chore: bump the dev-dependencies group across 1 directory with 6 updates

[dependabot]

Bumps the dev-dependencies group with 6 updates in the / directory:

Package	From	To
c8	9.1.0	10.1.2
eslint	8.57.0	9.7.0
esmock	2.6.4	2.6.7
husky	8.0.3	9.1.1
semantic-release	22.0.12	24.0.0
sinon	17.0.1	18.0.0

Updates c8 from 9.1.0 to 10.1.2

Release notes

Sourced from c8's releases.

v10.1.2

10.1.2 (2024-06-13)

Bug Fixes

• deps: make monocart-coverage-reports an optional with meta defined (3b91fda)

v10.1.1

10.1.1 (2024-06-11)

Bug Fixes

• stop installing monocart-coverage-reports (#535) (13979a7)

v10.1.0

10.1.0 (2024-06-11)

Features

• add experimental monocart reports (#521) (2e5e297)

v10.0.0

10.0.0 (2024-06-10)

⚠ BREAKING CHANGES

• deps: Node 18 is now the minimum supported Node.js version

Bug Fixes

• deps: update test-exclude with new glob / minimatch (#531) (e33cf30)

Changelog

Sourced from c8's changelog.

10.1.2 (2024-06-13)

Bug Fixes

• deps: make monocart-coverage-reports an optional with meta defined (3b91fda)

10.1.1 (2024-06-11)

Bug Fixes

• stop installing monocart-coverage-reports (#535) (13979a7)

10.1.0 (2024-06-11)

Features

• add experimental monocart reports (#521) (2e5e297)

10.0.0 (2024-06-10)

⚠ BREAKING CHANGES

• deps: Node 18 is now the minimum supported Node.js version

Bug Fixes

• deps: update test-exclude with new glob / minimatch (#531) (e33cf30)

Commits

• ff146b4 chore(main): release 10.1.2 (#538)
• 3b91fda fix(deps): make monocart-coverage-reports an optional with meta defined
• e3560e1 chore(main): release 10.1.1 (#536)
• 13979a7 fix: stop installing monocart-coverage-reports (#535)
• 15ac690 chore(main): release 10.1.0 (#533)
• 96e869f build(deps-dev): bump braces from 3.0.2 to 3.0.3 (#534)
• 2e5e297 feat: add experimental monocart reports (#521)
• dc38051 chore(main): release 10.0.0 (#532)
• e33cf30 fix(deps)!: update test-exclude with new glob / minimatch (#531)
• 1eeeaeb doc(CONTRIBUTING): remove dead link, update broken link (#526)
• Additional commits viewable in compare view

Updates eslint from 8.57.0 to 9.7.0

Release notes

Sourced from eslint's releases.

v9.7.0

Features

• 7bd9839 feat: add support for es2025 duplicate named capturing groups (#18630) (Yosuke Ota)
• 1381394 feat: add regex option in no-restricted-imports (#18622) (Nitin Kumar)

Bug Fixes

• 14e9f81 fix: destructuring in catch clause in no-unused-vars (#18636) (Francesco Trotta)

Documentation

• 9f416db docs: Add Powered by Algolia label to the search. (#18633) (Amaresh S M)
• c8d26cb docs: Open JS Foundation -> OpenJS Foundation (#18649) (Milos Djermanovic)
• 6e79ac7 docs: loadESLint does not support option cwd (#18641) (Francesco Trotta)

Chores

• 793b718 chore: upgrade @​eslint/js@​9.7.0 (#18680) (Francesco Trotta)
• 7ed6f9a chore: package.json update for @​eslint/js release (Jenkins)
• 7bcda76 refactor: Add type references (#18652) (Nicholas C. Zakas)
• 51bf57c chore: add tech sponsors through actions (#18624) (Strek)
• 6320732 refactor: don't use parent property in NodeEventGenerator (#18653) (Milos Djermanovic)
• 9e6d640 refactor: move "Parsing error" prefix adding to Linter (#18650) (Milos Djermanovic)

v9.6.0

Features

• e2b16e2 feat: Implement feature flags (#18516) (Nicholas C. Zakas)
• 8824aa1 feat: add ecmaVersion: 2025, parsing duplicate named capturing groups (#18596) (Milos Djermanovic)

