chore(deps): bump the npm_and_yarn group across 2 directories with 16 updates

[dependabot]

Bumps the npm_and_yarn group with 14 updates in the / directory:

Package	From	To
@azure/msal-node	1.18.4	2.9.2
zod	3.22.4	3.22.5
node-fetch	2.6.7	3.3.2
minimatch	4.2.3	5.0.0
@azure/identity	2.0.4	4.2.1
ws	7.4.6	7.5.10
elliptic	6.5.3	6.5.5
find-my-way	2.2.4	2.2.5
highlight.js	10.3.2	10.7.3
hosted-git-info	2.8.8	2.8.9
ini	1.3.5	1.3.8
postcss	8.4.31	8.4.38
ssri	6.0.1	6.0.2
y18n	3.2.1	3.2.2

Bumps the npm_and_yarn group with 7 updates in the /testing/browser-functional/browser-echo-bot directory:

Package	From	To
ws	6.2.1	6.2.3
elliptic	6.5.3	6.5.5
ini	1.3.5	1.3.8
path-parse	1.0.6	1.0.7
ssri	6.0.1	6.0.2
y18n	4.0.0	4.0.3
dns-packet	1.3.1	1.3.4

Updates @azure/msal-node from 1.18.4 to 2.9.2

Release notes

Sourced from @​azure/msal-node's releases.

@​azure/msal-node v2.9.2

2.9.2

Mon, 10 Jun 2024 22:30:36 GMT

Patches

• Fixed msal-node unit tests for PoP token support #��7119 (lalimasharda@microsoft.com)
• Implementation Based on Feature Request #7151 (rginsburg@microsoft.com)
• Bump @​azure/msal-common to v14.12.0 (beachball)
• Bump eslint-config-msal to v0.0.0 (beachball)

@​azure/msal-node v2.9.1

2.9.1

Tue, 04 Jun 2024 00:08:57 GMT

Patches

• Bump @​azure/msal-common to v14.11.0 (beachball)
• Bump eslint-config-msal to v0.0.0 (beachball)

@​azure/msal-node v2.9.0

2.9.0

Tue, 28 May 2024 21:37:23 GMT

Minor changes

• Added API for Managed Identity to detect the current environment #7093 (rginsburg@microsoft.com)
• Bump eslint-config-msal to v0.0.0 (beachball)

@​azure/msal-node v2.8.0

2.8.0

Mon, 06 May 2024 23:48:17 GMT

Minor changes

• Client Assertion Implementation now accepts a callback instead of a string argument (rginsburg@microsoft.com)
• Bump @​azure/msal-common to v14.10.0 (beachball)
• Bump eslint-config-msal to v0.0.0 (beachball)

Patches

• Fixed inconsistencies with cancellationToken (timeout) (rginsburg@microsoft.com)
• ClientCredential and OBO acquireToken requests with claims will now skip the cache (rginsburg@microsoft.com)
• Managed Identity: ManagedIdentityTokenResponses expires_in is now calculated correctly (rginsburg@microsoft.com)
• Removed Managed Identity Resource URI Validation (rginsburg@microsoft.com)

... (truncated)

Commits

• 1b0fc20 Bump package versions
• 5685c8c Update lab request scope (#7155)
• 25aefea Support pop as optional for full framed apps (#7119)
• 7563498 Update package-lock (#7152)
• 3893cce Update gatsby and angular samples (#7150)
• 3ee9c68 Implementation Based on Feature Request (#7151)
• cc18b42 Remove outdated TS Sample (#7149)
• 46f6e8a Bump package versions
• 8e4b664 Fix MSAL Angular MsalInterceptor bug matching to query string (#7137)
• 69e58c3 Update regional-authorities.md (#7078)
• Additional commits viewable in compare view

Updates zod from 3.22.4 to 3.22.5

Commits

• See full diff in compare view

Updates node-fetch from 2.6.7 to 3.3.2

Release notes

Sourced from node-fetch's releases.

v3.3.2

3.3.2 (2023-07-25)

Bug Fixes

• Remove the default connection close header. (#1736) (8b3320d), closes #1735 #1473

v3.3.1

3.3.1 (2023-03-11)

Bug Fixes

• release "Allow URL class object as an argument for fetch()" #1696 (#1716) (7b86e94)

v3.3.0

3.3.0 (2022-11-10)

Features

• add static Response.json (#1670) (55a4870)

v3.2.10

3.2.10 (2022-07-31)

Bug Fixes

• ReDoS referrer (#1611) (2880238)

v3.2.9

3.2.9 (2022-07-18)

Bug Fixes

• Headers: don't forward secure headers on protocol change (#1599) (e87b093)

v3.2.8

3.2.8 (2022-07-12)

Bug Fixes

• possibly flaky test (#1523) (11b7033)

... (truncated)

Commits

• 8b3320d fix: Remove the default connection close header. (#1736)
• 7b86e94 fix: release "Allow URL class object as an argument for fetch()" #1696 (#1716)
• 8ced5b9 docs: readme - non ESM example (#1707)
• 71e376b ci(release): use latest Node LTS (#1697)
• e093030 Allow URL class object as an argument for fetch() (#1696)
• 55a4870 feat: add static Response.json (#1670)
• c071406 (1138) - Fixed HTTPResponseError with correct constructor and usage (#1666)
• 6f72caa docs: fix missing comma in example (#1623)
• 2880238 fix: ReDoS referrer (#1611)
• e87b093 fix(Headers): don't forward secure headers on protocol change (#1599)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by node-fetch-bot, a new releaser for node-fetch since your current version.

Updates minimatch from 4.2.3 to 5.0.0

Changelog

Sourced from minimatch's changelog.

change log

9.0

• No default export, only named exports.

8.0

• Recursive descent parser for extglob, allowing correct support for arbitrarily nested extglob expressions
• Bump required Node.js version

7.4

• Add escape() method
• Add unescape() method
• Add Minimatch.hasMagic() method

7.3

• Add support for posix character classes in a unicode-aware way.

7.2

• Add windowsNoMagicRoot option

7.1

• Add optimizationLevel configuration option, and revert the default back to the 6.2 style minimal optimizations, making the advanced transforms introduced in 7.0 opt-in. Also, process provided file paths in the same way in optimizationLevel:2 mode, so most things that matched with optimizationLevel 1 or 0 should match with level 2 as well. However, level 1 is the default, out of an abundance of caution.

7.0

• Preprocess patterns to simplify complicated patterns and reduce out .. pattern portions where possible. Note that this means a pattern like a/b/../* will be equivalent to a/*, and will not match the string a/b/../c. If this causes problems, it can be addressed in a patch release by resolving .. portions in the test string.

6.2

• Add nocaseMagicOnly flag

6.1

... (truncated)

Commits

• fc44f5f 5.0.0
• 9104d8d Expect exclusively forward slash as path sep, same as node-glob
• 58b72d3 fix(brace-expansion): ignore only blocks that begins with $
• ddfacbd update brace-expansion
• 55ed736 update package scripts and deps
• See full diff in compare view

Updates @azure/identity from 2.0.4 to 4.2.1

Commits

• 183d301 Upgrade to a version ESRP Release that supports federated auth (#29612)
• 9a2afdf [identity] Prep for release (#29981)
• 3caf203 [identity] Prepare identity for May release (#29441)
• 0a69729 [core] CHANGELOG date for @​azure-rest/core-client release (#29440)
• 88d244a Sync eng/common directory with azure-sdk-tools for PR 8158 (#29423)
• 7706373 [template-dpg] Suppress build failure (#29437)
• 769c1b1 [EngSys] Update name of @​azure-tools/test-utils NO_CI
• 8cd5bc2 [core] New multipart/form-data primitive in core-client-rest (#29047)
• 73b9faa [identity] Add changelog entry for MSALClient migration (#29419)
• b8e63a5 Post release automated changes for notificationhubs releases (#29431)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by microsoft1es, a new releaser for @​azure/identity since your current version.

Updates ws from 7.4.6 to 7.5.10

Release notes

Sourced from ws's releases.

7.5.10

Bug fixes

• Backported e55e5106 to the 7.x release line (22c28763).

7.5.9

Bug fixes

• Backported bc8bd34e to the 7.x release line (0435e6e1).

7.5.8

Bug fixes

• Backported 0fdcc0af to the 7.x release line (2758ed35).
• Backported d68ba9e1 to the 7.x release line (dc1781bc).

