Bump the development-dependencies group across 1 directory with 7 updates

[dependabot]

Updates the requirements on @biomejs/biome, auto-changelog, del-cli, globals, release-it, sass and web-ext to permit the latest version.
Updates @biomejs/biome to 1.9.3

Release notes

Sourced from @​biomejs/biome's releases.

CLI v1.9.3

CLI

New features

• GritQL queries that match functions or methods will now match async functions or methods as well.

  If this is not what you want, you can capture the async keyword (or its absence) in a metavariable and assert its emptiness:

  $async function foo() {} where $async <: .
  

  Contributed by @​arendjr

Bug fixes

• Fix #4077: Grit queries no longer need to match the statement's trailing semicolon. Contributed by @​arendjr

• Fix #4102. Now the CLI command lint doesn't exit with an error code when using --write/--fix. Contributed by @​ematipico

Configuration

Bug fixes

• Fix #4125, where noLabelWithoutControl options where incorrectly marked as mandatory. Contributed by @​ematipico

Editors

• Fix a case where CSS files weren't correctly linted using the default configuration. Contributed by @​ematipico

Formatter

Bug fixes

• Fix #3924 where GraphQL formatter panics in block comments with empty line. Contributed by @​vohoanglong0107

• Fix a case where raw values inside url() functions weren't properly trimmed.

  .value {
  -  background: url(
  -   whitespace-around-string
  -  );
  + background: url(whitespace-around-string);
  }

  Contributed by @​ematipico

• Fixed #4076, where a media query wasn't correctly formatted:

  .class {

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

v1.9.3 (2024-10-01)

CLI

New features

• GritQL queries that match functions or methods will now match async functions or methods as well.

  If this is not what you want, you can capture the async keyword (or its absence) in a metavariable and assert its emptiness:

  $async function foo() {} where $async <: .
  

  Contributed by @​arendjr

Bug fixes

• Fix #4077: Grit queries no longer need to match the statement's trailing semicolon. Contributed by @​arendjr

• Fix #4102. Now the CLI command lint doesn't exit with an error code when using --write/--fix. Contributed by @​ematipico

Configuration

Bug fixes

• Fix #4125, where noLabelWithoutControl options where incorrectly marked as mandatory. Contributed by @​ematipico

Editors

• Fix a case where CSS files weren't correctly linted using the default configuration. Contributed by @​ematipico

Formatter

Bug fixes

• Fix #3924 where GraphQL formatter panics in block comments with empty line. Contributed by @​vohoanglong0107

• Fix a case where raw values inside url() functions weren't properly trimmed.

  .value {
  -  background: url(
  -   whitespace-around-string
  -  );
  + background: url(whitespace-around-string);
  }

  Contributed by @​ematipico

• Fixed #4076, where a media query wasn't correctly formatted:

... (truncated)

Commits

• 3d498ed release: v1.9.3 (#4140)
• 7e29f06 fix(lint): options for noLabelWithoutControl are optional (#4138)
• 10a1371 feat(useExhaustiveDependencies): add option to disable errors for unecessary ...
• 295efb9 feat(biome_css_analyze): implement noDescendingSpecificity (#4097)
• f3cfa8a fix(schema): make optional the options JSON schema field (#4080)
• cc4c867 feat(linter): implement noTemplateCurlyInString (#4069)
• d03c6cd feat(linter): implement no-nested-ternary (#4067)
• 2b6b3c8 chore(deps): update @​biomejs packages (#4047)
• b76cb41 feat(linter): implement useExplicitFunctionReturnType (#3990)
• a766aeb chore(readme): use polar shield (#4000)
• Additional commits viewable in compare view

Updates auto-changelog to 2.5.0

Changelog

Sourced from auto-changelog's changelog.

v2.5.0

• Fix: Throws error if tag does not contains "version" property [#272](https://github.com/CookPete/auto-changelog/issues/272)
• Add support for GitLab's new style routes [#267](https://github.com/CookPete/auto-changelog/issues/267)
• fix: gitlab subgroups [#232](https://github.com/CookPete/auto-changelog/issues/232)
• Add Template for handling commits with Conventional Commits format [#217](https://github.com/CookPete/auto-changelog/issues/217)
• upgrade parse-github-url v1.0.3 [#289](https://github.com/CookPete/auto-changelog/issues/289)
• tests: fix parseReleases [#265](https://github.com/CookPete/auto-changelog/issues/265)
• feat: combine multiple commit-lists to one if heading is undefined [#236](https://github.com/CookPete/auto-changelog/issues/236)
• Add a Plugin system [#237](https://github.com/CookPete/auto-changelog/issues/237)
• add support for including commit pattern [#258](https://github.com/CookPete/auto-changelog/issues/258)
• Revert GitLab's new style routes b087f51
• Remove email from package.json 0991f17

v2.4.0

3 February 2022

• Logical handling of --starting-version [#227](https://github.com/CookPete/auto-changelog/issues/227)
• Trim commit subject [#225](https://github.com/CookPete/auto-changelog/issues/225)
• feat(commits.js): added niceDate format of commits [#206](https://github.com/CookPete/auto-changelog/issues/206)
• Logical handling of --starting-version (#227) [#221](https://github.com/CookPete/auto-changelog/issues/221)
• Add ending-version option [#209](https://github.com/CookPete/auto-changelog/issues/209)
• Do not sort tags when sorting via --append-git-tag [#197](https://github.com/CookPete/auto-changelog/issues/197) [#210](https://github.com/CookPete/auto-changelog/issues/210)
• Bump packages 9d271fc
• yarn upgrade c227823
• --ending-version fixes dbd36d5

v2.3.0

23 May 2021

• feat: add support for minor/preminor versions for custom templates [#185](https://github.com/CookPete/auto-changelog/issues/185)
• Feat: add sortCommits by subject and subject-desc [#186](https://github.com/CookPete/auto-changelog/issues/186)
• Remove --sort=-creatordate from git tag logic [#196](https://github.com/CookPete/auto-changelog/issues/196)
• Add --append-git-tag [#190](https://github.com/CookPete/auto-changelog/issues/190)
• Add --hide-empty-releases [#189](https://github.com/CookPete/auto-changelog/issues/189)
• Add --starting-date [#181](https://github.com/CookPete/auto-changelog/issues/181)
• Support absolute paths for --handlebars-setup [#180](https://github.com/CookPete/auto-changelog/issues/180)
• Fix unreleased version diff [#174](https://github.com/CookPete/auto-changelog/issues/174)
• Fix v prefix logic [#33](https://github.com/CookPete/auto-changelog/issues/33)
• Fix getSubject edge case [#179](https://github.com/CookPete/auto-changelog/issues/179) [#184](https://github.com/CookPete/auto-changelog/issues/184)
• Apply ignoreCommitPattern earlier in the parsing logic [#195](https://github.com/CookPete/auto-changelog/issues/195) [#187](https://github.com/CookPete/auto-changelog/issues/187)
• Add minor boolean to test data a80e311
• Remove unused sortTags syntax 1b29530
• Remove lodash.uniqby 26e7d9c

v2.2.1

18 September 2020

... (truncated)

Commits

• 5ba380a 2.5.0
• b087f51 Revert GitLab's new style routes
• 7a0943f Fix: Throws error if tag does not contains "version" property (#272)
• 8feafe8 Add support for GitLab's new style routes (#267)
• 43fa031 fix: gitlab subgroups (#232)
• e1f4045 Add Template for handling commits with Conventional Commits format (#217)
• 3444e49 upgrade parse-github-url v1.0.3 (#289)
• 03811f7 tests: fix parseReleases (#265)
• 79acd55 feat: combine multiple commit-lists to one if heading is undefined (#236)
• 37cdfed Add a Plugin system (#237)
• Additional commits viewable in compare view

Updates del-cli from 5.1.0 to 6.0.0

Release notes

Sourced from del-cli's releases.

v6.0.0

Breaking

• Require Node.js 18 de54031

Improvements

• Update dependencies de54031

sindresorhus/del-cli@v5.1.0...v6.0.0

Commits

• f6e4605 6.0.0
• de54031 Require Node.js 18 and update dependencies
• 028ebb1 Meta tweaks
• See full diff in compare view

Updates globals to 15.10.0

Release notes

Sourced from globals's releases.

v15.10.0

• Update globals (#264) 3cbce2d

sindresorhus/globals@v15.9.0...v15.10.0

Commits

• 7560717 15.10.0
• 3cbce2d Update globals (#264)
• bd201b5 Add permissions for automated job (#263)
• 53f872a Collect globals on all platforms (#261)
• 560cf2f Update dependencies (#262)
• See full diff in compare view

Updates release-it to 17.7.0

Release notes

Sourced from release-it's releases.

Release 17.7.0

• Lint/formatting fixes (79530b9)
• Fix uploaded assets URL for Gitlab version >= 17.2 (#1153) (1a6325b)
• feat(github): expose github make_latest flag (#1150) (eeda65b)
• fix(github-comments): make search query respect 256 character limit (encoded) (#1148) (43a5e71)
• fix: replace obsolete is-ci library by ci-info library (closes #1145) (#1146) (19c232d)
• Remove node-fetch and got from dependencies (#1133) (696f082)
• Fix schema for git.requireBranch (closes #1138) (8b57290)

Changelog

Sourced from release-it's changelog.

Changelog

This document lists breaking changes for each major release.

See the GitHub Releases page for detailed changelogs: https://github.com/release-it/release-it/releases

v17 (2023-11-11)

• Removed support for Node.js v16.

v16 (2023-07-05)

• Removed support for Node.js v14.

v15 (2022-04-30)

• Removed support for Node.js v10 and v12.
• Removed support for GitLab v12.4 and lower.
• Removed anonymous metrics (and the option to disable it).
• Programmatic usage and plugins only through ES Module syntax (import)

Use release-it v14 in legacy environments.

v14 (2020-09-03)

• Removed global property from plugins. Use this.config[key] instead.
• Removed deprecated npm.access option. Set this in package.json instead.

v13 (2020-03-07)

• Dropped support for Node v8
• Dropped support for GitLab v11.6 and lower.
• Deprecated scripts are removed (in favor of hooks).
• Removed deprecated --non-interactive (-n) argument. Use --ci instead.
• Removed old %s and [REV_RANGE] syntax in command substitutions. Use ${version} and ${latestTag} instead.

v12 (2019-05-03)

• The --follow-tags argument for git push has been moved to the default configuration. This is only a breaking change if git.pushArgs was not empty (it was empty by default).

v11

• The custom conventional-changelog increment (e.g. "increment": "conventional:angular") with additional script configuration is replaced with a plugin. Please see conventional changelog how to use this plugin.
• The pkgFiles option has been removed. If there's a need to bump other files than what npm version bumps, it should be (part of) a plugin.

... (truncated)

Commits

• 653e979 Release 17.7.0
• 79530b9 Lint/formatting fixes
• 1a6325b Fix uploaded assets URL for Gitlab version >= 17.2 (#1153)
• eeda65b feat(github): expose github make_latest flag (#1150)
• 43a5e71 fix(github-comments): make search query respect 256 character limit (encoded)...
• 19c232d fix: replace obsolete is-ci library by ci-info library (closes #1145) (#1...
• 696f082 Remove node-fetch and got from dependencies (#1133)
• 8b57290 Fix schema for git.requireBranch (closes #1138)
• See full diff in compare view

Updates sass to 1.79.4

Release notes

Sourced from sass's releases.

Dart Sass 1.79.4

To install Sass 1.79.4, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

JS API

• Fix a bug where passing green or blue to color.change() for legacy colors would fail.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.79.4

JS API

• Fix a bug where passing green or blue to color.change() for legacy colors would fail.

1.79.3

• Update the $channel parameter in the suggested replacement for color.red(), color.green(), color.blue(), color.hue(), color.saturation(), color.lightness(), color.whiteness(), and color.blackness() to use a quoted string.

1.79.2

• Add a $space parameter to the suggested replacement for color.red(), color.green(), color.blue(), color.hue(), color.saturation(), color.lightness(), color.whiteness(), and color.blackness().

• Update deprecation warnings for the legacy JS API to include a link to relevant documentation.

1.79.1

• No user-visible changes.

1.79.0

• Breaking change: Passing a number with unit % to the $alpha parameter of color.change(), color.adjust(), change-color(), and adjust-color() is now interpreted as a percentage, instead of ignoring the unit. For example, color.change(red, $alpha: 50%) now returns rgb(255 0 0 / 0.5).

• Potentially breaking compatibility fix: Sass no longer rounds RGB channels to the nearest integer. This means that, for example, rgb(0 0 1) != rgb(0 0 0.6). This matches the latest version of the CSS spec and browser behavior.

• Potentially breaking compatibility fix: Passing large positive or negative values to color.adjust() can now cause a color's channels to go outside that color's gamut. In most cases this will currently be clipped by the browser and end up showing the same color as before, but once browsers implement gamut mapping it may produce a different result.

