build(deps): bump the npm-deps group with 8 updates

[dependabot]

Bumps the npm-deps group with 8 updates:

Package	From	To
linkify-html	4.3.1	4.3.2
linkifyjs	4.3.1	4.3.2
cross-env	7.0.3	10.0.0
eslint	9.31.0	9.32.0
googleapis	153.0.0	154.0.0
pdfjs-dist	5.3.93	5.4.54
puppeteer	24.14.0	24.15.0
typescript-eslint	8.37.0	8.38.0

Updates linkify-html from 4.3.1 to 4.3.2

Release notes

Sourced from linkify-html's releases.

v4.3.2

What's Changed

• Use Object.assign instead of custom assign function by @​nfrasser in nfrasser/linkifyjs#518

Full Changelog: nfrasser/linkifyjs@v4.3.1...v4.3.2

Changelog

Sourced from linkify-html's changelog.

v4.3.2

• Replace assign helper with Object.assign to avoid prototype pollution

Commits

• 3abe9ab v4.3.2
• See full diff in compare view

Updates linkifyjs from 4.3.1 to 4.3.2

Release notes

Sourced from linkifyjs's releases.

v4.3.2

What's Changed

• Use Object.assign instead of custom assign function by @​nfrasser in nfrasser/linkifyjs#518

Full Changelog: nfrasser/linkifyjs@v4.3.1...v4.3.2

Changelog

Sourced from linkifyjs's changelog.

v4.3.2

• Replace assign helper with Object.assign to avoid prototype pollution

Commits

• 3abe9ab v4.3.2
• 931d3e2 Use Object.assign instead of custom assign function (#518)
• See full diff in compare view

Updates cross-env from 7.0.3 to 10.0.0

Release notes

Sourced from cross-env's releases.

v10.0.0

10.0.0 (2025-07-25)

TL;DR: You should probably not have to change anything if:

• You're using a modern maintained version of Node.js (v20+ is tested)
• You're only using the CLI (most of you are as that's the intended purpose)

In this release (which should have been v8 except I had some issues with automated releases 🙈), I've updated all the things and modernized the package. This happened in #261

Was this needed? Not really, but I just thought it'd be fun to modernize this package.

Here's the highlights of what was done.

• Replace Jest with Vitest for testing
• Convert all source files from .js to .ts with proper TypeScript types
• Use zshy for ESM-only builds (removes CJS support)
• Adopt @​epic-web/config for TypeScript, ESLint, and Prettier
• Update to Node.js >=20 requirement
• Remove kcd-scripts dependency
• Add comprehensive e2e tests with GitHub Actions matrix testing
• Update GitHub workflow with caching and cross-platform testing
• Modernize documentation and remove outdated sections
• Update all dependencies to latest versions
• Add proper TypeScript declarations and exports

The tool maintains its original functionality while being completely modernized with the latest tooling and best practices

BREAKING CHANGES

• This is a major rewrite that changes the module format from CommonJS to ESM-only. The package now requires Node.js >=20 and only exports ESM modules (not relevant in most cases).

Commits

• 8635e80 fix(release): manually release a major version
• 3a58f22 chore: fix npmrc registry
• b70bfff chore(ci): add names to steps and workflows
• cc5759d fix(release): manually release a major version
• 080a859 chore: remove publish script
• 31e5bc7 chore(ci): restore built files
• 81e9c34 chore(ci): add back semantic-release
• 3e380cb fix: link to license
• 0642472 fix: handle edge case and update README for clarity
• 3ff5b3d feat: modernize cross-env with TypeScript, Vitest, and ESM-only build (#261)
• Additional commits viewable in compare view

Updates eslint from 9.31.0 to 9.32.0

Release notes

Sourced from eslint's releases.

v9.32.0

Features

• 1245000 feat: support explicit resource management in core rules (#19828) (fnx)
• 0e957a7 feat: support typescript types in accessor rules (#19882) (fnx)

