chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@aws-sdk/client-cloudwatch-logs (source)	^3.624.0 -> ^3.645.0
@aws-sdk/client-iam (source)	^3.624.0 -> ^3.645.0
@aws-sdk/client-lambda (source)	^3.624.0 -> ^3.645.0
@babel/traverse (source)	^7.25.3 -> ^7.25.6
@cloudflare/workers-types	^4.20240806.0 -> ^4.20240903.0
@cyco130/eslint-config	^3.9.4 -> ^3.9.5
@fastly/js-compute	^3.20.0 -> ^3.21.4
@graphql-tools/schema (source)	^10.0.4 -> ^10.0.6
@graphql-tools/utils (source)	^10.3.4 -> ^10.5.4
@types/aws-lambda (source)	^8.10.143 -> ^8.10.145
@types/node (source)	^18.19.44 -> ^18.19.50
@whatwg-node/fetch (source)	^0.9.19 -> ^0.9.21
bun-types (source)	^1.1.22 -> ^1.1.27
esbuild	^0.23.0 -> ^0.23.1
graphql-yoga (source)	^5.6.3 -> ^5.7.0
hono (source)	^4.5.5 -> ^4.5.11
husky	^9.1.4 -> ^9.1.5
lint-staged	^15.2.8 -> ^15.2.10
netlify-cli	^17.34.0 -> ^17.35.0
picocolors	^1.0.1 -> ^1.1.0
publint (source)	^0.2.9 -> ^0.2.10
tslib (source)	^2.6.3 -> ^2.7.0
tsx (source)	^4.17.0 -> ^4.19.0
vite (source)	^5.4.0 -> ^5.4.3
wrangler (source)	^3.70.0 -> ^3.75.0

---

Release Notes

aws/aws-sdk-js-v3 (@​aws-sdk/client-cloudwatch-logs)

v3.645.0

Compare Source

Features

• client-cloudwatch-logs: Update to support new APIs for delivery of logs from AWS services. (107033b)

v3.643.0

Compare Source

Features

• client-cloudwatch-logs: This release introduces a new optional parameter: Entity, in PutLogEvents request (4723f34)

v3.637.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-cloudwatch-logs

v3.635.0

Compare Source

Features

• codegen: add Smithy RPCv2 CBOR to list of protocols (#​6096) (5154d4f)

v3.632.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-cloudwatch-logs

v3.631.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-cloudwatch-logs

v3.629.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-cloudwatch-logs

aws/aws-sdk-js-v3 (@​aws-sdk/client-iam)

v3.645.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-iam

v3.637.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-iam

v3.635.0

Compare Source

Features

• codegen: add Smithy RPCv2 CBOR to list of protocols (#​6096) (5154d4f)

v3.632.0

Compare Source

Features

• client-iam: Make the LastUsedDate field in the GetAccessKeyLastUsed response optional. This may break customers who only call the API for access keys with a valid LastUsedDate. This fixes a deserialization issue for access keys without a LastUsedDate, because the field was marked as required but could be null. (2e20e95)

v3.631.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-iam

v3.629.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-iam

aws/aws-sdk-js-v3 (@​aws-sdk/client-lambda)

v3.645.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-lambda

v3.637.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-lambda

v3.636.0

Compare Source

Features

• client-lambda: Release FilterCriteria encryption for Lambda EventSourceMapping, enabling customers to encrypt their filter criteria using a customer-owned KMS key. (6fff363)

v3.635.0

Compare Source

Features

• codegen: add Smithy RPCv2 CBOR to list of protocols (#​6096) (5154d4f)

v3.634.0

Compare Source

Features

• client-lambda: Release Lambda FunctionRecursiveConfig, enabling customers to turn recursive loop detection on or off on individual functions. This release adds two new APIs, GetFunctionRecursionConfig and PutFunctionRecursionConfig. (30b277c)

v3.632.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-lambda

v3.631.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-lambda

v3.629.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-lambda

babel/babel (@​babel/traverse)

v7.25.6

Compare Source

🐛 Bug Fix

• babel-generator
  • #​16783 Properly print inner comments in TS array types (@​nicolo-ribaudo)
  • #​16775 fix: jsx whitespace is not properly preserved when retainLines (@​liuxingbaoyu)
• babel-traverse
  • #​16727 fix: path.getAssignmentIdentifiers may be undefined (@​liuxingbaoyu)
• babel-parser
  • #​16761 fix: improve static canFollowModifier checks (@​JLHwung)
• babel-helpers, babel-plugin-transform-optional-chaining, babel-runtime-corejs3
  • #​16769 Only wrap functions in superPropertyGet helper (@​nicolo-ribaudo)

