Bump swagger-ui-react from 5.17.14 to 5.18.2

[dependabot]

Bumps swagger-ui-react from 5.17.14 to 5.18.2.

Release notes

Sourced from swagger-ui-react's releases.

Swagger UI v5.18.2 Released!

5.18.2 (2024-11-07)

Bug Fixes

• update Scarf.js to v1.4.0 to avoid breaking Vitest (#10204) (adc1c3c), closes #10197

Swagger UI v5.18.1 Released!

5.18.1 (2024-11-05)

Bug Fixes

• docker: return explicit Node.js installation (#10198) (3e3dfc6), closes #10195

Swagger UI v5.18.0 Released!

5.18.0 (2024-11-05)

Features

• analytics: use Scarf.js to provide anonymized installation analytics (#10194) (fb55b9c)

---

Anonymized analytics

SwaggerUI uses Scarf to collect anonymized installation analytics. These analytics help support the maintainers of this library and ONLY run during installation. To opt out, you can set the scarfSettings.enabled field to false in your project's package.json:

// package.json
{
  // ...
  "scarfSettings": {
    "enabled": false
  }
  // ...
}

Alternatively, you can set the environment variable SCARF_ANALYTICS to false as part of the environment that installs your npm packages, e.g., SCARF_ANALYTICS=false npm install.

Commits

• 3c7e281 chore(release): cut the v5.18.2 release
• 1dd1f7c chore(dist): update Scarf.js to v1.4.0 (#10205)
• adc1c3c fix: update Scarf.js to v1.4.0 to avoid breaking Vitest (#10204)
• 7b84da5 chore(deps-dev): bump release-it from 17.5.0 to 17.10.0 (#10202)
• e5d00e8 chore(deps-dev): bump json-merger from 1.1.10 to 2.0.0 (#10201)
• 8fdf0d3 chore(deps-dev): bump jsdom from 24.0.0 to 25.0.1 (#10200)
• 05b7aff chore(docker): disable apk cache (#10203)
• 91b6e13 chore(deps-dev): bump husky from 9.0.11 to 9.1.6 (#10199)
• e5addb1 chore(release): cut the v5.18.1 release
• 3e3dfc6 fix(docker): return explicit Node.js installation (#10198)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

PR-Codex overview

This PR focuses on updating dependencies in the package.json and pnpm-lock.yaml files, specifically upgrading versions of swagger-ui-react, @braintree/sanitize-url, and several @swagger-api packages, along with dompurify and swagger-client.

Detailed summary

• Updated swagger-ui-react from ^5.17.14 to ^5.18.2.
• Updated @braintree/sanitize-url from 7.0.2 to 7.0.4.
• Updated dompurify from 3.1.4 to 3.1.6.
• Updated swagger-client from 3.28.2 to 3.31.0.
• Updated multiple @swagger-api packages from 1.0.0-alpha.5 to 1.0.0-alpha.10.

✨ Ask PR-Codex anything about this PR by commenting with /codex {your question}

[changeset-bot]

⚠️ No Changeset found

Latest commit: dc93d64

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
docs-v2	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Nov 11, 2024 9:00pm
thirdweb_playground	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Nov 11, 2024 9:00pm
thirdweb-www	❌ Failed (Inspect)			Nov 11, 2024 9:00pm
wallet-ui	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Nov 11, 2024 9:00pm

[graphite-app]

Your org has enabled the Graphite merge queue for merging into main

Add the label “merge-queue” to the PR and Graphite will automatically add it to the merge queue when it’s ready to merge. Or use the label “hotfix” to add to the merge queue as a hot fix.

You must have a Graphite account and log in to Graphite in order to use the merge queue. Sign up using this link.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/[email protected]	Transitive: environment, eval, filesystem, network, shell	+123	58.6 MB	swagger-api

🚮 Removed packages: npm/[email protected]

View full report↗︎

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.