chore(deps-dev): bump lint-staged from 15.2.7 to 15.2.8

[dependabot[bot]]

Bumps lint-staged from 15.2.7 to 15.2.8.

Release notes

Sourced from lint-staged's releases.

v15.2.8

Patch Changes

• f0480f0 Thanks @​iiroj! - In the previous version the native git rev-parse --show-toplevel command was taken into use for resolving the current git repo root. This version switched the --show-toplevel flag with --show-cdup, because on Git installed via MSYS2 the former was returning absolute paths that do not work with Node.js child_process. The new flag returns a path relative to the working directory, avoiding the issue.

  The GitHub Actions workflow has been updated to install Git via MSYS2, to ensure better future compatibility; using the default Git binary in the GitHub Actions runner was working correctly even with MSYS2.

Changelog

Sourced from lint-staged's changelog.

15.2.8

Patch Changes

• f0480f0 Thanks @​iiroj! - In the previous version the native git rev-parse --show-toplevel command was taken into use for resolving the current git repo root. This version switched the --show-toplevel flag with --show-cdup, because on Git installed via MSYS2 the former was returning absolute paths that do not work with Node.js child_process. The new flag returns a path relative to the working directory, avoiding the issue.

  The GitHub Actions workflow has been updated to install Git via MSYS2, to ensure better future compatibility; using the default Git binary in the GitHub Actions runner was working correctly even with MSYS2.

