Bump json5, next and styled-jsx

[dependabot[bot]]

Bumps json5 to 2.2.3 and updates ancestor dependencies json5, next and styled-jsx. These dependencies need to be updated together.

Updates json5 from 2.1.3 to 2.2.3

Release notes

Sourced from json5's releases.

v2.2.3

• Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (#299)

v2.2.2

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1

• Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0

• New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

Changelog

Sourced from json5's changelog.

v2.2.3 [code, diff]

• Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (#299)

v2.2.2 [code, diff]

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1 [code, diff]

• Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0 [code, diff]

• New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

Commits

• c3a7524 2.2.3
• 94fd06d docs: update CHANGELOG for v2.2.3
• 3b8cebf docs(security): use GitHub security advisories
• f0fd9e1 docs: publish a security policy
• 6a91a05 docs(template): bug -> bug report
• 14f8cb1 2.2.2
• 10cc7ca docs: update CHANGELOG for v2.2.2
• 7774c10 fix: add proto to objects and arrays
• edde30a Readme: slight tweak to intro
• 97286f8 Improve example in readme
• Additional commits viewable in compare view

Updates next from 12.0.7 to 12.3.4

Release notes

Sourced from next's releases.

v12.3.2-canary.43

Core Changes

• Add head handling: #41768
• Update async storage fix: #41779

Credits

Huge thanks to @​timneutkens for helping!

v12.3.2-canary.42

Core Changes

• Fix no-store test case: #41775
• Ensure async_hooks are not resolved for client: #41778
• Make ship happen: #41776

Credits

Huge thanks to @​sokra for helping!

v12.3.2-canary.41

Core Changes

• feat: set a better type for the default image loader : #41639
• Fix edge entry layer resolution bug: #41757
• Dont apply existing externals path changing to rsc layers: #41744
• Pathname and search params SSG: #41247
• Update react next channel: #41761
• Font description and error messages: #41764
• Updating avg width metrics for google fonts: #41755
• Bump minimum Node.js version to 14.6.0: #41765
• Throw error child in : #41756
• [typescript] fix typo in edge runtime name: #41773
• Only import dev overlay for dev mode: #41771
• Add initial head handling in app: #41607
• Fix revalidate during dev: #41772

Documentation Changes

• docs: update ci-build-caching: #41763

Misc Changes

• Enable appDir e2e deploy tests #1: #41759

Credits

Huge thanks to @​ahhshm, @​shuding, @​huozhi, @​javivelasco, @​hanneslund, @​janicklas-ralph, @​styfle, @​eve0415, and @​Schniz for helping!

... (truncated)

Commits

• e2c5952 v12.3.4
• 4006812 Update experimental skipTrailingSlashRedirect handling
• be75d09 v12.3.3
• 623622f Update swc builds
• 0381cf0 Add missing matcher support
• b9c7408 Apply normalize patch
• 1b8ab4e Apply middleware patches
• 58dcf30 Apply fix(stream): Allows body larger than 16 KiB with middleware
• f3fc912 v12.3.2
• 3e0f0d6 lock docker image
• Additional commits viewable in compare view

Updates styled-jsx from 3.3.0 to 5.1.1

Release notes

Sourced from styled-jsx's releases.

v5.1.1

5.1.1 (2022-12-15)

Bug Fixes

• typo in macro typing (#822) (d0b2f75)

v5.1.0

5.1.0 (2022-10-17)

Features

• styled-jsx as client-only for rsc (#816) (ea0432b)

v5.0.7

5.0.7 (2022-09-09)

Bug Fixes

• add displayName for context (#813) (e824581)

v5.0.6

5.0.6 (2022-09-05)

Bug Fixes

• load babel macro dynamically (#812) (067fcd7)

v5.0.5

5.0.5 (2022-09-02)

Improvements

• use typeof window to detect browser (#810) (2a31e73)

Misc

• Replace bundler #802

v5.0.4

5.0.4 (2022-08-11)

... (truncated)

Commits

• d0b2f75 fix: typo in macro typing (#822)
• bb3cde8 chore: Update loader-utils to fix security vulnerability (#820)
• ea0432b feat: styled-jsx as client-only for rsc (#816)
• e824581 fix: add displayName for context (#813)
• 067fcd7 fix: load babel macro dynamically (#812)
• 2a31e73 perf: use typeof window to detect browser (#810)
• 66bd5f0 build: use bunchee for bundling (#802)
• 41443ab test: upgrade ava (#807)
• 3c2a77b chore: update codeowners (#808)
• 865ba14 fix: tweak types (#806)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by vercel-release-bot, a new releaser for styled-jsx since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/devinit/data-hub-spotlights/network/alerts).

[sonarcloud[bot]]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
0.0% Duplication