Bug Fixes

• 1613e2e fix: Allow escaping characters in config patterns on Windows (#18628) (Milos Djermanovic)
• 21d3766 fix: no-unused-vars include caught errors pattern in report message (#18609) (Kirk Waiblinger)
• d7a7736 fix: improve no-unused-vars message on unused caught errors (#18608) (Kirk Waiblinger)
• f9e95d2 fix: correct locations of invalid /* eslint */ comments (#18593) (Milos Djermanovic)

Documentation

• 13dbecd docs: Limit search to just docs (#18627) (Nicholas C. Zakas)
• 375227f docs: Update getting-started.md - add pnpm to init eslint config (#18599) (Kostiantyn Ochenash)
• 44915bb docs: Update README (GitHub Actions Bot)
• d50db7b docs: Update vscode-eslint info (#18595) (Nicholas C. Zakas)

Chores

• b15ee30 chore: upgrade @​eslint/js@​9.6.0 (#18632) (Milos Djermanovic)
• d655503 chore: package.json update for @​eslint/js release (Jenkins)
• 7c78ad9 refactor: Use language.visitorKeys and check for non-JS SourceCode (#18625) (Nicholas C. Zakas)
• 69ff64e refactor: Return value of applyInlineConfig() (#18623) (Nicholas C. Zakas)
• d2d06f7 refactor: use / separator when adjusting ignorePatterns on Windows (#18613) (Milos Djermanovic)
• 6421973 refactor: fix disable directives for languages with 0-based lines (#18605) (Milos Djermanovic)
• 0a13539 refactor: Allow optional methods for languages (#18604) (Nicholas C. Zakas)
• c7ddee0 chore: make internal-rules not being a package (#18601) (Milos Djermanovic)
• 3379164 chore: remove .eslintrc.js (#18011) (唯然)
• d0c3a32 chore: update knip (with webdriver-io plugin) (#18594) (Lars Kappert)

... (truncated)

Changelog

Sourced from eslint's changelog.

v9.7.0 - July 12, 2024

• 793b718 chore: upgrade @​eslint/js@​9.7.0 (#18680) (Francesco Trotta)
• 7ed6f9a chore: package.json update for @​eslint/js release (Jenkins)
• 14e9f81 fix: destructuring in catch clause in no-unused-vars (#18636) (Francesco Trotta)
• 7bcda76 refactor: Add type references (#18652) (Nicholas C. Zakas)
• 51bf57c chore: add tech sponsors through actions (#18624) (Strek)
• 9f416db docs: Add Powered by Algolia label to the search. (#18633) (Amaresh S M)
• 6320732 refactor: don't use parent property in NodeEventGenerator (#18653) (Milos Djermanovic)
• 7bd9839 feat: add support for es2025 duplicate named capturing groups (#18630) (Yosuke Ota)
• 1381394 feat: add regex option in no-restricted-imports (#18622) (Nitin Kumar)
• 9e6d640 refactor: move "Parsing error" prefix adding to Linter (#18650) (Milos Djermanovic)
• c8d26cb docs: Open JS Foundation -> OpenJS Foundation (#18649) (Milos Djermanovic)
• 6e79ac7 docs: loadESLint does not support option cwd (#18641) (Francesco Trotta)

v9.6.0 - June 28, 2024

• b15ee30 chore: upgrade @​eslint/js@​9.6.0 (#18632) (Milos Djermanovic)
• d655503 chore: package.json update for @​eslint/js release (Jenkins)
• 1613e2e fix: Allow escaping characters in config patterns on Windows (#18628) (Milos Djermanovic)
• 13dbecd docs: Limit search to just docs (#18627) (Nicholas C. Zakas)
• 7c78ad9 refactor: Use language.visitorKeys and check for non-JS SourceCode (#18625) (Nicholas C. Zakas)
• e2b16e2 feat: Implement feature flags (#18516) (Nicholas C. Zakas)
• 69ff64e refactor: Return value of applyInlineConfig() (#18623) (Nicholas C. Zakas)
• 375227f docs: Update getting-started.md - add pnpm to init eslint config (#18599) (Kostiantyn Ochenash)
• 44915bb docs: Update README (GitHub Actions Bot)
• d2d06f7 refactor: use / separator when adjusting ignorePatterns on Windows (#18613) (Milos Djermanovic)
• 21d3766 fix: no-unused-vars include caught errors pattern in report message (#18609) (Kirk Waiblinger)
• 6421973 refactor: fix disable directives for languages with 0-based lines (#18605) (Milos Djermanovic)
• d7a7736 fix: improve no-unused-vars message on unused caught errors (#18608) (Kirk Waiblinger)
• 0a13539 refactor: Allow optional methods for languages (#18604) (Nicholas C. Zakas)
• f9e95d2 fix: correct locations of invalid /* eslint */ comments (#18593) (Milos Djermanovic)
• 8824aa1 feat: add ecmaVersion: 2025, parsing duplicate named capturing groups (#18596) (Milos Djermanovic)
• c7ddee0 chore: make internal-rules not being a package (#18601) (Milos Djermanovic)
• 3379164 chore: remove .eslintrc.js (#18011) (唯然)
• d0c3a32 chore: update knip (with webdriver-io plugin) (#18594) (Lars Kappert)
• d50db7b docs: Update vscode-eslint info (#18595) (Nicholas C. Zakas)

v9.5.0 - June 14, 2024

• f588160 chore: upgrade @​eslint/js@​9.5.0 (#18591) (Milos Djermanovic)
• 5890841 chore: package.json update for @​eslint/js release (Jenkins)
• 455f7fd docs: add section about including .gitignore files (#18590) (Milos Djermanovic)
• e9f4ccd chore: remove unused eslint-disable directive (#18589) (Milos Djermanovic)
• 721eafe docs: update info about universal files patterns (#18587) (Francesco Trotta)
• 4b23ffd refactor: Move JS parsing logic into JS language (#18448) (Nicholas C. Zakas)
• 6880286 fix: treat * as a universal pattern (#18586) (Milos Djermanovic)
• 8127127 docs: Update README (GitHub Actions Bot)
• b2d256c feat: no-sparse-arrays report on "comma" instead of the whole array (#18579) (fisker Cheung)
• 1495b93 chore: update WebdriverIO packages (#18558) (Christian Bromann)

... (truncated)

Commits

• 05ab812 9.7.0
• 1917cd3 Build: changelog update for 9.7.0
• 793b718 chore: upgrade @​eslint/js@​9.7.0 (#18680)
• 7ed6f9a chore: package.json update for @​eslint/js release
• 14e9f81 fix: destructuring in catch clause in no-unused-vars (#18636)
• 7bcda76 refactor: Add type references (#18652)
• 51bf57c chore: add tech sponsors through actions (#18624)
• 9f416db docs: Add Powered by Algolia label to the search. (#18633)
• 6320732 refactor: don't use parent property in NodeEventGenerator (#18653)
• 7bd9839 feat: add support for es2025 duplicate named capturing groups (#18630)
• Additional commits viewable in compare view

Updates esmock from 2.6.4 to 2.6.7

Release notes

Sourced from esmock's releases.

add swc tests

add swc tests and remove swc caution from README thanks @​Brooooooklyn

migrate eslint 9 add tsx tests,

• add tsx tests and remove tsx caution from README thanks @​galexite
• pin node 22.1 at test CI and ignore regressions in new node 22
• migrate to eslint 9

add node v22 to test matrix

add node 22 to ci test pipeline and use with { type: 'json' } import syntax for node >= 20,

