chore(deps): bump the npm_and_yarn group across 8 directories with 5 updates

[dependabot[bot]]

Bumps the npm_and_yarn group with 2 updates in the / directory: tar and webpack. Bumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/extra-large-response-payload directory: yarn. Bumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/fail-on/patchable directory: ms. Bumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/gradle-monorepo directory: qs. Bumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/mono-repo-poetry directory: qs. Bumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/mono-repo-project directory: qs. Bumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/mono-repo-project-manifests-only directory: qs. Bumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/mono-repo-with-ignores directory: qs.

Updates tar from 6.2.1 to 7.0.1

Changelog

Sourced from tar's changelog.

Changelog

7.0

• Rewrite in TypeScript, provide ESM and CommonJS hybrid interface
• Add tree-shake friendly exports, like import('tar/create') and import('tar/read-entry') to get individual functions or classes.
• Add chmod option that defaults to false, and deprecate noChmod. That is, reverse the default option regarding explicitly setting file system modes to match tar entry settings.
• Add processUmask option to avoid having to call process.umask() when chmod: true (or noChmod: false) is set.

6.2

• Add support for brotli compression
• Add maxDepth option to prevent extraction into excessively deep folders.

6.1

• remove dead link to benchmarks (#313) (@​yetzt)
• add examples/explanation of using tar.t (@​isaacs)
• ensure close event is emited after stream has ended (@​webark)
• replace deprecated String.prototype.substr() (@​CommanderRoot, @​lukekarrys)

6.0

• Drop support for node 6 and 8
• fix symlinks and hardlinks on windows being packed with \-style path targets

5.0

• Address unpack race conditions using path reservations
• Change large-numbers errors from TypeError to Error
• Add TAR_* error codes
• Raise TAR_BAD_ARCHIVE warning/error when there are no valid entries found in an archive
• do not treat ignored entries as an invalid archive
• drop support for node v4
• unpack: conditionally use a file mapping to write files on Windows
• Set more portable 'mode' value in portable mode
• Set portable gzip option in portable mode

... (truncated)

Commits

• d99fce3 7.0.1
• af04392 Do not apply linkpath,global from global pax header
• b0fbdea 7.0.0
• 957da75 remove old lib folder
• 9a260c2 test verifying #398 is fixed
• 2d89a4e Properly handle long linkpath in PaxHeader
• 314ec7e list: close file even if no error thrown
• b3afdbb unpack test: use modern tap features
• 2330416 test: code style, prefer () to _ for empty fns
• ae9ce7e test: fix normalize-unicode coverage on linux
• Additional commits viewable in compare view

Updates webpack from 5.76.0 to 5.91.0

Release notes

Sourced from webpack's releases.

v5.91.0

Bug Fixes

• Deserializer for ignored modules doesn't crash
• Allow the unsafeCache option to be a proxy object
• Normalize the snapshot.unmanagedPaths option
• Fixed fs types
• Fixed resolve's plugins types
• Fixed wrongly calculate postOrderIndex
• Fixed watching types
• Output import attrbiutes/import assertions for external JS imports
• Throw an error when DllPlugin needs to generate multiple manifest files, but the path is the same
• [CSS] Output layer/supports/media for external CSS imports

New Features

• Allow to customize the stage of BannerPlugin
• [CSS] Support CSS exports convention
• [CSS] support CSS local ident name
• [CSS] Support __webpack_nonce__ for CSS chunks
• [CSS] Support fetchPriority for CSS chunks
• [CSS] Allow to use LZW to compress css head meta (enabled in the production mode by default)
• [CSS] Support prefetch/preload for CSS chunks

v5.90.3

Bug Fixes

• don't mangle when destructuring a reexport
• types for Stats.toJson() and Stats.toString()
• many internal types
• [CSS] clean up export css local vars

