📚 Bump the dependencies group across 1 directory with 4 updates

[dependabot]

Bumps the dependencies group with 4 updates in the / directory: @vercel/ncc, ava, esbuild and xo.

Updates @vercel/ncc from 0.38.1 to 0.38.3

Release notes

Sourced from @​vercel/ncc's releases.

0.38.3

0.38.3 (2024-11-15)

Bug Fixes

• add missing --asset-builds to cli help message (#1228) (84f8c52)

0.38.2

0.38.2 (2024-09-23)

Bug Fixes

• deps: update webpack to v5.94.0, terser to v5.33.0 (#1213) (158a1fd), closes #1193 #1194 #1177 #1204 #1195

Huge thanks to @​theoludwig 🎉

Commits

• 84f8c52 fix: add missing --asset-builds to cli help message (#1228)
• 0ff93c6 chore(deps): Bump elliptic from 6.5.7 to 6.6.0 (#1223)
• ae5bf16 chore(deps): Bump amannn/action-semantic-pull-request from 5.3.0 to 5.5.3 (#1...
• 738a2bf chore(deps-dev): Bump axios from 0.21.4 to 1.7.7 (#1209)
• 158a1fd fix(deps): update webpack to v5.94.0, terser to v5.33.0 (#1213)
• c1c9c65 chore(deps): Bump fast-xml-parser from 4.2.7 to 4.5.0 (#1219)
• 6ef9a48 chore(deps-dev): Bump express from 4.18.2 to 4.20.0 (#1214)
• 9e7451b ci: ignore failing test on macOS + run in band test-coverage (#1216)
• b2a325d chore(ci): drop node@16 from ci (#1164)
• 3c68358 chore(deps): Bump crypto-js from 4.1.1 to 4.2.0 (#1130)
• Additional commits viewable in compare view

Updates ava from 6.1.3 to 6.2.0

Release notes

Sourced from ava's releases.

v6.2.0

What's Changed

• Add filterNodeArgumentsForWorkerThreads option in avajs/ava#3336
• Add Node.js 23 to supported engines (and test matrix) in avajs/ava#3346

New Contributors

• @​thoughtsunificator made their first contribution in avajs/ava#3345

Full Changelog: avajs/ava@v6.1.3...v6.2.0

Commits

• 024de32 6.2.0
• 563fa5f Pre-release updates
• e5b355d Link to CLI options to clarify how to run tests in separate processes
• 86185b4 Add filterNodeArgumentsForWorkerThreads option
• b15df53 Update dependencies & other general maintenance
• See full diff in compare view

Updates esbuild from 0.23.0 to 0.24.0

Release notes

Sourced from esbuild's releases.

v0.24.0

This release deliberately contains backwards-incompatible changes. To avoid automatically picking up releases like this, you should either be pinning the exact version of esbuild in your package.json file (recommended) or be using a version range syntax that only accepts patch upgrades such as ^0.23.0 or ~0.23.0. See npm's documentation about semver for more information.

• Drop support for older platforms (#3902)

  This release drops support for the following operating system:

  • macOS 10.15 Catalina

  This is because the Go programming language dropped support for this operating system version in Go 1.23, and this release updates esbuild from Go 1.22 to Go 1.23. Go 1.23 now requires macOS 11 Big Sur or later.

  Note that this only affects the binary esbuild executables that are published to the esbuild npm package. It's still possible to compile esbuild's source code for these older operating systems. If you need to, you can compile esbuild for yourself using an older version of the Go compiler (before Go version 1.23). That might look something like this:

  git clone https://github.com/evanw/esbuild.git
  cd esbuild
  go build ./cmd/esbuild
  ./esbuild --version
  

• Fix class field decorators in TypeScript if useDefineForClassFields is false (#3913)

  Setting the useDefineForClassFields flag to false in tsconfig.json means class fields use the legacy TypeScript behavior instead of the standard JavaScript behavior. Specifically they use assign semantics instead of define semantics (e.g. setters are triggered) and fields without an initializer are not initialized at all. However, when this legacy behavior is combined with standard JavaScript decorators, TypeScript switches to always initializing all fields, even those without initializers. Previously esbuild incorrectly continued to omit field initializers for this edge case. These field initializers in this case should now be emitted starting with this release.

• Avoid incorrect cycle warning with tsconfig.json multiple inheritance (#3898)

  TypeScript 5.0 introduced multiple inheritance for tsconfig.json files where extends can be an array of file paths. Previously esbuild would incorrectly treat files encountered more than once when processing separate subtrees of the multiple inheritance hierarchy as an inheritance cycle. With this release, tsconfig.json files containing this edge case should work correctly without generating a warning.

• Handle Yarn Plug'n'Play stack overflow with tsconfig.json (#3915)

  Previously a tsconfig.json file that extends another file in a package with an exports map could cause a stack overflow when Yarn's Plug'n'Play resolution was active. This edge case should work now starting with this release.

• Work around more issues with Deno 1.31+ (#3917)

  This version of Deno broke the stdin and stdout properties on command objects for inherited streams, which matters when you run esbuild's Deno module as the entry point (i.e. when import.meta.main is true). Previously esbuild would crash in Deno 1.31+ if you ran esbuild like that. This should be fixed starting with this release.

  This fix was contributed by @​Joshix-1.

v0.23.1

• Allow using the node: import prefix with es* targets (#3821)

  The node: prefix on imports is an alternate way to import built-in node modules. For example, import fs from "fs" can also be written import fs from "node:fs". This only works with certain newer versions of node, so esbuild removes it when you target older versions of node such as with --target=node14 so that your code still works. With the way esbuild's platform-specific feature compatibility table works, this was added by saying that only newer versions of node support this feature. However, that means that a target such as --target=node18,es2022 removes the node: prefix because none of the es* targets are known to support this feature. This release adds the support for the node: flag to esbuild's internal compatibility table for es* to allow you to use compound targets like this:

  // Original code
  import fs from 'node:fs'
  fs.open
  // Old output (with --bundle --format=esm --platform=node --target=node18,es2022)
  import fs from "fs";

... (truncated)

Changelog

Sourced from esbuild's changelog.

0.24.0

This release deliberately contains backwards-incompatible changes. To avoid automatically picking up releases like this, you should either be pinning the exact version of esbuild in your package.json file (recommended) or be using a version range syntax that only accepts patch upgrades such as ^0.23.0 or ~0.23.0. See npm's documentation about semver for more information.

• Drop support for older platforms (#3902)

  This release drops support for the following operating system:

  • macOS 10.15 Catalina

  This is because the Go programming language dropped support for this operating system version in Go 1.23, and this release updates esbuild from Go 1.22 to Go 1.23. Go 1.23 now requires macOS 11 Big Sur or later.

  Note that this only affects the binary esbuild executables that are published to the esbuild npm package. It's still possible to compile esbuild's source code for these older operating systems. If you need to, you can compile esbuild for yourself using an older version of the Go compiler (before Go version 1.23). That might look something like this:

  git clone https://github.com/evanw/esbuild.git
  cd esbuild
  go build ./cmd/esbuild
  ./esbuild --version
  

• Fix class field decorators in TypeScript if useDefineForClassFields is false (#3913)

  Setting the useDefineForClassFields flag to false in tsconfig.json means class fields use the legacy TypeScript behavior instead of the standard JavaScript behavior. Specifically they use assign semantics instead of define semantics (e.g. setters are triggered) and fields without an initializer are not initialized at all. However, when this legacy behavior is combined with standard JavaScript decorators, TypeScript switches to always initializing all fields, even those without initializers. Previously esbuild incorrectly continued to omit field initializers for this edge case. These field initializers in this case should now be emitted starting with this release.

• Avoid incorrect cycle warning with tsconfig.json multiple inheritance (#3898)

  TypeScript 5.0 introduced multiple inheritance for tsconfig.json files where extends can be an array of file paths. Previously esbuild would incorrectly treat files encountered more than once when processing separate subtrees of the multiple inheritance hierarchy as an inheritance cycle. With this release, tsconfig.json files containing this edge case should work correctly without generating a warning.