• add node 22 to ci test pipeline thanks @​aladdin-add
• use json import syntax with { type: 'json' } for node 22
• skip node 22 tests on windows-latest ci, where node 22 is in a broken state, see nodejs/node#52682

Changelog

Sourced from esmock's changelog.

changelog

• 2.6.7 Jul.16.2024
  • add swc tests and remove swc caution from README thanks @​Brooooooklyn
  • unpin node 22.1 at test CI and use latest 22.x
• 2.6.6 Jun.15.2024
  • add tsx tests and remove tsx caution from README thanks @​galexite
  • pin node 22.1 at test CI and ignore regressions in new node 22
  • migrate to eslint 9
• 2.6.5 Apr.25.2024
  • add node 22 to ci test pipeline thanks @​aladdin-add
  • use json import syntax with { type: 'json' } for node 22
  • skip node 22 tests on windows-latest ci, where node 22 is in a broken state, see nodejs/node#52682
• 2.6.4 Feb.26.2024
  • update README with notice about incompatible typescript loaders
  • increment resolvewithplus to support more export patterns, see resolvewithplus v2.1.5
  • update publish spec job actions, use checkout@v4 and setup-node@v4
  • remove node 16 from test job matrix, eol 2023, Sep 11 #254
• 2.6.3 Jan.23.2024
  • resolve nested exports defined on named-properties with wildcards, eg exports: { './*': { default: './src/*/index.js' } } resolves this issue at esmock
• 2.6.2 Jan.14.2024
  • remove reserved keywords from export names lists, allows express to be mocked, thanks @​lcapel
• 2.6.1 Jan.13.2024
  • update ci job to use checkout v4
  • update README to work w/ eslint-plugin-markdown
  • update eslint disallow trailing whitespace
  • add typescript example to README
  • update esmock to correctly mock builtins imported with await import thanks @​btakita
  • move typescript example from README to wiki
  • update eslint package to resolve failing lint command
• 2.6.0 Nov.07.2023
  • typings: make MockFunction generic, thanks @​uwinkelvos
• 2.5.9 Nov.01.2023
  • mock Array-type default export, thanks @​altearius
  • support json import mocking, only working at node v21, see node#49724
• 2.5.8 Oct.23.2023
  • catch yarn PnP exceptions @​koshic
• 2.5.7 Oct.20.2023
  • add node 21 to test pipeline
  • use latest node 18 at test pipeline
  • update resolver again resolves this issue.
• 2.5.6 Oct.15.2023
  • update resolver to latest version, resolves a resolution error that seems to have been introduced by a previous update from the past week.
• 2.5.5 Oct.14.2023
  • support yarn PnP @​koshic
• 2.5.4 Oct.13.2023
  • remove condition to not-call resolver with builtin moduleId
• 2.5.3 Oct.12.2023
  • update resolver to latest version, slightly faster with fewer loops
  • add support for resolver configuration option

... (truncated)

Commits

• 253eec5 Merge pull request #309 from iambumblehead/attempt-enable-swc-tests
• 4c58d6c update test to use esmock, to pass lint, to give credit
• 493997f use latest swc to resolve errors
• 3dd8fad tests-swc dependencies add @​swc/core and typescript, update @​swc-node/register
• c8f956f add tests-swc to package.json test sequence
• 0fa673f mv tests-FAIL-swc tests-swc
• a16a6fb Merge pull request #308 from iambumblehead/increment-version-number
• ccc6aee increment version number
• b4567a5 Merge pull request #307 from iambumblehead/enable-swc-tests
• 6b0907c update tsconfig.json
• Additional commits viewable in compare view

Updates husky from 8.0.3 to 9.1.1

Release notes

Sourced from husky's releases.

v9.1.1

Super saiyan god dog! It's over 9.0.0!

