Bump the npm_and_yarn group across 1 directory with 10 updates

[dependabot]

Bumps the npm_and_yarn group with 8 updates in the / directory:

Package	From	To
@solana/web3.js	1.63.1	1.95.3
next	12.3.1	14.2.8
axios	0.21.4	removed
@solana/wallet-adapter-wallets	0.15.5	0.19.32
json5	1.0.1	1.0.2
minimatch	3.0.4	3.1.2
word-wrap	1.2.3	1.2.5
ws	7.5.9	7.5.10

Updates @solana/web3.js from 1.63.1 to 1.95.3

Release notes

Sourced from @​solana/web3.js's releases.

v1.95.3

1.95.3 (2024-08-21)

Bug Fixes

• compare pubkey values not references (#3119) (99aa3c8)

v1.95.2

1.95.2 (2024-07-26)

Bug Fixes

• correct import for getSetComputeUnitLimitInstruction helper (#2992) (a61a732)

v1.95.1

1.95.1 (2024-07-17)

Bug Fixes

• apply default memcmp encoding (base58) when not supplied (#2945) (8ea5794)

v1.95.0

1.95.0 (2024-07-08)

Features

• add iconUrl to ValidatorInfo type (#2919) (3c67d8a)

v1.94.0

1.94.0 (2024-06-29)

Features

• simulated_transaction: Add Inner Instructions (#2756) (0936673)

v1.93.4

1.93.4 (2024-06-28)

Bug Fixes

• add deprecation notice for getConfirmedSignatureForAddress2 and update other deprecation notices' validator versions (#2871) (1df9acb), closes #2859
• deprecate the getStakeActivation RPC method (#2864) (8bd58de)

v1.93.3

1.93.3 (2024-06-27)

Bug Fixes

• onProgramAccountChange() and onAccountChange() now accept an encoding (#2861) (f9b0d6d), closes #2725

... (truncated)

Commits

• 16f145d chore: fix publish CI again (#3124)
• 471af16 chore: fix publish CI (#3123)
• 99aa3c8 fix: compare pubkey values not references (#3119)
• 4124b49 chore: bump typedoc from 0.26.5 to 0.26.6 (#3112)
• c53b91b chore: bump rollup from 4.19.0 to 4.21.0 (#3111)
• 377e079 chore: bump semantic-release from 24.0.0 to 24.1.0 (#3110)
• 34866e1 chore: bump tsx from 4.16.2 to 4.17.0 (#3087)
• 62f8e43 chore: bump @​noble/curves from 1.4.2 to 1.5.0 (#3086)
• cf73a96 chore: bump commitlint from 19.3.0 to 19.4.0 (#3079)
• e570bee chore: bump mocha and @​types/mocha (#3057)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by lorisleiva, a new releaser for @​solana/web3.js since your current version.

Updates next from 12.3.1 to 14.2.8

Release notes

Sourced from next's releases.

v14.2.8

What's Changed

[!NOTE]
This release is backporting bug fixes and minor improvements. It does not include all pending features/changes on canary.

Support esmExternals in app directory

• Support esm externals in app router (#65041)
• Turbopack: Allow client components from foreign code in app routes (#64751)
• Turbopack: add support for esm externals in app dir (#64918)
• other related PRs: #66990 #66727 #66286 #65519

Reading cookies set in middleware in components and actions

• initialize ALS with cookies in middleware (#65008)
• fix middleware cookie initialization (#65820)
• ensure cookies set in middleware can be read in a server action (#67924)
• fix: merged middleware cookies should preserve options (#67956)

Metadata and icons

• support facebook-specific metadata (fb:app_id, fb:admins) in generateMetaData (#65713)
• Always collect static icons for all segments (#68712)
• Fix favicon merging with customized icons (#67982)
• Warn metadataBase missing in standalone mode or non vercel deployment (#66296)

Parallel routes fixes

• fix missing stylesheets when parallel routes are present (#69507)

