chore(deps): update minor packages

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
chai (source)	4.3.6 -> 4.5.0					devDependencies	minor
cheerio (source)	1.0.0-rc.12 -> 1.0.0					dependencies	patch
clarify	2.1.0 -> 2.2.0					dependencies	minor
codecov	3.8.2 -> 3.8.3					devDependencies	patch
foundation-sites (source)	6.7.5 -> 6.9.0					dependencies	minor
graphql-2-json-schema	0.9.1 -> 0.10.0					dependencies	minor
grunt (source)	1.5.3 -> 1.6.1					dependencies	minor
grunt-compile-handlebars	2.0.2 -> 2.0.4					dependencies	patch
handlebars (source)	4.7.7 -> 4.7.8					dependencies	patch
json-stable-stringify	1.0.1 -> 1.1.1					dependencies	minor
suzuki-shunsuke/github-action-renovate-config-validator	v0.1.2 -> v0.1.3					action	patch
tmp	0.2.1 -> 0.2.3					dependencies	patch
trace	3.1.1 -> 3.2.0					dependencies	minor

---

Release Notes

chaijs/chai (chai)

v4.5.0

Compare Source

v4.4.1

Compare Source

What's Changed

• fix: removes ?? for node compat by @​43081j in https://github.com/chaijs/chai/pull/1574

Full Changelog: chaijs/chai@v4.4.0...v4.4.1

v4.4.0

Compare Source

What's Changed

• Allow deepEqual fonction to be configured globally (4.x.x branch) by @​forty in https://github.com/chaijs/chai/pull/1553

Full Changelog: chaijs/chai@v4.3.10...v4.4.0

v4.3.10

Compare Source

This release simply bumps all dependencies to their latest non-breaking versions.

What's Changed

• upgrade all dependencies by @​keithamus in https://github.com/chaijs/chai/pull/1540

Full Changelog: chaijs/chai@v4.3.9...v4.3.10

v4.3.9

Compare Source

Upgrade dependencies.

This release upgrades dependencies to address CVE-2023-43646 where a large function name can cause "catastrophic backtracking" (aka ReDOS attack) which can cause the test suite to hang.

Full Changelog: chaijs/chai@v4.3.8...v4.3.9

v4.3.8

Compare Source

What's Changed

• 4.x.x: Fix link to commit logs on GitHub by @​bugwelle in https://github.com/chaijs/chai/pull/1487
• build(deps): bump socket.io-parser from 4.0.4 to 4.0.5 by @​dependabot in https://github.com/chaijs/chai/pull/1488
• Small typo in test.js by @​mavaddat in https://github.com/chaijs/chai/pull/1459
• docs: specify return type of objDisplay by @​scarf005 in https://github.com/chaijs/chai/pull/1490
• Update CONTRIBUTING.md by @​matheus-rodrigues00 in https://github.com/chaijs/chai/pull/1521
• Fix: update exports.version to current version by @​peanutenthusiast in https://github.com/chaijs/chai/pull/1534

New Contributors

• @​bugwelle made their first contribution in https://github.com/chaijs/chai/pull/1487
• @​mavaddat made their first contribution in https://github.com/chaijs/chai/pull/1459
• @​scarf005 made their first contribution in https://github.com/chaijs/chai/pull/1490
• @​matheus-rodrigues00 made their first contribution in https://github.com/chaijs/chai/pull/1521
• @​peanutenthusiast made their first contribution in https://github.com/chaijs/chai/pull/1534

Full Changelog: chaijs/chai@v4.3.7...v4.3.8

v4.3.7

Compare Source

What's Changed

• fix: deep-eql bump package to support symbols comparison by @​snewcomer in https://github.com/chaijs/chai/pull/1483

Full Changelog: chaijs/chai@v4.3.6...v4.3.7

cheeriojs/cheerio (cheerio)

v1.0.0

Compare Source

Cheerio 1.0 is here! 🎉

Announcement Blog Post

Breaking Changes

• The minimum NodeJS version is now 18.17 or higher https://github.com/cheeriojs/cheerio/pull/3959

• Import paths were simplified. For example, use cheerio/slim instead of
  cheerio/lib/slim. https://github.com/cheeriojs/cheerio/pull/3970

• The deprecated default Cheerio instance and static methods were removed. https://github.com/cheeriojs/cheerio/pull/3974

  Before, it was possible to write code like this:

  import cheerio, { html } from 'cheerio';
  
  html(cheerio('<test></test>')); // ~ '<test></test>' -- NO LONGER WORKS

  Make sure to always load documents first:

  import * as cheerio from 'cheerio';
  
  cheerio.load('<test></test>').html();

• Node types previously re-exported by Cheerio must now be imported directly
  from (domhandler)(https://github.com/fb55/domhandler). https://github.com/cheeriojs/cheerio/pull/3969

• htmlparser2 options now reside exclusively under the xml key (https://github.com/cheeriojs/cheerio/pull/2916):

  const $ = cheerio.load('<html>', {
    xml: {
      withStartIndices: true,
    },
  });

New Features

• Add functions to load buffers, streams & URLs in NodeJS by @​fb55 in https://github.com/cheeriojs/cheerio/pull/2857
• Add extract method by @​fb55 in https://github.com/cheeriojs/cheerio/pull/2750

Fixes

• Allow imports of cheerio/utils by @​blixt in https://github.com/cheeriojs/cheerio/pull/2601
• Allow empty string in data, and simplify by @​fb55 in https://github.com/cheeriojs/cheerio/pull/2818
• Make closest be able to start from text nodes by @​Qualtagh in https://github.com/cheeriojs/cheerio/pull/2811
• Fix potential github action smells by @​ceddy4395 in https://github.com/cheeriojs/cheerio/pull/3826

Other

• Cheerio has a new website, featuring updated API docs and guides! https://github.com/cheeriojs/cheerio/pull/2950

Full Changelog: cheeriojs/cheerio@v1.0.0-rc.12...v1.0.0

AndreasMadsen/clarify (clarify)

v2.2.0

Compare Source

codecov/codecov-node (codecov)

v3.8.3

Compare Source

Fixes

• #​329 fix: Test if response has two lines

Dependencies

• #​306 Bump eslint-config-prettier from 7.2.0 to 8.3.0
• #​305 Bump eslint from 7.21.0 to 7.25.0
• #​302 Bump mock-fs from 4.13.0 to 4.14.0
• #​308 Bump lodash from 4.17.19 to 4.17.21
• #​309 Bump ignore-walk from 3.0.3 to 3.0.4
• #​310 Bump hosted-git-info from 2.8.8 to 2.8.9
• #​325 Bump prettier from 2.2.1 to 2.3.2
• #​326 Bump actions/setup-node from 2.1.5 to 2.2.0
• #​328 Bump lint-staged from 10.5.4 to 11.0.1
• #​330 Bump eslint from 7.25.0 to 7.31.0
• #​331 Bump ws from 7.3.1 to 7.5.3
• #​332 Bump urlgrey from 0.4.4 to 1.0.0
• #​334 Bump husky from 6.0.0 to 7.0.1
• #​333 Bump teeny-request from 7.0.1 to 7.1.1

foundation/foundation-sites (foundation-sites)

v6.9.0: Foundation v6.9.0 Release

Compare Source

Foundation 6.9 is here! This release does a lot more clean up work for improving the Sass. Thank you to everyone that help chip in and stay on top of things to get this release out the door. I am honored that so many of you choose to use Foundation. It's been a lot of fun meeting and chatting with so many of you on the Discord server.

Speaking of the Discord server, that is currently the best place to chat about Foundation. After the war with spam on the Github issues and discussion boards, I had to lock those down. If you are not on the Discord server, here is an invitation link.

Notes on Dart Sass 2.0

There is more work to do on the Sass side of things in order to get ready for the Dart Sass 2.0 release. Since Foundation is one of the largest Sass projects on the web, the Sass team reached out to me about migrating from @include to @use . I delayed this release in hopes of getting that done. It turns out that change was not so simple. It really does change some core fundamental aspects of the SCSS architecture. Therefore, it will need to be moved to the F7 release. The Sass team has been amazing to work with though. They were gracious enough to submit a couple of PRs my way in order to seed the process.

OK, now let's check out the details of this release...

Updated Requirements

Foundation 6.9 requires Node 18+. It only uses DartSass.

Featured Enhancements

• 🚀 Faster Builds with sass-embedded. All supporting Foundation repositories have also been updated to use Dart Sass and sass-embedded.
• 🚀 Your eyes will be saved from all of those Sass deprecation warnings! 👀

Bug Fixes

• 🐛 Fix for deep linking with Tabs
• 🐛 Abide will no longer add aria-describedby to hidden inputs
• 🐛 Fixed missing return type for SmoothScroll Typescript
• 🐛 Improved focus styles and behavior for switch
• 🐛 Abide will now clear existing errors on an input when re-validating
• 🐛 Fixed many sass deprecation warnings

Full Release Compare

Contributors

Thanks to the 21 amazing people who contributed code or documentation to the 6.9 release. Foundation wouldn't happen without you!

• @​joeworkman
• @​ameotoko
• @​ahukkanen
• @​starostva
• @​Arash1381-y
• @​asineath-onpoint
• @​beephotography
• @​chadlwilson

v6.8.1

Compare Source

Join us on our Discussions Board. This is a great place to ask questions and interact with your fellow Foundation users.

What's Changed

A small issue with the build was found after 6.8.0 was released. While it will most likely not affect anyone else, I figured that it would be nice to just ship the fix out just in case anyone was running a build directly inside of the repo.

Full Changelog: foundation/foundation-sites@v6.8.0...v6.8.1

v6.8.0

Compare Source

Join us on our Discussions Board. This is a great place to ask questions and interact with your fellow Foundation users.

What's Changed

Rejoice! Foundation now works with node 16, 18 and 20! The minimum version of node that is required is now v16. A lot of packages and dependencies needed to be upgrade in order to make this happen.

Full Changelog: foundation/foundation-sites@v6.7.5...v6.8.0

wittydeveloper/graphql-to-json-schema (graphql-2-json-schema)

v0.10.0

Compare Source

0.9.1 (2022-03-07)

gruntjs/grunt (grunt)

v1.6.1

Compare Source

• Changelog updates 72f6f03
• Merge pull request #​1755 from gruntjs/rm-dep 8d4c183
• Add recursive 1c7d483
• Merge pull request #​1756 from gruntjs/downgrade-glob 2d4fd38
• Downgrade glob 902db7c
• Fix syntax 494f243
• remove mkdirp b01389e
• remove dep on rimraf and mkdirp 0072510

v1.6.0

Compare Source

• Merge pull request #​1750 from gruntjs/dep-update-jan28 2805dc3
• README updates 3f1e423
• Bump to 16 8fd096d
• Update more deps 42c5f95
• Bump eslint and node version 1d88050

patrickkettner/grunt-compile-handlebars (grunt-compile-handlebars)

v2.0.4

Compare Source

v2.0.3

Compare Source

handlebars-lang/handlebars.js (handlebars)

v4.7.8

Compare Source

• Make library compatible with workers (#​1894) - 3d3796c
• Don't rely on Node.js global object (#​1776) - 2954e7e
• Fix compiling of each block params in strict mode (#​1855) - 30dbf04
• Fix rollup warning when importing Handlebars as ESM - 03d387b
• Fix bundler issue with webpack 5 (#​1862) - c6c6bbb
• Use https instead of git for mustache submodule - 88ac068

Commits

ljharb/json-stable-stringify (json-stable-stringify)

v1.1.1

Compare Source

Fixed

• [Performance] use an array join instead of a string. #9

Commits

• [readme] replaced var with const e22d419
• [Dev Deps] update aud, tape dc26af2

v1.1.0

Compare Source

Commits

• [New] opts.cmp: add get function 1b11748
• [meta] update license text so GitHub can identify it fd520e1
• [Refactor] use isarray, object-keys instead of homegrown attempts d1d2038
• [Refactor] build up a string instead of an array + join 6c066b8
• [Refactor] avoid an IIFE 8243ea1
• [Perf] avoid creating an options object when not needed 02f0778
• [Refactor] avoid new Array 80d52a1
• [Robustness] use call-bind to invoke replacer c52438f
• [Robustness] cache JSON.stringify at module load 616dec3
• [Dev Deps] update @ljharb/eslint-config, aud, tape 494a3ce
• [Dev Deps] update @ljharb/eslint-config, aud, tape 861ea7d
• [Refactor] avoid recreating default replacer 4e95ebb
• [Tests] remove unused travis.yml 1226971
• [meta] add missing engines.node 7a80ff6

v1.0.2

Compare Source

Commits

• [eslint] fix indentation and whitespace c97e78c
• [eslint] more cleanup c162117
• [meta] add auto-changelog 83934ff
• [actions] add reusable workflows 7b24830
• [readme] rename, add badges 5433588
• [eslint] add eslint 7be6c27
• [meta] create FUNDING.yml; add funding in package.json 6edbece
• [meta] use npmignore to autogenerate an npmignore file b5d7d3a
• [Dev Deps] update tape 2200cf1
• [actions] update rebase action e41ac00
• [meta] update URLs f17e490
• Only apps should have lockfiles 4f052f4
• add breaking test (acyclic detected as cyclic) 7f5f443
• [meta] add safe-publish-latest ddb843f
• [Tests] add aud in posttest 245c9bf
• [Deps] update jsonify 7b79a68
• fix conflict e43ca2a

suzuki-shunsuke/github-action-renovate-config-validator (suzuki-shunsuke/github-action-renovate-config-validator)

v0.1.3

Compare Source

#​316 Support .renovaterc.json5 by default

https://docs.renovatebot.com/configuration-options/#configuration-options

raszi/node-tmp (tmp)

v0.2.3

Compare Source

v0.2.2

Compare Source

🐛 Bug Fix

• #​278 Closes #​268: Revert "fix #​246: remove any double quotes or single quotes… (@​mbargiel)

📝 Documentation

• #​279 Closes #​266: move paragraph on graceful cleanup to the head of the documentation (@​silkentrance)

Committers: 5

• Carsten Klein (@​silkentrance)
• Dave Nicolson (@​dnicolson)
• KARASZI István (@​raszi)
• Maxime Bargiel (@​mbargiel)
• @​robertoaceves

AndreasMadsen/trace (trace)

v3.2.0

Compare Source

---

Configuration

📅 Schedule: Branch creation - "before 3am every weekday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
0.0% Duplication

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
0.0% Duplication

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud