chore(deps-dev): bump the dev-dependencies group across 1 directory with 8 updates

[dependabot]

Bumps the dev-dependencies group with 8 updates in the / directory:

Package	From	To
@biomejs/biome	1.8.3	1.9.2
cypress	13.13.2	13.14.2
esbuild	0.23.0	0.23.1
stylelint	16.8.1	16.9.0
tsx	4.16.5	4.19.1
typescript	5.5.4	5.6.2
@types/react	18.3.3	18.3.8
vite	5.4.0	5.4.7

Updates @biomejs/biome from 1.8.3 to 1.9.2

Release notes

Sourced from @​biomejs/biome's releases.

CLI v1.9.2

CLI

New features

• Added support for custom GritQL definitions, including:

  • Pattern and predicate definitions: https://docs.grit.io/guides/patterns
  • Function definitions: https://docs.grit.io/language/functions#function-definitions

  Contributed by @​arendjr

Bug fixes

• Fix #3917, where the fixed files were incorrectly computed. Contributed by @​ematipico
• Fixed an issue that caused GritQL contains queries to report false positives when the matched node appeared inside a sibling node. Contributed by @​arendjr

Editors

Bug fixes

• Fix #3923. Now the .editorconfig is correctly parsed by the LSP, and the options are correctly applied to files when formatting is triggered. Plus, the Biome LSP now watches for any change to the .editorconfig, and updates the formatting settings.

• Reduced the number of log files generated by the LSP server. Now the maximum number of logs saved on disk is seven. Contributed by @​ematipico

• Fix the code actions capabilities available in the LSP Biome server. Before, the LSP was using the default capabilities, which resulted in pulling code actions even when they were disabled by the editor.

  This means that the code actions are pulled by the client only when the editor enables quickfix.biome, source.organizeImports.biome and source.fixAll.biome.

  Now, if you enable organizeImports.enabled: true in the biome.json, and then you configure your editor with the following code action source.organizeImports.biome: false, the editor won't sort the imports.

  Contributed by @​ematipico

Linter

New features

• Add nursery/noMissingVarFunction. Contributed by @​michellocana
• Add nursery/useComponentExportOnlyModules. Use this rule in React projects to enforce a code styling that fits React Refresh. Contributed by @​GunseiKPaseri

Bug fixes

• noLabelWithoutControl now accept JSX expression as label value (#3875). Contributed by @​Conaclos

• useFilenamingConvention no longer suggests names with a disallowed case (#3952). Contributed by @​Conaclos

• useFilenamingConvention now recognizes file names starting with ASCII digits as lowercase (#3952).

  Thus, 2024-09-17-filename, 2024_09_17_filename and 20240917FileName are in kebab-case, snake_case, and camelCase respectively.

  Contributed by @​Conaclos

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

v1.9.2 (2024-09-19)

CLI

New features

• Added support for custom GritQL definitions, including:

  • Pattern and predicate definitions: https://docs.grit.io/guides/patterns
  • Function definitions: https://docs.grit.io/language/functions#function-definitions

  Contributed by @​arendjr

Bug fixes

• Fix #3917, where the fixed files were incorrectly computed. Contributed by @​ematipico
• Fixed an issue that caused GritQL contains queries to report false positives when the matched node appeared inside a sibling node. Contributed by @​arendjr

Editors

Bug fixes

• Fix #3923. Now the .editorconfig is correctly parsed by the LSP, and the options are correctly applied to files when formatting is triggered. Plus, the Biome LSP now watches for any change to the .editorconfig, and updates the formatting settings.

• Reduced the number of log files generated by the LSP server. Now the maximum number of logs saved on disk is seven. Contributed by @​ematipico

• Fix the code actions capabilities available in the LSP Biome server. Before, the LSP was using the default capabilities, which resulted in pulling code actions even when they were disabled by the editor.

  This means that the code actions are pulled by the client only when the editor enables quickfix.biome, source.organizeImports.biome and source.fixAll.biome.

