Build(deps-dev): bump @rollup/plugin-commonjs from 28.0.6 to 29.0.0

[dependabot]

Bumps @rollup/plugin-commonjs from 28.0.6 to 29.0.0.

Changelog

Sourced from @​rollup/plugin-commonjs's changelog.

v29.0.0

2025-10-30

Breaking Changes

• feat!: revert #1909 and add requireNodeBuiltins option (#1937)

v28.0.9

2025-10-24

Bugfixes

• fix: handle node: builtins with strictRequires: auto (#1930)

v28.0.8

2025-10-16

Bugfixes

• fix: guard moduleSideEffects for wrapped externals (#1914)

v28.0.7

2025-10-14

Bugfixes

• fix: avoid hoisting dynamically required node: builtins under strictRequires (#1909)

Commits

• c8e78c8 chore(release): commonjs v29.0.0
• d2b14ed feat(commonjs)!: revert #1909 and add requireNodeBuiltins option (#1937)
• b079b59 chore(release): commonjs v28.0.9
• 0881496 fix(commonjs): handle node: builtins with strictRequires: auto (#1930)
• 232dcf8 chore(release): commonjs v28.0.8
• 5a6175b fix(commonjs): guard moduleSideEffects for wrapped externals (#1914)
• 1935e9e chore(release): commonjs v28.0.7
• e80d4b2 fix(commonjs): avoid hoisting dynamically required node: builtins under stric...
• 0862902 chore(repo): update commonjs comment to clarify top-level this rewrite (#1888)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

✅MegaLinter analysis: Success

Descriptor	Linter	Files	Fixed	Errors	Warnings	Elapsed time
✅ ACTION	actionlint	5		0	0	0.04s
✅ JSON	jsonlint	21		0	0	0.13s
✅ JSON	npm-package-json-lint	yes		no	no	0.72s
✅ JSON	prettier	21		0	0	0.94s
✅ JSON	v8r	21		0	0	12.17s
✅ MARKDOWN	markdownlint	1		0	0	1.05s
✅ REPOSITORY	gitleaks	yes		no	no	1.82s
✅ REPOSITORY	git_diff	yes		no	no	0.04s
✅ REPOSITORY	secretlint	yes		no	no	1.11s
✅ REPOSITORY	syft	yes		no	no	9.02s
✅ REPOSITORY	trivy-sbom	yes		no	no	2.78s
✅ REPOSITORY	trufflehog	yes		no	no	27.32s
✅ TYPESCRIPT	prettier	6		0	0	0.88s
✅ YAML	prettier	20		0	0	1.67s
✅ YAML	v8r	20		0	0	9.7s
✅ YAML	yamllint	20		0	0	1.33s

See detailed reports in MegaLinter artifacts

Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)

• Documentation: Custom Flavors
• Command: npx mega-linter-runner@9.1.0 --custom-flavor-setup --custom-flavor-linters ACTION_ACTIONLINT,JSON_JSONLINT,JSON_V8R,JSON_PRETTIER,JSON_NPM_PACKAGE_JSON_LINT,MARKDOWN_MARKDOWNLINT,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_SECRETLINT,REPOSITORY_SYFT,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,TYPESCRIPT_PRETTIER,YAML_PRETTIER,YAML_YAMLLINT,YAML_V8R