Bump the external-dependencies group with 9 updates

[dependabot]

Bumps the external-dependencies group with 9 updates:

Package	From	To
i18next	23.7.16	23.8.2
tldts	6.1.2	6.1.8
web-ext	7.10.0	7.11.0
@fingerprintjs/fingerprintjs	4.2.1	4.2.2
@playwright/test	1.39.0	1.41.2
@types/chrome	0.0.256	0.0.260
esbuild	0.19.11	0.20.0
jsdom	23.2.0	24.0.0
sass	1.69.7	1.70.0

Updates i18next from 23.7.16 to 23.8.2

Release notes

Sourced from i18next's releases.

v23.8.2

• optimize addResources to address 2130

v23.8.1

• types: support stricter typechecking for returnEmptyString and returnNull 2129

v23.8.0

• improve performance by reducing array slices and RegExp recreation 2128

v23.7.20

• optimize: consistent _zero special handling also for defaultValue_zero 2124
• intl plural rule for dev is now en (consistent with v3 compatibility)

v23.7.19

• fix: consistent _zero special handling also for defaultValue_zero 2124

v23.7.18

• types: support readonly defaultNS 2123

v23.7.17

• types: fix support for defaultNS as array (fixes 2118) 2121
• types: fix typo in CustomInstanceExtensions 2122

Changelog

Sourced from i18next's changelog.

23.8.2

• optimize addResources to address 2130

23.8.1

• types: support stricter typechecking for returnEmptyString and returnNull 2129

23.8.0

• improve performance by reducing array slices and RegExp recreation 2128

23.7.20

• optimize: consistent _zero special handling also for defaultValue_zero 2124
• intl plural rule for dev is now en (consistent with v3 compatibility)

23.7.19

• fix: consistent _zero special handling also for defaultValue_zero 2124

23.7.18

• types: support readonly defaultNS 2123

23.7.17

• types: fix support for defaultNS as array (fixes 2118) 2121
• types: fix typo in CustomInstanceExtensions 2122

Commits

• 4ce76ae 23.8.2
• 002268b optimize addResources to fix #2130
• 7059107 23.8.1
• 3b5f55d release
• 0aef924 Support stricter typechecking for returnEmptyString and returnNull (key fallb...
• eb1207c 23.8.0
• c56e5b3 release
• 6127226 Improve performance by reducing array slices and RegExp recreation (#2128)
• cf6b91f 23.7.20
• e51e540 optimize: consistent _zero special handling and fix dev plural rules
• Additional commits viewable in compare view

Updates tldts from 6.1.2 to 6.1.8

Release notes

Sourced from tldts's releases.

v6.1.8

📜 Update Public Suffix List

• tldts-experimental, tldts
  • Update upstream public suffix list #1947 (@​remusao)

Authors: 1

• Rémi (@​remusao)

v6.1.7

📜 Update Public Suffix List

• tldts-experimental, tldts
  • Update upstream public suffix list #1946 (@​remusao)

🔩 Dependencies

• Bump @​typescript-eslint/eslint-plugin from 6.19.1 to 6.20.0 #1940 (@​dependabot[bot])

Authors: 2

• @​dependabot[bot]
• Rémi (@​remusao)

v6.1.6

📜 Update Public Suffix List

• tldts-experimental, tldts
  • Update upstream public suffix list #1945 (@​remusao)

🔩 Dependencies

• Bump @​types/node from 20.11.7 to 20.11.16 #1944 (@​dependabot[bot])
• Bump @​typescript-eslint/parser from 6.19.1 to 6.20.0 #1939 (@​dependabot[bot])

Authors: 2

• @​dependabot[bot]
• Rémi (@​remusao)

v6.1.5

📜 Update Public Suffix List

• tldts-experimental, tldts
  • Update upstream public suffix list #1941 (@​remusao)

Authors: 1

• Rémi (@​remusao)

... (truncated)

Changelog

Sourced from tldts's changelog.

v6.1.8 (Sun Feb 04 2024)

📜 Update Public Suffix List

• tldts-experimental, tldts
  • Update upstream public suffix list #1947 (@​remusao)

Authors: 1

• Rémi (@​remusao)

---

v6.1.7 (Sat Feb 03 2024)

📜 Update Public Suffix List

• tldts-experimental, tldts
  • Update upstream public suffix list #1946 (@​remusao)

🔩 Dependencies

• Bump @​typescript-eslint/eslint-plugin from 6.19.1 to 6.20.0 #1940 (@​dependabot[bot])

Authors: 2

• @​dependabot[bot]
• Rémi (@​remusao)

---

v6.1.6 (Fri Feb 02 2024)

