Bump the npm_and_yarn group across 1 directory with 4 updates

[dependabot[bot]]

Bumps the npm_and_yarn group with 4 updates in the / directory: next, undici, zod and postcss.

Updates next from 13.4.13 to 14.1.1

Commits

• 5f59ee5 v14.1.1
• f48b90b even more
• 7f789f4 more timeout
• ab71c4c update timeout
• 75f60d9 update trigger release workflow
• 74b3f0f Server Action tests (#62655)
• a6946b6 Backport metadata fixes (#62663)
• 4002f4b Fix draft mode invariant (#62121)
• 7dbf6f8 fix: babel usage with next/image (#61835)
• 3efc842 Fix next/server apit push alias for ESM pkg (#61721)
• Additional commits viewable in compare view

Updates undici from 6.9.0 to 6.11.1

Release notes

Sourced from undici's releases.

v6.11.1

:warning: Security Release ⚠️

What's Changed

• Fixes https://github.com/nodejs/undici/security/advisories/GHSA-m4v8-wqvr-p9f7 CVE-2024-30260
• Fixes https://github.com/nodejs/undici/security/advisories/GHSA-9qxr-qj54-h672 CVE-2024-30261
• Revert "fix: don't leak internal class (#3024)" by @​mcollina in nodejs/undici#3044

Full Changelog: https://github.com/nodejs/undici/compare/v6.11.0...v6.11.1

v6.11.0

What's Changed

• refactor(#3023): Pass headers as array instead by @​metcoder95 in nodejs/undici#3025
• fix: don't leak internal class by @​ronag in nodejs/undici#3024
• build(deps): bump codecov/codecov-action from 4.1.0 to 4.1.1 by @​dependabot in nodejs/undici#3034
• build(deps-dev): bump tsd from 0.30.7 to 0.31.0 by @​dependabot in nodejs/undici#3038
• build(deps-dev): bump borp from 0.9.1 to 0.10.0 by @​dependabot in nodejs/undici#2947
• missing commits by @​ronag in nodejs/undici#3040
• build(deps): bump actions/checkout from 4.1.1 to 4.1.2 by @​dependabot in nodejs/undici#3036
• fix: regexp pattern by @​tsctx in nodejs/undici#3041

Full Changelog: https://github.com/nodejs/undici/compare/v6.10.2...v6.11.0

v6.10.2

What's Changed

• Do not fail test if streams support typed arrays by @​mcollina in nodejs/undici#2978
• fix(fetch): properly redirect non-ascii location header url by @​Xvezda in nodejs/undici#2971
• perf: Remove double-stringify in setCookie by @​peterver in nodejs/undici#2980
• [fix #2982] use DispatcherInterceptor type for Dispatcher#Compose by @​clovis-guillemot in nodejs/undici#2983
• fix: make EventSource properties enumerable by @​MattBidewell in nodejs/undici#2987
• docs: ✏️ fixed benchmark links by @​benhalverson in nodejs/undici#2991
• fix(#2986): bad start check by @​metcoder95 in nodejs/undici#2992
• fix(H2 Client): bind stream 'data' listener only after received 'response' event by @​St3ffGv4 in nodejs/undici#2985
• feat: added search input by @​benhalverson in nodejs/undici#2993
• chore: validate responses can be consumed without a Content-Length or… by @​jacob-ebey in nodejs/undici#2995
• fix error message by @​KhafraDev in nodejs/undici#2998
• Revert "perf: reuse TextDecoder instance (#2863)" by @​panva in nodejs/undici#2999
• test: remove only by @​metcoder95 in nodejs/undici#3001

New Contributors

• @​Xvezda made their first contribution in nodejs/undici#2971
• @​peterver made their first contribution in nodejs/undici#2980
• @​clovis-guillemot made their first contribution in nodejs/undici#2983
• @​MattBidewell made their first contribution in nodejs/undici#2987
• @​benhalverson made their first contribution in nodejs/undici#2991
• @​St3ffGv4 made their first contribution in nodejs/undici#2985
• @​jacob-ebey made their first contribution in nodejs/undici#2995

... (truncated)

Commits

• 6df3c73 Bumped v6.11.1
• c346b66 Revert "fix: don't leak internal class (#3024)"
• d542b8c Merge pull request from GHSA-9qxr-qj54-h672
• 6805746 Merge pull request from GHSA-m4v8-wqvr-p9f7
• ee5f892 Bumped v6.11.0
• 71a6d74 Merge branch 'main' of github.com:nodejs/undici
• 0f0f239 fix: regexp pattern (#3041)
• 31f9e67 build(deps): bump actions/checkout from 4.1.1 to 4.1.2 (#3036)
• c8a43ae fixup
• 8b5e2c8 fixup
• Additional commits viewable in compare view

Updates zod from 3.22.4 to 3.23.8

Release notes

Sourced from zod's releases.

v3.23.8

Commits:

• 0f4d403558ae0490c711e4c2bfcf6c200bd14e11 Add Bronze logos (#3470)
• 19687315b5b24bbd1ff6c346bfc2975700221748 Tweak tiers (#3471)
• eda7df314399929f7ed737423868a5a0780cd944 Change RefinementCtx to interface
• ca42965df46b2f7e2747db29c40a26bcb32a51d5 v3.23.8

v3.23.7

Commits:

• 29d2ea2a15f0b1ac4b89138041f786a3dafc490b Add copper
• d969423266fccee56ef769da6744cc8bacb04550 Fix #3437: extendShape erases JSDoc property documentation (#3463)
• 2239ff3ccc9af4d28bee27bd6fb2a5632844480b Add social crow
• f985b5b922cb357dbf4b25bb43814d19f838e046 3.23.7

v3.23.6

Commits:

• bc0095aab9e7254deb18701adc63de128ca2c742 Test on latest node
• 6e5699a30373cc22879f2bcb6902fc138518c980 Lint on latest node
• 1f466d9d00f446d7bed1962990e7a1ce813ab0d4 describe how one can protect from cyclical objects starting an infini… (#3447)
• 3fed6f21e0ea7adc91aa0cc44f75bcf4e526d98e Add zod playground link (#3454)
• 04e1f379f6989d23dd45660fcabc78f76d7834f8 Fixed freezing async ZodReadonly results (#3457)
• b87e59d0e4bbb4403bf27243afdcda9fcdeec258 Update sponsor tiers (#3453)
• 143886151bba3930bdcc10d34a1cff4bf9103ba8 Add copper tier (#3460)
• ce3711e1384952d255769b9495f9bfadfb327291 add VSCode dev container support and documenation
• 93b480b12ec3466cbd3b4182f7ce292e5c61528c v3.23.6

v3.23.5

Commits:

• 110b8211f991b3e060ab2da4fec7b63d600439ad Update README_ZH.md (#3433)
• c1910bdfc98709b8f14231e2cefc5a3be401e3ee Made ZodEnum take readonly string array (#3444)
• 541a862e978f96eb391849a6bf16be84231aa1b3 3.23.5

v3.23.4

Commits:

• 157b18d742c86d85b26a8421af46ad6d6d6b6ea7 Add 3.23 announcement
• aedf93f1435a29463d915c3be45b4dcbeefa8cc1 Revert change to default Input
• 45107f7a7230fe48ee24dc37e621422c9dc64ec4 v3.23.4

v3.23.3

Commits:

• 103d2436f85872ca0e0e6247652989cc93d46a39 3.23.3

v3.23.2

Commits:

... (truncated)

Commits

• ca42965 v3.23.8
• eda7df3 Change RefinementCtx to interface
• 1968731 Tweak tiers (#3471)
• 0f4d403 Add Bronze logos (#3470)
• f985b5b 3.23.7
• 2239ff3 Add social crow
• d969423 Fix #3437: extendShape erases JSDoc property documentation (#3463)
• 29d2ea2 Add copper
• 93b480b v3.23.6
• ce3711e add VSCode dev container support and documenation
• Additional commits viewable in compare view

Updates postcss from 8.4.34 to 8.4.38

Release notes

Sourced from postcss's releases.

8.4.38

• Fixed endIndex: 0 in errors and warnings (by @​romainmenke).

8.4.37

• Fixed original.column are not numbers error in another case.

8.4.36

• Fixed original.column are not numbers error on broken previous source map.

8.4.35

• Avoid ! in node.parent.nodes type.
• Allow to pass undefined to node adding method to simplify types.

Changelog

Sourced from postcss's changelog.

8.4.38

• Fixed endIndex: 0 in errors and warnings (by @​romainmenke).

8.4.37

• Fixed original.column are not numbers error in another case.

8.4.36

• Fixed original.column are not numbers error on broken previous source map.

8.4.35

• Avoid ! in node.parent.nodes type.
• Allow to pass undefined to node adding method to simplify types.

Commits

• a69d45e Release 8.4.38 version
• 64e35d9 Update dependencies
• c1ad8fb Merge pull request #1932 from romainmenke/fix-warning-end-index--inventive-nu...
• b45e7e9 fix endIndex
• 1bea246 failing test: for endIndex 0 in rangeBy
• 0fd1d86 Add changelog auto release on Github
• 49c906e Release 8.4.37 version
• b5bd92c Fix another broken prev source map issue
• 2882039 Update dependencies
• e5ad939 Release 8.4.36 version
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Wundero/practimations/network/alerts).

[vercel[bot]]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
practimations	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	May 9, 2024 10:11pm

[Wundero]

@dependabot merge

[dependabot[bot]]

Dependabot tried to merge this PR, but received the following error from GitHub:

Waiting on code owner review from Wundero.

[Wundero]

@dependabot merge