fix(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
@crxjs/vite-plugin	2.0.0-beta.25 -> 2.0.0-beta.28					devDependencies	patch
@heroicons/vue	2.1.5 -> 2.2.0					dependencies	minor
@types/chrome (source)	0.0.270 -> 0.0.287					devDependencies	patch
@types/node (source)	20.16.5 -> 20.17.10					devDependencies	minor
@vitejs/plugin-vue (source)	5.1.3 -> 5.2.1					devDependencies	minor
actions/checkout	v4.1.7 -> v4.2.2					action	minor
jsdom	25.0.0 -> 25.0.1					devDependencies	patch
node (source)	20.17.0 -> 20.18.1						minor
postcss (source)	8.4.45 -> 8.4.49					devDependencies	patch
prettier (source)	3.3.3 -> 3.4.2					devDependencies	minor
tailwindcss (source)	3.4.11 -> 3.4.16					devDependencies	patch
typescript (source)	5.6.2 -> 5.7.2					devDependencies	minor
vite (source)	5.4.5 -> 5.4.11					devDependencies	patch
vitest (source)	2.1.1 -> 2.1.8					devDependencies	patch
vue (source)	3.5.5 -> 3.5.13					dependencies	patch
vue-tsc (source)	2.1.6 -> 2.1.10					devDependencies	patch

---

Release Notes

crxjs/rollup-plugin-chrome-extension (@​crxjs/vite-plugin)

v2.0.0-beta.28

Compare Source

Patch Changes

• 0dac0e3: Clean up archived files and update magic-string

v2.0.0-beta.26

Compare Source

Major Changes

• f4eb4d4: fix: workaround for the issue with chrome.runtime.getURL introduced
  in Chrome 130 causing CSP rejecting script due to different origin (GUID
  instead of chrome extension id)

tailwindlabs/heroicons (@​heroicons/vue)

v2.2.0

Compare Source

Added

• Add React 19 support (#​1247)

Fixed

• Removed unnecessary clipping path from solid/arrow-left-circle (#​1211)

vitejs/vite-plugin-vue (@​vitejs/plugin-vue)

v5.2.1

• chore: add vite 6 peer dep (#​481) (4288652), closes #​481
• chore: fix lint (378aea3)
• chore(deps): update dependency rollup to ^4.27.2 (#​476) (b2df95e), closes #​476

v5.2.0

• feat: add a feature option to support custom component id generator (#​461) (7a1fc4c), closes #​461

v5.1.5

• chore: fix typo (#​464) (4a811b0), closes #​464
• chore(deps): update dependency rollup to ^4.24.0 (#​448) (0fc9cd0), closes #​448
• chore(deps): update dependency rollup to ^4.25.0 (#​472) (91210cc), closes #​472
• chore(deps): update upstream (#​462) (5625fc9), closes #​462
• fix(deps): update all non-major dependencies (#​439) (e432bcb), closes #​439
• fix(hmr): re-resolve script after type dep changed (#​446) (8f9c624), closes #​446
• fix(hmr): should reload if relies file changed after re-render (#​471) (62b17f3), closes #​471
• perf: use hash to replace createHash (#​460) (de88394), closes #​460

v5.1.4

• chore: format (07b29a6)
• chore(deps): update dependency rollup to ^4.21.3 (#​440) (98766c2), closes #​440
• fix: skip checking private properties of typeParameters (#​443) (e4f5fff), closes #​443
• fix(plugin-vue): allow overwrite esbuild config (#​444) (1344294), closes #​444

actions/checkout (actions/checkout)

v4.2.2

Compare Source

• url-helper.ts now leverages well-known environment variables by @​jww3 in https://github.com/actions/checkout/pull/1941
• Expand unit test coverage for isGhes by @​jww3 in https://github.com/actions/checkout/pull/1946

v4.2.1

Compare Source

• Check out other refs/* by commit if provided, fall back to ref by @​orhantoy in https://github.com/actions/checkout/pull/1924

v4.2.0

Compare Source

• Add Ref and Commit outputs by @​lucacome in https://github.com/actions/checkout/pull/1180
• Dependency updates by @​dependabot- https://github.com/actions/checkout/pull/1777, https://github.com/actions/checkout/pull/1872

jsdom/jsdom (jsdom)

v25.0.1

Compare Source

• Updated dependencies, notably tough-cookie, which no longer prints a deprecation warning.

nodejs/node (node)

v20.18.1: 2024-11-20, Version 20.18.1 'Iron' (LTS), @​marco-ippolito

Compare Source

Notable Changes

• [7a8992b2d6] - doc: add abmusse to collaborators (Abdirahim Musse) #​55086

Commits

• [085c3441fe] - assert: show the diff when deep comparing data with a custom message (Giovanni) #​54759
• [01f0b0e7b4] - benchmark: adjust config for deepEqual object (Rafael Gonzaga) #​55254
• [a45537269b] - benchmark: rewrite detect-esm-syntax benchmark (Joyee Cheung) #​55238
• [1a0d8ef64f] - benchmark: add no-warnings to process.has bench (Rafael Gonzaga) #​55159
• [2be5d611ce] - benchmark: create benchmark for typescript (Marco Ippolito) #​54904
• [a2aa4fa477] - benchmark: include ascii to fs/readfile (Rafael Gonzaga) #​54988
• [09849105fe] - benchmark: add dotenv benchmark (Aviv Keller) #​54278
• [6b3c24dbad] - buffer: fix out of range for toString (Jason Zhang) #​54553
• [f25a5b6dc4] - build: use rclone instead of aws CLI (Michaël Zasso) #​55617
• [0bbeb605de] - build: fix notify-on-review-wanted action (Rafael Gonzaga) #​55304
• [5b35836732] - build: include .nycrc in coverage workflows (Wuli Zuo) #​55210
• [f38d1e90e0] - build: notify via slack when review-wanted (Rafael Gonzaga) #​55102
• [0b985ec4bb] - build: remove -v flag to reduce noise (iwuliz) #​55025
• [09f75b27a1] - build: display free disk space after build in the test-macOS workflow (iwuliz) #​55025
• [f25760c4a2] - build: add the option to generate compile_commands.json in vcbuild.bat (Segev Finer) #​52279
• [746e78c4f3] - Revert "build: upgrade clang-format to v18" (Chengzhong Wu) #​54994
• [67834ee646] - build: print Running XYZ linter... for py and yml (Aviv Keller) #​54386
• [ae34e276a2] - build: pin doc workflow to Node.js 20 (Richard Lau) #​55755
• [d0e871a706] - build,win: add winget config to set up env (Hüseyin Açacak) #​54729
• [93ac799b6b] - cli: fix spacing for port range error (Aviv Keller) #​54495
• [3ba2e7bf97] - Revert "console: colorize console error and warn" (Aviv Keller) #​54677
• [2f678ea53b] - crypto: ensure invalid SubtleCrypto JWK data import results in DataError (Filip Skokan) #​55041
• [5d28d98542] - deps: update undici to 6.20.0 (Node.js GitHub Bot) #​55329
• [0c7f2fc421] - deps: update archs files for openssl-3.0.15+quic1 (Node.js GitHub Bot) #​55184
• [da15e7edf5] - deps: upgrade openssl sources to quictls/openssl-3.0.15+quic1 (Node.js GitHub Bot) #​55184
• [381f1f9d08] - deps: update archs files for openssl-3.0.14+quic1 (Node.js GitHub Bot) #​54336
• [48d643f78a] - deps: upgrade openssl sources to quictls/openssl-3.0.14+quic1 (Node.js GitHub Bot) #​54336
• [7b1796803b] - deps: update timezone to 2024b (Node.js GitHub Bot) #​55056
• [8f1956c588] - deps: update acorn-walk to 8.3.4 (Node.js GitHub Bot) #​54950
• [20501a7350] - deps: update corepack to 0.29.4 (Node.js GitHub Bot) #​54845
• [0f81eafecc] - doc: fix Markdown linter (Antoine du Hamel) #​55344
• [df713f0a98] - Revert "doc: update test context.assert" (Antoine du Hamel) #​55344
• [fd6fc61d2c] - doc: add pmarchini to collaborators (Pietro Marchini) #​55331
• [b963db9ee2] - doc: fix events.once() example using AbortSignal (Ivo Janssen) #​55144
• [50b13bfb12] - doc: add onboarding details for ambassador program (Marco Ippolito) #​55284
• [27564b7811] - doc: fix initial default value of autoSelectFamily (Ihor Rohovets) #​55245
• [9e7be23aa5] - doc: tweak onboarding instructions (Michael Dawson) #​55212
• [f412a029c3] - doc: update test context.assert (Pietro Marchini) #​55186
• [2f7828debb] - doc: fix unordered error anchors (Antoine du Hamel) #​55242
• [d08e4c235b] - doc: mention addons to experimental permission (Rafael Gonzaga) #​55166
• [d65c2458dc] - doc: use correct dash in stability status (Antoine du Hamel) #​55200
• [d9839c16cf] - doc: fix link in test/README.md (Livia Medeiros) #​55165
• [1ad659afa4] - doc: add esm examples to node:net (Alfredo González) #​55134
• [81ad69d50f] - doc: move the YAML changes element (sendoru) #​55112
• [7a51a161be] - doc: fix the require resolve algorithm in modules.md (chirsz) #​55117
• [80edcdf899] - doc: update style guide (Aviv Keller) #​53223
• [388c754dd2] - doc: add missing : to run()'s globPatterns (Aviv Keller) #​55135
• [94302b6a76] - doc: add abmusse to collaborators (Abdirahim Musse) #​55086
• [27ff2da964] - doc: add note about --expose-internals (Aviv Keller) #​52861
• [df6dc753b7] - doc: remove parseREPLKeyword from REPL documentation (Aviv Keller) #​54749
• [4baa5c4d10] - doc: change backporting guide with updated info (Aviv Keller) #​53746
• [9947fc112f] - doc: add missing definitions to internal-api.md (Aviv Keller) #​53303
• [a4586f0e94] - doc: update documentation for externalizing deps (Michael Dawson) #​54792
• [70504f8522] - doc: update require(ESM) history and stability status (Antoine du Hamel) #​55199
• [9d0041ac40] - doc: add release key for aduh95 (Antoine du Hamel) #​55349
• [0c1666a52a] - events: allow null/undefined eventInitDict (Matthew Aitken) #​54643
• [453df77f99] - events: return currentTarget when dispatching (Matthew Aitken) #​54642
• [0decaab9db] - fs: acknowledge signal option in filehandle.createReadStream() (Livia Medeiros) #​55148
• [00a2fc7166] - lib: move Symbol[Async]Dispose polyfills to internal/util (Antoine du Hamel) #​54853
• [8e6b606ac4] - lib: remove lib/internal/idna.js (Yagiz Nizipli) #​55050
• [c96e5cb664] - lib: the REPL should survive deletion of Array.prototype methods (Jordan Harband) #​31457
• [748ed2e559] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) #​55300
• [8b8d35f015] - meta: bump mozilla-actions/sccache-action from 0.0.5 to 0.0.6 (dependabot[bot]) #​55225
• [d3441ff0c8] - meta: bump actions/checkout from 4.1.7 to 4.2.0 (dependabot[bot]) #​55224
• [1c20908558] - meta: bump actions/setup-node from 4.0.3 to 4.0.4 (dependabot[bot]) #​55223
• [8a529abd69] - meta: bump peter-evans/create-pull-request from 7.0.1 to 7.0.5 (dependabot[bot]) #​55219
• [9053d210ab] - meta: add mailmap entry for abmusse (Abdirahim Musse) #​55182
• [db2496c125] - meta: add more information about nightly releases (Aviv Keller) #​55084
• [d2ce003b2f] - meta: add linux to OS labels in collaborator guide (Aviv Keller) #​54986
• [37b0bea247] - meta: remove never-used workflow trigger (Aviv Keller) #​54983
• [ae27e2dcd7] - meta: add links to alternative issue trackers (Aviv Keller) #​54401
• [6e5d524b0f] - module: remove duplicated import (Aviv Keller) #​54942
• [3a682cca03] - path: remove repetitive conditional operator in posix.resolve (Wiyeong Seo) #​54835
• [ac1cb8dfdb] - perf_hooks: add missing type argument to getEntriesByName (Luke Taher) #​54767
• [85b3edc83b] - repl: catch \v and \r in new-line detection (Aviv Keller) #​54512
• [df1f04999e] - src: decode native error messages as UTF-8 (Joyee Cheung) #​55024
• [86d718177a] - src: update clang-tidy and focus on modernization (Yagiz Nizipli) #​53757
• [7d01b6a9c5] - src: cleanup per env handles directly without a list (Chengzhong Wu) #​54993
• [a730cdb622] - src: remove duplicate code setting AF_INET (He Yang) #​54939
• [f10d9ad283] - stream: treat null asyncIterator as undefined (Jason Zhang) #​55119
• [6027084245] - test: make test-loaders-workers-spawned less flaky (Antoine du Hamel) #​55172
• [66a87d19bd] - test: update multiple assert tests to use node:test (James M Snell) #​54585
• [5105188c47] - test: update wpt test for encoding (devstone) #​55151
• [81bcec0b82] - test: deflake test/pummel/test-timers.js (jakecastelli) #​55098
• [82c402265a] - test: deflake test-http-remove-header-stays-removed (Luigi Pinca) #​55004
• [78021701ed] - test: fix test-tls-junk-closes-server (Michael Dawson) #​55089
• [c908b8a2d8] - test: fix more tests that fail when path contains a space (Antoine du Hamel) #​55088
• [afc1628e73] - test: fix assertSnapshot when path contains a quote (Antoine du Hamel) #​55087
• [7c88739b83] - test: fix some tests when path contains % (Antoine du Hamel) #​55082
• [eb4d468671] - Revert "test: mark test-fs-watch-non-recursive flaky on Windows" (Luigi Pinca) #​55079
• [bc7b5249d4] - test: make test-runner-assert more robust (Aviv Keller) #​55036
• [6c2a1386f7] - test: update tls test to support OpenSSL32 (Michael Dawson) #​55030
• [96406610fa] - test: fix test-vm-context-dont-contextify when path contains a space (Antoine du Hamel) #​55026
• [39a80eed4f] - test: adjust tls-set-ciphers for OpenSSL32 (Michael Dawson) #​55016
• [bd8fd4fceb] - test: add util.stripVTControlCharacters test (RedYetiDev) #​54865
• [333b5a02d0] - test: improve coverage for timer promises schedular (Aviv Keller) #​53370
• [f48992f433] - test: remove unused common utilities (RedYetiDev) #​54825
• [93a098c56d] - test: deflake test-http-header-overflow (Luigi Pinca) #​54978
• [f849cf677d] - test: fix soucre to source (Aviv Keller) #​55038
• [1a007ea814] - test: add asserts to validate test assumptions (Michael Dawson) #​54997
• [6f53c096f8] - test: move test-http-max-sockets to parallel (Luigi Pinca) #​54977
• [aba9dc775e] - test: remove test-http-max-sockets flaky designation (Luigi Pinca) #​54976
• [ee5624bffe] - test: adjust key sizes to support OpenSSL32 (Michael Dawson) #​54972
• [5c11a61140] - test: update test to support OpenSSL32 (Michael Dawson) #​54968
• [62f21470e4] - test: update DOM events web platform tests (Matthew Aitken) #​54642
• [426851705c] - test_runner: assert entry is a valid object (Edigleysson Silva (Edy)) #​55231
• [b1cad519d7] - test_runner: use test: symbol on second print of parent test (RedYetiDev) #​54956
• [63c8f3d436] - test_runner: replace ansi clear with ansi reset (Pietro Marchini) #​55013
• [0b3fb344f7] - tools: add polyfilled option to prefer-primordials rule (Antoine du Hamel) #​55318
• [8981309bd9] - tools: make choco install script more readable (Aviv Keller) #​54002
• [7310abeae1] - tools: bump Rollup from 4.18.1 to 4.22.4 for lint-md (dependabot[bot]) #​55093
• [083311e8af] - tools: remove redudant code from eslint require rule (Aviv Keller) #​54892
• [ae4b2aece1] - tools: update error message for ICU in license-builder (Aviv Keller) #​54742
• [3ebd31684d] - tools: update github_reporter to 1.7.1 (Node.js GitHub Bot) #​54951
• [397be8a10e] - tty: fix links for terminal colors (Aviv Keller) #​54596
• [a3c2ef9e98] - util: update ansi regex (Aviv Keller) #​54865
• [efdccc88a2] - watch: preserve output when gracefully restarted (Théo LUDWIG) #​54323
• [226836c5ac] - worker: throw InvalidStateError in postMessage after close (devstone) #​55206
• [f39ff4d14b] - worker: handle --input-type more consistently (Antoine du Hamel) #​54979
• [30383ffb9a] - zlib: throw brotli initialization error from c++ (Yagiz Nizipli) #​54698

v20.18.0: 2024-10-03, Version 20.18.0 'Iron' (LTS), @​targos

Compare Source

Notable Changes

Experimental Network Inspection Support in Node.js

This update introduces the initial support for network inspection in Node.js.
Currently, this is an experimental feature, so you need to enable it using the --experimental-network-inspection flag.
With this feature enabled, you can inspect network activities occurring within a JavaScript application.

To use network inspection, start your Node.js application with the following command:

$ node --inspect-wait --experimental-network-inspection index.js

Please note that the network inspection capabilities are in active development.
We are actively working on enhancing this feature and will continue to expand its functionality in future updates.

• Network inspection is limited to the http and https modules only.
• The Network tab in Chrome DevTools will not be available until the
  feature request on the Chrome DevTools side is addressed.

Contributed by Kohei Ueno in #​53593 and #​54246

Exposes X509_V_FLAG_PARTIAL_CHAIN to tls.createSecureContext

This releases introduces a new option to the API tls.createSecureContext. From
now on, tls.createSecureContext({ allowPartialTrustChain: true }) can be used
to treat intermediate (non-self-signed) certificates in the trust CA certificate
list as trusted.

Contributed by Anna Henningsen in #​54790

New option for vm.createContext() to create a context with a freezable globalThis

Node.js implements a flavor of vm.createContext() and friends that creates a context without contextifying its global
object when vm.constants.DONT_CONTEXTIFY is used. This is suitable when users want to freeze the context
(impossible when the global is contextified i.e. has interceptors installed) or speed up the global access if they
don't need the interceptor behavior.

Contributed by Joyee Cheung in #​54394

Deprecations

• [64aa31f6e5] - repl: doc-deprecate instantiating node:repl classes without new (Aviv Keller) #​54842
• [4c52ee3d7f] - zlib: deprecate instantiating classes without new (Yagiz Nizipli) #​54708

Other Notable Changes

• [b80da2f964] - buffer: optimize createFromString (Robert Nagy) #​54324
• [02b36cbd2d] - (SEMVER-MINOR) lib: add EventSource Client (Aras Abbasi) #​51575
• [879546a9bf] - (SEMVER-MINOR) src,lib: add performance.uvMetricsInfo (Rafael Gonzaga) #​54413
• [f789f4c92d] - (SEMVER-MINOR) test_runner: support module mocking (Colin Ihrig) #​52848
• [4eb0749b6c] - (SEMVER-MINOR) url: implement parse method for safer URL parsing (Ali Hassan) #​52280

Commits

• [013c48f0e9] - benchmark: --no-warnings to avoid DEP/ExpWarn log (Rafael Gonzaga) #​54928
• [194fc113ac] - benchmark: add buffer.isAscii benchmark (RafaelGSS) #​54740
• [7410d51cb9] - benchmark: add buffer.isUtf8 bench (RafaelGSS) #​54740
• [2393f21e8a] - benchmark: add access async version to bench (Rafael Gonzaga) #​54747
• [b8779721f0] - benchmark: enhance dc publish benchmark (Rafael Gonzaga) #​54745
• [4078aa83ff] - benchmark: add match and doesNotMatch bench (RafaelGSS) #​54734
• [66acab9976] - benchmark: add rejects and doesNotReject bench (RafaelGSS) #​54734
• [6db777fb3a] - benchmark: add throws and doesNotThrow bench (RafaelGSS) #​54734
• [8f101560ce] - benchmark: add strictEqual and notStrictEqual bench (RafaelGSS) #​54734
• [2c9e4c936e] - benchmark: adds groups to better separate benchmarks (Giovanni Bucci) #​54393
• [671c3ac633] - benchmark: fix benchmark for file path and URL conversion (Early Riser) #​54190
• [8c8708cb5b] - benchmark: use assert.ok searchparams (Rafael Gonzaga) #​54334
• [8b71fa79e2] - benchmark: add stream.compose benchmark (jakecastelli) #​54308
• [93ee36e3a0] - benchmark: rename count to n (Rafael Gonzaga) #​54271
• [f2971b6f0b] - benchmark: change assert() to assert.ok() (Rafael Gonzaga) #​54254
• [f48f2c212c] - benchmark: support --help in CLI (Aviv Keller) #​53358
• [0309b0520b] - benchmark: remove force option as force defaults to true (Yelim Koo) #​54203
• [b6e8305b2d] - benchmark: use assert.ok instead of assert (Rafael Gonzaga) #​54176
• [90c660d26a] - benchmark: add require-esm benchmark (Joyee Cheung) #​52166
• [1b8584b52e] - benchmark,doc: add CPU scaling governor to perf (Rafael Gonzaga) #​54723
• [0b9161b330] - benchmark,doc: mention bar.R to the list of scripts (Rafael Gonzaga) #​54722
• [84bf93b7ea] - buffer: allow invalid encoding in from (Robert Nagy) #​54533
• [d04246a0d7] - buffer: optimize byteLength for common encodings (Robert Nagy) #​54342
• [f36831f694] - buffer: optimize createFromString (Robert Nagy) #​54324
• [f5f40c8088] - buffer: optimize for common encodings (Robert Nagy) #​54319
• [76c37703be] - buffer: add JSDoc to blob bytes method (Roberto Simonini) #​54117
• [3012d31404] - buffer: use faster integer argument check (Robert Nagy) #​54089
• [3505782801] - buffer: make indexOf(byte) faster (Tobias Nießen) #​53455
• [d285fc1f68] - build: upgrade clang-format to v18 (Aviv Keller) #​53957
• [[d288ec3b0a](https://redirect.github.com/nodejs/node/commit/

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.