• Handle Yarn Plug'n'Play stack overflow with tsconfig.json (#3915)

  Previously a tsconfig.json file that extends another file in a package with an exports map could cause a stack overflow when Yarn's Plug'n'Play resolution was active. This edge case should work now starting with this release.

• Work around more issues with Deno 1.31+ (#3917)

  This version of Deno broke the stdin and stdout properties on command objects for inherited streams, which matters when you run esbuild's Deno module as the entry point (i.e. when import.meta.main is true). Previously esbuild would crash in Deno 1.31+ if you ran esbuild like that. This should be fixed starting with this release.

  This fix was contributed by @​Joshix-1.

0.23.1

• Allow using the node: import prefix with es* targets (#3821)

  The node: prefix on imports is an alternate way to import built-in node modules. For example, import fs from "fs" can also be written import fs from "node:fs". This only works with certain newer versions of node, so esbuild removes it when you target older versions of node such as with --target=node14 so that your code still works. With the way esbuild's platform-specific feature compatibility table works, this was added by saying that only newer versions of node support this feature. However, that means that a target such as --target=node18,es2022 removes the node: prefix because none of the es* targets are known to support this feature. This release adds the support for the node: flag to esbuild's internal compatibility table for es* to allow you to use compound targets like this:

  // Original code
  import fs from 'node:fs'
  fs.open

... (truncated)

Commits

• d34e79e publish 0.24.0 to npm
• 045a87f fix #3887: omit dead export warning for default
• 6e049b8 fix #3913: useDefineForClassFields and decorators
• 9c26f98 lower decorators for useDefineForClassFields #3913
• 46fdb68 fix #3898: incorrect cyclic tsconfig.json warning
• b500443 fix #3917: running esbuild cli with deno
• b125e62 run make update-compat-table
• 112b9aa fix #3915: stack overflow with yarn + tsconfig
• ed5a555 wasm: catch and rethrow stack overflows (#3915)
• 11d3196 fix #3902: update go 1.22.5 => 1.23.1
• Additional commits viewable in compare view

Updates xo from 0.58.0 to 0.60.0

Release notes

Sourced from xo's releases.

v0.60.0

New rules

• unicorn/no-length-as-slice-end
• unicorn/prefer-global-this
• unicorn/prefer-math-min-max
• unicorn/consistent-existence-index-check

Improvements

• Update dependencies 0c2be9c

---

xojs/xo@v0.59.3...v0.60.0

v0.59.3

• Allow using experimental Node.js features 3eb8436
• Fix TypeScript extension support (#764) 46a91e0

xojs/xo@v0.59.2...v0.59.3

v0.59.2

• Respect nodeVersion: false option (#762) c965843

xojs/xo@v0.59.1...v0.59.2

v0.59.1

• Fix XO to not override rules from user's config (#761) 9cdab84

xojs/xo@v0.59.0...v0.59.1

v0.59.0

New rules

• unicorn/no-single-promise-in-promise-methods
• unicorn/no-await-in-promise-methods
• unicorn/no-anonymous-default-export
• unicorn/consistent-empty-array-spread
• unicorn/no-invalid-fetch-options
• unicorn/no-magic-array-flat-depth
• unicorn/prefer-structured-clone
• unicorn/no-negation-in-equality-check
• @typescript-eslint/no-unnecessary-parameter-property-assignment
• @typescript-eslint/use-unknown-in-catch-callback-variable

Breaking

• Re-enable eslint-plugin-promise (#656) b168f08

... (truncated)

Commits

• 09cfbd1 0.60.0
• 0c2be9c Update dependencies
• 1877df6 0.59.3
• 3eb8436 Allow experimental Node.js features
• 46a91e0 Fix TypeScript extension support (#764)
• 92216f4 0.59.2
• c965843 Respect nodeVersion: false option (#762)
• b537b21 0.59.1
• 9cdab84 Fix XO to not override rules from user's config (#761)
• 112e657 0.59.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[Primajin]

@dependabot rebase please

[dependabot]

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 0.00%. Comparing base (1868c1a) to head (6e87c4b).
Report is 4 commits behind head on main.

Additional details and impacted files

@@     Coverage Diff     @@
##   main   #211   +/-   ##
===========================
===========================

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.