chore(deps): bundle non-breaking client dep updates

[bensofficial]

Summary

Bundles six non-breaking Renovate dependency updates into a single PR to reduce CI churn.

Package	Change	Replaces
@typescript-eslint/eslint-plugin, @typescript-eslint/parser	8.61.1 → 8.62.0	#1135
@mantine/{carousel,core,dates,dropzone,form,hooks,notifications,tiptap}	9.3.2 → 9.4.0	#1134
globals	17.6.0 → 17.7.0	#1133
@eslint-react/eslint-plugin	5.9.1 → 5.9.2	#1132
ts-loader	9.6.1 → 9.6.2	#1131
uuid (override)	14.0.0 → 14.0.1	#1129

All are minor or patch releases with no breaking changes per their release notes. SBOM regenerated.

Not included (will land separately):

• Update dependency js-yaml@>=4.0.0 <4.2.0 to v5 #1130 js-yaml v4 → v5 (major, breaking changes per changelog)
• Update dependency undici@<7.28.0 to v8 #1123 undici v7 → v8 (major)
• Update Gradle to v9.6.0 #1119 Gradle 9.6.0 (different area — keycloak Dockerfile)

Test plan

• CI green (lint, typecheck, build, tests)
• pnpm exec tsc --noEmit passes locally ✅
• pnpm exec eslint src/ shows no new errors ✅

🤖 Generated with Claude Code

Summary by CodeRabbit

• Chores

  • Updated several frontend dependencies to newer versions, including UI, TypeScript, and build tooling packages.
  • Refreshed workspace version pins and security metadata to match the latest locked package set.

• Bug Fixes

  • Improved compatibility with updated package versions, helping reduce dependency-related issues during development and builds.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 28267502-e0c2-4f60-a1bb-716166c9d8bd

📥 Commits

Reviewing files that changed from the base of the PR and between 07e5336 and 0669b4a.

⛔ Files ignored due to path filters (1)

• client/pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

📒 Files selected for processing (4)

• client/package.json
• client/pnpm-workspace.yaml
• client/sbom/.lock-hash
• client/sbom/bom.json

---

Walkthrough

Bumps client npm dependencies: @mantine/* to 9.4.0, @typescript-eslint/* to 8.62.0, globals to 17.7.0, ts-loader to 9.6.2, and pins uuid to 14.0.1. The committed SBOM (bom.json) and lock-hash are regenerated to reflect new package versions, tarball hashes, and dependency graph refs.

Changes

Dependency Bump and SBOM Sync

Layer / File(s)	Summary
Package manifest version bumps client/package.json, client/pnpm-workspace.yaml	Bumps @mantine/* → 9.4.0, @typescript-eslint/{eslint-plugin,parser} → 8.62.0, globals → 17.7.0, ts-loader → 9.6.2 in package.json; pins uuid → 14.0.1 in pnpm-workspace.yaml overrides.
SBOM component metadata client/sbom/bom.json, client/sbom/.lock-hash	Updates version, purl, bom-ref, tarball url, and SHA-512 hash for all bumped packages (@eslint-react/*, @mantine/*, @typescript-eslint/*, eslint-plugin-react-*, globals, ts-loader, type-fest, uuid); refreshes the lock-hash.
SBOM dependency graph refs client/sbom/bom.json	Rewrites all dependency graph ref entries and dependsOn arrays to point to the new versioned purls, including sockjs→uuid@14.0.1 and thesis-management root edges.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Possibly related PRs

• ls1intum/thesis-management#1069: Introduced the committed CycloneDX SBOM artifacts (client/sbom/bom.json, client/sbom/.lock-hash) that this PR regenerates.
• ls1intum/thesis-management#1101: Previous client dependency bump touching the same files (package.json, pnpm-workspace.yaml, client/sbom/*).
• ls1intum/thesis-management#1120: Also bumped @mantine/* in client/package.json and regenerated the client SBOM.

Suggested labels

ready for review

Suggested reviewers

• Claudia-Anthropica

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title clearly summarizes the main change: bundling non-breaking client dependency updates.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch chore/combined-client-deps

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands.}