberg, @​wyattjoh, and @​devjiwonchoi for helping!

v15.4.2-canary.8

Core Changes

• [devtool] move font styling to global.css: #81782
• [devtool] copy decoded info of error details: #81735
• fix(build): add sourcePage context for PPR dynamic route lambda creation: #81781
• refactor: rename experimental.dynamicIO to experimental.cacheComponents: #81562

... (truncated)

Commits

• 1617b26 v15.4.2
• 8f64c82 fix: pages router metadata bugs with React 19 (#81733)
• 529f14c [metadata] replace for initial body icon case (#81688)
• 6de4682 Ensure custom NextServer config is honored (#81681) (#81691)
• 68a59d7 setup release branch
• 079c06d v15.4.1
• 7ad4674 v15.4.0
• c1fa79b v15.4.0-canary.130
• 27a271b [turbopack] Rename traverse_edges_from_entries_topological to `traverse_edg...
• a1339ec Turbopack: Clean up some of the logic in visit_assign_expr (#81636)
• Additional commits viewable in compare view

Updates dotenv from 17.0.1 to 17.2.0

Changelog

Sourced from dotenv's changelog.

17.2.0 (2025-07-09)

Added

• Optionally specify DOTENV_CONFIG_QUIET=true in your environment or .env file to quiet the runtime log (#889)
• Just like dotenv any DOTENV_CONFIG_ environment variables take precedence over any code set options like ({quiet: false})

# .env
DOTENV_CONFIG_QUIET=true
HELLO="World"

// index.js
require('dotenv').config()
console.log(`Hello ${process.env.HELLO}`)

$ node index.js
Hello World
or
$ DOTENV_CONFIG_QUIET=true node index.js

17.1.0 (2025-07-07)

Added

• Add additional security and configuration tips to the runtime log (#884)
• Dim the tips text from the main injection information text

const TIPS = [
  '🔐 encrypt with dotenvx: https://dotenvx.com',
  '🔐 prevent committing .env to code: https://dotenvx.com/precommit',
  '🔐 prevent building .env in docker: https://dotenvx.com/prebuild',
  '🛠️  run anywhere with `dotenvx run -- yourcommand`',
  '⚙️  specify custom .env file path with { path: \'/custom/path/.env\' }',
  '⚙️  enable debug logging with { debug: true }',
  '⚙️  override existing env vars with { override: true }',
  '⚙️  suppress all logs with { quiet: true }',
  '⚙️  write to custom object with { processEnv: myObject }',
  '⚙️  load multiple .env files with { path: [\'.env.local\', \'.env\'] }'
]

Commits

• 11acd9f 17.2.0
• 40e26e9 Merge pull request #889 from motdotla/env-quiet
• e99c367 clean up
• 281354e changelog 🪵
• d856497 smarter DOTENV_CONFIG_QUIET option that can read from source .env file
• 203c4e8 support passing DOTENV_CONFIG_QUIET=true (and other DOTENV_CONFIG options - s...
• 13bc310 17.1.0
• 0bc76fe add to test coverage
• a43eecf changelog 🪵
• 956638e adjust test
• Additional commits viewable in compare view

Updates eslint-config-next from 15.3.5 to 15.4.2

Release notes

Sourced from eslint-config-next's releases.

v15.4.2

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• pages router metadata bugs with React 19 (#81733)
• [metadata] replace for initial body icon case (#81688)
• Ensure custom NextServer config is honored (#81681)

Credits

Huge thanks to @​huozhi, @​ijjk, and @​ztanner for helping!

v15.4.2-canary.10

Core Changes

• Turbopack: fix dist dir on Windows: #81758
• fix: remove boundary sentinel from RSC responses: #81857

Credits

Huge thanks to @​mischnic and @​wyattjoh for helping!

v15.4.2-canary.9

Core Changes

• [devtool] migrate css reset to global.css: #81783
• [dev-tools] Robust shortcut detection: #81756
• [segment explorer] hide for pages router: #81813
• [devtool] fix scrollbar styling: #81814
• fix(ppr): ensure fallback route params trigger dynamic resume: #81812
• [devtools] restart server pending state: #80858

Misc Changes

• [turbopack] use require to load chunks in our node runtime: #81738

Credits

Huge thanks to @​huozhi, @​raunofreiberg, @​lukesandberg, @​wyattjoh, and @​devjiwonchoi for helping!

v15.4.2-canary.8

Core Changes

• [devtool] move font styling to global.css: #81782
• [devtool] copy decoded info of error details: #81735
• fix(build): add sourcePage context for PPR dynamic route lambda creation: #81781
• refactor: rename experimental.dynamicIO to experimental.cacheComponents: #81562

... (truncated)

Commits

• 1617b26 v15.4.2
• 079c06d v15.4.1
• 7ad4674 v15.4.0
• c1fa79b v15.4.0-canary.130
• ee4d8e6 v15.4.0-canary.129
• 9c980c0 v15.4.0-canary.128
• be7b3a6 v15.4.0-canary.127
• 2f97e3c v15.4.0-canary.126
• 5157472 v15.4.0-canary.125
• e987734 v15.4.0-canary.124
• Additional commits viewable in compare view

Updates webpack from 5.99.9 to 5.100.2

Release notes

Sourced from webpack's releases.

v5.100.2

Fixes

• Keep consistent CSS order
• Dependency without the source order attribute must keep their original index
• Keep module traversal consistent across reexport scenarios

Performance Improvements

• Extend importPhasesPlugin only when enable deferImport (#19689)

v5.100.1

Fixes

• Tree-shaking unused ignored modules
• [Types] Compatibility with old Node.js versions

v5.100.0

Fixes

• Fixed the case where an ES modules entry chunk depends on the runtime chunk hash
• Handle function exports in webpack module wrapper
• Ensure dependent chunks are imported before startup & fix duplicate export of 'default'
• Generate lose closing brace when exports are unprovided
• CleanPlugin doesn't unlink same file twice
• Fixed unexpected error codes from fs.unlink on Windows
• Typescript types

Features

• HMR support for ES modules output
• ES module output mode now fully supports splitChunks when external variables and runtimeChunk are not set.
• Added support using keyword
• Implemented tc39 Defer Module Evaluation (experiment)
• Support dynamic template literals expressions for new URL(...)
• Enable ES modules worker chunk loading for Node.js targets
• Improved support for destructing in DefinePlugin
• Added VirtualUrlPlugin to support virtual: scheme

Performance Improvements

• Remove useless startup entrypoint runtime for ES modules output
• Cache new URL(...) evaluate expression

Commits

• 21fcdbb chore(release): 5.100.2
• 2c8d1f1 chore(deps): bump the dependencies group with 2 updates (#19701)
• 89eb6a3 fix: keep module traversal consistent across reexport scenarios (#19702)
• fdb0c4e fix: dependency without the sourceOrder attribute must keep their original in...
• d76af00 fix: types (#19699)
• 503ed53 docs: update examples (#19694)
• e251891 refactor: import dependency generation for defer module with async dependenci...
• 9eb9642 perf: extend importPhasesPlugin only when enable deferImport (#19689)
• 0a98446 fix: keep consistent css order (#19686)
• 6de2dfd fix(test): TestRunner avoids using jest mock's require (#19685)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[Wayonb]

@dependabot recreate

[Wayonb]

@dependabot recreate

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.