• Add support for CSS Color Level 4 [color spaces]. Each color value now tracks its color space along with the values of each channel in that color space. There are two general principles to keep in mind when dealing with new color spaces:

... (truncated)

Commits

• f84e867 Fix JS API legacy SassColor.change (#2368)
• 72612c4 Bump bufbuild/buf-setup-action in /.github/util/initialize (#2363)
• b85ef9c Quote $channel in channel function replacement suggestions (#2361)
• fa4827f Add documentation link to legacy-js-api warning (#2355)
• 7c3f5e2 Add a $space parameter to the channel function deprecation (#2354)
• 5fa04d3 Fix sass-parser publishing (#2349)
• d740d02 Emit deprecation warnings for the legacy JS API (#2343)
• a957eea Bump chokidar to v4 (#2347)
• aa35aa2 Bump bufbuild/buf-setup-action in /.github/util/initialize (#2346)
• f826ed2 Stop emitting mixed-decls in a bunch of unnecessary cases (#2342)
• Additional commits viewable in compare view

Updates web-ext to 8.3.0

Release notes

Sourced from web-ext's releases.

8.3.0

main changes

• Updated: dependency addons-linter to 7.1.0 (#3254)
• Updated: replace Bunyan logger with Pino (#3214)
• Removed: drop mz dependency (#3215)
• Removed: drop node-fetch dependency (#3217)
• Removed: drop fs-extras and mkdirp dependencies (#3230)
• Fixed: Resolve input sourceDir to absolute path (#3024)

dependencies

• Updated: dependency @babel/runtime to 7.25.6 (#3236)
• Updated: dependency chrome-launcher to 1.1.2 (#3200)
• Updated: dependency firefox-profile to 4.7.0 (#3224)
• Updated: dependency https-proxy-agent to 7.0.5 (#3184)
• Updated: dependency jose to 5.9.2 (#3253)
• Updated: dependency pino to 9.4.0 (#3240)
• Updated: dependency update-notifier to 7.3.1 (#3244)
• Updated: dependency watchpack to 2.4.2 (#3223)
• Updated: dependency ws to 8.18.0 (#3187)

dev dependencies

• Updated: dependency @babel/cli to 7.25.6 (#3237)
• Updated: dependency @babel/core to 7.25.2 (#3210)
• Updated: dependency @babel/eslint-parser to 7.25.1 (#3206)
• Updated: dependency @babel/preset-env to 7.25.4 (#3228)
• Updated: dependency @commitlint/cli to 19.5.0 (#3249)
• Updated: dependency @commitlint/config-conventional to 19.5.0 (#3248)
• Updated: dependency babel-plugin-istanbul to 7.0.0 (#3189)
• Updated: dependency chai to 4.5.0 (#3204)
• Updated: dependency eslint-plugin-import to 2.30.0 (#3239)
• Updated: dependency mocha to 10.7.0 (#3202)
• Updated: dependency prettier to 3.3.3 (#3196)
• Updated: dependency sinon to 19.0.2 (#3252)

others

• Fixed: typo and missed async keyword (#3177)

See all changes: mozilla/web-ext@8.2.0...8.3.0

Commits

• a11c973 8.3.0
• 2eb18db chore(deps): bump addons-linter from 7.0.0 to 7.1.0 (#3254)
• e76422d chore(deps-dev): bump @​commitlint/cli from 19.3.0 to 19.5.0 (#3249)
• 0dc61db chore(deps-dev): bump chai from 4.3.10 to 4.5.0 (#3204)
• a3e46e2 chore(deps-dev): bump @​commitlint/config-conventional from 19.2.2 to 19.5.0 (...
• 2eb5ceb chore(deps-dev): bump @​babel/preset-env from 7.25.3 to 7.25.4 (#3228)
• 14a09f2 chore(deps): bump addons-linter from 6.33.0 to 7.0.0 (#3245)
• d2be7da chore(deps): bump update-notifier from 7.3.0 to 7.3.1 (#3244)
• 7465da3 chore(deps-dev): bump sinon from 19.0.0 to 19.0.2 (#3252)
• 8300373 chore(deps-dev): bump eslint-plugin-import from 2.29.1 to 2.30.0 (#3239)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/[email protected]	Transitive: filesystem	+29	1.07 MB	sindresorhus

🚮 Removed packages: npm/[email protected]

View full report↗︎

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

[dependabot]

Superseded by #160.