📜 Update Public Suffix List

• tldts-experimental, tldts
  • Update upstream public suffix list #1945 (@​remusao)

🔩 Dependencies

• Bump @​types/node from 20.11.7 to 20.11.16 #1944 (@​dependabot[bot])
• Bump @​typescript-eslint/parser from 6.19.1 to 6.20.0 #1939 (@​dependabot[bot])

Authors: 2

• @​dependabot[bot]
• Rémi (@​remusao)

---

... (truncated)

Commits

• 091e49b Bump version to: v6.1.8 [skip ci]
• 08d438b Update CHANGELOG.md [skip ci]
• b4e4043 Update upstream public suffix list (#1947)
• 934fb4b Bump version to: v6.1.7 [skip ci]
• 7ddff38 Update CHANGELOG.md [skip ci]
• 093927b Update upstream public suffix list (#1946)
• f58c7da Bump @​typescript-eslint/eslint-plugin from 6.19.1 to 6.20.0 (#1940)
• 40a929c Bump version to: v6.1.6 [skip ci]
• f285e6f Update CHANGELOG.md [skip ci]
• 33bd483 Update upstream public suffix list (#1945)
• Additional commits viewable in compare view

Updates web-ext from 7.10.0 to 7.11.0

Release notes

Sourced from web-ext's releases.

7.11.0

📣 We're finalizing web-ext v8 (the next major release), which will use a new AMO API to sign add-ons. Please try it out now by passing the --use-submission-api flag to the sign command in web-ext v7. More information at: https://extensionworkshop.com/documentation/develop/web-ext-command-reference/#use-submission-api

---

Features

• web-ext lint: updated to use addons-linter to 6.21.0
• web-ext run: remove READ_EXTERNAL_STORAGE permission requirement (backport #3018)

See all changes: mozilla/web-ext@7.10.0...7.11.0

Commits

• fbf01f1 7.11.0
• e97b5e3 chore(deps): bump addons-linter from 6.20.0 to 6.21.0 (#3027) (#3028)
• 7c2d260 fix: Remove READ_EXTERNAL_STORAGE permission requirement (backport #3018) (#3...
• See full diff in compare view

Updates @fingerprintjs/fingerprintjs from 4.2.1 to 4.2.2

Release notes

Sourced from @​fingerprintjs/fingerprintjs's releases.

v4.2.2

• fix: WebGL console warning in Chrome 121 and Safari 17.4 (#983)

Commits

• b5a4f9c Bump the version to 4.2.2 (#984)
• cb7a904 fix: WebGL console warning in Chrome 121 and Safari 17.4 (#983)
• c411aff Bump follow-redirects from 1.15.2 to 1.15.4 (#979)
• dbe416a Update readme.md
• b8cb013 Update readme.md
• 2f6d5c9 Change Discord badge color (#970)
• See full diff in compare view

Updates @playwright/test from 1.39.0 to 1.41.2

Release notes

Sourced from @​playwright/test's releases.

v1.41.2

Highlights

microsoft/playwright#29123 - [REGRESSION] route.continue: Protocol error (Fetch.continueRequest): Invalid InterceptionId.

Browser Versions

• Chromium 121.0.6167.57
• Mozilla Firefox 121.0
• WebKit 17.4

This version was also tested against the following stable channels:

• Google Chrome 120
• Microsoft Edge 120

v1.41.1

Highlights

microsoft/playwright#29067 - [REGRESSION] Codegen/Recorder: not all clicks are being actioned nor recorded microsoft/playwright#29028 - [REGRESSION] React component tests throw type error when passing null/undefined to component microsoft/playwright#29027 - [REGRESSION] React component tests not passing Date prop values microsoft/playwright#29023 - [REGRESSION] React component tests not rendering children prop microsoft/playwright#29019 - [REGRESSION] trace.playwright.dev does not currently support the loading from URL

Browser Versions

• Chromium 121.0.6167.57
• Mozilla Firefox 121.0
• WebKit 17.4

This version was also tested against the following stable channels:

• Google Chrome 120
• Microsoft Edge 120

v1.41.0

New APIs

• New method page.unrouteAll([options]) removes all routes registered by page.route(url, handler, handler[, options]) and page.routeFromHAR(har[, options]). Optionally allows to wait for ongoing routes to finish, or ignore any errors from them.
• New method browserContext.unrouteAll([options]) removes all routes registered by browserContext.route(url, handler, handler[, options]) and browserContext.routeFromHAR(har[, options]). Optionally allows to wait for ongoing routes to finish, or ignore any errors from them.
• New option style in page.screenshot([options]) and locator.screenshot([options]) to add custom CSS to the page before taking a screenshot.
• New option stylePath for methods expect(page).toHaveScreenshot(name[, options]) and expect(locator).toHaveScreenshot(name[, options]) to apply a custom stylesheet while making the screenshot.
• New fileName option for Blob reporter, to specify the name of the report to be created.

