chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
@eslint/js (source)	9.5.0 -> 9.6.0					devDependencies	minor
@swc/cli	0.3.12 -> 0.4.0					devDependencies	minor
@swc/core (source)	1.6.1 -> 1.6.7					devDependencies	patch
actions/create-github-app-token	v1.10.1 -> v1.10.3					action	patch
argocd	2.11.3 -> 2.11.4						patch
cloudflare (source)	4.35.0 -> 4.36.0					required_provider	minor
eslint (source)	9.5.0 -> 9.6.0					devDependencies	minor
hashicorp/terraform	1.8.5 -> 1.9.1					required_version	minor
node	20.14.0-bookworm-slim -> 20.15.0-bookworm-slim					final	minor
node	20.14.0-bookworm -> 20.15.0-bookworm					stage	minor
node (source)	20.14.0 -> 20.15.0						minor
pnpm (source)	9.3.0 -> 9.4.0						minor
tsx (source)	4.15.5 -> 4.16.2					devDependencies	minor
typescript (source)	5.4.5 -> 5.5.3					devDependencies	minor
typescript-eslint (source)	7.13.0 -> 7.15.0					devDependencies	minor
ws	8.17.1 -> 8.18.0					resolutions	minor

---

Release Notes

eslint/eslint (@​eslint/js)

v9.6.0

Compare Source

swc-project/swc (@​swc/core)

v1.6.7

Compare Source

Bug Fixes

• (es/compat) Do not reuse span (#​9117) (6520052)

Documentation

• Use @swc/counter for 3rd-party download count (026ff7e)

Features

• (binding) Create Wasm package for stripping only TypeScript (#​9124) (6b3c0da)

• (es/minifier) Handle more indexing expression (#​8750) (570c47a)

• (preset-env) Upgrade browserslist-rs (#​9023) (18d6277)

Performance

• (es/lexer) Do not use memchr::memmem in parser (#​9118) (72021de)

Refactor

• (es/typescript) Extract type annotation proposal out (#​9127) (dfee5f8)

Testing

• (bindings/ts) Test Wasm binding (#​9128) (c6d6db3)

• (es/decorators) Split decorator-tests (#​9119) (07c3054)

Build

• (bindings) Fix build of typescript binding (#​9125) (f409bc0)

v1.6.6

Compare Source

Bug Fixes

• (es/lexer) Fix lexing of \r\n in JSX (#​9112) (2a0ebec)

Performance

• (es/parser) Optimize macros (#​9100) (719b7c5)

• (es/parser) Remove unnecessary check (#​9102) (2a490ad)

• (es/parser) Add a check before numeric operations (#​9105) (c0602c8)

• (es/parser) Increase token context size (#​9104) (8ef30cc)

v1.6.5

Compare Source

v1.6.4

Compare Source

Features

• (cli) Support generating .d.ts files (#​9097) (e71b6d3)

• (common) Add fallible methods to swc_common::SourceMap (#​9090) (e423d1b)

• (es/transform) Add experimental .d.ts generation (#​9093) (51a2702)

• (swc_core) Reexport swc_typescript (#​9092) (a2645e2)

• (typescript) Implement Isolated Declaration (#​9086) (a855159)

Miscellaneous Tasks

• (deps) Replace sha-1 with sha1 (#​9091) (5a2c968)

Performance

• (es/lexer) Apply various optimizations (#​9095) (2f02630)

• (es/lexer) Use memchr::memmem for lexing block comments (#​9096) (1b3672f)

Refactor

• (es/parser) Rename EsConfig and TsConfig (#​9094) (5520b23)

v1.6.3

Compare Source

Bug Fixes

• (css/minifier) Don't tranform rotate deg (#​9072) (8d37dae)

• (es/decorators) Reduce the number of sourcemap mappings (#​9074) (cfe3ba3)

Performance

• (common) Use Chars in StringInput (#​9073) (7698eaa)

• (es/lexer) Optimize lexer (#​9075) (6426928)

• (es/lexer) Make lexing of string literals faster (#​9077) (373bac5)

• (es/lexer) Reduce allocation while lexing identifiers (#​9076) (69f00b8)

• (es/lexer) Add a fast-path to template literal lexer (#​9080) (238f1c5)

• (es/lexer) Add fast-path to jsx lexer (#​9081) (af58606)

Refactor

• (common) Simplify StringInput implementation (#​9071) (c3a8c0b)

actions/create-github-app-token (actions/create-github-app-token)

v1.10.3

Compare Source

Bug Fixes

• deps: bump undici from 6.18.2 to 6.19.2 in the production-dependencies group (#​149) (cc82279), closes #​3337 nodejs/undici#3338 nodejs/undici#3340 nodejs/undici#3332 nodejs/undici#3335 nodejs/undici#3305 nodejs/undici#3303 nodejs/undici#3304 nodejs/undici#3306 nodejs/undici#3309 nodejs/undici#3313 nodejs/undici#3311 nodejs/undici#3107 nodejs/undici#3302 nodejs/undici#3320 nodejs/undici#3321 nodejs/undici#3316 nodejs/undici#3318 nodejs/undici#3326 nodejs/undici#3324 nodejs/undici#3325 nodejs/undici#3316 nodejs/undici#3318 #​3342 #​3332 #​3340 #​3337 #​3338 #​3336 #​3335 #​3325 #​3324 #​3326

v1.10.2

Compare Source

Bug Fixes

• do not revoke token if already expired (#​147) (66a7045), closes #​140 #​95

argoproj/argo-cd (argocd)

v2.11.4

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.11.4/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.11.4/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Features

• d75b23b: Revert "feat(server): log app Spec along with event (#​16416)" (#​18458) (#​18639) (@​gcp-cherry-pick-bot[bot])

Bug fixes

• 24b198b: fix(appset): revert "keep reconciling even when params error occurred" (#​17062) (#​18781) (@​crenshaw-dev)
• bfbceff: fix(controller): bad server-side diffs (#​18213) (2.11) (#​18868) (@​crenshaw-dev)
• 07880f3: fix(webhook): bitbucket and azure not triggering refresh (#​18289) (#​18765) (#​18819) (@​gcp-cherry-pick-bot[bot])
• b5c13b6: fix: Update braces package to 3.0.3 (#​18459) (#​18663) (@​gcp-cherry-pick-bot[bot])
• 5fd645f: fix: docs site version selector broken (#​18378) (#​18724) (@​gcp-cherry-pick-bot[bot])
• 0d1709f: fix: update static schemas (#​18889) (@​crenshaw-dev)

Documentation

• 0e71f09: docs: Fix .path to .path.segments go template (#​18872) (#​18874) (@​gcp-cherry-pick-bot[bot])

Dependency updates

• c2bd38a: chore(deps): upgrade redis to 7.2.15-alpine (cherry-pick release-2.11) (#​18640) (@​34fathombelow)

Other work

• 13844b9: chore: bump go version to 1.21.10 (#​18540) (@​34fathombelow)
• e1284e1: remove unwanted updating of source-position in app set command (#​18887) (#​18896) (@​gcp-cherry-pick-bot[bot])

Full Changelog: argoproj/argo-cd@v2.11.3...v2.11.4

cloudflare/terraform-provider-cloudflare (cloudflare)

v4.36.0

Compare Source

NOTES:

• resource/zone_settings_override: deprecate mobile_redirect setting and include state migration to remove from local state. You should immediately remove the configuration from the resource to prevent permadiffs. (#​3337)

ENHANCEMENTS:

• resource/cloudflare_access_application: Support configuring OIDC SaaS access token lifetime (#​3353)

BUG FIXES:

• resource/cloudflare_list_item: fix crash when not using type = "redirect" due to attempting to compare nil (#​3368)
• resource/cloudflare_list_item: implement exact match for IP values to prevent overlapping IP prefixes from not being found (#​3368)

DEPENDENCIES:

• provider: bump github.com/aws/aws-sdk-go-v2/config from 1.27.18 to 1.27.19 (#​3360)
• provider: bump github.com/aws/aws-sdk-go-v2/config from 1.27.19 to 1.27.20 (#​3362)
• provider: bump github.com/aws/aws-sdk-go-v2/config from 1.27.20 to 1.27.21 (#​3364)
• provider: bump github.com/aws/aws-sdk-go-v2/credentials from 1.17.18 to 1.17.19 (#​3360)
• provider: bump github.com/aws/aws-sdk-go-v2/credentials from 1.17.19 to 1.17.20 (#​3362)
• provider: bump github.com/aws/aws-sdk-go-v2/credentials from 1.17.20 to 1.17.21 (#​3364)
• provider: bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.55.1 to 1.55.2 (#​3360)
• provider: bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.55.2 to 1.56.0 (#​3362)
• provider: bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.56.0 to 1.56.1 (#​3364)
• provider: bump github.com/aws/aws-sdk-go-v2 from 1.27.2 to 1.28.0 (#​3360)
• provider: bump github.com/aws/aws-sdk-go-v2 from 1.28.0 to 1.29.0 (#​3362)
• provider: bump github.com/aws/aws-sdk-go-v2 from 1.29.0 to 1.30.0 (#​3364)
• provider: bump github.com/cloudflare/cloudflare-go from 0.97.0 to 0.98.0 (#​3365)
• provider: bump github.com/cloudflare/cloudflare-go/v2 from 2.2.0 to 2.3.0 (#​3363)
• provider: bump github.com/hashicorp/go-retryablehttp from 0.7.4 to 0.7.7 in /tools (#​3395)

eslint/eslint (eslint)

v9.6.0

Compare Source

hashicorp/terraform (hashicorp/terraform)

v1.9.1

Compare Source

1.9.1 (Unreleased)

UPGRADE NOTES:

• Library used by Terraform (hashicorp/go-getter) for installing/updating modules was upgraded from v1.7.5 to v1.7.6. This addresses CVE-2024-6257. This change may have a negative effect on performance of terraform init or terraform get in case of larger git repositories. Please do file an issue if you find the performance difference noticable. (#​35376)

BUG FIXES:

• terraform test: Removed additional erroneous error message when referencing attributes that don't exist. (#​35408)
• import blocks: Fix crash that occurs when incorrectly referencing the to resource from the id attribute. (#​35420)

v1.9.0

Compare Source

nodejs/node (node)

v20.15.0: 2024-06-20, Version 20.15.0 'Iron' (LTS), @​marco-ippolito

Compare Source

test_runner: support test plans

It is now possible to count the number of assertions and subtests that are expected to run within a test. If the number of assertions and subtests that run does not match the expected count, the test will fail.

test('top level test', (t) => {
  t.plan(2);
  t.assert.ok('some relevant assertion here');
  t.subtest('subtest', () => {});
});

Contributed by Colin Ihrig in #​52860

inspector: introduce the --inspect-wait flag

This release introduces the --inspect-wait flag, which allows debugger to wait for attachement. This flag is useful when you want to debug the code from the beginning. Unlike --inspect-brk, which breaks on the first line, this flag waits for debugger to be connected and then runs the code as soon as a session is established.

Contributed by Kohei Ueno in #​52734

zlib: expose zlib.crc32()

This release exposes the crc32() function from zlib to user-land.

It computes a 32-bit Cyclic Redundancy Check checksum of data. If
value is specified, it is used as the starting value of the checksum,
otherwise, 0 is used as the starting value.

The CRC algorithm is designed to compute checksums and to detect error
in data transmission. It's not suitable for cryptographic authentication.

const zlib = require('node:zlib');
const { Buffer } = require('node:buffer');

let crc = zlib.crc32('hello');  // 907060870
crc = zlib.crc32('world', crc);  // 4192936109

crc = zlib.crc32(Buffer.from('hello', 'utf16le'));  // 1427272415
crc = zlib.crc32(Buffer.from('world', 'utf16le'), crc);  // 4150509955

Contributed by Joyee Cheung in #​52692

cli: allow running wasm in limited vmem with --disable-wasm-trap-handler

By default, Node.js enables trap-handler-based WebAssembly bound
checks. As a result, V8 does not need to insert inline bound checks
int the code compiled from WebAssembly which may speedup WebAssembly
execution significantly, but this optimization requires allocating
a big virtual memory cage (currently 10GB). If the Node.js process
does not have access to a large enough virtual memory address space
due to system configurations or hardware limitations, users won't
be able to run any WebAssembly that involves allocation in this
virtual memory cage and will see an out-of-memory error.

$ ulimit -v 5000000
$ node -p "new WebAssembly.Memory({ initial: 10, maximum: 100 });"
[eval]:1
new WebAssembly.Memory({ initial: 10, maximum: 100 });
^

RangeError: WebAssembly.Memory(): could not allocate memory
    at [eval]:1:1
    at runScriptInThisContext (node:internal/vm:209:10)
    at node:internal/process/execution:118:14
    at [eval]-wrapper:6:24
    at runScript (node:internal/process/execution:101:62)
    at evalScript (node:internal/process/execution:136:3)
    at node:internal/main/eval_string:49:3

--disable-wasm-trap-handler disables this optimization so that
users can at least run WebAssembly (with a less optimial performance)
when the virtual memory address space available to their Node.js
process is lower than what the V8 WebAssembly memory cage needs.

Contributed by Joyee Cheung in #​52766

Other Notable Changes

• [12512c3d0e] - doc: add pimterry to collaborators (Tim Perry) #​52874
• [9d485b40bb] - (SEMVER-MINOR) tools: fix get_asan_state() in tools/test.py (Joyee Cheung) #​52766
• [e98c305f52] - (SEMVER-MINOR) tools: support max_virtual_memory test configuration (Joyee Cheung) #​52766
• [dce0300896] - (SEMVER-MINOR) tools: support != in test status files (Joyee Cheung) #​52766

Commits

• [227093bfec] - assert: add deep equal check for more Error type (Zhenwei Jin) #​51805
• [184cfe5a71] - benchmark: filter non-present deps from start-cli-version (Adam Majer) #​51746
• [8b3e83bb53] - buffer: even faster atob (Daniel Lemire) #​52443
• [8d628c3255] - buffer: use size_t instead of uint32_t to avoid segmentation fault (Xavier Stouder) #​48033
• [16ae2b2933] - buffer: remove lines setting indexes to integer value (Zhenwei Jin) #​52588
• [48c15d0dcd] - build: remove deprecated calls for argument groups (Mohammed Keyvanzadeh) #​52913
• [1be8232d17] - build: drop base64 dep in GN build (Cheng) #​52856
• [918962d6e7] - build: make simdjson a public dep in GN build (Cheng) #​52755
• [5215b6fd8e] - build, tools: copy release assets to staging R2 bucket once built (flakey5) #​51394
• [473fa73857] - (SEMVER-MINOR) cli: allow running wasm in limited vmem with --disable-wasm-trap-handler (Joyee Cheung) #​52766
• [954d2aded4] - cluster: replace forEach with for-of loop (Jérôme Benoit) #​50317
• [794e450ea7] - console: colorize console error and warn (Jithil P Ponnan) #​51629
• [0fb7c18f10] - crypto: fix duplicated switch-case return values (Mustafa Ateş UZUN) #​49030
• [cd1415c8b2] - Revert "crypto: make timingSafeEqual faster for Uint8Array" (Tobias Nießen) #​53390
• [b774544bb1] - deps: enable unbundling of simdjson, simdutf, ada (Daniel Lemire) #​52924
• [da4dbfc5fd] - doc: remove reference to AUTHORS file (Marco Ippolito) #​52960
• [2f3f2ff8af] - doc: update hljs with the latest styles (Aviv Keller) #​52911
• [3a1d17a9b1] - doc: mention quicker way to build docs (Alex Crawford) #​52937
• [be309bd19d] - doc: mention push.followTags config (Rafael Gonzaga) #​52906
• [e62c6e2684] - doc: document pipeline with end option (Alois Klink) #​48970
• [af27225cf6] - doc: add example for execFileSync method and ref to stdio (Evan Shortiss) #​39412
• [086626f9b1] - doc: add examples and notes to http server.close et al (mary marchini) #​49091
• [3aa3337a00] - doc: fix dns.lookup family 0 and all descriptions (Adam Jones) #​51653
• [585f2a2e7f] - doc: update fs.realpath documentation (sinkhaha) #​48170
• [4bf3d44e1d] - doc: update fs read documentation for clarity (Mert Can Altin) #​52453
• [ae5d47dde3] - doc: watermark string behavior (Benjamin Gruenbaum) #​52842
• [1e429d10d3] - doc: exclude commits with baking-for-lts (Marco Ippolito) #​52896
• [3df3e37cdb] - doc: add names next to release key bash commands (Aviv Keller) #​52878
• [12512c3d0e] - doc: add pimterry to collaborators (Tim Perry) #​52874
• [97e0fef019] - doc: add more definitions to GLOSSARY.md (Aviv Keller) #​52798
• [91fadac162] - doc: make docs more welcoming and descriptive for newcomers (Serkan Özel) #​38056
• [a3b20126fd] - doc: add OpenSSL errors to API docs (John Lamp) #​34213
• [9587ae9b5b] - doc: simplify copy-pasting of branch-diff commands (Antoine du Hamel) #​52757
• [6ea72a53c3] - doc: add test_runner to subsystem (Raz Luvaton) #​52774
• [972eafd983] - events: update MaxListenersExceededWarning message log (sinkhaha) #​51921
• [74753ed1fe] - events: add stop propagation flag to Event.stopImmediatePropagation (Mickael Meausoone) #​39463
• [75dd009649] - events: replace NodeCustomEvent with CustomEvent (Feng Yu) #​43876
• [7d38c2e012] - fs: keep fs.promises.readFile read until EOF is reached (Zhenwei Jin) #​52178
• [8cb13120d3] - (SEMVER-MINOR) inspector: introduce the --inspect-wait flag (Kohei Ueno) #​52734
• [d5ab1de1fd] - meta: move @anonrig to TSC regular member (Yagiz Nizipli) #​52932
• [f82d086e90] - path: fix toNamespacedPath on Windows (Hüseyin Açacak) #​52915
• [121ea13b50] - process: improve event-loop (Aras Abbasi) #​52108
• [eceac784aa] - repl: fix disruptive autocomplete without inspector (Nitzan Uziely) #​40661
• [89a910be82] - src: fix Worker termination in inspector.waitForDebugger (Daeyeon Jeong) #​52527
• [033f985e8a] - src: use S_ISDIR to check if the file is a directory (theanarkh) #​52164
• [95128399f8] - src: allow preventing debug signal handler start (Shelley Vohr) #​46681
• [b162aeae9e] - src: fix typo Unabled -> Unable (Simon Siefke) #​52820
• [2dcbf1894a] - src: avoid unused variable 'error' warning (Michaël Zasso) #​52886
• [978ee0a635] - src: only apply fix in main thread (Paolo Insogna) #​52702
• [8fc52b38c6] - src: fix test local edge case (Paolo Insogna) #​52702
• [d02907ecc4] - src: remove misplaced windows code under posix guard in node.cc (Ali Hassan) #​52545
• [af29120fa7] - stream: use ByteLengthQueuingStrategy when not in objectMode (Jason) #​48847
• [a5f3dd137c] - string_decoder: throw an error when writing a too long buffer (zhenweijin) #​52215
• [65fa95d57d] - test: add Debugger.setInstrumentationBreakpoint known issue (Konstantin Ulitin) #​31137
• [0513e07805] - test: use for-of instead of forEach (Gibby Free) #​49790
• [1d01325928] - test: verify request payload is uploaded consistently (Austin Wright) #​34066
• [7dda156872] - test: add fuzzer for native/js string conversion (Adam Korczynski) #​51120
• [5fb829b340] - test: add fuzzer for ClientHelloParser (AdamKorcz) #​51088
• [cc74bf789f] - test: fix broken env fuzzer by initializing process (AdamKorcz) #​51080
• [800b6f65cf] - test: replace forEach() in test-stream-pipe-unpipe-stream (Dario) #​50786
• [d08c9a6a31] - test: test pipeline end on transform streams (Alois Klink) #​48970
• [0be8123ede] - test: improve coverage of lib/readline.js (Rongjian Zhang) #​38646
• [410224415c] - test: updated for each to for of in test file (lyannel) #​50308
• [556e9a2127] - test: move test-http-server-request-timeouts-mixed to sequential (Madhuri) #​45722
• [0638274c07] - test: fix DNS cancel tests (Szymon Marczak) #​44432
• [311bdc62bd] - test: add http agent to executionAsyncResource (psj-tar-gz) #​34966
• [6001b164ab] - test: reduce memory usage of test-worker-stdio (Adam Majer) #​37769
• [986bfa26e9] - test: add common.expectRequiredModule() (Joyee Cheung) #​52868
• [2246d4fd1e] - test: crypto-rsa-dsa testing for dynamic openssl (Michael Dawson) #​52781
• [1dce5dea0b] - test: skip some console tests on dumb terminal (Adam Majer) #​37770
• [0addeb240c] - test: skip v8-updates/test-linux-perf-logger (Michaël Zasso) #​52821
• [56e19e38f3] - test: drop test-crypto-timing-safe-equal-benchmarks (Rafael Gonzaga) #​52751
• [0c5e58958c] - test, crypto: use correct object on assert (响马) #​51820
• [d54aa47ec1] - (SEMVER-MINOR) test_runner: support test plans (Colin Ihrig) #​52860
• [0289a023a5] - test_runner: fix watch mode race condition (Moshe Atlow) #​52954
• [cf817e192e] - test_runner: preserve hook promise when executed twice (Moshe Atlow) #​52791
• [de541235fe] - tools: fix v8-update workflow (Michaël Zasso) #​52957
• [f6290bc327] - tools: add --certify-safe to nci-ci (Matteo Collina) #​52940
• [0830b3115d] - tools: fix doc update action (Marco Ippolito) #​52890
• [9d485b40bb] - (SEMVER-MINOR) tools: fix get_asan_state() in tools/test.py (Joyee Cheung) #​52766
• [e98c305f52] - (SEMVER-MINOR) tools: support max_virtual_memory test configuration (Joyee Cheung) #​52766
• [dce0300896] - (SEMVER-MINOR) tools: support != in test status files (Joyee Cheung) #​52766
• [57006001ec] - tools: prepare custom rules for ESLint v9 (Michaël Zasso) #​52889
• [403a4a7557] - tools: update lint-md-dependencies to [email protected] (Node.js GitHub Bot) #​52836
• [01eff5860e] - tools: update gr2m/create-or-update-pull-request-action (Antoine du Hamel) #​52843
• [514f01ed59] - tools: use sccache GitHub action (Michaël Zasso) #​52839
• [8f8fb91927] - tools: specify a commit-message for V8 update workflow (Antoine du Hamel) #​52844
• [b83fbf8709] - tools: fix V8 update workflow (Antoine du Hamel) #​52822
• [be9d6f2176] - url,tools,benchmark: replace deprecated substr() (Jungku Lee) #​51546
• [7603a51d45] - util: fix %s format behavior with Symbol.toPrimitive (Chenyu Yang) #​50992
• [d7eba50cf3] - util: improve isInsideNodeModules (uzlopak) #​52147
• [4ae4f7e517] - watch: allow listening for grouped changes (Matthieu Sieben) #​52722
• [1ff8f318c0] - watch: enable passthrough ipc in watch m

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.