chore(deps): update external major (major)

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
@semantic-release/npm	10.0.6 -> 12.0.1					devDependencies	major
actions/checkout	v3 -> v4					action	major
actions/setup-node	v3 -> v4					action	major
c8	7.14.0 -> 10.1.2					devDependencies	major
codecov	3.3.0 -> 4.1.0					orb	major
fetch-retry	^5.0.4 -> ^6.0.0					dependencies	major
github/codeql-action	v2 -> v3					action	major
husky	8.0.3 -> 9.0.11					devDependencies	major
lint-staged	13.3.0 -> 15.2.7					devDependencies	major
mime	^3.0.0 -> ^4.0.0					dependencies	major
semantic-release	21.1.2 -> 24.0.0					devDependencies	major
sinon (source)	^15.0.4 -> ^18.0.0					devDependencies	major

---

Release Notes

semantic-release/npm (@​semantic-release/npm)

v12.0.1

Compare Source

Bug Fixes

• deps: update dependency execa to v9 (9ac5ed0)

v12.0.0

Compare Source

Features

• exports: defined exports to point at ./index.js (9e193c2)
• node-versions: dropped support for node v18 and v19 (2df962b)

BREAKING CHANGES

• exports: exports has been defined, which prevents access to private apis (which arent
  intended for consumption anyway)
• node-versions: node v18 and v19 are no longer supported

v11.0.3

Compare Source

Bug Fixes

• deps: raised the minimum accepted range of npm to v10.5.0 (#​759) (a0313f8), closes semantic-release/semantic-release#3202

even though our existing range allowed anyone to update as soon as the new npm version was available, this will encourage being on a version that does not report the ip vulnerability a bit more forcefully

v11.0.2

Compare Source

Bug Fixes

• deps: update dependency npm to v10.2.5 (42b5dec)

v11.0.1

Compare Source

Bug Fixes

• deps: update dependency read-pkg to v9 (#​703) (6e84013)

v11.0.0

Compare Source

Bug Fixes

• deps: update dependency npm to v10 (819f257)

Features

• node-versions: raised the minimum required node version to v18.17 and dropped v19 support (6413130)

BREAKING CHANGES

• node-versions: node v18.17 is now the minimum required version and support for v19 has been dropped

actions/checkout (actions/checkout)

v4

Compare Source

• Support fetching without the --progress option
• Update to node20

actions/setup-node (actions/setup-node)

v4

Compare Source

bcoe/c8 (c8)

v10.1.2

Compare Source

Bug Fixes

• deps: make monocart-coverage-reports an optional with meta defined (3b91fda)

v10.1.1

Compare Source

Bug Fixes

• stop installing monocart-coverage-reports (#​535) (13979a7)

v10.1.0

Compare Source

Features

• add experimental monocart reports (#​521) (2e5e297)

v10.0.0

Compare Source

⚠ BREAKING CHANGES

• deps: Node 18 is now the minimum supported Node.js version

Bug Fixes

• deps: update test-exclude with new glob / minimatch (#​531) (e33cf30)

v9.1.0

Compare Source

Features

• support passing reporter options from config (#​459) (88db5db)

Bug Fixes

• refactor: remove stale check for createDynamicModule (5e18365)

v9.0.0

Compare Source

⚠ BREAKING CHANGES

• build: minimum Node.js version is now 14.14.0

Features

• build: minimum Node.js version is now 14.14.0 (2cdc86b)
• deps: update foreground-child to promise API (#​512) (b46b640)
• deps: use Node.js built in rm (2cdc86b)

v8.0.1

Compare Source

Bug Fixes

• deps: update istanbul deps (#​485) (3be8bd9), closes #​478

v8.0.0

Compare Source

⚠ BREAKING CHANGES

• dropped Node 10 support (#​475)

Miscellaneous Chores

• dropped Node 10 support (#​475) (f8ee1ff)

jonbern/fetch-retry (fetch-retry)

v6.0.0: Permissive wrapping, fix global pollution and export types

Compare Source

Adds permissive wrapping of the fetch function while retaining the original typing of the wrapped library. This enables us to handle that there are slight variations between fetch implementations in node.

This change also removes the need for the triple-slash directive which polluted the global namespace with DOM typings. The new version also exports all the types defined in the library for good measure.

