Update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
@swc/core (source)	1.3.92 -> 1.3.93					devDependencies	patch
@types/node (source)	20.8.4 -> 20.8.6					devDependencies	patch
eslint-plugin-n	16.1.0 -> 16.2.0					devDependencies	minor
eslint-plugin-prettier	5.0.0 -> 5.0.1					devDependencies	patch
node	20.8.0 -> 20.8.1					volta	patch

---

Release Notes

swc-project/swc (@​swc/core)

v1.3.93

Compare Source

Bug Fixes

• (ci) Fix CI (#​8079) (7073e83)

• (es/codegen) Fix codegen of type-only imports (#​8070) (6f45b46)

• (es/compat) Handle __proto__ edge case in shorthand pass (#​8077) (a912937)

• (es/compat) Handle export default decorator only if not empty (#​8099) (bf523f5)

• (es/decorators) Fix a regression about class expressions (#​8102) (cb4361f)

• (es/helpers) Override mistake in _interop_require_wildcard (#​8076) (1346528)

• (es/minifier) Don't inline functions if keep_fnames is enabled (#​8093) (94bb42e)

• (es/parser) Fix parsing of await using (#​8101) (e1043fa)

• (xtask) Fix nightly command (#​8105) (db4ca65)

Features

• (css/parser) Store lexed comments (#​8091) (d1097cc)

Miscellaneous Tasks

• (es/minifier) Fix script for extracting test cases from next.js app (#​8092) (a2d0779)

Refactor

• (atoms) Remove usage of js_word! to drop string-cache (#​7976) (84cec87)

• (es/compat) Split swc_ecma_transforms_compat (#​8110) (affb6fb)

• (es/module) Reimplement some functions of module/typescript (#​8063) (3e5b062)

• (es/parser) Introduce TokenKind along with Token (#​8071) (9b9bc51)

• (es/preset-env) Rename parameter to avoid confusion (#​8106) (95eb147)

eslint-community/eslint-plugin-n (eslint-plugin-n)

v16.2.0

Compare Source

Features

• feat: detect non-member expressions in n/no-sync (#​127) (6d02512)

Bugfixes

• fix: Normalise package.json#files before checking ignores and whitelist (#​123) (fixes #​122) (2d43f48)

Docs & Chores

• docs: fix repository URL:s, tweak badges + remove old non-working codecov (#​125) (5507f43)
• chore: Add a .editorconfig file (#​126) (574df88)
• chore: use maintained npm-run-all fork (#​124) (98ea90e)
• ci: fix actions/setup-node setup for linting (7f54d0c)
• chore: remove unused funding.yml (4f3891c)
• docs: Create a shared settings document (#​115) (7d855e6)
• chore: remove usage of @​eslint/eslintrc (#​116) (150b34f)
• build: add node v20 (#​117) (b7d0536)

prettier/eslint-plugin-prettier (eslint-plugin-prettier)

v5.0.1

Compare Source

Patch Changes

• #​588 21a7146 Thanks @​krist7599555! - fix: parserPath type might be undefined on Eslint Falt Config

nodejs/node (node)

v20.8.1: 2023-10-13, Version 20.8.1 (Current), @​RafaelGSS

Compare Source

This is a security release.

Notable Changes

The following CVEs are fixed in this release:

• CVE-2023-44487: nghttp2 Security Release (High)
• CVE-2023-45143: undici Security Release (High)
• CVE-2023-39332: Path traversal through path stored in Uint8Array (High)
• CVE-2023-39331: Permission model improperly protects against path traversal (High)
• CVE-2023-38552: Integrity checks according to policies can be circumvented (Medium)
• CVE-2023-39333: Code injection via WebAssembly export names (Low)

More detailed information on each of the vulnerabilities can be found in October 2023 Security Releases blog post.

Commits

• [c86883e844] - deps: update nghttp2 to 1.57.0 (James M Snell) #​50121
• [2860631359] - deps: update undici to v5.26.3 (Matteo Collina) #​50153
• [cd37838bf8] - lib: let deps require node prefixed modules (Matthew Aitken) #​50047
• [f5c90b2951] - module: fix code injection through export names (Tobias Nießen) nodejs-private/node-private#461
• [fa5dae1944] - permission: fix Uint8Array path traversal (Tobias Nießen) nodejs-private/node-private#456
• [cd35275111] - permission: improve path traversal protection (Tobias Nießen) nodejs-private/node-private#456
• [a4cb7fc7c0] - policy: use tamper-proof integrity check function (Tobias Nießen) nodejs-private/node-private#462

---

Configuration

📅 Schedule: Branch creation - "after 4am on monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[codecov]

Codecov Report

Merging #29 (d17139b) into master (da4a3d7) will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##           master      #29   +/-   ##
=======================================
  Coverage   99.59%   99.59%           
=======================================
  Files          23       23           
  Lines         745      745           
  Branches       43       43           
=======================================
  Hits          742      742           
  Misses          3        3           

Flag	Coverage Δ
integration	99.59% <ø> (ø)
unit	97.43% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.