Bug Fixes

• 960fd40 fix: Upgrade @​eslint/js (#19971) (Nicholas C. Zakas)
• bbf23fa fix: Refactor reporting into FileReport (#19877) (Nicholas C. Zakas)
• d498887 fix: bump @​eslint/plugin-kit to 0.3.4 to resolve vulnerability (#19965) (Milos Djermanovic)
• f46fc6c fix: report only global references in no-implied-eval (#19932) (Nitin Kumar)
• 7863d26 fix: remove outdated types in ParserOptions.ecmaFeatures (#19944) (ntnyq)
• 3173305 fix: update execScript message in no-implied-eval rule (#19937) (TKDev7)

Documentation

• 86e7426 docs: Update README (GitHub Actions Bot)

Chores

• 50de1ce chore: package.json update for @​eslint/js release (Jenkins)
• 74f01a3 ci: unpin jiti to version ^2.5.1 (#19970) (루밀LuMir)
• 2ab1381 ci: pin jiti to version 2.4.2 (#19964) (Francesco Trotta)
• b7f7545 test: switch to flat config mode in SourceCode tests (#19953) (Milos Djermanovic)
• f5a35e3 test: switch to flat config mode in eslint-fuzzer (#19960) (Milos Djermanovic)
• e22af8c refactor: use CustomRuleDefinitionType in JSRuleDefinition (#19949) (Francesco Trotta)
• e855717 chore: switch performance tests to hyperfine (#19919) (Francesco Trotta)
• 2f73a23 test: switch to flat config mode in ast-utils tests (#19948) (Milos Djermanovic)
• c565a53 chore: exclude further_reading_links.json from Prettier formatting (#19943) (Milos Djermanovic)

Changelog

Sourced from eslint's changelog.

v9.32.0 - July 25, 2025

• 960fd40 fix: Upgrade @​eslint/js (#19971) (Nicholas C. Zakas)
• 50de1ce chore: package.json update for @​eslint/js release (Jenkins)
• bbf23fa fix: Refactor reporting into FileReport (#19877) (Nicholas C. Zakas)
• 74f01a3 ci: unpin jiti to version ^2.5.1 (#19970) (루밀LuMir)
• d498887 fix: bump @​eslint/plugin-kit to 0.3.4 to resolve vulnerability (#19965) (Milos Djermanovic)
• 2ab1381 ci: pin jiti to version 2.4.2 (#19964) (Francesco Trotta)
• b7f7545 test: switch to flat config mode in SourceCode tests (#19953) (Milos Djermanovic)
• f5a35e3 test: switch to flat config mode in eslint-fuzzer (#19960) (Milos Djermanovic)
• f46fc6c fix: report only global references in no-implied-eval (#19932) (Nitin Kumar)
• 86e7426 docs: Update README (GitHub Actions Bot)
• e22af8c refactor: use CustomRuleDefinitionType in JSRuleDefinition (#19949) (Francesco Trotta)
• 1245000 feat: support explicit resource management in core rules (#19828) (fnx)
• e855717 chore: switch performance tests to hyperfine (#19919) (Francesco Trotta)
• 0e957a7 feat: support typescript types in accessor rules (#19882) (fnx)
• 2f73a23 test: switch to flat config mode in ast-utils tests (#19948) (Milos Djermanovic)
• 7863d26 fix: remove outdated types in ParserOptions.ecmaFeatures (#19944) (ntnyq)
• c565a53 chore: exclude further_reading_links.json from Prettier formatting (#19943) (Milos Djermanovic)
• 3173305 fix: update execScript message in no-implied-eval rule (#19937) (TKDev7)

Commits

• 2364031 9.32.0
• a0e62e2 Build: changelog update for 9.32.0
• 960fd40 fix: Upgrade @​eslint/js (#19971)
• 50de1ce chore: package.json update for @​eslint/js release
• bbf23fa fix: Refactor reporting into FileReport (#19877)
• 74f01a3 ci: unpin jiti to version ^2.5.1 (#19970)
• d498887 fix: bump @​eslint/plugin-kit to 0.3.4 to resolve vulnerability (#19965)
• 2ab1381 ci: pin jiti to version 2.4.2 (#19964)
• b7f7545 test: switch to flat config mode in SourceCode tests (#19953)
• f5a35e3 test: switch to flat config mode in eslint-fuzzer (#19960)
• Additional commits viewable in compare view

Updates googleapis from 153.0.0 to 154.0.0

Release notes

Sourced from googleapis's releases.

googleapis: v154.0.0

154.0.0 (2025-07-22)

⚠ BREAKING CHANGES

• This release has breaking changes.

