chore(deps): update all dependencies

This PR contains the following updates:

Package	Change	Type	Update
@types/node (source)	`20.8.3` -> `20.8.7`	devDependencies	patch
@typescript-eslint/eslint-plugin	`6.7.4` -> `6.8.0`	devDependencies	minor
@typescript-eslint/parser	`6.7.4` -> `6.8.0`	devDependencies	minor
cron	`3.1.1` -> `3.1.3`	dependencies	patch
node	`20.8.0` -> `20.8.1`		patch
node	`20.8.0` -> `20.8.1`	engines	patch
node	`20.8.0-alpine` -> `20.8.1-alpine`	final	patch
node	`20.8.0-alpine` -> `20.8.1-alpine`	stage	patch
pnpm (source)	`8.8.0` -> `8.9.2`	packageManager	minor
redis	`7.2.1-alpine` -> `7.2.2-alpine`		patch
type-fest	`4.4.0` -> `4.5.0`	devDependencies	minor

Release Notes

typescript-eslint/typescript-eslint (@typescript-eslint/eslint-plugin)

### [`v6.8.0`](https://togithub.com/typescript-eslint/typescript-eslint/blob/HEAD/packages/eslint-plugin/CHANGELOG.md#680-2023-10-16) [Compare Source](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.5...v6.8.0) ##### Bug Fixes - **eslint-plugin:** \[consistent-type-imports] import assertion checks added ([#7722](https://togithub.com/typescript-eslint/typescript-eslint/issues/7722)) ([afdae37](https://togithub.com/typescript-eslint/typescript-eslint/commit/afdae3739c68469a488277eb7b7f56f679d6eb20)) - **eslint-plugin:** \[no-shadow] fix static class generics for class expressions ([#7724](https://togithub.com/typescript-eslint/typescript-eslint/issues/7724)) ([e5ea1d0](https://togithub.com/typescript-eslint/typescript-eslint/commit/e5ea1d05603e6212093de541e5da49f139571454)) - **eslint-plugin:** \[no-unsafe-member-access] report on only the accessed property ([#7717](https://togithub.com/typescript-eslint/typescript-eslint/issues/7717)) ([f81a2da](https://togithub.com/typescript-eslint/typescript-eslint/commit/f81a2da13529e77d039c5b31b4313a6984ceb964)) - **eslint-plugin:** \[no-useless-empty-export] exempt .d.ts ([#7718](https://togithub.com/typescript-eslint/typescript-eslint/issues/7718)) ([ac397f1](https://togithub.com/typescript-eslint/typescript-eslint/commit/ac397f18176a9defd8c189b5b6b4e5d0b7582210)) ##### Features - **eslint-plugin:** add new extended rule `prefer-destructuring` ([#7117](https://togithub.com/typescript-eslint/typescript-eslint/issues/7117)) ([3c6379b](https://togithub.com/typescript-eslint/typescript-eslint/commit/3c6379b7678bcb190ae70d211cb3930c942d17a0)) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. #### [6.7.5](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.4...v6.7.5) (2023-10-09) ##### Bug Fixes - **eslint-plugin:** \[prefer-string-starts-ends-with] only report slice/substring with correct range ([#7712](https://togithub.com/typescript-eslint/typescript-eslint/issues/7712)) ([db40a0a](https://togithub.com/typescript-eslint/typescript-eslint/commit/db40a0a83abf14237a7a9b3f75d869da26512292)) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. #### [6.7.4](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.3...v6.7.4) (2023-10-02) **Note:** Version bump only for package [@typescript-eslint/eslint-plugin](https://togithub.com/typescript-eslint/eslint-plugin) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. #### [6.7.3](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.2...v6.7.3) (2023-09-25) **Note:** Version bump only for package [@typescript-eslint/eslint-plugin](https://togithub.com/typescript-eslint/eslint-plugin) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. #### [6.7.2](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.1...v6.7.2) (2023-09-18) **Note:** Version bump only for package [@typescript-eslint/eslint-plugin](https://togithub.com/typescript-eslint/eslint-plugin) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. #### [6.7.1](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.0...v6.7.1) (2023-09-18) **Note:** Version bump only for package [@typescript-eslint/eslint-plugin](https://togithub.com/typescript-eslint/eslint-plugin) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. ### [`v6.7.5`](https://togithub.com/typescript-eslint/typescript-eslint/blob/HEAD/packages/eslint-plugin/CHANGELOG.md#675-2023-10-09) [Compare Source](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.4...v6.7.5) ##### Bug Fixes - **eslint-plugin:** \[prefer-string-starts-ends-with] only report slice/substring with correct range ([#7712](https://togithub.com/typescript-eslint/typescript-eslint/issues/7712)) ([db40a0a](https://togithub.com/typescript-eslint/typescript-eslint/commit/db40a0a83abf14237a7a9b3f75d869da26512292)) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website.

typescript-eslint/typescript-eslint (@typescript-eslint/parser)

### [`v6.8.0`](https://togithub.com/typescript-eslint/typescript-eslint/blob/HEAD/packages/parser/CHANGELOG.md#680-2023-10-16) [Compare Source](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.5...v6.8.0) **Note:** Version bump only for package [@typescript-eslint/parser](https://togithub.com/typescript-eslint/parser) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. #### [6.7.5](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.4...v6.7.5) (2023-10-09) **Note:** Version bump only for package [@typescript-eslint/parser](https://togithub.com/typescript-eslint/parser) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. #### [6.7.4](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.3...v6.7.4) (2023-10-02) **Note:** Version bump only for package [@typescript-eslint/parser](https://togithub.com/typescript-eslint/parser) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. #### [6.7.3](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.2...v6.7.3) (2023-09-25) **Note:** Version bump only for package [@typescript-eslint/parser](https://togithub.com/typescript-eslint/parser) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. #### [6.7.2](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.1...v6.7.2) (2023-09-18) **Note:** Version bump only for package [@typescript-eslint/parser](https://togithub.com/typescript-eslint/parser) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. #### [6.7.1](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.0...v6.7.1) (2023-09-18) **Note:** Version bump only for package [@typescript-eslint/parser](https://togithub.com/typescript-eslint/parser) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website. ### [`v6.7.5`](https://togithub.com/typescript-eslint/typescript-eslint/blob/HEAD/packages/parser/CHANGELOG.md#675-2023-10-09) [Compare Source](https://togithub.com/typescript-eslint/typescript-eslint/compare/v6.7.4...v6.7.5) **Note:** Version bump only for package [@typescript-eslint/parser](https://togithub.com/typescript-eslint/parser) You can read about our [versioning strategy](https://main--typescript-eslint.netlify.app/users/versioning) and [releases](https://main--typescript-eslint.netlify.app/users/releases) on our website.

kelektiv/node-cron (cron)

### [`v3.1.3`](https://togithub.com/kelektiv/node-cron/blob/HEAD/CHANGELOG.md#313-2023-10-19) [Compare Source](https://togithub.com/kelektiv/node-cron/compare/v3.1.2...v3.1.3) ##### 🐛 Bug Fixes - allow callbacks to return a promise ([#733](https://togithub.com/kelektiv/node-cron/issues/733)) ([8dd8b75](https://togithub.com/kelektiv/node-cron/commit/8dd8b754b69e2cbe503f344f2346a035cf5a3ec6)) ##### ⚙️ Continuous Integrations - **renovate:** update configuration ([#732](https://togithub.com/kelektiv/node-cron/issues/732)) \[skip ci] ([2ff9c6e](https://togithub.com/kelektiv/node-cron/commit/2ff9c6eb94fbc833c6a7fff30242e2b4b8367dc6)) ### [`v3.1.2`](https://togithub.com/kelektiv/node-cron/blob/HEAD/CHANGELOG.md#312-2023-10-19) [Compare Source](https://togithub.com/kelektiv/node-cron/compare/v3.1.1...v3.1.2) ##### 🛠 Builds - **deps:** update dependency luxon to ~3.4.0 ([#730](https://togithub.com/kelektiv/node-cron/issues/730)) ([c3806c5](https://togithub.com/kelektiv/node-cron/commit/c3806c54574d2f1886272f0b6fc0742b84dcba03)) ##### ♻️ Chores - **deps:** lock file maintenance ([#731](https://togithub.com/kelektiv/node-cron/issues/731)) ([b6bc715](https://togithub.com/kelektiv/node-cron/commit/b6bc715e20f48550b4265b90bd5a21b635ece14c)) - **deps:** pin dependencies ([#719](https://togithub.com/kelektiv/node-cron/issues/719)) \[skip ci] ([5003745](https://togithub.com/kelektiv/node-cron/commit/5003745208f2312bfc41dd88b68520c00d72cf5c)) - **deps:** pin dependencies ([#720](https://togithub.com/kelektiv/node-cron/issues/720)) \[skip ci] ([4f977ef](https://togithub.com/kelektiv/node-cron/commit/4f977efb245d0c8a4113ef979e92c90c4ce6b0ee)) - **deps:** pin dependencies ([#721](https://togithub.com/kelektiv/node-cron/issues/721)) \[skip ci] ([60fbf7f](https://togithub.com/kelektiv/node-cron/commit/60fbf7fa9f34cb1a214673eb556aa62eab3b848b)) - **deps:** update dependency [@commitlint](https://togithub.com/commitlint)/cli to v17.8.0 ([#723](https://togithub.com/kelektiv/node-cron/issues/723)) \[skip ci] ([a7a18cb](https://togithub.com/kelektiv/node-cron/commit/a7a18cbd8d550214377ff5c8d77f29952d2b91c7)) - **deps:** update dependency [@types](https://togithub.com/types)/node to v20.8.6 ([#724](https://togithub.com/kelektiv/node-cron/issues/724)) \[skip ci] ([b5e4c9f](https://togithub.com/kelektiv/node-cron/commit/b5e4c9f463543f6d1ba2bc9eebbd5eb6f3d1b5ea)) - **deps:** update dependency sinon to v16 ([#726](https://togithub.com/kelektiv/node-cron/issues/726)) \[skip ci] ([d114a12](https://togithub.com/kelektiv/node-cron/commit/d114a1291d4257a899150468e4736c594b542355)) - **deps:** update dependency typescript to v5.2.2 ([#729](https://togithub.com/kelektiv/node-cron/issues/729)) \[skip ci] ([d1b267e](https://togithub.com/kelektiv/node-cron/commit/d1b267e6490347786e9aa77be6a1016598b968ea)) - **deps:** update linters ([#728](https://togithub.com/kelektiv/node-cron/issues/728)) \[skip ci] ([9ab00e8](https://togithub.com/kelektiv/node-cron/commit/9ab00e8e2adac547017bfbe5b6d97d7bc9c6fb28)) - **deps:** update linters (major) ([#727](https://togithub.com/kelektiv/node-cron/issues/727)) \[skip ci] ([a75418a](https://togithub.com/kelektiv/node-cron/commit/a75418aca0f51b98625979087aa86e166ac17c56)) - **deps:** update tests ([#722](https://togithub.com/kelektiv/node-cron/issues/722)) \[skip ci] ([6b4c6fa](https://togithub.com/kelektiv/node-cron/commit/6b4c6fae750d005c3e30f12b868e4f01a3b99a68))

nodejs/node (node)

### [`v20.8.1`](https://togithub.com/nodejs/node/releases/tag/v20.8.1): 2023-10-13, Version 20.8.1 (Current), @RafaelGSS [Compare Source](https://togithub.com/nodejs/node/compare/v20.8.0...v20.8.1) This is a security release. ##### Notable Changes The following CVEs are fixed in this release: - [CVE-2023-44487](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44487): `nghttp2` Security Release (High) - [CVE-2023-45143](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45143): `undici` Security Release (High) - [CVE-2023-39332](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39332): Path traversal through path stored in Uint8Array (High) - [CVE-2023-39331](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39331): Permission model improperly protects against path traversal (High) - [CVE-2023-38552](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38552): Integrity checks according to policies can be circumvented (Medium) - [CVE-2023-39333](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39333): Code injection via WebAssembly export names (Low) More detailed information on each of the vulnerabilities can be found in [October 2023 Security Releases](https://nodejs.org/en/blog/vulnerability/october-2023-security-releases/) blog post. ##### Commits - \[[`c86883e844`](https://togithub.com/nodejs/node/commit/c86883e844)] - **deps**: update nghttp2 to 1.57.0 (James M Snell) [#50121](https://togithub.com/nodejs/node/pull/50121) - \[[`2860631359`](https://togithub.com/nodejs/node/commit/2860631359)] - **deps**: update undici to v5.26.3 (Matteo Collina) [#50153](https://togithub.com/nodejs/node/pull/50153) - \[[`cd37838bf8`](https://togithub.com/nodejs/node/commit/cd37838bf8)] - **lib**: let deps require `node` prefixed modules (Matthew Aitken) [#50047](https://togithub.com/nodejs/node/pull/50047) - \[[`f5c90b2951`](https://togithub.com/nodejs/node/commit/f5c90b2951)] - **module**: fix code injection through export names (Tobias Nießen) [nodejs-private/node-private#461](https://togithub.com/nodejs-private/node-private/pull/461) - \[[`fa5dae1944`](https://togithub.com/nodejs/node/commit/fa5dae1944)] - **permission**: fix Uint8Array path traversal (Tobias Nießen) [nodejs-private/node-private#456](https://togithub.com/nodejs-private/node-private/pull/456) - \[[`cd35275111`](https://togithub.com/nodejs/node/commit/cd35275111)] - **permission**: improve path traversal protection (Tobias Nießen) [nodejs-private/node-private#456](https://togithub.com/nodejs-private/node-private/pull/456) - \[[`a4cb7fc7c0`](https://togithub.com/nodejs/node/commit/a4cb7fc7c0)] - **policy**: use tamper-proof integrity check function (Tobias Nießen) [nodejs-private/node-private#462](https://togithub.com/nodejs-private/node-private/pull/462)

pnpm/pnpm (pnpm)

### [`v8.9.2`](https://togithub.com/pnpm/pnpm/releases/tag/v8.9.2) [Compare Source](https://togithub.com/pnpm/pnpm/compare/v8.9.1...v8.9.2) #### Patch Changes - Don't use reflink on Windows [#7186](https://togithub.com/pnpm/pnpm/issues/7186). - Do not run node-gyp rebuild if `preinstall` lifecycle script is present [#7206](https://togithub.com/pnpm/pnpm/pull/7206). #### Our Gold Sponsors

#### Our Silver Sponsors

### [`v8.9.1`](https://togithub.com/pnpm/pnpm/releases/tag/v8.9.1) [Compare Source](https://togithub.com/pnpm/pnpm/compare/v8.9.0...v8.9.1) #### Patch Changes - Optimize selection result output of `pnpm update --interactive` [7109](https://togithub.com/pnpm/pnpm/issues/7109) - When `shared-workspace-lockfile` is set to `false`, read the pnpm settings from `package.json` files that are nested. This was broken in pnpm v8.9.0 [#7184](https://togithub.com/pnpm/pnpm/issues/7184). - Fix file cloning to `node_modules` on Windows Dev Drives [#7186](https://togithub.com/pnpm/pnpm/issues/7186). This is a fix to a regression that was shipped with v8.9.0. - `pnpm dlx` should ignore any settings that are in a `package.json` file found in the current working directory [#7198](https://togithub.com/pnpm/pnpm/issues/7198). #### Our Gold Sponsors

#### Our Silver Sponsors

### [`v8.9.0`](https://togithub.com/pnpm/pnpm/releases/tag/v8.9.0) [Compare Source](https://togithub.com/pnpm/pnpm/compare/v8.8.0...v8.9.0) #### Minor Changes - **🚀Performance improvement:** Use reflinks instead of hard links by default on macOS and Windows Dev Drives [#5001](https://togithub.com/pnpm/pnpm/issues/5001). - The list of packages that are allowed to run installation scripts now may be provided in a separate configuration file. The path to the file should be specified via the `pnpm.onlyBuiltDependenciesFile` field in `package.json`. For instance: ```json { "dependencies": { "@my-org/policy": "1.0.0" } "pnpm": { "onlyBuiltDependenciesFile": "node_modules/@my-org/policy/allow-build.json" } } ``` In the example above, the list is loaded from a dependency. The JSON file with the list should contain an array of package names. For instance: ```json ["esbuild", "@reflink/reflink"] ``` With the above list, only `esbuild` and `@reflink/reflink` will be allowed to run scripts during installation. Related issue: [#7137](https://togithub.com/pnpm/pnpm/issues/7137). - Add `disallow-workspace-cycles` option to error instead of warn about cyclic dependencies - Allow `env rm` to remove multiple node versions at once, and introduce `env add` for installing node versions without setting as default [#7155](https://togithub.com/pnpm/pnpm/pull/7155). #### Patch Changes - Fix memory error in `pnpm why` when the dependencies tree is too big, the command will now prune the tree to just 10 end leafs and now supports `--depth` argument [#7122](https://togithub.com/pnpm/pnpm/pull/7122). - Use `neverBuiltDependencies` and `onlyBuiltDependencies` from the root `package.json` of the workspace, when `shared-workspace-lockfile` is set to `false` [#7141](https://togithub.com/pnpm/pnpm/pull/7141). - Optimize peers resolution to avoid out-of-memory exceptions in some rare cases, when there are too many circular dependencies and peer dependencies [#7149](https://togithub.com/pnpm/pnpm/pull/7149). - Instead of `pnpm.overrides` replacing `resolutions`, the two are now merged. This is intended to make it easier to migrate from Yarn by allowing one to keep using `resolutions` for Yarn, but adding additional changes just for pnpm using `pnpm.overrides`. #### Our Gold Sponsors

#### Our Silver Sponsors

sindresorhus/type-fest (type-fest)

### [`v4.5.0`](https://togithub.com/sindresorhus/type-fest/releases/tag/v4.5.0) [Compare Source](https://togithub.com/sindresorhus/type-fest/compare/v4.4.0...v4.5.0) ##### New types - [`UndefinedOnPartialDeep`](https://togithub.com/sindresorhus/type-fest/blob/main/source/undefined-on-partial-deep.d.ts) ([#700](https://togithub.com/sindresorhus/type-fest/issues/700)) [`d8b44cb`](https://togithub.com/sindresorhus/type-fest/commit/d8b44cb) - [`KeysOfUnion`](https://togithub.com/sindresorhus/type-fest/blob/main/source/keys-of-union.d.ts) ([#709](https://togithub.com/sindresorhus/type-fest/issues/709)) [`0517399`](https://togithub.com/sindresorhus/type-fest/commit/0517399) - [`IntRange`](https://togithub.com/sindresorhus/type-fest/blob/main/source/int-range.d.ts) ([#707](https://togithub.com/sindresorhus/type-fest/issues/707)) [`e5d145d`](https://togithub.com/sindresorhus/type-fest/commit/e5d145d) ##### Improvements - `Jsonify`: Improve type inference for objects with `.toJSON()` extending primitives ([#690](https://togithub.com/sindresorhus/type-fest/issues/690)) [`157ed07`](https://togithub.com/sindresorhus/type-fest/commit/157ed07) - `OverrideProperties`: Fix autocomplete in the type ([#712](https://togithub.com/sindresorhus/type-fest/issues/712)) [`fcdcfe9`](https://togithub.com/sindresorhus/type-fest/commit/fcdcfe9)

Configuration

📅 Schedule: Branch creation - "on saturday" in timezone Europe/Paris, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

[ ] If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

codinglab-io / discord-bot

chore(deps): update all dependencies #111

Release Notes

Configuration