chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
@vitest/coverage-v8 (source)	2.1.1 -> 2.1.2					devDependencies	patch
actions/checkout	v4.1.7 -> v4.2.0					action	minor
argocd	2.12.3 -> 2.12.4						patch
cloudflare (source)	4.42.0 -> 4.43.0					required_provider	minor
discord.js (source)	14.16.2 -> 14.16.3					dependencies	patch
eslint-plugin-import	2.30.0 -> 2.31.0					devDependencies	minor
hashicorp/terraform	1.9.6 -> 1.9.7					required_version	patch
pnpm (source)	9.11.0 -> 9.12.0						minor
vitest (source)	2.1.1 -> 2.1.2					devDependencies	patch

---

Release Notes

vitest-dev/vitest (@​vitest/coverage-v8)

v2.1.2

Compare Source

   🐞 Bug Fixes

• Move Vitest.setServer to post configureServer hook to enable import analysis for workspace config loading  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6584 (e7f35)
• benchmark:
  • Clear BenchmarkResult.samples array to reduce memory usage  -  by @​hi-ogawa and @​AriPerkkio in https://github.com/vitest-dev/vitest/issues/6541 (a6407)
• browser:
  • Fix dynamic import inside worker  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6569 (ea2d4)
  • Fix browser mock factory event race condition  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6530 (f131f)
  • Serve ui assets as static  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6564 (adcda)
  • Update solidjs testing library lib  -  by @​CamilleTeruel in https://github.com/vitest-dev/vitest/issues/6548 (91442)
  • Use data: protocol on preview provider file upload  -  by @​userquin in https://github.com/vitest-dev/vitest/issues/6501 (e9821)
  • Fix base for client script  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6510 (f9528)
  • Throw an error if "@​vitest/browser/context" is imported outside of the browser mode  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/6570 (383f1)
• coverage:
  • Remove empty coverage folder on test failure too  -  by @​AriPerkkio in https://github.com/vitest-dev/vitest/issues/6547 (1371c)
  • Include *.astro by default  -  by @​AriPerkkio in https://github.com/vitest-dev/vitest/issues/6565 (f8ff7)
  • cleanOnRerun: false to invalidate previous results  -  by @​AriPerkkio in https://github.com/vitest-dev/vitest/issues/6592 (88bde)
• expect:
  • Fix toBeDefined with expect.poll  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6562 (f7da6)
• runner:
  • Mark tests as skipped when beforeAll failed  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6524 (fb797)
  • Support fixture parsing of lowered async syntax  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6531 (b553c)
  • Fix fixture parsing of lowered async syntax for non arrow functions  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6575 (3de00)
  • Guard test hook callback  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/6604 (14971)
  • Run onTestFinished and onTestFailed during retry and repeats  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6609 (c5e29)
• ui:
  • List tests on ui when --standalone  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6577 (d0bf8)
• vite-node:
  • Fix esm false-detection inside comment  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6506 (91f85)
• vitest:
  • Install dependencies with the same version when prompted  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/6611 (ed8b7)
  • Make env.SSR consistent between different pools  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/6616 (8a8d3)
  • Don't start a websocket server if api is disabled  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/6617 (82140)
• workspace:
  • Fix glob pattern detection  -  by @​hi-ogawa in https://github.com/vitest-dev/vitest/issues/6502 (7727c)
  • Ignore DS_Store by default  -  by @​sheremet-va in https://github.com/vitest-dev/vitest/issues/6571 (d2a86)

    View changes on GitHub

actions/checkout (actions/checkout)

v4.2.0

Compare Source

• Add Ref and Commit outputs by @​lucacome in https://github.com/actions/checkout/pull/1180
• Dependency updates by @​dependabot- https://github.com/actions/checkout/pull/1777, https://github.com/actions/checkout/pull/1872

argoproj/argo-cd (argocd)

v2.12.4

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.4/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.4/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

• 1568165: fix(appset): Fix perpetual appset reconciliation (#​19822) (#​19995) (@​gcp-cherry-pick-bot[bot])
• b76a09e: fix: CVE-2024-45296 Backtracking regular expressions cause ReDoS by upgrading path-to-regexp from 1.8.0 to 1.9.0 (#​20087) (#​20090) (@​gcp-cherry-pick-bot[bot])
• d56ef76: fix: diffing should not fail if resource fail schema validation (#​19714) (#​19729) (@​gcp-cherry-pick-bot[bot])

Documentation

• 02b8336: docs: note cluster scoping changes in 2.12x (#​19684) (#​19702) (@​gcp-cherry-pick-bot[bot])

Dependency updates

• ff3ef71: cherry-pick chore(deps-dev): bump webpack from 5.84.1 to 5.94.0 in /ui (#​20056) (@​ishitasequeira)
• 08fe6f5: chore(deps): bump dompurify from 2.3.6 to 2.5.6 in /ui (#​19955) (#​20016) (@​gcp-cherry-pick-bot[bot])
• 8590550: chore(deps): bump express from 4.19.2 to 4.20.0 in /ui (#​19883) (#​19987) (@​chengfang)

