ci: bump braces, nuxt and webpack

[dependabot[bot]]

Bumps braces to 3.0.3 and updates ancestor dependencies braces, nuxt and webpack. These dependencies need to be updated together.

Updates braces from 3.0.2 to 3.0.3

Commits

• 74b2db2 3.0.3
• 88f1429 update eslint. lint, fix unit tests.
• 415d660 Snyk js braces 6838727 (#40)
• 190510f fix tests, skip 1 test in test/braces.expand
• 716eb9f readme bump
• a5851e5 Merge pull request #37 from coderaiser/fix/vulnerability
• 2092bd1 feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
• 9f5b4cf fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
• 98414f9 remove funding file
• 665ab5d update keepEscaping doc (#27)
• Additional commits viewable in compare view

Updates nuxt from 2.17.4 to 3.12.2

Release notes

Sourced from nuxt's releases.

v3.12.2

3.12.2 is the a regularly scheduled patch release.

✅ Upgrading

As usual, our recommendation for upgrading is to run:

npx nuxi@latest upgrade --force

This will refresh your lockfile as well, and ensures that you pull in updates from other dependencies that Nuxt relies on, particularly in the unjs ecosystem.

👉 Changelog

compare changes

🔥 Performance

• kit: Deduplicate layers before resolving config (#27582)
• webpack: Decrease assets map iterations (d929cd4ef)
• kit: Various performance improvements (#27600)
• vite: Various performance improvements (#27601)
• nuxt: Don't wait for key deps check (#27638)

🩹 Fixes

• nuxt: Call onNuxtReady callback without arguments (#27428)
• schema: Don't narrow head string types to literals (#27540)
• schema: app/ dir backwards compatibility (#27529)
• nuxt: Manually assign payload reactivity when ssr: false (#27542)
• nuxt: Only log warning once per runtimeConfig key (9e56b60c6)
• nuxt: Overwrite #app/defaults rather than augmenting (#27567)
• nuxt: Export useRouteAnnouncer (#27562)
• nuxt: Remove backticks around runtimeConfig warning log (#27549)
• nuxt: Close top-level watcher on nuxt 'close' (#27571)
• nuxt: Handle tsx code when extracting pageMeta/routeRules (#27583)
• nuxt: Handle more edge cases with external/custom links (#27487)
• nuxt: Preserve route metadata assigned outside page (#27587)
• nuxt: Use portal to sync nitro/nuxt runtimeConfig + routeRules (#27596)
• nuxt,schema: Add types for _installedModules (e4bfea642)
• nuxt: Include build-time pages in prerender routes (#27569)
• nuxt: Warn when async data doesn't return a value (#27599)
• nuxt: Replace deprecated app.rootId with app.rootAttrs.id (#27630)
• nuxt: Add mergeProps import in islands transform (#27622)
• nuxt: Reset cookie timeoutLength after expiration (#27632)
• nuxt: Add missing island uid for selective client components (#27633)
• schema,vite: Respect vite.cacheDir if defined (#27628)
• nuxt: Unregister hooks the moment close is called (#27637)
• nuxt: Add missing script stubs (#27640)
• nuxt: Only inject root path in prerender (44cada95a)
• nuxt: Reduce usage of cjs utilities (#27642)
• nuxt: Add / even if pages module isn't enabled (dabcb5ecc)

📖 Documentation

... (truncated)

Commits

• 8578e2b v3.12.2
• dabcb5e fix(nuxt): add / even if pages module isn't enabled
• cb77ddc chore: lint
• 2de885b fix(nuxt): reduce usage of cjs utilities (#27642)
• 44cada9 fix(nuxt): only inject root path in prerender
• a05b534 fix(nuxt): add missing script stubs (#27640)
• fda6cf7 fix(nuxt): unregister hooks the moment close is called (#27637)
• 44d3dff perf(nuxt): don't wait for key deps check (#27638)
• 0602dd0 fix(nuxt): add missing island uid for selective client components (#27633)
• a3d8f00 fix(nuxt): reset cookie timeoutLength after expiration (#27632)
• Additional commits viewable in compare view

