chore: security updates

oada/eslint.config.mjs

@@ -30,11 +30,13 @@ import typescript from 'typescript-eslint';
 
 import _import from 'eslint-plugin-import';
 import ava from 'eslint-plugin-ava';
+import github from 'eslint-plugin-github';
 import noConstructorBind from 'eslint-plugin-no-constructor-bind';
 import noSecrets from 'eslint-plugin-no-secrets';
 import node from 'eslint-plugin-n';
 import notice from 'eslint-plugin-notice';
 import optimizeRegex from 'eslint-plugin-optimize-regex';
+import prettier from 'eslint-config-prettier';
 import promise from 'eslint-plugin-promise';
 import regexp from 'eslint-plugin-regexp';
 import security from 'eslint-plugin-security';
@@ -57,30 +59,24 @@ export default typescript.config(
   js.configs.recommended,
   node.configs['flat/recommended'],
   security.configs.recommended,
-  sonarjs.configs.recommended,
+  //sonarjs.configs.recommended,
   unicorn.configs['flat/recommended'],
   regexp.configs['flat/recommended'],
   promise.configs['flat/recommended'],
   ...xoTypescript,
+  //github.getFlatConfigs().recommended,
+  ...github.getFlatConfigs().typescript,
   ...fixupConfigRules(
     compat.extends(
-      'plugin:github/recommended',
-      'plugin:github/typescript',
       'plugin:optimize-regex/recommended',
       'plugin:import/recommended',
       'plugin:ava/recommended',
     ),
   ),
+  prettier,
   {
     files: ['**/*.{c,m,}ts'],
-    extends: [
-      ...fixupConfigRules(
-        compat.extends(
-           //'plugin:github/typescript',
-          'plugin:import/typescript',
-        ),
-      ),
-    ],
+    extends: [...fixupConfigRules(compat.extends('plugin:import/typescript'))],
   },
   {
     ignores: [
@@ -162,14 +158,16 @@ export default typescript.config(
         },
       ],
 
+      /*
       'sonarjs/no-duplicate-string': [
         'warn',
         {
           threshold: 5,
         },
       ],
-
       'sonarjs/cognitive-complexity': 'warn',
+      */
+
       'eslint-comments/no-unused-disable': 'off',
       'node/no-unpublished-import': 'off',
 

oada/libs/lib-arangodb/package.json

@@ -75,7 +75,7 @@
     "@types/deep-equal": "^1.0.4",
     "@types/flat": "^5.0.5",
     "@types/json-pointer": "^1.0.34",
-    "@types/node": "^22.9.0",
+    "@types/node": "^22.9.1",
     "ava": "6.2.0",
     "type-fest": "^4.27.0"
   },

oada/libs/lib-config/package.json

@@ -41,7 +41,7 @@
     "dotenv": "^16.4.5",
     "json5": "^2.2.3",
     "tslib": "2.8.1",
-    "yaml": "^2.6.0"
+    "yaml": "^2.6.1"
   },
   "devDependencies": {
     "@types/convict": "^6.1.6",

oada/libs/lib-kafka/package.json

@@ -48,7 +48,7 @@
     "@ava/typescript": "^5.0.0",
     "@types/convict": "^6.1.6",
     "@types/debug": "^4.1.12",
-    "@types/node": "^22.9.0",
+    "@types/node": "^22.9.1",
     "@types/uuid": "^10.0.0",
     "ava": "6.2.0"
   },

oada/libs/lib-prom/package.json

@@ -42,7 +42,7 @@
   "devDependencies": {
     "@ava/typescript": "^5.0.0",
     "@types/convict": "^6.1.6",
-    "@types/node": "^22.9.0",
+    "@types/node": "^22.9.1",
     "@types/ws": "^8.5.13",
     "ava": "6.2.0",
     "fastify-plugin": "^5.0.1"
@@ -51,6 +51,6 @@
     "node": "22.5.1"
   },
   "optionalDependencies": {
-    "nstats": "^5.0.0"
+    "nstats": "^6.0.1"
   }
 }

oada/libs/models/package.json

@@ -38,7 +38,7 @@
     "node": "22.5.1"
   },
   "devDependencies": {
-    "@types/node": "^22.9.0",
+    "@types/node": "^22.9.1",
     "jose": "^5.9.6"
   }
 }

oada/libs/pino-debug/package.json

@@ -34,7 +34,7 @@
   },
   "devDependencies": {
     "@types/debug": "^4.1.12",
-    "@types/node": "^22.9.0"
+    "@types/node": "^22.9.1"
   },
   "peerDependencies": {
     "debug": "*"

oada/package.json

@@ -13,22 +13,23 @@
     "g:pino-pretty": "pino-pretty"
   },
   "devDependencies": {
-    "@commitlint/cli": "^19.5.0",
-    "@commitlint/config-conventional": "^19.5.0",
+    "@commitlint/cli": "^19.6.0",
+    "@commitlint/config-conventional": "^19.6.0",
     "@eslint/compat": "^1.2.3",
     "@eslint/config-inspector": "^0.5.6",
     "@eslint/eslintrc": "^3.2.0",
     "@eslint/js": "^9.15.0",
     "@tsconfig/node20": "^20.1.4",
     "@types/eslint": "^9.6.1",
-    "@types/mocha": "^10.0.9",
-    "@types/node": "^22.9.0",
+    "@types/mocha": "^10.0.10",
+    "@types/node": "^22.9.1",
     "@typescript-eslint/eslint-plugin": "^8.15.0",
     "@typescript-eslint/parser": "^8.15.0",
     "@yarnpkg/sdks": "^3.2.0",
     "browserslist": "^4.24.2",
     "c8": "^10.1.2",
     "eslint": "^9.15.0",
+    "eslint-config-prettier": "^9.1.0",
     "eslint-config-xo": "^0.46.0",
     "eslint-config-xo-typescript": "^7.0.0",
     "eslint-formatter-pretty": "^6.0.1",
@@ -39,7 +40,7 @@
     "eslint-plugin-escompat": "^3.11.4",
     "eslint-plugin-eslint-comments": "^3.2.0",
     "eslint-plugin-filenames": "^1.3.2",
-    "eslint-plugin-github": "^5.0.2",
+    "eslint-plugin-github": "^5.1.0",
     "eslint-plugin-i18n-text": "^1.0.1",
     "eslint-plugin-import": "^2.31.0",
     "eslint-plugin-n": "^17.13.2",
@@ -53,7 +54,7 @@
     "eslint-plugin-regexp": "^2.7.0",
     "eslint-plugin-security": "^3.0.1",
     "eslint-plugin-sonarjs": "^2.0.4",
-    "eslint-plugin-unicorn": "^56.0.0",
+    "eslint-plugin-unicorn": "^56.0.1",
     "get-port": "^7.1.0",
     "prettier": "^3.3.3",
     "tslib": "2.8.1",
@@ -66,6 +67,7 @@
     "pino-pretty": "^13.0.0"
   },
   "resolutions": {
+    "cross-spawn": "^7.0.5",
     "eslint-config-prettier": "git@github.com:abrahamguo/eslint-config-prettier.git",
     "fastify-plugin": "^5.0.1",
     "tslib": "2.7.0"

oada/services/auth/package.json

@@ -105,7 +105,7 @@
     "tslib": "2.8.1",
     "urijs": "^1.19.11",
     "uuid": "^11.0.3",
-    "yaml": "^2.6.0"
+    "yaml": "^2.6.1"
   },
   "devDependencies": {
     "@fastify/type-provider-json-schema-to-ts": "^4.0.1",

oada/services/http-handler/package.json

@@ -79,7 +79,7 @@
     "@oada/write-handler": "workspace:^",
     "@types/cacache": "^17.0.2",
     "@types/debug": "^4.1.12",
-    "@types/node": "^22.9.0",
+    "@types/node": "^22.9.1",
     "@types/type-is": "^1.6.6",
     "@types/uuid": "^10.0.0",
     "@types/ws": "^8.5.13",

oada/services/permissions-handler/package.json

@@ -37,7 +37,7 @@
   },
   "devDependencies": {
     "@types/debug": "^4.1.12",
-    "@types/node": "^22.9.0",
+    "@types/node": "^22.9.1",
     "@types/type-is": "^1.6.6"
   },
   "volta": {

oada/services/rev-graph-update/package.json

@@ -48,10 +48,10 @@
   },
   "devDependencies": {
     "@ava/typescript": "^5.0.0",
-    "@oada/client": "^5.2.3",
+    "@oada/client": "^5.2.6",
     "@oada/write-handler": "workspace:^",
     "@types/debug": "^4.1.12",
-    "@types/node": "^22.9.0",
+    "@types/node": "^22.9.1",
     "@types/randomstring": "^1.3.0",
     "ava": "6.2.0",
     "type-fest": "^4.27.0"

oada/services/startup/package.json

@@ -41,7 +41,7 @@
   },
   "devDependencies": {
     "@types/debug": "^4.1.12",
-    "@types/node": "^22.9.0"
+    "@types/node": "^22.9.1"
   },
   "volta": {
     "node": "22.5.1"

oada/services/sync-handler/package.json

@@ -40,7 +40,7 @@
   "devDependencies": {
     "@oada/write-handler": "workspace:^",
     "@types/debug": "^4.1.12",
-    "@types/node": "^22.9.0"
+    "@types/node": "^22.9.1"
   },
   "volta": {
     "node": "22.5.1"

oada/services/write-handler/package.json

@@ -56,11 +56,11 @@
   },
   "devDependencies": {
     "@ava/typescript": "^5.0.0",
-    "@oada/client": "^5.2.3",
+    "@oada/client": "^5.2.6",
     "@oada/types": "^4.0.0",
     "@types/debug": "^4.1.12",
     "@types/json-pointer": "^1.0.34",
-    "@types/node": "^22.9.0",
+    "@types/node": "^22.9.1",
     "@types/object-assign-deep": "^0.4.3",
     "ava": "6.2.0"
   },