Full Changelog: argoproj/argo-cd@v2.12.3...v2.12.4

cloudflare/terraform-provider-cloudflare (cloudflare)

v4.43.0

Compare Source

FEATURES:

• New Resource: cloudflare_infrastructure_access_target (#​4077)

ENHANCEMENTS:

• resource/cloudflare_access_application: added target contexts support for access application type infrastructure (#​4128)
• resource/cloudflare_access_policy: added infrastructure connection rule support for access policy (#​4128)
• resource/cloudflare_device_posture_integration: add support for managing custom_s2s third party posture provider. (#​3917)
• resource/cloudflare_device_posture_rule: add ability to create custom_s2s posture rule (#​3917)
• resource/cloudflare_zone_settings_override: add support for Speed Brain (#​4113)

DEPENDENCIES:

• provider: bump github.com/aws/aws-sdk-go-v2/config from 1.27.34 to 1.27.37 (#​4124)
• provider: bump github.com/aws/aws-sdk-go-v2/config from 1.27.37 to 1.27.38 (#​4127)
• provider: bump github.com/aws/aws-sdk-go-v2/credentials from 1.17.32 to 1.17.35 (#​4124)
• provider: bump github.com/aws/aws-sdk-go-v2/credentials from 1.17.35 to 1.17.36 (#​4127)
• provider: bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.61.2 to 1.63.1 (#​4124)
• provider: bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.63.1 to 1.63.2 (#​4127)
• provider: bump github.com/aws/aws-sdk-go-v2 from 1.30.5 to 1.31.0 (#​4124)
• provider: bump actions/checkout from 3 to 4 (#​4101)
• provider: bump github.com/cloudflare/cloudflare-go from 0.104.0 to 0.105.0 (#​4125)
• provider: bump github.com/cloudflare/cloudflare-go from 0.105.0 to 0.106.0 (#​4137)
• provider: bump github.com/hashicorp/terraform-plugin-framework from 1.11.0 to 1.12.0 (#​4061)
• provider: bump github.com/hashicorp/terraform-plugin-go from 0.23.0 to 0.24.0 (#​4060)

discordjs/discord.js (discord.js)

v14.16.3

Compare Source

Bug Fixes

• BaseInteraction: Add missing props (#​10517) (6c77fee) by @​monbrey
• GuildChannel#guildId not being patched to undefined (#​10505) (2adee06) by @​Qjuh

Typings

• MessageEditOptions: Omit poll (#​10509) (665bf14) by @​TAEMBO

import-js/eslint-plugin-import (eslint-plugin-import)

v2.31.0

Compare Source

Added

• support eslint v9 ([#​2996], thanks [@​G-Rath] [@​michaelfaith])
• [order]: allow validating named imports ([#​3043], thanks [@​manuth])
• [extensions]: add the checkTypeImports option ([#​2817], thanks [@​phryneas])

Fixed

• ExportMap / flat config: include languageOptions in context ([#​3052], thanks [@​michaelfaith])
• [no-named-as-default]: Allow using an identifier if the export is both a named and a default export ([#​3032], thanks [@​akwodkiewicz])
• [export]: False positive for exported overloaded functions in TS ([#​3065], thanks [@​liuxingbaoyu])
• exportMap: export map cache is tainted by unreliable parse results ([#​3062], thanks [@​michaelfaith])
• exportMap: improve cacheKey when using flat config ([#​3072], thanks [@​michaelfaith])
• adjust "is source type module" checks for flat config ([#​2996], thanks [@​G-Rath])

Changed

• [Docs] [no-relative-packages]: fix typo ([#​3066], thanks [@​joshuaobrien])
• [Performance] [no-cycle]: dont scc for each linted file ([#​3068], thanks [@​soryy708])
• [Docs] [no-cycle]: add disableScc to docs ([#​3070], thanks [@​soryy708])
• [Tests] use re-exported RuleTester ([#​3071], thanks [@​G-Rath])
• [Docs] [no-restricted-paths]: fix grammar ([#​3073], thanks [@​unbeauvoyage])
• [Tests] [no-default-export], [no-named-export]: add test case (thanks [@​G-Rath])

hashicorp/terraform (hashicorp/terraform)

v1.9.7

Compare Source

pnpm/pnpm (pnpm)

v9.12.0: pnpm 9.12

Compare Source

Minor Changes

• Fix peer dependency resolution dead lock #​8570. This change might change some of the keys in the snapshots field inside pnpm-lock.yaml but it should happen very rarely.

• pnpm outdated command supports now a --sort-by=name option for sorting outdated dependencies by package name #​8523.

• Added the ability for overrides to remove dependencies by specifying "-" as the field value #​8572. For example, to remove lodash from the dependencies, use this configuration in package.json:

  {
    "pnpm": {
      "overrides": {
        "lodash": "-"
      }
    }
  }

Patch Changes

• Fixed an issue where pnpm list --json pkg showed "private": false for a private package #​8519.
• Packages with libc that differ from pnpm.supportedArchitectures.libc are not downloaded #​7362.
• Prevent ENOENT errors caused by running store prune in parallel #​8586.
• Add issues alias to pnpm bugs #​8596.

Platinum Sponsors

Gold Sponsors

Our Silver Sponsors

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.