Updates webpack from 4.47.0 to 5.92.1

Release notes

Sourced from webpack's releases.

v5.92.1

Bug Fixes

• Doesn't crash with an error when the css experiment is enabled and contenthash is used

v5.92.0

Bug Fixes

• Correct tidle range's comutation for module federation
• Consider runtime for pure expression dependency update hash
• Return value in the subtractRuntime function for runtime logic
• Fixed failed to resolve promise when eager import a dynamic cjs
• Avoid generation extra code for external modules when remapping is not required
• The css/global type now handles the exports name
• Avoid hashing for @keyframe and @property at-rules in css/global type
• Fixed mangle with destructuring for JSON modules
• The stats.hasWarnings() method now respects the ignoreWarnings option
• Fixed ArrayQueue iterator
• Correct behavior of __webpack_exports_info__.a.b.canMangle
• Changed to the correct plugin name for the CommonJsChunkFormatPlugin plugin
• Set the chunkLoading option to the import when environment is unknown and output is module
• Fixed when runtimeChunk has no exports when module chunkFormat used
• [CSS] Fixed parsing minimized CSS import
• [CSS] URLs in CSS files now have correct public path
• [CSS] The css module type should not allow parser to switch mode
• [Types] Improved context module types

New Features

• Added platform target properties to compiler
• Improved multi compiler cache location and validating it
• Support import attributes spec (with keyword)
• Support node: prefix for Node.js core modules in runtime code
• Support prefetch/preload for module chunk format
• Support "..." in the importsFields option for resolver
• Root module is less prone to be wrapped in IIFE
• Export InitFragment class for plugins
• Export compileBooleanMatcher util for plugins
• Export InputFileSystem and OutputFileSystem types
• [CSS] Support the esModule generator option for CSS modules
• [CSS] Support CSS when chunk format is module

v5.91.0

Bug Fixes

• Deserializer for ignored modules doesn't crash
• Allow the unsafeCache option to be a proxy object
• Normalize the snapshot.unmanagedPaths option
• Fixed fs types
• Fixed resolve's plugins types

... (truncated)

Commits

• a82e0cd chore(release): 5.92.1
• 0d07d65 fix: error with contenthash and css experiment
• 8efac43 test: added
• 10638c0 chore(deps-dev): bump eslint-plugin-n from 17.8.1 to 17.9.0
• d0f7b65 chore(deps-dev): bump lint-staged from 15.2.5 to 15.2.7
• 50bd02c chore(deps-dev): bump @​eslint/js from 9.4.0 to 9.5.0
• 9e395cd chore(deps): bump acorn from 8.11.3 to 8.12.0
• db7f83c chore(deps-dev): bump globals from 15.4.0 to 15.6.0
• b7d2cbe chore(deps-dev): bump @​types/node from 20.14.2 to 20.14.5
• 18dab63 chore(deps-dev): bump @​types/node from 20.14.2 to 20.14.5
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

| Dependency Name | Ignore Conditions | | --- | --- | | nuxt | [>= 3.a, < 4] | | webpack | [>= 5.a, < 6] |

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/WFCD/warframe-hub/network/alerts).

[vercel[bot]]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
warframe-hub	❌ Failed (Inspect)			Jun 30, 2024 7:13pm

[TobiTenno]

@dependabot ignore nuxt major version

[dependabot[bot]]

This option is only available on single-dependency pull requests, as the versions in multi-dependency pull requests may differ.

If you'd like to ignore all updates for these dependencies just reply @dependabot ignore these dependencies.

[TobiTenno]

@dependabot ignore this version

[dependabot[bot]]

OK, I won't notify you about any of these dependencies again, unless you re-open this PR.