💅 Polish

• babel-generator, babel-plugin-transform-async-to-generator, babel-plugin-transform-block-scoping, babel-plugin-transform-class-properties, babel-plugin-transform-classes, babel-plugin-transform-duplicate-named-capturing-groups-regex, babel-plugin-transform-named-capturing-groups-regex, babel-plugin-transform-react-jsx-development, babel-plugin-transform-react-jsx, babel-plugin-transform-react-pure-annotations, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env
  • #​16780 Do not enforce printing space between ( and comments (@​nicolo-ribaudo)
• babel-plugin-syntax-import-assertions, babel-plugin-syntax-import-attributes
  • #​16781 Don't throw when enabling both syntax-import-{assertions,attributes} (@​nicolo-ribaudo)
• babel-generator
  • #​16782 TS union/intersection nested in union does not need parens (@​nicolo-ribaudo)

🏠 Internal

• babel-generator
  • #​16777 Remove unused parent params in the generator (@​nicolo-ribaudo)

v7.25.4

Compare Source

🐛 Bug Fix

• babel-traverse
  • #​16756 fix: Skip computed key when renaming (@​liuxingbaoyu)
• babel-helper-create-class-features-plugin, babel-plugin-proposal-decorators
  • #​16755 fix: Decorator 2018-09 may throw an exception (@​liuxingbaoyu)
• babel-types
  • #​16710 Visit AST fields nodes according to their syntactical order (@​nicolo-ribaudo)
• babel-generator
  • #​16709 Print semicolon after TS export namespace as A (@​nicolo-ribaudo)

💅 Polish

• babel-generator, babel-plugin-proposal-decorators, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-pipeline-operator, babel-plugin-transform-class-properties, babel-plugin-transform-destructuring, babel-plugin-transform-optional-chaining, babel-plugin-transform-private-methods, babel-plugin-transform-private-property-in-object, babel-plugin-transform-typescript, babel-runtime-corejs2, babel-runtime, babel-traverse
  • #​16722 Avoid unnecessary parens around sequence expressions (@​nicolo-ribaudo)
• babel-generator, babel-plugin-transform-class-properties
  • #​16714 Avoid unnecessary parens around exported arrow functions (@​nicolo-ribaudo)
• babel-generator, babel-plugin-proposal-decorators, babel-plugin-proposal-destructuring-private, babel-plugin-transform-object-rest-spread
  • #​16712 Avoid printing unnecessary parens around object destructuring (@​nicolo-ribaudo)

🔬 Output optimization

• babel-generator
  • #​16740 Avoid extra spaces between comments/regexps in compact mode (@​nicolo-ribaudo)

cloudflare/workerd (@​cloudflare/workers-types)

v4.20240903.0

Compare Source

v4.20240821.1

Compare Source

v4.20240815.0

Compare Source

cyco130/eslint-config (@​cyco130/eslint-config)

v3.9.5

Compare Source

fastly/js-compute-runtime (@​fastly/js-compute)

v3.21.4

Compare Source

Fixed

• --experimental-top-level-await support (#​945) (edd8ada)

v3.21.3

Compare Source

Fixed

• Device.toJSON() properties (#​937) (c4182d3)
• event loop stall error no longer a panic (#​934) (08c9934)

v3.21.2

Compare Source

Fixed

• revert documentation website refactoring (#​915) (ba1eb66)

v3.21.1

Compare Source

Fixed

• missing publish file, parallel publish build (#​912) (91ae54c)

v3.21.0

Compare Source

Added

• ship --debug-build CLI flag as public (#​907) (2728141)
• support getSetCookie on new StarlingMonkey headers implementation (#​844) (c102521)

ardatan/graphql-tools (@​graphql-tools/schema)

v10.0.6

Compare Source

Patch Changes

• 0286437
  Thanks @​ardatan! - Improve directive extraction

• Updated dependencies
  [0286437]:

