chore(deps): bump the npm_and_yarn group group with 3 updates

[dependabot]

Bumps the npm_and_yarn group group with 3 updates: @commitlint/cli, semantic-release and core-js-compat.

Updates @commitlint/cli from 13.1.0 to 19.0.3

Release notes

Sourced from @​commitlint/cli's releases.

v19.0.3

19.0.3 (2024-02-28)

Bug Fixes

• fix: mark @types/conventional-commits-parser as dep for @commitlint/types by @​JounQin in conventional-changelog/commitlint#3944

Full Changelog: conventional-changelog/commitlint@v19.0.2...v19.0.3

v19.0.2

19.0.2 (2024-02-28)

Bug Fixes

• fix: fallback to resolve-from for Yarn P'n'P by @​JounQin in conventional-changelog/commitlint#3941

Full Changelog: conventional-changelog/commitlint@v19.0.1...v19.0.2

v19.0.1

19.0.1 (2024-02-27)

Bug Fixes

• fix: drop resolve-from, resolve-global and import-fresh, resolve global packages correctly by @​JounQin in conventional-changelog/commitlint#3939

Full Changelog: conventional-changelog/commitlint@v19.0.0...v19.0.1

v19.0.0

Full Changelog: conventional-changelog/commitlint@v18.6.2...v19.0.0 19.0.0 (2024-02-27)

Features

• feat!: migrate to pure ESM (#3850) (3423735), closes #3850 by @​JounQin
  Thanks to @​marcalexiei and @​knocte for the review and feedback

Docs

• docs: use vitepress (#3921) by @​marcalexiei

v18.6.2

... (truncated)

Changelog

Sourced from @​commitlint/cli's changelog.

19.0.3 (2024-02-28)

Note: Version bump only for package @​commitlint/cli

19.0.2 (2024-02-28)

Note: Version bump only for package @​commitlint/cli

19.0.1 (2024-02-27)

Bug Fixes

• drop resolve-from, resolve-global and import-fresh, resolve global packages correctly (#3939) (8793c63), closes #3938

19.0.0 (2024-02-27)

• feat!: migrate to pure ESM (#3850) (3423735), closes #3850

Reverts

• Revert "chore!: minimum node version v20" (2816783)

BREAKING CHANGES

• migrate to pure ESM

• feat: migrate to pure ESM

• chore: update snapshot

• fix: load parserPreset with another await

• test: migrate to vitest

... (truncated)

Commits

• 9b4ac34 v19.0.3
• e538924 v19.0.2
• 9351b8e v19.0.1
• 8793c63 fix: drop resolve-from, resolve-global and import-fresh, resolve global...
• f1ff121 v19.0.0
• 868983c docs: use vitepress (#3921)
• 42d90f2 chore: bump ESM only packages and minor version packages (#3927)
• 2816783 Revert "chore!: minimum node version v20"
• a909634 chore!: minimum node version v20
• 3423735 feat!: migrate to pure ESM (#3850)
• Additional commits viewable in compare view

Updates semantic-release from 19.0.3 to 23.0.2

Release notes

Sourced from semantic-release's releases.

v23.0.2

23.0.2 (2024-02-07)

Bug Fixes

• deps: update dependency marked to v12 (#3176) (38105f5)

v23.0.1

23.0.1 (2024-02-06)

Bug Fixes

• deps: update dependency marked-terminal to v7 (9faded8)

v23.0.0

23.0.0 (2024-01-12)

Bug Fixes

• deps: update dependency cosmiconfig to v9 (#3105) (07dde04)
• deps: update dependency marked to v11 (#3079) (6d2a6f1)
• deps: upgraded to the latest version of env-ci (0d0ed9d)
• use one note reference per tag to prevent conflicts (#2085) (020ea7d)

Features

• node-versions: dropped support for node v18 and raised the minimum for v20 (2904832), closes semantic-release/gitlab#647

BREAKING CHANGES

• deps: woodpecker ci users need to upgrade to v1.0.0 or higher to remain supported. see https://github.com/semantic-release/env-ci/releases/tag/v11.0.0 for more information
• node-versions: support for node v18 has been dropped and the minimum for v20 is now v20.8.1

related to semantic-release/semantic-release#3088

• deps: if using release.config.js as the name of your config file, it needs to be moved to a .config/ directory or renamed to .releaserc.js to keep it in the root of the repository. see https://github.com/cosmiconfig/cosmiconfig/releases/tag/v9.0.0 for more detail

v23.0.0-beta.5

23.0.0-beta.5 (2024-01-05)

Bug Fixes

... (truncated)

Commits

• 38105f5 fix(deps): update dependency marked to v12 (#3176)
• 7fb784f ci(action): update actions/upload-artifact action to v4.3.1 (#3181)
• e3245f3 ci(action): update actions/setup-node action to v4.0.2 (#3184)
• 28bcc1d chore(deps): update dependency prettier to v3.2.5 (#3177)
• 9faded8 fix(deps): update dependency marked-terminal to v7
• fccab39 chore(deps): lock file maintenance (#3179)
• 6be2280 chore(deps): update dependency got to v14.2.0 (#3175)
• 518b47d chore(deps): update dependency npm-run-all2 to v6.1.2 (#3171)
• c6c01aa ci(action): update github/codeql-action action to v3.24.0 (#3173)
• ee4f99f chore(deps): update dependency ava to v6.1.1 (#3168)
• Additional commits viewable in compare view

Updates core-js-compat from 3.20.3 to 3.36.0

Changelog

Sourced from core-js-compat's changelog.

