Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update all non-major dependencies #60

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update all non-major dependencies #60

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jan 5, 2025
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
@sveltejs/adapter-cloudflare (source) ^5.0.0 -> ^5.0.1 age adoption passing confidence
@sveltejs/adapter-node (source) ^5.2.11 -> ^5.2.12 age adoption passing confidence
@sveltejs/adapter-vercel (source) ^5.5.2 -> ^5.5.3 age adoption passing confidence
@sveltejs/kit (source) ^2.15.1 -> ^2.16.0 age adoption passing confidence
@types/lodash (source) ^4.17.13 -> ^4.17.14 age adoption passing confidence
@types/node (source) ^20.17.10 -> ^20.17.14 age adoption passing confidence
npm-check-updates ^17.1.13 -> ^17.1.14 age adoption passing confidence
prettier-plugin-svelte ^3.3.2 -> ^3.3.3 age adoption passing confidence
publint (source) ^0.2.12 -> ^0.3.2 age adoption passing confidence
svelte (source) ^5.16.0 -> ^5.19.0 age adoption passing confidence
svelte-check ^4.1.1 -> ^4.1.4 age adoption passing confidence
typescript (source) ^5.7.2 -> ^5.7.3 age adoption passing confidence
vite (source) ^6.0.7 -> ^6.0.10 age adoption passing confidence
wrangler (source) 3.99.0 -> 3.103.2 age adoption passing confidence

Release Notes

sveltejs/kit (@​sveltejs/adapter-cloudflare)

v5.0.1

Compare Source

Patch Changes
sveltejs/kit (@​sveltejs/adapter-node)

v5.2.12

Compare Source

Patch Changes
sveltejs/kit (@​sveltejs/adapter-vercel)

v5.5.3

Compare Source

Patch Changes
sveltejs/kit (@​sveltejs/kit)

v2.16.0

Compare Source

Minor Changes

  • feat: add ability to invalidate a custom identifier on goto() (#​13256)

  • feat: remove the postinstall script to support pnpm 10 (#​13304)

    NOTE: users should add "prepare": "svelte-kit sync" to their package.json in order to avoid the following warning upon first running Vite:

    ▲ [WARNING] Cannot find base config file "./.svelte-kit/tsconfig.json" [tsconfig.json]

    tsconfig.json:2:12:
      2 │   "extends": "./.svelte-kit/tsconfig.json",
        ╵              ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

  • feat: provide PageProps and LayoutProps types (#​13308)

Patch Changes

  • perf: shorten chunk file names (#​13003)

  • fix: strip internal data before passing URL to reroute (#​13092)

  • fix: support absolute URLs and reroutes with data-sveltekit-preload-code="viewport" (#​12217)

  • fix: use current window.fetch for server load fetch requests (#​13315)

  • fix: resolve symlinks when handling routes (#​12740)

  • fix: prevent infinite reload when using the hash router and previewing /index.html (#​13296)

  • fix: service worker base path in dev mode (#​12577)

  • chore: error during development when using use:enhance with +server (#​13197)

  • chore: add most common status codes to redirect() JS documentation (#​13301)

  • fix: correctly link to assets inlined by the inlineStyleThreshold option (#​13068)

  • fix: fall back to importing dynamic dependencies relative to SvelteKit package (#​12532)

  • fix: use arrow function types over bound funcs (#​12955)

  • fix: correctly navigate when hash router is enabled and the browser encodes extra hashes (#​13321)

v2.15.3

Compare Source

Patch Changes

  • fix: fix race-condition when not using SSR when pressing back before initial load (#​12925)

  • fix: remove ":$" from virtual module ids to allow dev server to work with proxies (#​12157)

  • fix: upgrade esm-env to remove warning when NODE_ENV is not set (#​13291)

  • fix: handle Redirect thrown from root layout load function when client-side navigating to a non-existent page (#​12005)

  • fix: make param matchers generated type import end with .js (#​13286)

v2.15.2

Compare Source

Patch Changes

  • fix: correctly notify page store subscribers (#​13205)

  • fix: prerender data when there is no server load but the trailingSlash option is set from the server (#​13262)

  • fix: correctly remove navigation callbacks when returning function in onNavigate (#​13241)

raineorshine/npm-check-updates (npm-check-updates)

v17.1.14

Compare Source

sveltejs/prettier-plugin-svelte (prettier-plugin-svelte)

v3.3.3

Compare Source

publint/publint (publint)

v0.3.2

Compare Source

Patch Changes

  • (Potentially breaking) Disable running lifecycle scripts, such as prepare, prepack, and postpack, when running the pack command internally. This returns to the behavior in v0.2. (Note that this change does not apply to yarn as it does not support ignoring lifecycle scripts for local projects) (#​128)

    This change is made as running lifecycle scripts was an unintentional behavior during the v0.3 breaking change, which could cause the linting process to take longer than expected, or even cause infinite loops if publint is used in a lifecycle script.

  • Update repository and bugs URLs to point to the new publint organization (1eda033)

  • Updated dependencies [1eda033, 10e3891]:

v0.3.1

Compare Source

Patch Changes
  • Correctly process the pack option (#​124)

v0.3.0

Compare Source

Minor Changes

  • The vfs option is removed in favour of an extended support of pack: { tarball: ArrayBuffer | ReadableStream } and pack: { files: PackFile[] } APIs. Now, it is even easier to use publint in the browser or against a packed .tgz file in Node.js. See the docs for more examples of how to use these new options. (#​122)

  • Bump node version support to >=18 (cb2ed8b)

  • publint now runs your project's package manager's pack command to get the list of packed files for linting. The previous npm-packlist dependency is now removed. (#​120)

    A new pack option is added to the node API to allow configuring this. It defaults to 'auto' and will automatically detect your project's package manager using package-manager-detector. See its JSDoc for more information of the option.

    This change is made as package managers have different behaviors for packing files, so running their pack command directly allows for more accurate linting. However, as a result of executing these commands in a child process, it may take 200-500ms longer to lint depending on the package manager used and the project size. The new handling also does not support yarn 1. See this comment for more information.

    If you use yarn 1, you should upgrade to the latest yarn version or a different package manager. Otherwise, no other changes are required for this new behavior.

Patch Changes

  • Initial setup to publish with Changesets (24a62f5)

  • When a dependency with the file: or link: protocol is specified in the package.json, it will now error to prevent accidentally publishing dependencies that will likely not work when installed by end-users (6e6ab33)

  • Fix EXPORT_TYPES_INVALID_FORMAT linting to detect .d.mts and .d.cts files (af5e88b)

  • Updated dependencies [d0b406b]:

sveltejs/svelte (svelte)

v5.19.0

Compare Source

Minor Changes
  • feat: Expose ClassValue from svelte/elements (#​15035)
Patch Changes

  • fix: create fewer deriveds for concatenated strings (#​15041)

  • fix: correctly parse leading comments in function binding (#​15020)

v5.18.0

Compare Source

Minor Changes
  • feat: allow <template> elements to contain any child (#​15007)
Patch Changes

  • fix: ensure resume effects are scheduled in topological order (#​15012)

  • fix: bump esrap (#​15015)

  • fix: remove listener on bind_current_time teardown (#​15013)

v5.17.5

Compare Source

Patch Changes

  • feat: allow const tag inside svelte:boundary (#​14993)

  • fix: ensure signal write invalidation within effects is consistent (#​14989)

v5.17.4

Compare Source

Patch Changes

  • fix: never consider inert boundary effects (#​14999)

  • fix: store access on component destroy (#​14968)

  • fix: correctly transform pre with no content (#​14973)

  • fix: wrap each block expression in derived to encapsulate effects (#​14967)

v5.17.3

Compare Source

Patch Changes
  • fix: reset dependency read versions after reaction execution (#​14964)

v5.17.2

Compare Source

Patch Changes

  • fix: account for parent scale when animating elements (#​14957)

  • fix: apply overflow: hidden style when transitioning elements, where necessary (#​14930)

  • fix: properly add owners to function bindings (#​14962)

v5.17.1

Compare Source

Patch Changes

  • fix: remove bindable prop validation (#​14946)

  • chore: tweak "invalid assignment" compiler error message (#​14955)

  • fix: silence false-positive stale value warning (#​14958)

v5.17.0

Compare Source

Minor Changes
  • feat: allow non-numeric values to be tweened by snapping immediately to new value (#​14941)
Patch Changes

  • fix: handle default values in object destructuring within "each" blocks when using characters like "}" and "]" (#​14554)

  • fix: account for min-width/height in slide transition (#​14942)

  • fix: prevent long delays causing erratic spring behaviour (#​14940)