What's new

You can now run package commands directly, no need for npx or equivalents. It makes writing hooks more intuitive and is also slightly faster 🐺⚡️

# .husky/pre-commit
- npx jest
+ jest # ~0.2s faster

A new recipe has been added to the docs. Lint staged files without external dependencies (inspired by Prettier docs). Feel free to modify it.

# .husky/pre-commit
prettier $(git diff --cached --name-only --diff-filter=ACMR | sed 's| |\\ |g') --write --ignore-unknown
git update-index --again

For more advanced use cases, see lint-staged.

Fixes

• bunx husky init command
• Workaround for some hooks implementation on Windows

Deprecations

• #!/usr/bin/env sh and . "$(dirname -- "$0")/_/husky.sh" are deprecated. husky command will automatically remove them, no action required.
• If you're having code in ~/.huskyrc please move it to .config/husky/init.sh

Support for these will be removed in v10.

Friendly reminder

If Git hooks don't fit your workflow, you can disable Husky globally. Just add export HUSKY=0 to .config/husky/init.sh.

I've seen some confusion about this on X, so just a heads-up!

Sponsoring

Husky is downloaded over 45M times per month and used by ~1.5M projects. If your company wants to sponsor, you can do so here: GitHub Sponsors.

... (truncated)

Commits

• 2968998 9.1.1
• 902749b docs
• a25c6ce update vitepress
• bbfe8e3 Merge branch 'ccerrillo-fix-windows-path'
• eb54845 automatically rm deprecated code
• e8badd7 Small typo fix (#1471)
• a24ccbc 9.1.0
• 9085a9d v9.1.0 (#1467)
• b9f5889 automatically rm deprecated code
• 71e5dcb Small typo fix (#1471)
• Additional commits viewable in compare view

Updates semantic-release from 22.0.12 to 24.0.0

Release notes

Sourced from semantic-release's releases.

v24.0.0

24.0.0 (2024-05-31)

Bug Fixes

• deps: upgraded to the beta of the commit-analyzer plugin (dfc3d91)
• deps: upgraded to the beta of the release-notes-generator plugin (4a4cd92)

BREAKING CHANGES

• deps: the commit-analyzer plugin now expects to be used with the latest major versions of conventional-changelog packages. if you are installing any of these packages in addition to semantic-release, be sure to update them as well
• deps: the release-notes-generator plugin now expects to be used with the latest major versions of conventional-changelog packages. if you are installing any of these packages in addition to semantic-release, be sure to update them as well

v24.0.0-beta.2

24.0.0-beta.2 (2024-05-25)

Bug Fixes

• deps: upgraded to the beta of the commit-analyzer plugin (dfc3d91)

BREAKING CHANGES

• deps: the commit-analyzer plugin now expects to be used with the latest major versions of conventional-changelog packages. if you are installing any of these packages in addition to semantic-release, be sure to update them as well

v24.0.0-beta.1

24.0.0-beta.1 (2024-05-17)

Bug Fixes

• deps: upgraded to the beta of the release-notes-generator plugin (4a4cd92)

BREAKING CHANGES

• deps: the release-notes-generator plugin now expects to be used with the latest major versions of conventional-changelog packages. if you are installing any of these packages in addition to semantic-release, be sure to update them as well

v23.1.1

... (truncated)

Commits

• 2b3e5f7 Merge pull request #3327 from semantic-release/beta
• c0e433d ci(action): update github/codeql-action action to v3.25.7 (#3326)
• 2b77095 Merge branch 'master' of github.com:semantic-release/semantic-release into beta
• 5f05152 chore(deps): update npm to v10.8.1 (#3325)
• 6d7dc85 chore(deps): update dependency got to v14.3.0 (#3311)
• 20b2672 ci(action): update github/codeql-action action to v3.25.6 (#3316)
• 2620c10 docs: update file extensions to include .mjs on configuration docs page (#3322)
• dfc3d91 fix(deps): upgraded to the beta of the commit-analyzer plugin
• e424297 chore(deps): lock file maintenance (#3312)
• 3680974 chore(deps): update dependency publint to v0.2.8 (#3310)
• Additional commits viewable in compare view

Updates sinon from 17.0.1 to 18.0.0

Changelog

Sourced from sinon's changelog.