  Now, if you enable organizeImports.enabled: true in the biome.json, and then you configure your editor with the following code action source.organizeImports.biome: false, the editor won't sort the imports.

  Contributed by @​ematipico

Linter

New features

• Add nursery/noMissingVarFunction. Contributed by @​michellocana
• Add [nursery/useComponentExportOnlyModules]((https://biomejs.dev/linter/rules/use-component-export-only-modules). Use this rule in React projects to enforce a code styling that fits React Refresh. Contributed by @​GunseiKPaseri

Bug fixes

• noLabelWithoutControl now accept JSX expression as label value (#3875). Contributed by @​Conaclos

• useFilenamingConvention no longer suggests names with a disallowed case (#3952). Contributed by @​Conaclos

• useFilenamingConvention now recognizes file names starting with ASCII digits as lowercase (#3952).

  Thus, 2024-09-17-filename, 2024_09_17_filename and 20240917FileName are in kebab-case, snake_case, and camelCase respectively.

... (truncated)

Commits

• 5f2287e release: v1.9.2 (#3974)
• 00760d4 feat(lint): add rule useComponentExportOnlyModules (#3576)
• e1851e2 feat(linter): add noMissingVarFunction (#3779)
• 0004980 docs(readme): add zh-tw readme translation (#3894)
• 9bf1e4c release: v1.9.1 (#3900)
• eebf20f chore: remove sponsor (#3896)
• f6d61b0 feat(lint): add noProcessEnv (#3825)
• 49a6616 refactor(package.json): add more keywords (#3876)
• cccaea3 docs(readme): add CSS and GraphQL (#3869)
• b260d5b feat(package.json): set version to 1.9
• Additional commits viewable in compare view

Updates cypress from 13.13.2 to 13.14.2

Release notes

Sourced from cypress's releases.

v13.14.2

Changelog: https://docs.cypress.io/guides/references/changelog#13-14-2

v13.14.1

Changelog: https://docs.cypress.io/guides/references/changelog#13-14-1

v13.14.0

Changelog: https://docs.cypress.io/guides/references/changelog#13-14-0

v13.13.3

Changelog: https://docs.cypress.io/guides/references/changelog#13-13-3

Commits

• 12d8e0b chore: release 13.14.2 (#30182)
• 770a502 fix: revert HiDPI for Wayland users to resolve unknown issues with GLib-GIO-E...
• c1b95b5 chore(deps): update dependency mini-css-extract-plugin to v2.9.1 (#30151)
• bbe5328 fix: WebSocket Connection Closed crashing from BrowserCriClient (#30174)
• 57d7b63 chore: Update Chrome (stable) to 128.0.6613.119 (#30171)
• b83548a chore(deps): update dependency eslint-plugin-cypress to v3 (#30136)
• 1f5fcf6 chore: fix local node version mismatch issue with better sqlite3 (#30158)
• 195cdb1 chore(deps): remove deprecated @​types/strip-ansi (#30139)
• 6903db8 chore: Update Chrome (beta) to 129.0.6668.22 (#30149)
• b2a694f chore: sync changelog with what is on docs.cypress.io and fix broken relative...
• Additional commits viewable in compare view

Updates esbuild from 0.23.0 to 0.23.1

Release notes

Sourced from esbuild's releases.

v0.23.1

• Allow using the node: import prefix with es* targets (#3821)

  The node: prefix on imports is an alternate way to import built-in node modules. For example, import fs from "fs" can also be written import fs from "node:fs". This only works with certain newer versions of node, so esbuild removes it when you target older versions of node such as with --target=node14 so that your code still works. With the way esbuild's platform-specific feature compatibility table works, this was added by saying that only newer versions of node support this feature. However, that means that a target such as --target=node18,es2022 removes the node: prefix because none of the es* targets are known to support this feature. This release adds the support for the node: flag to esbuild's internal compatibility table for es* to allow you to use compound targets like this:

