chore: bump echarts from 5.6.0 to 6.0.0 in /web

[dependabot]

Bumps echarts from 5.6.0 to 6.0.0.

Release notes

Sourced from echarts's releases.

6.0.0

• [Feature] [theme] New theme for ECharts 6.0. #20865 #21097 #21114 (Ovilia)
• [Feature] [chord] New chord series. #20522 (Ovilia)
• [Feature] [matrix&calendar] New matrix coordinate system. And all series and components (including other coordinate systems, such as grid(Cartesian), geo, polar, etc.) are supported to be declaratively laid out in the cells of matrix and calendar coordinate system. #19807 #21093 (Ovilia) #21005 #21108 (100pah)
• [Feature] [custom] Support reusable custom series. #20226 (Ovilia)
• [Feature] [cartesian] Introduce new layout mechanism to avoid Cartesian (i.e., grid component) axis labels and axis names overflowing the canvas, prevent axis names from overlapping with axis labels, and make them the default. #21059 (100pah) #19534 (robin-gerling) #16825 (konrad-amtenbrink)
• [Feature] [scatter] Support jittering for scatter series. #19941 #21067 (Ovilia)
• [Feature] [axis] Support break on the axis. #19459 (Ovilia) #20857 (100pah)
• [Feature] [theme] Support dynamically registering and switching themes. #20705 (Ovilia)
• [Feature] [roam] Roaming infrastructure enhancement - support users specifying roaming area by roamTrigger; support clip on geo and series.map; support cursor style change when hovering on the roaming area; support preserveAspect on geo, series.map and series.graph; fix the percent base of center on geo, series.map, series.graph and series.tree; enhance the behavior for roaming area overlapping. #19807#issuecomment-2974437299 (100pah)
• [Feature] [thumbnail] Support thumbnail for the graph series. #19807#issuecomment-3013454598 (100pah) #17471 (Lruler)
• [Feature] [marker] Support z option for markPoint/markLine/markArea. #21117 (sz-p)
• [Feature] [marker] Support z2 option for markPoint/markLine/markArea. #20782 (sz-p)
• [Feature] [stack] Support reversing the stack order. #20998 (Justin-ZS)
• [Feature] [sankey] Support roaming for sankey series. #20321 (Ovilia)
• [Feature] [custom] Support compoundPath in custom series renderItem. #20402 #21040 (Ovilia)
• [Feature] [marker] Support relativeTo option for specifying the relative target of marker position. #20166 #21042 (Ovilia)
• [Feature] [axis] Support tooltip for angleAxis label. #20986 (plainheart)
• [Feature] [tooltip] Support displayTransition option to control whether to enable the tooltip display transition. #20966 (jqqin)
• [Feature] [visualMap] Support unboundedRange option. #21113 (100pah)
• [Feature] [legend] Support triggerEvent option. #18164 #20907 (sz-p)
• [Feature] [custom] Support tooltipDisabled for custom series. #20447 (Ovilia)
• [Feature] [i18n] Add Norwegian Bokmål (nb-NO) translation. #20792 (joakimono)
• [Feature] [i18n] Add Greek (EL) translation. #21119 (tassosgeo)
• [Fix] [label] Fix label rich style does not inherit the plain label style. #20977 (plainheart) #21016 (100pah)
• [Fix] [label] Fix label layout margin. #21103 (100pah)
• [Fix] [dataZoom] Fix data shape distribution for time axis. #16978 (andrearoota) #21043 #21039 (Ovilia)
• [Fix] [tooltip] Fix null value item on category axis should be able to show tooltip. #20777 (Justin-ZS)
• [Fix] [visualMap] Fix some text style can't work on visualMap. #20961 (plainheart)
• [Fix] [dataZoom] Restrict range on brushEnd. #20814 (mortalYoung)
• [Fix] [heatmap] Fix labels not in calendar range are unexpectedly displayed. #20699 (plainheart)
• [Fix] [series] Fix mismatched dimension index. #20682 (Justin-ZS)
• [Fix] [bar] Fix polar bar should update roundCap when changes. #20582 (Ovilia)
• [Fix] [pie] Fix labelLine may be not removed and cause error when single label position is not in outside. #20906 (plainheart)
• [Fix] [sankey] Fix browser crash when emphasis.focus is 'trajectory' with large data. #20959 (plainheart)
• [Fix] [custom] Fix potential NPE when applying leave transition. #20920 (plainheart)
• [Fix] [tooltip] Fix potential memory leakage by explicitly unbinding event listeners. #21087 (seaheart)
• [Fix] [axis] [log] Fix incorrect rounding usage, and support data with big negative exponent. #21107 (SihongShen) #21120 (100pah)
• [Fix] [axis] Fix extreme small numbers can not be displayed in Cartesian due to the inappropriate rounding precision. #21120 (100pah) (SihongShen)
• [Fix] [dataZoom] Change moveHandler cursor to default. #20304 (ribeirompl)
• [Fix] [tooltip] Fix style coord transform markers are not removed after the tooltip is disposed. #20987 (plainheart)
• [Fix] [bar] Remove unused startValue option from the BarSeriesOption interface. #20901 (plainheart)
• [Fix] [title] Fix title text style width type should not include string. #20800 (sz-p)
• [Fix] [radar] Fix blur.itemStyle not working. #21081 (mustcanbedo) #21124 (Ovilia)
• [Fix] [roam] Fix RoamControllerHost importing path. #20313 (Ovilia)
• [Fix] [svg] Remove SVG support check in getSvgDataURL. #20760 (plainheart)
• [Break] Breaking changes against v5.6.0:
  • The default theme has been changed, including the visual style and the default location settings of components and series. For example, the default legend position is now at the bottom of the canvas. The new default settings are more reasonble, but if they affect the existing usage, use echarts/theme/v5.js to restore the old visual style and location settings. See #20865.
  • The v5 echarts/src/theme/light.ts is now migrated to echarts/theme/rainbow.js.
  • The position of Cartesian axes might shift slightly if the axis names or labels previously overflowed the canvas or overlapped, as anti-overflow and anti-axisLabel-axisName-overlap mechanism are enabled by default. In most cases that changes will be indiscernible to the naked eye. But if any unreasonable change occurs, you can use option grid.outerBoundsMode: 'none' to disable the anti-overflow mechanism, and/or use option xAxis/yAxis.axisLabel.nameMoveOverlap: false to disable the anti-axisLabel-axisName-overlap mechanism. See #21059.

... (truncated)

Commits

• 52104f7 Merge pull request #21132 from apache/release-dev
• 5e02596 chore: release
• 771c523 chore: add license headers and a script of pre-commit
• 8d7f252 Merge pull request #21127 from apache/release-dev
• 64f8d9c chore: release 6.0.0-rc.1
• 65efa66 test: add mark as expected
• 5365621 Merge pull request #21126 from apache/fix-16266
• 9055fef test(scale): add missing test
• 8a40d27 Merge branch 'release' into fix-16266
• 18b5db2 fix(scale): Fix that extreme small numbers can not be displayed in Cartesian ...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[greptile-apps]

PR author is in the excluded authors list.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	npm/​echarts@​5.6.0 ⏵ 6.0.0			+1

View full report

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
npm/echarts	6.0.0	🟢 6.2	Details Check Score Reason Maintained 🟢 10 23 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Pinned-Dependencies ⚠️ 1 dependency not pinned by hash detected -- score normalized to 1 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/zrender	6.0.0	🟢 4.4	Details Check Score Reason Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Maintained ⚠️ 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Code-Review 🟢 10 all changesets reviewed Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 2 dependency not pinned by hash detected -- score normalized to 2 Security-Policy ⚠️ 0 security policy file not detected License 🟢 10 license file detected Fuzzing ⚠️ 0 project is not fuzzed Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0

Scanned Files

• web/package-lock.json

[Aureliolo]

Closing: dependabot config now groups major bumps per ecosystem. This will be recreated as part of a grouped PR with all /web major updates (echarts + vue-echarts + vite + vitest + coverage-v8).

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 93.83%. Comparing base (2db968a) to head (af05e45).
⚠️ Report is 1 commits behind head on main.
✅ All tests successful. No failed tests found.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #380   +/-   ##
=======================================
  Coverage   93.83%   93.83%           
=======================================
  Files         462      462           
  Lines       21653    21653           
  Branches     2079     2079           
=======================================
  Hits        20319    20319           
  Misses       1032     1032           
  Partials      302      302           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.