fix: bump the prod-dependencies group across 1 directory with 2 updates

[dependabot]

Bumps the prod-dependencies group with 2 updates in the / directory: media-chrome and castable-video.

Updates media-chrome from 4.19.0 to 4.19.1

Release notes

Sourced from media-chrome's releases.

v4.19.1

Bug Fixes

• add inline-flex alignment to slot[name=icon] for proper SVG centering in buttons (#1295) (7e0869a), closes #1294
• input range margin on focus (#1288) (65d4394), closes #1254
• round playback rate display to avoid Safari float drift (#1292) (49785ef), closes muxinc/elements#1333

Changelog

Sourced from media-chrome's changelog.

4.19.1 (2026-06-01)

Bug Fixes

• add inline-flex alignment to slot[name=icon] for proper SVG centering in buttons (#1295) (7e0869a), closes #1294
• input range margin on focus (#1288) (65d4394), closes #1254
• round playback rate display to avoid Safari float drift (#1292) (49785ef), closes muxinc/elements#1333

Commits

• c993c50 chore(release): 4.19.1
• ca8dcce docs(CHANGELOG): 4.19.1
• 7e0869a fix: add inline-flex alignment to slot[name=icon] for proper SVG centering in...
• 3cea3c5 Revert "Merge branch 'main' into dev-main"
• 49785ef fix: round playback rate display to avoid Safari float drift (#1292)
• fc4271a Merge branch 'main' into dev-main
• e6c3491 cd: remove NODE_AUTH_TOKEN from cd workflow (#1293)
• 3e4855d chore: Moved canary job to cd.yml (#1291)
• f040fdb chore: Upgraded node version for failing CI job (#1289)
• c5e59a4 chore: Run automated tests on example pages (#1285)
• Additional commits viewable in compare view

Updates castable-video from 1.1.13 to 1.1.16

Release notes

Sourced from castable-video's releases.

castable-video: v1.1.16

1.1.16 (2026-05-06)

Bug Fixes

• use private field in #castPlayer getter to avoid side effects (#244) (d27f204)

castable-video: v1.1.15

1.1.15 (2026-05-04)

Bug Fixes

• format castable mixin (7271ee3)

castable-video: v1.1.14

1.1.14 (2026-04-29)

Bug Fixes

• correct hlsSegmentFormat for HLS streams with AAC audio in castable-video (#234) (a547dc2)

Changelog

Sourced from castable-video's changelog.

1.1.16 (2026-05-06)

Bug Fixes

• use private field in #castPlayer getter to avoid side effects (#244) (d27f204)

1.1.15 (2026-05-04)

Bug Fixes

• format castable mixin (7271ee3)

1.1.14 (2026-04-29)

Bug Fixes

• correct hlsSegmentFormat for HLS streams with AAC audio in castable-video (#234) (a547dc2)

Commits

• a88988c chore: release main (#245)
• d27f204 fix: use private field in #castPlayer getter to avoid side effects (#244)
• 5bd38f0 chore: release main (#240)
• 7271ee3 fix: format castable mixin
• 2dc069b chore: release main (#231)
• a547dc2 fix: correct hlsSegmentFormat for HLS streams with AAC audio in castable-vide...
• 502bf40 Revert castable video fix for convention commit (#233)
• 039b0cf fix correct hlsSegmentFormat for HLS streams with AAC audio in castable-video...
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

---

Note

Low Risk
Patch-level dependency bumps with no repo code changes; risk is limited to upstream player UI and Cast behavior regressions.

Overview
This PR bumps two production dependencies and refreshes the lockfile so the monorepo resolves the new versions consistently.

media-chrome is updated from 4.19.0 to 4.19.1 in @mux/mux-player, the Next.js example app, and package-lock.json. That patch release is UI-focused (icon alignment in buttons, input range focus margin, Safari playback-rate display rounding).

castable-video is updated from 1.1.13 to 1.1.16 in @mux/mux-video and the lockfile, pulling in Cast/HLS-related fixes and a safer #castPlayer getter.

There are no application source changes—only version range updates in package.json files and the lockfile.

^{Reviewed by Cursor Bugbot for commit 599892d. Bugbot is set up for automated code reviews on this repo. Configure here.}

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
elements-demo-astro	Ready	Preview, Comment	Jun 3, 2026 3:06pm
elements-demo-nextjs	Ready	Preview, Comment	Jun 3, 2026 3:06pm
elements-demo-svelte-kit	Ready	Preview, Comment	Jun 3, 2026 3:06pm
elements-demo-vanilla	Ready	Preview, Comment	Jun 3, 2026 3:06pm
elements-demo-vue	Ready	Preview, Comment	Jun 3, 2026 3:06pm

[snyk-io]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues
✅	Licenses	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[dependabot]

Superseded by #1336.