  // Original code
  import fs from 'node:fs'
  fs.open
  // Old output (with --bundle --format=esm --platform=node --target=node18,es2022)
  import fs from "fs";
  fs.open;
  // New output (with --bundle --format=esm --platform=node --target=node18,es2022)
  import fs from "node:fs";
  fs.open;

• Fix a panic when using the CLI with invalid build flags if --analyze is present (#3834)

  Previously esbuild's CLI could crash if it was invoked with flags that aren't valid for a "build" API call and the --analyze flag is present. This was caused by esbuild's internals attempting to add a Go plugin (which is how --analyze is implemented) to a null build object. The panic has been fixed in this release.

• Fix incorrect location of certain error messages (#3845)

  This release fixes a regression that caused certain errors relating to variable declarations to be reported at an incorrect location. The regression was introduced in version 0.18.7 of esbuild.

• Print comments before case clauses in switch statements (#3838)

  With this release, esbuild will attempt to print comments that come before case clauses in switch statements. This is similar to what esbuild already does for comments inside of certain types of expressions. Note that these types of comments are not printed if minification is enabled (specifically whitespace minification).

• Fix a memory leak with pluginData (#3825)

  With this release, the build context's internal pluginData cache will now be cleared when starting a new build. This should fix a leak of memory from plugins that return pluginData objects from onResolve and/or onLoad callbacks.

Changelog

Sourced from esbuild's changelog.

0.23.1

• Allow using the node: import prefix with es* targets (#3821)

  The node: prefix on imports is an alternate way to import built-in node modules. For example, import fs from "fs" can also be written import fs from "node:fs". This only works with certain newer versions of node, so esbuild removes it when you target older versions of node such as with --target=node14 so that your code still works. With the way esbuild's platform-specific feature compatibility table works, this was added by saying that only newer versions of node support this feature. However, that means that a target such as --target=node18,es2022 removes the node: prefix because none of the es* targets are known to support this feature. This release adds the support for the node: flag to esbuild's internal compatibility table for es* to allow you to use compound targets like this:

  // Original code
  import fs from 'node:fs'
  fs.open
  // Old output (with --bundle --format=esm --platform=node --target=node18,es2022)
  import fs from "fs";
  fs.open;
  // New output (with --bundle --format=esm --platform=node --target=node18,es2022)
  import fs from "node:fs";
  fs.open;

• Fix a panic when using the CLI with invalid build flags if --analyze is present (#3834)

  Previously esbuild's CLI could crash if it was invoked with flags that aren't valid for a "build" API call and the --analyze flag is present. This was caused by esbuild's internals attempting to add a Go plugin (which is how --analyze is implemented) to a null build object. The panic has been fixed in this release.

• Fix incorrect location of certain error messages (#3845)

  This release fixes a regression that caused certain errors relating to variable declarations to be reported at an incorrect location. The regression was introduced in version 0.18.7 of esbuild.

• Print comments before case clauses in switch statements (#3838)

  With this release, esbuild will attempt to print comments that come before case clauses in switch statements. This is similar to what esbuild already does for comments inside of certain types of expressions. Note that these types of comments are not printed if minification is enabled (specifically whitespace minification).

• Fix a memory leak with pluginData (#3825)

  With this release, the build context's internal pluginData cache will now be cleared when starting a new build. This should fix a leak of memory from plugins that return pluginData objects from onResolve and/or onLoad callbacks.

Commits

• 3327274 publish 0.23.1 to npm
• 38e22ed add a warning/debug log message for #3867
• a15bb51 fix #3825: memory leak of pluginData values
• f6e6481 fix #3838: print comments before case clauses
• 9c13ae1 fix #3853: update go 1.22.4 => 1.22.5
• 78f89e4 fix #3845: some incorrect error message locations
• 892d2a7 fix #3834: cli sometimes panics with --analyze
• 360d472 fix a typo in the release notes
• e3f4e2d fix #3821: allow node: prefix with es* targets
• See full diff in compare view

Updates stylelint from 16.8.1 to 16.9.0

Release notes

Sourced from stylelint's releases.

