chore(deps): (deps): bump the production group with 4 updates

[dependabot]

Bumps the production group with 4 updates: lru-cache, postcss, tinyexec and tinyglobby.

Updates lru-cache from 11.2.7 to 11.3.2

Changelog

Sourced from lru-cache's changelog.

cringe lorg

11.3

• Add observability features, expand the coverage of LRUCache.Status objects.

11.2

• Add the perf option to specify performance, Date, or any other object with a now() method that returns a number.

11.1

• Add the onInsert method

11.0

• Drop support for node less than v20

10.4

• Accidental minor update, should've been patch.

10.3

• add forceFetch() method
• set disposeReason to 'expire' when it's the result of a TTL expiration, or 'fetch' when it's the result of an aborted or undefined-returning fetch()
• add memo() method

10.2

• types: implement the Map<K, V> interface

10.1

• add cache.info(key) to get value as well as ttl and size information.

10.0

• cache.fetch() return type is now Promise<V | undefined> instead of Promise<V | void>. This is an irrelevant change practically speaking, but can require changes for TypeScript users.

9.1

... (truncated)

Commits

• 005e560 11.3.2
• 47990dc add node esm dialect to avoid TLA
• 4d6d1b3 11.3.1
• 412dab5 o11y: clarify 'get' options, organize get() method
• 8c8a196 docs: mention tracing in the Status jsdoc
• 9438a9e docs: fix Status links
• dce0c13 docs: formatting
• ece6686 doc: typeo
• 9e87326 11.3.0
• fcf924b changelog 11.3
• Additional commits viewable in compare view

Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.

Updates postcss from 8.5.8 to 8.5.9

Release notes

Sourced from postcss's releases.

8.5.9

• Speed up source map encoding paring in case of the error.

Changelog

Sourced from postcss's changelog.

8.5.9

• Speed up source map encoding paring in case of the error.

Commits

• fe88ac2 Release 8.5.9 version
• c551632 Avoid RegExp when we can use simple JS
• 89a6b74 Move SECURITY.txt for docs folder to keep GitHub page cleaner
• 6ceb8a4 Create SECURITY.md
• 02ccae6 Another way to fix CI with .ts ext in tests on old Node.js
• 2c36658 Another way to fix CI with TS on old Node.js
• b906003 Another way to fix CI with old Node.js
• 04d32cd Fix another issue with Node.js 10 on CI
• df86cdf Try to fix Node.js 10 on CI
• 82bec0d Move to oxfmt
• Additional commits viewable in compare view

Updates tinyexec from 1.0.4 to 1.1.1

Release notes

Sourced from tinyexec's releases.

1.1.1

What's Changed

• fix: install npm twice to make publish work by @​43081j in tinylibs/tinyexec#111

Full Changelog: tinylibs/tinyexec@1.1.0...1.1.1

1.1.0

What's Changed

• test: add publint by @​AriPerkkio in tinylibs/tinyexec#95
• chore(deps-dev): bump the development-dependencies group with 5 updates by @​dependabot[bot] in tinylibs/tinyexec#97
• feat(#33): implements sync API by @​SukkaW in tinylibs/tinyexec#96
• docs(#96): add sync API docs by @​SukkaW in tinylibs/tinyexec#98
• Improve Bun runtime compatibility by @​iiroj in tinylibs/tinyexec#101
• chore(deps-dev): bump the development-dependencies group across 1 directory with 6 updates by @​dependabot[bot] in tinylibs/tinyexec#105
• feat: Support Result | ExecProcess | string for options.stdin by @​porada in tinylibs/tinyexec#106
• fix: use stream.pipeline to fix combining streams with auto-destroy disabled by @​iiroj in tinylibs/tinyexec#103
• fix: add current node executable's directory to start of PATH by @​iiroj in tinylibs/tinyexec#108
• chore(deps-dev): bump the development-dependencies group with 2 updates by @​dependabot[bot] in tinylibs/tinyexec#110

New Contributors

• @​porada made their first contribution in tinylibs/tinyexec#106

Full Changelog: tinylibs/tinyexec@1.0.4...1.1.0

Commits

• 53d1934 fix: install npm twice to make publish work (#111)
• 8a2484f chore(deps-dev): bump the development-dependencies group with 2 updates (#110)
• 5120700 fix: add current node executable's directory to start of PATH (#108)
• a158629 fix: use stream.pipeline to fix combining streams with auto-destroy disable...
• 4acd4a9 feat: Support Result | ExecProcess | string for options.stdin (#106)
• 04fde07 chore(deps-dev): bump the development-dependencies group across 1 directory w...
• fa9f740 feat: improve Bun runtime compatibility (#101)
• 52b74a8 docs(#96): add sync API docs (#98)
• 70b1d9c feat(#33): implements sync API (#96)
• f9323a9 chore(deps-dev): bump the development-dependencies group with 5 updates (#97)
• Additional commits viewable in compare view

Updates tinyglobby from 0.2.15 to 0.2.16

Release notes

Sourced from tinyglobby's releases.

0.2.16

Fixed

• Upgraded picomatch to 4.0.4, mitigating any potential exposure to CVE-2026-33671 and CVE-2026-33672

Changed

• Overhauled and optimized most internals by @​Torathion
• Ignore patterns are no longer compiled twice by @​webpro

Consider sponsoring if you'd like to support the development of this project and the goal of reaching a lighter and faster ecosystem

Changelog

Sourced from tinyglobby's changelog.

0.2.16

Fixed

• Upgraded picomatch to 4.0.4, mitigating any potential exposure to CVE-2026-33671 and CVE-2026-33672

Changed

• Overhauled and optimized most internals by Torathion
• Ignore patterns are no longer compiled twice by webpro

Commits

• 5779202 release 0.2.16
• 071954f bump deps once more
• e541dde do not import the whole fs module
• 2381b76 fix root being too broad
• 0addeb9 chore(deps): update all non-major dependencies (#191)
• 91ac26c chore(deps): update pnpm/action-setup action to v5 (#192)
• c50558e upgrade picomatch (and everything else)
• 6185175 chore(deps): update dependency picomatch to v4.0.4 [security] (#193)
• 49c2b93 enable pnpm trustPolicy
• bc825c4 chore(deps): update all non-major dependencies (#181)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions