Bump the npm_and_yarn group across 1 directory with 21 updates

[dependabot]

Bumps the npm_and_yarn group with 20 updates in the / directory:

Package	From	To
aws-sdk	2.771.0	2.814.0
serverless-offline	6.8.0	8.1.0
@babel/traverse	7.12.1	7.28.0
cached-path-relative	1.0.2	1.1.0
color-string	1.5.4	1.9.1
decode-uri-component	0.2.0	0.2.2
handlebars	4.7.6	4.7.8
jszip	3.5.0	3.10.1
minimist	1.2.5	1.2.8
moment-timezone	0.5.31	0.5.48
moment	2.29.1	2.30.1
node-fetch	2.6.1	2.7.0
protobufjs	6.10.1	6.11.4
qs	6.5.2	6.5.3
shell-quote	1.7.2	1.8.3
shelljs	0.8.4	0.8.5
simple-get	2.8.1	2.8.2
socket.io-parser	3.3.1	3.3.4
tar-fs	1.16.3	1.16.5
tar	6.0.5	6.2.1

Updates aws-sdk from 2.771.0 to 2.814.0

Changelog

Sourced from aws-sdk's changelog.

2.814.0

• bugfix: Credentials: SDK will throw if shared ini file's profile name can be resolved to proto
• feature: EC2: EBS io2 volumes now supports Multi-Attach
• feature: PersonalizeRuntime: Updated FilterValues regex pattern to align with Filter Expression.
• feature: RDS: Adds IAM DB authentication information to the PendingModifiedValues output of the DescribeDBInstances API. Adds ClusterPendingModifiedValues information to the output of the DescribeDBClusters API.

2.813.0

• feature: ConfigService: Adding PutExternalEvaluation API which grants permission to deliver evaluation result to AWS Config
• feature: DLM: Provide Cross-account copy event based policy support in DataLifecycleManager (DLM)
• feature: EC2: C6gn instances are powered by AWS Graviton2 processors and offer 100 Gbps networking bandwidth. These instances deliver up to 40% better price-performance benefit versus comparable x86-based instances
• feature: Imagebuilder: This release adds support for building and distributing container images within EC2 Image Builder.
• feature: KMS: Added CreationDate and LastUpdatedDate timestamps to ListAliases API response
• feature: Route53: This release adds support for DNSSEC signing in Amazon Route 53.
• feature: Route53Resolver: Route 53 Resolver adds support for enabling resolver DNSSEC validation in virtual private cloud (VPC).
• feature: SQS: Amazon SQS adds queue attributes to enable high throughput FIFO.
• feature: ServiceCatalog: Support TagOptions sharing with Service Catalog portfolio sharing.

2.812.0

• feature: CostExplorer: This release updates the "MonitorArnList" from a list of String to be a list of Arn for both CreateAnomalySubscription and UpdateAnomalySubscription APIs
• feature: Location: Initial release of Amazon Location Service. A new geospatial service providing capabilities to render maps, geocode/reverse geocode, track device locations, and detect geofence entry/exit events.
• feature: QuickSight: QuickSight now supports connecting to federated data sources of Athena
• feature: WellArchitected: This is the first release of AWS Well-Architected Tool API support, use to review your workload and compare against the latest AWS architectural best practices.

2.811.0

• feature: Amp: (New Service) Amazon Managed Service for Prometheus is a fully managed Prometheus-compatible monitoring service that makes it easy to monitor containerized applications securely and at scale.
• feature: GreengrassV2: AWS IoT Greengrass V2 is a new major version of AWS IoT Greengrass. This release adds several updates such as modular components, continuous deployments, and improved ease of use.
• feature: IoTAnalytics: FileFormatConfiguration enables data store to save data in JSON or Parquet format. S3Paths enables you to specify the S3 objects that save your channel messages when you reprocess the pipeline.
• feature: IoTFleetHub: AWS IoT Fleet Hub, a new feature of AWS IoT Device Management that provides a web application for monitoring and managing device fleets connected to AWS IoT at scale.
• feature: IoTWireless: AWS IoT for LoRaWAN enables customers to setup a private LoRaWAN network by connecting their LoRaWAN devices and gateways to the AWS cloud without managing a LoRaWAN Network Server.
• feature: Iot: AWS IoT Rules Engine adds Kafka Action that allows sending data to Apache Kafka clusters inside a VPC. AWS IoT Device Defender adds custom metrics and machine-learning based anomaly detection.
• feature: IotDeviceAdvisor: AWS IoT Core Device Advisor is fully managed test capability for IoT devices. Device manufacturers can use Device Advisor to test their IoT devices for reliable and secure connectivity with AWS IoT.
• feature: Lambda: Added support for Apache Kafka as a event source. Added support for TumblingWindowInSeconds for streams event source mappings. Added support for FunctionResponseTypes for streams event source mappings
• feature: SSM: Adding support for Change Manager API content