18.0.0

This is what 17.0.2 should have been, as that contained two breaking changes. After updating Nise we are down to one breaking change, which only affects sinon-test (which has been updated), so most people are not affected. The legacyRoutes flag that is currently enabled in Nise by default will at some later version be disabled. We will then issue a little migration note.

• 01d45312 Use Nise 6 with legacyRoutes flag enabled (Carl-Erik Kopseng)

  This should be disabled in a future Sinon version by default.

• c618edc5 fix #2594: remove needless sandbox creation (Carl-Erik Kopseng)

Released by Carl-Erik Kopseng on 2024-05-15.

17.0.2

• f6dca0ba upgrade packages (#2595) (Carl-Erik Kopseng)
• 5025d001 Avoid return and callArg* clearing each other's state (#2593) (Carl-Erik Kopseng)

  • Partially revert "fix returns does not override call through (#2567)"

  • revert to the old manual clearing of props

• ed068a88 Bump ip from 1.1.8 to 1.1.9 (#2587) (dependabot[bot])
• ec4d592e fix #2589: avoid invoking getter as side-effect (#2592) (Carl-Erik Kopseng)
• 9972e1e3 Fix typo in mocks documentation (#2591) (Eduardo de la Cruz Palacios)
• 52e6e4c5 chore: prefer cache option of setup-node (Morgan Roderick)
• 08da1235 Bump actions/cache from 3 to 4 (dependabot[bot])
• 404ef47e Bump nokogiri from 1.14.3 to 1.16.2 (dependabot[bot])
• fd79612c Update Bug_report.md (Carl-Erik Kopseng)
• 1fbc812a Re-add about (Carl-Erik Kopseng)
• fc8f6c3e Fix formatting :clown: (Carl-Erik Kopseng)
• c57e38ae Remove old template (Carl-Erik Kopseng)
• 754bf7a9 Update Bug_report.md (Carl-Erik Kopseng)
• 87eed9d2 Fix some typos at code comments (#2581) (EliyahuMachluf)
• cbae6997 Link to createStubInstance util.md docs in stubs.md (#2577) (Daniel Kaplan)

... (truncated)

Commits

• adea6a1 18.0.0
• 6324be4 Use Nise 6 with legacyRoutes flag enabled
• 4cbd712 Bump nokogiri from 1.16.2 to 1.16.5 (#2598)
• c618edc fix #2594: remove needless sandbox creation
• 16a25ae 17.0.2
• f6dca0b upgrade packages (#2595)
• 5025d00 Avoid return and callArg* clearing each other's state (#2593)
• ed068a8 Bump ip from 1.1.8 to 1.1.9 (#2587)
• ec4d592 fix #2589: avoid invoking getter as side-effect (#2592)
• 9972e1e Fix typo in mocks documentation (#2591)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/[email protected]	filesystem, unsafe Transitive: environment, shell	+58	3.94 MB	oss-bot
npm/[email protected]	environment Transitive: eval, filesystem, shell, unsafe	+87	9.86 MB	eslintbot
npm/[email protected]	filesystem, unsafe	0	36.5 kB	bumblehead
npm/[email protected]	environment, filesystem, shell	0	4.21 kB	typicode
npm/[email protected]	environment, network Transitive: eval, filesystem, shell, unsafe	+257	75.2 MB	semantic-release-bot
npm/[email protected]	Transitive: environment, eval	+13	7.7 MB	fatso83

🚮 Removed packages: npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎

[dependabot]

Superseded by #58.