chore(deps): bump mermaid from 11.9.0 to 11.10.0 in /docs

[dependabot]

Bumps mermaid from 11.9.0 to 11.10.0.

Release notes

Sourced from mermaid's releases.

mermaid@11.10.0

Minor Changes

• #6744 daf8d8d Thanks @​SpecularAura! - feat: Added support for per link curve styling in flowchart diagram using edge ids

Patch Changes

• #6857 b9ef683 Thanks @​knsv! - feat: Exposing elk configuration forceNodeModelOrder and considerModelOrder to the mermaid configuration

• #6653 2c0931d Thanks @​darshanr0107! - chore: Remove the "-beta" suffix from the XYChart, Block, Sankey diagrams to reflect their stable status

• #6683 33e08da Thanks @​darshanr0107! - fix: Position the edge label in state diagram correctly relative to the edge

• #6693 814b68b Thanks @​darshanr0107! - fix: Apply correct dateFormat in Gantt chart to show only day when specified

• #6734 fce7cab Thanks @​darshanr0107! - fix: handle exclude dates properly in Gantt charts when using dateFormat: 'YYYY-MM-DD HH:mm:ss'

• #6733 fc07f0d Thanks @​omkarht! - fix: fixed connection gaps in flowchart for roundedRect, stadium and diamond shape

• #6876 12e01bd Thanks @​sidharthv96! - fix: sanitize icon labels and icon SVGs

  Resolves CVE-2025-54880 reported by @​fourcube

• #6801 01aaef3 Thanks @​sidharthv96! - fix: Update casing of ID in requirement diagram

• #6796 c36cd05 Thanks @​HashanCP! - fix: Make flowchart elk detector regex match less greedy

• #6702 8bb29fc Thanks @​qraqras! - fix(block): overflowing blocks no longer affect later lines

  This may change the layout of block diagrams that have overflowing lines (i.e. block diagrams that use up more columns that the columns specifier).

• #6717 71b04f9 Thanks @​darshanr0107! - fix: log warning for blocks exceeding column width

  This update adds a validation check that logs a warning message when a block's width exceeds the defined column layout.

• #6820 c99bce6 Thanks @​kriss-u! - fix: Add escaped class literal name on namespace

• #6332 6cc1926 Thanks @​ajuckel! - fix: Allow equals sign in sequenceDiagram labels

• #6651 9da6fb3 Thanks @​darshanr0107! - Add validation for negative values in pie charts:

  Prevents crashes during parsing by validating values post-parsing.

  Provides clearer, user-friendly error messages for invalid negative inputs.

• #6803 e48b0ba Thanks @​omkarht! - chore: migrate to class-based ArchitectureDB implementation

• #6838 4d62d59 Thanks @​saurabhg772244! - fix: node border style for handdrawn shapes

... (truncated)

Commits

• 96778f7 Merge pull request #6880 from mermaid-js/changeset-release/master
• d4c058b Version Packages
• b638a0a temp: Remove peerDeps from examples
• fd9aa36 chore: Update peerDependencies for examples
• 46a9f1b temp: Disable cspell check as it's blocking release
• 83c6224 Merge pull request #6878 from mermaid-js/develop
• d8161b1 fix: move fourcube to contributor
• 8223141 chore: add fourcube to cspell
• 99f98a6 Merge pull request #6877 from mermaid-js/update-timings
• ef28f54 chore: update E2E timings
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

Summary by CodeRabbit

• Chores
  • Standardized CI to Node.js 20 across documentation-related workflows to improve consistency and compatibility.
  • Updated script linting environment to use Node.js 20.
  • Enforced Node.js >= 20 for the documentation project via package configuration to align local development with CI.
  • No functional changes to application features; builds and documentation pipelines should run more reliably under the newer runtime.

[coderabbitai]

Walkthrough

Node.js version updated from 18 to 20 across multiple GitHub Actions workflows for docs and scripts linting. Added an engines field to docs/package.json specifying Node >= 20.0.0.

Changes

Cohort / File(s)	Summary
GitHub Actions: Node.js 20 bump .github/workflows/docs-auto-update.yml, .github/workflows/docs-check.yml, .github/workflows/docs-deploy.yml, .github/workflows/scripts-lint.yml	actions/setup-node@v4 node-version changed from 18 to 20 across workflows; in scripts-lint, value updated from "18" (string) to 20 (number). No other steps changed.
Docs package manifest docs/package.json	Added top-level engines field: "node": ">=20.0.0". No other modifications.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~8 minutes

Suggested labels

github_actions

Suggested reviewers

• akaladarshi
• LesnyRumcajs

Tip

🔌 Remote MCP (Model Context Protocol) integration is now available!

Pro plan users can now connect to remote MCP servers from the Integrations page. Connect with popular remote MCPs such as Notion and Linear to add more context to your reviews and chats.

✨ Finishing Touches

🧪 Generate unit tests

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch dependabot/npm_and_yarn/docs/mermaid-11.10.0

---

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

CodeRabbit Commands (Invoked using PR/Issue comments)

Type @coderabbitai help to get the list of available commands.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Status, Documentation and Community

• Visit our Status Page to check the current availability of CodeRabbit.
• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (5)

.github/workflows/docs-auto-update.yml (1)

20-20: Track latest Node 20 patch releases in CI

Use a semver alias so setup-node pulls the latest 20.x patch automatically.

-          node-version: 20
+          node-version: 20.x

.github/workflows/docs-check.yml (1)

36-36: LGTM; aligns CI with docs engines. Consider 20.x for auto-patching

The bump to Node 20 matches docs/package.json engines. Using 20.x helps keep CI on the latest security/bugfix patch within the major.

-          node-version: 20
+          node-version: 20.x

.github/workflows/docs-deploy.yml (1)

34-34: Consistent runtime for build+deploy; prefer 20.x

Good move to standardize on Node 20 for docs build before the Wrangler deploy. Suggest 20.x to follow patch updates automatically.

-          node-version: 20
+          node-version: 20.x

docs/package.json (1)

5-7: Engines addition looks right; optionally add a local version hint

Adding "engines": { "node": ">=20.0.0" } matches CI. For contributor ergonomics, consider adding a local version file so common toolchains auto-select Node 20.

Example additions outside this hunk:

+// .nvmrc
+20
+
+# Or, for asdf:
+# .tool-versions
+nodejs 20

If you prefer to enforce engines strictly in CI, ensure Yarn is failing on engine mismatch (it typically does under CI) or add a preflight check in your docs workflows.

.github/workflows/scripts-lint.yml (1)

80-80: Unify Node versions and enable automatic patch updates

All workflows are currently pinned to Node 20 and no Node 18 references remain. There are also no local version files (e.g. .nvmrc or .tool-versions) detected. To automatically receive patch updates on Node 20, you can opt into the minor 20.x range across all workflows:

• .github/workflows/scripts-lint.yml (line 80)
• .github/workflows/docs-auto-update.yml (line 20)
• .github/workflows/docs-check.yml (line 36)
• .github/workflows/docs-deploy.yml (line 34)

-          node-version: 20
+          node-version: 20.x

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

💡 Knowledge Base configuration:

• MCP integration is disabled by default for public repositories
• Jira integration is disabled by default for public repositories
• Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between cb5dc3c and 77d4824.

⛔ Files ignored due to path filters (1)

• docs/yarn.lock is excluded by !**/yarn.lock, !**/*.lock

📒 Files selected for processing (5)

• .github/workflows/docs-auto-update.yml (1 hunks)
• .github/workflows/docs-check.yml (1 hunks)
• .github/workflows/docs-deploy.yml (1 hunks)
• .github/workflows/scripts-lint.yml (1 hunks)
• docs/package.json (1 hunks)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (11)

• GitHub Check: cargo-publish-dry-run
• GitHub Check: Build MacOS
• GitHub Check: Build forest binaries on Linux AMD64
• GitHub Check: tests
• GitHub Check: Build Ubuntu
• GitHub Check: tests-release
• GitHub Check: Check
• GitHub Check: Deploy to Cloudflare Pages
• GitHub Check: All lint checks
• GitHub Check: Analyze (go)
• GitHub Check: Analyze (rust)