7.5.7

Bug fixes

• Backported 6946f5fe to the 7.x release line (1f72e2e1).

7.5.6

Bug fixes

• Backported b8186dd1 to the 7.x release line (73dec34b).
• Backported ed2b8039 to the 7.x release line (22a26afb).

7.5.5

Bug fixes

• Backported ec9377ca to the 7.x release line (0e274acd).

7.5.4

Bug fixes

• Backported 6a72da3e to the 7.x release line (76087fbf).
• Backported 869c9892 to the 7.x release line (27997933).

7.5.3

Bug fixes

• The WebSocketServer constructor now throws an error if more than one of the noServer, server, and port options are specefied (66e58d27).
• Fixed a bug where a 'close' event was emitted by a WebSocketServer before the internal HTTP/S server was actually closed (5a587304).
• Fixed a bug that allowed WebSocket connections to be established after WebSocketServer.prototype.close() was called (772236a1).

7.5.2

Bug fixes

... (truncated)

Commits

• d962d70 [dist] 7.5.10
• 22c2876 [security] Fix crash when the Upgrade header cannot be read (#2231)
• 8a78f87 [dist] 7.5.9
• 0435e6e [security] Fix same host check for ws+unix: redirects
• 4271f07 [dist] 7.5.8
• dc1781b [security] Drop sensitive headers when following insecure redirects
• 2758ed3 [fix] Abort the handshake if the Upgrade header is invalid
• a370613 [dist] 7.5.7
• 1f72e2e [security] Drop sensitive headers when following redirects (#2013)
• 8ecd890 [dist] 7.5.6
• Additional commits viewable in compare view

Updates elliptic from 6.5.3 to 6.5.5

Commits

• 7570078 6.5.5
• 206da2e lib: lint
• 0a78e03 [Fix] restore node < 4 compat
• 43ac7f2 6.5.4
• f4bc72b package: bump deps
• 441b742 ec: validate that a point before deriving keys
• e71b2d9 lib: relint using eslint
• 8421a01 build(deps): bump elliptic from 6.4.1 to 6.5.3 (#231)
• See full diff in compare view

Updates find-my-way from 2.2.4 to 2.2.5

Release notes

Sourced from find-my-way's releases.

v2.2.5

Fixes:

• Enable versioning on demand - #172 This fix disables the automatic route versioning unless a user has configured at least once a route with the version option.

Commits

• b846810 Bumped v2.2.5
• 264a688 Bumped v2.2.4
• 771d019 Standard
• 0118ab6 Enable versioning on demand (#172)
• See full diff in compare view

Updates highlight.js from 10.3.2 to 10.7.3

Release notes

Sourced from highlight.js's releases.

10.7.3

• fix(parser) Resolves issue with missing TypeScript property Jacob Swanner

No other changes.

Version 10.7.2

This is a patch release. The only change is that deprecation messages are throttled and shown only once.

• (chore) throttle deprecation messages (#3092) Mihkel Eidast

10.7.1 - Spring Edition

This .1 patch release fixes an issue with the TypeScript typing info in 10.7.0.

Release notes from 10.7.0

Parser:

• enh(api) add unregisterLanguage method (#3009) [Antoine du Hamel][]
• enh: Make alias registration case insensitive (#3026) [David Ostrovsky][]
• fix(parser) highlightAll() now works if the library is lazy loaded [Josh Goebel][]

New Languages:

• Added 3rd party RiScript grammar to SUPPORTED_LANGUAGES (#2988) [John C][]
• Added 3rd party HLSL grammar to SUPPORTED_LANGUAGES (#3002) [Stef Levesque][]
• Added 3rd party Q# grammar to SUPPORTED_LANGUAGES(#3006) [Vyron Vasileiadis][]

Language grammar improvements:

• fix(python) allow keywords immediately following numbers (#2985) [Josh Goebel][]
• fix(xml) char immediately following tag close mis-highlighted (#3044) [Josh Goebel][]
• fix(ruby) fix defined?() mis-highlighted as def (#3025) [Josh Goebel][]
• fix(c) comments after #include <str> blocks (#3041) [Josh Goebel][]
• fix(cpp) comments after #include <str> blocks (#3041) [Josh Goebel][]
• enh(cpp) Highlight all function dispatches (#3005) [Josh Goebel][]
• enh(python) support type hints and better type support (#2972) [Josh Goebel][]
• enh(gml) Add additional GML 2.3 keywords (#2984) [xDGameStudios][]
• fix(cpp) constructor support for initializers (#3001) [Josh Goebel][]
• enh(php) Add trait to class-like naming patterns (#2997) [Ayesh][]
• enh(php) Add Stringable, UnhandledMatchError, and WeakMap classes/interfaces (#2997) [Ayesh][]
• enh(php) Add mixed to list of keywords (#2997) [Ayesh][]
• enh(php) Add support binary, octal, hex and scientific numerals with underscore separator support (#2997) [Ayesh][]
• enh(php) Add support for Enums (#3004) [Ayesh][]
• enh(ecmascript) Add built-in types [Vaibhav Chanana][]
• enh(kotlin) Add kts as an alias for Kotlin (#3021) [Vaibhav Chanana][]

... (truncated)

Changelog

Sourced from highlight.js's changelog.

Version 10.7.3

• fix(parser) Resolves issue with missing TypeScript property Jacob Swanner

Version 10.7.2

This is a patch release. The only change is that deprecation messages are throttled and shown only once.

• (chore) throttle deprecation messages (#3092) Mihkel Eidast

Version 10.7.1

• fix(parser) Resolves issues with TypeScript types [Josh Goebel][]

Version 10.7.0

Parser:

• enh(api) add unregisterLanguage method (#3009) [Antoine du Hamel][]
• enh: Make alias registration case insensitive (#3026) [David Ostrovsky][]
• fix(parser) highlightAll() now works if the library is lazy loaded [Josh Goebel][]

New Languages:

• Added 3rd party RiScript grammar to SUPPORTED_LANGUAGES (#2988) [John C][]
• Added 3rd party HLSL grammar to SUPPORTED_LANGUAGES (#3002) [Stef Levesque][]
• Added 3rd party Q# grammar to SUPPORTED_LANGUAGES(#3006) [Vyron Vasileiadis][]

Language grammar improvements:

• fix(python) allow keywords immediately following numbers (#2985) [Josh Goebel][]
• fix(xml) char immediately following tag close mis-highlighted (#3044) [Josh Goebel][]
• fix(ruby) fix defined?() mis-highlighted as def (#3025) [Josh Goebel][]
• fix(c) comments after #include <str> blocks (#3041) [Josh Goebel][]
• fix(cpp) comments after #include <str> blocks (#3041) [Josh Goebel][]
• enh(cpp) Highlight all function dispatches (#3005) [Josh Goebel][]
• enh(python) support type hints and better type support (#2972) [Josh Goebel][]
• enh(gml) Add additional GML 2.3 keywords (#2984) [xDGameStudios][]
• fix(cpp) constructor support for initializers (#3001) [Josh Goebel][]
• enh(php) Add trait to class-like naming patterns (#2997) [Ayesh][]
• enh(php) Add Stringable, UnhandledMatchError, and WeakMap classes/interfaces (#2997) [Ayesh][]
• enh(php) Add mixed to list of keywords (#2997) [Ayesh][]
• enh(php) Add support binary, octal, hex and scientific numerals with underscore separator support (#2997) [Ayesh][]

... (truncated)

Commits

• 0c4cc8a (chore) release 10.7.3
• d38b332 fix(parser) Resolve issue with missing TS property (#3225)
• 00233d6 (chore) release 10.7.2
• 4630cde (chore) throttle deprecation messages (#3092)
• 421b23b (chore) fix TS issue, bump 10.7.1
• 7ec45af (chore) bump version to 10.7.0
• bfb5a59 enh(parser) new highlight() API (#3053)
• 6f24850 (cleanup) better boolean naming
• 695ff64 (chore) add shebang for build script
• 23ae72c (chore) rename master branch to main
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by highlightjs_bot, a new releaser for highlight.js since your current version.

Updates hosted-git-info from 2.8.8 to 2.8.9

Changelog

Sourced from hosted-git-info's changelog.

