Bump the npm_and_yarn group across 2 directories with 30 updates

[dependabot]

By approving this PR, you are confirming that you have adequately and effectively reviewed this change.

Searchable Hashes

• 89937015dcba209094d2161dc6dec4f5
• b54f447537b87f295f6f5b3cda8f5d72
• 62b2d9aab30bdea00fc5491c77b44f12
• 8c654db2050789bafe588081a5b9ce69
• 62b2d9aab30bdea00fc5491c77b44f12
• a60b4b1c085a1d8a8b064b426bda1bc8
• 3824535ee3fdea2180bf5eb32691f74d
• a7556d27eee57978836bf15ebe086b11
• e789f5b1467a097de6ffddbd19db62fc
• a9558b6ed3f02f3ae8fcb74edfc1e2e5
• 84e62eae7b3fe633fbf1e04418f5d6a8
• ca29de0847c863adc9c0aa5ade3c2fd1
• 57629cd3908ee4fdd39c510c1d73c821
• f37e8c159bfcc52fb075d1fbb2ad14ad
• be10424e1d774907c825aeb82f1b9518
• 81bb70ba877719ecdbf796776a2bdb3d
• e1ce189806a1f96de882a9d62868f7b1
• 3dc72e8a09c5116b374d91e8b4515cac
• adbd4390074a01d0debca1c41ef3c289
• e334352a14d4129e823653a06cac481c
• 8eba216067e75d49ec7cf0eb050e4ed1
• 925762d5c8a770eee936f38ea0c2ca71
• f963efc90b7d5f34141b2bef73ce59c4
• 4b02118a36befd5be3bafc8d04620bae
• 1e840d94bb6b74c938f30dae6d982ef3
• 4e8310dc2971ce77dd34791c484e40b4
• fb7dae1b28e16a6334b9efe9a903cba0
• bc38bb8fd0214438ca5087f5ce006c18
• c14937af47dcdc1b189ff4bb90581921
• 803f64cb285c91f135e93dee8459f4dd
• ec04a21e9e450d0d35a1fd61a1def385
• 7fa41b7cfd82ea1859386a9f48a38fc9
• 559172332bf88d3f6f2d30ce20155e31
• b66562a4664faa82a582d9279b2836a9
• 644976be2f20a65feb6c9bf6ba93c5bf
• 3ba1c67fa452481466272383bb62ba3b
• 4e0021e271adc420e246f461c15996f8
• 19402e64c34732af5df98fa2aa772387
• 5a1dc99a819d261eefe0b446cbe5d394
• b90c213208a2c9930675866bd81e09ab
• b4d82b6fda13807252af8d81609df42e
• 4792505d32ba3eba7a5c8b6f271bed80
• 0872970e94fa5c637c75f8da602aac40
• 28104a292b08eb8e55a780a75c873d48
• d943a69ac1a4b08f5cbe497a075cdd7f
• e20612419eb8a965115abfac826603f0
• 38e8157ced08d8d6e7f35d0b74dcffc1
• 7f87a4f03d0274db780945aa3db292f2
• c3a0864402583db57f8e980ff4657e23
• 108f7cdbb0ba648df7e491fc6756d31d
• 5e7ce480698de64cdb2d882fd00deb32
• 0338c4ad133688392127c10ff28e5944
• 2e9c00ad8022e34c88cbfc5851eb6e52
• 0848084df6cfa4017227dd824139992c
• dbda3e5422118d31db30f0f44c0b23aa
• dea0955b4067ddd003f7b142eb5e639b
• d2d322766da8d70abfed231a0de54660
• 0fec0470fa3e174013b7687c4ed42baa
• 479e0da1a6fd500a9a63117e0b8ae816
• e2f33c8279a040c2c58f2e9e392d0a2a
• 08f37b8726aca5648e3166a476619dfb
• 44279606f2d55ef0e1e33ecb80c37b93
• be10424e1d774907c825aeb82f1b9518
• b19e14f6c9622f53e676efba361ddea0

_{The above information was added by dependabot-augmentor.}

Bumps the npm_and_yarn group with 18 updates in the / directory:

Package	From	To
cross-spawn	7.0.3	7.0.5
semver	5.7.1	5.7.2
semver	6.3.0	6.3.1
tmp	0.2.1	0.2.4
loader-utils	3.2.0	3.2.1
webpack	5.89.0	5.94.0
postcss	8.4.31	8.4.32
webpack-dev-server	4.15.1	5.2.1
@adobe/css-tools	4.0.1	4.4.4
brace-expansion	1.1.11	1.1.12
@octokit/plugin-paginate-rest	6.1.2	11.4.4-cjs.2
lerna	8.0.2	8.2.3
braces	3.0.2	3.0.3
ejs	3.1.9	3.1.10
got	9.6.0	removed
alex	8.2.0	11.0.1
micromatch	4.0.5	4.0.8
ws	7.5.9	7.5.10
puppeteer	12.0.1	24.16.2

Bumps the npm_and_yarn group with 1 update in the /packages/react-scripts directory: webpack-dev-server.

Updates cross-spawn from 7.0.3 to 7.0.5

Changelog

Sourced from cross-spawn's changelog.

7.0.5 (2024-11-07)

Bug Fixes

• fix escaping bug introduced by backtracking (640d391)

7.0.4 (2024-11-07)

Bug Fixes

• disable regexp backtracking (#160) (5ff3a07)

Commits

• 0852683 chore(release): 7.0.5
• 640d391 fix: fix escaping bug introduced by backtracking
• bff0c87 chore: remove codecov
• a7c6abc chore: replace travis with github workflows
• 9b9246e chore(release): 7.0.4
• 5ff3a07 fix: disable regexp backtracking (#160)
• 9521e2d chore: fix tests in recent node js versions
• 97ded39 chore: convert package lock
• d52b6b9 chore: remove unused argument (#156)
• 5d84384 chore: add travis jobs on ppc64le (#142)
• Additional commits viewable in compare view

Updates semver from 5.7.1 to 5.7.2

Release notes

Sourced from semver's releases.

v5.7.2

5.7.2 (2023-07-10)

Bug Fixes

• 2f8fd41 #585 better handling of whitespace (#585) (@​joaomoreno, @​lukekarrys)

Changelog

Sourced from semver's changelog.

5.7.2 (2023-07-10)

Bug Fixes

• 2f8fd41 #585 better handling of whitespace (#585) (@​joaomoreno, @​lukekarrys)

5.7

• Add minVersion method

5.6

• Move boolean loose param to an options object, with backwards-compatibility protection.
• Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

• Add version coercion capabilities

5.4

• Add intersection checking

5.3

• Add minSatisfying method

5.2

• Add prerelease(v) that returns prerelease components

5.1

• Add Backus-Naur for ranges
• Remove excessively cute inspection methods

5.0

• Remove AMD/Browserified build artifacts
• Fix ltr and gtr when using the * range
• Fix for range * with a prerelease identifier

Commits

• f8cc313 chore: release 5.7.2
• 2f8fd41 fix: better handling of whitespace (#585)
• deb5ad5 chore: @​npmcli/template-oss@​4.16.0
• See full diff in compare view

Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.

Updates semver from 6.3.0 to 6.3.1

Release notes

Sourced from semver's releases.

v5.7.2

5.7.2 (2023-07-10)

Bug Fixes

• 2f8fd41 #585 better handling of whitespace (#585) (@​joaomoreno, @​lukekarrys)

Changelog

Sourced from semver's changelog.

