chore(deps): pin dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	OpenSSF
@biomejs/biome (source)	devDependencies	pin	^1.9.4 → 1.9.4
@testing-library/react	devDependencies	pin	^16.3.0 → 16.3.0
@vitejs/plugin-react (source)	devDependencies	pin	^5.0.0 → 5.0.1
bumpp	devDependencies	pin	^11.0.0 → 11.0.1
jsdom	devDependencies	pin	^29.0.0 → 29.0.1
react (source)	devDependencies	pin	^19.1.0 → 19.1.0
typescript (source)	devDependencies	pin	^6.0.0 → 6.0.2
unbuild	devDependencies	pin	^3.0.0 → 3.5.0
vitest (source)	devDependencies	pin	^1.6.1 → 1.6.1

⚠️ Renovate's pin functionality does not currently wire in the release age for a package, so the Minimum Release Age checks can apply. You will need to manually validate the Minimum Release Age for these package(s).

Add the preset :preserveSemverRanges to your config if you don't want to pin your dependencies.

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: pnpm-lock.yaml

Progress: resolved 1, reused 0, downloaded 0, added 0
Progress: resolved 22, reused 0, downloaded 0, added 0
 ERR_PNPM_TRUST_DOWNGRADE  High-risk trust downgrade for "chokidar@4.0.3" (possible package takeover)

This error happened while installing the dependencies of tsup@8.5.1

Trust checks are based solely on publish date, not semver. A package cannot be installed if any earlier-published version had stronger trust evidence. Earlier versions had provenance attestation, but this version has no trust evidence. A trust downgrade may indicate a supply chain incident.