2.810.0

• feature: DevOpsGuru: Documentation updates for DevOps Guru.
• feature: EC2: Add c5n.metal to ec2 instance types list
• feature: GlobalAccelerator: This release adds support for custom routing accelerators

2.809.0

• feature: AutoScaling: Documentation updates and corrections for Amazon EC2 Auto Scaling API Reference and SDKs.
• feature: CloudTrail: CloudTrailInvalidClientTokenIdException is now thrown when a call results in the InvalidClientTokenId error code. The Name parameter of the AdvancedEventSelector data type is now optional.
• feature: IoTSiteWise: Added the ListAssetRelationships operation and support for composite asset models, which represent structured sets of properties within asset models.

2.808.0

• feature: EC2: TGW connect simplifies connectivity of SD-WAN appliances; IGMP support for TGW multicast; VPC Reachability Analyzer for VPC resources connectivity analysis.
• feature: Kendra: Amazon Kendra now supports adding synonyms to an index through the new Thesaurus resource.
• feature: NetworkManager: This release adds API support for Transit Gateway Connect integration into AWS Network Manager.

2.807.0

... (truncated)

Commits

• 8875a35 Updates SDK to v2.814.0
• dd83d67 throw at invalid profile name in shared ini file (#3585)
• ee0c5a3 Updates SDK to v2.813.0
• 468d15b Updates SDK to v2.812.0
• c50132f Update README.md with references to JS SDK V3 (#3582)
• 3e19b08 Updates SDK to v2.811.0
• f26c00d Updates SDK to v2.810.0
• b393a6e Adds automatic PreSignedUrl generation to RDS.StartDBInstanceAutomatedBackups...
• fa57967 Updates SDK to v2.809.0
• 9a52018 Updates SDK to v2.808.0
• Additional commits viewable in compare view

Updates serverless-offline from 6.8.0 to 8.1.0

Release notes

Sourced from serverless-offline's releases.

v8.1.0

New feature:

• Add support for Python 3.9 dherault/serverless-offline#1267

v8.0.0

Breaking changes:

• Removed support for Node v10 dherault/serverless-offline#1235

New feature:

• Add support for Node v16 dherault/serverless-offline#1235

v7.1.0

New feature:

• Add '--noStripTrailingSlashInUrl' option dherault/serverless-offline#1178
• Support Ruby handlers with :: in path definition dherault/serverless-offline#1218

Bug fixes:

• Remove multiplication of this.#timeout by 1000 dherault/serverless-offline#1177
• Child processes are cleaned up when useChildProcesses is used dherault/serverless-offline#1234

v7.0.0

Breaking changes:

• httpApi events do no longer prepend stage for offline endpoints dherault/serverless-offline#1175

New feature:

• Add support for HttpApi cors configuration dherault/serverless-offline#1153
• Support for HttpApi $default route, $default stage and 2.0 payloads dherault/serverless-offline#1175

Bug fixes:

• Fix docker engine v20.10.6 compatibility dherault/serverless-offline#1217
• Log ruby stdout to console dherault/serverless-offline#1214

Chores

• Add types to CLI Options dherault/serverless-offline#1205

v6.9.0

New feature:

• Support JWT audience array dherault/serverless-offline#1116
• Add apiKeyId to identity information dherault/serverless-offline#1169
• Update billing to nearest ms dherault/serverless-offline#1155
• Add Docker options for running Docker Lambda within a Docker container dherault/serverless-offline#1164
• Add support for nodejs14.x dherault/serverless-offline#1170

Bug fixes:

• Correct JWT authorizer payload for v2.0 dherault/serverless-offline#1109
• LambdaProxyIntegrationEvent uses #path instead of route.path dherault/serverless-offline#1137

Chores

• Update development deps & node-fetch for vulnerability dherault/serverless-offline#1103
• Migrate from Travis-CI to GitHub actions dherault/serverless-offline#1168
• Rebuild lockfile to update deps and patch vulnerabilities dherault/serverless-offline#1167