Perf

• simplify and optimize chunk graph creation

v5.90.2

Bug Fixes

• use Math.imul in fnv1a32 to avoid loss of precision, directly hash UTF16 values
• the setStatus() of the HMR module should not return an array, which may cause infinite recursion
• __webpack_exports_info__.xxx.canMangle shouldn't always same as default
• mangle export with destructuring
• use new runtime to reconsider skipped connections activeState
• make dynamic import optional in try/catch
• improve auto publicPath detection

Dependencies & Maintenance

• improve CI setup and include Node.js@21

... (truncated)

Commits

• 60daca5 chore(release): 5.91.0
• 8dad9ce chore(deps-dev): bump @​babel/preset-react from 7.23.3 to 7.24.1
• a3229f9 chore(deps-dev): bump @​babel/core from 7.24.0 to 7.24.1
• 40c2e44 chore(deps-dev): bump @​types/node from 20.11.29 to 20.11.30
• a04faba chore(deps-dev): bump memfs from 4.7.7 to 4.8.0
• 8f22221 chore(deps): bump es-module-lexer from 1.4.1 to 1.4.2
• 8df6912 chore(deps): bump es-module-lexer from 1.4.1 to 1.4.2
• 711c618 chore(deps-dev): bump memfs from 4.7.7 to 4.8.0
• c462bb3 chore(deps-dev): bump @​types/node from 20.11.29 to 20.11.30
• f0d3e3e chore(deps-dev): bump @​babel/preset-react from 7.23.3 to 7.24.1
• Additional commits viewable in compare view

Updates yarn from 1.22.13 to 1.22.22

Release notes

Sourced from yarn's releases.

v1.22.22

[!WARNING] This release is missing a couple of artifacts (the .msi/.rpm/.deb/.asc files); we're working on fixing this.

• Fixes a punycode warning.

• Fixes a hoisting issue when transitive dependencies themselves listed aliases as dependencies.

v1.22.21

[!WARNING] This release is missing a couple of artifacts (the .msi/.rpm/.deb/.asc files); we're working on fixing this.

• Fixes an issue in the v1.22.20 when calling Yarn from a project subfolder, outside of a Corepack context.

• Added a SKIP_YARN_COREPACK_CHECK environment variable to skip the Corepack check.

v1.22.20

[!WARNING] This release is missing a couple of artifacts (the .msi/.rpm/.deb/.asc files); we're working on fixing this.

• Important: Punycode is now embed within the bundle, as it has been deprecated by Node.js and will be removed in a future version.

• A message will be displayed when Yarn 1.22 notices that the local project has a package.json file referencing a non-1.x Yarn release via the packageManager field. The message will explain that the project is intended to be used with Corepack.

• The yarn-error.log files won't be generated anymore, as we don't process non-critical 1.x bug reports (we however process all bugs reported on https://github.com/yarnpkg/berry; we just released the 4.0.2 release there).

• The yarn set version x.y.z command will now install the exact x.y.z version (prior to this change it used to first install the latest version, and only in a second step would it downgrade to x.y.z; this was causing issues when we bump the minimal Node.js version we support, as running yarn set version 3.6.4 wouldn't work on Node 16).

• Prevents crashes when reading from an empty .yarnrc.yml file.

v1.22.19

• Adds compatibility with WebAuthn on the npm registry

v1.22.18

Node 17.7.0 had a regression in url.resolve which broke Yarn, causing network errors. This release fixes that, although the regression also got fixed on the Node side starting from 17.7.1, so as long as you keep your Node up-to-date it'll be fine.

v1.22.17

Strangely this released disappeared from GitHub, re-adding it.

v1.22.16

No release notes provided.

v1.22.15

• Fixes an issue on Windows where relative scripts would fail to execute

v1.22.14

• Fixes false positives that would happen on non-win32 platforms ("Potentially dangerous call to ...")