Browser Versions

• Chromium 121.0.6167.57
• Mozilla Firefox 121.0
• WebKit 17.4

This version was also tested against the following stable channels:

• Google Chrome 120
• Microsoft Edge 120

v1.40.1

... (truncated)

Commits

• a409667 chore: mark 1.41.2 (#29293)
• 414affa cherry-pick(#29271): Revert "chore: remove fake error from expect calls (#2...
• 7a72adc cherry-pick(#29180): fix: interception id not found error in route.co… (#29222)
• 8f0163f chore: mark 1.41.1 (#29075)
• 98a6618 cherry-pick(#29069): Revert "feat(codegen): add range input recording support...
• 50f1f08 cherry-pick(#29070): chore(ct): revert export mount result
• e5d201b cherry-pick(#29031): fix(ct): allow passing date, url, bigint as properties
• 8ee2d81 cherry-pick(#29026): test: add a props.children test
• 50a8e4f cherry-pick(#29016): chore: add an image import component test
• cb6c64c cherry-pick(#28986): fix(ct): move import list into the compilation cache data
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by yurys, a new releaser for @​playwright/test since your current version.

Updates @types/chrome from 0.0.256 to 0.0.260

Commits

• See full diff in compare view

Updates esbuild from 0.19.11 to 0.20.0

Release notes

Sourced from esbuild's releases.

v0.20.0

This release deliberately contains backwards-incompatible changes. To avoid automatically picking up releases like this, you should either be pinning the exact version of esbuild in your package.json file (recommended) or be using a version range syntax that only accepts patch upgrades such as ^0.19.0 or ~0.19.0. See npm's documentation about semver for more information.

This time there is only one breaking change, and it only matters for people using Deno. Deno tests that use esbuild will now fail unless you make the change described below.

• Work around API deprecations in Deno 1.40.x (#3609, #3611)

  Deno 1.40.0 was just released and introduced run-time warnings about certain APIs that esbuild uses. With this release, esbuild will work around these run-time warnings by using newer APIs if they are present and falling back to the original APIs otherwise. This should avoid the warnings without breaking compatibility with older versions of Deno.

  Unfortunately, doing this introduces a breaking change. The newer child process APIs lack a way to synchronously terminate esbuild's child process, so calling esbuild.stop() from within a Deno test is no longer sufficient to prevent Deno from failing a test that uses esbuild's API (Deno fails tests that create a child process without killing it before the test ends). To work around this, esbuild's stop() function has been changed to return a promise, and you now have to change esbuild.stop() to await esbuild.stop() in all of your Deno tests.

• Reorder implicit file extensions within node_modules (#3341, #3608)

  In version 0.18.0, esbuild changed the behavior of implicit file extensions within node_modules directories (i.e. in published packages) to prefer .js over .ts even when the --resolve-extensions= order prefers .ts over .js (which it does by default). However, doing that also accidentally made esbuild prefer .css over .ts, which caused problems for people that published packages containing both TypeScript and CSS in files with the same name.

  With this release, esbuild will reorder TypeScript file extensions immediately after the last JavaScript file extensions in the implicit file extension order instead of putting them at the end of the order. Specifically the default implicit file extension order is .tsx,.ts,.jsx,.js,.css,.json which used to become .jsx,.js,.css,.json,.tsx,.ts in node_modules directories. With this release it will now become .jsx,.js,.tsx,.ts,.css,.json instead.

  Why even rewrite the implicit file extension order at all? One reason is because the .js file is more likely to behave correctly than the .ts file. The behavior of the .ts file may depend on tsconfig.json and the tsconfig.json file may not even be published, or may use extends to refer to a base tsconfig.json file that wasn't published. People can get into this situation when they forget to add all .ts files to their .npmignore file before publishing to npm. Picking .js over .ts helps make it more likely that resulting bundle will behave correctly.

v0.19.12

• The "preserve" JSX mode now preserves JSX text verbatim (#3605)

  The JSX specification deliberately doesn't specify how JSX text is supposed to be interpreted and there is no canonical way to interpret JSX text. Two most popular interpretations are Babel and TypeScript. Yes they are different (esbuild deliberately follows TypeScript by the way).

