chore(deps): bump @scure/bip39 from 2.0.1 to 2.2.0 in the production-minor group

[dependabot]

Bumps the production-minor group with 1 update: @scure/bip39.

Updates @scure/bip39 from 2.0.1 to 2.2.0

Release notes

Sourced from @​scure/bip39's releases.

2.2.0

• April 2026 self-audit (all files): no major issues found
  • Audited for spec compliance and security
• Fix all Byte Array types, to ensure proper work in both TypeScript 5.6 & TypeScript 5.9+
  • TS 5.6 has Uint8Array, while TS 5.9+ made it generic Uint8Array<ArrayBuffer>
  • This creates incompatibility of code between versions
  • Previously, it was hard to use and constantly emitted errors similar to TS2345
  • See typescript#62240 for more context
• Fix compilation issues on TypeScript v6
• Improve tree-shaking, reduce bundle sizes
• Fix wordlists/traditional-chinese.js: it was exported incorrectly
• Wordlists: add PURE annotations to improve tree-shaking
• Wordlists: freeze the arrays to improve security

New Contributors

• @​Yvem made their first contribution in paulmillr/scure-bip39#26
• @​rikublock made their first contribution in paulmillr/scure-bip39#29

(We're skipping v2.1, to align with other noble / scure packages)

Full Changelog: paulmillr/scure-bip39@2.0.1...2.2.0

Commits

• 7114063 Release 2.2.0.
• 2e1e400 Changes related to April 2026 audit
• 376a95a Improve wordlist tree-shaking
• 1954395 Bump typescripts to 6.0.2
• d8a18de Fix tests
• 93dd1d4 Bump devdeps.
• 67affed Upgrade to ts 6.0-rc, jsbt 0.5. Add code quality scripts to pkg.json.
• e05d3c0 Add more docs everywhere
• 9d27974 readme
• ca2dccf Merge pull request #29 from rikublock/riku/fix-export-chinese
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​scure/bip39 since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions