fix(deps): update all non-major dependencies with stable version (minor)

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update	Pending
@mdit-vue/plugin-frontmatter (source)	^2.0.0 -> ^2.1.3					dependencies	minor
@mdit-vue/types (source)	^2.0.0 -> ^2.1.0					devDependencies	minor
@types/node (source)	^20.10.8 -> ^20.14.9					devDependencies	minor	20.14.10
@vueuse/core (source)	^10.9.0 -> ^10.11.0					dependencies	minor
eslint (source)	^9.4.0 -> ^9.6.0					devDependencies	minor	9.7.0
markdown-it	^14.0.0 -> ^14.1.0					dependencies	minor
mermaid	^10.7.0 -> ^10.9.1					dependencies	minor
node (source)	20.11.1 -> 20.15.0						minor	v20.15.1
node (source)	20.11.1 -> 20.15.0					volta	minor	v20.15.1
pnpm (source)	9.1.4 -> 9.4.0					volta	minor	9.5.0
postcss-html	^1.6.0 -> ^1.7.0					devDependencies	minor
stylelint (source)	^16.2.1 -> ^16.6.1					devDependencies	minor	16.7.0
typescript (source)	^5.3.3 -> ^5.5.3					devDependencies	minor
vite (source)	^5.1.7 -> ^5.3.3					devDependencies	minor
vitest (source)	1.3.1 -> 1.6.0					devDependencies	minor

---

Release Notes

mdit-vue/mdit-vue (@​mdit-vue/plugin-frontmatter)

v2.1.3

Compare Source

Note: Version bump only for package @​mdit-vue/monorepo

v2.1.2

Compare Source

Bug Fixes

• sync markdown-it types updates (#​9) (f6768b1)

v2.1.0

Compare Source

Features

• upgrade markdown-it types to v14 (6839be8)

vueuse/vueuse (@​vueuse/core)

v10.11.0

Compare Source

   🐞 Bug Fixes

• integrations: Specify major version of peerDeps  -  by @​antfu (2f67a)

    View changes on GitHub

v10.10.1

Compare Source

   🚀 Features

• useFocus: Support preventScroll option  -  by @​pkc918 in https://github.com/vueuse/vueuse/issues/3994 (4d868)

   🐞 Bug Fixes

• makeDestructurable: Fix Typescript < 5.0.0 support  -  by @​brenoepics in https://github.com/vueuse/vueuse/issues/4028 (842d7)
• useSpeechRecognition: Send correct transcript result  -  by @​noook in https://github.com/vueuse/vueuse/issues/3891 (7c36f)

    View changes on GitHub

eslint/eslint (eslint)

v9.6.0

Compare Source

v9.5.0

Compare Source

markdown-it/markdown-it (markdown-it)

v14.1.0

Compare Source

Changed

• Updated CM spec compatibility to 0.31.2, #​1009.

Fixed

• Fixed quadratic complexity when parsing references, #​996.
• Fixed quadratic output size with pathological user input in tables, #​1000.

mermaid-js/mermaid (mermaid)

v10.9.1

Compare Source

What's Changed

BugFixes

• Cleaning of labels in Block diagram by @​knsv

Docs

• docs(integrations): update link to Mermaid app for Slack by @​JackuB in https://github.com/mermaid-js/mermaid/pull/5370
• Update new diagram doc to reflect focus on Langium by @​sidharthv96 in https://github.com/mermaid-js/mermaid/pull/5372
• feat: Make the examples interactive in the documentation site by @​sidharthv96 in https://github.com/mermaid-js/mermaid/pull/5376
• DOCS: add latest blog posts by @​huynhicode in https://github.com/mermaid-js/mermaid/pull/5368
• DOCS: update Announcement bar link by @​huynhicode in https://github.com/mermaid-js/mermaid/pull/5394
• DOCS: Add Press Release by @​huynhicode in https://github.com/mermaid-js/mermaid/pull/5400
• DOCS: add Turing machine blog post by @​huynhicode in https://github.com/mermaid-js/mermaid/pull/5425
• DOCS: update latest news by @​huynhicode in https://github.com/mermaid-js/mermaid/pull/5455
• 📝🐛 fix schema link by @​dudeofawesome in https://github.com/mermaid-js/mermaid/pull/5456
• DOCS: Add AI in Software Diagramming blog post by @​huynhicode in https://github.com/mermaid-js/mermaid/pull/5492
• DOCS: update Mermaid Chart page by @​huynhicode in https://github.com/mermaid-js/mermaid/pull/5495
• DOCS: Add blog post - Documentation Software by @​huynhicode in https://github.com/mermaid-js/mermaid/pull/5519

New Contributors

• @​dudeofawesome made their first contribution in https://github.com/mermaid-js/mermaid/pull/5456

Full Changelog: mermaid-js/mermaid@v10.9.0...v10.9.1

v10.9.0

Compare Source

Release Notes

We now have Katex support!

Demo

🚀 Features

• Bump @​zenuml/core and update render options in mermaid-zenuml (#​5257) @​dontry
• Implement "until" keyword in gantt charts (#​5224) @​fzag
• Integrated Katex typesetting into flowcharts (#​2885) @​NicolasNewman

🧰 Maintenance

• Add gitgraph parallel commits to docs (#​5336) @​NicolasCwy
• Update recommended Vitest extension (#​5322) @​NicolasCwy
• Correcting path to docker-entrypoint.sh (#​5327) @​bstordrup
• Fix chrome webstore url causing 404 (#​5352) @​Abrifq
• Fix color and arrow for merge commit (gitGraph) (#​5152) @​macherel
• Fix link to Contributors section in README (#​5298) @​BaumiCoder
• Fix macOS onboarding issues (#​5262) @​thedustin
• Fix netlify deploy (#​5332) @​sidharthv96
• Link to webhelp (#​5316) @​BaumiCoder
• Update contribute (#​5268) @​FutzMonitor
• Updates Timeline Documentation (#​5315) @​FutzMonitor
• [Docs] Updated chrome extension url's to new store (#​5297) @​Abrifq
• chore: Update CSpell configuration (#​5286) @​Jason3S
• feat: add name field to the actors (#​5284) @​ad1992
• fix typo cutomers => customers (#​5269) @​elgalu

📚 Documentation

• Add new extension to integrations (#​5287) @​BoDonkey
• Added link to Blazorade Mermaid to the community integrations page. (#​5333) @​MikaBerglund
• Replace version number placeholder (#​5304) @​BaumiCoder

🎉 Thanks to all contributors helping with this release! 🎉

nodejs/node (node)

v20.15.0: 2024-06-20, Version 20.15.0 'Iron' (LTS), @​marco-ippolito

Compare Source

test_runner: support test plans

It is now possible to count the number of assertions and subtests that are expected to run within a test. If the number of assertions and subtests that run does not match the expected count, the test will fail.

test('top level test', (t) => {
  t.plan(2);
  t.assert.ok('some relevant assertion here');
  t.subtest('subtest', () => {});
});

Contributed by Colin Ihrig in #​52860

inspector: introduce the --inspect-wait flag

This release introduces the --inspect-wait flag, which allows debugger to wait for attachement. This flag is useful when you want to debug the code from the beginning. Unlike --inspect-brk, which breaks on the first line, this flag waits for debugger to be connected and then runs the code as soon as a session is established.

Contributed by Kohei Ueno in #​52734

zlib: expose zlib.crc32()

This release exposes the crc32() function from zlib to user-land.

It computes a 32-bit Cyclic Redundancy Check checksum of data. If
value is specified, it is used as the starting value of the checksum,
otherwise, 0 is used as the starting value.

The CRC algorithm is designed to compute checksums and to detect error
in data transmission. It's not suitable for cryptographic authentication.

const zlib = require('node:zlib');
const { Buffer } = require('node:buffer');

let crc = zlib.crc32('hello');  // 907060870
crc = zlib.crc32('world', crc);  // 4192936109

crc = zlib.crc32(Buffer.from('hello', 'utf16le'));  // 1427272415
crc = zlib.crc32(Buffer.from('world', 'utf16le'), crc);  // 4150509955

Contributed by Joyee Cheung in #​52692

cli: allow running wasm in limited vmem with --disable-wasm-trap-handler

By default, Node.js enables trap-handler-based WebAssembly bound
checks. As a result, V8 does not need to insert inline bound checks
int the code compiled from WebAssembly which may speedup WebAssembly
execution significantly, but this optimization requires allocating
a big virtual memory cage (currently 10GB). If the Node.js process
does not have access to a large enough virtual memory address space
due to system configurations or hardware limitations, users won't
be able to run any WebAssembly that involves allocation in this
virtual memory cage and will see an out-of-memory error.

$ ulimit -v 5000000
$ node -p "new WebAssembly.Memory({ initial: 10, maximum: 100 });"
[eval]:1
new WebAssembly.Memory({ initial: 10, maximum: 100 });
^

RangeError: WebAssembly.Memory(): could not allocate memory
    at [eval]:1:1
    at runScriptInThisContext (node:internal/vm:209:10)
    at node:internal/process/execution:118:14
    at [eval]-wrapper:6:24
    at runScript (node:internal/process/execution:101:62)
    at evalScript (node:internal/process/execution:136:3)
    at node:internal/main/eval_string:49:3

--disable-wasm-trap-handler disables this optimization so that
users can at least run WebAssembly (with a less optimial performance)
when the virtual memory address space available to their Node.js
process is lower than what the V8 WebAssembly memory cage needs.