  • feat: warn on using slide transition with table elements (#​14936)

  • chore: improve signal performance by reducing duplicate deps (#​14945)

v5.16.6

Compare Source

Patch Changes

  • fix: Make Tween duration 0 set current to target immediately (#​14937)

  • fix: guard against customElements being unavailable in browser extension contexts (#​14933)

  • fix: treat inert as a boolean attribute (#​14935)

  • fix: remove leading newline from <pre> contents (#​14922)

v5.16.5

Compare Source

Patch Changes

  • fix: inherit correct namespace for <title> elements (#​14817)

  • fix: don't throw bind_invalid_export if there's also a bindable prop with the same name (#​14813)

v5.16.4

Compare Source

Patch Changes

  • fix: use cached indexOf array prototype method internally (#​14912)

  • fix: make Tween work with continuous target changes (#​14895)

v5.16.3

Compare Source

Patch Changes

  • fix: correctly parse each with loose parser (#​14887)

  • fix: apply clsx logic to custom element class attributes (#​14907)

v5.16.2

Compare Source

Patch Changes

  • fix: ensure disconnected deriveds correctly connect again (#​14899)

  • fix: correctly highlight sources reassigned inside trace (#​14811)

v5.16.1

Compare Source

Patch Changes

  • fix: ensure unowned deriveds correctly get re-linked to the graph (#​14855)

  • fix: ensure $inspect.trace works correctly with null values (#​14853)

sveltejs/language-tools (svelte-check)

v4.1.4

Compare Source

  • fix: don't hoist types/snippets referencing stores or destructured variables (#​2661)

v4.1.3

Compare Source

  • fix: move snippets to correct place when only module script present

v4.1.2

Compare Source

  • feat: support generics attribute for JSDoc (#​2624)
  • fix: better snippet/interface hoistability analysis (#​2655)
  • chore: TypeScript 5.7 support (#​2585)
microsoft/TypeScript (typescript)

v5.7.3

Compare Source

vitejs/vite (vite)

v6.0.10

Compare Source

v6.0.9

Compare Source

  • fix!: check host header to prevent DNS rebinding attacks and introduce server.allowedHosts (bd896fb)
  • fix!: default server.cors: false to disallow fetching from untrusted origins (b09572a)
  • fix: verify token for HMR WebSocket connection (029dcd6)

v6.0.8

Compare Source

cloudflare/workers-sdk (wrangler)

v3.103.2

Compare Source

Patch Changes

v3.103.1

Compare Source

Patch Changes

v3.103.0

Compare Source

Minor Changes

  • #​5086 8faf2c0 Thanks @​dario-piotrowicz! - add --strict-vars option to wrangler types

    add a new --strict-vars option to wrangler types that developers can (by setting the
    flag to false) use to disable the default strict/literal types generation for their variables

    opting out of strict variables can be useful when developers change often their vars values,
    even more so when multiple environments are involved

v3.102.0

Compare Source

Minor Changes
Patch Changes

  • #​7750 df0e5be Thanks @​andyjessop! - bug: Removes the (local) tag on Vectorize bindings in the console output of wrangler dev, and adds-in the same tag for Durable Objects (which are emulated locally in wrangler dev).

  • #​7732 d102b60 Thanks @​Ankcorn! - fix pages secret bulk copy

  • #​7706 c63f1b0 Thanks @​penalosa! - Remove the server-based dev registry in favour of the more stable file-based dev registry. There should be no user-facing impact.

  • Updated dependencies [8e9aa40]:

    • miniflare@3.20241230.2

v3.101.0

Compare Source

Minor Changes

  • #​7534 7c8ae1c Thanks @​cmackenzie1! - feat: Use OAuth flow to generate R2 tokens for Pipelines

  • #​7674 45d1d1e Thanks @​Ankcorn! - Add support for env files to wrangler secret bulk i.e. .dev.vars

    Run wrangler secret bulk .dev.vars to add the env file

    //.dev.vars
KEY=VALUE
KEY_2=VALUE

    This will upload the secrets KEY and KEY_2 to your worker

  • #​7442 e4716cc Thanks @​petebacondarwin! - feat: add support for redirecting Wrangler to a generated config when running deploy-related commands

    This new feature is designed for build tools and frameworks to provide a deploy-specific configuration,
    which Wrangler can use instead of user configuration when running deploy-related commands.
    It is not expected that developers of Workers will need to use this feature directly.

