Bump zone.js from 0.14.10 to 0.15.1

[dependabot]

Bumps zone.js from 0.14.10 to 0.15.1.

Changelog

Sourced from zone.js's changelog.

0.15.1 (2025-05-22)

Bug Fixes

• zone.js: classes that extend Error should retain cause property (#61599) (ad8931c)
• zone.js: more robust check for promise-like objects (#57388) (e608e6c), closes #57385
• zone.js: remove abort listener once fetch is settled (#57882) (6976349)

0.15.0 (2024-08-15)

Bug Fixes

• zone.js: Add support for addition jest functions. (#57280) (e1240c6), closes #57277
• zone.js: Update the default behavior of fakeAsync to flush after the test (#57240) (70e8b40)

BREAKING CHANGES

• zone.js: fakeAsync will now flush pending timers at the end of the given function by default. To opt-out of this, you can use {flush: false} in options parameter of fakeAsync

Commits

• e33444e release: cut the zone.js-0.15.1 release (#61632)
• 1ea39e0 refactor(zone.js): Add a withProxyZone helper that might be used for unpatc...
• ad8931c fix(zone.js): classes that extend Error should retain cause property (#61599)
• e57509e build: update dependency google-closure-compiler to v20250519 (#61551)
• c7420df build: update dependency google-closure-compiler to v20250518 (#61490)
• 10c2ab2 build: lock file maintenance (#61456)
• 41be5ee build: update dependency google-closure-compiler to v20250514 (#61439)
• 7d39b4a build: update dependency google-closure-compiler to v20250407 (#61397)
• b71c35a refactor: update packages/core:{core,src} to ts_project (#61275)
• 0fc0d67 build: update cross-repo angular dependencies (#61286)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[alanorth]

Strange to see main (current DSpace 9.0) is on zone.js v0.14.x while dspace-8_x is on zone.js v0.15.x...

[alanorth]

Dependabot should not be bumping zone.js because it introduces dependency conflicts, as it is a peer dependency of Angular. In this case, DSpace main currently uses Angular 18.2.x, which depends on zone.js ~0.14.10.

I think we need a new rule in .github/dependabot.yml.

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.