Bump cross-spawn and @changesets/cli

[dependabot]

Bumps cross-spawn to 7.0.6 and updates ancestor dependency @changesets/cli. These dependencies need to be updated together.

Updates cross-spawn from 7.0.3 to 7.0.6

Changelog

Sourced from cross-spawn's changelog.

7.0.6 (2024-11-18)

Bug Fixes

• update cross-spawn version to 7.0.5 in package-lock.json (f700743)

7.0.5 (2024-11-07)

Bug Fixes

• fix escaping bug introduced by backtracking (640d391)

7.0.4 (2024-11-07)

Bug Fixes

• disable regexp backtracking (#160) (5ff3a07)

Commits

• 77cd97f chore(release): 7.0.6
• 6717de4 chore: upgrade standard-version
• f700743 fix: update cross-spawn version to 7.0.5 in package-lock.json
• 9a7e3b2 chore: fix build status badge
• 0852683 chore(release): 7.0.5
• 640d391 fix: fix escaping bug introduced by backtracking
• bff0c87 chore: remove codecov
• a7c6abc chore: replace travis with github workflows
• 9b9246e chore(release): 7.0.4
• 5ff3a07 fix: disable regexp backtracking (#160)
• Additional commits viewable in compare view

Updates @changesets/cli from 2.27.5 to 2.27.11

Release notes

Sourced from @​changesets/cli's releases.

@​changesets/cli@​2.27.11

Patch Changes

• Updated dependencies [f0270f6]:
  • @​changesets/config@​3.0.5
  • @​changesets/apply-release-plan@​7.0.7
  • @​changesets/get-release-plan@​4.0.6

@​changesets/cli@​2.27.10

Patch Changes

• #1485 baf5644 Thanks @​bluwy! - Ignore error if failed to find changed packages in changeset add

• #1489 7bf751c Thanks @​marcalexiei! - Use custom errors when exiting add command due to missing tool

• #1466 ccce743 Thanks @​marcalexiei! - Add error message and exit when there are no versionable packages

• #1514 962ab91 Thanks @​nicoalonsop! - Update spawndamnit to fix cross-spawn vulnerability

• Updated dependencies [7323704, 26c8ba9, 82cacb2, 962ab91]:

  • @​changesets/config@​3.0.4
  • @​changesets/git@​3.0.2
  • @​changesets/assemble-release-plan@​6.0.5
  • @​changesets/read@​0.6.2
  • @​changesets/apply-release-plan@​7.0.6
  • @​changesets/get-release-plan@​4.0.5

@​changesets/cli@​2.27.9

Patch Changes

• #1458 400ab7b Thanks @​benmccann! - Moved @types/semver to devDependencies

• #1462 689e541 Thanks @​benmccann! - remove outdent dependency

@​changesets/cli@​2.27.8

Patch Changes

• #1417 bc75c1a Thanks @​trivikr! - Replace chalk with picocolors to reduce install size

• #1419 4efc038 Thanks @​bluwy! - Fix logging --version flag

• #1445 52c302a Thanks @​bluwy! - Remove unused @babel/runtime dependency

• #1446 5150fc1 Thanks @​benmccann! - Switched from preferred-pm to package-manager-detector in order to reduce installation size

• Updated dependencies [bc75c1a, 52c302a]:

  • @​changesets/get-dependents-graph@​2.1.2
  • @​changesets/logger@​0.1.1
  • @​changesets/read@​0.6.1
  • @​changesets/assemble-release-plan@​6.0.4

... (truncated)

Commits

• ac2fd12 Version Packages (#1532)
• f0270f6 relax parameters for read() (#1517)
• f03f70b Bump @​typescript-eslint/parser from 5.43.0 to 5.62.0 (#1527)
• 5412908 Bump jest-watch-typeahead from 2.2.1 to 2.2.2 (#1529)
• 828a238 Bump enquirer from 2.3.2 to 2.4.1 (#1530)
• 5c1617f Bump @​types/lodash from 4.14.144 to 4.17.13 (#1520)
• 22eff6f Bump extendable-error from 0.1.5 to 0.1.7 (#1522)
• 7a53030 Bump eslint-config-standard from 17.0.0 to 17.1.0 (#1521)
• 921a852 Bump @​babel/preset-typescript from 7.18.6 to 7.26.0 (#1523)
• ff59515 Add Dependabot config file (#1219)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.