fix(deps): update all dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@changesets/cli (source)	2.27.11 -> 2.27.12
@commitlint/cli (source)	19.6.1 -> 19.7.1
@commitlint/config-conventional (source)	19.6.0 -> 19.7.1
@manypkg/cli (source)	0.21.4 -> 0.23.0
@testing-library/react	16.1.0 -> 16.2.0
@types/lodash (source)	4.17.13 -> 4.17.15
@types/node (source)	22.10.3 -> 22.13.0
core-js (source)	3.39.0 -> 3.40.0
lint-staged	15.3.0 -> 15.4.3
pnpm (source)	9.15.2 -> 9.15.5
typescript (source)	5.7.2 -> 5.7.3
vite (source)	6.0.6 -> 6.0.11

---

Release Notes

changesets/changesets (@​changesets/cli)

v2.27.12

Compare Source

Patch Changes

• #​1562 a0f87f1 Thanks @​Netail, @​cefn! - Fixed changelog application when executing using npx and similar tools

• Updated dependencies [a0f87f1]:

  • @​changesets/apply-release-plan@​7.0.8

conventional-changelog/commitlint (@​commitlint/cli)

v19.7.1

Compare Source

Note: Version bump only for package @​commitlint/cli

conventional-changelog/commitlint (@​commitlint/config-conventional)

v19.7.1

Compare Source

Note: Version bump only for package @​commitlint/config-conventional

Thinkmill/manypkg (@​manypkg/cli)

v0.23.0

Compare Source

Minor Changes

• #​236 1a5ea55 Thanks @​VanTanev! - Change the ROOT_HAS_DEV_DEPENDENCIES rule to ROOT_HAS_PROD_DEPENDENCIES. Monorepo root should use devDependencies instead of dependencies for better support of production-only installs, useful in eg Docker builds.

v0.22.0

Compare Source

Minor Changes

• #​231 aeb50f5 Thanks @​VanTanev! - Upgraded package-json, semver and sembear dependencies.

• #​226 2fafd9a Thanks @​VanTanev! - Replace chalk with picocolors

• #​228 1cbdcb9 Thanks @​VanTanev! - Remove the find-up dependency.

• #​231 aeb50f5 Thanks @​VanTanev! - Node.js version requirement raised to >= 18.0.0

• #​224 3c3198a Thanks @​VanTanev! - Replace spawndamnit with tinyexec for fewer dependencies

• #​229 4a835ed Thanks @​VanTanev! - Update validate-npm-package-name to 5.0.1 to remove one transitive dependency.

• #​225 d0f4d92 Thanks @​VanTanev! - Replace fs-extra with native node:fs/promises

testing-library/react-testing-library (@​testing-library/react)

v16.2.0

Compare Source

Features

• Add support for React error handlers (#​1354) (9618c51)

zloirock/core-js (core-js)

v3.40.0

Compare Source

• Changes v3.39.0...v3.40.0 (130 commits)
• Added Error.isError stage 3 proposal:
  • Added built-ins:
    • Error.isError
  • We have no bulletproof way to polyfill this method / check if the object is an error, so it's an enough naive implementation that is marked as .sham
• Explicit Resource Management stage 3 proposal:
  • Updated the way async disposing of only sync disposable resources, tc39/proposal-explicit-resource-management/218
• Iterator sequencing stage 2.7 proposal:
  • Reuse IteratorResult objects when possible, tc39/proposal-iterator-sequencing/17, tc39/proposal-iterator-sequencing/18, December 2024 TC39 meeting
• Added a fix of V8 < 12.8 / NodeJS < 22.10 bug with handling infinite length of set-like objects in Set methods
• Optimized DataView.prototype.{ getFloat16, setFloat16 } performance, #​1379, thanks @​LeviPesin
• Dropped unneeded feature detection of non-standard %TypedArray%.prototype.toSpliced
• Dropped possible re-usage of some non-standard / early stage features (like Math.scale) available on global
• Some other minor improvements
• Compat data improvements:
  • RegExp.escape marked as shipped from Safari 18.2
  • Promise.try marked as shipped from Safari 18.2
  • Math.f16round and DataView.prototype.{ getFloat16, setFloat16 } marked as shipped from Safari 18.2
  • Uint8Array to / from base64 and hex proposal methods marked as shipped from Safari 18.2
  • JSON.parse source text access proposal features marked as shipped from FF135
  • RegExp.escape marked as shipped from FF134
  • Promise.try marked as shipped from FF134
  • Symbol.dispose, Symbol.asyncDispose and Iterator.prototype[@​@​dispose] marked as shipped from FF135
  • JSON.parse source text access proposal features marked as shipped from Bun 1.1.43
  • Fixed NodeJS version where URL.parse was added - 22.1 instead of 22.0
  • Added Deno 2.1 compat data mapping
  • Added Rhino 1.8.0 compat data with significant number of modern features
  • Added Electron 35 compat data mapping
  • Updated Opera 115+ compat data mapping
  • Added Opera Android 86 and 87 compat data mapping

lint-staged/lint-staged (lint-staged)

v15.4.3

Compare Source

Patch Changes

• #​1512 cbfed1d Thanks @​tarik02! - Adjust TypeScript types for the default export so that it can be used as a value without error TS2693.

v15.4.2

Compare Source

Patch Changes

• #​1509 8827ebf Thanks @​iiroj! - Change lint-staged's dependencies to use caret (^) ranges instead of tilde (~). This makes it easier for package managers to perform dependency management when minor-level updates are also permitted instead of just patch-level.

v15.4.1

Compare Source

Patch Changes

• #​1504 1c7a45e Thanks @​iiroj! - Default TypeScript config filenames match JS equivalents.

• #​1504 9cc18c9 Thanks @​iiroj! - Add missing conditional exports syntax for TypeScript types.

v15.4.0

Compare Source

Minor Changes

• #​1500 a8ec1dd Thanks @​iiroj! - Lint-staged now provides TypeScript types for the configuration and main Node.js API. You can use the JSDoc syntax in your JS configuration files:

  /**
   * @​filename: lint-staged.config.js
   * @​type {import('lint-staged').Configuration}
   */
  export default {
    '*': 'prettier --write',
  }

  It's also possible to use the .ts file extension for the configuration if your Node.js version supports it. The --experimental-strip-types flag was introduced in Node.js v22.6.0 and unflagged in v23.6.0, enabling Node.js to execute TypeScript files without additional configuration.

  export NODE_OPTIONS="--experimental-strip-types"
  
  npx lint-staged --config lint-staged.config.ts

Patch Changes

• #​1501 9b79364 Thanks @​iiroj! - Handle possible failures when logging user shell for debug info.

pnpm/pnpm (pnpm)

v9.15.5: pnpm 9.15.5

Compare Source

Patch Changes

• Verify that the package name is valid when executing the publish command.
• When running pnpm install, the preprepare and postprepare scripts of the project should be executed #​8989.
• Quote args for scripts with shell-quote to support new lines (on POSIX only) #​8980.
• Proxy settings should be respected, when resolving Git-hosted dependencies #​6530.
• Replace strip-ansi with the built-in util.stripVTControlCharacters #​9009.

Platinum Sponsors

Gold Sponsors

v9.15.4: pnpm 9.15.4

Compare Source

Patch Changes

• Ensure that recursive pnpm update --latest <pkg> updates only the specified package, with dedupe-peer-dependents=true.

Platinum Sponsors

Gold Sponsors

v9.15.3

Compare Source

microsoft/TypeScript (typescript)

v5.7.3

Compare Source

vitejs/vite (vite)

v6.0.11

Compare Source

• fix: preview.allowedHosts with specific values was not respected (#​19246) (aeb3ec8), closes #​19246
• fix: allow CORS from loopback addresses by default (#​19249) (3d03899), closes #​19249

v6.0.10

Compare Source

• fix: try parse server.origin URL (#​19241) (2495022), closes #​19241

v6.0.9

Compare Source

• fix!: check host header to prevent DNS rebinding attacks and introduce server.allowedHosts (bd896fb)
• fix!: default server.cors: false to disallow fetching from untrusted origins (b09572a)
• fix: verify token for HMR WebSocket connection (029dcd6)

v6.0.8

Compare Source

• fix: avoid SSR HMR for HTML files (#​19193) (3bd55bc), closes #​19193
• fix: build time display 7m 60s (#​19108) (cf0d2c8), closes #​19108
• fix: don't resolve URL starting with double slash (#​19059) (35942cd), closes #​19059
• fix: ensure server.close() only called once (#​19204) (db81c2d), closes #​19204
• fix: resolve.conditions in ResolvedConfig was defaultServerConditions (#​19174) (ad75c56), closes #​19174
• fix: tree shake stringified JSON imports (#​19189) (f2aed62), closes #​19189
• fix: use shared sigterm callback (#​19203) (47039f4), closes #​19203
• fix(deps): update all non-major dependencies (#​19098) (8639538), closes #​19098
• fix(optimizer): use correct default install state path for yarn PnP (#​19119) (e690d8b), closes #​19119
• fix(types): improve ESBuildOptions.include / exclude type to allow readonly (string | RegExp)[] (ea53e70), closes #​19146
• chore(deps): update dependency pathe to v2 (#​19139) (71506f0), closes #​19139

v6.0.7

Compare Source

• fix: fix minify when builder.sharedPlugins: true (#​19025) (f7b1964), closes #​19025
• fix: skip the plugin if it has been called before with the same id and importer (#​19016) (b178c90), closes #​19016
• fix(html): error while removing vite-ignore attribute for inline script (#​19062) (a492253), closes #​19062
• fix(ssr): fix semicolon injection by ssr transform (#​19097) (1c102d5), closes #​19097
• perf: skip globbing for static path in warmup (#​19107) (677508b), closes #​19107
• feat(css): show lightningcss warnings (#​19076) (b07c036), closes #​19076

---

Configuration

📅 Schedule: Branch creation - "* 0-3 * * 1" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[changeset-bot]

🦋 Changeset detected

Latest commit: a2824c2

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 17 packages

Name	Type
@flopflip/adapter-utilities	Patch
@flopflip/test-utils	Patch
@flopflip/types	Patch
@flopflip/cache	Patch
@flopflip/combine-adapters	Patch
@flopflip/cypress-plugin	Patch
@flopflip/graphql-adapter	Patch
@flopflip/http-adapter	Patch
@flopflip/launchdarkly-adapter	Patch
@flopflip/localstorage-adapter	Patch
@flopflip/localstorage-cache	Patch
@flopflip/memory-adapter	Patch
@flopflip/react	Patch
@flopflip/react-broadcast	Patch
@flopflip/react-redux	Patch
@flopflip/sessionstorage-cache	Patch
@flopflip/splitio-adapter	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[socket-security]

New, updated, and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@changesets/[email protected] 🔁 npm/@changesets/[email protected]	Transitive: eval, unsafe	+98	15.8 MB	changesets-release-bot
npm/@commitlint/[email protected] 🔁 npm/@commitlint/[email protected]	Transitive: environment, eval, filesystem, shell, unsafe	+92	4.2 MB	escapedcat
npm/@commitlint/[email protected] 🔁 npm/@commitlint/[email protected]	Transitive: filesystem	+8	133 kB	escapedcat
npm/@manypkg/[email protected] 🔁 npm/@manypkg/[email protected]	Transitive: network, shell, unsafe	+49	2.07 MB	manypkg-release-bot
npm/@testing-library/[email protected] 🔁 npm/@testing-library/[email protected]	Transitive: eval	+20	3.73 MB	brrianalexis, cmckinstry, dfcook, ...13 more
npm/@types/[email protected] 🔁 npm/@types/[email protected]	None	0	868 kB	types
npm/@types/[email protected] 🔁 npm/@types/[email protected]	None	+1	2.39 MB	types
npm/[email protected] 🔁 npm/[email protected]	None	0	1.26 MB	zloirock
npm/[email protected]	Transitive: filesystem	+5	43.7 kB	sindresorhus
npm/[email protected] 🔁 npm/[email protected]	Transitive: environment, filesystem, shell	+54	2.27 MB	okonet
npm/[email protected] 🔁 npm/[email protected]	None	0	22.7 MB	typescript-bot
npm/[email protected] 🔁 npm/[email protected]	Transitive: environment, filesystem, network, shell	+7	6.08 MB	antfu, patak, soda, ...2 more

View full report↗︎

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 87.54%. Comparing base (61b928d) to head (a2824c2).
Report is 1 commits behind head on main.

✅ All tests successful. No failed tests found.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1980   +/-   ##
=======================================
  Coverage   87.54%   87.54%           
=======================================
  Files          92       92           
  Lines        3604     3604           
  Branches      550      550           
=======================================
  Hits         3155     3155           
  Misses        430      430           
  Partials       19       19