Commits

• 740c38c v1.22.22
• 88d5e44 Fixes the lockfile hydration of the npm: protocol (#9023)
• 655707d Fixes the punycode deprecation warning
• 1c6b097 v1.22.21
• a847238 Fixes the projectRoot detection
• efdccc1 Hotfixes for the 1.22.20 (#9009)
• 015b20b v1.22.19
• 5b2ac04 Adds support for npm-notice during OTP requests
• 751c895 v1.22.18
• 64e931d Fixes url.resolve join
• Additional commits viewable in compare view

Updates ms from 2.0.0 to 2.1.3

Release notes

Sourced from ms's releases.

2.1.3

Patches

• Rename zeit to vercel: #151
• Bump eslint from 4.12.1 to 4.18.2: #122
• Add prettier as a dev dependency: #135 #153
• Use GitHub Actions CI: #154

Credits

Huge thanks to @​getsnoopy for helping!

2.1.2

Patches

• Fixed negative decimals less than -10 don't work: #111
• Support error in case of Infinity: #116
• Update regexp for 10-.5 is invalid input: #117
• Update chat badge: #119

Credits

Huge thanks to @​yuler and @​7ma7X for helping!

2.1.1

Patches

• Add full support for negative numbers: #104

Credits

Huge thanks to @​thevtm for helping!

2.1.0

Minor Changes

• Add "week" / "w" support: a2caead13ac7f9931338a1a51ab4e36ddb505e00
• Fixed match regex to support negative numbers: #96

Patches

• Applied a few text improvements: 15dc8c5b5a9e8372555400485a749ec04cc02444
• Fixed spelling of “millisecond” in description: #95
• Lockfile added: 2425ebdefcdd1c2b726c06f6a65c4f2dea58dee7

Credits

Huge thanks to @​yoavmmn and @​binki for helping!

Commits

• 1c6264b 2.1.3
• 82495ad Use GitHub Actions CI (#154)
• 1a13a88 Run prettier 2.x (#153)
• 1048042 Add prettier as a dev dependency (#135)
• f2bfb40 Rename zeit to vercel (#151)
• adf1eb2 Bump eslint from 4.12.1 to 4.18.2 (#122)
• 7920885 2.1.2
• 199ff78 Update chat badge (#119)
• d1add60 Update regexp for 10-.5 is invalid input (#117)
• d95e17f Support error in case of Infinity (#116)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by styfle, a new releaser for ms since your current version.

Updates qs from 6.2.4 to 6.12.1

Changelog

Sourced from qs's changelog.

6.12.1

• [Fix] parse: Disable decodeDotInKeys by default to restore previous behavior (#501)
• [Performance] utils: Optimize performance under large data volumes, reduce memory usage, and speed up processing (#502)
• [Refactor] utils: use +=
• [Tests] increase coverage

6.12.0

• [New] parse/stringify: add decodeDotInKeys/encodeDotKeys options (#488)
• [New] parse: add duplicates option
• [New] parse/stringify: add allowEmptyArrays option to allow [] in object values (#487)
• [Refactor] parse/stringify: move allowDots config logic to its own variable
• [Refactor] stringify: move option-handling code into normalizeStringifyOptions
• [readme] update readme, add logos (#484)
• [readme] stringify: clarify default arrayFormat behavior
• [readme] fix line wrapping
• [readme] remove dead badges
• [Deps] update side-channel
• [meta] make the dist build 50% smaller
• [meta] add sideEffects flag
• [meta] run build in prepack, not prepublish
• [Tests] parse: remove useless tests; add coverage
• [Tests] stringify: increase coverage
• [Tests] use mock-property
• [Tests] stringify: improve coverage
• [Dev Deps] update @ljharb/eslint-config , aud, has-override-mistake, has-property-descriptors, mock-property, npmignore, object-inspect, tape
• [Dev Deps] pin glob, since v10.3.8+ requires a broken jackspeak
• [Dev Deps] pin jackspeak since 2.1.2+ depends on npm aliases, which kill the install process in npm < 6

6.11.2

• [Fix] parse: Fix parsing when the global Object prototype is frozen (#473)
• [Tests] add passing test cases with empty keys (#473)

6.11.1

• [Fix] stringify: encode comma values more consistently (#463)
• [readme] add usage of filter option for injecting custom serialization, i.e. of custom types (#447)
• [meta] remove extraneous code backticks (#457)
• [meta] fix changelog markdown
• [actions] update checkout action
• [actions] restrict action permissions
• [Dev Deps] update @ljharb/eslint-config, aud, object-inspect, tape

6.11.0

• [New] [Fix] stringify: revert 0e903c0; add commaRoundTrip option (#442)
• [readme] fix version badge

6.10.5

• [Fix] stringify: with arrayFormat: comma, properly include an explicit [] on a single-item array (#434)

6.10.4

... (truncated)

Commits

• 29dda21 v6.12.1
• 7e18298 [Fix] parse: Disable decodeDotInKeys by default to restore previous behavior
• fd3cd7a [Tests] increase coverage
• 6d7df02 [Performance] utils: Optimize performance under large data volumes, reduce ...
• 572533c [Refactor] utils: use +=
• c4d29f3 [meta] add tea.yaml
• 062334a v6.12.0
• f09cffc [meta] make the dist build 50% smaller
• 934dfe8 [meta] run build in prepack, not prepublish
• c8a269f [Tests] parse: remove useless tests; add coverage
• Additional commits viewable in compare view

Updates qs from 6.2.4 to 6.12.1

Changelog

Sourced from qs's changelog.

6.12.1

• [Fix] parse: Disable decodeDotInKeys by default to restore previous behavior (#501)
• [Performance] utils: Optimize performance under large data volumes, reduce memory usage, and speed up processing (#502)
• [Refactor] utils: use +=
• [Tests] increase coverage

6.12.0

• [New] parse/stringify: add decodeDotInKeys/encodeDotKeys options (#488)
• [New] parse: add duplicates option
• [New] parse/stringify: add allowEmptyArrays option to allow [] in object values (#487)
• [Refactor] parse/stringify: move allowDots config logic to its own variable
• [Refactor] stringify: move option-handling code into normalizeStringifyOptions
• [readme] update readme, add logos (#484)
• [readme] stringify: clarify default arrayFormat behavior
• [readme] fix line wrapping
• [readme] remove dead badges
• [Deps] update side-channel
• [meta] make the dist build 50% smaller
• [meta] add sideEffects flag
• [meta] run build in prepack, not prepublish
• [Tests] parse: remove useless tests; add coverage
• [Tests] stringify: increase coverage
• [Tests] use mock-property
• [Tests] stringify: improve coverage
• [Dev Deps] update @ljharb/eslint-config , aud, has-override-mistake, has-property-descriptors, mock-property, npmignore, object-inspect, tape
• [Dev Deps] pin glob, since v10.3.8+ requires a broken jackspeak
• [Dev Deps] pin jackspeak since 2.1.2+ depends on npm aliases, which kill the install process in npm < 6

6.11.2

• [Fix] parse: Fix parsing when the global Object prototype is frozen (#473)
• [Tests] add passing test cases with empty keys (#473)

6.11.1

• [Fix] stringify: encode comma values more consistently (#463)
• [readme] add usage of filter option for injecting custom serialization, i.e. of custom types (#447)
• [meta] remove extraneous code backticks (#457)
• [meta] fix changelog markdown
• [actions] update checkout action
• [actions] restrict action permissions
• [Dev Deps] update @ljharb/eslint-config, aud, object-inspect, tape

6.11.0

• [New] [Fix] stringify: revert 0e903c0; add commaRoundTrip option (#442)
• [readme] fix version badge

6.10.5

• [Fix] stringify: with arrayFormat: comma, properly include an explicit [] on a single-item array (#434)

6.10.4

... (truncated)

Commits

• 29dda21 v6.12.1
• 7e18298 [Fix] parse: Disable decodeDotInKeys by default to restore previous behavior
• fd3cd7a [Tests] increase coverage
• 6d7df02 [Performance] utils: Optimize performance under large data volumes, reduce ...
• 572533c [Refactor] utils: use +=
• c4d29f3 [meta] add tea.yaml
• 062334a v6.12.0
• f09cffc [meta] make the dist build 50% smaller
• 934dfe8 [meta] run build in prepack, not prepublish
• c8a269f [Tests] parse: remove useless tests; add coverage
• Additional commits viewable in compare view

Updates qs from 6.2.4 to 6.12.1

Changelog

Sourced from qs's changelog.

6.12.1

• [Fix] parse: Disable decodeDotInKeys by default to restore previous behavior (#501)
• [Performance] utils: Optimize performance under large data volumes, reduce memory usage, and speed up processing (#502)
• [Refactor] utils: use +=
• [Tests] increase coverage

6.12.0

• [New] parse/stringify: add decodeDotInKeys/encodeDotKeys options (#488)
• [New] parse: add duplicates option
• [New] parse/stringify: add allowEmptyArrays option to allow [] in object values (#487)
• [Refactor] parse/stringify: move allowDots config logic to its own variable
• [Refactor] stringify: move option-handling code into normalizeStringifyOptions
• [readme] update readme, add logos (#484)
• [readme] stringify: clarify default arrayFormat behavior
• [readme] fix line wrapping
• [readme] remove dead badges
• [Deps] update side-channel
• [meta] make the dist build 50% smaller
• [meta] add sideEffects flag
• [meta] run build in prepack, not prepublish
• [Tests] parse: remove useless tests; add coverage
• [Tests] stringify: increase coverage
• [Tests] use mock-property
• [Tests] stringify: improve coverage
• [Dev Deps] update @ljharb/eslint-config , aud, has-override-mistake, has-property-descriptors, mock-property, npmignore, object-inspect, tape
• [Dev Deps] pin glob, since v10.3.8+ requires a broken jackspeak
• [Dev Deps] pin jackspeak since 2.1.2+ depends on npm aliases, which kill the install process in npm < 6

6.11.2

• [Fix] parse: Fix parsing when the global Object prototype is frozen (#473)
• [Tests] add passing test cases with empty keys (#473)

6.11.1

• [Fix] stringify: encode comma values more consistently (#463)
• [readme] add usage of filter option for injecting custom serialization, i.e. of custom types (#447)
• [meta] remove extraneous code backticks (#457)
• [meta] fix changelog markdown
• [actions] update checkout action
• [actions] restrict action permissions
• [Dev Deps] update @ljharb/eslint-config, aud, object-inspect, tape

6.11.0

• [New] [Fix] stringify: revert 0e903c0; add commaRoundTrip option (#442)
• [readme] fix version badge

6.10.5

• [Fix] stringify: with arrayFormat: comma, properly include an explicit [] on a single-item array (#434)

6.10.4

... (truncated)

Commits

• 29dda21 v6.12.1
• 7e18298 [Fix] parse: Disable decodeDotInKeys by default to restore previous behavior
• fd3cd7a [Tests] increase coverage
• 6d7df02 [Performance] utils: Optimize performance under large data volumes, reduce ...
• 572533c [Refactor] utils: use +=
• c4d29f3 [meta] add tea.yaml
• 062334a v6.12.0
• f09cffc [meta] make the dist build 50% smaller
• 934dfe8 [meta] run build in prepack, not prepublish
• c8a269f [Tests] parse: remove useless tests; add coverage
• Additional commits viewable in compare view

Updates qs from 6.2.4 to 6.12.1

Changelog

Sourced from qs's changelog.

