[framework-fixtures]: Bump the core group across 1 directory with 6 updates

[dependabot]

Bumps the core group with 3 updates in the /packages/static-build/test/fixtures/hydrogen-v2023 directory: @shopify/cli, @shopify/cli-hydrogen and @shopify/hydrogen.

Updates @shopify/cli from 3.49.2 to 3.61.2

Release notes

Sourced from @​shopify/cli's releases.

3.61.2

What's Changed

• Fix some minor hydrogen bugs

Full Changelog: Shopify/cli@3.61.1...3.61.2

3.61.1

• Fix validation for Pub/Sub URLs in webhook trigger Shopify/cli#3972
• Update the minimun Node version to ^18.20 or >=20.10 Shopify/cli#3992
• Remove punycode warning in Node 22 Shopify/cli#3976
• Improve text wrapping in dev log Shopify/cli#3960
• Update hydrogen version Shopify/cli#3994

3.61.0

shopify now includes Hydrogen commands without needing a separate installation

3.60.1

What's Changed

Bug Fixes

• Fix issue when dev'ing flow extensions Shopify/cli#3885
• Include theme-check-docs-updater data folder in final bundled dist Shopify/cli#3865

Full Changelog: Shopify/cli@3.60.0...3.60.1

3.60.0

@​shopify/cli@​3.60.0

• Adds validations for editor extension collection Shopify/cli#3728
• Adds localization support for editor extension collection Shopify/cli#3717
• Webhook trigger now reads from the configuration instead of .env and accepts more flags Shopify/cli#3727
• Fix bug with plugins installation Shopify/cli#3853

@​shopify/cli-kit@​3.60.0

• Introduce .json support for theme app extensions Shopify/cli#3842

@​shopify/theme@​3.60.0

• Render progress bar for theme uploads to stderr Shopify/cli#3765
• Fix the shopify theme dev proxy to use the development theme, even when users have a browser session with the live theme loaded Shopify/cli#3791
• Fix unpublished themes being marked as development themes Shopify/cli#3798
• Fix issue that prevents shopify theme console from evaluating results when another 'preview_theme_id' is set Shopify/cli#3811
• Fix the shopify theme dev/shopify theme console proxy to handle cookies as expected, and ensure they no longer render the live theme instead of the development theme Shopify/cli#3851

3.59.3

What's Changed

... (truncated)

Changelog

Sourced from @​shopify/cli's changelog.

3.61.2

Patch Changes

• 3c7a211c2: Update hydrogen
  • @​shopify/app@​3.61.2
  • @​shopify/cli-kit@​3.61.2
  • @​shopify/theme@​3.61.2
  • @​shopify/plugin-cloudflare@​3.61.2
  • @​shopify/plugin-did-you-mean@​3.61.2

3.61.1

Patch Changes

• ffdd867cc: Update the minimun Node version to ^18.20 or >=20.10
• 357d76ade: Update hydrogen version
• ffdd867cc: Remove punycode warning in Node 22
• Updated dependencies [ffdd867cc]
• Updated dependencies [4fb2b9212]
  • @​shopify/plugin-did-you-mean@​3.61.1
  • @​shopify/plugin-cloudflare@​3.61.1
  • @​shopify/cli-kit@​3.61.1
  • @​shopify/theme@​3.61.1
  • @​shopify/app@​3.61.1

3.61.0

Minor Changes

• 95d534387: Rename unreleased default_placement_reference extension property to default_placement.
• d85e7adb4: Include hydrogen commands in the bundle

Patch Changes

• Updated dependencies [caa015042]
• Updated dependencies [79a951f3c]
• Updated dependencies [79a951f3c]
• Updated dependencies [87a6cc590]
• Updated dependencies [0c117d0f4]
• Updated dependencies [009a43078]
• Updated dependencies [b2b041f56]
  • @​shopify/app@​3.61.0
  • @​shopify/cli-kit@​3.61.0
  • @​shopify/plugin-cloudflare@​3.61.0
  • @​shopify/plugin-did-you-mean@​3.61.0
  • @​shopify/theme@​3.61.0

3.60.0

... (truncated)

Commits

• d6f0aa4 Version Packages
• 3d4623e Update hydrogen
• 7fc2d07 Version Packages
• b4806d0 Merge pull request #3991 from Shopify/fix-pubsub-url-validation
• ef8775b Update hydrogen and remove init hook
• 149c548 Update Node engines
• 6f07023 Version Packages
• 049b5f3 Merge pull request #3930 from Shopify/hydrogen-bundling
• fe9808e Update hydrogen version
• eded762 remove console.log
• Additional commits viewable in compare view

Updates @shopify/cli-hydrogen from 5.4.1 to 5.5.2

Commits

• See full diff in compare view

Updates @shopify/hydrogen from 2023.7.9 to 2023.10.6

Commits

• See full diff in compare view

Updates @shopify/remix-oxygen from 1.1.5 to 1.1.8

Updates @shopify/hydrogen-react from 2023.7.4 to 2023.10.1

Release notes

Sourced from @​shopify/hydrogen-react's releases.

@​shopify/hydrogen-react@​2023.10.1

Patch Changes

• Update all Node.js dependencies to version 18. (Not a breaking change, since Node.js 18 is already required by Remix v2.) (#1543) by @​michenly

• Skip private access token warning when using mock.shop. (#1538) by @​frandiox

• Add an optional channel prop to the ShopPayButton component, which adds order attribution support for either the Headless or Hydrogen sales channel. (#1447) by @​QuintonC

@​shopify/hydrogen-react@​2023.10.0

Major Changes

• The Storefront API types included are now generated using @graphql-codegen/typescript@4 (changelog). This results in a breaking change if you were importing Scalars directly from @shopify/hydrogen-react or @shopify/hydrogen: (#1108) by @​frandiox

   import type {Scalars} from '@shopify/hydrogen/storefront-api-types';
  type Props = {
  
  id: Scalars['ID']; // This was a string
  
  
  id: Scalars['ID']['input']; // Need to access 'input' or 'output' to get the string
  };

Patch Changes

• Remove deprecated parameters and props (#1455 and #1435): (#1435) by @​wizardlyhel

  • createStorefrontClient parameters buyerIp and requestGroupId
  • <Image> props loaderOptions and widths

@​shopify/hydrogen-react@​2023.7.6

Patch Changes

• Fix template dist package due to CI error (#1451) by @​wizardlyhel

@​shopify/hydrogen-react@​2023.7.5

Patch Changes

• Add Language to CartProvider (#1408) by @​Qubica

• Add attributes option to useLoadScript (#1442) by @​wizardlyhel

• Unlock hydrogen-react package.json exports to make it easier to use with NextJS and other frameworks. Note: Using Hydrogen internals is not officially supported, and those internal APIs could change at anytime outside our usual calendar versioning. (#994) by @​blittle

Changelog

Sourced from @​shopify/hydrogen-react's changelog.

2023.10.1

Patch Changes

• Update all Node.js dependencies to version 18. (Not a breaking change, since Node.js 18 is already required by Remix v2.) (#1543) by @​michenly

• Skip private access token warning when using mock.shop. (#1538) by @​frandiox

• Add an optional channel prop to the ShopPayButton component, which adds order attribution support for either the Headless or Hydrogen sales channel. (#1447) by @​QuintonC

2023.10.0

Major Changes

• The Storefront API types included are now generated using @graphql-codegen/typescript@4 (changelog). This results in a breaking change if you were importing Scalars directly from @shopify/hydrogen-react or @shopify/hydrogen: (#1108) by @​frandiox

   import type {Scalars} from '@shopify/hydrogen/storefront-api-types';
  type Props = {
  
  id: Scalars['ID']; // This was a string
  
  
  id: Scalars['ID']['input']; // Need to access 'input' or 'output' to get the string
  };

Patch Changes

• Remove deprecated parameters and props (#1455 and #1435): (#1435) by @​wizardlyhel

  • createStorefrontClient parameters buyerIp and requestGroupId
  • <Image> props loaderOptions and widths

2023.7.6

Patch Changes

• Fix template dist package due to CI error (#1451) by @​wizardlyhel

2023.7.5

Patch Changes

• Add Language to CartProvider (#1408) by @​Qubica

• Add attributes option to useLoadScript (#1442) by @​wizardlyhel

• Unlock hydrogen-react package.json exports to make it easier to use with NextJS and other frameworks. Note: Using Hydrogen internals is not officially supported, and those internal APIs could change at anytime outside our usual calendar versioning. (#994) by @​blittle

Commits

• 727baac [ci] release 2023-10 (#1491)
• 62f6787 Hide token warning in mock.shop (#1538)
• f352f16 Add docs commands to turbo (#1472)
• 848c626 🔼 Update dependency to require node v18 (#1543)
• e8cc49f Adds optional channel prop to ShopPayButton (#1447)
• 300fe1b [ci] release 2023-10 (#1453)
• 2ff057d Fix 2023-10 links (#1471)
• ad45656 Update Codegen dependencies and make it stable (#1108)
• 0ae7cbe Remove deprecated props (#1435)
• 7fc088e Sfapi 2023-10 update (#1431)
• Additional commits viewable in compare view

Updates @shopify/mini-oxygen from 2.2.2 to 2.2.5

Release notes

Sourced from @​shopify/mini-oxygen's releases.

@​shopify/mini-oxygen@​2.2.4

Patch Changes

• Update all Node.js dependencies to version 18. (Not a breaking change, since Node.js 18 is already required by Remix v2.) (#1543) by @​michenly

• Fix how peer dependencies are resolved. (#1489) by @​frandiox

@​shopify/mini-oxygen@​2.2.3

Patch Changes

• Increase the request body size limit to 100mb when running locally. (#1421) by @​frandiox

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[changeset-bot]

⚠️ No Changeset found

Latest commit: fd5deed

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@shopify/cli-hydrogen@5.5.2	Transitive: environment, eval, filesystem, network, shell, unsafe	+168	475 MB	shopify-dep
npm/@shopify/cli@3.61.2	Transitive: environment, filesystem, network, shell	+31	310 MB	shopify-dep
npm/@shopify/hydrogen@2023.10.6	environment, network	+12	64.3 MB	shopify-dep
npm/@shopify/remix-oxygen@1.1.8	environment	+1	114 kB	shopify-dep

🚮 Removed packages: npm/@shopify/cli-hydrogen@5.4.1, npm/@shopify/cli@3.49.2, npm/@shopify/hydrogen@2023.7.9, npm/@shopify/remix-oxygen@1.1.5

View full report↗︎

[socket-security]

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report↗︎

[dependabot]

Superseded by #11752.