Bump sharp and gatsby-plugin-manifest

[dependabot]

Bumps sharp to 0.31.3 and updates ancestor dependency gatsby-plugin-manifest. These dependencies need to be updated together.

Updates sharp from 0.27.2 to 0.31.3

Changelog

Sourced from sharp's changelog.

v0.31.3 - 21st December 2022

• Add experimental support for JPEG-XL images. Requires libvips compiled with libjxl. #2731

• Add runtime detection of V8 memory cage, ensures compatibility with Electron 21 onwards. #3384

• Expose interFrameMaxError and interPaletteMaxError GIF optimisation properties. #3401

• Allow installation on Linux with glibc patch versions e.g. Fedora 38. #3423

• Expand range of existing sharpen parameters to match libvips. #3427

• Prevent possible race condition awaiting metadata of Stream-based input. #3451

• Improve extractChannel support for 16-bit output colourspaces. #3453

• Ignore sequentialRead option when calculating image statistics. #3462

• Small performance improvement for operations that introduce a non-opaque background. #3465

• Ensure integral output of linear operation. #3468

v0.31.2 - 4th November 2022

• Upgrade to libvips v8.13.3 for upstream bug fixes.

• Ensure manual flip, rotate, resize operation ordering (regression in 0.31.1) #3391

• Ensure auto-rotation works without resize (regression in 0.31.1) #3422

v0.31.1 - 29th September 2022

• Upgrade to libvips v8.13.2 for upstream bug fixes.

• Ensure close event occurs after end event for Stream-based output. #3313

• Ensure limitInputPixels constructor option uses uint64.

... (truncated)

Commits

• 844deaf Release v0.31.3
• efbb0c2 Docs: add image with examples of resize fit property
• da0b594 Docs: update benchmarks for latest versions, add ARM64 results
• 78dada9 Tests: skip mapnik and tensorflow for Docker-run benchmarks
• 15f5cd4 Tests: move mapnik to optional deps
• 9eb2e94 Tests: update benchmark dependencies
• e40b068 Tests: update leak suppresions for latest dependencies
• 2c46528 Docs refresh
• 584807b Add runtime detection of V8 memory cage #3384
• a7fa701 Add experimental support for JPEG-XL, requires libvips with libjxl
• Additional commits viewable in compare view

Updates gatsby-plugin-manifest from 2.12.1 to 5.6.0

Release notes

Sourced from gatsby-plugin-manifest's releases.

v5.6.0

Welcome to [email protected] release (February 2023 #1)

Key highlights of this release:

• Gatsby is joining Netlify
• Head API supports context providers from wrapRootElement

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v5.5.0

Welcome to [email protected] release (January 2023 #2)

Key highlights of this release:

• Faster Hashing for gatsby-source-filesytem
• Setting <html> and <body> attributes

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v5.4.0

Welcome to [email protected] release (January 2023 #1)

The whole team took time off for a much deserved winter break and we hope you had relaxing holidays, too! Before the break we spent time doing maintenance work such as updating internal dependencies or fixing some smaller bugs here and there. In case you missed it, we shipped ES Modules (ESM) in Gatsby files in the last release.

So check out the notable bugfixes section to learn more.

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

Previous release notes

Full changelog

v5.3.0

Welcome to [email protected] release (December 2022 #1)

Key highlights of this release:

• ES Modules (ESM) in Gatsby files
• Improved error messages

Bleeding Edge: Want to try new features as soon as possible? Install gatsby@next and let us know if you have any issues.

... (truncated)

Changelog

Sourced from gatsby-plugin-manifest's changelog.

5.6.0 (2023-02-07)

🧾 Release notes

Bug Fixes

• update babel monorepo #37568 (13a0a9e)

5.5.0 (2023-01-24)

🧾 Release notes

Note: Version bump only for package gatsby-plugin-manifest

5.4.0 (2023-01-10)

🧾 Release notes

Bug Fixes

• update dependency sharp to ^0.31.3 #37375 (9abf681)

Chores

• update babel monorepo #37386 (b941876)

5.3.1 (2022-12-14)

Note: Version bump only for package gatsby-plugin-manifest

5.3.0 (2022-12-13)

🧾 Release notes

Chores

• update semver #37186 (34adbf1)
• update sharp #37131 (5a5e419)

5.2.0 (2022-11-25)

🧾 Release notes

Other Changes

• Update pluginOptionsSchema tests #27904 (2d967cb)

5.1.0 (2022-11-22)

🧾 Release notes

... (truncated)

Commits

• 8419b34 chore(release): Publish
• 13a0a9e fix(deps): update babel monorepo (#37568)
• bea75ae chore(release): Publish next
• 1a24414 chore(changelogs): update changelogs (#37529)
• ede0901 chore(release): Publish next pre-minor
• f8f084a chore(release): Publish next
• 3949808 chore(changelogs): update changelogs (#37436)
• 4ef5d77 chore(release): Publish next pre-minor
• b941876 chore(deps): update babel monorepo (#37386)
• 5df8a99 chore(release): Publish next
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.