16.9.0

• Changed: secondaryOptions argument type of the Rule function (#7950) (@​Mouvedia).
• Fixed: color-function-notation reporting functions with less than 3 arguments (#7948) (@​Mouvedia).
• Fixed: declaration-property-value-no-unknown false positives/negatives (#7944 & #7957 & #7956) (@​Mouvedia & @​sidverma32).
  • false positives: overflow, word-break, width
  • false negatives: anchor-name, field-sizing, text-box-edge, text-box-trim, text-spacing-trim, text-wrap, text-wrap-mode, text-wrap-style, view-timeline, view-timeline-axis, view-timeline-inset, view-timeline-name, view-transition-name
• Fixed: keyframe-block-no-duplicate-selectors/keyframe-declaration-no-important/keyframe-selector-notation/no-unknown-animations false negatives for @-o-keyframes and @-ms-keyframes (#7953) (@​Mouvedia).
• Fixed: no-duplicate-selectors reported ranges (#7938) (@​romainmenke).
• Fixed: property-no-vendor-prefix report for -webkit-background-size (#7940) (@​Mouvedia).
• Fixed: selector-class-pattern reported ranges (#7959) (@​Mouvedia).
• Fixed: selector-no-qualifying-type reported ranges (#7937) (@​romainmenke).
• Fixed: honour Node.js --no-deprecation flag for rule deprecation warnings (#7943) (@​Mouvedia).

16.8.2

• Deprecated: context.fix usage in favour of recommending to pass a fix callback to report() (#7895) (@​Mouvedia).
• Added: deprecation notice annotation to the output of the github formatter (#7909) (@​Mouvedia).
• Fixed: custom-property-no-missing-var-function false positives for view-transition-name (#7914) (@​Mouvedia).
• Fixed: keyframe-block-no-duplicate-selectors reported ranges (#7932) (@​romainmenke).
• Fixed: no-invalid-double-slash-comments reported ranges (#7907 & #7905) (@​Mouvedia & @​romainmenke).
• Fixed: selector-max-type reported ranges (#7916) (@​romainmenke).
• Fixed: selector-type-no-unknown false positives for ::highlight() and ::view-transition-*() (#7913) (@​Mouvedia).

Changelog

Sourced from stylelint's changelog.

16.9.0

• Changed: secondaryOptions argument type of the Rule function (#7950) (@​Mouvedia).
• Fixed: color-function-notation reporting functions with less than 3 arguments (#7948) (@​Mouvedia).
• Fixed: declaration-property-value-no-unknown false positives/negatives (#7944 & #7957 & #7956) (@​Mouvedia & @​sidverma32).
  • false positives: overflow, word-break, width
  • false negatives: anchor-name, field-sizing, text-box-edge, text-box-trim, text-spacing-trim, text-wrap, text-wrap-mode, text-wrap-style, view-timeline, view-timeline-axis, view-timeline-inset, view-timeline-name, view-transition-name
• Fixed: keyframe-block-no-duplicate-selectors/keyframe-declaration-no-important/keyframe-selector-notation/no-unknown-animations false negatives for @-o-keyframes and @-ms-keyframes (#7953) (@​Mouvedia).
• Fixed: no-duplicate-selectors reported ranges (#7938) (@​romainmenke).
• Fixed: property-no-vendor-prefix report for -webkit-background-size (#7940) (@​Mouvedia).
• Fixed: selector-class-pattern reported ranges (#7959) (@​Mouvedia).
• Fixed: selector-no-qualifying-type reported ranges (#7937) (@​romainmenke).
• Fixed: honour Node.js --no-deprecation flag for rule deprecation warnings (#7943) (@​Mouvedia).

16.8.2

• Deprecated: context.fix usage in favour of recommending to pass a fix callback to report() (#7895) (@​Mouvedia).
• Added: deprecation notice annotation to the output of the github formatter (#7909) (@​Mouvedia).
• Fixed: custom-property-no-missing-var-function false positives for view-transition-name (#7914) (@​Mouvedia).
• Fixed: keyframe-block-no-duplicate-selectors reported ranges (#7932) (@​romainmenke).
• Fixed: no-invalid-double-slash-comments reported ranges (#7907 & #7905) (@​Mouvedia & @​romainmenke).
• Fixed: selector-max-type reported ranges (#7916) (@​romainmenke).
• Fixed: selector-type-no-unknown false positives for ::highlight() and ::view-transition-*() (#7913) (@​Mouvedia).

Commits

• 94c3d93 16.9.0
• 549a1a8 Prepare 16.9.0 (#7946)
• baadc25 Refactor to fix CoreRules type inconsistencies (#7967)
• 78b1e83 Improve PublicApi['rules'] type and remove BuiltInRules, Formatters and...
• 5cf18b1 Refactor to add CoreRules type (#7954)
• ce0b1af Bump supports-hyperlinks from 3.0.0 to 3.1.0 (#7962)
• ab47e73 Change secondaryOptions argument type of the Rule function (#7950)
• d53ce33 Fix declaration-property-value-no-unknown false negatives (#7957)
• 83e2851 Fix keyframe-block-no-duplicate-selectors/`keyframe-declaration-no-importan...
• 9744c18 Fix selector-class-pattern reported ranges (#7959)
• Additional commits viewable in compare view

Updates tsx from 4.16.5 to 4.19.1

Release notes

Sourced from tsx's releases.

v4.19.1

4.19.1 (2024-09-12)

Bug Fixes

• cjs: patch module.path for accurate cache ID (0329bfc), closes privatenumber/tsx#651
• cjs: resolve ts extensions from js when namespaced (44ed37f)

---

This release is also available on:

• npm package (@​latest dist-tag)

v4.19.0

4.19.0 (2024-08-27)

Features

• watch: deprecate ignore flag in favor or exclude flag (157c3ec)

---

This release is also available on:

• npm package (@​latest dist-tag)

v4.18.0

4.18.0 (2024-08-24)

Features

• watch: --include CLI flag to watch additional files (#625) (474ea71)

---

This release is also available on:

• npm package (@​latest dist-tag)

v4.17.1

4.17.1 (2024-08-24)

... (truncated)

Commits

• 0329bfc fix(cjs): patch module.path for accurate cache ID
• 44ed37f fix(cjs): resolve ts extensions from js when namespaced
• ac77527 test: outdent api fixtures
• 157c3ec feat(watch): deprecate ignore flag in favor or exclude flag
• 474ea71 feat(watch): --include CLI flag to watch additional files (#625)
• af370e7 fix(esm): package entry TS resolution for Node 20.17 & 22.6
• 1b80d5d docs: add premium sponsors
• 6c8eae0 chore: upgrade lintroll
• bd83d3b feat: upgrade esbuild to 0.23 (#615)
• See full diff in compare view

Updates typescript from 5.5.4 to 5.6.2

Release notes

Sourced from typescript's releases.

TypeScript 5.6

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for Typescript 5.6.0 (Beta).
• fixed issues query for Typescript 5.6.1 (RC).
• fixed issues query for Typescript 5.6.2 (Stable).

Downloads are available on:

• npm
• NuGet package

TypeScript 5.6 RC

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for TypeScript v5.6.1 (RC).
• fixed issues query for TypeScript v5.6.0 (Beta).

Downloads are available on:

• npm

TypeScript 5.6 Beta

For release notes, check out the release announcement.

For the complete list of fixed issues, check out the

• fixed issues query for Typescript 5.6.0 (Beta).