  Previously esbuild normalized text to the TypeScript interpretation when the "preserve" JSX mode is active. However, "preserve" should arguably reproduce the original JSX text verbatim so that whatever JSX transform runs after esbuild is free to interpret it however it wants. So with this release, esbuild will now pass JSX text through unmodified:

  // Original code
  let el =
    <a href={'/'} title='&apos;&quot;'> some text
      {foo}
        more text </a>
  // Old output (with --loader=jsx --jsx=preserve)
  let el = <a href="/" title={'&quot;}>
  {" some text"}
  {foo}
  {"more text "}
  </a>;
  // New output (with --loader=jsx --jsx=preserve)
  let el = <a href={"/"} title='&apos;&quot;'> some text
  {foo}
  more text </a>;

• Allow JSX elements as JSX attribute values

  JSX has an obscure feature where you can use JSX elements in attribute position without surrounding them with {...}. It looks like this:

... (truncated)

Changelog

Sourced from esbuild's changelog.

0.20.0

This release deliberately contains backwards-incompatible changes. To avoid automatically picking up releases like this, you should either be pinning the exact version of esbuild in your package.json file (recommended) or be using a version range syntax that only accepts patch upgrades such as ^0.19.0 or ~0.19.0. See npm's documentation about semver for more information.

This time there is only one breaking change, and it only matters for people using Deno. Deno tests that use esbuild will now fail unless you make the change described below.

• Work around API deprecations in Deno 1.40.x (#3609, #3611)

  Deno 1.40.0 was just released and introduced run-time warnings about certain APIs that esbuild uses. With this release, esbuild will work around these run-time warnings by using newer APIs if they are present and falling back to the original APIs otherwise. This should avoid the warnings without breaking compatibility with older versions of Deno.

  Unfortunately, doing this introduces a breaking change. The newer child process APIs lack a way to synchronously terminate esbuild's child process, so calling esbuild.stop() from within a Deno test is no longer sufficient to prevent Deno from failing a test that uses esbuild's API (Deno fails tests that create a child process without killing it before the test ends). To work around this, esbuild's stop() function has been changed to return a promise, and you now have to change esbuild.stop() to await esbuild.stop() in all of your Deno tests.

• Reorder implicit file extensions within node_modules (#3341, #3608)

  In version 0.18.0, esbuild changed the behavior of implicit file extensions within node_modules directories (i.e. in published packages) to prefer .js over .ts even when the --resolve-extensions= order prefers .ts over .js (which it does by default). However, doing that also accidentally made esbuild prefer .css over .ts, which caused problems for people that published packages containing both TypeScript and CSS in files with the same name.

  With this release, esbuild will reorder TypeScript file extensions immediately after the last JavaScript file extensions in the implicit file extension order instead of putting them at the end of the order. Specifically the default implicit file extension order is .tsx,.ts,.jsx,.js,.css,.json which used to become .jsx,.js,.css,.json,.tsx,.ts in node_modules directories. With this release it will now become .jsx,.js,.tsx,.ts,.css,.json instead.

  Why even rewrite the implicit file extension order at all? One reason is because the .js file is more likely to behave correctly than the .ts file. The behavior of the .ts file may depend on tsconfig.json and the tsconfig.json file may not even be published, or may use extends to refer to a base tsconfig.json file that wasn't published. People can get into this situation when they forget to add all .ts files to their .npmignore file before publishing to npm. Picking .js over .ts helps make it more likely that resulting bundle will behave correctly.

0.19.12

• The "preserve" JSX mode now preserves JSX text verbatim (#3605)

  The JSX specification deliberately doesn't specify how JSX text is supposed to be interpreted and there is no canonical way to interpret JSX text. Two most popular interpretations are Babel and TypeScript. Yes they are different (esbuild deliberately follows TypeScript by the way).

  Previously esbuild normalized text to the TypeScript interpretation when the "preserve" JSX mode is active. However, "preserve" should arguably reproduce the original JSX text verbatim so that whatever JSX transform runs after esbuild is free to interpret it however it wants. So with this release, esbuild will now pass JSX text through unmodified:

  // Original code
  let el =
    <a href={'/'} title='&apos;&quot;'> some text
      {foo}
        more text </a>
  // Old output (with --loader=jsx --jsx=preserve)
  let el = <a href="/" title={'&quot;}>
  {" some text"}
  {foo}
  {"more text "}
  </a>;
  // New output (with --loader=jsx --jsx=preserve)
  let el = <a href={"/"} title='&apos;&quot;'> some text
  {foo}
  more text </a>;

• Allow JSX elements as JSX attribute values

... (truncated)

Commits

• 2af5ccf publish 0.20.0 to npm
• 0bccf08 fix esbuild/deno-esbuild#5
• 931f87d work around api deprecations in deno 1.40.x (#3609) (#3611)
• 22a9cf5 fix #3341, fix #3608: sort .ts right after .js
• f8ec300 run npm pkg fix as suggested by the npm cli
• d7fd1ad publish 0.19.12 to npm
• e04a690 fix #3605: print the original JSX AST unmodified
• f571399 allow jsx elements as jsx attribute values
• a652e73 run make update-compat-table
• 35c0d65 fix #3574: ts type parser bug with infer + extends
• Additional commits viewable in compare view

Updates jsdom from 23.2.0 to 24.0.0

Release notes

Sourced from jsdom's releases.