5.7.2 (2023-07-10)

Bug Fixes

• 2f8fd41 #585 better handling of whitespace (#585) (@​joaomoreno, @​lukekarrys)

5.7

• Add minVersion method

5.6

• Move boolean loose param to an options object, with backwards-compatibility protection.
• Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

• Add version coercion capabilities

5.4

• Add intersection checking

5.3

• Add minSatisfying method

5.2

• Add prerelease(v) that returns prerelease components

5.1

• Add Backus-Naur for ranges
• Remove excessively cute inspection methods

5.0

• Remove AMD/Browserified build artifacts
• Fix ltr and gtr when using the * range
• Fix for range * with a prerelease identifier

Commits

• f8cc313 chore: release 5.7.2
• 2f8fd41 fix: better handling of whitespace (#585)
• deb5ad5 chore: @​npmcli/template-oss@​4.16.0
• See full diff in compare view

Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.

Updates tmp from 0.2.1 to 0.2.4

Changelog

Sourced from tmp's changelog.

v0.2.2 (2024-02-28)

🐛 Bug Fix

• #278 Closes #268: Revert "fix #246: remove any double quotes or single quotes… (@​mbargiel)

📝 Documentation

• #279 Closes #266: move paragraph on graceful cleanup to the head of the documentation (@​silkentrance)

Committers: 5

• Carsten Klein (@​silkentrance)
• Dave Nicolson (@​dnicolson)
• KARASZI István (@​raszi)
• Maxime Bargiel (@​mbargiel)
• @​robertoaceves

Commits

• 08fa3ab Update version
• 1cf4ec5 Merge commit from fork
• 188b25e Fix GHSA-52f5-9888-hmc6
• 73b9fe4 Add test case for GHSA-52f5-9888-hmc6
• b8e2f29 Remove broken tests
• 2892a02 Remove outdated URL
• f592318 Reformat package.json
• 995ac8c Merge pull request #301 from raszi/dependabot/npm_and_yarn/braces-3.0.3
• caa758d Bump braces from 3.0.2 to 3.0.3
• 5f0b252 Merge pull request #297 from raszi/feat/release-v0.2.3
• Additional commits viewable in compare view

Updates loader-utils from 3.2.0 to 3.2.1

Release notes

Sourced from loader-utils's releases.

v3.2.1

3.2.1 (2022-11-11)

Bug Fixes

• ReDoS problem (#224) (d2d752d)

Changelog

Sourced from loader-utils's changelog.

3.2.1 (2022-11-11)

Bug Fixes

• ReDoS problem (#224) (d2d752d)

Commits

• a3fd3ca chore(release): 3.2.1
• d2d752d fix: ReDoS problem (#224)
• 52cd134 chore(deps): bump minimist from 1.2.5 to 1.2.6 (#209)
• 9fe2381 chore: add .gitattributes for normalizing end of lines - fixes #203 (#204)
• See full diff in compare view

Updates webpack from 5.89.0 to 5.94.0

Release notes

Sourced from webpack's releases.

v5.94.0

Bug Fixes

• Added runtime condition for harmony reexport checked
• Handle properly data/http/https protocols in source maps
• Make bigint optimistic when browserslist not found
• Move @​types/eslint-scope to dev deps
• Related in asset stats is now always an array when no related found
• Handle ASI for export declarations
• Mangle destruction incorrect with export named default properly
• Fixed unexpected asi generation with sequence expression
• Fixed a lot of types

New Features

• Added new external type "module-import"
• Support webpackIgnore for new URL() construction
• [CSS] @import pathinfo support

Security

• Fixed DOM clobbering in auto public path

v5.93.0

Bug Fixes

• Generate correct relative path to runtime chunks
• Makes DefinePlugin quieter under default log level
• Fixed mangle destructuring default in namespace import
• Fixed consumption of eager shared modules for module federation
• Strip slash for pretty regexp
• Calculate correct contenthash for CSS generator options

New Features

• Added the binary generator option for asset modules to explicitly keep source maps produced by loaders
• Added the modern-module library value for tree shakable output
• Added the overrideStrict option to override strict or non-strict mode for javascript modules

v5.92.1

Bug Fixes

• Doesn't crash with an error when the css experiment is enabled and contenthash is used

v5.92.0

Bug Fixes

• Correct tidle range's comutation for module federation
• Consider runtime for pure expression dependency update hash
• Return value in the subtractRuntime function for runtime logic

... (truncated)

Commits

• eabf85d chore(release): 5.94.0
• 955e057 security: fix DOM clobbering in auto public path
• 9822387 test: fix
• cbb86ed test: fix
• 5ac3d7f fix: unexpected asi generation with sequence expression
• 2411661 security: fix DOM clobbering in auto public path
• b8c03d4 fix: unexpected asi generation with sequence expression
• f46a03c revert: do not use heuristic fallback for "module-import"
• 60f1898 fix: do not use heuristic fallback for "module-import"
• 66306aa Revert "fix: module-import get fallback from externalsPresets"
• Additional commits viewable in compare view

Updates postcss from 8.4.31 to 8.4.32

Release notes

Sourced from postcss's releases.

8.4.32

• Fixed postcss().process() types (by @​ferreira-tb).

Changelog

Sourced from postcss's changelog.

8.4.32

• Fixed postcss().process() types (by Andrew Ferreira).

Commits

• a0d9f10 Release 8.4.32 version
• 0146b3e Add Node.js 21 to CI
• 2398534 Update dependencies
• 1918533 Merge pull request #1902 from ferreira-tb/main
• 395e6dc Fix ProcessOptions interface
• fa8cd15 Update dependencies
• 199a7c4 Typo
• 2528047 Update EM link
• See full diff in compare view

Updates webpack-dev-server from 4.15.1 to 5.2.1

Release notes

Sourced from webpack-dev-server's releases.

v5.2.1

5.2.1 (2025-03-26)

Security

• cross-origin requests are not allowed unless allowed by Access-Control-Allow-Origin header
• requests with an IP addresses in the Origin header are not allowed to connect to WebSocket server unless configured by allowedHosts or it different from the Host header

The above changes may make the dev server not work if you relied on such behavior, but unfortunately they carry security risks, so they were considered as fixes.

Bug Fixes

• prevent overlay for errors caught by React error boundaries (#5431) (8c1abc9)
• take the first network found instead of the last one, this restores the same behavior as 5.0.4 (#5411) (ffd0b86)

v5.2.0

5.2.0 (2024-12-11)

Features

• added getClientEntry and getClientHotEntry methods to get clients entries (dc642a8)

Bug Fixes

• speed up initial client bundling (145b5d0)

v5.1.0

5.1.0 (2024-09-03)

Features

• add visual progress indicators (a8f40b7)
• added the app option to be Function (by default only with connect compatibility frameworks) (3096148)
• allow the server option to be Function (#5275) (02a1c6d)
• http2 support for connect and connect compatibility frameworks which support HTTP2 (#5267) (6509a3f)

Bug Fixes

• check the platform property to determinate the target (#5269) (c3b532c)
• ipv6 output (#5270) (06005e7)
• replace rimraf with rm (#5162) (1a1561f)
• replace default gateway (#5255) (f5f0902)
• support devServer: false (#5272) (8b341cb)

v5.0.4

5.0.4 (2024-03-19)

... (truncated)

Changelog

Sourced from webpack-dev-server's changelog.

5.2.1 (2025-03-26)

Security

• cross-origin requests are not allowed unless allowed by Access-Control-Allow-Origin header
• requests with an IP addresses in the Origin header are not allowed to connect to WebSocket server unless configured by allowedHosts or it different from the Host header

The above changes may make the dev server not work if you relied on such behavior, but unfortunately they carry security risks, so they were considered as fixes.

Bug Fixes

• prevent overlay for errors caught by React error boundaries (#5431) (8c1abc9)
• take the first network found instead of the last one, this restores the same behavior as 5.0.4 (#5411) (ffd0b86)

5.2.0 (2024-12-11)

Features

• added getClientEntry and getClientHotEntry methods to get clients entries (dc642a8)

Bug Fixes

• speed up initial client bundling (145b5d0)

5.1.0 (2024-09-03)

Features

• add visual progress indicators (a8f40b7)
• added the app option to be Function (by default only with connect compatibility frameworks) (3096148)
• allow the server option to be Function (#5275) (02a1c6d)
• http2 support for connect and connect compatibility frameworks which support HTTP2 (#5267) (6509a3f)

Bug Fixes

• check the platform property to determinate the target (#5269) (c3b532c)
• ipv6 output (#5270) (06005e7)
• replace rimraf with rm (#5162) (1a1561f)
• replace default gateway (#5255) (f5f0902)
• support devServer: false (#5272) (8b341cb)

5.0.4 (2024-03-19)

Bug Fixes

... (truncated)

Commits

• 0d22a08 chore(release): 5.2.1
• 6045b1e chore(deps): update (#5444)
• ffd0b86 fix: take the first network found instead of the last one, this restores the ...
• 9ea7b08 ci: update dependency-review-action (#5442)
• 5c9378b Merge commit from fork
• d2575ad Merge commit from fork
• 8c1abc9 fix: prevent overlay for errors caught by React error boundaries (#5431)
• 5a39c70 ci: update codecov/codecov-action to v5 (#5406)
• 55220a8 chore(deps-dev): bump the dependencies group across 1 directory with 4 update...
• 09f6f8e chore(deps): bump the dependencies group across 1 directory with 2 updates (#...
• Additional commits viewable in compare view

Updates @adobe/css-tools from 4.0.1 to 4.4.4

Changelog

Sourced from @​adobe/css-tools's changelog.

[4.4.4] - 2025-07-22

Changed

• Switch from yarn to npm for package management
• Switch from eslint to biome for code formatting and linting
• Reformat codebase to comply with biome recommendations
• Switch from webpack to rollup for bundling

Fixed

• Fix module exports to ensure proper compatibility with bundlers
• Add validation check to prevent future export issues

[4.4.3] - 2025-05-15

Security

• Fix polynomial regular expression vulnerability on uncontrolled data
• Refactor code to enable GitHub security static analysis

Performance

• Improve parsing performance with minor optimizations
• Replace regex patterns with string search (indexOf-based) for better performance

Added

• Add new utility functions with comprehensive unit tests
• Add improved formatting for CSS Grid template areas (#283 by @​jogibear9988)

Fixed

• Fix TypeScript error with ConstructorParameters in Parcel bundler (#444)

[4.4.2] - 2025-02-12

Fixed

• Fix regular expression for parsing quoted values in parentheses

[4.4.0] - 2024-06-05

Added

• Add support for CSS @starting-style at-rule (#319)

[4.3.3] - 2024-01-24

Changed

• Update package export configuration (#271)

[4.3.2] - 2023-11-28

Security

• Fix ReDoS vulnerability with crafted CSS strings - CVE-2023-48631

Fixed

... (truncated)

Commits

• See full diff in compare view

Updates brace-expansion from 1.1.11 to 1.1.12

Release notes

Sourced from brace-expansion's releases.

v1.1.12

• pkg: publish on tag 1.x c460dbd
• fmt ccb8ac6
• Fix potential ReDoS Vulnerability or Inefficient Regular Expression (#65) c3c73c8

---

juliangruber/brace-expansion@v1.1.11...v1.1.12

Commits

• 44f33b4 1.1.12
• c460dbd pkg: publish on tag 1.x
• ccb8ac6 fmt
• c3c73c8 Fix potential ReDoS Vulnerability or Inefficient Regular Expression (#65)
• See full diff in compare view