  • @​graphql-tools/merge@​9.0.6
  • @​graphql-tools/utils@​10.5.4

v10.0.5

Compare Source

Patch Changes

• b8bf584
  Thanks @​ardatan! - Introduce `getDirectiveExtensions` and refactor
  directive handling in the extensions

• Updated dependencies
  [b8bf584]:

  • @​graphql-tools/utils@​10.4.0
  • @​graphql-tools/merge@​9.0.5

ardatan/graphql-tools (@​graphql-tools/utils)

v10.5.4

Compare Source

Patch Changes

• 0286437
  Thanks @​ardatan! - Improve directive extraction

v10.5.3

Compare Source

Patch Changes

• 2124d7d
  Thanks @​ardatan! - Allow invalid path in `getDirectiveExtensions`

v10.5.2

Compare Source

Patch Changes

• 07b87ed
  Thanks @​ardatan! - Respect extensionASTNodes in directable
  GraphQLSchema object

v10.5.1

Compare Source

Patch Changes

• 6291e14
  Thanks @​ardatan! - Add all args from extensions to the AST even if
  they don't exist in the directive def

v10.5.0

Compare Source

Minor Changes

• 8fd7703
  Thanks @​ardatan! - Export getDirectiveExtensions

v10.4.0

Compare Source

Minor Changes

• b8bf584
  Thanks @​ardatan! - Introduce `getDirectiveExtensions` and refactor
  directive handling in the extensions

ardatan/whatwg-node (@​whatwg-node/fetch)

v0.9.21

Compare Source

Patch Changes

• #​1577
  99c4344
  Thanks @​ardatan! - - Improve native ReadableStream handling inside
  ponyfills
  • Use waitUntil instead of floating promises
  • Handle early termination in WritableStream
  • Handle waitUntil correctly within a dummy call of ServerAdapter.fetch method
• Updated dependencies
  [99c4344]:
  • @​whatwg-node/node-fetch@​0.5.23

v0.9.20

Compare Source

Patch Changes

• #​1566
  de1e95a
  Thanks @​ardatan! - Avoid constructing DecompressionStream to check
  supported encodings

• Updated dependencies
  [de1e95a]:

  • @​whatwg-node/node-fetch@​0.5.22

oven-sh/bun (bun-types)

v1.1.27

Compare Source

v1.1.26

Compare Source

v1.1.25

Compare Source

v1.1.24

Compare Source

v1.1.23

Compare Source

evanw/esbuild (esbuild)

v0.23.1

Compare Source

• Allow using the node: import prefix with es* targets (#​3821)

  The node: prefix on imports is an alternate way to import built-in node modules. For example, import fs from "fs" can also be written import fs from "node:fs". This only works with certain newer versions of node, so esbuild removes it when you target older versions of node such as with --target=node14 so that your code still works. With the way esbuild's platform-specific feature compatibility table works, this was added by saying that only newer versions of node support this feature. However, that means that a target such as --target=node18,es2022 removes the node: prefix because none of the es* targets are known to support this feature. This release adds the support for the node: flag to esbuild's internal compatibility table for es* to allow you to use compound targets like this:

  // Original code
  import fs from 'node:fs'
  fs.open
  
  // Old output (with --bundle --format=esm --platform=node --target=node18,es2022)
  import fs from "fs";
  fs.open;
  
  // New output (with --bundle --format=esm --platform=node --target=node18,es2022)
  import fs from "node:fs";
  fs.open;

• Fix a panic when using the CLI with invalid build flags if --analyze is present (#​3834)

  Previously esbuild's CLI could crash if it was invoked with flags that aren't valid for a "build" API call and the --analyze flag is present. This was caused by esbuild's internals attempting to add a Go plugin (which is how --analyze is implemented) to a null build object. The panic has been fixed in this release.

• Fix incorrect location of certain error messages (#​3845)

  This release fixes a regression that caused certain errors relating to variable declarations to be reported at an incorrect location. The regression was introduced in version 0.18.7 of esbuild.