Contributed by Joyee Cheung in #​52766

Other Notable Changes

• [12512c3d0e] - doc: add pimterry to collaborators (Tim Perry) #​52874
• [9d485b40bb] - (SEMVER-MINOR) tools: fix get_asan_state() in tools/test.py (Joyee Cheung) #​52766
• [e98c305f52] - (SEMVER-MINOR) tools: support max_virtual_memory test configuration (Joyee Cheung) #​52766
• [dce0300896] - (SEMVER-MINOR) tools: support != in test status files (Joyee Cheung) #​52766

Commits

• [227093bfec] - assert: add deep equal check for more Error type (Zhenwei Jin) #​51805
• [184cfe5a71] - benchmark: filter non-present deps from start-cli-version (Adam Majer) #​51746
• [8b3e83bb53] - buffer: even faster atob (Daniel Lemire) #​52443
• [8d628c3255] - buffer: use size_t instead of uint32_t to avoid segmentation fault (Xavier Stouder) #​48033
• [16ae2b2933] - buffer: remove lines setting indexes to integer value (Zhenwei Jin) #​52588
• [48c15d0dcd] - build: remove deprecated calls for argument groups (Mohammed Keyvanzadeh) #​52913
• [1be8232d17] - build: drop base64 dep in GN build (Cheng) #​52856
• [918962d6e7] - build: make simdjson a public dep in GN build (Cheng) #​52755
• [5215b6fd8e] - build, tools: copy release assets to staging R2 bucket once built (flakey5) #​51394
• [473fa73857] - (SEMVER-MINOR) cli: allow running wasm in limited vmem with --disable-wasm-trap-handler (Joyee Cheung) #​52766
• [954d2aded4] - cluster: replace forEach with for-of loop (Jérôme Benoit) #​50317
• [794e450ea7] - console: colorize console error and warn (Jithil P Ponnan) #​51629
• [0fb7c18f10] - crypto: fix duplicated switch-case return values (Mustafa Ateş UZUN) #​49030
• [cd1415c8b2] - Revert "crypto: make timingSafeEqual faster for Uint8Array" (Tobias Nießen) #​53390
• [b774544bb1] - deps: enable unbundling of simdjson, simdutf, ada (Daniel Lemire) #​52924
• [da4dbfc5fd] - doc: remove reference to AUTHORS file (Marco Ippolito) #​52960
• [2f3f2ff8af] - doc: update hljs with the latest styles (Aviv Keller) #​52911
• [3a1d17a9b1] - doc: mention quicker way to build docs (Alex Crawford) #​52937
• [be309bd19d] - doc: mention push.followTags config (Rafael Gonzaga) #​52906
• [e62c6e2684] - doc: document pipeline with end option (Alois Klink) #​48970
• [af27225cf6] - doc: add example for execFileSync method and ref to stdio (Evan Shortiss) #​39412
• [086626f9b1] - doc: add examples and notes to http server.close et al (mary marchini) #​49091
• [3aa3337a00] - doc: fix dns.lookup family 0 and all descriptions (Adam Jones) #​51653
• [585f2a2e7f] - doc: update fs.realpath documentation (sinkhaha) #​48170
• [4bf3d44e1d] - doc: update fs read documentation for clarity (Mert Can Altin) #​52453
• [ae5d47dde3] - doc: watermark string behavior (Benjamin Gruenbaum) #​52842
• [1e429d10d3] - doc: exclude commits with baking-for-lts (Marco Ippolito) #​52896
• [3df3e37cdb] - doc: add names next to release key bash commands (Aviv Keller) #​52878
• [12512c3d0e] - doc: add pimterry to collaborators (Tim Perry) #​52874
• [97e0fef019] - doc: add more definitions to GLOSSARY.md (Aviv Keller) #​52798
• [91fadac162] - doc: make docs more welcoming and descriptive for newcomers (Serkan Özel) #​38056
• [a3b20126fd] - doc: add OpenSSL errors to API docs (John Lamp) #​34213
• [9587ae9b5b] - doc: simplify copy-pasting of branch-diff commands (Antoine du Hamel) #​52757
• [6ea72a53c3] - doc: add test_runner to subsystem (Raz Luvaton) #​52774
• [972eafd983] - events: update MaxListenersExceededWarning message log (sinkhaha) #​51921
• [74753ed1fe] - events: add stop propagation flag to Event.stopImmediatePropagation (Mickael Meausoone) #​39463
• [75dd009649] - events: replace NodeCustomEvent with CustomEvent (Feng Yu) #​43876
• [7d38c2e012] - fs: keep fs.promises.readFile read until EOF is reached (Zhenwei Jin) #​52178
• [8cb13120d3] - (SEMVER-MINOR) inspector: introduce the --inspect-wait flag (Kohei Ueno) #​52734
• [d5ab1de1fd] - meta: move @anonrig to TSC regular member (Yagiz Nizipli) #​52932
• [f82d086e90] - path: fix toNamespacedPath on Windows (Hüseyin Açacak) #​52915
• [121ea13b50] - process: improve event-loop (Aras Abbasi) #​52108
• [eceac784aa] - repl: fix disruptive autocomplete without inspector (Nitzan Uziely) #​40661
• [89a910be82] - src: fix Worker termination in inspector.waitForDebugger (Daeyeon Jeong) #​52527
• [033f985e8a] - src: use S_ISDIR to check if the file is a directory (theanarkh) #​52164
• [95128399f8] - src: allow preventing debug signal handler start (Shelley Vohr) #​46681
• [b162aeae9e] - src: fix typo Unabled -> Unable (Simon Siefke) #​52820
• [2dcbf1894a] - src: avoid unused variable 'error' warning (Michaël Zasso) #​52886
• [978ee0a635] - src: only apply fix in main thread (Paolo Insogna) #​52702
• [8fc52b38c6] - src: fix test local edge case (Paolo Insogna) #​52702
• [d02907ecc4] - src: remove misplaced windows code under posix guard in node.cc (Ali Hassan) #​52545
• [af29120fa7] - stream: use ByteLengthQueuingStrategy when not in objectMode (Jason) #​48847
• [a5f3dd137c] - string_decoder: throw an error when writing a too long buffer (zhenweijin) #​52215
• [65fa95d57d] - test: add Debugger.setInstrumentationBreakpoint known issue (Konstantin Ulitin) #​31137
• [0513e07805] - test: use for-of instead of forEach (Gibby Free) #​49790
• [1d01325928] - test: verify request payload is uploaded consistently (Austin Wright) #​34066
• [7dda156872] - test: add fuzzer for native/js string conversion (Adam Korczynski) #​51120
• [5fb829b340] - test: add fuzzer for ClientHelloParser (AdamKorcz) #​51088
• [cc74bf789f] - test: fix broken env fuzzer by initializing process (AdamKorcz) #​51080
• [800b6f65cf] - test: replace forEach() in test-stream-pipe-unpipe-stream (Dario) #​50786
• [d08c9a6a31] - test: test pipeline end on transform streams (Alois Klink) #​48970
• [0be8123ede] - test: improve coverage of lib/readline.js (Rongjian Zhang) #​38646
• [410224415c] - test: updated for each to for of in test file (lyannel) #​50308
• [556e9a2127] - test: move test-http-server-request-timeouts-mixed to sequential (Madhuri) #​45722
• [0638274c07] - test: fix DNS cancel tests (Szymon Marczak) #​44432
• [311bdc62bd] - test: add http agent to executionAsyncResource (psj-tar-gz) #​34966
• [6001b164ab] - test: reduce memory usage of test-worker-stdio (Adam Majer) #​37769
• [986bfa26e9] - test: add common.expectRequiredModule() (Joyee Cheung) #​52868
• [2246d4fd1e] - test: crypto-rsa-dsa testing for dynamic openssl (Michael Dawson) #​52781
• [1dce5dea0b] - test: skip some console tests on dumb terminal (Adam Majer) #​37770
• [0addeb240c] - test: skip v8-updates/test-linux-perf-logger (Michaël Zasso) #​52821
• [56e19e38f3] - test: drop test-crypto-timing-safe-equal-benchmarks (Rafael Gonzaga) #​52751
• [0c5e58958c] - test, crypto: use correct object on assert (响马) #​51820
• [d54aa47ec1] - (SEMVER-MINOR) test_runner: support test plans (Colin Ihrig) #​52860
• [0289a023a5] - test_runner: fix watch mode race condition (Moshe Atlow) #​52954
• [cf817e192e] - test_runner: preserve hook promise when executed twice (Moshe Atlow) #​52791
• [de541235fe] - tools: fix v8-update workflow (Michaël Zasso) #​52957
• [f6290bc327] - tools: add --certify-safe to nci-ci (Matteo Collina) #​52940
• [0830b3115d] - tools: fix doc update action (Marco Ippolito) #​52890
• [9d485b40bb] - (SEMVER-MINOR) tools: fix get_asan_state() in tools/test.py (Joyee Cheung) #​52766
• [e98c305f52] - (SEMVER-MINOR) tools: support max_virtual_memory test configuration (Joyee Cheung) #​52766
• [dce0300896] - (SEMVER-MINOR) tools: support != in test status files (Joyee Cheung) #​52766
• [57006001ec] - tools: prepare custom rules for ESLint v9 (Michaël Zasso) #​52889
• [403a4a7557] - tools: update lint-md-dependencies to [email protected] (Node.js GitHub Bot) #​52836
• [01eff5860e] - tools: update gr2m/create-or-update-pull-request-action (Antoine du Hamel) #​52843
• [514f01ed59] - tools: use sccache GitHub action (Michaël Zasso) #​52839
• [8f8fb91927] - tools: specify a commit-message for V8 update workflow (Antoine du Hamel) #​52844
• [b83fbf8709] - tools: fix V8 update workflow (Antoine du Hamel) #​52822
• [be9d6f2176] - url,tools,benchmark: replace deprecated substr() (Jungku Lee) #​51546
• [7603a51d45] - util: fix %s format behavior with Symbol.toPrimitive (Chenyu Yang) #​50992
• [d7eba50cf3] - util: improve isInsideNodeModules (uzlopak) #​52147
• [4ae4f7e517] - watch: allow listening for grouped changes (Matthieu Sieben) #​52722
• [1ff8f318c0] - watch: enable passthrough ipc in watch mode (Zack) #​50890
• [739adf90b1] - watch: fix arguments parsing (Moshe Atlow) #​52760
• [5161d95c30] - (SEMVER-MINOR) zlib: expose zlib.crc32() (Joyee Cheung) #​52692

v20.14.0

Compare Source

v20.13.1: 2024-05-09, Version 20.13.1 'Iron' (LTS), @​marco-ippolito

Compare Source

2024-05-09, Version 20.13.1 'Iron' (LTS), @​marco-ippolito

Revert "tools: install npm PowerShell scripts on Windows"

Due to a regression in the npm installation on Windows, this commit reverts the change that installed npm PowerShell scripts on Windows.

Commits

• [b7d80802cc] - Revert "tools: install npm PowerShell scripts on Windows" (marco-ippolito) #​52897

v20.13.0

Compare Source

v20.12.2: 2024-04-10, Version 20.12.2 'Iron' (LTS), @​RafaelGSS

Compare Source

This is a security release.

Notable Changes

• CVE-2024-27980 - Command injection via args parameter of child_process.spawn without shell option enabled on Windows

Commits

• [69ffc6d50d] - src: disallow direct .bat and .cmd file spawning (Ben Noordhuis) nodejs-private/node-private#563

v20.12.1

Compare Source

v20.12.0

Compare Source

pnpm/pnpm (pnpm)

v9.4.0

Compare Source

v9.3.0

Compare Source

Minor Changes

• Semi-breaking. Dependency key names in the lockfile are shortened if they are longer than 1000 characters. We don't expect this change to affect many users. Affected users most probably can't run install successfully at the moment. This change is required to fix some edge cases in which installation fails with an out-of-memory error or "Invalid string length (RangeError: Invalid string length)" error. The max allowed length of the dependency key can be controlled with the peers-suffix-max-length setting #​8177.

Patch Changes

• Set reporter-hide-prefix to true by default for pnpm exec. In order to show prefix, the user now has to explicitly set reporter-hide-prefix=false #​8174.

Platinum Sponsors

Gold Sponsors

Our Silver Sponsors

v9.2.0

Compare Source

Minor Changes

• If package-manager-strict-version is set to true, pnpm will fail if its version doesn't exactly match the version in the "packageManager" field of package.json.

Patch Changes

• Update @yarnpkg/pnp to the latest version, fixing issue with node: imports #​8161.
• Deduplicate bin names to prevent race condition and corrupted bin scripts #​7833.
• pnpm doesn't fail if its version doesn't match the one specified in the "packageManager" field of package.json [#&feat(eslint): eslint v9 and shared flat config [KHCP-11627] #82

---

Configuration

📅 Schedule: Branch creation - "before 5am every weekday" in timezone America/New_York, Automerge - "every weekday" in timezone America/New_York.

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[kongponents-bot]

🎉 This PR is included in version 1.7.7 🎉

The release is available on:

• npm package (@latest dist-tag)
• GitHub release

Your semantic-release bot 📦🚀