Updates @octokit/plugin-paginate-rest from 6.1.2 to 11.4.4-cjs.2

Release notes

Sourced from @​octokit/plugin-paginate-rest's releases.

v11.4.4-cjs.2

11.4.4-cjs.2 (2025-02-26)

[!IMPORTANT] This is a special release to backport newer changes to CJS and address a ReDos vulnerability

Bug Fixes

• deps: update @octokit/plugin-rest-endpoint-methods (2c70eaf)

v11.4.4-cjs.1

11.4.4-cjs.1 (2025-02-26)

[!IMPORTANT] This is a special release to backport newer changes to CJS and address a ReDos vulnerability

Bug Fixes

• release: set prerelease flag for correct channel (ce534d9) See octokit/plugin-paginate-rest.js@v11.3.1...v11.4.4-cjs.1 for the full comparision

Reverts

• Revert "docs(README): update examples to use ESM (#611)" (1389b71)
• Revert "feat: package is now ESM (#596)" (64ba6f4)
• Revert "fix(pkg): add default fallback and types export (#612)" (27a8552)

v11.4.3

11.4.3 (2025-02-24)

Bug Fixes

• types: correct pagination return type for data which is an array (#662) (9a51aad), closes #661

v11.4.2

11.4.2 (2025-02-13)

Bug Fixes

• types: add back the pagination keys (#653) (8b8c500), closes #652

v11.4.1

... (truncated)

Commits

• 2c70eaf fix(deps): update @octokit/plugin-rest-endpoint-methods
• 1bf98ba test: fixup tests
• 57d0842 build: lockfile update
• edc1984 build: bump devDependencies
• 738e4b3 Merge branch 'main' into cjs
• ce534d9 fix(release): set prerelease flag for correct channel
• 1c297ca chore(deps): update dependency semantic-release-plugin-update-version-in-file...
• 60d26d9 chore(deps): update dependency prettier to v3.5.2 (#664)
• 9a51aad fix(types): correct pagination return type for data which is an array (#662)
• 8b8c500 fix(types): add back the pagination keys (#653)
• Additional commits viewable in compare view

Updates lerna from 8.0.2 to 8.2.3

Release notes

Sourced from lerna's releases.

v8.2.3

8.2.3 (2025-06-29)

Bug Fixes

• use internal fork of unmaintained strong-log-transformer (#4195) (7115485)

v8.2.2

8.2.2 (2025-04-10)

Bug Fixes

• use searchStrategy: global to fix breaking change behaviour after upgrading cosmiconfig to 9.0.0 (#4159) (6242511)
• version: disable legacy peer deps behavior by default (#4175) (0cd3241)

v8.2.1

8.2.1 (2025-03-03)

Note: Version bump only for package lerna-monorepo

v8.2.0

8.2.0 (2025-02-19)

Bug Fixes

• drop strip-ansi in favor of native stripVTControlCharacters (#4095) (9e4ac9c)

Features

• allow custom working dir for detectProjects (#4148) (08d1d0d)

v8.1.9

8.1.9 (2024-10-31)

Bug Fixes

• add extends property in schema (#4075) (28c8ef2)
• core: avoid reading empty .config.json, upgrade [email protected] (#4062) (960bdd9)
• update nx support to latest v20 (#4103) (cb37f19)
• version: enable changing commit message when using amend (#3954) (529e83f)

Features

• publish: support full file path for --summary-file (#4039) (cfd573a)

... (truncated)

Changelog

Sourced from lerna's changelog.