3.36.0 - 2024.02.14

• ArrayBuffer.prototype.transfer and friends proposal:
  • Built-ins:
    • ArrayBuffer.prototype.detached
    • ArrayBuffer.prototype.transfer
    • ArrayBuffer.prototype.transferToFixedLength
  • Moved to stable ES, Febrary 2024 TC39 meeting
  • Added es. namespace modules, /es/ and /stable/ namespaces entries
• Uint8Array to / from base64 and hex proposal:
  • Methods:
    • Uint8Array.fromBase64
    • Uint8Array.fromHex
    • Uint8Array.prototype.toBase64
    • Uint8Array.prototype.toHex
  • Moved to stage 3, Febrary 2024 TC39 meeting
  • Added /actual/ namespace entries
  • Skipped adding new methods of writing to existing arrays to clarification some moments
• Promise.try proposal has been resurrected and moved to stage 2, Febrary 2024 TC39 meeting
• Added an entry point for the new TC39 proposals stage - core-js/stage/2.7 - still empty
• Fixed regression in Set.prototype.intersection feature detection
• Fixed a missed check in Array.prototype.{ indexOf, lastIndexOf, includes }, #1325, thanks @​minseok-choe
• Fixed a missed check in Array.prototype.{ reduce, reduceRight }, #1327, thanks @​minseok-choe
• Fixed Array.from and some other methods with proxy targets, #1322, thanks @​minseok-choe
• Fixed dependencies loading for modules from ArrayBuffer.prototype.transfer and friends proposal in some specific cases in IE10-
• Dropped context workaround from collection static methods entries since with current methods semantic it's no longer required
• Added instance methods polyfills to entries of collections static methods that produce collection instances
• Added missed Date.prototype.toJSON to JSON.stringify entries dependencies
• Added debugging info in some missed cases
• Compat data improvements:
  • { Map, Object }.groupBy, Promise.withResolvers, ArrayBuffer.prototype.transfer and friends marked as supported from Safari 17.4
  • New Set methods fixed and marked as supported from V8 ~ Chrome 123
  • Added Deno 1.40 compat data mapping
  • Symbol.metadata marked as supported from Deno 1.40.4
  • Updated Electron 30 compat data mapping

3.35.1 - 2024.01.21

• Fixed internal ToLength operation with bigints, #1318
• Removed significant redundant code from String.prototype.split polyfill
• Fixed setting names of methods with symbol keys in some old engines
• Minor fix of prototype methods export logic in the pure version
• Compat data improvements:
  • Iterator helpers proposal methods marked as supported from V8 ~ Chrome 122
  • Note that V8 ~ Chrome 122 add Set methods, but they have a bug similar to Safari
  • self marked as fixed from Bun 1.0.22
  • SuppressedError and Symbol.{ dispose, asyncDispose } marked as supported from Bun 1.0.23
  • Added Oculus Quest Browser 31 compat data mapping
  • Updated Electron 29 and added Electron 30 compat data mapping

3.35.0 - 2023.12.29

• { Map, Set, WeakMap, WeakSet }.{ from, of } became non-generic, following this and some other notes. Now they can be invoked without this, but no longer return subclass instances

... (truncated)

Commits

• 77123c4 3.36.0
• a3d51ed fix dependencies loading for modules from ArrayBuffer.prototype.transfer an...
• 0774eb9 mark Symbol.metadata as supported from Deno 1.40.4
• 4c51d71 move ArrayBuffer.prototype.transfer and friends to stable ES
• 918d4e2 add Safari 17.4 compat data
• 794a736 new Set methods fixed and marked as supported from V8 ~ Chrome 123
• 6a8dab0 update Electron 30 compat data mapping
• a2ee3f1 update deno 1.40 compat data mapping: the released 1.40.0 uses v8 12.1
• b636648 update dependencies
• 1899904 note that deno 1.40 still uses v8 12.0
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@commitlint/[email protected]	Transitive: environment, eval, filesystem, shell, unsafe	+94	72.5 MB	escapedcat
npm/[email protected]	eval Transitive: unsafe	+4	1.53 MB	esp
npm/[email protected]	environment Transitive: filesystem, shell	+13	221 kB	ehmicky
npm/[email protected]	environment, network Transitive: filesystem, shell, unsafe	+55	66.6 MB	semantic-release-bot
npm/[email protected]	None	0	9.87 kB	bcoe

🚮 Removed packages: npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@commitlint/[email protected], npm/@commitlint/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