Bump the npm_and_yarn group with 5 updates

[dependabot[bot]]

Bumps the npm_and_yarn group with 5 updates:

Package	From	To
next	13.4.9	14.1.1
postcss	8.4.31	8.4.41
@babel/traverse	7.17.3	7.23.2
@trivago/prettier-plugin-sort-imports	4.1.1	4.3.0
braces	3.0.2	3.0.3

Updates next from 13.4.9 to 14.1.1

Commits

• 5f59ee5 v14.1.1
• f48b90b even more
• 7f789f4 more timeout
• ab71c4c update timeout
• 75f60d9 update trigger release workflow
• 74b3f0f Server Action tests (#62655)
• a6946b6 Backport metadata fixes (#62663)
• 4002f4b Fix draft mode invariant (#62121)
• 7dbf6f8 fix: babel usage with next/image (#61835)
• 3efc842 Fix next/server apit push alias for ESM pkg (#61721)
• Additional commits viewable in compare view

Updates postcss from 8.4.31 to 8.4.41

Release notes

Sourced from postcss's releases.

8.4.41

• Fixed types (by @​nex3 and @​querkmachine).
• Cleaned up RegExps (by @​bluwy).

8.4.40

• Moved to getter/setter in nodes types to help Sass team (by @​nex3).

8.4.39

• Fixed CssSyntaxError types (by @​romainmenke).

8.4.38

• Fixed endIndex: 0 in errors and warnings (by @​romainmenke).

8.4.37

• Fixed original.column are not numbers error in another case.

8.4.36

• Fixed original.column are not numbers error on broken previous source map.

8.4.35

• Avoid ! in node.parent.nodes type.
• Allow to pass undefined to node adding method to simplify types.

8.4.34

• Fixed AtRule#nodes type (by @​tim-we).
• Cleaned up code (by @​DrKiraDmitry).

8.4.33

• Fixed NoWorkResult behavior difference with normal mode (by @​romainmenke).
• Fixed NoWorkResult usage conditions (by @​ahmdammarr).

8.4.32

• Fixed postcss().process() types (by @​ferreira-tb).

Changelog

Sourced from postcss's changelog.

8.4.41

• Fixed types (by @​nex3 and @​querkmachine).
• Cleaned up RegExps (by @​bluwy).

8.4.40

• Moved to getter/setter in nodes types to help Sass team (by @​nex3).

8.4.39

• Fixed CssSyntaxError types (by @​romainmenke).

8.4.38

• Fixed endIndex: 0 in errors and warnings (by @​romainmenke).

8.4.37

• Fixed original.column are not numbers error in another case.

8.4.36

• Fixed original.column are not numbers error on broken previous source map.

8.4.35

• Avoid ! in node.parent.nodes type.
• Allow to pass undefined to node adding method to simplify types.

8.4.34

• Fixed AtRule#nodes type (by Tim Weißenfels).
• Cleaned up code (by Dmitry Kirillov).

8.4.33

• Fixed NoWorkResult behavior difference with normal mode (by Romain Menke).
• Fixed NoWorkResult usage conditions (by @​ahmdammarr).

8.4.32

• Fixed postcss().process() types (by Andrew Ferreira).

Commits

• 57e0211 Release 8.4.41 version
• f27134f Update dependencies
• 146d31c Merge pull request #1952 from nex3/rule-props
• 3707c3b Merge remote-tracking branch 'origin/main' into rule-props
• 9ab3619 Declare Input.toJSON()
• be59ad4 Remove dead website
• 165154b Update dependencies
• 6127a44 Declaration#variable do not have setter
• 536726d Fix type
• 58fa0ef Sort keys
• Additional commits viewable in compare view

Updates @babel/traverse from 7.17.3 to 7.23.2

Release notes

Sourced from @​babel/traverse's releases.

v7.23.2 (2023-10-11)

NOTE: This release also re-publishes @babel/core, even if it does not appear in the linked release commit.

Thanks @​jimmydief for your first PR!

:bug: Bug Fix

• babel-traverse
  • #16033 Only evaluate own String/Number/Math methods (@​nicolo-ribaudo)
• babel-preset-typescript
  • #16022 Rewrite .tsx extension when using rewriteImportExtensions (@​jimmydief)
• babel-helpers
  • #16017 Fix: fallback to typeof when toString is applied to incompatible object (@​JLHwung)
• babel-helpers, babel-plugin-transform-modules-commonjs, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #16025 Avoid override mistake in namespace imports (@​nicolo-ribaudo)

Committers: 5

• Babel Bot (@​babel-bot)
• Huáng Jùnliàng (@​JLHwung)
• James Diefenderfer (@​jimmydief)
• Nicolò Ribaudo (@​nicolo-ribaudo)
• @​liuxingbaoyu

v7.23.1 (2023-09-25)

Re-publishing @babel/helpers due to a publishing error in 7.23.0.

v7.23.0 (2023-09-25)

Thanks @​lorenzoferre and @​RajShukla1 for your first PRs!

:rocket: New Feature

• babel-plugin-proposal-import-wasm-source, babel-plugin-syntax-import-source, babel-plugin-transform-dynamic-import
  • #15870 Support transforming import source for wasm (@​nicolo-ribaudo)
• babel-helper-module-transforms, babel-helpers, babel-plugin-proposal-import-defer, babel-plugin-syntax-import-defer, babel-plugin-transform-modules-commonjs, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone
  • #15878 Implement import defer proposal transform support (@​nicolo-ribaudo)
• babel-generator, babel-parser, babel-types
  • #15845 Implement import defer parsing support (@​nicolo-ribaudo)
  • #15829 Add parsing support for the "source phase imports" proposal (@​nicolo-ribaudo)
• babel-generator, babel-helper-module-transforms, babel-parser, babel-plugin-transform-dynamic-import, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-traverse, babel-types
  • #15682 Add createImportExpressions parser option (@​JLHwung)
• babel-standalone
  • #15671 Pass through nonce to the transformed script element (@​JLHwung)
• babel-helper-function-name, babel-helper-member-expression-to-functions, babel-helpers, babel-parser, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-optional-chaining-assign, babel-plugin-syntax-optional-chaining-assign, babel-plugin-transform-destructuring, babel-plugin-transform-optional-chaining, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone, babel-types
  • #15751 Add support for optional chain in assignments (@​nicolo-ribaudo)
• babel-helpers, babel-plugin-proposal-decorators
  • #15895 Implement the "decorator metadata" proposal (@​nicolo-ribaudo)
• babel-traverse, babel-types
  • #15893 Add t.buildUndefinedNode (@​liuxingbaoyu)
• babel-preset-typescript

... (truncated)

Changelog

Sourced from @​babel/traverse's changelog.

v7.23.2 (2023-10-11)

:bug: Bug Fix

• babel-traverse
  • #16033 Only evaluate own String/Number/Math methods (@​nicolo-ribaudo)
• babel-preset-typescript
  • #16022 Rewrite .tsx extension when using rewriteImportExtensions (@​jimmydief)
• babel-helpers
  • #16017 Fix: fallback to typeof when toString is applied to incompatible object (@​JLHwung)
• babel-helpers, babel-plugin-transform-modules-commonjs, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #16025 Avoid override mistake in namespace imports (@​nicolo-ribaudo)

v7.23.0 (2023-09-25)

:rocket: New Feature

• babel-plugin-proposal-import-wasm-source, babel-plugin-syntax-import-source, babel-plugin-transform-dynamic-import
  • #15870 Support transforming import source for wasm (@​nicolo-ribaudo)
• babel-helper-module-transforms, babel-helpers, babel-plugin-proposal-import-defer, babel-plugin-syntax-import-defer, babel-plugin-transform-modules-commonjs, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone
  • #15878 Implement import defer proposal transform support (@​nicolo-ribaudo)
• babel-generator, babel-parser, babel-types
  • #15845 Implement import defer parsing support (@​nicolo-ribaudo)
  • #15829 Add parsing support for the "source phase imports" proposal (@​nicolo-ribaudo)
• babel-generator, babel-helper-module-transforms, babel-parser, babel-plugin-transform-dynamic-import, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-traverse, babel-types
  • #15682 Add createImportExpressions parser option (@​JLHwung)
• babel-standalone
  • #15671 Pass through nonce to the transformed script element (@​JLHwung)
• babel-helper-function-name, babel-helper-member-expression-to-functions, babel-helpers, babel-parser, babel-plugin-proposal-destructuring-private, babel-plugin-proposal-optional-chaining-assign, babel-plugin-syntax-optional-chaining-assign, babel-plugin-transform-destructuring, babel-plugin-transform-optional-chaining, babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime, babel-standalone, babel-types
  • #15751 Add support for optional chain in assignments (@​nicolo-ribaudo)
• babel-helpers, babel-plugin-proposal-decorators
  • #15895 Implement the "decorator metadata" proposal (@​nicolo-ribaudo)
• babel-traverse, babel-types
  • #15893 Add t.buildUndefinedNode (@​liuxingbaoyu)
• babel-preset-typescript
  • #15913 Add rewriteImportExtensions option to TS preset (@​nicolo-ribaudo)
• babel-parser
  • #15896 Allow TS tuples to have both labeled and unlabeled elements (@​yukukotani)

:bug: Bug Fix

• babel-plugin-transform-block-scoping
  • #15962 fix: transform-block-scoping captures the variables of the method in the loop (@​liuxingbaoyu)

:nail_care: Polish

• babel-traverse
  • #15797 Expand evaluation of global built-ins in @babel/traverse (@​lorenzoferre)
• babel-plugin-proposal-explicit-resource-management
  • #15985 Improve source maps for blocks with using declarations (@​nicolo-ribaudo)