Features

• run the generator (#3716) (cc510de)

Changelog

Sourced from googleapis's changelog.

{ ".": "154.0.0", "src/apis/abusiveexperiencereport": "3.0.1", "src/apis/acceleratedmobilepageurl": "3.0.1", "src/apis/accesscontextmanager": "11.0.1", "src/apis/adexchangebuyer": "3.0.1", "src/apis/adexchangebuyer2": "6.0.1", "src/apis/adexperiencereport": "3.0.1", "src/apis/admin": "25.1.0", "src/apis/admob": "4.0.1", "src/apis/adsense": "12.0.1", "src/apis/adsensehost": "7.0.1", "src/apis/alertcenter": "11.0.1", "src/apis/analytics": "9.0.1", "src/apis/analyticsreporting": "3.0.1", "src/apis/androiddeviceprovisioning": "8.0.1", "src/apis/androidenterprise": "11.0.1", "src/apis/androidmanagement": "19.1.0", "src/apis/androidpublisher": "29.2.0", "src/apis/apihub": "2.1.0", "src/apis/apim": "2.0.1", "src/apis/apphub": "5.0.0", "src/apis/appsactivity": "3.0.1", "src/apis/bigtableadmin": "27.1.0", "src/apis/blogger": "3.0.1", "src/apis/books": "6.0.1", "src/apis/calendar": "11.0.1", "src/apis/chat": "40.0.0", "src/apis/chromemanagement": "21.1.0", "src/apis/chromepolicy": "11.0.1", "src/apis/chromeuxreport": "5.0.1", "src/apis/civicinfo": "18.1.0", "src/apis/classroom": "6.0.1", "src/apis/cloudidentity": "18.0.1", "src/apis/cloudkms": "19.0.1", "src/apis/cloudsearch": "17.0.1", "src/apis/cloudshell": "4.0.1", "src/apis/cloudtasks": "17.0.1", "src/apis/composer": "11.0.1", "src/apis/content": "37.0.1", "src/apis/customsearch": "5.0.1", "src/apis/dataflow": "18.0.0", "src/apis/datafusion": "13.0.1", "src/apis/datamigration": "9.2.0", "src/apis/deploymentmanager": "16.0.1", "src/apis/dfareporting": "14.0.1", "src/apis/digitalassetlinks": "7.0.1", "src/apis/discovery": "3.0.1", "src/apis/displayvideo": "32.2.0", "src/apis/docs": "5.0.1",

... (truncated)

Commits

• b45d84f chore: release main (#3719)
• cc510de feat: run the generator (#3716)
• 3afbc4e chore: update .OwlBot.lock.yaml to latest image (#3717)
• See full diff in compare view

Updates pdfjs-dist from 5.3.93 to 5.4.54

Release notes

Sourced from pdfjs-dist's releases.

v5.4.54

This release contains improvements for accessibility, annotations, the annotation editor, font conversion and the viewer.

Changes since v5.3.93

• Bump the stable version in pdfjs.config by @​timvandermeij in mozilla/pdf.js#20061
• Use the creation date in the popup when there is no modification date by @​calixteman in mozilla/pdf.js#20058
• Fix typos across the codebase by @​noritaka1166 in mozilla/pdf.js#20060
• Fix the default appearance of a Polygon annotation when a fill color is provided by @​calixteman in mozilla/pdf.js#20063
• Add few methods to the Dict class in order to simplify the code when writing an annotation by @​calixteman in mozilla/pdf.js#20064
• [api-minor] Move getContext call to InternalRenderTask by @​ryzokuken in mozilla/pdf.js#20016
• Bump library version to 5.4 by @​ryzokuken in mozilla/pdf.js#20071
• Revert "Make horizontal padding relative to device width" by @​calixteman in mozilla/pdf.js#20076
• Use the canvas context from mozPrintCallback when printing a pdf from the Firefox viewer by @​calixteman in mozilla/pdf.js#20082
• In HCM, invert colors when hovering an annotation with a popup by @​calixteman in mozilla/pdf.js#20084
• Add the l10n parameter when pasting a Signature annotation by @​calixteman in mozilla/pdf.js#20081
• [Editor] Remove a popup from the DOM when it's deleted by @​calixteman in mozilla/pdf.js#20077
• [Editor] Add the possibility to add a popup to an annotation when saving by @​calixteman in mozilla/pdf.js#19976
• Fix the "must check that canvas perfectly fits the page whatever the zoom level" viewer integration test by @​timvandermeij in mozilla/pdf.js#20087
• Update dependencies and translations to the most recent versions by @​timvandermeij in mozilla/pdf.js#20086
• Handle the case where all the image data are in the alpha channel (bug 1975719) by @​calixteman in mozilla/pdf.js#20085
• [Editor] Add a color picker in the toolbar of Ink and Freetext annotations by @​calixteman in mozilla/pdf.js#20070
• Avoid Firefox test failure by @​calixteman in mozilla/pdf.js#20092
• [Editor] Use a round color swatch for the basic color picker by @​calixteman in mozilla/pdf.js#20094
• [Editor] Make sure that doorhangers are large enough to fit localized strings by @​calixteman in mozilla/pdf.js#20095
• Don't add an undefined id to the span for marked content by @​calixteman in mozilla/pdf.js#20103
• [Editor] Make possible to change the highlight color from the main panel by @​calixteman in mozilla/pdf.js#20098
• [Editor] Add the possibility to add Popup annotations (bug 1976724) by @​calixteman in mozilla/pdf.js#20080
• [Editor] Only add a popup to an existing annotation if it exits by @​calixteman in mozilla/pdf.js#20104
• Use canvas context text primitives when the font file is missing by @​calixteman in mozilla/pdf.js#20101
• Make the link annotations correctly announced by screen readers (bug 1708041) by @​calixteman in mozilla/pdf.js#20096
• Fix intermittent failure in the viewer alert tests by @​timvandermeij in mozilla/pdf.js#20106
• [Editor] Fix the highlighting colors in HCM (bug 1977259) by @​calixteman in mozilla/pdf.js#20099
• Update translations and dependencies to the most recent versions by @​timvandermeij in mozilla/pdf.js#20107
• Fix the xref table with the values we've at the beginning of a xref stream (bug 1978317) by @​calixteman in mozilla/pdf.js#20113
• Use a HTML date/time input when a field requires a date or a time. by @​calixteman in mozilla/pdf.js#20116
• [Editor] Don't show the actions button in the comment popup when it's useless by @​calixteman in mozilla/pdf.js#20120

Commits

• 295fb3e Merge pull request #20120 from calixteman/remove_actions_button
• efc1654 [Editor] Don't show the actions button in the comment popup when it's useless
• 542514e Merge pull request #20116 from calixteman/add_date_picker
• 57ce4f8 Use a HTML date/time input when a field requires a date or a time.
• aee4f2d Merge pull request #20113 from calixteman/bug1978317
• 78391ed Fix the xref table with the values we've at the beginning of a xref stream (b...
• bfc2025 Merge pull request #20107 from timvandermeij/updates
• dcf161e Update translations to the most recent versions
• 5d6023c Update dependencies to the most recent versions
• ed14197 Merge pull request #20099 from calixteman/bug1977259
• Additional commits viewable in compare view

Updates puppeteer from 24.14.0 to 24.15.0

Release notes

Sourced from puppeteer's releases.

puppeteer-core: v24.15.0

24.15.0 (2025-07-23)

Features

• emulateTimezone via BiDi (#14042) (e8768c9)
• roll to Firefox 141.0 (#14048) (f8853de)

Bug Fixes

• roll to Chrome 138.0.7204.168 (#14047) (4a89e96)

puppeteer: v24.15.0

24.15.0 (2025-07-23)

Miscellaneous Chores

• puppeteer: Synchronize puppeteer versions

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • puppeteer-core bumped from 24.14.0 to 24.15.0

Changelog

Sourced from puppeteer's changelog.

24.15.0 (2025-07-23)

Miscellaneous Chores

• puppeteer: Synchronize puppeteer versions

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • puppeteer-core bumped from 24.14.0 to 24.15.0

Features

• emulateTimezone via BiDi (#14042) (e8768c9)
• roll to Firefox 141.0 (#14048) (f8853de)

Bug Fixes

• roll to Chrome 138.0.7204.168 (#14047) (4a89e96)

Commits

• d5faf22 chore: release main (#14044)
• f8853de feat: roll to Firefox 141.0 (#14048)
• 4a89e96 fix: roll to Chrome 138.0.7204.168 (#14047)
• e8768c9 feat: emulateTimezone via BiDi (#14042)
• d05fac0 chore: bump chromium-bidi to 7.2.0 (#14041)
• e969654 chore: update renamed package (#14040)
• 4e65506 chore(deps-dev): Bump the dev-dependencies group with 10 updates (#14039)
• 0491a71 fix: add manual trigger for Docker (#14038)
• bf83992 chore: fix Dockerfile (#14037)
• 610c8ba chore(deps): Bump node from 2fa6c97 to 9e6918e in /docker in the all grou...
• Additional commits viewable in compare view

Updates typescript-eslint from 8.37.0 to 8.38.0

Release notes

Sourced from typescript-eslint's releases.

v8.38.0

8.38.0 (2025-07-21)

🚀 Features

• typescript-estree: forbid optional chain in TemplateTaggedLiteral (#11391)

🩹 Fixes

• disallow extra properties in rule options (#11397)
• eslint-plugin: [consistent-generic-constructors] resolve conflict with isolatedDeclarations if enabled in constructor option (#11351)
• typescript-eslint: infer tsconfigRootDir with v8 API (#11412)
• typescript-eslint: error on nested extends in tseslint.config() (#11361)
• typescript-estree: ensure the token type of the property name is Identifier (#11329)

❤️ Thank You

• Andrew Kazakov @​andreww2012
• Kirk Waiblinger @​kirkwaiblinger
• MK @​asdf93074
• tao
• Younsang Na @​nayounsang

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from typescript-eslint's changelog.

8.38.0 (2025-07-21)

🩹 Fixes

• typescript-eslint: error on nested extends in tseslint.config() (#11361)
• typescript-eslint: infer tsconfigRootDir with v8 API (#11412)

❤️ Thank You

• Kirk Waiblinger @​kirkwaiblinger

You can read about our versioning strategy and releases on our website.

Commits

• d11e79e chore(release): publish 8.38.0
• 6d8fae9 fix(typescript-eslint): error on nested extends in tseslint.config() (#11...
• abb7c4d fix(typescript-eslint): infer tsconfigRootDir with v8 API (#11412)
• See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
puppeteer	[>= 21.7.a, < 21.8]
pdfjs-dist	[>= 4.0.a, < 4.1]
puppeteer	[>= 22.0.a, < 22.1]
puppeteer	[>= 22.1.a, < 22.2]
puppeteer	[>= 22.3.a, < 22.4]
puppeteer	[>= 22.5.a, < 22.6]
puppeteer	[>= 22.6.a, < 22.7]
puppeteer	[>= 22.4.a, < 22.5]
puppeteer	[>= 22.2.a, < 22.3]
puppeteer	[>= 22.7.a, < 22.8]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions