Bump the development-dependencies group across 1 directory with 7 updates

[dependabot]

Updates the requirements on @biomejs/biome, auto-changelog, del-cli, globals, release-it, sass and web-ext to permit the latest version.
Updates @biomejs/biome to 1.9.3

Release notes

Sourced from @​biomejs/biome's releases.

CLI v1.9.3

CLI

New features

• GritQL queries that match functions or methods will now match async functions or methods as well.

  If this is not what you want, you can capture the async keyword (or its absence) in a metavariable and assert its emptiness:

  $async function foo() {} where $async <: .
  

  Contributed by @​arendjr

Bug fixes

• Fix #4077: Grit queries no longer need to match the statement's trailing semicolon. Contributed by @​arendjr

• Fix #4102. Now the CLI command lint doesn't exit with an error code when using --write/--fix. Contributed by @​ematipico

Configuration

Bug fixes

• Fix #4125, where noLabelWithoutControl options where incorrectly marked as mandatory. Contributed by @​ematipico

Editors

• Fix a case where CSS files weren't correctly linted using the default configuration. Contributed by @​ematipico

Formatter

Bug fixes

• Fix #3924 where GraphQL formatter panics in block comments with empty line. Contributed by @​vohoanglong0107

• Fix a case where raw values inside url() functions weren't properly trimmed.

  .value {
  -  background: url(
  -   whitespace-around-string
  -  );
  + background: url(whitespace-around-string);
  }

  Contributed by @​ematipico

• Fixed #4076, where a media query wasn't correctly formatted:

  .class {

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

v1.9.3 (2024-10-01)

CLI

New features

• GritQL queries that match functions or methods will now match async functions or methods as well.

  If this is not what you want, you can capture the async keyword (or its absence) in a metavariable and assert its emptiness:

  $async function foo() {} where $async <: .
  

  Contributed by @​arendjr

Bug fixes

• Fix #4077: Grit queries no longer need to match the statement's trailing semicolon. Contributed by @​arendjr

• Fix #4102. Now the CLI command lint doesn't exit with an error code when using --write/--fix. Contributed by @​ematipico

Configuration

Bug fixes

• Fix #4125, where noLabelWithoutControl options where incorrectly marked as mandatory. Contributed by @​ematipico

Editors

• Fix a case where CSS files weren't correctly linted using the default configuration. Contributed by @​ematipico

Formatter

Bug fixes

• Fix #3924 where GraphQL formatter panics in block comments with empty line. Contributed by @​vohoanglong0107

• Fix a case where raw values inside url() functions weren't properly trimmed.

  .value {
  -  background: url(
  -   whitespace-around-string
  -  );
  + background: url(whitespace-around-string);
  }

  Contributed by @​ematipico

• Fixed #4076, where a media query wasn't correctly formatted:

... (truncated)

Commits

• 3d498ed release: v1.9.3 (#4140)
• 7e29f06 fix(lint): options for noLabelWithoutControl are optional (#4138)
• 10a1371 feat(useExhaustiveDependencies): add option to disable errors for unecessary ...
• 295efb9 feat(biome_css_analyze): implement noDescendingSpecificity (#4097)
• f3cfa8a fix(schema): make optional the options JSON schema field (#4080)
• cc4c867 feat(linter): implement noTemplateCurlyInString (#4069)
• d03c6cd feat(linter): implement no-nested-ternary (#4067)
• 2b6b3c8 chore(deps): update @​biomejs packages (#4047)
• b76cb41 feat(linter): implement useExplicitFunctionReturnType (#3990)
• a766aeb chore(readme): use polar shield (#4000)
• Additional commits viewable in compare view

Updates auto-changelog to 2.5.0

Changelog

Sourced from auto-changelog's changelog.

v2.5.0

• Fix: Throws error if tag does not contains "version" property [#272](https://github.com/CookPete/auto-changelog/issues/272)
• Add support for GitLab's new style routes [#267](https://github.com/CookPete/auto-changelog/issues/267)
• fix: gitlab subgroups [#232](https://github.com/CookPete/auto-changelog/issues/232)
• Add Template for handling commits with Conventional Commits format [#217](https://github.com/CookPete/auto-changelog/issues/217)
• upgrade parse-github-url v1.0.3 [#289](https://github.com/CookPete/auto-changelog/issues/289)
• tests: fix parseReleases [#265](https://github.com/CookPete/auto-changelog/issues/265)
• feat: combine multiple commit-lists to one if heading is undefined [#236](https://github.com/CookPete/auto-changelog/issues/236)
• Add a Plugin system [#237](https://github.com/CookPete/auto-changelog/issues/237)
• add support for including commit pattern [#258](https://github.com/CookPete/auto-changelog/issues/258)
• Revert GitLab's new style routes b087f51
• Remove email from package.json 0991f17

v2.4.0

3 February 2022

• Logical handling of --starting-version [#227](https://github.com/CookPete/auto-changelog/issues/227)
• Trim commit subject [#225](https://github.com/CookPete/auto-changelog/issues/225)
• feat(commits.js): added niceDate format of commits [#206](https://github.com/CookPete/auto-changelog/issues/206)
• Logical handling of --starting-version (#227) [#221](https://github.com/CookPete/auto-changelog/issues/221)
• Add ending-version option [#209](https://github.com/CookPete/auto-changelog/issues/209)
• Do not sort tags when sorting via --append-git-tag [#197](https://github.com/CookPete/auto-changelog/issues/197) [#210](https://github.com/CookPete/auto-changelog/issues/210)
• Bump packages 9d271fc
• yarn upgrade c227823
• --ending-version fixes dbd36d5

v2.3.0

23 May 2021

• feat: add support for minor/preminor versions for custom templates [#185](https://github.com/CookPete/auto-changelog/issues/185)
• Feat: add sortCommits by subject and subject-desc [#186](https://github.com/CookPete/auto-changelog/issues/186)
• Remove --sort=-creatordate from git tag logic [#196](https://github.com/CookPete/auto-changelog/issues/196)
• Add --append-git-tag [#190](https://github.com/CookPete/auto-changelog/issues/190)
• Add --hide-empty-releases [#189](https://github.com/CookPete/auto-changelog/issues/189)
• Add --starting-date [#181](https://github.com/CookPete/auto-changelog/issues/181)
• Support absolute paths for --handlebars-setup [#180](https://github.com/CookPete/auto-changelog/issues/180)
• Fix unreleased version diff [#174](https://github.com/CookPete/auto-changelog/issues/174)
• Fix v prefix logic [#33](https://github.com/CookPete/auto-changelog/issues/33)
• Fix getSubject edge case [#179](https://github.com/CookPete/auto-changelog/issues/179) [#184](https://github.com/CookPete/auto-changelog/issues/184)
• Apply ignoreCommitPattern earlier in the parsing logic [#195](https://github.com/CookPete/auto-changelog/issues/195) [#187](https://github.com/CookPete/auto-changelog/issues/187)
• Add minor boolean to test data a80e311
• Remove unused sortTags syntax 1b29530
• Remove lodash.uniqby 26e7d9c

v2.2.1

18 September 2020

... (truncated)

Commits

• 5ba380a 2.5.0
• b087f51 Revert GitLab's new style routes
• 7a0943f Fix: Throws error if tag does not contains "version" property (#272)
• 8feafe8 Add support for GitLab's new style routes (#267)
• 43fa031 fix: gitlab subgroups (#232)
• e1f4045 Add Template for handling commits with Conventional Commits format (#217)
• 3444e49 upgrade parse-github-url v1.0.3 (#289)
• 03811f7 tests: fix parseReleases (#265)
• 79acd55 feat: combine multiple commit-lists to one if heading is undefined (#236)
• 37cdfed Add a Plugin system (#237)
• Additional commits viewable in compare view

Updates del-cli from 5.1.0 to 6.0.0

Release notes

Sourced from del-cli's releases.

v6.0.0

Breaking

• Require Node.js 18 de54031

Improvements

• Update dependencies de54031

sindresorhus/del-cli@v5.1.0...v6.0.0

Commits

• f6e4605 6.0.0
• de54031 Require Node.js 18 and update dependencies
• 028ebb1 Meta tweaks
• See full diff in compare view

Updates globals to 15.11.0

Release notes

Sourced from globals's releases.

v15.11.0

• Add es3 globals (#267) 6784dc1

sindresorhus/globals@v15.10.0...v15.11.0

Commits

• 0d906b8 15.11.0
• 6784dc1 Add es3 globals (#267)
• 7560717 15.10.0
• 3cbce2d Update globals (#264)
• bd201b5 Add permissions for automated job (#263)
• 53f872a Collect globals on all platforms (#261)
• 560cf2f Update dependencies (#262)
• See full diff in compare view

Updates release-it to 17.9.0

Release notes

Sourced from release-it's releases.

Release 17.9.0

• Fix up tests re. branch/ref name (70398b4)
• Update dependencies (b4be09d)
• feat: create tag via Gitlab release (release-it#1115) (#1161) (2263772)
• Update projects list (e1a5c5d)

Changelog

Sourced from release-it's changelog.

Changelog

This document lists breaking changes for each major release.

See the GitHub Releases page for detailed changelogs: https://github.com/release-it/release-it/releases

v17 (2023-11-11)

• Removed support for Node.js v16.

v16 (2023-07-05)

• Removed support for Node.js v14.

v15 (2022-04-30)

• Removed support for Node.js v10 and v12.
• Removed support for GitLab v12.4 and lower.
• Removed anonymous metrics (and the option to disable it).
• Programmatic usage and plugins only through ES Module syntax (import)

Use release-it v14 in legacy environments.

v14 (2020-09-03)

• Removed global property from plugins. Use this.config[key] instead.
• Removed deprecated npm.access option. Set this in package.json instead.

v13 (2020-03-07)

• Dropped support for Node v8
• Dropped support for GitLab v11.6 and lower.
• Deprecated scripts are removed (in favor of hooks).
• Removed deprecated --non-interactive (-n) argument. Use --ci instead.
• Removed old %s and [REV_RANGE] syntax in command substitutions. Use ${version} and ${latestTag} instead.

v12 (2019-05-03)

• The --follow-tags argument for git push has been moved to the default configuration. This is only a breaking change if git.pushArgs was not empty (it was empty by default).

v11

• The custom conventional-changelog increment (e.g. "increment": "conventional:angular") with additional script configuration is replaced with a plugin. Please see conventional changelog how to use this plugin.
• The pkgFiles option has been removed. If there's a need to bump other files than what npm version bumps, it should be (part of) a plugin.

... (truncated)

Commits

• 4a38c27 Release 17.9.0
• 70398b4 Fix up tests re. branch/ref name
• b4be09d Update dependencies
• 2263772 feat: create tag via Gitlab release (release-it#1115) (#1161)
• e1a5c5d Update projects list
• ab01d16 Release 17.8.2
• e19bcd8 Revert "Fix up other tests"
• 9225077 discussion_category_name = undefined
• bb860e5 Release 17.8.1
• d8f903e Fix up other tests
• Additional commits viewable in compare view

Updates sass to 1.79.5

Release notes

Sourced from sass's releases.

Dart Sass 1.79.5

To install Sass 1.79.5, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

• Changes to how selector.unify() and @extend combine selectors:

  • The relative order of pseudo-classes (like :hover) and pseudo-elements (like ::before) within each original selector is now preserved when they're combined.

  • Pseudo selectors are now consistently placed at the end of the combined selector, regardless of which selector they came from. Previously, this reordering only applied to pseudo-selectors in the second selector.

• Tweak the color transformation matrices for OKLab and OKLCH to match the newer, more accurate values in the CSS spec.

• Fix a slight inaccuracy case when converting to srgb-linear and display-p3.

• Potentially breaking bug fix: math.unit() now wraps multiple denominator units in parentheses. For example, px/(em*em) instead of px/em*em.

Command-Line Interface

• Use @parcel/watcher to watch the filesystem when running from JavaScript and not using --poll. This should mitigate more frequent failures users have been seeing since version 4.0.0 of Chokidar, our previous watching tool, was released.

JS API

• Fix SassColor.interpolate() to allow an undefined options parameter, as the types indicate.

Embedded Sass

• Properly pass missing color channel values to and from custom functions.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.79.5

• Changes to how selector.unify() and @extend combine selectors:

  • The relative order of pseudo-classes (like :hover) and pseudo-elements (like ::before) within each original selector is now preserved when they're combined.

  • Pseudo selectors are now consistently placed at the end of the combined selector, regardless of which selector they came from. Previously, this reordering only applied to pseudo-selectors in the second selector.

• Tweak the color transformation matrices for OKLab and OKLCH to match the newer, more accurate values in the CSS spec.

• Fix a slight inaccuracy case when converting to srgb-linear and display-p3.

• Potentially breaking bug fix: math.unit() now wraps multiple denominator units in parentheses. For example, px/(em*em) instead of px/em*em.

Command-Line Interface

• Use @parcel/watcher to watch the filesystem when running from JavaScript and not using --poll. This should mitigate more frequent failures users have been seeing since version 4.0.0 of Chokidar, our previous watching tool, was released.

JS API

• Fix SassColor.interpolate() to allow an undefined options parameter, as the types indicate.

Embedded Sass

• Properly pass missing color channel values to and from custom functions.

1.79.4

JS API

• Fix a bug where passing green or blue to color.change() for legacy colors would fail.

1.79.3

• Update the $channel parameter in the suggested replacement for color.red(), color.green(), color.blue(), color.hue(), color.saturation(), color.lightness(), color.whiteness(), and color.blackness() to use a quoted string.

... (truncated)

Commits

• 7290399 Partially replace chokidar with @​parcel/watcher (#2379)
• 85b467b Update LMS matrices (#2374)
• 2c5f1e9 Use correct notation for multiple denominator units (#2375)
• d58e219 Add sass-parser support for for the @supports rule (#2378)
• 5535d1f Fix srgb to linear (#2372)
• 5acae8a Fix JS API color.interpolate(color2) without options (#2369)
• 4890989 Add support for missing color channels to the protofier (#2366)
• 67fecff unifyComound() and unifyComplex() no longer move pseudo-classes across pseudo...
• f84e867 Fix JS API legacy SassColor.change (#2368)
• 72612c4 Bump bufbuild/buf-setup-action in /.github/util/initialize (#2363)
• Additional commits viewable in compare view

Updates web-ext to 8.3.0

Release notes

Sourced from web-ext's releases.

8.3.0

main changes

• Updated: dependency addons-linter to 7.1.0 (#3254)
• Updated: replace Bunyan logger with Pino (#3214)
• Removed: drop mz dependency (#3215)
• Removed: drop node-fetch dependency (#3217)
• Removed: drop fs-extras and mkdirp dependencies (#3230)
• Fixed: Resolve input sourceDir to absolute path (#3024)

dependencies

• Updated: dependency @babel/runtime to 7.25.6 (#3236)
• Updated: dependency chrome-launcher to 1.1.2 (#3200)
• Updated: dependency firefox-profile to 4.7.0 (#3224)
• Updated: dependency https-proxy-agent to 7.0.5 (#3184)
• Updated: dependency jose to 5.9.2 (#3253)
• Updated: dependency pino to 9.4.0 (#3240)
• Updated: dependency update-notifier to 7.3.1 (#3244)
• Updated: dependency watchpack to 2.4.2 (#3223)
• Updated: dependency ws to 8.18.0 (#3187)

dev dependencies

• Updated: dependency @babel/cli to 7.25.6 (#3237)
• Updated: dependency @babel/core to 7.25.2 (#3210)
• Updated: dependency @babel/eslint-parser to 7.25.1 (#3206)
• Updated: dependency @babel/preset-env to 7.25.4 (#3228)
• Updated: dependency @commitlint/cli to 19.5.0 (#3249)
• Updated: dependency @commitlint/config-conventional to 19.5.0 (#3248)
• Updated: dependency babel-plugin-istanbul to 7.0.0 (#3189)
• Updated: dependency chai to 4.5.0 (#3204)
• Updated: dependency eslint-plugin-import to 2.30.0 (#3239)
• Updated: dependency mocha to 10.7.0 (#3202)
• Updated: dependency prettier to 3.3.3 (#3196)
• Updated: dependency sinon to 19.0.2 (#3252)

others

• Fixed: typo and missed async keyword (#3177)

See all changes: mozilla/web-ext@8.2.0...8.3.0

Commits

• a11c973 8.3.0
• 2eb18db chore(deps): bump addons-linter from 7.0.0 to 7.1.0 (#3254)
• e76422d chore(deps-dev): bump @​commitlint/cli from 19.3.0 to 19.5.0 (#3249)
• 0dc61db chore(deps-dev): bump chai from 4.3.10 to 4.5.0 (#3204)
• a3e46e2 chore(deps-dev): bump @​commitlint/config-conventional from 19.2.2 to 19.5.0 (...
• 2eb5ceb chore(deps-dev): bump @​babel/preset-env from 7.25.3 to 7.25.4 (#3228)
• 14a09f2 chore(deps): bump addons-linter from 6.33.0 to 7.0.0 (#3245)
• d2be7da chore(deps): bump update-notifier from 7.3.0 to 7.3.1 (#3244)
• 7465da3 chore(deps-dev): bump sinon from 19.0.0 to 19.0.2 (#3252)
• 8300373 chore(deps-dev): bump eslint-plugin-import from 2.29.1 to 2.30.0 (#3239)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/[email protected]	Transitive: filesystem	+29	1.07 MB	sindresorhus

🚮 Removed packages: npm/[email protected]

View full report↗︎

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

[dependabot]

Superseded by #161.