Commits

• 77b3659 chore: Release v8.1.0
• c9b4f9e feat: Add support for Python 3.9 runtime (#1267)
• 6eb15d7 chore: Release v8.0.0
• ed06c2d feat: Update hapi version to support Node 16 and drop Node 10 (#1235)
• 60d034b chore: Release 7.1.0
• 3fb5b69 fix: Child processes are cleaned up when useChildProcesses is used
• b320b18 fix: Remove multiplication of this.#timeout by 1000 (#1177)
• 3178501 feat: Support Ruby handlers with :: in path definition (#1218)
• 4dbab1a Merge pull request #1178 from grakic/no-strip-trailing-slash
• e9695ec Add '--noStripTrailingSlashInUrl' option
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by pgrzesik, a new releaser for serverless-offline since your current version.

Updates @babel/traverse from 7.12.1 to 7.28.0

Release notes

Sourced from @​babel/traverse's releases.

v7.28.0 (2025-07-02)

🚀 New Feature

• babel-node
  • #17147 Support top level await in node repl (@​liuxingbaoyu)
• babel-types
  • #17258 feat(matchesPattern): support super/private/meta (@​JLHwung)
• babel-compat-data, babel-preset-env
  • #17355 Add explicit resource management to preset-env (@​JLHwung)
• babel-core, babel-parser
  • #17390 Support sourceType: "commonjs" (@​JLHwung)
• babel-generator, babel-parser
  • #17346 Materialize explicitResourceManagement parser plugin (@​JLHwung)
• babel-plugin-proposal-destructuring-private, babel-plugin-proposal-do-expressions, babel-plugin-transform-object-rest-spread, babel-traverse, babel-types
  • #17391 LVal coverage updates (Part 2) (@​JLHwung)
• babel-parser, babel-traverse, babel-types
  • #17378 Accept bigints in t.bigIntLiteral factory (@​JLHwung)
• babel-generator, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring, babel-plugin-transform-explicit-resource-management, babel-plugin-transform-react-display-name, babel-types
  • #17277 Transform discard binding (@​JLHwung)
• babel-generator, babel-parser, babel-plugin-proposal-destructuring-private, babel-plugin-transform-block-scoping, babel-plugin-transform-object-rest-spread, babel-plugin-transform-typescript, babel-traverse, babel-types
  • #17163 Parse discard binding (@​JLHwung)

🐛 Bug Fix

• babel-helper-globals, babel-plugin-transform-classes, babel-traverse
  • #17297 Create babel-helper-globals (@​JLHwung)
• babel-types
  • #17009 feature: TSTypeOperator: keyof (#16799) (@​coderaiser)

🏠 Internal

• babel-compat-data, babel-plugin-proposal-decorators, babel-plugin-transform-async-generator-functions, babel-plugin-transform-json-modules, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs3
  • #17403 Update babel-polyfill packages (@​nicolo-ribaudo)

Committers: 5

• Babel Bot (@​babel-bot)
• Huáng Jùnliàng (@​JLHwung)
• Nicolò Ribaudo (@​nicolo-ribaudo)
• @​liuxingbaoyu
• coderaiser (@​coderaiser)

v7.27.7 (2025-06-26)

Thanks @​arthur-mountain and @​evankanderson for your first PRs!

👓 Spec Compliance

• babel-parser, babel-plugin-transform-classes
  • #17203 Interepret parser allow* options as top level only (@​JLHwung)
• babel-parser
  • #17371 fix: disable using in ambient context (@​JLHwung)

🐛 Bug Fix

... (truncated)

Changelog

Sourced from @​babel/traverse's changelog.

v7.28.0 (2025-07-02)

🚀 New Feature

• babel-node
  • #17147 Support top level await in node repl (@​liuxingbaoyu)
• babel-types
  • #17258 feat(matchesPattern): support super/private/meta (@​JLHwung)
• babel-compat-data, babel-preset-env
  • #17355 Add explicit resource management to preset-env (@​JLHwung)
• babel-core, babel-parser
  • #17390 Support sourceType: "commonjs" (@​JLHwung)
• babel-generator, babel-parser
  • #17346 Materialize explicitResourceManagement parser plugin (@​JLHwung)
• babel-plugin-proposal-destructuring-private, babel-plugin-proposal-do-expressions, babel-plugin-transform-object-rest-spread, babel-traverse, babel-types
  • #17391 LVal coverage updates (Part 2) (@​JLHwung)
• babel-parser, babel-traverse, babel-types
  • #17378 Accept bigints in t.bigIntLiteral factory (@​JLHwung)
• babel-generator, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-discard-binding, babel-plugin-transform-destructuring, babel-plugin-transform-explicit-resource-management, babel-plugin-transform-react-display-name, babel-types
  • #17277 Transform discard binding (@​JLHwung)
• babel-generator, babel-parser, babel-plugin-proposal-destructuring-private, babel-plugin-transform-block-scoping, babel-plugin-transform-object-rest-spread, babel-plugin-transform-typescript, babel-traverse, babel-types
  • #17163 Parse discard binding (@​JLHwung)

🐛 Bug Fix

• babel-helper-globals, babel-plugin-transform-classes, babel-traverse
  • #17297 Create babel-helper-globals (@​JLHwung)
• babel-types
  • #17009 feature: TSTypeOperator: keyof (#16799) (@​coderaiser)

🏠 Internal

• babel-compat-data, babel-plugin-proposal-decorators, babel-plugin-transform-async-generator-functions, babel-plugin-transform-json-modules, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-preset-env, babel-runtime-corejs3
  • #17403 Update babel-polyfill packages (@​nicolo-ribaudo)

v7.27.7 (2025-06-26)

👓 Spec Compliance

• babel-parser, babel-plugin-transform-classes
  • #17203 Interepret parser allow* options as top level only (@​JLHwung)
• babel-parser
  • #17371 fix: disable using in ambient context (@​JLHwung)

🐛 Bug Fix

• babel-core
  • #17392 Improve TS babel config loading (@​JLHwung)
• babel-types
  • #17376 fix: support negative bigint in valueToNode (@​JLHwung)
• babel-plugin-transform-parameters
  • #17352 fix: Params of async function* should throw synchronously (@​liuxingbaoyu)

🏠 Internal

• babel-plugin-transform-destructuring, babel-plugin-transform-object-rest-spread
  • #17389 Use NodePath#splitExportDeclaration in destructuring transforms (@​JLHwung)

... (truncated)

Commits

• ccc5fae v7.28.0
• 4b4e7e2 Create babel-helper-globals (#17297)
• cf5ae03 LVal coverage updates (Part 2) (#17391)
• 6ca9df4 Accept bigints in t.bigIntLiteral factory (#17378)
• 75f0140 Parse discard binding (#17163)
• 4ce7dfd v7.27.7
• 6c8faf1 add generateUidBasedOnNode test cases (#17381)
• f68ac51 chore: Avoid CITGM errors (#17382)
• 7d06930 v7.27.4
• 05f28c8 [Babel 8] Change scope.{references,uids} to Set (#16624)
• Additional commits viewable in compare view

Updates cached-path-relative from 1.0.2 to 1.1.0

Commits

• See full diff in compare view

Updates color-string from 1.5.4 to 1.9.1

Release notes

Sourced from color-string's releases.

1.9.0

Minor Release 1.9.0

• Add parsing of exponential alpha values for HWB and HSL (#66)

Thanks to @​babycannotsay for their contribution!

1.8.2

Patch release 1.8.2

• Fix incorrect handling of optional comma in rgb() regex (#65)

Thanks to @​gerdasi and @​mastertheblaster for reporting and confirming the bug!

1.8.1

Patch release 1.8.1

• Fix rgb alpha percentage parsing from int to float (#61)

Thanks to @​clytras for their contribution!

1.8.0

Minor release 1.8.0

• Add anchors to keyword regex (#64)

Thanks to @​cq360767996 for their contribution!

1.7.4

Patch Release 1.7.4

• Fix bug in .to.hex() output if the inputs aren't rounded numbers (#25)

1.7.3

Patch Release 1.7.3

• Fix hue modulo operation (#50)

Thanks to @​adroitwhiz for their contributions.

1.7.2

Patch Release 1.7.2

• Fix issue where color-string with incorrectly return a color for properties on Object's prototype like "constructor". (#45)

Thanks to @​tolmasky for their contributions.

1.7.1

Patch release 1.7.1

... (truncated)

Commits

• d9b04bb 1.9.1
• 937b690 fix to.keyword returning Object.prototype values (#67)
• 4daceef 1.9.0
• 94a429e add parsing of exponential alpha values for HWB and HSL
• fc2f880 1.8.2
• 32f3e00 fix incorrect handling of optional comma in rgb() regex (fixes #65)
• 0766ca7 1.8.1
• 0710543 Fix rgb alpha percentage parsing from int to float
• ab299a7 1.8.0
• bea8702 add anchors to keyword regex
• Additional commits viewable in compare view

Updates decode-uri-component from 0.2.0 to 0.2.2

Release notes

Sourced from decode-uri-component's releases.

v0.2.2

• Prevent overwriting previously decoded tokens 980e0bf

SamVerschueren/decode-uri-component@v0.2.1...v0.2.2

v0.2.1

• Switch to GitHub workflows 76abc93
• Fix issue where decode throws - fixes #6 746ca5d
• Update license (#1) 486d7e2
• Tidelift tasks a650457
• Meta tweaks 66e1c28

SamVerschueren/decode-uri-component@v0.2.0...v0.2.1

Commits

• a0eea46 0.2.2
• 980e0bf Prevent overwriting previously decoded tokens
• 3c8a373 0.2.1
• 76abc93 Switch to GitHub workflows
• 746ca5d Fix issue where decode throws - fixes #6
• 486d7e2 Update license (#1)
• a650457 Tidelift tasks
• 66e1c28 Meta tweaks
• See full diff in compare view

Updates handlebars from 4.7.6 to 4.7.8

Release notes

Sourced from handlebars's releases.

v4.7.8

• Make library compatible with workers (#1894) - 3d3796c
• Don't rely on Node.js global object (#1776) - 2954e7e
• Fix compiling of each block params in strict mode (#1855) - 30dbf04
• Fix rollup warning when importing Handlebars as ESM - 03d387b
• Fix bundler issue with webpack 5 (#1862) - c6c6bbb
• Use https instead of git for mustache submodule - 88ac068

Commits

Changelog

Sourced from handlebars's changelog.

v4.7.8 - July 27th, 2023

• Make library compatible with workers (#1894) - 3d3796c
• Don't rely on Node.js global object (#1776) - 2954e7e
• Fix compiling of each block params in strict mode (#1855) - 30dbf04
• Fix rollup warning when importing Handlebars as ESM - 03d387b
• Fix bundler issue with webpack 5 (#1862) - c6c6bbb
• Use https instead of git for mustache submodule - 88ac068

Commits

v4.7.7 - February 15th, 2021

• fix weird error in integration tests - eb860c0
• fix: check prototype property access in strict-mode (#1736) - b6d3de7
• fix: escape property names in compat mode (#1736) - f058970
• refactor: In spec tests, use expectTemplate over equals and shouldThrow (#1683) - 77825f8
• chore: start testing on Node.js 12 and 13 - 3789a30

(POSSIBLY) BREAKING CHANGES:

• the changes from version 4.6.0 now also apply in when using the compile-option "strict: true". Access to prototype properties is forbidden completely by default, specific properties or methods can be allowed via runtime-options. See #1633 for details. If you are using Handlebars as documented, you should not be accessing prototype properties from your template anyway, so the changes should not be a problem for you. Only the use of undocumented features can break your build.

That is why we only bump the patch version despite mentioning breaking changes.

Commits

Commits

• 8dc3d25 v4.7.8
• 668c4fb Fix browser tests in CI pipeline
• c65c6cc Test on Node 18
• 3d3796c Make library compatible with workers
• 075b354 Fix sync issue with npm lock-file
• 30dbf04 Fix compiling of each block params in strict mode
• e3a5448 Fix bundler issue with webpack 5
• 8e23642 Fix integration-tests issue with npm >= 7
• 88ac068 use https instead of git for mustache submodule
• c68bc08 Fix typo
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by jaylinski, a new releaser for handlebars since your current version.

Updates jsonpath-plus from 3.0.0 to 5.1.0

Release notes

Sourced from jsonpath-plus's releases.

v5.1.0

5.1.0 (2021-06-24)

• Enhancement: support double-quoted bracket notation
• Linting: As per latest ash-nazg
• npm: Update devDeps.

v5.0.7

5.0.7 (2021-04-12)

• Fix: Add packge.json to exports (@​sebastiendavid)

v5.0.6

5.0.6 (2021-04-09)

• Fix: Remove static modifiers (@​sdolski)
• Linting: As per latest ash-nazg
• npm: Update devDeps.

v5.0.5

5.0.5 (2021-04-09)

• Fix: Avoid cache corruption when the returned structure is modified. Fixes #102. (@​tejodorus)

5.0.4 (2021-03-02)

• Fix: allow falsey at values in filter (now may require checking for presence of @ in some cases); fixes #136
• Docs: Add old missing release info (reconciling with GitHub releases)
• Docs: Update README to reflect 1.2.0 was not a released version (subsume release details into 2.0.0)
• Linting: As per latest ash-nazg
• npm: Update devDeps.

5.0.3 (2021-02-06)

• Fix: Add package exports for browser and umd (#145) (@​gjvoosten)
• Update: Build as per refactoring
• Docs: Update as per typedoc update
• Docs: Update license badges per latest
• Linting: As per latest ash-nazg
• CI: Update from Travis -> GitHub Actions
• npm: Switch from eslint-plugin-sonarjs to eslint-plugin-radar
• npm: Switch to pnpm
• npm: Update devDeps.

5.0.2 (2021-01-15)

• Fix: Proper Node CommonJS export; fixes #144

... (truncated)

Changelog

Sourced from jsonpath-plus's changelog.

5.1.0 (2021-06-24)

• Enhancement: support double-quoted bracket notation
• Linting: As per latest ash-nazg
• npm: Update devDeps.

5.0.7 (2021-04-12)

• Fix: Add packge.json to exports (@​sebastiendavid)

5.0.6 (2021-04-09)

• Fix: Remove static modifiers (@​sdolski)
• Linting: As per latest ash-nazg
• npm: Update devDeps.

5.0.5 (2021-04-09)

• Fix: Avoid cache corruption when the returned structure is modified. Fixes #102. (@​tejodorus)

5.0.4 (2021-03-02)

• Fix: allow falsey at values in filter (now may require checking for presence of @ in some cases); fixes #136
• Docs: Add old missing release info (reconciling with GitHub releases)
• Docs: Update README to reflect 1.2.0 was not a released version (subsume release details into 2.0.0)
• Linting: As per latest ash-nazg
• npm: Update devDeps.

5.0.3 (2021-02-06)

• Fix: Add package exports for browser and umd (#145) (@​gjvoosten)
• Update: Build as per refactoring
• Docs: Update as per typedoc update
• Docs: Update license badges per latest
• Linting: As per latest ash-nazg
• CI: Update from Travis -> GitHub Actions
• npm: Switch from eslint-plugin-sonarjs to eslint-plugin-radar
• npm: Switch to pnpm
• npm: Update devDeps.

5.0.2 (2021-01-15)

• Fix: Proper Node CommonJS export; fixes #144

5.0.1 (2021-01-15)

• Fix: Proper Node CommonJS export; fixes #143

... (truncated)

Commits

• aa2c0c3 - pnpm Removes this unfortunately
• d54118f - Build: Update
• 376effc - Linting: As per latest ash-nazg
• b17e953 - Enhancement: support double-quoted bracket notation
• a037ff6 - npm: Update devDeps.
• 6ed1fd7 - Docs (CHANGES): Update
• 90879c5 add package.json to module exports (#152)
• 65108f1 - Docs (CHANGES): Credit @​sdolski
• 14eefe3 - npm: Bump to 5.0.6
• ff17eda - Linting: As per latest ash-nazg
• Additional commits viewable in compare view

Updates jszip from 3.5.0 to 3.10.1

Changelog

Sourced from jszip's changelog.

v3.10.1 2022-08-02

• Add sponsorship files.
  • If you appreciate the time spent maintaining JSZip then I would really appreciate your sponsorship.
• Consolidate metadata types and expose OnUpdateCallback #851 and #852
• use const instead var in example from README.markdown #828
• Switch manual download link to HTTPS #839

Internals:

• Replace jshint with eslint #842
• Add performance tests #834

v3.10.0 2022-05-20

• Change setimmediate dependency to more efficient one. Fixes Stuk/jszip#617 (see #829)
• Update types of currentFile metadata to include null (see #826)

v3.9.1 2022-04-06

• Fix recursive definition of InputFileFormat introduced in 3.9.0.

v3.9.0 2022-04-04

• Update types JSZip#loadAsync to accept a promise for data, and remove arguments from new JSZip() (see #752)
• Update types for compressionOptions to JSZipFileOptions and JSZipGeneratorOptions (see #722)
• Add types for generateInternalStream (see #774)

v3.8.0 2022-03-30

• Santize filenames when files are loaded with loadAsync, to avoid "zip slip" attacks. The original filename is available on each zip entry as unsafeOriginalName. See the documentation. Many thanks to McCaulay Hudson for reporting.

v3.7.1 2021-08-05

• Fix build of dist files.
  • Note: this version ensures the changes from 3.7.0 are actually included in the dist files. Thanks to Evan W for reporting.

v3.7.0 2021-07-23

• Fix: Use a null prototype object for this.files (see #766)
  • This change might break existing code if it uses prototype methods on the .files property of a zip object, for example zip.files.toString(). This approach is taken to prevent files in the zip overriding object methods that would exist on a normal object.

v3.6.0 2021-02-09

• Fix: redirect main to dist on browsers (see #742)
• Fix duplicate require DataLengthProbe, utils (see #734)
• Fix small error in read_zip.md (see #703)

Commits

• 0f2f1e4 3.10.1
• cae5510 Updates for v3.10.1
• 179c9a0 Update changelog for 3.10.1
• 61e1df5 Add Jekyll files to gitignore
• f299cce Merge pull request #852 from Stuk/metadata-ts
• 852887a Consolidate metadata types and expose OnUpdateCallback
• 5be00df Add sponsorship files
• dabe864 Update package-lock for benchmark
• cc554da Merge pull request #841 from stevennyman/patch-2
• caefbc0 Merge pull request #834 from Stuk/benchmark
• Additional commits viewable in compare view

Updates minimist from 1.2.5 to 1.2.8

Changelog

Sourced from minimist's changelog.

v1.2.8 - 2023-02-09

Merged

• [Fix] Fix long option followed by single dash [#17](https://github.com/minimistjs/minimist/issues/17)
• [Tests] Remove duplicate test [#12](https://github.com/minimistjs/minimist/issues/12)
• [Fix] opt.string works with multiple aliases [#10](https://github.com/minimistjs/minimist/issues/10)

Fixed

• [Fix] Fix long option followed by single dash (#17) [#15](https://github.com/minimistjs/minimist/issues/15)
• [Tests] Remove duplicate test (#12) [#8](https://github.com/minimistjs/minimist/issues/8)
• [Fix] Fix long option followed by single dash [#15](https://github.com/minimistjs/minimist/issues/15)
• [Fix] opt.string works with multiple aliases (#10) [#9](https://github.com/minimistjs/minimist/issues/9)
• [Fix] Fix handling of short option with non-trivial equals [#5](https://github.com/minimistjs/minimist/issues/5)
• [Tests] Remove duplicate test [#8](https://github.com/minimistjs/minimist/issues/8)
• [Fix] opt.string works with multiple aliases [#9](https://github.com/minimistjs/minimist/issues/9)

Commits

• Merge tag 'v0.2.3' a026794
• [eslint] fix indentation and whitespace 5368ca4
• [eslint] fix indentation and whitespace e5f5067
• [eslint] more cleanup 62fde7d
• [eslint] more cleanup 36ac5d0
• [meta] add auto-changelog 73923d2
• [actions] add reusable workflows d80727d
• [eslint] add eslint; rules to enable later are warnings 48bc06a
• [eslint] fix indentation 34b0f1c
• [readme] rename and add badges 5df0fe4
• [Dev Deps] switch from covert to nyc a48b128
• [Dev Deps] update covert, tape; remove unnecessary tap f0fb958
• [meta] create FUNDING.yml; add funding in package.json 3639e0c
• [meta] use npmignore to autogenerate an npmignore file be2e038
• Only apps should have lockfiles 282b570
• isConstructorOrProto adapted from PR ef9153f
• [Dev Deps] update @ljharb/eslint-config, aud 098873c
• [Dev Deps] update @ljharb/eslint-config, aud 3124ed3
• [meta] add safe-publish-latest 4b927de
• [Tests] add aud in posttest b32d9bd
• [meta] update repo URLs f9fdfc0
• [actions] Avoid 0.6 tests due to build failures ba92fe6
• [Dev Deps] update tape 950eaa7
• [Dev Deps] add missing npmignore dev dep 3226afa
• Merge tag 'v0.2.2' 980d7ac

v1.2.7 - 2022-10-10

Commits

... (truncated)

Commits

• 6901ee2 v1.2.8
• a026794 Merge tag 'v0.2.3'