8.2.3 (2025-06-29)

Bug Fixes

• use internal fork of unmaintained strong-log-transformer (#4195) (7115485)

8.2.2 (2025-04-10)

Note: Version bump only for package lerna

8.2.1 (2025-03-03)

Note: Version bump only for package lerna

8.2.0 (2025-02-19)

Bug Fixes

• drop strip-ansi in favor of native stripVTControlCharacters (#4095) (9e4ac9c)

Features

• allow custom working dir for detectProjects (#4148) (08d1d0d)

8.1.9 (2024-10-31)

Bug Fixes

• add extends property in schema (#4075) (28c8ef2)
• core: avoid reading empty .config.json, upgrade [email protected] (#4062) (960bdd9)
• update nx support to latest v20 (#4103) (cb37f19)

8.1.8 (2024-08-05)

Bug Fixes

• publish: upgrade @​npmcli/arborist to 7.5.4 (#4058) (89de0eb)

8.1.7 (2024-07-21)

Bug Fixes

• set explicit strip-ansi dependency (#4045) (6e5cfbc)

8.1.6 (2024-07-05)

Bug Fixes

• set explicit string-width dependency (#4038) (5f3603a)

... (truncated)

Commits

• 25331af chore(misc): publish 8.2.3
• 7115485 fix: use internal fork of unmaintained strong-log-transformer (#4195)
• bde7882 chore: kill legacy linting setup and migrate from globby to tinyglobby (#4179)
• 6ea835d chore(misc): publish 8.2.2
• 95ab1cb chore(misc): publish 8.2.1
• 770220c chore(deps): bump @​octokit/rest from 19.0.11 to 20.1.2 (#4154)
• 58cdfec chore(misc): publish 8.2.0
• 08d1d0d feat: allow custom working dir for detectProjects (#4148)
• 0dd2cb9 chore: update to latest dependencies (#4151)
• 9e4ac9c fix: drop strip-ansi in favor of native stripVTControlCharacters (#4095)
• Additional commits viewable in compare view

Updates @octokit/request from 6.2.8 to 8.4.1

Release notes

Sourced from @​octokit/request's releases.

v8.4.1

8.4.1 (2025-02-15)

Bug Fixes

• ReDos regex vulnerability, reported by @​DayShift (#741) (356411e)

v8.4.0

8.4.0 (2024-04-09)

Features

• re-add redirect request option (#636) (abc4955), closes #599

v8.3.1

8.3.1 (2024-04-05)

Bug Fixes

• upgrade @octokit/endpoint (4e7127c)

v8.3.0

8.3.0 (2024-04-05)

Bug Fixes

• upgrade @octokit/types (6822e8b)

Features

• security: Add provenance (#685) (2e67925)

v8.2.0

8.2.0 (2024-02-09)

Features

• add documentation link in error message (#667) (dbfeab2)

v8.1.6

8.1.6 (2023-11-22)

Bug Fixes

... (truncated)

Commits

• 356411e fix: ReDos regex vulnerability, reported by @​DayShift (#741)
• abc4955 feat: re-add redirect request option (#636)
• 4e7127c fix: upgrade @octokit/endpoint
• 2e67925 feat(security): Add provenance (#685)
• 6822e8b fix: upgrade @octokit/types
• dbfeab2 feat: add documentation link in error message (#667)
• c013de4 docs: fix spelling errors (#671)
• 3d22c38 chore(deps): update dependency prettier to v3.2.5
• 984ec17 chore(deps): update dependency esbuild to ^0.20.0
• 2a9cf78 ci(action): update peter-evans/create-or-update-comment action to v4
• Additional commits viewable in compare view

Updates @octokit/request-error from 3.0.3 to 5.1.1

Release notes

Sourced from @​octokit/request-error's releases.

v5.1.1

5.1.1 (2025-02-14)

Bug Fixes

• ReDos regex vulnerability, reported by @​dayshift (12a14f0)

v5.1.0

5.1.0 (2024-04-05)

Bug Fixes

• upgrade @octokit/types to v13 (3af20bd)

Features

• security: Add provenance (#416) (94147e8)

v5.0.1

5.0.1 (2023-09-23)

Bug Fixes

• deps: update dependency @​octokit/types to v12 (#366) (590fc39)

v5.0.0

5.0.0 (2023-07-07)<