Draft mode and edge improvements

• fix: unstable_cache should not cache new result in draft mode (#67772)
• Add draft mode flag for multi-zone (#68997)
• Fix edge preview props are not matched with cookie (#67779)
• other related PRs: #65426, #67787, #64946, #64313, #64370

next/image fixes

• Allow external image urls with _next/image pathname to be rendered via Image component (#69586)

Server actions improvements

... (truncated)

Commits

• 63b999c v14.2.8
• 55e4ef2 Allow external image urls with _next/image pathname to be rendered via Image ...
• d09b769 feat(turbopack): add support for esm externals in app dir (#64918)
• dafdc81 test: convert app-external.test.ts to nextTestSetup
• 2c80812 Turbopack: Allow client components from foreign code in app routes (#64751)
• 6473113 Improve SWC transform ID generation (#69183)
• 9c4efb9 Apply optimization for unused actions (#69178)
• 5eff016 refactor: create shared utils for mod resource (#69145)
• c8bde3e optimize server actions (#66523)
• 562df1f Ensure we match comment minify behavior between terser and swc (#68372)
• Additional commits viewable in compare view

Updates postcss from 8.4.14 to 8.4.31

Release notes

Sourced from postcss's releases.

8.4.31

• Fixed \r parsing to fix CVE-2023-44270.

8.4.30

• Improved source map performance (by @​romainmenke).

8.4.29

• Fixed Node#source.offset (by @​idoros).
• Fixed docs (by @​coliff).

8.4.28

• Fixed Root.source.end for better source map (by @​romainmenke).
• Fixed Result.root types when process() has no parser.

8.4.27

• Fixed Container clone methods types.

8.4.26

• Fixed clone methods types.

8.4.25

• Improve stringify performance (by @​romainmenke).
• Fixed docs (by @​vikaskaliramna07).

8.4.24

• Fixed Plugin types.

8.4.23

• Fixed warnings in TypeDoc.

8.4.22

• Fixed TypeScript support with node16 (by @​remcohaszing).

8.4.21

• Fixed Input#error types (by @​hudochenkov).

8.4.20

• Fixed source map generation for childless at-rules like @layer.

8.4.19

• Fixed whitespace preserving after AST transformations (by @​romainmenke).

8.4.18

• Fixed an error on absolute: true with empty sourceContent (by @​KingSora).

8.4.17

• Fixed Node.before() unexpected behavior (by @​romainmenke).
• Added TOC to docs (by @​muddv).

8.4.16

... (truncated)

Changelog

Sourced from postcss's changelog.

8.4.31

• Fixed \r parsing to fix CVE-2023-44270.

8.4.30

• Improved source map performance (by Romain Menke).

8.4.29

• Fixed Node#source.offset (by Ido Rosenthal).
• Fixed docs (by Christian Oliff).

8.4.28

• Fixed Root.source.end for better source map (by Romain Menke).
• Fixed Result.root types when process() has no parser.

8.4.27

• Fixed Container clone methods types.

8.4.26

• Fixed clone methods types.

8.4.25

• Improve stringify performance (by Romain Menke).
• Fixed docs (by @​vikaskaliramna07).

8.4.24

• Fixed Plugin types.

8.4.23

• Fixed warnings in TypeDoc.

8.4.22

• Fixed TypeScript support with node16 (by Remco Haszing).

8.4.21

• Fixed Input#error types (by Aleks Hudochenkov).

8.4.20

• Fixed source map generation for childless at-rules like @layer.

8.4.19

• Fixed whitespace preserving after AST transformations (by Romain Menke).

8.4.18

• Fixed an error on absolute: true with empty sourceContent (by Rene Haas).

8.4.17

• Fixed Node.before() unexpected behavior (by Romain Menke).
• Added TOC to docs (by Mikhail Dedov).

8.4.16

... (truncated)

Commits

• 90208de Release 8.4.31 version
• 58cc860 Fix carrier return parsing
• 4fff8e4 Improve pnpm test output
• cd43ed1 Update dependencies
• caa916b Update dependencies
• 8972f76 Typo
• 11a5286 Typo
• 45c5501 Release 8.4.30 version
• bc3c341 Update linter
• b2be58a Merge pull request #1881 from romainmenke/improve-sourcemap-performance--phil...
• Additional commits viewable in compare view

Removes axios

Updates @solana/wallet-adapter-wallets from 0.15.5 to 0.19.32

Release notes

Sourced from @​solana/wallet-adapter-wallets's releases.

@​solana/wallet-adapter-wallets@​0.19.32

Patch Changes

• Updated dependencies [ba90b65]
  • @​solana/wallet-adapter-trezor@​0.1.2

@​solana/wallet-adapter-wallets@​0.19.31

Patch Changes

• Updated dependencies [375e548]
  • @​solana/wallet-adapter-trezor@​0.1.1

@​solana/wallet-adapter-wallets@​0.19.30

Patch Changes

• Updated dependencies [dc81bc9]
  • @​solana/wallet-adapter-keystone@​0.1.15

@​solana/wallet-adapter-wallets@​0.19.29

Patch Changes

• Updated dependencies [84e2250]
  • @​solana/wallet-adapter-keystone@​0.1.14

@​solana/wallet-adapter-wallets@​0.19.28

Patch Changes

• Updated dependencies [f535bac]
  • @​solana/wallet-adapter-keystone@​0.1.13

@​solana/wallet-adapter-wallets@​0.19.27

Patch Changes

• Updated dependencies [3b38a73]
  • @​solana/wallet-adapter-coinbase@​0.1.19

@​solana/wallet-adapter-wallets@​0.19.26

Patch Changes

• Updated dependencies [bef1cad]
  • @​solana/wallet-adapter-particle@​0.1.12

@​solana/wallet-adapter-wallets@​0.19.25

Patch Changes

• Updated dependencies [a9f41dde]
• Updated dependencies [7d41f2fe]
  • @​solana/wallet-adapter-trezor@​0.1.0
  • @​solana/wallet-adapter-particle@​0.1.11

... (truncated)

Commits

• See full diff in compare view

Updates json5 from 1.0.1 to 1.0.2

Release notes

Sourced from json5's releases.

v1.0.2

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295). This has been backported to v1. (#298)

Changelog

Sourced from json5's changelog.

Unreleased [code, diff]

v2.2.3 [code, diff]

• Fix: [email protected] is now the 'latest' release according to npm instead of v1.0.2. (#299)

v2.2.2 [code, diff]

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1 [code, diff]

• Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0 [code, diff]

• New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

v2.1.3 [code, diff]

• Fix: An out of memory bug when parsing numbers has been fixed. (#228, #229)

v2.1.2 [code, diff]

... (truncated)

Commits

• a62db1e 1.0.2
• e0c23fe docs: update CHANGELOG for v1.0.2
• 62a6540 fix: add proto to objects and arrays
• See full diff in compare view

Updates minimatch from 3.0.4 to 3.1.2

Commits

• 699c459 3.1.2
• 2f2b5ff fix: trim pattern
• 25d7c0d 3.1.1
• 55dda29 fix: treat nocase:true as always having magic
• 5e1fb8d 3.1.0
• f8145c5 Add 'allowWindowsEscape' option
• 570e8b1 add publishConfig for v3 publishes
• 5b7cd33 3.0.6
• 20b4b56 [fix] revert all breaking syntax changes
• 2ff0388 document, expose, and test 'partial:true' option
• Additional commits viewable in compare view

Updates socket.io-parser from 4.2.1 to 4.2.4

Release notes

Sourced from socket.io-parser's releases.

4.2.4

Bug Fixes

• ensure reserved events cannot be used as event names (d9db473)
• properly detect plain objects (b0e6400)

Links

• Diff: socketio/socket.io-parser@4.2.3...4.2.4

4.2.3

⚠️ This release contains an important security fix ⚠️

A malicious client could send a specially crafted HTTP request, triggering an uncaught exception and killing the Node.js process:

TypeError: Cannot convert object to primitive value
       at Socket.emit (node:events:507:25)
       at .../node_modules/socket.io/lib/socket.js:531:14

Please upgrade as soon as possible.

Bug Fixes

• check the format of the event name (3b78117)

Links

• Diff: socketio/socket.io-parser@4.2.2...4.2.3

4.2.2

Bug Fixes

• calling destroy() should clear all internal state (22c42e3)
• do not modify the input packet upon encoding (ae8dd88)

Links

• Diff: socketio/socket.io-parser@4.2.1...4.2.2

Changelog

Sourced from socket.io-parser's changelog.

4.2.4 (2023-05-31)

Bug Fixes

• ensure reserved events cannot be used as event names (d9db473)
• properly detect plain objects (b0e6400)

3.4.3 (2023-05-22)

Bug Fixes

• check the format of the event name (2dc3c92)

4.2.3 (2023-05-22)

Bug Fixes

• check the format of the event name (3b78117)

4.2.2 (2023-01-19)

Bug Fixes

• calling destroy() should clear all internal state (22c42e3)
• do not modify the input packet upon encoding (ae8dd88)

3.3.3 (2022-11-09)

Bug Fixes

• check the format of the index of each attachment (fb21e42)

3.4.2 (2022-11-09)

... (truncated)

Commits

• 164ba2a chore(release): 4.2.4
• b0e6400 fix: properly detect plain objects
• d9db473 fix: ensure reserved events cannot be used as event names
• 6a5a004 docs(changelog): include changelog for release 3.4.3
• b6c824f chore(release): 4.2.3
• dcc70d9 refactor: export typescript declarations for the commonjs build
• 3b78117 fix: check the format of the event name
• 0841bd5 chore: bump ua-parser-js from 1.0.32 to 1.0.33 (#121)
• 28dd668 chore(release): 4.2.2
• 22c42e3 fix: calling destroy() should clear all internal state
• Additional commits viewable in compare view

Updates word-wrap from 1.2.3 to 1.2.5

Release notes

Sourced from word-wrap's releases.

1.2.5

Changes:

Reverts default value for options.indent to two spaces ' '.

Full Changelog: jonschlinkert/word-wrap@1.2.4...1.2.5

1.2.4

What's Changed

• Remove default indent by @​mohd-akram in jonschlinkert/word-wrap#24
• 🔒fix: CVE 2023 26115 (2) by @​OlafConijn in jonschlinkert/word-wrap#41
• 🔒 fix: CVE-2023-26115 by @​aashutoshrathi in jonschlinkert/word-wrap#33
• chore: publish workflow by @​OlafConijn in jonschlinkert/word-wrap#42

New Contributors

• @​mohd-akram made their first contribution in jonschlinkert/word-wrap#24
• @​OlafConijn made their first contribution in jonschlinkert/word-wrap#41
• @​aashutoshrathi made their first contribution in jonschlinkert/word-wrap#33

Full Changelog: jonschlinkert/word-wrap@1.2.3...1.2.4

Commits

• 207044e 1.2.5
• 9894315 revert default indent
• f64b188 run verb to generate README
• 03ea082 Merge pull request #42 from jonschlinkert/chore/publish-workflow
• 420dce9 Merge pull request #41 from jonschlinkert/fix/CVE-2023-26115-2
• bfa694e Update .github/workflows/publish.yml
• ace0b3c chore: bump version to 1.2.4
• 6fd7275 chore: add publish workflow
• 30d6daf chore: fix test
• 655929c chore: remove package-lock
• Additional commits viewable in compare view

Updates ws from 7.5.9 to 7.5.10

Release notes

Sourced from ws's releases.

7.5.10

Bug fixes

• Backported e55e5106 to the 7.x release line (22c28763).

Commits

• d962d70 [dist] 7.5.10
• 22c2876 [security] Fix crash when the Upgrade header cannot be read (#2231)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.