build: bump @scure/bip39 from 1.6.0 to 2.2.0

[dependabot]

Bumps @scure/bip39 from 1.6.0 to 2.2.0.

Release notes

Sourced from @​scure/bip39's releases.

2.2.0

• April 2026 self-audit (all files): no major issues found
  • Audited for spec compliance and security
• Fix all Byte Array types, to ensure proper work in both TypeScript 5.6 & TypeScript 5.9+
  • TS 5.6 has Uint8Array, while TS 5.9+ made it generic Uint8Array<ArrayBuffer>
  • This creates incompatibility of code between versions
  • Previously, it was hard to use and constantly emitted errors similar to TS2345
  • See typescript#62240 for more context
• Fix compilation issues on TypeScript v6
• Improve tree-shaking, reduce bundle sizes
• Fix wordlists/traditional-chinese.js: it was exported incorrectly
• Wordlists: add PURE annotations to improve tree-shaking
• Wordlists: freeze the arrays to improve security

New Contributors

• @​Yvem made their first contribution in paulmillr/scure-bip39#26
• @​rikublock made their first contribution in paulmillr/scure-bip39#29

(We're skipping v2.1, to align with other noble / scure packages)

Full Changelog: paulmillr/scure-bip39@2.0.1...2.2.0

2.0.1

• .js extension must be used for all modules
  • Old: @scure/bip39/wordlists/english
  • New: @scure/bip39/wordlists/english.js
  • This simplifies working in browsers natively without transpilers
  • This was planned for 2.0.0, but was accidentally left out
• Improve typescript autocompletion for imported submodules
• Upgrade noble-hashes to 2.0.1
• Upgrade noble-curves to 2.0.1

Full Changelog: paulmillr/scure-bip39@2.0.0...2.0.1

2.0.0

• The package is now ESM-only. ESM can finally be loaded from common.js on node v20.19+
  • Node v20.19 is now the minimum required version
  • Package imports now work correctly in bundler-less environments, such as browsers
  • Reduces npm package size (traffic consumed): 92KB => 78KB
  • Reduces unpacked npm size (on-disk space): 384KB => 201KB
• Make bundle sizes smaller, compared to v1.x
• Upgrade to noble v2
• Add mnemonicToSeedWebcrypto, which uses built-in / native / WebCrypto method - useful for React Native and similar slow environments
• Upgrade typescript compilation env to ts5.9 and es2022

Full Changelog: paulmillr/scure-bip39@1.6.0...2.0.0

Commits

• 7114063 Release 2.2.0.
• 2e1e400 Changes related to April 2026 audit
• 376a95a Improve wordlist tree-shaking
• 1954395 Bump typescripts to 6.0.2
• d8a18de Fix tests
• 93dd1d4 Bump devdeps.
• 67affed Upgrade to ts 6.0-rc, jsbt 0.5. Add code quality scripts to pkg.json.
• e05d3c0 Add more docs everywhere
• 9d27974 readme
• ca2dccf Merge pull request #29 from rikublock/riku/fix-export-chinese
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​scure/bip39 since your current version.

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.