Version 24.0.0

This release reverts our selector engine back to nwsapi. As discussed in #3659, the performance regressions from @asamuzakjp/dom-selector turned out to be higher than anticipated. In the future, we can revisit @asamuzakjp/dom-selector after it reaches nwsapi's performance on the two real-world benchmarks provided by the community.

Since reverting to nwsapi causes several functionality regressions, e.g. removing :has() support, we've decided to make this a major version.

Additionally:

• Small fixes to edge-case behavior of the following properties: input.maxLength, input.minLength, input.size, progress.max, tableCell.colSpan, tableCell.rowSpan, tableCol.span, textArea.cols, textArea.maxLength, textArea.minLength, textArea.rows.

Changelog

Sourced from jsdom's changelog.

24.0.0

This release reverts our selector engine back to nwsapi. As discussed in #3659, the performance regressions from @asamuzakjp/dom-selector turned out to be higher than anticipated. In the future, we can revisit @asamuzakjp/dom-selector after it reaches nwsapi's performance on the two real-world benchmarks provided by the community.

Since reverting to nwsapi causes several functionality regressions, e.g. removing :has() support, we've decided to make this a major version.

Additionally:

• Small fixes to edge-case behavior of the following properties: input.maxLength, input.minLength, input.size, progress.max, tableCell.colSpan, tableCell.rowSpan, tableCol.span, textArea.cols, textArea.maxLength, textArea.minLength, textArea.rows.

Commits

• 2f8a730 Version 24.0.0
• db0a4dc Implement the remaining types of numeric reflection
• c1d7005 Implement full long reflection
• ac815ff Revert back to nwsapi
• 5b1a49e Fix changelog link to dom-selector
• See full diff in compare view

Updates sass from 1.69.7 to 1.70.0

Release notes

Sourced from sass's releases.

Dart Sass 1.70.0

To install Sass 1.70.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

JavaScript API

• Add a sass.initCompiler() function that returns a sass.Compiler object which supports compile() and compileString() methods with the same API as the global Sass object. On the Node.js embedded host, each sass.Compiler object uses a single long-lived subprocess, making compiling multiple stylesheets much more efficient.

• Add a sass.initAsyncCompiler() function that returns a sass.AsyncCompiler object which supports compileAsync() and compileStringAsync() methods with the same API as the global Sass object. On the Node.js embedded host, each sass.AsynCompiler object uses a single long-lived subprocess, making compiling multiple stylesheets much more efficient.

Embedded Sass

• Support the CompileRequest.silent field. This allows compilations with no logging to avoid unnecessary request/response cycles.

• The Dart Sass embedded compiler now reports its name as "dart-sass" rather than "Dart Sass", to match the JS API's info field.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.70.0

JavaScript API

• Add a sass.initCompiler() function that returns a sass.Compiler object which supports compile() and compileString() methods with the same API as the global Sass object. On the Node.js embedded host, each sass.Compiler object uses a single long-lived subprocess, making compiling multiple stylesheets much more efficient.

• Add a sass.initAsyncCompiler() function that returns a sass.AsyncCompiler object which supports compileAsync() and compileStringAsync() methods with the same API as the global Sass object. On the Node.js embedded host, each sass.AsynCompiler object uses a single long-lived subprocess, making compiling multiple stylesheets much more efficient.

Embedded Sass

• Support the CompileRequest.silent field. This allows compilations with no logging to avoid unnecessary request/response cycles.

• The Dart Sass embedded compiler now reports its name as "dart-sass" rather than "Dart Sass", to match the JS API's info field.

Commits

• 076414d [Shared Resources] dart-sass implementation (#2134)
• 0d91c92 Support CompileRequest.silent of embedded protocol (#2160)
• b263a72 Use implementation name dart-sass for VersionResponse (#2156)
• See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
jsdom	[>= 22.1.a, < 22.2]
@playwright/test	[>= 1.40.a, < 1.41]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sammacbeth]

@dependabot rebase

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.