:microscope: Output optimization

• babel-core, babel-helper-module-transforms, babel-plugin-transform-async-to-generator, babel-plugin-transform-classes, babel-plugin-transform-dynamic-import, babel-plugin-transform-function-name, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-umd, babel-plugin-transform-parameters, babel-plugin-transform-react-constant-elements, babel-plugin-transform-react-inline-elements, babel-plugin-transform-runtime, babel-plugin-transform-typescript, babel-preset-env
  • #15984 Inline exports.XXX = update in simple variable declarations (@​nicolo-ribaudo)

v7.22.20 (2023-09-16)

... (truncated)

Commits

• b4b9942 v7.23.2
• b13376b Only evaluate own String/Number/Math methods (#16033)
• ca58ec1 v7.23.0
• 0f333da Add createImportExpressions parser option (#15682)
• 3744545 Fix linting
• c7e6806 Add t.buildUndefinedNode (#15893)
• 38ee8b4 Expand evaluation of global built-ins in @babel/traverse (#15797)
• 9f3dfd9 v7.22.20
• 3ed28b2 Fully support || and && in pluginToggleBooleanFlag (#15961)
• 77b0d73 v7.22.19
• Additional commits viewable in compare view

Updates @trivago/prettier-plugin-sort-imports from 4.1.1 to 4.3.0

Release notes

Sourced from @​trivago/prettier-plugin-sort-imports's releases.

v4.3.0

What's Changed

• Upgrade node in CI to current and lts versions by @​harryzcy in trivago/prettier-plugin-sort-imports#264
• feat: added support for sort-imports-ignore by @​stephdotnet in trivago/prettier-plugin-sort-imports#237

New Contributors

• @​harryzcy made their first contribution in trivago/prettier-plugin-sort-imports#264
• @​stephdotnet made their first contribution in trivago/prettier-plugin-sort-imports#237

Full Changelog: https://github.com/trivago/prettier-plugin-sort-imports/compare/v4.2.1...v4.3.0

v4.2.1

What's Changed

• Resolves Issue 262 - CVE-2023-45133 - upgrade to latest babel traverse by @​c-h-russell-walker in trivago/prettier-plugin-sort-imports#266

New Contributors

• @​c-h-russell-walker made their first contribution in trivago/prettier-plugin-sort-imports#266

Full Changelog: https://github.com/trivago/prettier-plugin-sort-imports/compare/v4.2.0...v4.2.1

v4.2.0

What's Changed

• Update README.md to mention fix for pnpm package manager by @​esjs in trivago/prettier-plugin-sort-imports#235
• chore: adds FactorialHR as used by company by @​omarsotillo in trivago/prettier-plugin-sort-imports#231
• build: update prettier peer dependency semVer to include 3.x by @​basselworkforce in trivago/prettier-plugin-sort-imports#239

New Contributors

• @​esjs made their first contribution in trivago/prettier-plugin-sort-imports#235
• @​omarsotillo made their first contribution in trivago/prettier-plugin-sort-imports#231
• @​basselworkforce made their first contribution in trivago/prettier-plugin-sort-imports#239

Full Changelog: https://github.com/trivago/prettier-plugin-sort-imports/compare/v4.1.1...v4.2.0

Changelog

Sourced from @​trivago/prettier-plugin-sort-imports's changelog.

v4.3.0

New features

• added support for sort-imports-ignore #237 by stephdotnet
• Upgrade node in CI to current and lts versions #264 by harryzcy

v4.2.1

Chore

• Resolves Issue 262 - CVE-2023-45133 - upgrade to latest babel traverse #266 by c-h-russell-walker

v4.2.0

Chore

• update prettier peer dependency semVer to include 3.x #239 by basselworkforce

Commits

• 2ea533d 4.3.0
• c8bb4fa Merge pull request #237 from stephdotnet/sort-imports-ignored
• f37d48f Merge branch 'main' into sort-imports-ignored
• 09de470 Merge pull request #264 from harryzcy/node-active-2023
• 8010600 Merge branch 'main' into sort-imports-ignored
• c40f7d8 Merge branch 'main' into node-active-2023
• 1c7745e v4.2.1 changelog
• 62f6018 4.2.1
• 4f328cf Merge pull request #266 from c-h-russell-walker/main
• 2a5a814 Issue 262 - CVE-2023-45133 - upgrade to latest babel traverse
• Additional commits viewable in compare view

Updates braces from 3.0.2 to 3.0.3

Commits

• 74b2db2 3.0.3
• 88f1429 update eslint. lint, fix unit tests.
• 415d660 Snyk js braces 6838727 (#40)
• 190510f fix tests, skip 1 test in test/braces.expand
• 716eb9f readme bump
• a5851e5 Merge pull request #37 from coderaiser/fix/vulnerability
• 2092bd1 feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
• 9f5b4cf fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
• 98414f9 remove funding file
• 665ab5d update keepEscaping doc (#27)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/github/forgoodfirstissue/network/alerts).

[dependabot[bot]]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

[mrecachinas]

@dependabot recreate

[dependabot[bot]]

Looks like this PR is closed. If you re-open it I'll rebase it as long as no-one else has edited it (you can use @dependabot reopen if the branch has been deleted).

[mrecachinas]

@dependabot rebase

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.