Commits

• 52f6eef chore(changeset): release (#1462)
• 8d8fe23 build: update repository url in package.json
• f0480f0 Revert "chore(changeset): release (#1461)"
• 1da81c0 chore(changeset): release (#1461)
• cc04e08 ci: add required permission for provenance generation
• fa2dac8 Revert "chore(changeset): release (#1455)"
• 8325985 chore(changeset): release (#1455)
• 92f295f build(deps): update dependencies (#1460)
• 5293c09 build: generate provenance statements for npm package (#1459)
• f184fff Merge pull request #1454 from Falcion/master
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once CI passes on it, as requested by @AlbertHernandez.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
npm/ansi-escapes	7.0.0	:green_circle: 4.3	Details Check Score Reason Code-Review :green_circle: 3 Found 11/30 approved changesets -- score normalized to 3 Maintained :warning: 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Security-Policy :green_circle: 10 security policy file detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Branch-Protection :warning: 0 branch protection not enabled on development/release branches Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Signed-Releases :warning: -1 no releases found SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/cli-cursor	5.0.0	:green_circle: 4.2	Details Check Score Reason Code-Review :warning: 1 Found 5/30 approved changesets -- score normalized to 1 Maintained :warning: 1 2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Security-Policy :green_circle: 10 security policy file detected Packaging :warning: -1 packaging workflow not detected Branch-Protection :warning: 0 branch protection not enabled on development/release branches Signed-Releases :warning: -1 no releases found Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/debug	4.3.6	:green_circle: 4.1	Details Check Score Reason Code-Review :green_circle: 3 Found 11/28 approved changesets -- score normalized to 3 Maintained :green_circle: 5 5 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 5 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Token-Permissions :warning: -1 No tokens found Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: -1 no dependencies found Dangerous-Workflow :warning: -1 no workflows found Branch-Protection :warning: 0 branch protection not enabled on development/release branches Security-Policy :warning: 0 security policy file not detected Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Signed-Releases :warning: -1 no releases found SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/environment	1.1.0	Unknown	Unknown
npm/lilconfig	3.1.2	:green_circle: 4.3	Details Check Score Reason Code-Review :warning: 1 Found 1/10 approved changesets -- score normalized to 1 Maintained :green_circle: 5 5 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 5 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Pinned-Dependencies :green_circle: 6 dependency not pinned by hash detected -- score normalized to 6 Branch-Protection :warning: 0 branch protection not enabled on development/release branches Security-Policy :warning: 0 security policy file not detected Signed-Releases :warning: -1 no releases found Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :green_circle: 9 1 existing vulnerabilities detected
npm/lint-staged	15.2.8	Unknown	Unknown
npm/listr2	8.2.4	Unknown	Unknown
npm/log-update	6.1.0	:green_circle: 4.3	Details Check Score Reason Code-Review :warning: 2 Found 8/30 approved changesets -- score normalized to 2 Maintained :warning: 1 2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Security-Policy :green_circle: 10 security policy file detected Packaging :warning: -1 packaging workflow not detected Branch-Protection :warning: 0 branch protection not enabled on development/release branches Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/mimic-function	5.0.1	Unknown	Unknown
npm/onetime	7.0.0	:green_circle: 4.2	Details Check Score Reason Code-Review :warning: 2 Found 8/30 approved changesets -- score normalized to 2 Maintained :warning: 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Security-Policy :green_circle: 10 security policy file detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection :warning: 0 branch protection not enabled on development/release branches Fuzzing :warning: 0 project is not fuzzed Signed-Releases :warning: -1 no releases found Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/restore-cursor	5.1.0	:green_circle: 4.3	Details Check Score Reason Code-Review :warning: 2 Found 5/23 approved changesets -- score normalized to 2 Maintained :warning: 1 2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy :green_circle: 10 security policy file detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Branch-Protection :warning: 0 branch protection not enabled on development/release branches Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :warning: 0 project is not fuzzed Signed-Releases :warning: -1 no releases found SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/rfdc	1.4.1	:green_circle: 4.5	Details Check Score Reason Maintained :green_circle: 6 6 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 6 Code-Review :green_circle: 4 Found 9/21 approved changesets -- score normalized to 4 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Binary-Artifacts :green_circle: 10 no binaries found in the repo Packaging :warning: -1 packaging workflow not detected Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Branch-Protection :warning: 0 branch protection not enabled on development/release branches Security-Policy :warning: 0 security policy file not detected Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/string-width	7.2.0	:green_circle: 4.4	Details Check Score Reason Code-Review :green_circle: 3 Found 11/30 approved changesets -- score normalized to 3 Maintained :warning: 1 2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Security-Policy :green_circle: 10 security policy file detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Signed-Releases :warning: -1 no releases found Branch-Protection :warning: 0 branch protection not enabled on development/release branches Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
npm/yaml	2.5.0	:green_circle: 6.4	Details Check Score Reason Code-Review :warning: 0 Found 1/30 approved changesets -- score normalized to 0 Maintained :green_circle: 10 28 commit(s) and 17 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Branch-Protection :warning: 0 branch protection not enabled on development/release branches Binary-Artifacts :green_circle: 10 no binaries found in the repo Signed-Releases :warning: -1 no releases found Pinned-Dependencies :green_circle: 3 dependency not pinned by hash detected -- score normalized to 3 Fuzzing :green_circle: 10 project is fuzzed SAST :green_circle: 10 SAST tool is run on all commits Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/lint-staged	^15.2.8	Unknown	Unknown

Scanned Manifest Files

package-lock.json

• ansi-escapes@7.0.0
• cli-cursor@5.0.0
• debug@4.3.6
• environment@1.1.0
• lilconfig@3.1.2
• lint-staged@15.2.8
• listr2@8.2.4
• log-update@6.1.0
• mimic-function@5.0.1
• onetime@7.0.0
• restore-cursor@5.1.0
• rfdc@1.4.1
• string-width@7.2.0
• yaml@2.5.0
• ansi-escapes@6.2.1
• cli-cursor@4.0.0
• debug@4.3.4
• lilconfig@3.1.1
• lint-staged@15.2.7
• listr2@8.2.1
• log-update@6.0.0
• restore-cursor@4.0.0
• rfdc@1.3.1
• string-width@7.1.0
• yaml@2.4.2

package.json

• lint-staged@^15.2.8
• lint-staged@^15.2.7