Bump nanoid from 3.3.6 to 5.0.1 in /extensions/ql-vscode

[dependabot]

Bumps nanoid from 3.3.6 to 5.0.1.

Changelog

Sourced from nanoid's changelog.

5.0.1

• Fixed Node.js 18 support.

5.0

• Moved Node.js version to Web Crypto API.
• Removed async API since Web Crypto API has only sync version.
• Removed Node.js 14 and 16 support.

4.0.2

• Added link to Github Sponsors.

4.0.1

• Reduced npm package size (by @​HiChen404).

4.0

• Removed CommonJS support. Nano ID 4 will work only with ESM applications. We will support 3.x branch with CommonJS for users who can’t migrate to ESM.
• Removed Node.js 10 and Node.js 12 support.
• Reduced npm package size.

Commits

• c6c8e33 Release 5.0.1 version
• 1fa0a3d Fix Node.js 18 support
• cf151a7 Release 5.0 version
• 8a1424c Update dependencies
• 1d30df2 Highlight banner with lines
• 51801a0 Fix UTM
• a6e0ea6 Fix spacing
• 17cbe92 Typo
• c9aae62 Change EM banner
• c0572e2 Remove async API
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
nanoid	[>= 4.a, < 5]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[robertbrignull]

Tests are failing with:

        SyntaxError: Cannot use import statement outside a module

           7 | import { BaseLogger, Logger } from "../common/logging";
           8 | import { basename, join } from "path";
        >  9 | import { nanoid } from "nanoid";

[koesie10]

@robertbrignull I don't think we can upgrade this dependency to version 5 since that drops Node 16 support. Version 4 drops CommonJS support and only supports ESM modules which doesn't seem to be supported by Jest, so we can't really upgrade to that version either.

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

[koesie10]

Let's try if we can update this dependency now that we're on Node 18. I'm not sure if ESM is a problem for this dependency since we're not mocking nanoid in any tests.

@dependabot recreate