• Print comments before case clauses in switch statements (#​3838)

  With this release, esbuild will attempt to print comments that come before case clauses in switch statements. This is similar to what esbuild already does for comments inside of certain types of expressions. Note that these types of comments are not printed if minification is enabled (specifically whitespace minification).

• Fix a memory leak with pluginData (#​3825)

  With this release, the build context's internal pluginData cache will now be cleared when starting a new build. This should fix a leak of memory from plugins that return pluginData objects from onResolve and/or onLoad callbacks.

dotansimha/graphql-yoga (graphql-yoga)

v5.7.0

Compare Source

Minor Changes

• #​3331
  5dae4ab
  Thanks @​EmrysMyrddin! - Expose server context in
  onResultProcessHook. In particular, this gives access to the waitUntil method to cleanly
  handle hanging promises.

• #​3331
  5dae4ab
  Thanks @​EmrysMyrddin! - New hook: onExecutionResult which is
  triggered when an execution is done on the pipeline. If it is a batched operation, this is called
  per each operation in the batch

• #​3331
  5dae4ab
  Thanks @​EmrysMyrddin! - Expose the already existing waitUntil
  method from the server context.

Patch Changes

• #​3331
  5dae4ab
  Thanks @​EmrysMyrddin! - dependencies updates:
  • Updated dependency
    @whatwg-node/server@^0.9.44 ↗︎
    (from ^0.9.41, in dependencies)

honojs/hono (hono)

v4.5.11

Compare Source

What's Changed

• fix(jsx): race condition in ErrorBoundary with event loop by @​usualoma in https://github.com/honojs/hono/pull/3343
• perf(jsx): skip the special behavior when the element is in the head. by @​usualoma in https://github.com/honojs/hono/pull/3352
• refactor(utils/body): shorten the code by @​yusukebe in https://github.com/honojs/hono/pull/3353
• docs: Twitter to X by @​yusukebe in https://github.com/honojs/hono/pull/3354
• chore: fix typo in JSDoc by @​taga3s in https://github.com/honojs/hono/pull/3364
• refactor(utils/basic-auth): Moved Internal function to utils by @​sugar-cat7 in https://github.com/honojs/hono/pull/3359

New Contributors

• @​taga3s made their first contribution in https://github.com/honojs/hono/pull/3364
• @​sugar-cat7 made their first contribution in https://github.com/honojs/hono/pull/3359

Full Changelog: honojs/hono@v4.5.10...v4.5.11

v4.5.10

Compare Source

What's Changed

• feat(compress): improve compress middleware by @​nitedani in https://github.com/honojs/hono/pull/3317
• feat(jsx): add popover api attributes by @​ssssota in https://github.com/honojs/hono/pull/3323
• feat(jsx): improve form attribute types by @​ssssota in https://github.com/honojs/hono/pull/3330
• chore(test): migrate to vitest v2 by @​yasuaki640 in https://github.com/honojs/hono/pull/3326
• chore(test): replace deprecated vitest type by @​yasuaki640 in https://github.com/honojs/hono/pull/3338
• fix(logger): removing spaces from logger by @​marceloverdijk in https://github.com/honojs/hono/pull/3334

New Contributors

• @​nitedani made their first contribution in https://github.com/honojs/hono/pull/3317
• @​marceloverdijk made their first contribution in https://github.com/honojs/hono/pull/3334

Full Changelog: honojs/hono@v4.5.9...v4.5.10

v4.5.9

Compare Source

What's Changed

• test(types): broken test in future versions of typescript by @​m-shaka in https://github.com/honojs/hono/pull/3310
• fix(utils/color): Deno does not require permission for NO_COLOR by @​ryuapp in https://github.com/honojs/hono/pull/3306
• feat(jsx): improve type (MIME) attribute types by @​ssssota in https://github.com/honojs/hono/pull/3305
• feat(pretty-json): support custom query by @​nakasyou in https://github.com/honojs/hono/pull/3300

Full Changelog: honojs/hono@v4.5.8...v4.5.9

v4.5.8

Compare Source

Security Fix for CSRF Protection Middleware

Before this release, in versions 4.5.7 and below, the CSRF Protection Middleware did not treat requests including `Content-Typ

---

Configuration

📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.