Many thanks to @​alecmev for providing an excellent PR which made these changes possible.

github/codeql-action (github/codeql-action)

v3

Compare Source

typicode/husky (husky)

v9.0.11

Compare Source

• chore: update package-lock.json by @​btea in https://github.com/typicode/husky/pull/1383
• fix: husky=0 in init (fixes #​1393) by @​typicode in https://github.com/typicode/husky/pull/1395

v9.0.10

Compare Source

• fix: rename index.d.ts to index.d.mts by @​mrkjdy in https://github.com/typicode/husky/pull/1379

v9.0.9

Compare Source

• refactor: rename files by @​typicode in https://github.com/typicode/husky/pull/1378

v9.0.8

Compare Source

• docs: update index.md by @​khaledYS in https://github.com/typicode/husky/pull/1369
• Fix tab detection on install command by @​glensc in https://github.com/typicode/husky/pull/1376
• refactor: reduce file size by @​typicode in https://github.com/typicode/husky/pull/1377

v9.0.7

Compare Source

• fix: typo and source ~/.huskyrc correctly (compatibility with v8)
• docs: fix example by @​typicode in https://github.com/typicode/husky/pull/1363

v9.0.6

Compare Source

• docs: add favicon by @​rakleed in https://github.com/typicode/husky/pull/1354
• chore: apply editorconfig to code only by @​typicode in https://github.com/typicode/husky/pull/1355
• docs: update install script to mjs and fix CI checks by @​starnayuta in https://github.com/typicode/husky/pull/1357
• Fix unbound variable by @​typicode in https://github.com/typicode/husky/pull/1359

v9.0.5

Compare Source

• docs: update path to startup files by @​ManuelRauber in https://github.com/typicode/husky/pull/1350
• fix: init error by @​typicode in https://github.com/typicode/husky/pull/1353

v9.0.4

Compare Source

• fix: init create dir before by @​typicode in https://github.com/typicode/husky/pull/1348
• refactor: simplify by @​typicode in https://github.com/typicode/husky/pull/1349
• fix: init not working on pnpm #​1334 by @​rozbo in https://github.com/typicode/husky/pull/1347

v9.0.3

Compare Source

• docs: fix link by @​typicode in https://github.com/typicode/husky/pull/1340
• chore: fix links in issue template by @​julien-f in https://github.com/typicode/husky/pull/1341
• fix: add scripts field if not present by @​chalkygames123 in https://github.com/typicode/husky/pull/1338
• docs: changelog link by @​typicode in https://github.com/typicode/husky/pull/1343
• fix: insert final newline by @​chalkygames123 in https://github.com/typicode/husky/pull/1339
• fix: fix git hooks path on windows by @​rozbo in https://github.com/typicode/husky/pull/1346

v9.0.2

Compare Source

What's Changed

• fix: exit code by @​gergelypap in https://github.com/typicode/husky/pull/1336
• docs: typo by @​chalkygames123 in https://github.com/typicode/husky/pull/1337

New Contributors

• @​gergelypap made their first contribution in https://github.com/typicode/husky/pull/1336

Full Changelog: typicode/husky@v9.0.1...v9.0.2

v9.0.1

Compare Source

Kicking off the year with an exciting update!

TLDR;

Improved user experience and a (even) smaller package size while packing in more features!

👋 By the Way

I'm available for remote work (Front-end/Back-end mainly JS/TS but open to other stacks Rails, Go, Elixir). You can contact me at my mail: typicode at gmail 🙂

Introducing husky init

Adding husky to a project is now easier than ever. Although the installation process was straightforward, it often required consulting the documentation.

v8

npm pkg set scripts.prepare="husky install"
npm run prepare
npx husky add .husky/pre-commit "npm test"

v9

npx husky init

Adding a New Hook

Adding a hook is now as simple as creating a file. This can be accomplished using your favorite editor, a script or a basic echo command.

v8

npx husky add  .husky/pre-commit "npm test"
git add --chmod=+x .husky/pre-commit # On Windows

v9

echo "npm test" > .husky/pre-commit

Further Size Reduction

v8 was already the most compact Git hooks manager at approximately 6kB.

v9 takes this a step further, reducing the size to just 3kB, likely making it the smallest devDependency in your toolkit.

To give you an idea of how small it is, the biggest file in the project is the MIT license 😄

More to Come

Additional features are in the pipeline for v9. Stay tuned 🙌

Other Changes

• Enhanced security with CI and npm --provenance for safer publishing.
• Added $XDG_CONFIG_HOME support. Move ~/.huskyrc to ~/.config/husky/init.sh for centralized configuration.
• Fixed permission issue for Windows-created hooks; they no longer need to be executable.
• Removed husky install. Use husky or husky some/dir for the same functionality (deprecation notice to be added).
• Modified behavior when .git is missing; it now triggers a warning instead of failure.
• Replaced HUSKY_DEBUG=1 with HUSKY=2 for debugging.
• Updated the Husky API for module usage.
• Transitioned to ESM for module usage.
• Dropped support for Node 14 and 16.
• Revamped docs.

How to Migrate

v9 is backward compatible with v8, allowing you to freely upgrade and migrate your hooks later.

package.json

{
  "scripts": {
-   "prepare": "husky install"
+   "prepare": "husky"
  }
}

.husky/pre-commit

- #!/usr/bin/env sh
- . "$(dirname -- "$0")/_/husky.sh"
npm test

okonet/lint-staged (lint-staged)

v15.2.7

Compare Source

Patch Changes

• #​1440 a51be80 Thanks @​iiroj! - In the previous version the native git rev-parse --show-toplevel command was taken into use for resolving the current git repo root. This version drops the --path-format=absolute option to support earlier git versions since it's also the default behavior. If you are still having trouble, please try upgrading git to the latest version.

v15.2.6

Compare Source

Patch Changes

• #​1433 119adb2 Thanks @​iiroj! - Use native "git rev-parse" commands to determine git repo root directory and the .git config directory, instead of using custom logic. This hopefully makes path resolution more robust on non-POSIX systems.

v15.2.5

Compare Source

Patch Changes

• #​1424 31a1f95 Thanks @​iiroj! - Allow approximately equivalent versions of direct dependencies by using the "~" character in the version ranges. This means a more recent patch version of a dependency is allowed if available.

• #​1423 91abea0 Thanks @​iiroj! - Improve error logging when failing to read or parse a configuration file

• #​1424 ee43f15 Thanks @​iiroj! - Upgrade micromatch@4.0.7

v15.2.4

Compare Source

Patch Changes

• 4f4537a Thanks @​iiroj! - Fix release issue with previous version; update dependencies

v15.2.2

Compare Source

Patch Changes

• #​1391 fdcdad4 Thanks @​iiroj! - Lint-staged no longer tries to load configuration from files that are not checked out. This might happen when using sparse-checkout.

v15.2.1

Compare Source

Patch Changes

• #​1387 e4023f6 Thanks @​iiroj! - Ignore stdin of spawned commands so that they don't get stuck waiting. Until now, lint-staged has used the default settings to spawn linter commands. This means the stdin of the spawned commands has accepted input, and essentially gotten stuck waiting. Now the stdin is ignored and commands will no longer get stuck. If you relied on this behavior, please open a new issue and describe how; the behavior has not been intended.

v15.2.0

Compare Source

Minor Changes

• #​1371 f3378be Thanks @​iiroj! - Using the --no-stash flag no longer discards all unstaged changes to partially staged files, which resulted in inadvertent data loss. This fix is available with a new flag --no-hide-partially-staged that is automatically enabled when --no-stash is used.

Patch Changes

• #​1362 17bc480 Thanks @​antonk52! - update lilconfig@3.0.0

• #​1368 7c55ca9 Thanks @​iiroj! - Update most dependencies

• #​1368 777d4e9 Thanks @​iiroj! - To improve performance, only use lilconfig when searching for config files outside the git repo. In the regular case, lint-staged finds the config files from the Git index and loads them directly.

• #​1373 85eb0dd Thanks @​iiroj! - When determining git directory, use fs.realpath() only for symlinks. It looks like fs.realpath() changes some Windows mapped network filepaths unexpectedly, causing issues.

v15.1.0

Compare Source

Minor Changes

• #​1344 0423311 Thanks @​danielbayley! - Add support for loading configuration from package.yaml and package.yml files, supported by pnpm.

Patch Changes

• #​1355 105d901 Thanks @​iiroj! - Suppress some warnings when using the "--quiet" flag

v15.0.2

Compare Source

Patch Changes

• #​1339 8e82364 Thanks @​iiroj! - Update dependencies, including listr2@​7.0.2 to fix an upstream issue affecting lint-staged.

v15.0.1

Compare Source

Patch Changes

• #​1217 d2e6f8b Thanks @​louneskmt! - Previously it was possible for a function task to mutate the list of staged files passed to the function, and accidentally affect the generation of other tasks. This is now fixed by passing a copy of the original file list instead.

v15.0.0

Compare Source

Major Changes

• #​1322 66b93aa Thanks @​iiroj! - Require at least Node.js 18.12.0

  This release drops support for Node.js 16, which is EOL after 2023-09-11.
  Please upgrade your Node.js to the latest version.

  Additionally, all dependencies have been updated to their latest versions.

v14.0.1

Compare Source

Bug Fixes

• fix reading config from stdin, introduced in v14.0.0 (#​1317) (fc3bfea)

v14.0.0

Compare Source

Features

• drop support for Node.js 14 (#​1312) (9da8777)

BREAKING CHANGES

• Please upgrade your Node.js version to at least 16.14.0.

broofa/mime (mime)

v4.0.3

Compare Source

v4.0.2

Compare Source

v4.0.1

Compare Source

v4.0.0

Compare Source

semantic-release/semantic-release (semantic-release)

v24.0.0

Compare Source

Bug Fixes

• deps: upgraded to the beta of the commit-analyzer plugin (dfc3d91)
• deps: upgraded to the beta of the release-notes-generator plugin (4a4cd92)

BREAKING CHANGES

• deps: the commit-analyzer plugin now expects to be used with the latest major versions of
  conventional-changelog packages. if you are installing any of these packages in addition to
  semantic-release, be sure to update them as well
• deps: the release-notes-generator plugin now expects to be used with the latest major
  versions of conventional-changelog packages. if you are installing any of these packages in addition
  to semantic-release, be sure to update them as well

v23.1.1

Compare Source

v23.1.0

Compare Source

v23.0.8

Compare Source

Bug Fixes

• deps: rename read-pkg-up -> read-package-up (4980cba)
• deps: rename read-pkg-up -> read-package-up (#​3249) (95a8b9e)

v23.0.7

Compare Source

v23.0.6

Compare Source

Bug Fixes

• deps: update dependency @​semantic-release/release-notes-generator to v13 (#​3237) (b7e08fc)

v23.0.5

Compare Source

v23.0.4

Compare Source

v23.0.3

Compare Source

v23.0.2

Compare Source

Bug Fixes

• deps: update dependency marked to v12 (#​3176) (38105f5)

v23.0.1

Compare Source

Bug Fixes

• deps: update dependency marked-terminal to v7 (9faded8)

v23.0.0

Compare Source

Bug Fixes

• deps: update dependency cosmiconfig to v9 (#​3105) (07dde04)
• deps: update dependency marked to v11 (#​3079) (6d2a6f1)
• deps: upgraded to the latest version of env-ci (0d0ed9d)
• use one note reference per tag to prevent conflicts (#​2085) (020ea7d)

Features

• node-versions: dropped support for node v18 and raised the minimum for v20 (2904832), closes /github.com/semantic-release/gitlab/pull/647#discussion_r1423131205

BREAKING CHANGES

• deps: woodpecker ci users need to upgrade to v1.0.0 or higher to remain supported. see
  https://github.com/semantic-release/env-ci/releases/tag/v11.0.0 for more information
• node-versions: support for node v18 has been dropped and the minimum for v20 is now v20.8.1

related to https://github.com/semantic-release/semantic-release/discussions/3088

• deps: if using release.config.js as the name of your config file, it needs to be moved to a .config/ directory. see https://github.com/cosmiconfig/cosmiconfig/releases/tag/v9.0.0 for more detail

v22.0.12

Compare Source

Bug Fixes

• Revert "fix(deps): update dependency cosmiconfig to v9" (#​3104) (f6f1bf1)

v22.0.11

Compare Source

Bug Fixes

• deps: update dependency cosmiconfig to v9 (b38cd2e)

v22.0.10

Compare Source

Bug Fixes

• revert updating cosmiconfig to v9 (88efead)

v22.0.9

Compare Source

Bug Fixes

• deps: update dependency cosmiconfig to v9 (#​3072) (8b0dbd2)

v22.0.8

Compare Source

Bug Fixes

• support windows absolute extends (#​3062) (0d06f62)

v22.0.7

Compare Source

Bug Fixes

• deps: update dependency read-pkg-up to v11 (#​3047) (f09e55f)

Features

• support extending ESM configuration files (#​3036)(6900865)

v22.0.6

Compare Source

Bug Fixes

• deps: update dependency figures to v6 (#​3033) (305674d)

v22.0.5

Compare Source

Bug Fixes

• deps: update dependency env-ci to v10 (#​2983) (e759493)

v22.0.4

Compare Source

Bug Fixes

• deps: update dependency marked to v9 (#​2947) (84f2ee9)

v22.0.3

Compare Source

Bug Fixes

• exports: removed the exports definition for the time being (561e2d6), closes #​2968. see https://github.com/semantic-release/semantic-release/issues/2978 for more information.

v22.0.2

Compare Source

Bug Fixes

• deps: update dependency marked-terminal to v6 (8a7befe)

v22.0.1

Compare Source

Bug Fixes

• deps: upgraded release-notes-generator and commit-analyzer plugins to stable versions (041e4f7), closes #​2934

v22.0.0

Compare Source

Bug Fixes

• deps: updated to the latest beta of the commit analyzer plugin (03a687b)
• deps: updated to the latest betas of the commit-analyzer and release-notes-generator plugins (de8e4e0)
• deps: upgraded to the latest version of the npm plugin with npm v10 (a23b718)

Features

• conventional-changelog-presets: supported new preset format (07a79ea)
• defined exports for the package (72ab317)
• node-versions: raised the minimum node v20 requirement to v20.6 (e623cc6)
• node-versions: raised the minimum required node version to v18.17 and dropped v19 support (b9f294d)
• node-versions: raised the minimum supported node version w/in the v20 range to v20.6.1 (b93bef4)

BREAKING CHANGES

• node-versions: the minimum supported version for the v20 range of node has been raised slightly to
  v20.6.1 to avoid a known node bug
• node-versions: the minimum supported node version in the v20 major range is now v20.6
• node-versions: node v18.17 is now the minimum supported node version and support for v19 has been dropped
• exports prevents access to internal files, but they arent intended for public use anyway
• conventional-changelog-presets: the new preset format is a breaking change when compared to the previous preset format. updating to support the new format means that the old preset format is no longer supported. update your preset to the latest version to maintain compatibility. this is also important if you are using a preset outside of the list of official conventional-changelog presets since your preset will need to be updated to export async functions to match the expected preset signature.

sinonjs/sinon (sinon)

v18.0.0

Compare Source

This is what 17.0.2 should have been, as that contained two breaking changes. After updating
Nise we are down to one breaking change, which only affects sinon-test (which has been updated),
so most people are not affected. The legacyRoutes flag that is currently enabled in Nise by default
will at some later version be disabled. We will then issue a little migration note.

• 01d45312
  Use Nise 6 with legacyRoutes flag enabled (Carl-Erik Kopseng)

  This should be disabled in a future Sinon version by default.

• c618edc5
  fix #​2594: remove needless sandbox creation (Carl-Erik Kopseng)

Released by Carl-Erik Kopseng on 2024-05-15.

v17.0.2

Compare Source

• f6dca0ba
  upgrade packages (#​2595) (Carl-Erik Kopseng)
• 5025d001
  Avoid return and callArg* clearing each other's state (#​2593) (Carl-Erik Kopseng)

  • Partially revert "fix returns does not override call through (#​2567)"

  • revert to the old manual clearing of props

• ed068a88
  Bump ip from 1.1.8 to 1.1.9 (#​2587) (dependabot[bot])
• ec4d592e
  fix #​2589: avoid invoking getter as side-effect (#​2592) (Carl-Erik Kopseng)
• 9972e1e3
  Fix typo in mocks documentation (#​2591) (Eduardo de la Cruz Palacios)
• 52e6e4c5
  chore: prefer cache option of setup-node (Morgan Roderick)
• 08da1235
  Bump actions/cache from 3 to 4 (dependabot[bot])
• 404ef47e
  Bump nokogiri from 1.14.3 to 1.16.2 (dependabot[bot])
• fd79612c
  Update Bug_report.md (Carl-Erik Kopseng)
• 1fbc812a
  Re-add about (Carl-Erik Kopseng)
• fc8f6c3e
  Fix formatting :clown: (Carl-Erik Kopseng)
• c57e38ae
  Remove old template (Carl-Erik Kopseng)
• 754bf7a9
  Update Bug_report.md (Carl-Erik Kopseng)
• 87eed9d2
  Fix some typos at code comments (#​2581) (EliyahuMachluf)
• cbae6997
  Link to createStubInstance util.md docs in stubs.md (#​2577) (Daniel Kaplan)
• adcf936d
  Fix Mocha watch task by delegating to Node (#​2573) (Carl-Erik Kopseng)
• 30ad2372
  prettier:write (Carl-Erik Kopseng)
• 45c4d6b9
  Remove outdated info from README (#​2571) (Carl-Erik Kopseng)
• 6c9f5c2a
  Add a notice that the Fake Timers API doc is incomplete (#​2570) (Carl-Erik Kopseng)
• [93db3ef3](http

---

Configuration

📅 Schedule: Branch creation - "after 2pm on Monday" in timezone Europe/Zurich, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[github-actions]

This PR will trigger no release when merged.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 96.12%. Comparing base (246192b) to head (d379e0c).
Report is 3 commits behind head on main.

❗ Current head d379e0c differs from pull request most recent head 961c4eb

Please upload reports for the commit 961c4eb to get more accurate results.

Additional details and impacted files

@@           Coverage Diff           @@
##             main      #33   +/-   ##
=======================================
  Coverage   96.12%   96.12%           
=======================================
  Files          12       12           
  Lines        1366     1366           
=======================================
  Hits         1313     1313           
  Misses         53       53           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.