Downloads are available on:

• npm
• NuGet package

Commits

• a7e3374 Bump version to 5.6.2 and LKG
• 2063357 🤖 Pick PR #59708 (LEGO: Pull request from lego/hb_537...) into release-5.6 (#...
• 4fe7e41 🤖 Pick PR #59670 (fix(59649): ts Move to a new file d...) into release-5.6 (#...
• 1a03e53 🤖 Pick PR #59761 (this can be nullish) into release-5.6 (#59762)
• 6212132 Update LKG
• bbb5faf 🤖 Pick PR #59542 (Fixing delay caused in vscode due t...) into release-5.6 (#...
• e6914a5 Bump version to 5.6.1-rc and LKG
• 34121c4 Update LKG
• 2a30c2a Merge remote-tracking branch 'origin/main' into release-5.6
• 936a79b Expose TypeChecker. getAwaitedType to public (#59268)
• Additional commits viewable in compare view

Updates @types/react from 18.3.3 to 18.3.8

Commits

• See full diff in compare view

Updates vite from 5.4.0 to 5.4.7

Changelog

Sourced from vite's changelog.

5.4.7 (2024-09-20)

• fix: treat config file as ESM in Deno (#18158) (b5908a2), closes #18158

5.4.6 (2024-09-16)

• fix: avoid DOM Clobbering gadget in getRelativeUrlFromDocument (#18115) (179b177), closes #18115
• fix: fs raw query (#18112) (6820bb3), closes #18112

5.4.5 (2024-09-13)

• fix(preload): backport #18098, throw error preloading module as well (#18099) (faa2405), closes #18098 #18099

5.4.4 (2024-09-11)

• fix: backport #17997, ensure req.url matches moduleByEtag URL to avoid incorrect 304 (#18078) (74a79c5), closes #17997 #18078
• fix: backport #18063, allow scanning exports from script module in svelte (#18077) (d90ba40), closes #18063 #18077
• fix(preload): backport #18046, allow ignoring dep errors (#18076) (8760293), closes #18046 #18076

5.4.3 (2024-09-03)

• fix: allow getting URL of JS files in publicDir (#17915) (943ece1), closes #17915
• fix: cjs warning respect the logLevel flag (#17993) (dc3c14f), closes #17993
• fix: improve CJS warning trace information (#17926) (5c5f82c), closes #17926
• fix: only remove entry assets handled by Vite core (#17916) (ebfaa7e), closes #17916
• fix: waitForRequestIdle locked (#17982) (ad13760), closes #17982
• fix(css): fix directory index import in sass modern api (#17960) (9b001ba), closes #17960
• fix(css): fix sass file:// reference (#17909) (561b940), closes #17909
• fix(css): fix sass modern source map (#17938) (d428e7e), closes #17938
• fix(deps): bump tsconfck (#17990) (8c661b2), closes #17990
• fix(html): rewrite assets url in <template> (#17988) (413c86a), closes #17988
• fix(preload): add crossorigin attribute in CSS link tags (#17930) (15871c7), closes #17930
• chore: reduce diffs with v6 branch (#17942) (bf9065a), closes #17942
• chore(deps): update all non-major dependencies (#17945) (cfb621e), closes #17945
• chore(deps): update all non-major dependencies (#17991) (0ca53cf), closes #17991

5.4.2 (2024-08-20)

• chore: remove stale TODOs (#17866) (e012f29), closes #17866
• refactor: remove redundant prepend/strip base (#17887) (3b8f03d), closes #17887

... (truncated)

Commits

• a403e73 release: v5.4.7
• b5908a2 fix: treat config file as ESM in Deno (#18158)
• f969176 release: v5.4.6
• 179b177 fix: avoid DOM Clobbering gadget in getRelativeUrlFromDocument (#18115)
• 6820bb3 fix: fs raw query (#18112)
• 37881e7 release: v5.4.5
• faa2405 fix(preload): backport #18098, throw error preloading module as well (#18099)
• 54c55db release: v5.4.4
• 74a79c5 fix: backport #17997, ensure req.url matches moduleByEtag URL to avoid incorr...
• d90ba40 fix: backport #18063, allow scanning exports from script module in svelte (...
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #1038.