2.8.9 (2021-04-07)

Bug Fixes

• backport regex fix from #76 (29adfe5), closes #84

Commits

• 8d4b369 chore(release): 2.8.9
• 29adfe5 fix: backport regex fix from #76
• See full diff in compare view

Maintainer changes

This version was pushed to npm by nlf, a new releaser for hosted-git-info since your current version.

Updates ini from 1.3.5 to 1.3.8

Commits

• a2c5da8 1.3.8
• af5c6bb Do not use Object.create(null)
• 8b648a1 don't test where our devdeps don't even work
• c74c8af 1.3.7
• 024b8b5 update deps, add linting
• 032fbaf Use Object.create(null) to avoid default object property hazards
• 2da9039 1.3.6
• cfea636 better git push script, before publish instead of after
• 56d2805 do not allow invalid hazardous string as section name
• See full diff in compare view

Maintainer changes

This version was pushed to npm by isaacs, a new releaser for ini since your current version.

Updates postcss from 8.4.31 to 8.4.38

Release notes

Sourced from postcss's releases.

8.4.38

• Fixed endIndex: 0 in errors and warnings (by @​romainmenke).

8.4.37

• Fixed original.column are not numbers error in another case.

8.4.36

• Fixed original.column are not numbers error on broken previous source map.

8.4.35

• Avoid ! in node.parent.nodes type.
• Allow to pass undefined to node adding method to simplify types.

8.4.34

• Fixed AtRule#nodes type (by @​tim-we).
• Cleaned up code (by @​DrKiraDmitry).

8.4.33

• Fixed NoWorkResult behavior difference with normal mode (by @​romainmenke).
• Fixed NoWorkResult usage conditions (by @​ahmdammarr).

8.4.32

• Fixed postcss().process() types (by @​ferreira-tb).

Changelog

Sourced from postcss's changelog.

8.4.38

• Fixed endIndex: 0 in errors and warnings (by @​romainmenke).

8.4.37

• Fixed original.column are not numbers error in another case.

8.4.36

• Fixed original.column are not numbers error on broken previous source map.

8.4.35

• Avoid ! in node.parent.nodes type.
• Allow to pass undefined to node adding method to simplify types.

8.4.34

• Fixed AtRule#nodes type (by Tim Weißenfels).
• Cleaned up code (by Dmitry Kirillov).

8.4.33

• Fixed NoWorkResult behavior difference with normal mode (by Romain Menke).
• Fixed NoWorkResult usage conditions (by @​ahmdammarr).

8.4.32

• Fixed postcss().process() types (by Andrew Ferreira).

Commits

• a69d45e Release 8.4.38 version
• 64e35d9 Update dependencies
• c1ad8fb Merge pull request #1932 from romainmenke/fix-warning-end-index--inventive-nu...
• b45e7e9 fix endIndex
• 1bea246 failing test: for endIndex 0 in rangeBy
• 0fd1d86 Add changelog auto release on Github
• 49c906e Release 8.4.37 version
• b5bd92c Fix another broken prev source map issue
• 2882039 Update dependencies
• e5ad939 Release 8.4.36 version
• Additional commits viewable in compare view

Updates ssri from 6.0.1 to 6.0.2

Changelog

Sourced from ssri's changelog.

6.0.2 (2021-04-07)

Bug Fixes

• backport regex change from 8.0.1 (b30dfdb), closes #19

Commits

• b7c8c7c chore(release): 6.0.2
• b30dfdb fix: backport regex change from 8.0.1
• See full diff in compare view

Maintainer changes

This version was pushed to npm by nlf, a new releaser for ssri since your current version.

Updates y18n from 3.2.1 to 3.2.2

Release notes

Sourced from y18n's releases.

y18n y18n-v4.0.3

Bug Fixes

• release: 4.x.x should not enforce Node 10 (#126) (1e21a53)

y18n y18n-v4.0.2

Bug Fixes

• security: ensure entry exists for backport (#120) (b22c0df)

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by oss-bot, a new releaser for y18n since your current version.

Updates ws from 6.2.1 to 6.2.3

Release notes

Sourced from ws's releases.

7.5.10

Bug fixes

• Backported e55e5106 to the 7.x release line (22c28763).

7.5.9

Bug fixes

• Backported bc8bd34e to the 7.x release line (0435e6e1).

7.5.8

Bug fixes

• Backported 0fdcc0af to the 7.x release line (2758ed35).
• Backported d68ba9e1 to the 7.x release line (dc1781bc).

7.5.7

Bug fixes

• Backported 6946f5fe to the 7.x release line (1f72e2e1).

7.5.6

Bug fixes

• Backported b8186dd1 to the 7.x release line (73dec34b).
• Backported ed2b8039 to the 7.x release line (22a26afb).

7.5.5

Bug fixes

• Backported ec9377ca to the 7.x release line (0e274acd).

7.5.4

Bug fixes

• Backported 6a72da3e to the 7.x release line (76087fbf).
• Backported 869c9892 to the 7.x release line (27997933).

7.5.3

Bug fixes

• The WebSocketServer constructor now throws an error if more than one of the noServer, server, and port options are specefied (66e58d27).
• Fixed a bug where a 'close' event was emitted by a WebSocketServer before the internal HTTP/S server was actually closed (5a587304).
• Fixed a bug that allowed WebSocket connections to be established after WebSocketServer.prototype.close() was called (772236a1).

7.5.2

Bug fixes

... (truncated)

Commits

• d962d70 [dist] 7.5.10
• 22c2876 [security] Fix crash when the Upgrade header cannot be read (#2231)
• 8a78f87 [dist] 7.5.9
• 0435e6e [security] Fix same host check for ws+unix: redirects
• 4271f07 [dist] 7.5.8
• dc1781b [security] Drop sensitive headers when following insecure redirects
• 2758ed3 [fix] Abort the handshake if the Upgrade header is invalid
• a370613 [dist] 7.5.7
• 1f72e2e [security] Drop sensitive headers when following redirects (#2013)
• 8ecd890 [dist] 7.5.6
• Additional commits viewable in compare view

Updates elliptic from 6.5.3 to 6.5.5

Commits

• 7570078 6.5.5
• 206da2e lib: lint
• 0a78e03 [Fix] restore node < 4 compat
• 43ac7f2 6.5.4
• f4bc72b package: bump deps
• 441b742 ec: validate that a point before deriving keys
• e71b2d9 lib: relint using eslint
• 8421a01 build(deps): bump elliptic from 6.4.1 to 6.5.3 (#231)
• See full diff in compare view

Updates ini from 1.3.5 to 1.3.8

Commits

• a2c5da8 1.3.8
• af5c6bb Do not use Object.create(null)
• 8b648a1 don't test where our devdeps don't even work
• c74c8af 1.3.7
• 024b8b5 update deps, add linting
• 032fbaf Use Object.create(null) to avoid default object property hazards
• 2da9039 1.3.6
• cfea636 better git push script, before publish instead of after
• 56d2805 do not allow invalid hazardous string as section name
• See full diff in compare view

Maintainer changes

This version was pushed to npm by isaacs, a new releaser for ini since your current version.

Updates path-parse from 1.0.6 to 1.0.7

Commits

• See full diff in compare view

Updates ssri from 6.0.1 to 6.0.2

Changelog

Sourced from ssri's changelog.

6.0.2 (2021-04-07)

Bug Fixes

• backport regex change from 8.0.1 (b30dfdb), closes #19

Commits

• b7c8c7c chore(release): 6.0.2
• b30dfdb fix: backport regex change from 8.0.1
• See full diff in compare view

Maintainer changes

This version was pushed to npm by nlf, a new releaser for ssri since your current version.

Updates y18n from 4.0.0 to 4.0.3

Release notes

Sourced from y18n's releases.

y18n y18n-v4.0.3

Bug Fixes

• release: 4.x.x should not enforce Node 10 (#126) (1e21a53)

y18n y18n-v4.0.2

Bug Fixes

• security: ensure entry exists for backport (#120) (b22c0df)

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by oss-bot, a new releaser for y18n since your current version.

Updates dns-packet from 1.3.1 to 1.3.4

Commits

• ebdf849 1.3.4
• ac57872 move all allocUnsafes to allocs for easier maintenance
• c64c950 1.3.3
• 0598ba1 fix .. in encodingLength
• 010aedb 1.3.2
• 0d0d593 backport encodingLength fix to v1
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.