6.12.1

• [Fix] parse: Disable decodeDotInKeys by default to restore previous behavior (#501)
• [Performance] utils: Optimize performance under large data volumes, reduce memory usage, and speed up processing (#502)
• [Refactor] utils: use +=
• [Tests] increase coverage

6.12.0

• [New] parse/stringify: add decodeDotInKeys/encodeDotKeys options (#488)
• [New] parse: add duplicates option
• [New] parse/stringify: add allowEmptyArrays option to allow [] in object values (#487)
• [Refactor] parse/stringify: move allowDots config logic to its own variable
• [Refactor] stringify: move option-handling code into normalizeStringifyOptions
• [readme] update readme, add logos (#484)
• [readme] stringify: clarify default arrayFormat behavior
• [readme] fix line wrapping
• [readme] remove dead badges
• [Deps] update side-channel
• [meta] make the dist build 50% smaller
• [meta] add sideEffects flag
• [meta] run build in prepack, not prepublish
• [Tests] parse: remove useless tests; add coverage
• [Tests] stringify: increase coverage
• [Tests] use mock-property
• [Tests] stringify: improve coverage
• [Dev Deps] update @ljharb/eslint-config , aud, has-override-mistake, has-property-descriptors, mock-property, npmignore, object-inspect, tape
• [Dev Deps] pin glob, since v10.3.8+ requires a broken jackspeak
• [Dev Deps] pin jackspeak since 2.1.2+ depends on npm aliases, which kill the install process in npm < 6

6.11.2

• [Fix] parse: Fix parsing when the global Object prototype is frozen (#473)
• [Tests] add passing test cases with empty keys (#473)

6.11.1

• [Fix] stringify: encode comma values more consistently (#463)
• [readme] add usage of filter option for injecting custom serialization, i.e. of custom types (#447)
• [meta] remove extraneous code backticks (#457)
• [meta] fix changelog markdown
• [actions] update checkout action
• [actions] restrict action permissions
• [Dev Deps] update @ljharb/eslint-config, aud, object-inspect, tape

6.11.0

• [New] [Fix] stringify: revert 0e903c0; add commaRoundTrip option (#442)
• [readme] fix version badge

6.10.5

• [Fix] stringify: with arrayFormat: comma, properly include an explicit [] on a single-item array (#434)

6.10.4

... (truncated)

Commits

• 29dda21 v6.12.1
• 7e18298 [Fix] parse: Disable decodeDotInKeys by default to restore previous behavior
• fd3cd7a [Tests] increase coverage
• 6d7df02 [Performance] utils: Optimize performance under large data volumes, reduce ...
• 572533c [Refactor] utils: use +=
• c4d29f3 [meta] add tea.yaml
• 062334a v6.12.0
• f09cffc [meta] make the dist build 50% smaller
• 934dfe8 [meta] run build in prepack, not prepublish
• c8a269f [Tests] parse: remove useless tests; add coverage
• Additional commits viewable in compare view

Updates qs from 6.9.7 to 6.12.1

Changelog

Sourced from qs's changelog.

6.12.1

• [Fix] parse: Disable decodeDotInKeys by default to restore previous behavior (#501)
• [Performance] utils: Optimize performance under large data volumes, reduce memory usage, and speed up processing (#502)
• [Refactor] utils: use +=
• [Tests] increase coverage

6.12.0

• [New] parse/stringify: add decodeDotInKeys/encodeDotKeys options (#488)
• [New] parse: add duplicates option
• [New] parse/stringify: add allowEmptyArrays option to allow [] in object values (#487)
• [Refactor] parse/stringify: move allowDots config logic to its own variable
• [Refactor] stringify: move option-handling code into normalizeStringifyOptions
• [readme] update readme, add logos (#484)
• [readme] stringify: clarify default arrayFormat behavior
• [readme] fix line wrapping
• [readme] remove dead badges
• [Deps] update side-channel
• [meta] make the dist build 50% smaller
• [meta] add sideEffects flag
• [meta] run build in prepack, not prepublish
• [Tests] parse: remove useless tests; add coverage
• [Tests] stringify: increase coverage
• [Tests] use mock-property
• [Tests] stringify: improve coverage
• [Dev Deps] update @ljharb/eslint-config , aud, has-override-mistake, has-property-descriptors, mock-property, npmignore, object-inspect, tape
• [Dev Deps] pin glob, since v10.3.8+ requires a broken jackspeak
• [Dev Deps] pin jackspeak since 2.1.2+ depends on npm aliases, which kill the install process in npm < 6

6.11.2

• [Fix] parse: Fix parsing when the global Object prototype is frozen (#473)
• [Tests] add passing test cases with empty keys (#473)

6.11.1

• [Fix] stringify: encode comma values more consistently (#463)
• [readme] add usage of filter option for injecting custom serialization, i.e. of custom types (#447)
• [meta] remove extraneous code backticks (#457)
• [meta] fix changelog markdown
• [actions] update checkout action
• [actions] restrict action permissions
• [Dev Deps] update @ljharb/eslint-config, aud, object-inspect, tape

6.11.0

• [New] [Fix] stringify: revert 0e903c0; add commaRoundTrip option (#442)
• [readme] fix version badge

6.10.5

• [Fix] stringify: with arrayFormat: comma, properly include an explicit [] on a single-item array (#434)

6.10.4

... (truncated)

Commits

• 29dda21 v6.12.1
• 7e18298 [Fix] parse: Disable decodeDotInKeys by default to restore previous behavior
• fd3cd7a [Tests] increase coverage
• 6d7df02 [Performance] utils: Optimize performance under large data volumes, reduce ...
• 572533c [Refactor] utils: use +=
• c4d29f3 [meta] add tea.yaml
• 062334a v6.12.0
• f09cffc [meta] make the dist build 50% smaller
• 934dfe8 [meta] run build in prepack, not prepublish
• c8a269f [Tests] parse: remove useless tests; add coverage
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/2lambda123/snyk-cli/network/alerts).

[performance-testing-bot[bot]]

Unable to locate .performanceTestingBot config file

[secure-code-warrior-for-github[bot]]

Micro-Learning Topic: Race condition (Detected by phrase)

Matched on "race condition"

What is this? (2min video)

A race condition is a flaw that produces an unexpected result when the timing of actions impact other actions.

Try a challenge in Secure Code Warrior

[cr-gpt[bot]]

Seems you are using me but didn't get OPENAI_API_KEY seted in Variables/Secrets for this repo. you could follow readme for more information

[code-companion-ai[bot]]

Processing PR updates...

[codesyncapp[bot]]

Check out the playback for this Pull Request here.

[git-greetings[bot]]

Thanks @dependabot[bot] for opening this PR!

For COLLABORATOR only :

• To add labels, comment on the issue /label add label1,label2,label3

• To remove labels, comment on the issue /label remove label1,label2,label3

[coderabbitai[bot]]

[!IMPORTANT]

Auto Review Skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share

- [X](https://twitter.com/intent/tweet?text=I%20just%20used%20%40coderabbitai%20for%20my%20code%20review%2C%20and%20it%27s%20fantastic%21%20It%27s%20free%20for%20OSS%20and%20offers%20a%20free%20trial%20for%20the%20proprietary%20code.%20Check%20it%20out%3A&url=https%3A//coderabbit.ai) - [Mastodon](https://mastodon.social/share?text=I%20just%20used%20%40coderabbitai%20for%20my%20code%20review%2C%20and%20it%27s%20fantastic%21%20It%27s%20free%20for%20OSS%20and%20offers%20a%20free%20trial%20for%20the%20proprietary%20code.%20Check%20it%20out%3A%20https%3A%2F%2Fcoderabbit.ai) - [Reddit](https://www.reddit.com/submit?title=Great%20tool%20for%20code%20review%20-%20CodeRabbit&text=I%20just%20used%20CodeRabbit%20for%20my%20code%20review%2C%20and%20it%27s%20fantastic%21%20It%27s%20free%20for%20OSS%20and%20offers%20a%20free%20trial%20for%20proprietary%20code.%20Check%20it%20out%3A%20https%3A//coderabbit.ai) - [LinkedIn](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fcoderabbit.ai&mini=true&title=Great%20tool%20for%20code%20review%20-%20CodeRabbit&summary=I%20just%20used%20CodeRabbit%20for%20my%20code%20review%2C%20and%20it%27s%20fantastic%21%20It%27s%20free%20for%20OSS%20and%20offers%20a%20free%20trial%20for%20proprietary%20code)

Tips

### Chat There are 3 ways to chat with [CodeRabbit](https://coderabbit.ai): - Review comments: Directly reply to a review comment made by CodeRabbit. Example: - `I pushed a fix in commit .` - `Generate unit testing code for this file.` - `Open a follow-up GitHub issue for this discussion.` - Files and specific lines of code (under the "Files changed" tab): Tag `@coderabbitai` in a new review comment at the desired location with your query. Examples: - `@coderabbitai generate unit testing code for this file.` - `@coderabbitai modularize this function.` - PR comments: Tag `@coderabbitai` in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples: - `@coderabbitai generate interesting stats about this repository and render them as a table.` - `@coderabbitai show all the console.log statements in this repository.` - `@coderabbitai read src/utils.ts and generate unit testing code.` - `@coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.` Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments. ### CodeRabbit Commands (invoked as PR comments) - `@coderabbitai pause` to pause the reviews on a PR. - `@coderabbitai resume` to resume the paused reviews. - `@coderabbitai review` to trigger a review. This is useful when automatic reviews are disabled for the repository. - `@coderabbitai resolve` resolve all the CodeRabbit review comments. - `@coderabbitai help` to get help. Additionally, you can add `@coderabbitai ignore` anywhere in the PR description to prevent this PR from being reviewed. ### CodeRabbit Configration File (`.coderabbit.yaml`) - You can programmatically configure CodeRabbit by adding a `.coderabbit.yaml` file to the root of your repository. - Please see the [configuration documentation](https://docs.coderabbit.ai/guides/configure-coderabbit) for more information. - If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: `# yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json` ### Documentation and Community - Visit our [Documentation](https://coderabbit.ai/docs) for detailed information on how to use CodeRabbit. - Join our [Discord Community](https://discord.com/invite/GsXnASn26c) to get help, request features, and share feedback. - Follow us on [X/Twitter](https://twitter.com/coderabbitai) for updates and announcements.

[git-greetings[bot]]

PR Details of @dependabot[bot] in snyk-cli :	OPEN	CLOSED	TOTAL
2	14	16

[socket-security[bot]]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/call-bind@1.0.7	None	0	22.1 kB	ljharb
npm/define-data-property@1.1.4	None	0	30.9 kB	ljharb
npm/es-define-property@1.0.0	None	0	11.8 kB	ljharb
npm/es-errors@1.3.0	None	0	12.3 kB	ljharb
npm/function-bind@1.1.2	None	0	31.4 kB	ljharb
npm/get-intrinsic@1.2.4	eval	0	41.6 kB	ljharb
npm/gopd@1.0.1	None	0	7.7 kB	ljharb
npm/has-property-descriptors@1.0.2	None	0	10.9 kB	ljharb
npm/has-proto@1.0.3	None	0	12 kB	ljharb
npm/has-symbols@1.0.3	None	0	20.6 kB	ljharb
npm/hasown@2.0.2	None	0	8.77 kB	ljharb
npm/object-inspect@1.13.1	None	0	97.2 kB	ljharb
npm/qs@6.12.1	None	0	247 kB	ljharb
npm/set-function-length@1.2.2	None	0	14.7 kB	ljharb
npm/side-channel@1.0.6	None	0	23.2 kB	ljharb

🚮 Removed packages: npm/async@1.5.2, npm/chalk@2.4.1

View full report↗︎