Affected commands

The commands that use this feature are:

  • wrangler deploy
  • wrangler dev
  • wrangler versions upload
  • wrangler versions deploy
  • wrangler pages deploy
  • wrangler pages build
  • wrangler pages build-env
Config redirect file

When running these commands, Wrangler will look up the directory tree from the current working directory for a file at the path .wrangler/deploy/config.json. This file must contain only a single JSON object of the form:

{ "configPath": "../../path/to/wrangler.json" }

When this file exists Wrangler will follow the configPath (relative to the .wrangler/deploy/config.json file) to find an alternative Wrangler configuration file to load and use as part of this command.

When this happens Wrangler will display a warning to the user to indicate that the configuration has been redirected to a different file than the user's configuration file.

Custom build tool example

A common approach that a build tool might choose to implement.

  • The user writes code that uses Cloudflare Workers resources, configured via a user wrangler.toml file.

    name = "my-worker"
main = "src/index.ts"
[[kv_namespaces]]
binding = "<BINDING_NAME1>"
id = "<NAMESPACE_ID1>"

    Note that this configuration points main at user code entry-point.

  • The user runs a custom build, which might read the wrangler.toml to find the entry-point:

    > my-tool build

  • This tool generates a dist directory that contains both compiled code and a new deployment configuration file, but also a .wrangler/deploy/config.json file that redirects Wrangler to this new deployment configuration file:

    - dist
  - index.js
	- wrangler.json
- .wrangler
  - deploy
	  - config.json

    The dist/wrangler.json will contain:

    {
  "name": "my-worker",
  "main": "./index.js",
  "kv_namespaces": [
    { "binding": "<BINDING_NAME1>", "id": "<NAMESPACE_ID1>" }
  ]
}

    And the .wrangler/deploy/config.json will contain:

    {
  "configPath": "../../dist/wrangler.json"
}

  • #​7685 9d2740a Thanks @​vicb! - allow overriding the unenv preset.

    By default wrangler uses the bundled unenv preset.

    Setting WRANGLER_UNENV_RESOLVE_PATHS allow to use another version of the preset.
    Those paths are used when resolving the unenv module identifiers to absolute paths.
    This can be used to test a development version.

  • #​7694 f3c2f69 Thanks @​joshthoward! - Default wrangler d1 export to --local rather than failing

Patch Changes

v3.100.0

Compare Source

Minor Changes

  • #​7604 6c2f173 Thanks @​CarmenPopoviciu! - feat: Capture Workers with static assets in the telemetry data

    We want to measure accurately what this number of Workers + Assets projects running in remote mode is, as this number will be a very helpful data point down the road, when more decisions around remote mode will have to be taken.

    These changes add this kind of insight to our telemetry data, by capturing whether the command running is in the context of a Workers + Assets project.

    N.B. With these changes in place we will be capturing the Workers + Assets context for all commands, not just wrangler dev --remote.

Patch Changes

  • #​7581 cac7fa6 Thanks @​vicb! - chore(wrangler): update unenv dependency version

    unenv now uses the workerd implementation on node:dns
    See the unjs/unenv#376

  • #​7625 d8fb032 Thanks @​vicb! - feat(wrangler): use unenv builtin dependency resolution

    Moving away from require.resolve() to handle unenv aliased packages.
    Using the unenv builtin resolution will allow us to drop the .cjs file from the preset
    and to override the base path so that we can test the dev version of the preset.

  • #​7533 755a27c Thanks @​danielgek! - Add warning about the browser rendering not available on local

  • #​7614 8abb43f Thanks @​vicb! - chore(wrangler): update unenv dependency version

    The updated unenv contains a fix for the module resolution,
    see unjs/unenv#378.
    That bug prevented us from using unenv module resolution,
    see #​7583.

  • Updated dependencies [b4e0af1]:

    • miniflare@3.20241230.0

Configuration

📅 Schedule: Branch creation - "* 0-3 * * 1" in timezone Asia/Tokyo, Automerge - "* 0-3 * * *" in timezone Asia/Tokyo.

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the renovate label Jan 5, 2025
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 9 times, most recently from ca267a4 to a2a7f52 Compare January 11, 2025 17:40
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 13 times, most recently from 91c5204 to 83b4376 Compare January 20, 2025 10:02
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 83b4376 to b44b583 Compare January 20, 2025 21:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
renovate
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants